Report - bdbreserve.com/

Report Overview

Submitted URL
bdbreserve.com/
IP
66.147.236.12
ASN
#23535 HOSTROCKET
Submitted
2022-11-29 23:17:23
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
38

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
vsb20.tawk.to	117644	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	7.7 kB	104.22.25.131
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.33.119.27
bdbreserve.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	132 kB	66.147.236.12
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	6.3 kB	142.250.74.131
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	6.0 kB	142.250.74.35
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	69 kB	151.101.193.229
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.149.51.98
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	158 kB	216.58.207.227
embed.tawk.to	8650	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	46 kB	104.22.25.131
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	7.8 kB	142.250.74.106
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	408 B	28 kB	142.250.74.110
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	72 kB	34.120.237.76
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	1.7 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-29	medium	bdbreserve.com/	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/gtranslate/gtranslate-style16.css?ver=5.5.10	Phishing
2022-11-29	medium	bdbreserve.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/multiline-files-for-contact-form-7/css/style.css?ver=5.5.10	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/themes/sports-club-lite/css/nivo-slider.css?ver=5.5.10	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/multiline-files-for-contact-form-7/js/zl-multine-files.js?ver=5.5.10	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/themes/sports-club-lite/js/editable.js?ver=5.5.10	Phishing
2022-11-29	medium	bdbreserve.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.1.4	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/uploads/elementor/css/post-5.css?ver=1615753768	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/uploads/elementor/css/post-6.css?ver=1615758120	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/uploads/elementor/css/global.css?ver=1615753768	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1	Phishing
2022-11-29	medium	bdbreserve.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.1	Phishing
2022-11-29	medium	bdbreserve.com/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (60)

	URL	Size	First Seen	Last Seen
	bdbreserve.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.21	73 kB	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.21 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-24 22:09:45 Times Seen15603 Hash 9becc40fb1d85d21d0ca38e2f7069511 ae854b04025db8b7f48fdd6dedf41e77eae44394 a9705dfc47c0763380d851ab1801be6f76019f6b67e40e9b873f8b4a0603f7a9 Loading...

	bdbreserve.com/	1.1 kB	2023-03-11	2023-03-11
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:18 Last Seen2023-03-11 22:40:18 Times Seen1 Hash b11ba1c08edab2cb80b7b461500f351a 34edecb256fcf038afed25f4f5d4990e27dac038 933a04c85a2f0a55b1f9412a46eadbc9ba6645a42032cffc1d42b8f0810a56ec Loading...

	embed.tawk.to/604e7ee1067c2605c0b84575/1f0p9v8kh	2.1 kB	2023-03-11	2023-03-11
Pretty URL embed.tawk.to/604e7ee1067c2605c0b84575/1f0p9v8kh IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:18 Last Seen2023-03-11 22:40:18 Times Seen1 Hash 34ad3c71e72fc283043c6c46bb853b06 eddda77ada2311ae1b142848e60f1660e33d41d7 b65327fc7121baede878b39f97ae4e2e8dd31880e0a7eafd2e75d5a279ea41c5 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-f1596d96.js	10 kB	2023-03-08	2023-03-12
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-f1596d96.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:54 Last Seen2023-03-12 19:40:33 Times Seen1 Hash 6ec300e0d56554b72967d1d815fe6a68 4115cb09ead1725a281d362df2a0d890def2bc02 738f90cd935b00f835ed3d25668c4c5f02e85f8d15087b94b8b6d3667d063593 Loading...

	bdbreserve.com/wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/js/dnd-upload-cf7.js?ver=1.3.5.9	2.5 kB	2023-03-07	2024-03-29
Pretty URL bdbreserve.com/wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/js/dnd-upload-cf7.js?ver=1.3.5.9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:31 Last Seen2024-03-29 08:18:47 Times Seen267 Hash f9341a7fadb42d823e89288af1efce90 e57b4060013e9d5bc1f98670b99208ea48c8a289 db71ca026f0fe23da093b81b732f0fe9062bacaa90fde9dce5bef7f1e7e03c15 Loading...

	bdbreserve.com/	2.1 kB	2023-03-11	2023-03-11
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:18 Last Seen2023-03-11 22:40:18 Times Seen1 Hash 68bb6b9acd9e3f10b36324548d40819a 722df1d39027996256b0c2a860de48840f8042fe 96dbf609b3132425fc960344d1c5d37e20556b44826f90111ad5185fed6ed2be Loading...

	bdbreserve.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10	14 kB	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-24 06:20:48 Times Seen3528 Hash 878184c5d285d4d52d926d36ef19b718 dd260ffe0f8e3f38f58efd23cac8a1e5c788dad9 07e4203b9f313b587b1d53f896e63771ec85f9b0d4c2ac5fa64089457784d847 Loading...

	bdbreserve.com/	151 B	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-24 22:40:37 Times Seen725 Hash 0cb796ac99f11a254d9e9f15ce0b9870 51bb8503b7fe625b14146193a4f31ac85a3fb738 b190352728af320b263b7d46746b52165e46b8ecb82ce2500dff740540bc6f76 Loading...

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2	76 kB	2023-03-11	2023-03-11
Pretty URL translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2 IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:18 Last Seen2023-03-11 22:40:18 Times Seen1 Hash ac78427db916bbe9aa2cdf2bf0c9d681 eda71908ae1f53f749904f43e18b713fd246c1d4 0b7e5331c150cfe625b2b3ed0f14c06090faead68bb4c37da754553f9a1e43f3 Loading...

	bdbreserve.com/wp-includes/js/dist/hooks.min.js?ver=63769290dead574c40a54748f22ada71	6.2 kB	2023-03-07	2024-02-27
Pretty URL bdbreserve.com/wp-includes/js/dist/hooks.min.js?ver=63769290dead574c40a54748f22ada71 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:12 Last Seen2024-02-27 21:30:25 Times Seen286 Hash 39a6f127edaa2163ef0b7f5cffdf9857 55883f0731ede0ba45a2afc4ec071ed63ef8cd05 f147531c5a51171826972a5ccf168f6dba24514ac8735ca1f6d4f0215c9a8f2e Loading...

	bdbreserve.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4	11 kB	2023-03-07	2024-04-22
Pretty URL bdbreserve.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-22 00:53:05 Times Seen949 Hash 2fdf3cc1d0fcf824759f5287d4bd7b74 1ce98ae8bbada6cb3188a88408ff461162aac89d ccff49c86ee1937dd371734a05307e1abc057b3c255587ed918e47b1cf728d93 Loading...

	bdbreserve.com/	33 B	2023-03-07	2024-04-22
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-22 22:46:20 Times Seen1528 Hash ae102032d8c0b6b5103eb65fd248e103 a5cec2c40acbcdcf04b09458216536c1c9cc3550 001ae1638da9369dd2b89e34f64ebad10b5aafc9d916727005071a48b2d48c85 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/languages/en.js	17 kB	2023-03-07	2024-02-05
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/languages/en.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:47 Last Seen2024-02-05 02:14:35 Times Seen39084 Hash 585ba00b2c167b90c210161454f843b5 89ee8372cc6d5eb307cf5840b70d8f3dab3c57f2 e924ffe8bcc65483510a22a7286bd6d4d204e72ffe5927eec50158f7a7be50c0 Loading...

	bdbreserve.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	97 kB	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-24 23:48:07 Times Seen17743 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	bdbreserve.com/	869 B	2023-03-07	2024-02-16
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-02-16 10:49:35 Times Seen214 Hash 23abce331939da08653ad1ae0e96ab42 9d643a7eff4ca07cad0e2ffc4f851ac5178182ae 5b3784f77d8eeeff1634593241207b833374d91da614bd64e06c57de1a25f5e7 Loading...

	bdbreserve.com/	338 B	2023-03-11	2023-03-11
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:19 Last Seen2023-03-11 22:40:19 Times Seen1 Hash 5410b1d8a300ea75a55169e3da7d9fcb 4240ba339ad67036567fe04735b4e2eaf9e1d105 0f2eb691fdb3a4e0077268e204405a8f410c8fc6a33ce88f789d32c9c2b4ba13 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-f163fcd0.js	11 kB	2023-03-07	2023-12-01
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-f163fcd0.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2023-12-01 20:53:29 Times Seen11867 Hash a92075fd9ac5ba130387a80453676099 4b5b13cf9479b8311d574356e53f8da74200c57a 544039b2ff06226afd008c3625818bbfe76a2598d7159145d06965afaf4f09de Loading...

	bdbreserve.com/	43 B	2023-03-07	2024-04-22
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:42 Last Seen2024-04-22 00:53:05 Times Seen371 Hash 94b95eb2eae6d46b34fb7e652103ba0f 1baaa73334a4800a65b3a50a492255e58e08efc7 050f67ca78af249a7507cb696754c67cd4c2c7b7c71edaed759da16ee524f358 Loading...

	bdbreserve.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1	11 kB	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-24 18:24:18 Times Seen3495 Hash 58baf0f238d7afc7ab926b8d51e5b559 8515e5f578269e29c048450f78c107935d325dff 2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb Loading...

	bdbreserve.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.4	2.6 kB	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-24 18:24:18 Times Seen4623 Hash 9bb8540493a7fe11b229870eb37be165 d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e 4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580 Loading...

	bdbreserve.com/wp-content/plugins/elementor/assets/js/preloaded-elements-handlers.min.js?ver=3.1.4	38 kB	2023-03-07	2024-04-10
Pretty URL bdbreserve.com/wp-content/plugins/elementor/assets/js/preloaded-elements-handlers.min.js?ver=3.1.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:20 Last Seen2024-04-10 00:36:23 Times Seen341 Hash 3facd18854798a13fdf127a591edd988 db18309f744d346b35a0e33eab1b842e6b957f7e d6cc1fa1b35dd4dcc7642bb3dd17e0cada9ca50654a6ba34dde64804334d1ce7 Loading...

	translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback	17 kB	2023-03-07	2024-04-25
Pretty URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 00:26:59 Times Seen14159 Hash a3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-4fe9d5dd.js	942 B	2023-03-07	2023-12-03
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-4fe9d5dd.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2023-12-03 21:40:45 Times Seen7224 Hash 5f434bdd806571a4e1b385bee9316ff6 ca69e13015a6b7769e4174179dc8befd4c543c43 fc129f67c34d70578dc66a2ac6be2d44011eab5a05077797b8e56dbc2f2c9867 Loading...

	bdbreserve.com/wp-includes/js/dist/url.min.js?ver=d80b474ffb72c3b6933165cc1b3419f6	14 kB	2023-03-07	2024-02-27
Pretty URL bdbreserve.com/wp-includes/js/dist/url.min.js?ver=d80b474ffb72c3b6933165cc1b3419f6 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:12 Last Seen2024-02-27 21:30:25 Times Seen258 Hash d21893d73dbaf3e9c3886fbaf9aaa1ce 4265a69bf487f0ea53e3bd174ff170a6a1113146 5cc8aa0883ab7a05139e3ac18ea457e8236f3faec1966d5e6fba7b893de019e6 Loading...

	bdbreserve.com/wp-content/themes/sports-club-lite/js/editable.js?ver=5.5.10	2.3 kB	2023-03-11	2023-11-10
Pretty URL bdbreserve.com/wp-content/themes/sports-club-lite/js/editable.js?ver=5.5.10 IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:19 Last Seen2023-11-10 03:48:04 Times Seen8 Hash 802724636cc0d454690586dfd8d325b2 9e71fb396fad080f12b3b2af191ce60a6cb185ac 7118cda119f972a9f7ed9d486e118668eb67ec79c827e20cd62dd2c1f473f9f7 Loading...

	bdbreserve.com/	1.5 kB	2023-03-11	2023-03-11
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:19 Last Seen2023-03-11 22:40:19 Times Seen1 Hash 0cd039d5f5b9b070fd66f61ad0c4839b 960720de3cc74eb57bf515bd7d6fa1a130ab713c f594c59c86ad04697a85c21001e20e54881c5935ec5e1c7f399de1bfca773078 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main	211 kB	2023-03-08	2024-04-22
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2024-04-22 16:34:28 Times Seen136 Hash 416b0fc07995be8d2b5b67aba46171b0 dd355df12143ce031c19ed0b2b8bf512b6c7d5f1 99a05e6c4657850662d766688752248659646b186aff567879d5d159812d1904 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js	78 kB	2023-03-07	2024-01-03
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-01-03 04:29:13 Times Seen8812 Hash 7dcb496e4882926f93f2e73fa87062c0 f84d8f772336f305bbbd882a1e5d48d9aa8bd16a 5958b8f2069b0a3292ed7a9db46b8109adac7e81591238557125893ee7e87bb7 Loading...

	bdbreserve.com/	373 B	2023-03-11	2023-03-11
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:19 Last Seen2023-03-11 22:40:19 Times Seen1 Hash 480ead2eadf56f8e8edf59edb3c6fea2 c9c3b7d150c57ce1a6b05bcfec437e48269ccac9 f29405f4bbc02568c8c6e4455a76e615006a9097fb7bd6201dd4af034df6b026 Loading...

	bdbreserve.com/	659 B	2023-03-11	2023-03-11
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:19 Last Seen2023-03-11 22:40:19 Times Seen1 Hash 7815ca521ede374f9ff27784395c128c 13fb9595fa8f22867062b08e87c5e4df0a1929c2 893f40cf6999ad1c01e085afb1432f360a4c00f6b5a629c3be07b0737efc6ba1 Loading...

	bdbreserve.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen23153 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	bdbreserve.com/	329 B	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 08:06:13 Times Seen3717 Hash 03d6d38af8c34d50a7d4f77919f3f6c7 90e18129a2b50addce02c98c923534d242233216 9f7a87d73cf34cd5d76d600a5ce326ac1ce32a021067b1bb50587fa488b13444 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js	151 B	2023-03-07	2024-04-24
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2024-04-24 05:13:57 Times Seen46602 Hash e736e189edb5d0d9d5b8e7f23dd9114a bcabee193f13756fa9154fc492fe420c47140343 13cf82e6f9d48221cd55f8b3c3d206f7bdb83f291034b478e484ccfef7d500dd Loading...

	bdbreserve.com/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4	6.4 kB	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:55 Last Seen2024-04-24 23:48:05 Times Seen1805 Hash d1c2e97eeca08ca067ccf2c5736f0390 5281985542fcc8c5a651d1991296e12c39bfcb82 0ce51090b148a45a0e3d652719ed6ef7f1a38e5d272dbf874f86a49664e897a3 Loading...

	bdbreserve.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.4	81 kB	2023-03-07	2024-04-10
Pretty URL bdbreserve.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:33 Last Seen2024-04-10 00:36:23 Times Seen348 Hash b75ce6ca145fe8fc03bfe0e960e5b4cc bf36e529678ac0d81e0c6b00ed4bcb07d6cef413 a108c6e4eb1fb5af4b73b76a38266cb41795703940848306f572c5028c206071 Loading...

	bdbreserve.com/wp-content/plugins/contact-form-7-style/js/frontend-min.js?ver=3.1.9	1.6 kB	2023-03-07	2024-04-14
Pretty URL bdbreserve.com/wp-content/plugins/contact-form-7-style/js/frontend-min.js?ver=3.1.9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:27 Last Seen2024-04-14 22:41:39 Times Seen292 Hash 4118c086c8e78195c85bd4d31f915ea4 088ababe6e7e6da1e0ce1a84be95131448347438 52e78e8b1eec52123c80d3523502d47a6b8f470349d143d82212d867a8d5609c Loading...

	bdbreserve.com/	273 B	2023-03-07	2024-04-22
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-22 00:53:05 Times Seen885 Hash d3a02e46275700d59240518abb63072c 400fa38d32b2f72f1c9dd4d3d62a5e7f230595dc f76c4a011d1dd8a45522a147c8a681e6bbbc9587ba01ea56601421e15a761613 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-32507910.js	74 kB	2023-03-08	2023-03-12
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-32507910.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:39 Last Seen2023-03-12 19:40:33 Times Seen1 Hash af764270cff49e4f88710a5824f1af0a 5101715aafd662b8ef1bae9a588ba7e8650c2b5e 8ea95ad5c8b1c5de01a4a647ba43f1d82e0e94337b17995abaa29a6dc7d5bffc Loading...

	bdbreserve.com/wp-content/plugins/multiline-files-for-contact-form-7/js/zl-multine-files.js?ver=5.5.10	2.4 kB	2023-03-11	2023-03-11
Pretty URL bdbreserve.com/wp-content/plugins/multiline-files-for-contact-form-7/js/zl-multine-files.js?ver=5.5.10 IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:22:13 Last Seen2023-03-11 22:40:19 Times Seen1 Hash 15f211268b2394d1c66a6eb4b578d71d 5dc10ccf5b3765253875807d78e7fcd4a282a089 ae52b8a0880122d3575c8dd80e5292290ec996ce801e8960c7324d544adf3646 Loading...

	bdbreserve.com/wp-includes/js/dist/api-fetch.min.js?ver=0bb73d10eeea78a4d642cdd686ca7f59	12 kB	2023-03-07	2024-01-25
Pretty URL bdbreserve.com/wp-includes/js/dist/api-fetch.min.js?ver=0bb73d10eeea78a4d642cdd686ca7f59 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:47:21 Last Seen2024-01-25 15:07:10 Times Seen118 Hash 5c44101f3c2145f324a187ae68f1ad18 9693d6e01f119027bbd86fa9353d6aac5f06ff99 b7e1b2f293f0c3d093a42569ce2dceb955c3626f5e68738e8f07e2872b609d92 Loading...

	bdbreserve.com/wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/js/codedropz-uploader-min.js?ver=1.3.5.9	6.3 kB	2023-03-11	2023-11-19
Pretty URL bdbreserve.com/wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/js/codedropz-uploader-min.js?ver=1.3.5.9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:19 Last Seen2023-11-19 14:21:42 Times Seen5 Hash fe411b32272085f984ea8d81dccb9322 63763eae01d6bfedce79f1b4d9e2002c2ed9d0f6 6d9708294873147d2fe2bd8b1f65aac0d945d09b48d052f8aa2991f046e87ecc Loading...

	bdbreserve.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.4	4.6 kB	2023-03-07	2024-04-10
Pretty URL bdbreserve.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:33 Last Seen2024-04-10 00:36:23 Times Seen311 Hash ff2bf4d429e12f180ab4a6cd56b828d6 e079aca12ecf1fc21dafd2bfbf7a8b038eca7b45 359cf0cdca67afb12bea10cedc087a424e33b90247f2dab53e369cd7ac6e5616 Loading...

	bdbreserve.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 23:48:07 Times Seen52712 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js	121 B	2023-03-07	2024-04-24
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-24 05:14:02 Times Seen45920 Hash da5bb1dc647470204df0e49f5afac2de f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8 705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-48f46bef.js	16 kB	2023-03-08	2023-03-12
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-48f46bef.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:39 Last Seen2023-03-12 19:39:42 Times Seen1 Hash 12f6c0f6e6cec2a03629fbce091e2072 f900879b5df1ad4add9e9312ade124a70a14607c 663028e7a6e8b469483d28f1b38a593e73623ae4e95eebdef03eecc014da0316 Loading...

	bdbreserve.com/	1.5 kB	2023-03-07	2024-02-04
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-02-04 04:08:21 Times Seen62 Hash 5d51afcac32b67589f917ebd584c9d88 efcede1e98a05c33189cae9482844d140d7c88e5 b41d2289d8632acea50df03a9fd682aa9af189af9ec2e4cfe1eafaae103c5fec Loading...

	bdbreserve.com/wp-includes/js/dist/i18n.min.js?ver=4ab02c8fd541b8cfb8952fe260d21f16	9.6 kB	2023-03-07	2024-04-02
Pretty URL bdbreserve.com/wp-includes/js/dist/i18n.min.js?ver=4ab02c8fd541b8cfb8952fe260d21f16 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-02 09:20:32 Times Seen301 Hash 0eba50defd298ed1a36b31c2d42c71b9 d5cb03fe193e028bf2b1915f2690ac465ba57a3e fb94dccf2419dd78e21ecaba757fed0df6f51de96a941b02e7e10c5f12d3d360 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-696bc286.js	17 kB	2023-03-08	2023-03-12
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-696bc286.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:39 Last Seen2023-03-12 19:40:33 Times Seen1 Hash a4ee0f7f38343d301e91591fc360d3fa 0748ec2421e5495f8cd80c749a827065c4b43eb1 83bf5bc596982a4f75467e476f78e856ac970915731fb11c7115f5feaac5027b Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-2c78ba82.js	7.1 kB	2023-03-07	2023-12-01
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-2c78ba82.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:09 Last Seen2023-12-01 20:53:29 Times Seen7234 Hash fac25ff2d2c405e1ac7e156dca1f819c 9e7c83d4eefe4f64b4f1c43d15f21b248697a125 97ca66991150a4c1263837600fe4338f33d96b74979cd7740ab07d22b883b8e0 Loading...

	bdbreserve.com/	1.1 kB	2023-03-07	2024-02-23
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:30 Last Seen2024-02-23 13:13:20 Times Seen31 Hash c0bb2ca2b6e67581f24dedfc469de185 31252a5934dc353cf30f2184a2fe3b045c52839b 0341772cb281ef587485f6c528a2b151e0a7a82b8c27a9f2d7026eac28940909 Loading...

	bdbreserve.com/wp-includes/js/wp-embed.min.js?ver=5.5.10	1.4 kB	2023-03-07	2024-04-24
Pretty URL bdbreserve.com/wp-includes/js/wp-embed.min.js?ver=5.5.10 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-24 15:42:16 Times Seen6874 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	http:srcdoc	1.2 kB	2023-03-08	2023-04-22
Pretty URL http:srcdoc IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-04-22 02:10:05 Times Seen1280 Hash 1bdd099873761648dd3aa8aad60e2ac3 713e5a99347bd73f3d9c359acd1c885430e22060 0624e7ce1ad63657924f8ca830c5a9a16c721b527ea1b98d2ef471d04348a07d Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-2d0b9454.js	546 B	2023-03-07	2023-12-03
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-2d0b9454.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2023-12-03 21:40:45 Times Seen7208 Hash 09c3819d373bd4178a620d721429fada fc407211bc5ed4384dc85e981c5947f727254bd9 48126b4a0cc388ba014594d6d64a6c6c6bb1c0ea145bb1c3c2b1da1a514e4a5c Loading...

	bdbreserve.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4	99 kB	2023-03-07	2024-04-22
Pretty URL bdbreserve.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-22 22:46:20 Times Seen3528 Hash 5090bae2c114802440412e301bdf5174 3850afd52816ee686eccd881df06764b426cd86a d36e5d7328268d21c6941039a7b6a15c7ed7414f60dbee72d2231d11ac9bdaf3 Loading...

	bdbreserve.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.4	65 kB	2023-03-07	2024-04-10
Pretty URL bdbreserve.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:33 Last Seen2024-04-10 00:36:23 Times Seen283 Hash fef0266be337bd49b9e5278afbc1bbda c256c6280b193b03e4c606c3eaee4c4a8093166f e407d9e744eecd15c7ba5fced7e45858758cfaf57cceec4255dd2ac110121e19 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-common.js	196 kB	2023-03-08	2024-01-03
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-common.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:39 Last Seen2024-01-03 04:29:13 Times Seen4 Hash bde99510bdf9ab7bbc9ce82519a19a36 c0d4758cbef7cb74c32021e2f6c6271ae995c919 654d5153e9271fb0cf77a967a37cb4e615a1f911a9957f747f395d824d0cca44 Loading...

	bdbreserve.com/wp-content/themes/sports-club-lite/js/jquery.nivo.slider.js?ver=5.5.10	30 kB	2023-03-07	2024-03-07
Pretty URL bdbreserve.com/wp-content/themes/sports-club-lite/js/jquery.nivo.slider.js?ver=5.5.10 IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:30 Last Seen2024-03-07 06:20:54 Times Seen169 Hash 502e90124d3cc7cae5d9d21e51230ac6 146043ff8f7d14347d708756449da9ee6e3b8497 76bd5d2131b6efd9d1927e0d1a62c725cd58dcf7ef28b8e6a3b7b7ee24d099f5 Loading...

	bdbreserve.com/	1.1 kB	2023-03-11	2023-03-11
Pretty URL bdbreserve.com/ IP 66.147.236.12 ASN #23535 HOSTROCKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:19 Last Seen2023-03-11 22:40:19 Times Seen1 Hash 2b04098a8b531aa3cebf4b0a963e5dc9 c788a43167d723ad32a4fec0b2ade84c7b330816 975e956a12e5d4c83d182af97a69f9c65e2ade0e8f4fc3dd7d54a55473dc3c99 Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js	211 kB	2023-03-08	2024-01-03
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:02:52 Last Seen2024-01-03 04:29:13 Times Seen92 Hash 70dac54eca3bb2143032bc4db3237623 b072b86acccf5e05a52ebfbff58ec2961b200063 299a4f2bad31c68a87c725376227e4e71d3fa3be5ac21776509b6a526bfd603b Loading...

	embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js	2.3 kB	2023-03-08	2024-01-03
Pretty URL embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:39 Last Seen2024-01-03 04:29:13 Times Seen3 Hash 9075c2f5460b2832318d3c7217cc68cb b8742c9ec6d976051538e69ae8a92e354b62638b 6d510d7d2266769c4b312b4db0fc12e180db9c5ef2d75926c5b8f23543788aba Loading...

HTTP Transactions (79)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8489
Expires: Wed, 30 Nov 2022 01:38:41 GMT
Date: Tue, 29 Nov 2022 23:17:12 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

55 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
HTML document, ASCII text
Size
55 B (55 bytes)
Hash
9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 865
Cache-Control: public, max-age=1209600
Content-Type: text/html
Date: Tue, 29 Nov 2022 23:17:12 GMT
Etag: "638650c5-37"
Last-Modified: Tue, 29 Nov 2022 18:34:45 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 55

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5659
Expires: Wed, 30 Nov 2022 00:51:31 GMT
Date: Tue, 29 Nov 2022 23:17:12 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 22:17:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3557
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 4Q9HDc8N0iHCfkztzx/mGnAHgliB1c455T/g4aMz7JwcAH92kJFmvwAH/n1G7NIstBsBAuwCp7E=
x-amz-request-id: 4SRZDMGZ83GS8ZAA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 22:45:38 GMT
age: 1894
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 23:17:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

bdbreserve.com/

66.147.236.12

301 Moved Permanently

0 B

URL HTTP/1.1
bdbreserve.com/
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.6.40
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://bdbreserve.com/
content-length: 0
date: Tue, 29 Nov 2022 23:17:12 GMT
server: LiteSpeed

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 23:08:56 GMT
cache-control: public,max-age=3600
age: 496
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4365
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:12 GMT
Last-Modified: Tue, 29 Nov 2022 22:04:27 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.149.51.98

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.51.98:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nSjfq/fbZoy/mKuzBoLJSg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bcrAxn1UUYQI9Si1zA635Gn3YZ8=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bdbreserve.com/wp-content/plugins/gtranslate/gtranslate-style16.css?ver=5.5.10

66.147.236.12

200 OK

233 B

URL HTTP/2
bdbreserve.com/wp-content/plugins/gtranslate/gtranslate-style16.css?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text
Size
233 B (233 bytes)
Hash
1aed81a29c2297bbb22e3be2b431c2d1
87a8c07cc93ca2e69584e9b35c84641466d72f97
b53067246a902e0b460a82ccdfd035443c2f0ff872587ea41dce022680626a85

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/gtranslate/gtranslate-style16.css?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Tue, 16 Feb 2021 22:26:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 233
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto+Condensed%3A300%2C400%2C700%7COpen+Sans%3A400%2C600%2C700%2C800&ver=5.5.10

142.250.74.106

200 OK

1.4 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto+Condensed%3A300%2C400%2C700%7COpen+Sans%3A400%2C600%2C700%2C800&ver=5.5.10
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.4 kB (1441 bytes)
Hash
88e7fce6d8a10a8dae616ef5786d5479
632fd69836ce427c4de946d915d0cea8e277f3c8
e7e4456fcc9b65cb47e5751840066d088e7890f04c4490abf1bd99fe52a07d58

HTTP Headers

GET /css?family=Roboto+Condensed%3A300%2C400%2C700%7COpen+Sans%3A400%2C600%2C700%2C800&ver=5.5.10 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 23:17:13 GMT
date: Tue, 29 Nov 2022 23:17:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bdbreserve.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10

66.147.236.12

200 OK

7.5 kB

URL HTTP/2
bdbreserve.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (27100)
Size
7.5 kB (7455 bytes)
Hash
bd31b2b1085f1595b77592174490b5e6
f11b8bd4d75033ed07ef0288c9177dc614d9e214
43cd7e52a79bbc27b1d70717ccf5a7c73cb4b04f3837c7dd8af45d05a47aea0d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Fri, 28 Aug 2020 03:30:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7455
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/contact-form-7-style/css/frontend.css?ver=3.1.9

66.147.236.12

200 OK

6.1 kB

URL HTTP/2
bdbreserve.com/wp-content/plugins/contact-form-7-style/css/frontend.css?ver=3.1.9
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (40049), with no line terminators
Size
6.1 kB (6075 bytes)
Hash
43ba6717edbaf90249f545be699e0c95
a43999157e52575fe9539f670ed9a6641ed6966f
ecd793343090b0d2f5fa3d30e5c060152bbaaa4c19abdc2d0a02832cfb0e0c03

HTTP Headers

GET /wp-content/plugins/contact-form-7-style/css/frontend.css?ver=3.1.9 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 21:42:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6075
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4

66.147.236.12

200 OK

824 B

URL HTTP/2
bdbreserve.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text
Size
824 B (824 bytes)
Hash
f76f64e264bcac5d2d75cd42610597f1
d50ce5995b527ea2a04a8eed52283085e22ac565
ae412022bf120f5a1b5c5889cdae492baa4252af3a22d5bd2974281af0b7e928

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 07 Mar 2021 15:47:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 824
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/css/dnd-upload-cf7.css?ver=1.3.5.9

66.147.236.12

200 OK

1.8 kB

URL HTTP/2
bdbreserve.com/wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/css/dnd-upload-cf7.css?ver=1.3.5.9
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (1146), with CRLF line terminators
Size
1.8 kB (1788 bytes)
Hash
ee86ab3cd419635127f8f8d59d3fff2c
b9356bafeeff6b763be6b672271102c3603beeca
9f5a8beba3851805eefac179a2d899ccef7bcf00da9609c37018410feec74781

HTTP Headers

GET /wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/css/dnd-upload-cf7.css?ver=1.3.5.9 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 07 Mar 2021 15:47:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1788
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/multiline-files-for-contact-form-7/css/style.css?ver=5.5.10

66.147.236.12

200 OK

279 B

URL HTTP/2
bdbreserve.com/wp-content/plugins/multiline-files-for-contact-form-7/css/style.css?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text
Size
279 B (279 bytes)
Hash
2330db8eae46db86fbf79f3a6fe22e69
38c8da6111261451ac7f48b1664687b2b0d08c3f
7a20cf53ca607c48937fea1b8798b70e77c2b19ed7beefa4db9183f5d5799a23

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/multiline-files-for-contact-form-7/css/style.css?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 21:41:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 279
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/themes/sports-club-lite/style.css?ver=5.5.10

66.147.236.12

200 OK

6.4 kB

URL HTTP/2
bdbreserve.com/wp-content/themes/sports-club-lite/style.css?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
assembler source, ASCII text, with very long lines (808), with CRLF line terminators
Size
6.4 kB (6356 bytes)
Hash
ef977afdc1f2526ec8a1768ab8853445
f45b05dbfaf37361c5d0d892a2dc3cd58ac224ad
6c661d2d52b5b33ac4836ee8d055b3a3abc6addfad52b238385ba69c4c397cbf

HTTP Headers

GET /wp-content/themes/sports-club-lite/style.css?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 15 Nov 2020 19:27:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6356
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/themes/sports-club-lite/css/nivo-slider.css?ver=5.5.10

66.147.236.12

200 OK

1.1 kB

URL HTTP/2
bdbreserve.com/wp-content/themes/sports-club-lite/css/nivo-slider.css?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1130 bytes)
Hash
c88bcf566f7d424a5c927588ec1c2540
a966a6e075bab724590d90efb2fc179d7bb566b0
4002919585d225c227743e8f0b5b3ec445d27896b629b328f3bacf9b5451f5db

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/sports-club-lite/css/nivo-slider.css?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 15 Nov 2020 19:27:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1130
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9

66.147.236.12

200 OK

1.5 kB

URL HTTP/2
bdbreserve.com/wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (8173), with no line terminators
Size
1.5 kB (1491 bytes)
Hash
be76a8b5375d6500e35fc1e2a5433f62
b5e62f727dc1a9f6280fc4b1aa3f5f695495e884
c2cf9236fcf30a6024712dbbd73d3b83e203f07285d8c7d10160143b9af8dc0b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 21:42:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1491
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/themes/sports-club-lite/fontsawesome/css/fontawesome-all.css?ver=5.5.10

66.147.236.12

200 OK

9.1 kB

URL HTTP/2
bdbreserve.com/wp-content/themes/sports-club-lite/fontsawesome/css/fontawesome-all.css?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (317), with CRLF line terminators
Size
9.1 kB (9080 bytes)
Hash
06f06d7009541a78eeca8cdf5ab91e03
4ec4caa7390ba5ee2525ef40b838ee6bfceae4dd
147aca701f4253720232dfe1b7ce574117c33ec626770eaf03d1890e6843a9cd

HTTP Headers

GET /wp-content/themes/sports-club-lite/fontsawesome/css/fontawesome-all.css?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 15 Nov 2020 19:27:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9080
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/multiline-files-for-contact-form-7/js/zl-multine-files.js?ver=5.5.10

66.147.236.12

200 OK

658 B

URL HTTP/2
bdbreserve.com/wp-content/plugins/multiline-files-for-contact-form-7/js/zl-multine-files.js?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text
Size
658 B (658 bytes)
Hash
7d75fd56cae7771e284d3f8e481afed3
331bf26c5ce7b69306d3f53b55a6b95b91672cb4
72bfac0ebf940883ac21c1ab63f40d54805a25cb65f0a22269569f6506d80f97

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/multiline-files-for-contact-form-7/js/zl-multine-files.js?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 21:41:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 658
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/themes/sports-club-lite/js/jquery.nivo.slider.js?ver=5.5.10

66.147.236.12

200 OK

4.6 kB

URL HTTP/2
bdbreserve.com/wp-content/themes/sports-club-lite/js/jquery.nivo.slider.js?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (386), with CRLF line terminators
Size
4.6 kB (4649 bytes)
Hash
2cdc4f45a59e8177438769ac8bad617b
abd8f62bd27f25ed177847aafad8ab58c8f0104c
867720c8d60e675533779ab460bf9190d198e2cf917c80b5c5f32ff46626e3b1

HTTP Headers

GET /wp-content/themes/sports-club-lite/js/jquery.nivo.slider.js?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: application/javascript
last-modified: Sun, 15 Nov 2020 19:27:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4649
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/themes/sports-club-lite/js/editable.js?ver=5.5.10

66.147.236.12

200 OK

706 B

URL HTTP/2
bdbreserve.com/wp-content/themes/sports-club-lite/js/editable.js?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with CRLF line terminators
Size
706 B (706 bytes)
Hash
7d5708b0d6e58d29ff32f9c983efac04
a558867d9ee8b0e8756ca99c008d92f2431e9072
5615018ed066b1ec9584f7ecf63c13af83cb508def17d79f9450bd9e19a6e08a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/sports-club-lite/js/editable.js?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: application/javascript
last-modified: Sun, 15 Nov 2020 19:27:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 706
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp

66.147.236.12

200 OK

33 kB

URL HTTP/2
bdbreserve.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (31997)
Size
33 kB (32853 bytes)
Hash
a95303ca3b1a9372809d72ffa31bca40
65130bca144d3b49d5f97387173c423b9b4abfe3
c5d914b6693616fcf2c61bc363660dcc5f6ea7de5a25b1d6a5a2a95f39846565

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: application/javascript
last-modified: Fri, 17 May 2019 13:55:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32853
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/themes/sports-club-lite/css/responsive.css?ver=5.5.10

66.147.236.12

200 OK

1.8 kB

URL HTTP/2
bdbreserve.com/wp-content/themes/sports-club-lite/css/responsive.css?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with CRLF line terminators
Size
1.8 kB (1802 bytes)
Hash
7111ebc1e65929315a8c6e2bb398ba0c
f7ea9392a099dddc0cb6486d661f844eebac9dd7
3363214672b9afa7ea3f19a9ab9dc3c1c657fe9159803979e52f24633ad7d045

HTTP Headers

GET /wp-content/themes/sports-club-lite/css/responsive.css?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 15 Nov 2020 19:27:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1802
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0

66.147.236.12

200 OK

3.3 kB

URL HTTP/2
bdbreserve.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (17186)
Size
3.3 kB (3296 bytes)
Hash
6c4cff9d3ad2e3a26287348df9886ce8
2d9389d03acfd678e573a2687aa23ac581db3cd4
6d16634ec24262a69b7afb6308c6b81325ad45af3bd04092c7000d1a90d23c94

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 20:20:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3296
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.1.4

66.147.236.12

200 OK

445 B

URL HTTP/2
bdbreserve.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.1.4
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (3815)
Size
445 B (445 bytes)
Hash
af853cde8ca7783256726fa72c102176
bb3dc4862c94e3e96ab47da71d85039a290ed283
fb4ac9baba01d9a2c77f8217832ba7a24fe8acfcf833320718c84692390131c3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.1.4 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 20:20:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 445
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4

66.147.236.12

200 OK

15 kB

URL HTTP/2
bdbreserve.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (65497)
Size
15 kB (15219 bytes)
Hash
ae47a36afe34073ff957db39aae2352e
243ff157984320b51991881c9e79c57992ec0659
e5da49ffffecb7a024040a59348ebc6e25113fa027d238f4ba05f10656cc2c30

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 20:20:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15219
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4

66.147.236.12

200 OK

2.4 kB

URL HTTP/2
bdbreserve.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (10019)
Size
2.4 kB (2442 bytes)
Hash
d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 20:20:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/uploads/elementor/css/post-5.css?ver=1615753768

66.147.236.12

200 OK

281 B

URL HTTP/2
bdbreserve.com/wp-content/uploads/elementor/css/post-5.css?ver=1615753768
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (946), with no line terminators
Size
281 B (281 bytes)
Hash
54f498612ccd843423cd5bc8624c31ae
2f083aaa53d0cd5ab8154fb8c16f75fe8cac4ea2
99af559228fbde8914b78708eaef566be305297d6b1ff77d065828e8260b875d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-5.css?ver=1615753768 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 20:29:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 281
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/uploads/elementor/css/post-6.css?ver=1615758120

66.147.236.12

200 OK

2.0 kB

URL HTTP/2
bdbreserve.com/wp-content/uploads/elementor/css/post-6.css?ver=1615758120
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (21760), with no line terminators
Size
2.0 kB (1968 bytes)
Hash
81c7bd663e4d6306eb9183462d514b72
8c7a6a81f3a014ff34e4dd85c1d795efd58595d6
b16bec3591a32a95e1e88c8ae9921cb8eaaed8de411f7ae1597079d398abf2c4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-6.css?ver=1615758120 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 21:42:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1968
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/uploads/elementor/css/global.css?ver=1615753768

66.147.236.12

200 OK

739 B

URL HTTP/2
bdbreserve.com/wp-content/uploads/elementor/css/global.css?ver=1615753768
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (6837)
Size
739 B (739 bytes)
Hash
76fdebadf72d3fea4b4491be62684076
1440c2ebded6e9b9d859442b40cdb21ab85d6af2
68e9d1d6b1560d475426dd4a2c2f16b1832f5fb8d479f83f2a73050cc8eeba01

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1615753768 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 20:29:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 739
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1

66.147.236.12

200 OK

12 kB

URL HTTP/2
bdbreserve.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (57726)
Size
12 kB (12133 bytes)
Hash
7cfefbdd5cd865c1b324362c06b804a2
ad8d6419f970a99bbdcfeeb2657e6f4eccd2ce63
5a2a72bb61d6daa3127f09335299dc1125cb2797cc1c2d56a979f369258482cc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 20:20:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/uploads/2021/03/cropped-aa.jpg

66.147.236.12

200 OK

5.2 kB

URL HTTP/2
bdbreserve.com/wp-content/uploads/2021/03/cropped-aa.jpg
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x52, components 3\012- data
Size
5.2 kB (5194 bytes)
Hash
a4963d2da29b3cdb8be5246d5fe841df
49de8443e10a1b28a55af04f4579660b7c75fff4
d0d9f84533c1d13cbf52b148a036b8757d69f357a69f4defb42f13d803a6b337

HTTP Headers

GET /wp-content/uploads/2021/03/cropped-aa.jpg HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: image/jpeg
last-modified: Sun, 14 Mar 2021 20:33:01 GMT
accept-ranges: bytes
content-length: 5194
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1

66.147.236.12

200 OK

286 B

URL HTTP/2
bdbreserve.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (483)
Size
286 B (286 bytes)
Hash
dd8fa48903cc839f219c5ea5f8c83d97
b37c1219e3faf68a1a6d3e9e69cc6bc3768e0f78
82a9dc8780d5943453178fbb9dc80e04bb98ef9454523ad5b209adff09bdf214

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 20:20:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.1

66.147.236.12

200 OK

282 B

URL HTTP/2
bdbreserve.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.1
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (491)
Size
282 B (282 bytes)
Hash
2636f2151fe4dd1960df03bb3334fdec
5787e4333469e668a59aa680a54001a60dd8b840
cd7a098f20f41fe3b247b91cdb57527f896bfdcbdf09efb6eb170135a4304df4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.1 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: text/css
last-modified: Sun, 14 Mar 2021 20:20:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 282
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

bdbreserve.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10

66.147.236.12

200 OK

4.3 kB

URL HTTP/2
bdbreserve.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type
ASCII text, with very long lines (11272)
Size
4.3 kB (4316 bytes)
Hash
cbe8cb2fedf8a769a95b7fb14607cb1f
bd8a18991728b257e9eefb89ba6ea9058860983a
0be8d8f894d47080f1723551cb8adf6c158249dc6f99fb06639ee9e5d332be4f

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 23:17:13 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 07:08:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4316
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2

142.250.74.110

200 OK

27 kB

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
data
Size
27 kB (26646 bytes)
Hash
d19acc941cc4021103f0e57686c5b398
1c45b60932cebfe83efd171d8cb51bc51e323a45
52975a1ae096e7335379396646d5cf096a274931a04504e6fd6995670b160c0c

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 29 Nov 2022 23:17:13 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+057; expires=Thu, 28-Nov-2024 23:17:13 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 102272
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Size
16 kB (15700 bytes)
Hash
3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36

HTTP Headers

GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:33 GMT
expires: Wed, 29 Nov 2023 15:42:33 GMT
cache-control: public, max-age=31536000
age: 27280
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13385
Expires: Wed, 30 Nov 2022 03:00:18 GMT
Date: Tue, 29 Nov 2022 23:17:13 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd528f6c2c45e38c52095a73a9cd8c68
dca2df874a830edac932136d474453c18d933024
4c7e75aaccb4b74e227ada3b56829f52cb7f14ad05454f7bd6eccf3e94185218

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13385
Expires: Wed, 30 Nov 2022 03:00:18 GMT
Date: Tue, 29 Nov 2022 23:17:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13385
Expires: Wed, 30 Nov 2022 03:00:18 GMT
Date: Tue, 29 Nov 2022 23:17:13 GMT
Connection: keep-alive

fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

216.58.207.227

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Size
48 kB (47728 bytes)
Hash
b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73

HTTP Headers

GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 19:22:22 GMT
expires: Wed, 29 Nov 2023 19:22:22 GMT
cache-control: public, max-age=31536000
age: 14091
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/alegreyasc/v22/taiTGmRtCJ62-O0HhNEa-ZZc-oU2SKo.woff2

216.58.207.227

200 OK

29 kB

URL HTTP/2
fonts.gstatic.com/s/alegreyasc/v22/taiTGmRtCJ62-O0HhNEa-ZZc-oU2SKo.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 28948, version 1.0\012- data
Size
29 kB (28948 bytes)
Hash
966e319289cecf00689b6aadc5975639
9f614786070dd969b84938e39f93776734c45de8
04bfe49aee7342ee9a4db0ade98749c68bf35161ce9fc159bd414a501b08cc03

HTTP Headers

GET /s/alegreyasc/v22/taiTGmRtCJ62-O0HhNEa-ZZc-oU2SKo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 14:06:34 GMT
expires: Sat, 25 Nov 2023 14:06:34 GMT
cache-control: public, max-age=31536000
age: 378639
last-modified: Tue, 19 Apr 2022 18:23:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10068 bytes)
Hash
f621857774e4b4adda95f58081644859
639165dc66d171b8266f22cd495181427112bc80
341fd33d3d9486079c182d60e21c355244b6597e6e09ba51ecee2e331b38ca2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10068
x-amzn-requestid: 7f386e94-3c17-44a1-a36b-3d0eeff4623d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEQQoAMFihA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-5069acfd038ffb2c124b7bd8;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ec2HkhHmHE2ddGBpLsJ5Rn7SCMjyR5kzaTyrguDoI9xOohgsCi08CQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:26 GMT
age: 5567
etag: "639165dc66d171b8266f22cd495181427112bc80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

55 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
HTML document, ASCII text
Size
55 B (55 bytes)
Hash
9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6137
Content-Type: text/html
Date: Tue, 29 Nov 2022 23:17:13 GMT
Etag: "638651c5-37"
Last-Modified: Tue, 29 Nov 2022 18:39:01 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 55

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:33:54 GMT
expires: Thu, 23 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 531799
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9670 bytes)
Hash
33ee67e62c49fc8d51f18df313002aac
3d8c927b6945d880f92d4e7a686cad5a9985e8ad
ba6e66e07cd93219926927fd2b468a92b8d02cc9bf1da0b3b9a3c48da160bbdc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9670
x-amzn-requestid: d9a529ac-9dc6-4e12-80c5-3250dc97e7bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcFiAoAMF0nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-116ddf09265d51523c3638b3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dTu4TnkeBj5Jm6nU8CA37pptq4F43BUYXcAJPcXro47W1MJriiVrcw==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "3d8c927b6945d880f92d4e7a686cad5a9985e8ad"
content-type: image/jpeg
age: 5558
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7298 bytes)
Hash
e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7mRG070F4NZnewfowUhVhMerJaGjJd4G6O1tvTPiKyvTAzq-Y16-jw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:51 GMT
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
age: 4822
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7f230eb-6b67-4a80-b973-d8ea78fe73ae.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12853 bytes)
Hash
e08af5b1d18986e112913c6e69cc8ce6
151b60134a66305bd72dbb3810f67a57720b2af1
555a62d98f4002ad187a6b480d534a1dbe3c64d1f4d17cffad2ab985c10ca462

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7f230eb-6b67-4a80-b973-d8ea78fe73ae.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12853
x-amzn-requestid: 25e4402d-98d0-4c38-a927-397c37724bea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhdpHAuIAMFweQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c57-506672a36959d9ea09ef5155;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gHL2sFE-o1u5kEIUiabbP6u5CXr3ihI4mKiAVkfReyuJuTF5k5ktSg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:48 GMT
age: 5545
etag: "151b60134a66305bd72dbb3810f67a57720b2af1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8af12b89-c1a0-4a2a-aa29-cd6dea02f435.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8288 bytes)
Hash
2cd563ab005d968185c8d000e38b88c2
268e6202466941e612ff503835de9091ef4d5b38
272c867dcc37d97f8682e8f3aa11a567a401b4d4d78e890b0eb94a3c77ea5000

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8af12b89-c1a0-4a2a-aa29-cd6dea02f435.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8288
x-amzn-requestid: 8b48ce45-1c30-4ea3-8cef-bf3b2e7f106f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEgFcUIAMFkSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1c-20e896a62338c6dc45c1ca2a;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:08 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0bNBjOUnEjVgDrhXO2wYnfemT_030w9kk747Zk9-DTeI0UB-lV073g==
via: 1.1 1570d93226c1bbca2ebaad510cff3e0c.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:26 GMT
age: 5568
etag: "268e6202466941e612ff503835de9091ef4d5b38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7971 bytes)
Hash
9e135c29a8769eb12ef8c26f99097400
87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d
ce41ff79c382efc54aa2fd3ab64293d2d2b706a7f21585f4bd8bbcd9a3566126

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7971
x-amzn-requestid: e47d10e4-2b60-4998-b5fa-5b145e60aac2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhgWHgGoAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c68-5b9710a07b0a59730e73dce4;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OURSF_raDXrHV3-3ScaEdorNpW9ZKSIQjv6WUCQYHhruGz372BU_QA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:11:32 GMT
age: 3942
etag: "87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 23:17:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CWork+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlegreya+SC%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.5.10

142.250.74.106

200 OK

4.8 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CWork+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlegreya+SC%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.5.10
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
4.8 kB (4841 bytes)
Hash
7e9d402180e9a73907f88c069484d775
b11730dcd6879a78b2e1cb49129040287b2e48d1
47fc80de35679dcfe787ece28193bb2a92b9b888bdbbfdf125de552b66d56da1

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CWork+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlegreya+SC%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.5.10 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 23:17:13 GMT
date: Tue, 29 Nov 2022 23:17:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

55 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
HTML document, ASCII text
Size
55 B (55 bytes)
Hash
9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6138
Content-Type: text/html
Date: Tue, 29 Nov 2022 23:17:14 GMT
Etag: "638651c5-37"
Last-Modified: Tue, 29 Nov 2022 18:39:01 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 55

www.gstatic.com/images/branding/product/1x/translate_24dp.png

142.250.74.35

200 OK

846 B

URL HTTP/2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
846 B (846 bytes)
Hash
e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99

HTTP Headers

GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 23:15:09 GMT
expires: Wed, 29 Nov 2023 23:15:09 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 125
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.35

200 OK

1.8 kB

URL HTTP/2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:37:17 GMT
expires: Wed, 29 Nov 2023 21:37:17 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 5997
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png

142.250.74.35

200 OK

910 B

URL HTTP/2
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
910 B (910 bytes)
Hash
efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2

HTTP Headers

GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:53:10 GMT
expires: Wed, 29 Nov 2023 21:53:10 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 5044
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js

151.101.193.229

200 OK

68 kB

URL HTTP/2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP
151.101.193.229:0
ASN
#54113 FASTLY

File type
data
Size
68 kB (67902 bytes)
Hash
54f67b7d71295530007bb039d88e5809
e31d44f65f5a9418ddccb7f8d56b8434b64dfa40
a89736b4b32bd3731d7dbd752a3b7533a3f21ddf191ab950f2b7ede4ed4b4982

HTTP Headers

GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 29 Nov 2022 23:17:16 GMT
age: 21910193
x-served-by: cache-fra19156-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-common.js

104.22.25.131

200 OK

42 kB

URL HTTP/2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-common.js
IP
104.22.25.131:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65466)
Size
42 kB (42236 bytes)
Hash
922ee861d5a966f4f2710b60a0950e38
3cac9fccbe0604ae99575babc6272e0e5051663f
56cedb600640cfa8924ad5c77c250ca080f207e1eee97cbe91c0cec6cb6532fb

HTTP Headers

GET /_s/v4/app/637ddf31c8f/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 23:17:15 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"bde99510bdf9ab7bbc9ce82519a19a36"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f0e3f9e85fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

vsb20.tawk.to/s/?k=638692fc91d77096fa4b9983&cver=0&pop=false&asver=674&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MDRlN2VlMTA2N2MyNjA1YzBiODQ1NzUiLCJ2aWQiOiI2MDRlN2VlMTA2N2MyNjA1YzBiODQ1NzUtN1FfMENGS3lWVjNwc09neXBnUDQxIiwic2lkIjoiNjM4NjkyZmM5MWQ3NzA5NmZhNGI5OTgzIiwiaWF0IjoxNjY5NzYzODM2LCJleHAiOjE2Njk3NjU2MzYsImp0aSI6IlI0bndUUVVjWHhITTRKR0ZaNXFvaCJ9.cftiw50GYZESYjNKeCZsz5rtoGxg_d8vO_85ngR1UfnGQrSETZGMLFSH6wEYkVfgIYLGHOMQu7OFJ2U2wSr22Q&EIO=3&transport=websocket&__t=OJ5hYLQ

104.22.25.131

101 Switching Protocols

7.3 kB

URL HTTP/1.1
vsb20.tawk.to/s/?k=638692fc91d77096fa4b9983&cver=0&pop=false&asver=674&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MDRlN2VlMTA2N2MyNjA1YzBiODQ1NzUiLCJ2aWQiOiI2MDRlN2VlMTA2N2MyNjA1YzBiODQ1NzUtN1FfMENGS3lWVjNwc09neXBnUDQxIiwic2lkIjoiNjM4NjkyZmM5MWQ3NzA5NmZhNGI5OTgzIiwiaWF0IjoxNjY5NzYzODM2LCJleHAiOjE2Njk3NjU2MzYsImp0aSI6IlI0bndUUVVjWHhITTRKR0ZaNXFvaCJ9.cftiw50GYZESYjNKeCZsz5rtoGxg_d8vO_85ngR1UfnGQrSETZGMLFSH6wEYkVfgIYLGHOMQu7OFJ2U2wSr22Q&EIO=3&transport=websocket&__t=OJ5hYLQ
IP
104.22.25.131:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
7.3 kB (7287 bytes)
Hash
26cd9102c3d55d269f716283207af180
30dc108415e4f4cb44eedcae363a2384a0f79517
baa3a2121ab9c2b419685f1d7acf87e927a80e6ab60ac89fb423603b259e9395

HTTP Headers

GET /s/?k=638692fc91d77096fa4b9983&cver=0&pop=false&asver=674&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MDRlN2VlMTA2N2MyNjA1YzBiODQ1NzUiLCJ2aWQiOiI2MDRlN2VlMTA2N2MyNjA1YzBiODQ1NzUtN1FfMENGS3lWVjNwc09neXBnUDQxIiwic2lkIjoiNjM4NjkyZmM5MWQ3NzA5NmZhNGI5OTgzIiwiaWF0IjoxNjY5NzYzODM2LCJleHAiOjE2Njk3NjU2MzYsImp0aSI6IlI0bndUUVVjWHhITTRKR0ZaNXFvaCJ9.cftiw50GYZESYjNKeCZsz5rtoGxg_d8vO_85ngR1UfnGQrSETZGMLFSH6wEYkVfgIYLGHOMQu7OFJ2U2wSr22Q&EIO=3&transport=websocket&__t=OJ5hYLQ HTTP/1.1
Host: vsb20.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://bdbreserve.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZrmFOrZ1N2KYWvwXiyUoqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Tue, 29 Nov 2022 23:17:16 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: Nk/ESylfX9IlLsETyqp4SWFg5P0=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 771f0e48b81d0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8337 bytes)
Hash
2cb669522a324cd5d9ba1b1743138d38
71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0
a997731964710b80affb001f7f2e2f05a93550b06c1626279516d78b11332803

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8337
x-amzn-requestid: 88e6ec5a-6b04-4787-91e4-02f316d0d6e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhgYHViIAMFZrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c68-10f0d81a09c0ae930f6be726;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8XATm-S2y3wzXWzJxgof2GIbXx_7WzuEMKrhI5By_tGaB8EiYeGkLg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:59:07 GMT
age: 4693
etag: "71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js

104.22.25.131

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js
IP
104.22.25.131:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/637ddf31c8f/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 23:17:14 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f0e3f9e82fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js

104.22.25.131

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js
IP
104.22.25.131:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/637ddf31c8f/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 23:17:15 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"9075c2f5460b2832318d3c7217cc68cb"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f0e3f9e86fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js

104.22.25.131

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js
IP
104.22.25.131:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/637ddf31c8f/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 23:17:15 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f0e3f9e83fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bdbreserve.com/

66.147.236.12

200 OK

0 B

URL HTTP/2
bdbreserve.com/
IP
66.147.236.12:0
ASN
#23535 HOSTROCKET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: bdbreserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
content-type: text/html; charset=UTF-8
link: <https://bdbreserve.com/wp-json/>; rel="https://api.w.org/", <https://bdbreserve.com/wp-json/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://bdbreserve.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 23:17:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

embed.tawk.to/604e7ee1067c2605c0b84575/1f0p9v8kh

104.22.25.131

200 OK

0 B

URL HTTP/2
embed.tawk.to/604e7ee1067c2605c0b84575/1f0p9v8kh
IP
104.22.25.131:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /604e7ee1067c2605c0b84575/1f0p9v8kh HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 29 Nov 2022 23:17:14 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-637ddf31c8f"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f0e3a9c36fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js

104.22.25.131

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js
IP
104.22.25.131:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/637ddf31c8f/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 23:17:15 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f0e3f9e87fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js

104.22.25.131

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js
IP
104.22.25.131:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bdbreserve.com
Connection: keep-alive
Referer: https://bdbreserve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 23:17:15 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f0e3f9e84fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (60)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations