Report - jjk.globalsecuritypc.site/c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10}

Report Overview

Submitted URL
jjk.globalsecuritypc.site/c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10}
IP
52.19.101.114
ASN
#16509 AMAZON-02
Submitted
2022-11-23 22:58:41
Access
Website Title
Final URL
Tags
None
urlquery detections
Scam - Fake AntiVirus

Detections

urlquery
13
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
jjk.globalsecuritypc.site	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	567 B	3.6 kB	52.19.101.114
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.6 kB	142.250.74.35
cdn.stfilecamp.com	400667	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	771 B	39 kB	205.185.216.42
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	359 B	1.4 kB	104.18.20.226
translate.googleapis.com	1005	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	424 B	4.6 kB	142.250.74.42
mc.yandex.ru	2672	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.3 kB	80 kB	87.250.251.119
stormtrk.com	289095	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	725 B	1.1 kB	172.67.69.203
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	852 B	4.3 kB	142.250.74.163
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.3 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	49 kB	142.250.74.168
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.43.253.52
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	21 kB	142.250.74.174
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.76.226
cdn-adef.akamaized.net	125719	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	14 kB	320 kB	23.36.76.194
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	417 B	27 kB	142.250.74.46
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-23	medium	cdn.stfilecamp.com/stormtrk.js?1665074482	Phishing
2022-11-23	medium	cdn.stfilecamp.com/fp.min.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	mc.yandex.ru/metrika/tag.js	214 kB	2023-03-11	2023-03-11
Pretty URL mc.yandex.ru/metrika/tag.js IP 87.250.251.119 ASN #13238 YANDEX LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:47 Last Seen2023-03-11 23:40:23 Times Seen1 Hash 69affab62c527f101c5f94ef1d942796 49965ce6a3aedc9ecd5bd84df4f35aed3a350587 5d2aed090d3053f5ce03cf83712c314bb3f8354af47e248f5168983d4c61c60a Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main	211 kB	2023-03-08	2024-03-20
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2024-03-20 15:56:26 Times Seen134 Hash 416b0fc07995be8d2b5b67aba46171b0 dd355df12143ce031c19ed0b2b8bf512b6c7d5f1 99a05e6c4657850662d766688752248659646b186aff567879d5d159812d1904 Loading...

	http:srcdoc	1.2 kB	2023-03-08	2023-04-22
Pretty URL http:srcdoc IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-04-22 02:10:05 Times Seen1280 Hash 1bdd099873761648dd3aa8aad60e2ac3 713e5a99347bd73f3d9c359acd1c885430e22060 0624e7ce1ad63657924f8ca830c5a9a16c721b527ea1b98d2ef471d04348a07d Loading...

	cdn-adef.akamaized.net/landings/210094/1665074482/js/interactive.js?1665074482	24 kB	2023-03-11	2023-03-11
Pretty URL cdn-adef.akamaized.net/landings/210094/1665074482/js/interactive.js?1665074482 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:34:19 Last Seen2023-03-11 21:08:05 Times Seen1 Hash bb8e11305fb8c3574c2ea1ae2a7da66b 240d8347e750dd19e02fa9a3395b4a9954cdd38f 4324ba782c4ae3d41a8463779ac5cd170a61c6a0c28f8fa3ba1cc96994a69d16 Loading...

	cdn-adef.akamaized.net/landings/210094/1665074482/js/second_back_multi.js?1665074482	2.3 kB	2023-03-08	2024-03-03
Pretty URL cdn-adef.akamaized.net/landings/210094/1665074482/js/second_back_multi.js?1665074482 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:09 Last Seen2024-03-03 21:18:43 Times Seen14 Hash b2e5bcd8e92cf97cd2a0ea4f76194bfe b43711c74dc0c89fc0c01f7b86fb0eed3de521b8 623ce49c0105f8aab34bb6278fa39643b888153b703ee12e79fe6bc99b7603db Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 15:53:40 Times Seen36962516 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.stfilecamp.com/stormtrk.js?1665074482	6.5 kB	2023-03-07	2024-03-30
Pretty URL cdn.stfilecamp.com/stormtrk.js?1665074482 IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-03-30 15:36:25 Times Seen562 Hash 469e121bb4c4fe159bbca2b4f5a88267 f0c66f226de28b324e4f1ecb766597938f984c60 4706b6d6c3e39cf2915a772595f2cc124e96d0919538b56aa817113e6482c416 Loading...

	jjk.globalsecuritypc.site/c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10}	357 B	2023-03-11	2023-03-11
Pretty URL jjk.globalsecuritypc.site/c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10} IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:34:19 Last Seen2023-03-11 21:08:05 Times Seen1 Hash e54833e96f556cce0a63e67fa363988f c457750577e3e2f6b95a7cba9be52c584bef7d1d f0a41b0422846048743413018b70d68fd8788b11c38b4d8b843e0fe41fc207a3 Loading...

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit	76 kB	2023-03-11	2023-03-11
Pretty URL translate.google.com/translate_a/element.js?cb=googleTranslateElementInit IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:32:57 Last Seen2023-03-11 16:34:19 Times Seen1 Hash 9a884dc5f56b4bf780cc0e6f6be4b096 496e5c10f62a65b87dbc0b20006a521ad22af7b6 33d0f0ab592500b8fbe3b87fc4fc9746753eea2cbaf24425004065229d580821 Loading...

	translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback	17 kB	2023-03-07	2024-04-19
Pretty URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-19 13:33:11 Times Seen14113 Hash a3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067 Loading...

	cdn-adef.akamaized.net/landings/210094/1665074482/js/jquery.min.js?1665074482	87 kB	2023-03-07	2024-04-19
Pretty URL cdn-adef.akamaized.net/landings/210094/1665074482/js/jquery.min.js?1665074482 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 15:21:07 Times Seen105287 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	cdn-adef.akamaized.net/landings/210094/1665074482/js/translate.js?1665074482	1.2 kB	2023-03-07	2024-04-19
Pretty URL cdn-adef.akamaized.net/landings/210094/1665074482/js/translate.js?1665074482 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:48 Last Seen2024-04-19 10:31:27 Times Seen717 Hash fcd546809170dd574eb37b989529f69a 2e227e144e3b4bd68064354d8a7fbc61125f624c 350baff99bbd3db6cdb8d741bc7f75fa333489ad5dcc641e2cfa0e11130e1920 Loading...

	cdn-adef.akamaized.net/landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482	407 B	2023-03-11	2023-03-11
Pretty URL cdn-adef.akamaized.net/landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:34:19 Last Seen2023-03-11 21:08:05 Times Seen1 Hash fc9a8507ee55f09c46bfdce61a8a2cc2 9d83880e0819dc336f38bdef6c6a086a10e33f02 c8ba9fc3b2f8faabdd618fa2da77a135b9e1a0bd6e62e74cb91a500caae1ec5a Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-19
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-19 07:47:47 Times Seen1515 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	cdn-adef.akamaized.net/landings/210094/1665074482/js/main.js?1665074482	1.7 kB	2023-03-11	2023-03-11
Pretty URL cdn-adef.akamaized.net/landings/210094/1665074482/js/main.js?1665074482 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:34:19 Last Seen2023-03-11 21:08:05 Times Seen1 Hash faeed909095b5eed12a9132579eea70e 84a874a95d6dc877082e0b0b5e37a46baee50a78 600e85bcd9fd935c9509e4bc044df2fb6cba0266eaf9443f43f18ba62b8aabd8 Loading...

	cdn-adef.akamaized.net/landings/210094/1665074482/js/js.cockie.min.js?1665074482	2.2 kB	2023-03-07	2024-04-19
Pretty URL cdn-adef.akamaized.net/landings/210094/1665074482/js/js.cockie.min.js?1665074482 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:48 Last Seen2024-04-19 10:31:27 Times Seen664 Hash c9e9a54501fc6f6e8918b2c0f2a53981 3d530e6c830ccba6284e79c7245bb45d6f4f2197 491fdee141835401d29318ca584ac3e91a38c92d8694f26d90883bfc324ca454 Loading...

	cdn-adef.akamaized.net/landings/210094/1665074482/js/site-protect.js?1665074482	2.3 kB	2023-03-07	2024-02-28
Pretty URL cdn-adef.akamaized.net/landings/210094/1665074482/js/site-protect.js?1665074482 IP 23.36.76.194 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:41 Last Seen2024-02-28 11:38:45 Times Seen22 Hash c47f7c71171eca259d1bf8b6bd018587 acdbc51e5234ef33ba83548be3c39d6297a3e9b6 9b03b0ca1ca957e987aa0b4777c751acf0e8d8814c0a3eb6b017be17872c4ce4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 15:53:40 Times Seen36962516 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (81)

URL IP Response Size

jjk.globalsecuritypc.site/c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10}

52.19.101.114

200 OK

3.2 kB

URL HTTP/1.1
jjk.globalsecuritypc.site/c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10}
IP
52.19.101.114:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17661)
Size
3.2 kB (3157 bytes)
Hash
9ab4eff846db40169635735a3b48fc11
c537c59328c7ca1d1d903b0eb191b5b6c8015bf7
d5de87f5e0408e09a542698914a2a5bc3304fb710a2f51763426f700faf68bf2

HTTP Headers

GET /c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10} HTTP/1.1
Host: jjk.globalsecuritypc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: unique_id=637ea59600051f34; Path=/; Expires=Sun, 22 Jan 2023 22:58:30 GMT
unique_id2=637ea5960005296b; Path=/; Expires=Tue, 21 Feb 2023 22:58:30 GMT
impression=; Path=/; Expires=Wed, 23 Nov 2022 22:58:30 GMT
637ea5960005296b_sl=[210094]; Path=/; Expires=Wed, 07 Dec 2022 22:58:30 GMT
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4516
Expires: Thu, 24 Nov 2022 00:13:46 GMT
Date: Wed, 23 Nov 2022 22:58:30 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3567
Cache-Control: max-age=131533
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:30 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:30:43 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 23 Nov 2022 22:17:12 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2478
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9211
Expires: Thu, 24 Nov 2022 01:32:01 GMT
Date: Wed, 23 Nov 2022 22:58:30 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 34TwvFMGkBeo6CO65qDMOI9rXaoNi9cAdClP90V1z9yhvk+az3svkn1e/4Wf7KphiZaLgnDtRqg=
x-amz-request-id: 80JRKJMJNETN9TS9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 22:40:10 GMT
age: 1100
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 22:58:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/210094/1665074482/css/translate.css?1665074482

23.36.76.194

200 OK

3.9 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/css/translate.css?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
3.9 kB (3855 bytes)
Hash
f7116ac9c34bce9ddb1cb0ca45e71a5e
4b923e60630ee4ac54f00b4bc916ddbdf5da9115
9e63cc29a086f1c981c3387494dc31e2f2cb9c2fa83df6f28f8b6f47000bcd60

HTTP Headers

GET /landings/210094/1665074482/css/translate.css?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: OQv8jxSZTGUJW5raXFpu73HiMX7DFPnBn/l4KNv46Q3PBs0UcgxCPzfCaf6Dolnv0MtIpD0e3gg=
x-amz-request-id: G19JBHQH5E2B72KG
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "c09d0e8abc947698e6d20bf75e1d8238"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 3855
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/js/js.cockie.min.js?1665074482

23.36.76.194

200 OK

912 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/js/js.cockie.min.js?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
912 B (912 bytes)
Hash
96533a0859f3dfc61d7471beec7b8642
7b4f1497692f2ea0d3d1eaa44db54b22345486b8
994b8097c16e97d8b28ab498f2f4290ebd8ca0353e23e7ddd2a6edd8b648bd46

HTTP Headers

GET /landings/210094/1665074482/js/js.cockie.min.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: BdEj4SJmKQEIFzoI7F/Tp+yQ4NWogaw2cGBG0WjmezIwnKmJ18R4GgYrJcSNH6XeyQHVaTPnrWw=
x-amz-request-id: A12Y6EMCGZJGSP6F
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "c9e9a54501fc6f6e8918b2c0f2a53981"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 912
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/js/main.js?1665074482

23.36.76.194

200 OK

750 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/js/main.js?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (1668)
Size
750 B (750 bytes)
Hash
eed2658cf6c3c5a5c872bee7a416935c
12087545088a1898342e7066e689973c8cadb231
33d6747f19a889ba16007999396e73bb3b195f7a0d2040e6e0971e4be7db1d19

HTTP Headers

GET /landings/210094/1665074482/js/main.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: FpDFBkNFSlDxr02oSpf9H/iCHHxgADUjRVJpuTi2N5Y4RI0yTtp89TmEHh2hpmW7yzO1MeVrg0E=
x-amz-request-id: 01S87RZH8G4F888Y
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "faeed909095b5eed12a9132579eea70e"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 750
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/js/translate.js?1665074482

23.36.76.194

200 OK

544 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/js/translate.js?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
544 B (544 bytes)
Hash
015967e055e606d62302b33ca898240c
97a3a854502409b10635b092500bfc5b244642e4
5bc3f308bb3236dbb04b2ac5d01905f9081d24827d4cd26c33ec5f716acd8427

HTTP Headers

GET /landings/210094/1665074482/js/translate.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: HyXB5wrRKspDgb7HewytILh7MQtido3Ebgr2xij4VVuWLh2p3Zeh3wKw+hP7BIrpIjU3OA8UcJI=
x-amz-request-id: 8EQS4KJNWH4P9XCW
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "fcd546809170dd574eb37b989529f69a"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 544
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/js/interactive.js?1665074482

23.36.76.194

200 OK

4.9 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/js/interactive.js?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (23751), with no line terminators
Size
4.9 kB (4891 bytes)
Hash
8618da9f60ac759c7c91f99749f1c6a5
7746a0f302eaa3badc9a517c07daeee3921bc770
e743983276c32fe6cc5e1a0ec45fe1da88375849aca1664365ce32fe9621fdd1

HTTP Headers

GET /landings/210094/1665074482/js/interactive.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: +K6L/LjLgkG9nrdZi4cTIEIBesfjVem9fxb5DY6hKDxszKHVzJuEkNYA3z/2J/+iIvcquB7XMUU=
x-amz-request-id: 01S0PJFG0GPZJKEG
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "bb8e11305fb8c3574c2ea1ae2a7da66b"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 4891
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/js/jquery.min.js?1665074482

23.36.76.194

200 OK

30 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/js/jquery.min.js?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65451)
Size
30 kB (30351 bytes)
Hash
a6b22944e852281bd6098509b0bea251
ae0671465ee9bc7354942a48a87d0e0397799bf4
042d48a6103607bdc54170ab6e118859980c1bdf47ca857cfed44af87593827a

HTTP Headers

GET /landings/210094/1665074482/js/jquery.min.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: LSv0ocHORMy3WsY/QpmDg5ZrOViHVaU7QXQEHZGeCSikST7WO1QzWDeu+8EcoAQU0hp+pc4M0xY=
x-amz-request-id: 2MB3HAY9B7MQJVM0
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "a09e13ee94d51c524b7e2a728c7d4039"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 30351
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482

23.36.76.194

200 OK

407 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
exported SGML document, ASCII text, with CRLF line terminators
Size
407 B (407 bytes)
Hash
fc9a8507ee55f09c46bfdce61a8a2cc2
9d83880e0819dc336f38bdef6c6a086a10e33f02
c8ba9fc3b2f8faabdd618fa2da77a135b9e1a0bd6e62e74cb91a500caae1ec5a

HTTP Headers

GET /landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: u5TNcWtXkTFmWhSeydM4TdnzUDuOpCu6VYwA4fYMoNMA+8SExSOu0zk6CGWnR/trZsNgGEFSYfw=
x-amz-request-id: F2468FQSR2Y82F33
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "fc9a8507ee55f09c46bfdce61a8a2cc2"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 407
Date: Wed, 23 Nov 2022 22:58:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/js/second_back_multi.js?1665074482

23.36.76.194

200 OK

790 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/js/second_back_multi.js?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
HTML document, ASCII text
Size
790 B (790 bytes)
Hash
5c1190b869b7ce7e7e61bb06daeef517
034dd9bab87cbe052f2ce293ce35b1bec7fe1b53
b7f6f310dab1572e7d9ed3e46a5e1fa1c87228d70b3979cbe541cddba876195a

HTTP Headers

GET /landings/210094/1665074482/js/second_back_multi.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: a6msK8P3XfSS2VHGULt2nz7PGMB9Kf0ZnkaeT09JcC7kqjV7pTAQMPoY7kiSufI0DPo6sDumYPI=
x-amz-request-id: 10GH5ZXG4RZMAPTA
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "b2e5bcd8e92cf97cd2a0ea4f76194bfe"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 790
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/js/site-protect.js?1665074482

23.36.76.194

200 OK

771 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/js/site-protect.js?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
771 B (771 bytes)
Hash
374496cfad56243dce97281141912979
2684f16d4ce2676cb5d23e2f8bf5be3b6abba436
8bfb2943d98ad06afe4dcbbdc2dab6f451eda54e1ad6b5ceacc12eefe767c0d9

HTTP Headers

GET /landings/210094/1665074482/js/site-protect.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: DDpGErthCVuqRzTsTcwhfakYS9jTnnzYRD6mv6nTvgUG6IAngOoaKUC1LeHlA2ggjI2jirEBIUc=
x-amz-request-id: 3ZV00E4RZPFEG5YH
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "c47f7c71171eca259d1bf8b6bd018587"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 771
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/css/style.css?1665074482

23.36.76.194

200 OK

2.0 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/css/style.css?1665074482
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with CRLF line terminators
Size
2.0 kB (1959 bytes)
Hash
cbebfbfa9821de84707e1af1e6a76d4b
564362b542854a20f890353ee49b35992ee75e61
4339353bf696a2d4e8df354289884d144b5bd938ff34f7644dc7033f2292fb08

HTTP Headers

GET /landings/210094/1665074482/css/style.css?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: KaSHS9WcM4FwNWo/xH9aq91ayTAILkJshSVuZr5qlK3weLdiGLVzYQXiolTKboD1Bpob6it3d48=
x-amz-request-id: NG3S7V3KW3M78Z7K
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "ffa5421a0b7b7e9bdd28c477095cbd2d"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 1959
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 23 Nov 2022 22:08:53 GMT
cache-control: public,max-age=3600
age: 2977
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-N4GRR3S

142.250.74.168

200 OK

48 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-N4GRR3S
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2472)
Size
48 kB (48377 bytes)
Hash
6b644677d97392e52f3c5c37fa43e939
60d667518605c14f1b90c9d15abade9614bb7d14
51b4ec9dae2367580d3bdb25d63579262994060ffc58f695b3f8127a5935ca02

HTTP Headers

GET /gtm.js?id=GTM-N4GRR3S HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 22:58:31 GMT
expires: Wed, 23 Nov 2022 22:58:31 GMT
cache-control: private, max-age=900
last-modified: Wed, 23 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48377
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

52.43.253.52

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.253.52:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0IK6ktPmE391SczHUUjkmg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f0O62JqzeAIY+16qR2ZYYyNn67k=

cdn.stfilecamp.com/stormtrk.js?1665074482

205.185.216.42

200 OK

6.5 kB

URL HTTP/2
cdn.stfilecamp.com/stormtrk.js?1665074482
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
6.5 kB (6502 bytes)
Hash
469e121bb4c4fe159bbca2b4f5a88267
f0c66f226de28b324e4f1ecb766597938f984c60
4706b6d6c3e39cf2915a772595f2cc124e96d0919538b56aa817113e6482c416

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /stormtrk.js?1665074482 HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 23 Nov 2022 22:58:31 GMT
cache-control: max-age=3600
content-length: 6502
content-type: text/javascript
last-modified: Tue, 07 Sep 2021 08:59:42 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "469e121bb4c4fe159bbca2b4f5a88267"
x-amz-request-id: tx00000000000006a72de29-00637ea597-213dd0f0-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1669244310.dop003.sk1.t,1669244310.cds258.sk1.hn,1669244311.cds201.sk1.pr
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray2.png

23.36.76.194

200 OK

349 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray2.png
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data
Size
349 B (349 bytes)
Hash
7454c652e0733d92de6c920c2d646ae0
34a5bd8c7401f95e346895b0e5ccffbf0e9ad638
44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/ico_gray2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: sjWU78x9fW90wYWwBU5KmzwvObjWlFg1zoZyyyOJAz0EUtPFCdQyKDJHGv+kX687noJuH0HKh4A=
x-amz-request-id: HG28HS22WY8X0QPZ
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "7454c652e0733d92de6c920c2d646ae0"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 349
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/corner.gif

23.36.76.194

200 OK

102 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/corner.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 24 x 9\012- data
Size
102 B (102 bytes)
Hash
ef14d57c065fdbd3c66d017a729ca91f
2e7b72d674361a9c2b41767ccfbed2486e6695dd
6fcbfcda8a36536a0f9b0bc8c4a6ca451d9bafd4a879d56697e48e209691ba36

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/corner.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: FPGxrOAcS/379Axn4kbNrnfT5boZQ74Gc+W/4nBPl+Qe80cHTMUq2636ObUEd6f9XwIwerOtJVg=
x-amz-request-id: HG2CQ0APRQ9HN8E9
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "ef14d57c065fdbd3c66d017a729ca91f"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 102
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl1.gif

23.36.76.194

200 OK

511 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl1.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 80 x 65\012- data
Size
511 B (511 bytes)
Hash
af3aca2036675c5979fb535c5d190f15
70c4f17ef1a2afe0477c84c5d209fbe31760b657
aa88fa9731a6021cd8c0f80ef76476fd055a9cf0bff3ad9fbefbedbd255e26fa

HTTP Headers

GET /landings/210094/1665074482/images/ico_bl1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: pO+fWpJBCoBT2H+r3STt3YyUh3VWl0xyCKfhwa6PQp/5wIWx2bt5fBeY5BL8tzgmeYx/VT9H0f0=
x-amz-request-id: V276BSYMECDVDG2C
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "af3aca2036675c5979fb535c5d190f15"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 511
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl2.gif

23.36.76.194

200 OK

1.5 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl2.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 65 x 80\012- data
Size
1.5 kB (1547 bytes)
Hash
af52e51f42fd0c55bc3cf2c8ece71492
016f83da68ff461a5c6aebcc2a45668317b2f24c
e91f304cf7409723968740e6363dda01b50acb8e94b5ca05b4a4617666ff095c

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/ico_bl2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: X172F/rDy9NtAVi86n9t0UYE+EfyOLSorrnK0/LkSuzXTupVAM3C7NindDZ6BkJxF3CY2fcFdYQ=
x-amz-request-id: HG2D4P0F6F4PVB17
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "af52e51f42fd0c55bc3cf2c8ece71492"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 1547
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray2.gif

23.36.76.194

200 OK

377 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray2.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 16 x 16\012- data
Size
377 B (377 bytes)
Hash
c10bdec858cb0cf9e6cc5865d5925746
697c095ed5509e5a5af0c5ebf2380662aeffc531
b65b47a79e32335d9ca35ff59c6975d2b5808f84da0db88d11ce777b33e72ad9

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/ico_tray2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 0rT+kj/6W4izASCBW1TFt+y+m0Qv6+ef6jup+38SbYAhZoGIUzklyauQnlx1p6T1yHqqSSnoXI8=
x-amz-request-id: 5EACCVBJ1JC6D0C4
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "c10bdec858cb0cf9e6cc5865d5925746"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 377
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray1.gif

23.36.76.194

200 OK

69 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray1.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 16 x 16\012- data
Size
69 B (69 bytes)
Hash
3ae573d079dcd1d2da4086f2c0c72c45
e7c9dabec81379373476ed23168dcecb9b8c56aa
9cce08ab28e94790cf78c87e37f8690acbc6c535e4b43ae7b38506b94538e107

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/ico_tray1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: Y69rZi0GPmBkoLqkcKGLxETlf/XFx3FPgj4LXhsAxVry/xXjtGDrnhfh+32OCDIKxoZF+iGUnOs=
x-amz-request-id: R9ECTGZFG56M373P
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "3ae573d079dcd1d2da4086f2c0c72c45"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 69
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl3.gif

23.36.76.194

200 OK

949 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl3.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 78 x 68\012- data
Size
949 B (949 bytes)
Hash
da9d153375da51a616a7663f1504e3a5
bd81fe60fe017bfe79be8c1afed88b659ff166d9
9bb88049c3d3f3c172d97246fa148bb725e727847c37e28c3be156be240a0c04

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/ico_bl3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: F7q6i/K7RtVbTjVJ6YGiDvpl1asCD+Lnn1r8HSyf7e9yxpmeok6IacYPGiOvdx9z4wov21Rv7Tk=
x-amz-request-id: HG24X7MB24AYC02G
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "da9d153375da51a616a7663f1504e3a5"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 949
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl4.png

23.36.76.194

200 OK

662 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl4.png
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 78 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
662 B (662 bytes)
Hash
7a11ddabe8ccece588c8aef50f5d12dc
e36cd99c427e79f156e99bd8078c14be23aec42a
15d874692f178f9bf819b8c13274b71ca400b0f37bfda1433834a959d0413dfa

HTTP Headers

GET /landings/210094/1665074482/images/ico_bl4.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: cxe+y8lUHIkDTPvem7LKMtPlqagnFi2EInsOypU7K0wTgSe3TwJmowe9B24wqW906aWT6Thj0GQ=
x-amz-request-id: 3VJX0VSWF4HZ398J
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "7a11ddabe8ccece588c8aef50f5d12dc"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 662
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray3.gif

23.36.76.194

200 OK

234 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray3.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 16 x 16\012- data
Size
234 B (234 bytes)
Hash
9ce99ec458daf212f9812a90f3fadd13
9e3041bc91b79a17b52e0fbb6c2d0e2f905d98a1
b0d335401c9fd5fac9991ec92edaf7865ff3a491ebe390120936c69796c3b753

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/ico_tray3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: NIf3CWpiOl4IpxbUjGOpmlw/OrOeFWlzrWax/OrYZEzglRoLLvIpUrbX4udKxvMnXlBbeETPEw0=
x-amz-request-id: JZQCJ0W2ASTQ0V9D
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "9ce99ec458daf212f9812a90f3fadd13"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 234
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/logo-white.png

23.36.76.194

200 OK

2.0 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/logo-white.png
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 415 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 kB (2013 bytes)
Hash
3c9430ab1ed0536d46dd917813f11c4d
cc4057a93be6f92d7068a8b6d3bcd56f90f4e182
c9170db9afee7b62db6dccbc35fe3111ec22caa8bc378b9804713035692cb986

HTTP Headers

GET /landings/210094/1665074482/images/logo-white.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 51ohBK1y861xlT2f2v9l+zDsnf6w+IxYn/l8AGqf1pVWINC9eh/mpbZTG9tAMlJtG1gXYpQBapI=
x-amz-request-id: NSXD4N25S2CCWDA9
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "3c9430ab1ed0536d46dd917813f11c4d"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2013
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/logo.png

23.36.76.194

200 OK

5.0 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/logo.png
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 157 x 43, 8-bit/color RGBA, non-interlaced\012- data
Size
5.0 kB (4994 bytes)
Hash
0f00a5ca8441973c8bdb7adad8d10742
575564b9a087ddfb14f5b2544c33e85565089d59
f3c9f517b92df590f6baf628ed1e0bf794872d1c85ecfd163a3a242412e92a5c

HTTP Headers

GET /landings/210094/1665074482/images/logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: Ez5SgwpnxiKWoHDW/6fX/EywC1cz3I5tZAN3JpQqllrt77rwVRV2cbRki8JMK5aa1W9NbFeefrI=
x-amz-request-id: HG214Q4PC7W4FEVC
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "0f00a5ca8441973c8bdb7adad8d10742"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4994
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/nrt_logo.png

23.36.76.194

200 OK

1.7 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/nrt_logo.png
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 65 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1658 bytes)
Hash
552a64cb68788eda1e39803a214e6089
bfdff83a307360453e686bc006e33baa3b7ac6e5
76efdff7f7d19e2b7c161d769c023890a9304a98ac76c26a30d3b8a7dceeaed5

HTTP Headers

GET /landings/210094/1665074482/images/nrt_logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: iGZoXibmJy9D6j8ERctD+z7dULYpV66rmrAM9UYz3eQE8y/n3kaoM8pFTurUbCOgaoEtlBf8ECU=
x-amz-request-id: 5SZNFM8DHX7R6C9M
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "552a64cb68788eda1e39803a214e6089"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1658
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/cross.gif

23.36.76.194

200 OK

211 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/cross.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 29 x 29\012- data
Size
211 B (211 bytes)
Hash
45b0c8a1e52d91e8cf84eaf75ebca9a9
0e358b8571f9062dedfacd0c31d54179270153cd
4e635bdab7a300d0ccb5aac26b4610a07ee1b33643578c1a4308e677d7eb595d

HTTP Headers

GET /landings/210094/1665074482/images/cross.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: SxnV7UUeW2FgMLi881LC3GOr+UJKUhqeVRm+UlN4J/KN3ZrIkP3WkvZUcnfvQa2ROqoy54dtTjA=
x-amz-request-id: 5EA6K98F779ZY8HG
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "45b0c8a1e52d91e8cf84eaf75ebca9a9"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 211
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/win_min.png

23.36.76.194

200 OK

128 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/win_min.png
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
128 B (128 bytes)
Hash
0bb86caf792dd7d24731c18cd37bb68e
dda1e433a0eaf785b2aa2c6214d5e48cb82a3a25
2ac27821ba64d645f36e2ad197492d30c11b10a032cc474554679555f4604622

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/win_min.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: tmYHHj2LB2OD94ehf5dsHx3YSdIpIbMhjGXBtIJZ82FEUIASO5BDEHml0hET/5PbKM35X4sCc5I=
x-amz-request-id: 44XDCWQK1QTPADR0
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "0bb86caf792dd7d24731c18cd37bb68e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 128
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/mcafee-total-protection.jpg

23.36.76.194

200 OK

244 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/mcafee-total-protection.jpg
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2806x1200, components 3\012- data
Size
244 kB (243629 bytes)
Hash
dd4acb73b402577e9296a3d02f01ae23
390fc162fcacda7f0b3d918c3f144021767e237f
ae61661052377eb572cbeeca552616f086fc47f15df4ba36092a20ba8146df69

HTTP Headers

GET /landings/210094/1665074482/images/mcafee-total-protection.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: gAbU9TCFZQwncqgUbfjK/wsFklR0GsM9JpDwqB9uE+jKSXd9TjtlxTWJBkj0lWYdEn6e59SqbXA=
x-amz-request-id: HG27E1KSHB3AG2TY
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "dd4acb73b402577e9296a3d02f01ae23"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 243629
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/win_cls.png

23.36.76.194

200 OK

293 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/win_cls.png
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
293 B (293 bytes)
Hash
9eb68d2ce05c151bda542a7a6356e22c
baeeefe4a7ac657c10a5f081841015de1bcf90dd
2d2b7040bc32b397c3c60d800de9aa7d86404f1874862eba61bdaa21f1523eb7

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/win_cls.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: kXr7BQBnHoQPPKb4B6j6NxsKnaBIDfNR6h+6BFvkdQk/MYxaptq2y2+olDhSQnKLZABdKb4tCH8=
x-amz-request-id: HG269CWFBZDRKH55
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "9eb68d2ce05c151bda542a7a6356e22c"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 293
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/pc_green.gif

23.36.76.194

200 OK

723 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/pc_green.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 120 x 97\012- data
Size
723 B (723 bytes)
Hash
ea44081971aed96fbfa38fa187b6df4a
a3ec8cd4c76f517584faef83f96e32683265bdb1
e0f52d9433540bafa2f05fc3c04839b4990c2ce5ef718975a8d4eef9866f06be

HTTP Headers

GET /landings/210094/1665074482/images/pc_green.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: yX/OGClO8RX6GHOnsS0EH+TNqk2XTGIlBp1GX/7K5LjPgFhXPgppykRcFIHn3+aKJL6aQPn4ko4=
x-amz-request-id: 5EA646EPVDSF74QP
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "ea44081971aed96fbfa38fa187b6df4a"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 723
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray1.png

23.36.76.194

200 OK

364 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray1.png
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
364 B (364 bytes)
Hash
e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET /landings/210094/1665074482/images/ico_gray1.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: kdIINfQcDqdpUVsE3WFIOhv7Prh6SoMP4MKZHnKRPI81DM+Wm1optoGWewi+j+H/SYUcNmDt2gY=
x-amz-request-id: EVGRFGWXB2P9Z28W
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "e144c3378090087c8ce129a30cb6cb4e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 364
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/210094/1665074482/images/ring.gif

23.36.76.194

200 OK

315 B

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/ring.gif
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 30 x 29\012- data
Size
315 B (315 bytes)
Hash
c3b64d6515c79193f47b3f6780840578
0edb138e48313bbea641208092d9072cee89652e
275e633fe30013ed09ab33d46f668be82c19c93ed3c66485a5bef53d74eeaa89

HTTP Headers

GET /landings/210094/1665074482/images/ring.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: +i9iykDz2gTmfikl62UNQX1mjWgb7wn6p+T4KrGuHWxpgSU+tL4Qxr+O8KhmLiZjUbLtbENZDWE=
x-amz-request-id: 5HKTQB3HFT3ZAMZ6
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "c3b64d6515c79193f47b3f6780840578"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 315
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
2522b79b33ac6a817b0b23b4318a765c
cd8263aa08c67837a875c8735b5903409fa85d17
12ae9e93713f85ffc55f09f608aaa543a7b440627eb79ba7945743e7e3d9ef97

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Etag: "637cb9e4-118"
Server: ECS (amb/6BBC)
Content-Length: 278

cdn-adef.akamaized.net/landings/210094/1665074482/images/favicon.ico?t=20221123225830

23.36.76.194

200 OK

1.2 kB

URL HTTP/1.1
cdn-adef.akamaized.net/landings/210094/1665074482/images/favicon.ico?t=20221123225830
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
ff7441c3264d89023f376e5319dad793
1f0be835d947eb2de35d945ea5b9b92578a8cbd7
93130759a18703dcad5862bc2fd2973edf9ab7e48ba2c0b4cd4fcfaf832df223

HTTP Headers

GET /landings/210094/1665074482/images/favicon.ico?t=20221123225830 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: EcRJY/I6i2ov0oASvnYp6gT6YnB8Osrimg9bkiCBdHT8xF9c4eVVwrov94BVCv4Y0dkj+irnMKQ=
x-amz-request-id: HF2F7NX30QQ29VXZ
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "ff7441c3264d89023f376e5319dad793"
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 1150
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 23 Nov 2022 22:41:08 GMT
expires: Thu, 24 Nov 2022 00:41:08 GMT
cache-control: public, max-age=7200
age: 1043
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/j/collect?v=1&_v=j98&a=1047062857&t=pageview&_s=1&dl=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&ul=en-us&de=UTF-8&dt=McAfee%20Security&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1454788080&gjid=1157052097&cid=1715923993.1669244312&tid=UA-178924098-3&_gid=1524073499.1669244312&_r=1&gtm=2wgb90N4GRR3S&z=75511123

142.250.74.174

200 OK

1 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1047062857&t=pageview&_s=1&dl=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&ul=en-us&de=UTF-8&dt=McAfee%20Security&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1454788080&gjid=1157052097&cid=1715923993.1669244312&tid=UA-178924098-3&_gid=1524073499.1669244312&_r=1&gtm=2wgb90N4GRR3S&z=75511123
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?v=1&_v=j98&a=1047062857&t=pageview&_s=1&dl=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&ul=en-us&de=UTF-8&dt=McAfee%20Security&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1454788080&gjid=1157052097&cid=1715923993.1669244312&tid=UA-178924098-3&_gid=1524073499.1669244312&_r=1&gtm=2wgb90N4GRR3S&z=75511123 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: http://jjk.globalsecuritypc.site
date: Wed, 23 Nov 2022 22:58:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.globalsign.com/gseccovsslca2018

104.18.20.226

200 OK

938 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
938 B (938 bytes)
Hash
2edca3d5a439ca57e6ff736e6dccb24f
49839c925f406c0bd908d00aea276d9f66620f8a
dcb4aef86e4b5a7f0f3d898696696aafbbadb82bbce92eb9b146c2258ebc78eb

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 22:58:31 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 27 Nov 2022 19:46:00 GMT
ETag: "49839c925f406c0bd908d00aea276d9f66620f8a"
Last-Modified: Wed, 23 Nov 2022 19:46:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 403
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ed8294dd881bfa-OSL

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8069f5e67c25fc0b7388ba5d4decd8c9
64a85ba44c80ea206f4382f573c3d61e4f607ccf
7587cd04333ddf1cff15ae219cb8fca0618786a9fe4cee989975f4d50889e72a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

translate.googleapis.com/translate_static/css/translateelement.css

142.250.74.42

200 OK

3.6 kB

URL HTTP/2
translate.googleapis.com/translate_static/css/translateelement.css
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (18670)
Size
3.6 kB (3619 bytes)
Hash
897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0

HTTP Headers

GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 22:52:05 GMT
expires: Wed, 23 Nov 2022 23:52:05 GMT
cache-control: public, max-age=3600
age: 386
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mc.yandex.ru/metrika/tag.js

87.250.251.119

200 OK

73 kB

URL HTTP/2
mc.yandex.ru/metrika/tag.js
IP
87.250.251.119:0
ASN
#13238 YANDEX LLC

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Size
73 kB (73267 bytes)
Hash
1d79426653c3b55939eaec59a2ce8ef5
c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993

HTTP Headers

GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 73267
date: Wed, 23 Nov 2022 22:58:31 GMT
access-control-allow-origin: *
etag: "637b3777-11e33"
expires: Wed, 23 Nov 2022 23:58:31 GMT
last-modified: Mon, 21 Nov 2022 11:31:51 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.74.46

200 OK

27 kB

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
data
Size
27 kB (26641 bytes)
Hash
a22075f4d14641e32332950aa815b531
d6b1dee3da9ab746c8476732204e0fb2d3b289bc
f0ac6961603b4fedba83e89249c2000a71caed2022871c1a668780158b78ab78

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 23 Nov 2022 22:58:31 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+539; expires=Fri, 22-Nov-2024 22:58:31 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stormtrk.com/api/1.0/ping/pong?location=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D

172.67.69.203

200 OK

412 B

URL HTTP/2
stormtrk.com/api/1.0/ping/pong?location=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D
IP
172.67.69.203:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (456)
Size
412 B (412 bytes)
Hash
edc4cc3c8155cc06d7d07a5950a19bdc
861a48ce47ef8b0a8a05bfa634e9e46c3e6abd76
bc181f597cc859799d394a39e278edc728e4beabcf6bbc0f536f89defd38f66d

HTTP Headers

GET /api/1.0/ping/pong?location=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D HTTP/1.1
Host: stormtrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 23 Nov 2022 22:58:32 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8RNKLttDcLQoTswdnmDdIyGtJ%2FRCiKlzX6%2BC48tF9ChKl%2Bjkwzjsz2asCbQ1RKpfcWNVVHTSdf4wL7YdXX8yGsVBvst%2F5xbEjryQzEHZRmjOAvCsGL%2BLZf5raf6ZQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ed82941f0d0b55-OSL
content-encoding: br
X-Firefox-Spdy: h2

mc.yandex.ru/watch/84852946?wmode=7&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1364%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A509356164740%3Ahid%3A440766624%3Az%3A0%3Ai%3A20221123225831%3Aet%3A1669244312%3Ac%3A1%3Arn%3A350582251%3Arqn%3A1%3Au%3A1669244312171001557%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A60%2C35%2C52%2C2%2C-4%2C0%2C%2C1186%2C3%2C%2C%2C%2C1352%3Ans%3A1669244310044%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669244312%3At%3AMcAfee%20Security&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)

87.250.251.119

302 Found

407 B

URL HTTP/2
mc.yandex.ru/watch/84852946?wmode=7&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1364%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A509356164740%3Ahid%3A440766624%3Az%3A0%3Ai%3A20221123225831%3Aet%3A1669244312%3Ac%3A1%3Arn%3A350582251%3Arqn%3A1%3Au%3A1669244312171001557%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A60%2C35%2C52%2C2%2C-4%2C0%2C%2C1186%2C3%2C%2C%2C%2C1352%3Ans%3A1669244310044%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669244312%3At%3AMcAfee%20Security&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP
87.250.251.119:0
ASN
#13238 YANDEX LLC

File type
JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Size
407 B (407 bytes)
Hash
066aefbe982bccce4269aae211343e4f
8206e3257146498c7848a917918ce00f99ec5cee
b0e8b82c6e47ef359f702d517a772c467efdda30de819ba44dde44c2fa28522d

HTTP Headers

GET /watch/84852946?wmode=7&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1364%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A509356164740%3Ahid%3A440766624%3Az%3A0%3Ai%3A20221123225831%3Aet%3A1669244312%3Ac%3A1%3Arn%3A350582251%3Arqn%3A1%3Au%3A1669244312171001557%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A60%2C35%2C52%2C2%2C-4%2C0%2C%2C1186%2C3%2C%2C%2C%2C1352%3Ans%3A1669244310044%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669244312%3At%3AMcAfee%20Security&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: /watch/84852946/1?wmode=7&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1364%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A509356164740%3Ahid%3A440766624%3Az%3A0%3Ai%3A20221123225831%3Aet%3A1669244312%3Ac%3A1%3Arn%3A350582251%3Arqn%3A1%3Au%3A1669244312171001557%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A60%2C35%2C52%2C2%2C-4%2C0%2C%2C1186%2C3%2C%2C%2C%2C1352%3Ans%3A1669244310044%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669244312%3At%3AMcAfee%20Security&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 23 Nov 2022 22:58:32 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
set-cookie: yandexuid=2437279811669244312; Expires=Thu, 23-Nov-2023 22:58:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=2437279811669244312; Expires=Thu, 23-Nov-2023 22:58:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1928345121669244312; Path=/; SameSite=None; Secure
i=8Vve1b3DwoAxjQ+/wNuw/MP1Q1eHShF+Wntu79eJ7xnKjsS0JjCMJVr6Q1Ep+O+UybkFPims4mnJppR1yl6IzgImt4Q=; Expires=Sat, 20-Nov-2032 22:58:12 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1700780312.yc.1669244312#1700780312.yrts.1669244312#1700780312.yrtsi.1669244312; Expires=Thu, 23-Nov-2023 22:58:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:32 GMT
last-modified: Wed, 23-Nov-2022 22:58:32 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/images/branding/product/1x/translate_24dp.png

142.250.74.163

200 OK

846 B

URL HTTP/2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
846 B (846 bytes)
Hash
e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99

HTTP Headers

GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:04:42 GMT
expires: Thu, 23 Nov 2023 21:04:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 6830
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.163

200 OK

1.8 kB

URL HTTP/2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 22:31:54 GMT
expires: Thu, 23 Nov 2023 22:31:54 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 1598
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.stfilecamp.com/fp.min.js

205.185.216.42

200 OK

32 kB

URL HTTP/2
cdn.stfilecamp.com/fp.min.js
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
Unicode text, UTF-8 text, with very long lines (31370)
Size
32 kB (31705 bytes)
Hash
198f2f5b0a649f41fe890c59d37319aa
f24629687612889bb59f610df3879afcd766fb80
d2bc2cb800679f495a7731c105b2e2047965800515f98008867ab33edc940912

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fp.min.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 23 Nov 2022 22:58:32 GMT
cache-control: max-age=474
content-length: 31705
content-type: text/javascript
last-modified: Mon, 13 Jun 2022 11:23:14 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "198f2f5b0a649f41fe890c59d37319aa"
x-amz-request-id: tx00000000000006a6752ed-00637e9962-213dd56e-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1669244312.dop003.sk1.t,1669244312.cds258.sk1.hn,1669244312.cds237.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8529
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Wed, 23 Nov 2022 22:58:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8529
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Wed, 23 Nov 2022 22:58:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8529
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Wed, 23 Nov 2022 22:58:32 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F697d6334-d8f8-4a7f-9401-63ad6bab8f38.jpeg

34.120.237.76

200 OK

3.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F697d6334-d8f8-4a7f-9401-63ad6bab8f38.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.8 kB (3805 bytes)
Hash
3a939ef79a2ad8614e7d3362de0cfbd8
51e1751527dff72955ba62b2d9a2b92199dca31a
564e58dc2e0b2ea0fd67faa30cbf622c9271c1d1f26ae14eacb24c20b1473786

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F697d6334-d8f8-4a7f-9401-63ad6bab8f38.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3805
x-amzn-requestid: 629cde59-1260-40ff-923e-a1d91c6b7a5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvynGq5IAMFgoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9343-162460086ad3b77c4bccd4f2;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P2ppp0JJ91WlYtnebk5DmqJ7oSc1ZVMlIHWBu657Xsr-AxKjusqN1g==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:50:57 GMT
age: 4055
etag: "51e1751527dff72955ba62b2d9a2b92199dca31a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8748 bytes)
Hash
28381329eca6c426a8b05fcdef4aafcc
a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a
4fc8414d39bbaacb1e6575924bd0bbb9373d78b177022f7d3c6457829abffd06

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8748
x-amzn-requestid: 864da50a-44bb-4d20-b499-08c2a140871e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtENmoAMFqKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-2705cc956f2c2aa5535533b0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xT0IorkRpXysoYMnugcrV40YaAxoRPjLmkPcv1ElteP_-rNZ1c6fog==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:48:57 GMT
age: 4175
etag: "a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7589 bytes)
Hash
06c6e720bc9900b38e88cd72f739603e
22884cbc78622d6f78c1c3397c9b440946144a99
8675d08e6d8ae5bdedbc7c7ce647f8c6e72cc457917b4ed1856c50b11c2fe88b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5zH4qoAMF79Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZtjzvMh_vqVaOqm8xPfZ2EWGGl0X7Iv8GK40Z32EbKM4wk6tGPnlYA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:27:21 GMT
age: 1871
etag: "22884cbc78622d6f78c1c3397c9b440946144a99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11447 bytes)
Hash
e091109c8f54cf23b221d8d0a35d6914
a67bdea6358146f7de38d6be37e9f69a8edd5f22
362dc1665e27a4307a7ce832019a6e5e3d8edb0d18db084e4dc9dd026ea68df4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11447
x-amzn-requestid: fb600f6e-d936-4255-b79f-528d9cb8e729
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTEqyIAMFalg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-2bc3102e268ccdff7f960289;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mKjDkTbptvN8DvzCnw88-xjLOC6wi-72-rLF9Hp7yzCEBDVmJoHgIA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 07:26:09 GMT
age: 55943
etag: "a67bdea6358146f7de38d6be37e9f69a8edd5f22"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7993 bytes)
Hash
92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 4240
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dea5eab-be63-42c8-bad6-cf6b625f2084.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7632 bytes)
Hash
c3297aead753caaa06187c966d295823
d1ae75ccf04fa5f66f9ee88ac46014dd0d6f7008
8d7e1670c95439219e8a4af3c306b4ce50a6d8efeb00fc10709bf5981a00c753

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dea5eab-be63-42c8-bad6-cf6b625f2084.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7632
x-amzn-requestid: ce38bd20-c727-4c33-a339-a9f5eebd8b36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsFr9IAMFWbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-5aab88d66bbda34b06fa9c12;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0kj1HVlBauqyBnerS11-Id1e_P2fBM7wpDs2bpc9pjR0UNiB8rlwHw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:45:09 GMT
etag: "d1ae75ccf04fa5f66f9ee88ac46014dd0d6f7008"
content-type: image/jpeg
age: 4403
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/

23.36.76.194

302 Moved Temporarily

0 B

URL HTTP/1.1
cdn-adef.akamaized.net/
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET / HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-adef.akamaized.net/404
Date: Wed, 23 Nov 2022 22:58:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/404

23.36.76.194

404 Not Found

134 B

URL HTTP/1.1
cdn-adef.akamaized.net/404
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
134 B (134 bytes)
Hash
9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1

HTTP Headers

GET /404 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jjk.globalsecuritypc.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Wed, 23 Nov 2022 22:58:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=715006399&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2)

87.250.251.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=715006399&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2)
IP
87.250.251.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=715006399&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 24758
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:34 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:34 GMT
last-modified: Wed, 23-Nov-2022 22:58:34 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=192603330&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2)

87.250.251.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=192603330&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2)
IP
87.250.251.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=192603330&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:35 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:35 GMT
last-modified: Wed, 23-Nov-2022 22:58:35 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=885640883&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244316%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225836%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244316&t=gdpr(14)ti(2)

87.250.251.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=885640883&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244316%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225836%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244316&t=gdpr(14)ti(2)
IP
87.250.251.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=885640883&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244316%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225836%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244316&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 369
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:36 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:36 GMT
last-modified: Wed, 23-Nov-2022 22:58:36 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

cdn-adef.akamaized.net/

23.36.76.194

302 Moved Temporarily

0 B

URL HTTP/1.1
cdn-adef.akamaized.net/
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery		Scam - Fake AntiVirus

HTTP Headers

GET / HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-adef.akamaized.net/404
Date: Wed, 23 Nov 2022 22:58:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/404

23.36.76.194

404 Not Found

134 B

URL HTTP/1.1
cdn-adef.akamaized.net/404
IP
23.36.76.194:0
ASN
#20940 Akamai International B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
134 B (134 bytes)
Hash
9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1

HTTP Headers

GET /404 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jjk.globalsecuritypc.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Wed, 23 Nov 2022 22:58:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=3&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=621451709&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244318%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225838%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244318&t=gdpr(14)ti(2)

87.250.251.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=3&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=621451709&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244318%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225838%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244318&t=gdpr(14)ti(2)
IP
87.250.251.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/84852946?wmode=0&wv-part=3&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=621451709&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244318%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225838%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244318&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 601
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:38 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:38 GMT
last-modified: Wed, 23-Nov-2022 22:58:38 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/84852946?wv-check=5771&wv-type=0&wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=777477393&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)

87.250.251.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/84852946?wv-check=5771&wv-type=0&wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=777477393&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)
IP
87.250.251.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/84852946?wv-check=5771&wv-type=0&wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=777477393&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:39 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:39 GMT
last-modified: Wed, 23-Nov-2022 22:58:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=881574328&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)

87.250.251.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=881574328&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)
IP
87.250.251.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=881574328&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:39 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:39 GMT
last-modified: Wed, 23-Nov-2022 22:58:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=4&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=851147885&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)

87.250.251.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=4&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=851147885&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)
IP
87.250.251.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

POST /webvisor/84852946?wmode=0&wv-part=4&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=851147885&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 423
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:39 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:39 GMT
last-modified: Wed, 23-Nov-2022 22:58:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP