Report - ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/

Report Overview

Visited public
2023-12-05 18:06:34
Tags
fake_software scam
URL
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Finishing URL
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Title
Security-Center-Code0x268d3 Services-Er00ffError0Amr07
Scam - Fake AntiVirus / Security software

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-05 05:09:58	938 B	33 kB	104.17.25.14
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-05 05:10:30	1.1 kB	51 kB	151.101.193.229
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev	unknown	unknown	No data	No data	10 kB	1.4 MB	188.114.96.1
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-05 06:24:59	457 B	94 kB	142.250.74.104
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2023-12-05 05:18:59	1.1 kB	96 kB	104.18.10.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (21)

	URL	From	Size	First Seen	Last Seen
	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/light.js	ScriptElement	518 B	2023-07-16	2025-05-01
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/light.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-16 15:17 Last Seen2025-05-01 12:17 Times Seen32 Hash 6346d5752b4d65677191c43416cf73d8 4c2c3f827b891e4084d4cb36d2d36dcdae553b0d 66c877dcce287e72042eeeb29fa87210961b6949ccf0748a37c7e905109c2b0a Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	205 B	2023-12-05	2024-09-19
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-05 19:06 Last Seen2024-09-19 20:42 Times Seen5 Hash 5f29227b5f1ac1589688ccd3ce88b904 3ffe629074b8bdb8868309fd7b7c705ebc514964 f06e642f72b9f3c0e4a986712579cd770ca78c49713f565d7e9abae622a08f79 Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	945 B	2023-07-04	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-04 13:19 Last Seen2024-10-11 08:20 Times Seen29 Hash 83441ff9a8a214720804e2ca11fb8917 361184d4e2f1d8286cc43e8c48cb65fc50411fff 3a728d5b48ce921b4a4ea6912822a5fb24b85a235598feeca5d0e19c362426ca Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	557 B	2023-07-21	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-21 06:54 Last Seen2024-10-11 08:20 Times Seen21 Hash 7f63a3804d1141168732548077731cc6 58da79d922d735ecca1f7d5447176f6ed13a03fe 80902bc372f91f6a1eaa9824b4e0143ef7aeb60e35bc2edda86229d55fa45932 Loading...

	cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js	ScriptElement	84 kB	2023-03-07	2025-05-10
Pretty URL cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 00:33 Times Seen2435 Hash f81d0a1705048649befc8b595e455a94 aec551e4d573463088fca7d14fb644eb389f1839 b0212543cc5a4a0a31c1b5a9d1e8973261992116b4cfde3e7dfcf33b4e81a97b Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	490 B	2023-03-10	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 19:32 Last Seen2024-10-11 08:20 Times Seen20 Hash 15dbad7e2fa408f24237c052f523b667 401a044fb7c321bcf10d8763d469691015271d63 02b2266e246bc81c247176131ed679d3f0b122f112d4d261687ffbcb0c441e1c Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	4.2 kB	2023-12-05	2024-09-19
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-05 19:06 Last Seen2024-09-19 20:42 Times Seen5 Hash bd80041297f2c12bcc0e34ff43abf8e8 54ec3562275cb7e198f37c6bca133fd2499bf322 73f58936313df591a2aba8982d63c5fbee77c1e14b12edbd133239bfbedcb220 Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	316 B	2023-03-09	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 10:04 Last Seen2024-10-11 08:20 Times Seen20 Hash 1477f944c70649f644c4042f8378af40 d4105086e3301baefec09182f20a7b41e037779e 7f97ded847c6f96df9dae2c565c626b149c634677efdc09c9f6770ddf869309b Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/before.js	ScriptElement	303 B	2023-07-16	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/before.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-16 15:17 Last Seen2024-10-11 08:20 Times Seen13 Hash 7b2f50fcb5f7df5ea013c0045897b180 01e65d73806d73ed3668b1d6a7191d1dd3ef9b87 86bdd9c0dfcb81b72b88acfa8e000371d201f8927326c1aaca4a4fc43feebda4 Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	169 B	2023-07-16	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-16 15:17 Last Seen2024-10-11 08:20 Times Seen29 Hash f9ef56e23f2c57c73da462b57fb2176b 690e324c19f86156c4700ed5fa39d35edf1020a5 5c70eb0876de89048bef98136c3b0085f2e47bb89e015dcdf280f6b4ddd7d4c0 Loading...

	cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js	ScriptElement	11 kB	2023-03-07	2025-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 03:39 Times Seen2470 Hash 65f1d21d5fcc9d21da758adababd0c3c e0661d07d64c00008bc9d013d16eec0a0f156dc7 d2b82e612d2a812e8be2a57300dab8923c4f2edbe7a799e7da70791b595646fe Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/fullscreen.js	ScriptElement	223 B	2023-07-16	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/fullscreen.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-16 15:17 Last Seen2024-10-11 08:20 Times Seen13 Hash aac13a5b16fafc2f245d1d7821a88ad8 4f29ff0b7a10c26b760dcf04163e8c4ff882e66f 88357ab65fc6408b58be1d94e1ff9c603c27c4d3f4c2a810d1a48016eb616ca0 Loading...

	www.googletagmanager.com/gtag/js?id=G-4SJG885361	ScriptElement	281 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-4SJG885361 IP 142.250.74.104 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 19:06 Last Seen2023-12-05 19:06 Times Seen1 Hash 3b535503e2f8a744a8b69d79389f375e 7bb5159caac24f1d1ed18e240e5023a1f3b160c0 3c88f14481bd1c3e60db66ceb5d3fcee7c98964ff0cb964a68dc648ad9e5056c Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	295 B	2023-07-16	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-16 15:17 Last Seen2024-10-11 08:20 Times Seen29 Hash 05237b71c7a329d6c017e06bac09bb50 3a8e14b4e06e3ba68af94a4546d4d0a34e0f1331 75e365dad93a58078ba4abd253178051741e9e26acd76f8ecb1e3f97cadbda7b Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	837 B	2023-03-10	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 19:32 Last Seen2024-10-11 08:20 Times Seen22 Hash 6c6cc9047013c6263bd75d0077bf71bf 96ce36d3a3462a7497628583b8886b42d5b8a4e1 377aa49e6a60468b5025ac7cbaccab8cc7ddacbbdbb7b1118d2dc27f6ef82819 Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	101 B	2023-03-10	2024-10-11
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 19:32 Last Seen2024-10-11 08:20 Times Seen20 Hash b41746f7727e493d273a538a05f412da bc1722990e7d6a2fd2d05564d66b4599c91c948d e43830ded25f4d1bb27c4ada4f0f5d129913768e8e51f0ef33a955d5dcfd2a50 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-05-09
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-05-09 08:59 Times Seen6763 Hash 7f9fb969ce353c5d77707836391eb28d 62c4042e9ebc691a5372d653b424512a561d1670 2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515 Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	159 B	2023-03-09	2024-12-17
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 10:04 Last Seen2024-12-17 16:50 Times Seen74 Hash 3716910427b4cca41e1da257432b9793 e0b5c9ddb9d335dd5b8e50ccf12947eec1e46dd8 44bc2b1a5584bc722ed58658e432c510725527874ccfe1d43d06a062b1737422 Loading...

	unknown	EventHandler	19 B	2023-04-10	2025-05-09
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:23 Last Seen2025-05-09 00:49 Times Seen7862 Hash 57381d43f260aa3b8c47820ca38655a3 8d087b53d91f8e3ff0def7d1d94a6dada72fac79 35b90e4b54b87ed6cd2b439eac195f9eb59e731e17248c95fb1e26e15d61f943 Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/main.js	ScriptElement	1.4 kB	2023-12-05	2024-09-19
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/main.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 19:06 Last Seen2024-09-19 20:42 Times Seen5 Hash 5179c0a568de1dd38eff4e6e23059d96 52963bba629207c3ecead97c51eb11fb77bcd7d1 10ecdf2939fb57d0a5dcd2bb7b3547d182debcccf31109c66730a473aeb96fce Loading...

	ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/	ScriptElement	154 B	2023-03-09	2024-12-17
Pretty URL ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 10:04 Last Seen2024-12-17 16:50 Times Seen56 Hash d3817df387999518c26e2bc05fbad8ca 5d42b521cd9ac5a50dbaf09133bc4da3218b1793 8abf3ad630cbb69d9fd9c8d38ced51d2f606c2f52c899972d6221dc0c8faee25 Loading...

HTTP Transactions (27)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js

104.17.25.14

200 OK

27 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32180)
Size
27 kB (26660 bytes)
Hash
7f9fb969ce353c5d77707836391eb28d
62c4042e9ebc691a5372d653b424512a561d1670
2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515

HTTP Headers

GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: application/javascript; charset=utf-8
content-length: 26660
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-14983"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1006839
expires: Sun, 24 Nov 2024 18:06:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6vKsrorLIIWdNiQ5g8SP0kyaQ1QURw8oR0ZWB7riUGRf6vI%2B6dHEKHXwHbA7kXT6F9WA%2BrIdhaZLVedET6c1c2Jvrdek9IxMoJkj5azyGSG0xBxbo1YEqCBQAtYgeLSshV5gS0PV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 830e38d85df05687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js

104.17.25.14

200 OK

4.0 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (11084), with no line terminators
Size
4.0 kB (3980 bytes)
Hash
65f1d21d5fcc9d21da758adababd0c3c
e0661d07d64c00008bc9d013d16eec0a0f156dc7
d2b82e612d2a812e8be2a57300dab8923c4f2edbe7a799e7da70791b595646fe

HTTP Headers

GET /ajax/libs/modernizr/2.8.3/modernizr.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: application/javascript; charset=utf-8
content-length: 3980
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f26-2b4c"
last-modified: Mon, 04 May 2020 16:13:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 405004
expires: Sun, 24 Nov 2024 18:06:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r5TWGl8PvhRgSkUTj9VTuKT4DvUwAaHIi%2BbGrKwVbrDuad3KOmCrHmxki6AZ6loEDQDyN1wE5RZK1XMdOjJGUvS%2FR0mzHuVTc60TVPa8qToPAuGz8qKX%2FxJ8VBsb8IvZEiiQrJaC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 830e38d87e1a5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css

151.101.193.229

200 OK

26 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65326)
Size
26 kB (26291 bytes)
Hash
d432e4222814b62dd30c9513dcc29440
2cac4afc120983921411296bd4e8fd8a94ba237e
4ffcc598ee6cff4692c1cea272cd8a2f195f6dec32473e94370d6cdcfa5fe601

HTTP Headers

GET /npm/bootstrap@4.6.0/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Origin: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.6.0
x-jsd-version-type: version
etag: W/"27681-LKxK/BIJg5IUESlr1Oj9ipS6I34"
content-encoding: br
accept-ranges: bytes
date: Tue, 05 Dec 2023 18:06:16 GMT
age: 22759271
x-served-by: cache-fra-eddf8230111-FRA, cache-bma1636-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26291
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js

151.101.193.229

200 OK

23 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65299)
Size
23 kB (23377 bytes)
Hash
f81d0a1705048649befc8b595e455a94
aec551e4d573463088fca7d14fb644eb389f1839
b0212543cc5a4a0a31c1b5a9d1e8973261992116b4cfde3e7dfcf33b4e81a97b

HTTP Headers

GET /npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Origin: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.6.0
x-jsd-version-type: version
etag: W/"1499a-rsVR5NVzRjCI/KfRT7ZE6zifGDk"
content-encoding: br
accept-ranges: bytes
date: Tue, 05 Dec 2023 18:06:16 GMT
age: 22914393
x-served-by: cache-fra-eddf8230133-FRA, cache-bma1636-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23377
X-Firefox-Spdy: h2

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/que.png

188.114.96.1

200 OK

349 B

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/que.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data
Size
349 B (349 bytes)
Hash
7454c652e0733d92de6c920c2d646ae0
34a5bd8c7401f95e346895b0e5ccffbf0e9ad638
44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /que.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/png
content-length: 349
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "0d6dd742fc1124fe244e6f4f212155f3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LenF4Le02mCA%2BvAgQblEiq9yPVF99hXP17z07WguQsqoPXg0IwnLy0KIADkfihnidA%2BRl8yaqOMKl9DYKjvqWM3oSzLVk9%2BGrNojtueGq4SMsRMXhp6UwSBUt7Lr7I4Yg9dgOpZ9kZ%2FioEd2pvs2LeJtvw9tu3EE4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fca5696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/setting.png

188.114.96.1

200 OK

364 B

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/setting.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
364 B (364 bytes)
Hash
e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /setting.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/png
content-length: 364
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ee63d8b934f54cf7e606ebae2b4bfcf6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h2BClmY38UfyvR8bE84ZgDNxwcj7hHfGJ6Nz9koEHJcVGPRNDqUusAnFbeQe7na7t8Y4Qyzbu9FoSSJAuW9Si6Djy0IkO0evQ7GwFeI5dULPssaIEjbX%2F6Gs0dbW%2BlFjnacfzgp5CQeX%2BEgDGbO%2FVtn2HL75MdAqow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fc95696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/bell.png

188.114.96.1

200 OK

1.1 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/bell.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1108 bytes)
Hash
a3555871399f1f67bfacaf437974b03a
b6337de87cd7a75a73cd804774651d14c83fe76a
2e48fef820929c21295e13444901f60e3aed61ba6f8c773ff1466e6843e76b49

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /bell.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/png
content-length: 1108
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5f6cd0d4d62c919557f2ec23a8780264"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3586m7kVJVu86wnJoG%2F1M1xHWrjk7nHX5CoVEPgzVteBFAVa%2FvjI3MCuKZ3qsxY08DGYv%2F4Yk2BuSTzXKLAFz3dY4Bt3CvMMtwYZRIY4U8LNYZGNPyO%2FhcWqfKQIBFn%2B1foHMV33aWDUNUCIGTk%2FtfsY6QC8HrW9qg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fcd5696-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-4SJG885361

142.250.74.104

200 OK

93 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-4SJG885361
IP
142.250.74.104:443
ASN
#15169 GOOGLE

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
93 kB (92986 bytes)
Hash
3b535503e2f8a744a8b69d79389f375e
7bb5159caac24f1d1ed18e240e5023a1f3b160c0
3c88f14481bd1c3e60db66ceb5d3fcee7c98964ff0cb964a68dc648ad9e5056c

HTTP Headers

GET /gtag/js?id=G-4SJG885361 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 18:06:16 GMT
expires: Tue, 05 Dec 2023 18:06:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92986
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/def.png

188.114.96.1

200 OK

3.8 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/def.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3834 bytes)
Hash
77a2ffc5545f87551d74781201de9b3b
c9c3798afd2ae95aa3bba3c428335d49c8255b06
316e6a6737bd296ab30aca2ef7fa36f119d15786a2432d01e31fdc130272f15c

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /def.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/png
content-length: 3834
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e0ac4c000a119522bde9ed592a113438"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VTuOglAG9p1T5%2FzIztLKiLjnhuAAMwfZ1gmhRAX%2FcDv8rCNtQ5hxXs%2Bb1jAjcxlj0S2R426qwno7XMVypxuttM%2Funca2LGEMXwGSaX4m3BdAC88fBl4siB12DoiCK5K8ouwxUnGz9F%2F%2FeT8feN4yFTetYOJXs3UicQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fd05696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/minimize.jpeg

188.114.96.1

200 OK

2.2 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/minimize.jpeg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 180x39, components 3\012- data
Size
2.2 kB (2247 bytes)
Hash
1ba392dce74f8987dca48bf65d817c8f
db0b8444c46125105b52f272bd422a7f52da1f72
a05245b6f7fd752af4a7b0131bbdfdf3eaee6c5a25a81cb498e0f0759189473c

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /minimize.jpeg HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/jpeg
content-length: 2247
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "94135e9c4b673c3071863eb8b5db0c0d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UmYJ9FBHejtgP%2Bx5p70r1LhYHQzQAVUhMIx%2B1ZQfj4PyUe7KX9UIz4kt27ba0HEpm%2BFlPzP3MhkpKdTg1dbQalgtbXJg6TSeVn1P6756VPbIqIzAFFmfzfzgO%2BlW9ektckuQh6KVI3%2FcmdJQuqgVEIZX52kKz6%2FMqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d81fb05696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/microsoft.png

188.114.96.1

200 OK

1.0 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/microsoft.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 47 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1045 bytes)
Hash
bf2b460590fbb9d8e9611a6e9006b816
561e1dab259d61e798b3ce380527b71b61074ff3
ee4bc5fe81fa7c1e8497d79c9c8a96485df217092d334e9b48fa8840fed11d03

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /microsoft.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/png
content-length: 1045
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "784ab5e987249ef1422816edc26a250f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mFCZFAm5QsNq0RlzPVuvUb43%2FJTzLopLvzRZ3aG85COh46Rw2004gmyQZdnnTGQ6IdoogWJjzKf0YtKUcKh8rvEVyPXUcZeP7SVl0zc3Wg8Wa%2Fm373aVnZY2xXQzHOugGNNtQcrjqg0WdAuBKBpH80RIt9eXo78S9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d81fb35696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/pc.png

188.114.96.1

200 OK

4.9 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/pc.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 166 x 92, 8-bit/color RGBA, non-interlaced\012- data
Size
4.9 kB (4949 bytes)
Hash
cc5132b56ba46b03dd998aa1fe220106
403e007a0b17d76a9945fa5ec46a9d01733b3040
598699133be5eef63e3b9b5540609ec0dc91d7af9c7f70a3b890e57491a70ae0

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /pc.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/png
content-length: 4949
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b60af58af358bbff1b64cbb0cae96f72"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JAZnhvITkBHVTtCJWhE7hOYwNYYy1nORPVZyYhJNKL6oV3fP6%2B7CM8YN%2BayRDPXKw7oANI8NBpFidzQ7KJxzx5sgpOVcVw7MJzvJPzDXSq6fdCAxzwi3kBSMXIpmNHeJfod5UxpoLVDd3fP62wBQqbEKrDZk3jqj0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fce5696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/virus-scan.png

188.114.96.1

200 OK

26 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/virus-scan.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (25871 bytes)
Hash
2c497dfff84bd8c5af9254c9d6278ce1
667e72e7ba6f00a54629e28133317022d4b59af6
b2dc4153ee7019c70a1095d5d1304d540e3bba045d99e141f63e5b13362e5a4e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /virus-scan.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/png
content-length: 25871
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cbc9ed14fa29655a591dc055c3db0f03"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y9eXFgwSUCKVQgYWfBqJevYF2raRvczBrqgvuRgDWAagwrCnIYpu3O136XIfy7mwUawhtSUfbATOqmoa6YvIkzq58lWiotn7JrbjwdBI558BNIpIdZqQj4EFFJkFKE%2FlPGo%2B%2BzOsX5pH9Zuhvulc5LRG6wvaJLO0gg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fcb5696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/virus-images.png

188.114.96.1

200 OK

33 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/virus-images.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 200 x 191, 8-bit/color RGBA, non-interlaced\012- data
Size
33 kB (33366 bytes)
Hash
68c7d1836cf921e767b980e8ce6d845b
395fc474214809b1282fc589e4a8f0be81b16adc
870e9d768ba46521935ced4cee560acfbb4f12370e5476dc6a2a45f0141a8392

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /virus-images.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/png
content-length: 33366
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b829b08b1fc77670b9955db66c1ff0a0"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GBWSmoAUjf8%2FNDlbq4gKyQFpoG0fhAYtMkxIsgoYGJll4s0XoKLoPpzYM4TAO73RcEu1w7QHWL0LZ%2F8Ataa%2FwDqhDED53e8zcdBYB%2Fav%2F29ytZhbjRVa3jPCowW%2BqAbfTy4CS2xWnoMIqUGXR6KQSC1eHFxsYugMqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fd35696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/cross.png

188.114.96.1

200 OK

44 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/cross.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 2080 x 2080, 8-bit/color RGBA, non-interlaced\012- data
Size
44 kB (44098 bytes)
Hash
4487a588bf2a07e3d1936d705c5ceefd
db193b3e2ab9fbee6eae99ced2366b1ef5f16971
3821ef20f5904fdb993e34d87ff8fb9c5786a382efb0eeee8b4f00c91428b701

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /cross.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: image/png
content-length: 44098
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e02fe1e438e8620d77677e9219bec56d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G47TrfmH21BZiOXQs4s0k0dEeSZQhSrx87q%2B6d92rO304qm5w2FgjgDFN5N2MjFrH2UzGW83TVchGIpUKjUfCVStDvHM%2BiocVQx9VxI%2Bo5H7j3krqxSWpD%2BvoAINsQjgRwfrPoDmb3uKIphzQhCkpmAhAN005r2hUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fd15696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/0wa0rni0ng0.mp3

188.114.96.1

200 OK

8.4 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/0wa0rni0ng0.mp3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural\012- data
Size
8.4 kB (8405 bytes)
Hash
8618fbb0911e3b8fc96725dee8bfd81f
1bbcb78922946d0cf18fbf3a9e092e36453eb767
0589be7715d2320e559eae6bd26f3528e97450c70293da2e1e8ce45f77f99ab1

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /0wa0rni0ng0.mp3 HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:17 GMT
content-type: audio/mpeg
content-length: 8405
access-control-allow-origin: *
etag: "0825ebad9a641a19e1944426ffe4916e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NhdgXYfu1zHkQXtNuyIJItTJoNXMXqF1DD8HXCRpjtzAWeO2QE7%2F3zopyP0uIJMGZTYa3rQFsSO8LuzA%2B4J3tppRiiKfyn5KgPFAbuHg1qJu8fvVMGnWE%2FBoaTi4a8tm2R7bJyaYbyfhcozDhOpRriFHUT28mfLMlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38dbecad5696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/background.png

188.114.96.1

200 OK

838 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/background.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
PNG image data, 1920 x 1080, 8-bit/color RGBA, non-interlaced\012- data
Size
838 kB (838375 bytes)
Hash
400502ee2726928f1b2314404b53dafa
bda6258ea064b64735ec156340f95ce97fac2df8
ee94f46aecf6fbed409cc7575ec3beca259bc1d8863401fe9325959426e0d270

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /background.png HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:17 GMT
content-type: image/png
content-length: 838375
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "853638619e97aa0cc7632f2f296d7409"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IWfCfTfkVhqLY%2FHKskBRYaYly5RyBwerkUAeJp9eP47kk9qqGS1qKKVtwapN537AW7AVgR8pZGFMGsy%2B4rq%2F7FGdLa8n8RcGhh9Kxn7F5ICre3j1nH%2BdRqTe9prRKwM1SVpTuHrem1KyWMUsxjYNZE3DXa55SgMG1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d81fac5696-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/wa0lDErtm0s.mp3

188.114.96.1

365 kB

URL GET
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/wa0lDErtm0s.mp3
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Stereo\012- data
Size
365 kB (365444 bytes)
Hash
de52aab5a192cf8584ba64204c38c242
9bcafbc279cf9b07e3d9465d6b398e5e2f05aa28
652cab41a12fbaba0a2136648e076e80e2088d3588f0b5abd273f0bccfb1efe2

HTTP Headers

GET /wa0lDErtm0s.mp3 HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:17 GMT
content-type: audio/mpeg
content-length: 365444
access-control-allow-origin: *
etag: "43254a4ac0cfcac1058fd45dc4fd9569"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=msSP4DYdstr2ZUhhg%2FnQ0WwSw83wbwhcWcfT5ak7BTCJ%2FlGyXa1uJuABuTcC2NI9LL7ooETdO5XfJfcKjZ1PlQxI5pTQhJBAetOWsLUwlxSQPPDNWR8ywWuobI1BaHQ5Q6gNXkdTHQy%2FZNN7PiqnM%2BPnRRAVCzkynA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38dbfcbd5696-OSL
alt-svc: h3=":443"; ma=86400

maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0

104.18.10.207

200 OK

67 kB

URL GET HTTP/3
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT

File type
Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Size
67 kB (66624 bytes)
Hash
db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995

HTTP Headers

GET /font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:19 GMT
content-type: font/woff2
content-length: 66624
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "db812d8a70a4e88e888744c1c9a27e89"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/31/2023 18:48:08
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2e06a502ac903dd8e084e42382e63d94
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830e38eb88aeb4f7-OSL
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/

188.114.96.1

200 OK

39 kB

URL User Request GET HTTP/2
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type

Size
39 kB (39406 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 18:06:15 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"5c91b6c7a0351692da38d812b2a166b8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2FE2lF3t3FanKd1UMajXD27toOkUHWbr5Ll8al0I8uW6Q1QR3n3z72HruLVq6jVChEkYivtoy%2BPkxSRmRvv9iwJB8udkiDzK1UcSRK1Y6vdyZ%2BsQB%2Fv%2Fx1E7aN0bdIoAoL9OUcoBMFXxRidZVs7hrB0NcZTrITXUtw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d55ed6b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css

104.18.10.207

200 OK

28 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT

File type
ASCII text, with very long lines (27303)
Size
28 kB (27466 bytes)
Hash
4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5

HTTP Headers

GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4fbd15cb6047af93373f4f895639c8bf"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/31/2023 18:58:32
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1047
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 25754c75fb460a03a208e88579fbc0b3
cdn-cache: HIT
cf-cache-status: HIT
age: 903221
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830e38d859e15685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/favicon.ico

188.114.96.1

200 OK

39 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type

Size
39 kB (39406 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: _ga_4SJG885361=GS1.1.1701799582.1.0.1701799582.0.0.0; _ga=GA1.1.2108804674.1701799583
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:17 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"5c91b6c7a0351692da38d812b2a166b8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qnvIxTqEj%2Bj7nmS8U4xAW6YW2h6IZICmz1IV8WI01MSsjJbmVJCUD8l7qP0XllzH1Dd7%2FRZfeJxOFSdziRGWV%2FikDJVN%2F5qI6Rhklsx%2BB4%2BQ9%2B6V1%2Fon%2Fag4FCzwe2doe1IZKi49MNDBjUeUSLFMXQZysgZxJz0Dfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38deb8145696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/fullscreen.js

188.114.96.1

200 OK

223 B

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/fullscreen.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
ASCII text, with no line terminators
Size
223 B (223 bytes)
Hash
5d4001784f362e859376a3858a0cc1b8
ebfbe2bef8624ad5180beb38039f502dea5410ac
d191958516abcf64926422a3f957300a7033ab99e0a6aa4d6d1bc65ae4f10813

HTTP Headers

GET /fullscreen.js HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8ad3c42abb9e6ea1b54bbc47d2666b8c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P%2Ffw8Bp5%2FmHcASGomIZZMzSkUsWixUMaSxYG6HMpoqIgukPjfDoK6RcH7JAg3fRQbEm%2FmA8hqdlgeevxIF9EM0OStCm6gwg6dLdpULKqcexBNLQBObcH3hGJL3CYOEaxT13s2VAdoihiBeFFSEQFU5vG4ksbd5HTpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fd45696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/before.js

188.114.96.1

200 OK

303 B

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/before.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
ASCII text, with very long lines (317), with no line terminators
Size
303 B (303 bytes)
Hash
8f4b15c25705a2d03dccb0350a9ce830
7c3a5eed51777c57e22ce2b6092d0bcda344166a
da2bbeeea824e5b443191c2e48cfba6a48a8ae8ede613bc1477ba114bc3cb7bf

HTTP Headers

GET /before.js HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4347285f370baa60ee441d1978fd39a8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bD6BQEFzBFlOnoLfQCDmaWHMiSlT1GX7B38gNUZEo0uqPK%2FL4mtZbMB4fG4Va9eIgKxWaEjZ%2FZVvDUE1GPiWZa7QwfynFm7ovGCBLwhcgL00Wwu9p1OytI1KibL6FCvGjO8hYzfbFMs9FM5Hpd%2B7TbXJf8CQRaJqmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fd55696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/main.js

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/main.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
ASCII text, with very long lines (1565), with no line terminators
Size
1.4 kB (1407 bytes)
Hash
681e49a5188014592c8b56d6d2ddd33e
004e0008d20d72a59e0b059fb4420c20477c6612
763ca7ed9fa32e6275f1716a12afd1ba76f2f088f1259a3353fb7787c373e930

HTTP Headers

GET /main.js HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b1ec4e884f1395cf076c4e9af2fe4d9c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BGmpnjRYw28rq5Cok8CIIBKawZrZU768qHM9ii9F68zC2YvpJ9P75p64bE%2FoZtCc7Tbd53HCwmAdo%2FLr6fhdnjajsKB%2FEZ62kkvFGQOf3hNbYm82lpiagUnX9LdoPBF6XiNyukkxPRJK7WTFwBfYu18bCVo3XyAPWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fd65696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/main.css

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/main.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
ASCII text, with CRLF line terminators
Size
12 kB (12423 bytes)
Hash
638baf53518acf6c43dc5f60edaed365
31c948a0928214d76743270bc26b5c3cd79a7d35
959f3f3559cf215b4501803a0398efef7b12d89d3a220643f8ff775acae84d31

HTTP Headers

GET /main.css HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e3537b8560b3670ea9d34c6bdc451943"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k2tTkbGThj1YwyW91ASru56IdUe31jK0S1mWHcgutZah65Stxw%2BFVY1bjQD8ENrrcIBFNn3mPZA99BVgvV%2FGzM1vNW%2Flf0lcHrjFhU02rnSlwcNBlQ8gqW0pPiM%2BHcKAJZRGJ3YwLSpDDZqRSDCdALCMPczrbSlyEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d81fa45696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/light.js

188.114.96.1

200 OK

518 B

URL GET HTTP/3
ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/light.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
FingerprintD3:CA:27:C0:1B:B0:FD:76:DF:7D:E9:55:55:FB:E2:A9:EB:CB:FF:FA
ValidityMon, 04 Dec 2023 20:59:35 GMT - Sun, 03 Mar 2024 20:59:34 GMT

File type
ASCII text, with very long lines (558), with no line terminators
Size
518 B (518 bytes)
Hash
adee4fe6f8f6cf00d023ffeff76772eb
76f82f4f938b4311189f29ab32ed91fbc5d646cc
633e267e1dcb65e72849864c86814594b698aebfddeceaff5cc74395d1bae67a

HTTP Headers

GET /light.js HTTP/1.1
Host: ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ncnjbcjbcjbcbcbcbjcbjcbbjkka.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 18:06:16 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"21d40ba7b7ba59e3cfca548d627c6caa"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yYjcixa2RgMojPuV5JmPqtqfUMOBiai4zDhY9nD7LZuRUs5k1qlLSRakPFckAuW6g1ufAKcY%2F7%2Fa1oeyyxAntgsROsnesEyVwhwXUpy4kHJCt%2Fpdyj%2BkClQnQ4l%2BpWeqrvqsAmzEcUiQ4RP7kKKn0uCVBG2I6TOi1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e38d82fd75696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by