jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
200 OK 42 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (504)
Hash 2856548c13807731a345bb312ef40764
a0d5aa1183b88394fcb5ce5ee42beb61e2f0048a
90081ba95630a4a68197e3e098425b679cf61744410758445b639952a087d460
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:20 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 41811
Content-Type: text/html
X-HW: 1674380660.dop002.sk1.t,1674380660.cds003.sk1.p
x-rgw-object-type: Normal
etag: "2856548c13807731a345bb312ef40764"
x-amz-request-id: tx000000000000002ebf196-0063cd0574-364b0543-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:52 GMT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8997fa58a7262e8fd559d64b40511a1b
0aa1c4365c28f45e4d7a8a234fbcf51cd009e083
1580d1145f125c765e40e5983cb4bb4e2424010d2920a25ea7da992485da0dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1580D1145F125C765E40E5983CB4BB4E2424010D2920A25EA7DA992485DA0DEA"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5452
Expires: Sun, 22 Jan 2023 11:15:13 GMT
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2181
Expires: Sun, 22 Jan 2023 10:20:42 GMT
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13065
Expires: Sun, 22 Jan 2023 13:22:06 GMT
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QJWzEmwbr6WJOluRFaM7Rve9PAKU8S7VqvtjsrTlQ99BYA0P9PC8jzPS+u8V12oSb9IsP1WhHtU=
x-amz-request-id: EQ579PW3Y5H24KJW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 08:47:13 GMT
age: 3428
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 09:42:30 GMT
content-type: application/json
age: 111
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 09:44:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c0f67edfa92ff11474d17ad3160ed43e
a43cc627d3c9258bdbe14ff3ceeed1c98496ff50
309dea4b94ceda4ec43c2f944cdfad61434c96eaafd172bc55c39545f3bf5a1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 09:44:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-72791200-1
200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-72791200-1
IP
File type ASCII text, with very long lines (1921)
Hash e3af1cddfc2a4d18e96aa629d6620383
c3ff448001f45867432351133b265b841134ce3f
c35430f6925d3f844634684092db74a6e8c50f279646e05c2529fe5bb04130cb
GET /gtag/js?id=UA-72791200-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 22 Jan 2023 09:44:21 GMT
expires: Sun, 22 Jan 2023 09:44:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44987
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/lw35tnt573424236tjh665.us.css
200 OK 12 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/lw35tnt573424236tjh665.us.css
IP
File type ASCII text, with CRLF line terminators
Hash 31fa8c40f6852c6f77676a241dd9d26e
12160e92eebf846280bdd483f2cd8630eecdf5fb
733b181fd322493d5a99f4d05e17fc4b1b29e8e0dea3a226c8498f38587b3640
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/lw35tnt573424236tjh665.us.css HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 12097
Content-Type: text/css
X-HW: 1674380661.dop012.sk1.t,1674380661.cds016.sk1.p
x-rgw-object-type: Normal
etag: "31fa8c40f6852c6f77676a241dd9d26e"
x-amz-request-id: tx000000000000002ebf2a3-0063cd0575-364b0543-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:53 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/cdnjs.cloudflare.com/ajax/libs/froala-editor/2.8.5/css/froala_style.min.css
200 OK 7.2 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/cdnjs.cloudflare.com/ajax/libs/froala-editor/2.8.5/css/froala_style.min.css
IP
File type ASCII text, with very long lines (7048)
Hash 8d4fba5186f02a0c4458986b0cf91667
785579011ecdda9e4754ca41649fa2fc06453b52
1cfc73a6db9523c12b6b7f5d009bed19c8799eed001f607bd891a1fd838b7739
GET /Amtoerstoe0-stopperser/cdnjs.cloudflare.com/ajax/libs/froala-editor/2.8.5/css/froala_style.min.css HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 7208
Content-Type: text/css
X-HW: 1674380661.dop231.sk1.t,1674380661.cds220.sk1.p
x-rgw-object-type: Normal
etag: "8d4fba5186f02a0c4458986b0cf91667"
x-amz-request-id: tx00000000000003878b2ee-0063cd0575-3341b9b4-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:49 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/487er86s4dhjurtyh.us.js
200 OK 11 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/487er86s4dhjurtyh.us.js
IP
File type HTML document, ASCII text, with very long lines (11084), with no line terminators
Hash 65f1d21d5fcc9d21da758adababd0c3c
e0661d07d64c00008bc9d013d16eec0a0f156dc7
d2b82e612d2a812e8be2a57300dab8923c4f2edbe7a799e7da70791b595646fe
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/487er86s4dhjurtyh.us.js HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 11084
Content-Type: text/javascript
X-HW: 1674380661.dop014.sk1.t,1674380661.cds239.sk1.p
x-rgw-object-type: Normal
etag: "65f1d21d5fcc9d21da758adababd0c3c"
x-amz-request-id: tx000000000000002ebf2b0-0063cd0575-364b0543-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:49 GMT
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c0f67edfa92ff11474d17ad3160ed43e
a43cc627d3c9258bdbe14ff3ceeed1c98496ff50
309dea4b94ceda4ec43c2f944cdfad61434c96eaafd172bc55c39545f3bf5a1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 09:44:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/pyrtrr53423hgh3267hho6454g.us.css
200 OK 28 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/pyrtrr53423hgh3267hho6454g.us.css
IP
File type ASCII text, with very long lines (27531)
Hash 0c64f092c5b7f3eead247972521c3c40
d2cd14c1bf77abe5e13b14d4b92e7b2bc0c32008
13a9dae9dac12642eb4a7c5fc9fe2f9b5c2efd408d14a8cbb66fdb66e36d8cd8
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/pyrtrr53423hgh3267hho6454g.us.css HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 27694
Content-Type: text/css
X-HW: 1674380661.dop023.sk1.t,1674380661.cds246.sk1.p
x-rgw-object-type: Normal
etag: "0c64f092c5b7f3eead247972521c3c40"
x-amz-request-id: tx00000000000001b6fad1b-0063cd0575-34e484cb-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:53 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/uodf5wer75sdf7er5.us.css
200 OK 161 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/uodf5wer75sdf7er5.us.css
IP
File type ASCII text, with very long lines (65326)
Size 161 kB (161409 bytes)
Hash d432e4222814b62dd30c9513dcc29440
2cac4afc120983921411296bd4e8fd8a94ba237e
4ffcc598ee6cff4692c1cea272cd8a2f195f6dec32473e94370d6cdcfa5fe601
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/uodf5wer75sdf7er5.us.css HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 161409
Content-Type: text/css
X-HW: 1674380661.dop002.sk1.t,1674380661.cds247.sk1.p
x-rgw-object-type: Normal
etag: "d432e4222814b62dd30c9513dcc29440"
x-amz-request-id: tx00000000000001b6fad16-0063cd0575-34e484cb-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:55 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/3kf38tnbxa2568thb.us.js
200 OK 84 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/3kf38tnbxa2568thb.us.js
IP
File type ASCII text, with very long lines (32180)
Hash 7f9fb969ce353c5d77707836391eb28d
62c4042e9ebc691a5372d653b424512a561d1670
2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/3kf38tnbxa2568thb.us.js HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 84355
Content-Type: text/javascript
X-HW: 1674380661.dop206.sk1.t,1674380661.cds203.sk1.p
x-rgw-object-type: Normal
etag: "7f9fb969ce353c5d77707836391eb28d"
x-amz-request-id: tx000000000000002ebf2ad-0063cd0575-364b0543-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:50 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/sd54er75fge8r5.us.js
200 OK 245 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/sd54er75fge8r5.us.js
IP
File type ASCII text, with CRLF line terminators
Hash 62f519fe72808a3ec681392b7ff47417
2ee16112e35feb9d6d48ae0f4e66187514dec811
43703d37b8fe2769cb2e12db7aa281dbcca175124d05ff4b0cc3d152534698a4
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/sd54er75fge8r5.us.js HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 245
Content-Type: text/javascript
X-HW: 1674380661.dop231.sk1.t,1674380661.cds237.sk1.p
x-rgw-object-type: Normal
etag: "62f519fe72808a3ec681392b7ff47417"
x-amz-request-id: tx00000000000003590e934-0063cd0575-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:55 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/fsd5ewr4dfg5r.us.js
200 OK 1.4 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/fsd5ewr4dfg5r.us.js
IP
File type ASCII text, with CRLF line terminators
Hash 2c392a80bf51431fa7079f3ec4a1ca2c
5919096030109019e5ad797d38a0ac690d43f541
ac176ef5a4593bc6ed71dc46823743757e5c821e19cdff117ae3a2cb14d5db80
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/fsd5ewr4dfg5r.us.js HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 1374
Content-Type: text/javascript
X-HW: 1674380661.dop023.sk1.t,1674380661.cds262.sk1.p
x-rgw-object-type: Normal
etag: "2c392a80bf51431fa7079f3ec4a1ca2c"
x-amz-request-id: tx00000000000003590e93b-0063cd0575-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:51 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/df5ret4gfh8gf15t4ret.us.js
200 OK 366 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/df5ret4gfh8gf15t4ret.us.js
IP
File type ASCII text, with CRLF line terminators
Hash 87c2dc3aeb373ca8445f7410ef387689
688f4be3cfb8688b4441f382724495a7b82b3f62
31681779c6f394370dad146169896e9ec2b8f7c716c4b1db78c459033e48bf95
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/df5ret4gfh8gf15t4ret.us.js HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 366
Content-Type: text/javascript
X-HW: 1674380661.dop014.sk1.t,1674380661.cds009.sk1.p
x-rgw-object-type: Normal
etag: "87c2dc3aeb373ca8445f7410ef387689"
x-amz-request-id: tx000000000000002ebf2ff-0063cd0575-364b0543-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:51 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/dd34gy654tt45.us.js
200 OK 84 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/dd34gy654tt45.us.js
IP
File type ASCII text, with very long lines (65299)
Hash f81d0a1705048649befc8b595e455a94
aec551e4d573463088fca7d14fb644eb389f1839
b0212543cc5a4a0a31c1b5a9d1e8973261992116b4cfde3e7dfcf33b4e81a97b
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/dd34gy654tt45.us.js HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 84378
Content-Type: text/javascript
X-HW: 1674380661.dop012.sk1.t,1674380661.cds238.sk1.p
x-rgw-object-type: Normal
etag: "f81d0a1705048649befc8b595e455a94"
x-amz-request-id: tx000000000000002ebf2e9-0063cd0575-364b0543-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:50 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/ddfsd34yh543wg68k67.us.png
200 OK 349 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/ddfsd34yh543wg68k67.us.png
IP
File type PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data
Hash 7454c652e0733d92de6c920c2d646ae0
34a5bd8c7401f95e346895b0e5ccffbf0e9ad638
44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/ddfsd34yh543wg68k67.us.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 349
Content-Type: image/png
X-HW: 1674380661.dop206.sk1.t,1674380661.cds240.sk1.p
x-rgw-object-type: Normal
etag: "7454c652e0733d92de6c920c2d646ae0"
x-amz-request-id: tx00000000000003590e95a-0063cd0575-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:51 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/43er453e3443e5tty.us.js
200 OK 503 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/43er453e3443e5tty.us.js
IP
File type ASCII text, with CRLF line terminators
Hash cd6c33fbc221d0271c910af910e6ebed
9b52f24d6f10b885bb19db1c4b531469f96d2914
318698ae5e67c32550d6b40ac09848d598f6317f51a8f09638ba925f6e7cc479
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/43er453e3443e5tty.us.js HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 503
Content-Type: text/javascript
X-HW: 1674380661.dop002.sk1.t,1674380661.cds013.sk1.p
x-rgw-object-type: Normal
etag: "cd6c33fbc221d0271c910af910e6ebed"
x-amz-request-id: tx00000000000001b6fad9b-0063cd0575-34e484cb-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:49 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/c70944522155d3f4511c67a004d3d7bd.static.png
403 Forbidden 237 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/c70944522155d3f4511c67a004d3d7bd.static.png
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash e4193ab0fb045a8b57039a25957b9325
7512e546fa744d424bd40350d9cf7dabd043a021
a741fba61a564d955da6d5c9566dcbc5f64994c9a6d02c728b734f2e0d65590d
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/c70944522155d3f4511c67a004d3d7bd.static.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 403 Forbidden
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Length: 237
Content-Type: application/xml
X-HW: 1674380661.dop231.sk1.t,1674380661.cds231.sk1.p
x-amz-request-id: tx00000000000003878b386-0063cd0575-3341b9b4-ams3c
cache-control: max-age=60
strict-transport-security: max-age=15552000; includeSubDomains; preload
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/d9f600fb777b0180c97c9da73d30df95.static.jpg
403 Forbidden 237 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/d9f600fb777b0180c97c9da73d30df95.static.jpg
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 38e2585e940d4d0ea93f323e3d66f689
833060f4daf335d3311b95533bd8996d35437e02
a137254ddcae46625f781bdfd2dae540c631ad8cb51be29de9a34c23c8192b68
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/d9f600fb777b0180c97c9da73d30df95.static.jpg HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 403 Forbidden
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Length: 237
Content-Type: application/xml
X-HW: 1674380661.dop014.sk1.t,1674380661.cds216.sk1.p
x-amz-request-id: tx000000000000002ebf346-0063cd0575-364b0543-ams3c
cache-control: max-age=60
strict-transport-security: max-age=15552000; includeSubDomains; preload
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/sfr345ygt755erf34t.us.png
200 OK 1.0 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/sfr345ygt755erf34t.us.png
IP
File type PNG image data, 47 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash bf2b460590fbb9d8e9611a6e9006b816
561e1dab259d61e798b3ce380527b71b61074ff3
ee4bc5fe81fa7c1e8497d79c9c8a96485df217092d334e9b48fa8840fed11d03
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/sfr345ygt755erf34t.us.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 1045
Content-Type: image/png
X-HW: 1674380661.dop012.sk1.t,1674380661.cds226.sk1.p
x-rgw-object-type: Normal
etag: "bf2b460590fbb9d8e9611a6e9006b816"
x-amz-request-id: tx00000000000003590e993-0063cd0575-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:55 GMT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 08:48:58 GMT
age: 3323
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/a5ef5882bf9aa2d842b415ad49125195.static.png
403 Forbidden 237 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/a5ef5882bf9aa2d842b415ad49125195.static.png
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 1470291b4e1af94e14179cc17da1ebeb
f4c28f646bf8904e75779ca026cc23e72dd39b4d
c24934d2a66b73d2cb8e0a72dfa6e13847b3ca63369e60e75c1cd3d7c1d64749
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/a5ef5882bf9aa2d842b415ad49125195.static.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 403 Forbidden
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Length: 237
Content-Type: application/xml
X-HW: 1674380661.dop206.sk1.t,1674380661.cds228.sk1.p
x-amz-request-id: tx00000000000003878b3ac-0063cd0575-3341b9b4-ams3c
cache-control: max-age=60
strict-transport-security: max-age=15552000; includeSubDomains; preload
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/9f7fc6e2b93a5d8847dfc29ce50c16ba.static.png
403 Forbidden 237 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/9f7fc6e2b93a5d8847dfc29ce50c16ba.static.png
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 5124e852c1707dd8c46d1a86c22f57b9
432a25a3d561535cb1ceec47a6c079a0a3dfd49a
46fd9cd9ed85698e0b60223af726b28287c09bbbd8655b6c0fc32d49086bff56
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/9f7fc6e2b93a5d8847dfc29ce50c16ba.static.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 403 Forbidden
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Length: 237
Content-Type: application/xml
X-HW: 1674380661.dop002.sk1.t,1674380661.cds205.sk1.p
x-amz-request-id: tx00000000000003590e9bc-0063cd0575-337c55b3-ams3c
cache-control: max-age=60
strict-transport-security: max-age=15552000; includeSubDomains; preload
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/cffg3yh443289tghkrfs2w36ty.us.png
200 OK 606 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/cffg3yh443289tghkrfs2w36ty.us.png
IP
File type PNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced\012- data
Size 606 kB (605621 bytes)
Hash b5e4f6810697e4324b909bc88945473f
78388667f9b3b7a50bbdc4d07c5ab06c22b53c29
1b3c01ab939e1b2429802fdd7350780229c73c72d57a2846e6b00afdc1108d7b
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/cffg3yh443289tghkrfs2w36ty.us.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:21 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 605621
Content-Type: image/png
X-HW: 1674380661.dop023.sk1.t,1674380661.cds211.sk1.p
x-rgw-object-type: Normal
etag: "b5e4f6810697e4324b909bc88945473f"
x-amz-request-id: tx00000000000003590e98d-0063cd0575-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:51 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/e34f0938394b8b80440f51e73a675ba6.static.png
403 Forbidden 237 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/e34f0938394b8b80440f51e73a675ba6.static.png
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 6fc489287608c0452e2accf786130b03
6c7a3e414db1ceb6381c39166e991e2b34f0c968
a324f2ea81432ede9e09191c26f704391f91d93a87c1ceafac39ba7ac7a4fe3f
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/e34f0938394b8b80440f51e73a675ba6.static.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 403 Forbidden
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Length: 237
Content-Type: application/xml
X-HW: 1674380661.dop231.sk1.t,1674380662.cds024.sk1.p
x-amz-request-id: tx000000000000002ebf396-0063cd0576-364b0543-ams3c
cache-control: max-age=60
strict-transport-security: max-age=15552000; includeSubDomains; preload
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/j093jdgh38rhdgf2w85.us.png
200 OK 1.1 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/j093jdgh38rhdgf2w85.us.png
IP
File type PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash a3555871399f1f67bfacaf437974b03a
b6337de87cd7a75a73cd804774651d14c83fe76a
2e48fef820929c21295e13444901f60e3aed61ba6f8c773ff1466e6843e76b49
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/j093jdgh38rhdgf2w85.us.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 1108
Content-Type: image/png
X-HW: 1674380661.dop012.sk1.t,1674380662.cds225.sk1.p
x-rgw-object-type: Normal
etag: "a3555871399f1f67bfacaf437974b03a"
x-amz-request-id: tx00000000000003590e9d6-0063cd0576-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:52 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/090be3314833838464fe5a8557f6abec.static.png
403 Forbidden 237 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/090be3314833838464fe5a8557f6abec.static.png
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash c7b030196b3f1308387ac32467858f5a
0f87368435abc018f2ea03b108d72f479db115ad
b7795cf6a22e80b392da82f4a3021d3ed84a9c250f674912409334a2a262cb9e
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/090be3314833838464fe5a8557f6abec.static.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 403 Forbidden
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Length: 237
Content-Type: application/xml
X-HW: 1674380661.dop014.sk1.t,1674380662.cds223.sk1.p
x-amz-request-id: tx00000000000001b6fae06-0063cd0576-34e484cb-ams3c
cache-control: max-age=60
strict-transport-security: max-age=15552000; includeSubDomains; preload
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/wa0lDErtm0s.mp3
403 Forbidden 237 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/wa0lDErtm0s.mp3
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash ac15878b23c225c3ba8c14e858d5b1f8
5f93da83c3197faf8b507fde5cdcb8644bf7f1db
983f4f0f15d5eaa219ba3c1db0ce56ce189f403ec1541679a588185a36098ad8
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/wa0lDErtm0s.mp3 HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
Cookie: _ga_VQPRN2PLLM=GS1.1.1674380660.1.0.1674380660.0.0.0; _ga=GA1.1.1577777536.1674380661
HTTP/1.1 403 Forbidden
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Length: 237
Content-Type: application/xml
X-HW: 1674380661.dop206.sk1.t,1674380662.cds066.sk1.p
x-amz-request-id: tx000000000000002ebf3af-0063cd0576-364b0543-ams3c
cache-control: max-age=60
strict-transport-security: max-age=15552000; includeSubDomains; preload
ocsp.digicert.com/
200 OK 471 B IP
Hash fc96297d0b59147e8f6052b16f1ca13f
23aeddfa143bb9be19b2ed06f2024a3a8aa120ce
034327c6ada560c662f451f3c95cd8531482d4ab51629e95875fab54c8f3e49a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4740
Cache-Control: max-age=88886
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 09:44:22 GMT
Etag: "63cbab28-1d7"
Expires: Mon, 23 Jan 2023 10:25:48 GMT
Last-Modified: Sat, 21 Jan 2023 09:06:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/06tutffdcv35hjy5534f3457.us.png
200 OK 3.8 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/06tutffdcv35hjy5534f3457.us.png
IP
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 77a2ffc5545f87551d74781201de9b3b
c9c3798afd2ae95aa3bba3c428335d49c8255b06
316e6a6737bd296ab30aca2ef7fa36f119d15786a2432d01e31fdc130272f15c
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/06tutffdcv35hjy5534f3457.us.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 3834
Content-Type: image/png
X-HW: 1674380662.dop002.sk1.t,1674380662.cds236.sk1.p
x-rgw-object-type: Normal
etag: "77a2ffc5545f87551d74781201de9b3b"
x-amz-request-id: tx00000000000003590ea0b-0063cd0576-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:49 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/r3uyfn48rhjfgh2394fd.us.png
200 OK 4.9 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/r3uyfn48rhjfgh2394fd.us.png
IP
File type PNG image data, 166 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash cc5132b56ba46b03dd998aa1fe220106
403e007a0b17d76a9945fa5ec46a9d01733b3040
598699133be5eef63e3b9b5540609ec0dc91d7af9c7f70a3b890e57491a70ae0
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/r3uyfn48rhjfgh2394fd.us.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 4949
Content-Type: image/png
X-HW: 1674380662.dop014.sk1.t,1674380662.cds252.sk1.p
x-rgw-object-type: Normal
etag: "cc5132b56ba46b03dd998aa1fe220106"
x-amz-request-id: tx000000000000002ebf3ea-0063cd0576-364b0543-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:53 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/l93jdfvhbw3745hd512huje4ef.us.jpg
200 OK 2.2 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/l93jdfvhbw3745hd512huje4ef.us.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 180x39, components 3\012- data
Hash 1ba392dce74f8987dca48bf65d817c8f
db0b8444c46125105b52f272bd422a7f52da1f72
a05245b6f7fd752af4a7b0131bbdfdf3eaee6c5a25a81cb498e0f0759189473c
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/l93jdfvhbw3745hd512huje4ef.us.jpg HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 2247
Content-Type: image/jpeg
X-HW: 1674380662.dop012.sk1.t,1674380662.cds209.sk1.p
x-rgw-object-type: Normal
etag: "1ba392dce74f8987dca48bf65d817c8f"
x-amz-request-id: tx00000000000003590ea29-0063cd0576-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:52 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/dsf23134tr4566h.us.png
200 OK 364 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/dsf23134tr4566h.us.png
IP
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/dsf23134tr4566h.us.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 364
Content-Type: image/png
X-HW: 1674380662.dop231.sk1.t,1674380662.cds015.sk1.p
x-rgw-object-type: Normal
etag: "e144c3378090087c8ce129a30cb6cb4e"
x-amz-request-id: tx00000000000003878b434-0063cd0576-3341b9b4-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:51 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/6hjduier734hfi745rf.mo.png
200 OK 44 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/6hjduier734hfi745rf.mo.png
IP
File type PNG image data, 2080 x 2080, 8-bit/color RGBA, non-interlaced\012- data
Hash 4487a588bf2a07e3d1936d705c5ceefd
db193b3e2ab9fbee6eae99ced2366b1ef5f16971
3821ef20f5904fdb993e34d87ff8fb9c5786a382efb0eeee8b4f00c91428b701
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/6hjduier734hfi745rf.mo.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 44098
Content-Type: image/png
X-HW: 1674380662.dop002.sk1.t,1674380662.cds247.sk1.p
x-rgw-object-type: Normal
etag: "4487a588bf2a07e3d1936d705c5ceefd"
x-amz-request-id: tx00000000000003878b42a-0063cd0576-3341b9b4-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:49 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/0werihfu3h48ehfu34.us.jpg
200 OK 8.2 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/0werihfu3h48ehfu34.us.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 254x71, components 3\012- data
Hash 5fc559a242f0ea0a023f10830887d2af
9d744c2f3a6bf5b715496350c8de7124cdd7ddc8
3b531d403dc8ce7cbb0efb1a0c307cfb2bbaaf21feaff9f3546f13bebda71887
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/0werihfu3h48ehfu34.us.jpg HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 8196
Content-Type: image/jpeg
X-HW: 1674380662.dop014.sk1.t,1674380662.cds066.sk1.p
x-rgw-object-type: Normal
etag: "5fc559a242f0ea0a023f10830887d2af"
x-amz-request-id: tx00000000000003590ea3c-0063cd0576-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:49 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/h9jet523jhd9023hfr56d.us.png
200 OK 26 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/h9jet523jhd9023hfr56d.us.png
IP
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c497dfff84bd8c5af9254c9d6278ce1
667e72e7ba6f00a54629e28133317022d4b59af6
b2dc4153ee7019c70a1095d5d1304d540e3bba045d99e141f63e5b13362e5a4e
Analyzer Verdict Alert urlquery fraud Fraud - Fake AntiVirus / Security software
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/h9jet523jhd9023hfr56d.us.png HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 25871
Content-Type: image/png
X-HW: 1674380662.dop206.sk1.t,1674380662.cds208.sk1.p
x-rgw-object-type: Normal
etag: "2c497dfff84bd8c5af9254c9d6278ce1"
x-amz-request-id: tx00000000000003590ea3f-0063cd0576-337c55b3-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:52 GMT
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zOnPlfJr0TBSErKhNlefTQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6iThDnYEcP8dS0zOnmr0bCDo3rw=
region1.google-analytics.com/g/collect?v=2&tid=G-VQPRN2PLLM>m=2oe1i0&_p=202517016&cid=1577777536.1674380661&ul=en-us&sr=1280x1024&_s=1&sid=1674380660&sct=1&seg=0&dl=http%3A%2F%2Fjaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com%2FAmtoerstoe0-stopperser%2Froofo-oft-moer-783%2Fmonitroer-of-statier%2Findexlsmr324.html&dt=&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-VQPRN2PLLM>m=2oe1i0&_p=202517016&cid=1577777536.1674380661&ul=en-us&sr=1280x1024&_s=1&sid=1674380660&sct=1&seg=0&dl=http%3A%2F%2Fjaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com%2FAmtoerstoe0-stopperser%2Froofo-oft-moer-783%2Fmonitroer-of-statier%2Findexlsmr324.html&dt=&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VQPRN2PLLM>m=2oe1i0&_p=202517016&cid=1577777536.1674380661&ul=en-us&sr=1280x1024&_s=1&sid=1674380660&sct=1&seg=0&dl=http%3A%2F%2Fjaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com%2FAmtoerstoe0-stopperser%2Froofo-oft-moer-783%2Fmonitroer-of-statier%2Findexlsmr324.html&dt=&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
date: Sun, 22 Jan 2023 09:44:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 22 Jan 2023 08:41:07 GMT
expires: Sun, 22 Jan 2023 10:41:07 GMT
cache-control: public, max-age=7200
age: 3795
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
luckybucky.blob.core.windows.net/fonts/fontawesome-webfont.woff2?v=4.5.0
404 The specified resource does not exist. 223 B URL HTTP/1.1 luckybucky.blob.core.windows.net/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash a62cbea35b043f1f1f742ed5b3e9cc8f
58be3b8cfae3adefa09c88efb4b442a4090ae3bd
9133a0fbd835d2798c95bd7f9ff5d399600c6f254bcc18f68a5b52f7518c29df
GET /fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: luckybucky.blob.core.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 The specified resource does not exist.
Content-Length: 223
Content-Type: application/xml
Server: Blob Service Version 1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d4f64b77-201e-000d-0c46-2e3852000000
Date: Sun, 22 Jan 2023 09:44:21 GMT
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/favicon.ico
403 Forbidden 237 B URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/favicon.ico
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 3cad5e070b0ce349467cc37655b9da27
4ae80510db75fee02bfe2b726b018bbc161d016b
5b1c02199a8506e4d452bba8db85dfbdc3b2a913e3c64a7f03d101701463637c
GET /favicon.ico HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
Cookie: _ga_VQPRN2PLLM=GS1.1.1674380660.1.0.1674380660.0.0.0; _ga=GA1.1.1577777536.1674380661
HTTP/1.1 403 Forbidden
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Length: 237
Content-Type: application/xml
X-HW: 1674380662.dop012.sk1.t,1674380662.cds212.sk1.p
x-amz-request-id: tx00000000000003878b4ef-0063cd0576-3341b9b4-ams3c
cache-control: max-age=60
strict-transport-security: max-age=15552000; includeSubDomains; preload
luckybucky.blob.core.windows.net/fonts/fontawesome-webfont.woff?v=4.5.0
404 The specified resource does not exist. 223 B URL HTTP/1.1 luckybucky.blob.core.windows.net/fonts/fontawesome-webfont.woff?v=4.5.0
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash d3b5f05d7d6c90ce30b5324fcaba5a7c
9e63276b35447786726a4b0019c7b13bd2373fef
2d0a9440724c9bcb3cb108bb4cf115d55180f5eea301267db87578abfce30610
GET /fonts/fontawesome-webfont.woff?v=4.5.0 HTTP/1.1
Host: luckybucky.blob.core.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 The specified resource does not exist.
Content-Length: 223
Content-Type: application/xml
Server: Blob Service Version 1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d4f64c10-201e-000d-1c46-2e3852000000
Date: Sun, 22 Jan 2023 09:44:21 GMT
luckybucky.blob.core.windows.net/fonts/fontawesome-webfont.ttf?v=4.5.0
404 The specified resource does not exist. 223 B URL HTTP/1.1 luckybucky.blob.core.windows.net/fonts/fontawesome-webfont.ttf?v=4.5.0
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 (with BOM) text
Hash 7f6f51807b9066f7e9097fd1ee49d066
52a2c9201a1e7cf728703bc90378bd1a201b3365
3aadc7b8b19b999995bb459fbe1867674f79891c5969015ec7f57340f0bdc966
GET /fonts/fontawesome-webfont.ttf?v=4.5.0 HTTP/1.1
Host: luckybucky.blob.core.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 The specified resource does not exist.
Content-Length: 223
Content-Type: application/xml
Server: Blob Service Version 1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d4f64c9c-201e-000d-2446-2e3852000000
Date: Sun, 22 Jan 2023 09:44:21 GMT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6433
Expires: Sun, 22 Jan 2023 11:31:36 GMT
Date: Sun, 22 Jan 2023 09:44:23 GMT
Connection: keep-alive
jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/Gelingenr.mp3
206 Partial Content 122 kB URL HTTP/1.1 jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/Gelingenr.mp3
IP
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo\012- data
Size 122 kB (121882 bytes)
Hash c3f79017004cae431c5cd4499d453bdd
93c47d1a3c96c233d776f925857ad00b4415d6cf
7154933e0f22f68d65f0cf00e2f622f29ddee7e697672a68159b6119cc65c976
GET /Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/Gelingenr.mp3 HTTP/1.1
Host: jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://jaanbukhjlkar-rondart.ams3.cdn.digitaloceanspaces.com/Amtoerstoe0-stopperser/roofo-oft-moer-783/monitroer-of-statier/indexlsmr324.html
Cookie: _ga_VQPRN2PLLM=GS1.1.1674380660.1.0.1674380660.0.0.0; _ga=GA1.1.1577777536.1674380661
HTTP/1.1 206 Partial Content
Date: Sun, 22 Jan 2023 09:44:22 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=3600
Content-Length: 313386
Content-Range: bytes 0-313385/313386
Content-Type: audio/mpeg
X-HW: 1674380662.dop023.sk1.t,1674380662.cds020.sk1.p
x-rgw-object-type: Normal
etag: "842289d17bd03fb781cf0b251a810036"
x-amz-request-id: tx000000000000002ebf3f7-0063cd0576-364b0543-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
Last-Modified: Sun, 22 Jan 2023 09:24:52 GMT
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45b3e2b-1687-4d15-8241-c1b5422b7597.png
200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45b3e2b-1687-4d15-8241-c1b5422b7597.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc0cd46a7749f64fba19f6be5f2de43
67b9c7ba8702b695036e253a20ab7b86c1725143
afbb5f9024e0397977575099fdbfdb32f06521c20556cb0b03501d822d2cc8cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45b3e2b-1687-4d15-8241-c1b5422b7597.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 17237
x-amzn-requestid: 6c4b292b-633d-4063-8342-5022165de1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFObNH_eIAMFb0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb9114-5bf2228c7286c7fc3fc5dda4;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:15:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fvJtn3hDeRfp-0EcaTKl3rlCUZNEX6Kx-aAlRXQTL5ezw-oPfg90kg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 07:48:10 GMT
age: 6973
etag: "67b9c7ba8702b695036e253a20ab7b86c1725143"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RlbJymJhU6Ti5RZCSIvPzloackAiBEBGapKI440u4ZIfB5FYBNugLw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 03:24:49 GMT
age: 22774
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b9c3b02-6a9e-471d-9d0c-2b50255f00f9.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b9c3b02-6a9e-471d-9d0c-2b50255f00f9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54bb2c2439cbf0cefc3075f25576f161
e4e506d7acc877b266c18ae6da3b948e0d41bb1e
8cfef01c8eea67086fdea9865d760f9ed1ecc15dc42f3b2c94fc85d609a31aa2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b9c3b02-6a9e-471d-9d0c-2b50255f00f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9334
x-amzn-requestid: 23f9071b-5274-4c6a-9a4a-d63ea74c7483
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNWQETCoAMFdjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c27-393e62854ba77f783f142985;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BWc9_KsIp1FH10PJZFoIteQrb0Q8cfqRN8RiynsqbHyFUHhDCxwqIw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:06 GMT
age: 42977
etag: "e4e506d7acc877b266c18ae6da3b948e0d41bb1e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdc45398-1d4d-45ac-94a6-2cc6d910d8b8.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdc45398-1d4d-45ac-94a6-2cc6d910d8b8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 375f2cf298e45122ca727fb63f0e5ea7
eb746e6842127741552c7dcc48e8a92193ca3075
8b5e5432f69dad1428c3a735f7a0d07823658e03befc7b6e15f6f5c3306fbaa8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdc45398-1d4d-45ac-94a6-2cc6d910d8b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5196
x-amzn-requestid: 24221211-6673-4d7b-88de-2ef8c9a62f1b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNWRFPUIAMFf-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c27-286d3bb84ad3362d615479ed;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uSVzx-rzZIDLp55bKb-12pKjPUzRGih9sIupyPYRuDQasYa7JRnWoA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:52:07 GMT
etag: "eb746e6842127741552c7dcc48e8a92193ca3075"
content-type: image/jpeg
age: 42736
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb253a292-08cb-455a-bf4c-63bdca08af64.webp
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb253a292-08cb-455a-bf4c-63bdca08af64.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ec85cf23f6ed6a70e62e17998dfcede
2a690f14cf97f33da2c4f4b21c737a7ca37665b4
ae3cedd8f51f9ed2d996f1d75e7288802d68fa3c27d928934311e4d8821940cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb253a292-08cb-455a-bf4c-63bdca08af64.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7609
x-amzn-requestid: 86dec496-ff1b-4db8-9bcb-12275f6feeb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNkBGiOIAMFaCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c7f-16c24501673bc2161c1e8a3b;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EIRH5l-dSShdZbMvwSEE8jKooGny-prLtbXwx8ZNUi0Wfj4GItKV7g==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 22:08:36 GMT
age: 41747
etag: "2a690f14cf97f33da2c4f4b21c737a7ca37665b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
205.185.216.10
93.184.220.29
95.101.11.115
0.0.0.0