Report - bcvc.ink/RkD5p8V

Report Overview

Submitted URL
bcvc.ink/RkD5p8V
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-29 17:27:40
Access
Website Title
Final URL
Tags
fake_software fraud
urlquery detections
Fraud - Fake AntiVirus / Security software

Detections

urlquery
1
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	3.5 kB	66 kB	142.250.74.131
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	378 B	45 kB	172.217.21.168
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	1.1 kB	21 kB	142.250.74.110
bvmcdn.com	514130	2021-11-22T16:35:12Z	2023-03-12T18:45:11Z	521 B	681 B	188.114.97.1
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	2.4 kB	6.6 kB	93.184.220.29
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	975 B	58 kB	216.58.207.227
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	53 kB	34.120.237.76
bc.vc	241268	2012-05-23T13:34:54Z	2023-03-13T07:48:19Z	346 B	928 B	172.67.130.232
punosy.best	94086	2020-01-13T14:16:01Z	2023-03-12T18:45:12Z	737 B	26 kB	188.114.96.1
uptimecdn.com	91400	2017-11-14T21:54:27Z	2023-03-09T11:41:37Z	365 B	1.2 kB	104.21.55.95
pnsqsv.com	58208	2020-08-13T15:44:39Z	2023-03-12T18:45:11Z	373 B	673 B	188.114.96.1
bcvc.ink	unknown	2022-11-25T16:35:03Z	2023-03-13T07:48:31Z	792 B	16 kB	188.114.96.1
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.0 kB	5.3 kB	23.33.119.27
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
cdn.bvmcdn.net	unknown	2022-12-04T06:28:01Z	2023-03-12T18:45:00Z	360 B	3.4 kB	104.21.18.18
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	44.238.73.182
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	1.2 kB	1.9 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	cdn.bvmcdn.net/opdis.js?v=1.0040	6.0 kB	2023-03-08	2024-03-04
Pretty URL cdn.bvmcdn.net/opdis.js?v=1.0040 IP 104.21.18.18 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:29 Times Seen18 Hash 6325aa24c9f8ff95963f49dc4b89c672 7f47df7b5b74f74247599c13f05bee7a76788939 f7e09a9febc62a28a36de198c26133d5837b96d5504591bb863b1e9d0a9c1ca1 Loading...

	bcvc.ink/dist/js/po_v9.js?v=55710	10 kB	2023-03-08	2024-03-04
Pretty URL bcvc.ink/dist/js/po_v9.js?v=55710 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:28 Times Seen16 Hash 49507a188b882ca5365440846ff08d0c 2ed764a50d0284c0910c526c0c26cb8c61407481 081da4f3dfcf55366657b48314a623ea21406c20a1fc573040005c61b5b9674e Loading...

	bcvc.ink/RkD5p8V	317 B	2023-03-13	2023-03-13
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:27:32 Last Seen2023-03-13 11:27:32 Times Seen1 Hash 835c73d4d211cdc1e023aab310bb08cb e7b8b9725b7c5a8c74008ef1dfc4fddb8c5176e8 54e247c3776d497a8f9de19d97c0522f18bba8c113f25ed0ccafd8d417ea80af Loading...

	bcvc.ink/dist/vendor/jquery-easing/jquery.easing.min.js	2.5 kB	2023-03-07	2024-04-18
Pretty URL bcvc.ink/dist/vendor/jquery-easing/jquery.easing.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-18 07:38:19 Times Seen4395 Hash e2d41e5c8fed838d9014fea53d45ce75 bde98133f735398b27339c423a817e755329f7d1 1f7723b6b9bfced0deba108df48e3287888dd986f1ff2d5133bacc9807ac0349 Loading...

	bcvc.ink/RkD5p8V	337 B	2023-03-08	2024-03-04
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:28 Times Seen15 Hash 79f17eb064da0f691ad44543f85a14de ece7d40bd894c9705987aa718c1a62152a0b0a45 c8669c0162780408935810f4a91abf121a8eb8fb94d959e6ce165d96c4b83f6d Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	bcvc.ink/RkD5p8V	438 B	2023-03-08	2024-03-04
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:28 Times Seen15 Hash 2aef3b3837e8577d21ec9de985540e9e 5b87f0563f3731bda7c061ec3f66a9fe38e22575 b71a0efce9562d8f42fc61b694d47477a29c3c3508442b36e7ef7a09bb91f613 Loading...

	bcvc.ink/RkD5p8V	889 B	2023-03-13	2023-03-13
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:27:32 Last Seen2023-03-13 11:27:32 Times Seen1 Hash 1c76bcb7c5c66f676ee99fc74697323e 2a0fa4feb1aae6628875354050e5676f0e9c36c5 2173694119b17354c9a92fb7478c0f723005a4a5828047d7f4f97809d73f67b0 Loading...

	bcvc.ink/dist/vendor/jquery/jquery.min.js	88 kB	2023-03-07	2024-04-18
Pretty URL bcvc.ink/dist/vendor/jquery/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-18 13:34:28 Times Seen94988 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	bcvc.ink/RkD5p8V	241 B	2023-03-08	2024-03-04
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:28 Times Seen15 Hash ac9c2cace7ef24971b67d987237e1617 0d3daba33b1fd04c4bc1f677782798445d052dc3 daf2391d5edeecf8d3a41ec6766327e47b6f2bb41363bd1f29647bba4a00dce0 Loading...

	punosy.best/cdn/v3/main.min.js?v=2.346522	13 kB	2023-03-12	2024-03-04
Pretty URL punosy.best/cdn/v3/main.min.js?v=2.346522 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 09:17:47 Last Seen2024-03-04 15:45:29 Times Seen24 Hash 6c2d9a6b9391a3f00de0ac2af63e980e 671c689da8d68c9106a6e86e002ca2ea740d7c74 331dcab32d6541b4abc5e59590322e3d33aa9c73d97bb9c7c433d8c238ae52a0 Loading...

	bcvc.ink/ave.js?v=6	199 B	2023-03-08	2024-03-04
Pretty URL bcvc.ink/ave.js?v=6 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:29 Times Seen19 Hash 1e34c872bacd0cdb13c3690fac7ffd9d 3fb26fc9a94dbb4383d5e2ce3f782e4a9461a967 6142ff67e93cd59c7b45fcd13b8eeb601ab123b3fbb85c4cffc554ab01a39e46 Loading...

	bcvc.ink/RkD5p8V	670 B	2023-03-13	2023-03-13
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:27:32 Last Seen2023-03-13 11:27:32 Times Seen1 Hash 393d63ee5ae87cb219cbae4cc0b3bffa 9c33a6878511ddd1bb21bc78de864f23491d0d96 63d22d8b9f252739a4110d809260fb6851552f505aa589a80b34134698c9aa71 Loading...

	bcvc.ink/dist/vendor/bootstrap/js/bootstrap.bundle.min.js	79 kB	2023-03-07	2024-04-18
Pretty URL bcvc.ink/dist/vendor/bootstrap/js/bootstrap.bundle.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2024-04-18 10:29:25 Times Seen15623 Hash a454220fc07088bf1fdd19313b6bfd50 265a733cb7fbc481fd2510a659a85ad55c93c895 7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c Loading...

	www.googletagmanager.com/gtag/js?id=UA-12855174-12	113 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-12855174-12 IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:27:32 Last Seen2023-03-13 11:27:32 Times Seen1 Hash 73ae1630216e41865d3dcaa41b32454b fdb6f9986e4aa2cfd95a423d015ed9410affd147 622db64d569f3864e59947a5b6ccc61ff246fabb73b488575e43b46e420a8074 Loading...

	uptimecdn.com/script/compatibility.js	14 kB	2023-03-07	2024-03-30
Pretty URL uptimecdn.com/script/compatibility.js IP 104.21.55.95 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:29 Last Seen2024-03-30 19:38:05 Times Seen474 Hash 946bb9192a14e6dad035a9ec8178f073 4ed49123d975e7d51fcc523845ef7bba4157c56e 7cb4263ccaaa637a20896180c003024db4b27f66c7fda6369bf852176003422c Loading...

	bcvc.ink/dist/js/atag.js	6.7 kB	2023-03-08	2024-03-04
Pretty URL bcvc.ink/dist/js/atag.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:28 Times Seen15 Hash 4f891ccda104b42bd79ad22591664935 cf9cfa3d5980d4cd3aa9a02fb9988b7a1d3154bd 682c277f59dbce97ccffea02af80d729872cd47936ec6de2c0e364e5a415fc54 Loading...

	bcvc.ink/RkD5p8V	714 B	2023-03-13	2023-03-13
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:27:32 Last Seen2023-03-13 11:27:32 Times Seen1 Hash 2c7db5b410bf30337c142826c51ef698 a81dbc00abb035d47fd189fdbef011506c8f9e31 143c4090f4053e72737f5b1884b59f1d64f0727c31039d196e17f93cd03e2766 Loading...

	punosy.best/cdn/ipp/mn.min.js?v=0.394821	8.3 kB	2023-03-12	2023-09-16
Pretty URL punosy.best/cdn/ipp/mn.min.js?v=0.394821 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:11:29 Last Seen2023-09-16 22:47:26 Times Seen13 Hash 8c7664b2258aca94415b36176c8a01ee ddae9194045f8d0ac0472b36eeb900adca5af2b0 df1da495488bc07ccf05f23eac5488abc8e220ecd323cfedba069e0c5235e817 Loading...

	bvmcdn.net/js/b34cedc5-e6f4-466f-af77-c98c5ce4808b/main.js?v=0.1281	458 B	2023-03-08	2024-03-04
Pretty URL bvmcdn.net/js/b34cedc5-e6f4-466f-af77-c98c5ce4808b/main.js?v=0.1281 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:29 Times Seen17 Hash 7f3a3560878752e97a5f3e9b915f2ca0 26238375d1e7b69b07ec29b0ef673a2ee86035e9 7483d47a2ba933cdd01368fa11a8944df7e7313b801961c019e773292a27ac8c Loading...

	bcvc.ink/dist/js/bcvcv3.js?v=4.3	6.6 kB	2023-03-08	2024-03-04
Pretty URL bcvc.ink/dist/js/bcvcv3.js?v=4.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:28 Times Seen18 Hash 8f994332ee6d5196d2b47f217538547a 0bc57d8c9dc6fc958cc2fb3b33fa5161a720751b 363711da07053d497714c2035264b9ffe1b69fa2d8aad7aa0adfd47d6d2cc456 Loading...

	bc.vc/js/app.v5.js	1.2 kB	2023-03-08	2024-03-04
Pretty URL bc.vc/js/app.v5.js IP 172.67.130.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:27 Times Seen15 Hash 8876233bdddb9b82d0fa1a686e4a19f9 c38228347fbe77542e8d5f930ca1eb000957b6b8 3992c13a90fb7576b21fdeaee94b1d71aa5abe73d6e85e110cf38e36db8de44b Loading...

	bcvc.ink/RkD5p8V	1.7 kB	2023-03-08	2024-03-04
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:28 Times Seen15 Hash b37ca996bd7be1fde44c54301cc79ae7 1884faa7cda1e0ea9d900698b189e372cf6495c1 22d8f8fac5c98e1a1da9361ff9eafc52986ea9aedf3816e3e9e1cd3e6d478643 Loading...

	bcvc.ink/prebid-ads.js	295 B	2023-03-08	2024-03-04
Pretty URL bcvc.ink/prebid-ads.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:28 Times Seen18 Hash 7a3972f0bbd5e3d71509a202c87977ed 497dc7bbd5c1356589bad940782758dab6abb638 a851f0c46e1ff5903a4dc3cdded5769b3c50cfe4ec8ad2febd281cd141c1b1ba Loading...

	bcvc.ink/RkD5p8V	169 B	2023-03-13	2023-03-13
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:27:32 Last Seen2023-03-13 11:27:32 Times Seen1 Hash e0d964b346c21f375972eee0e2b2f4dc 8a0062a8d3fed81e36bb207dcffa21ca9cd11a4d 5eda598bb7cd49901e233d14e21a1161c47d603bb4f79a8891e98bb80d94b89d Loading...

	bcvc.ink/RkD5p8V	21 B	2023-03-08	2024-03-04
Pretty URL bcvc.ink/RkD5p8V IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:32 Last Seen2024-03-04 15:45:28 Times Seen15 Hash be33e5cca9ad9e07b393d722c1c5a05b a85b193cbae6f0a04c7ac12015e5e6c67da90d95 81a538ab86cff518336ff49fe334360020d85748fed8654a72d5c20e3c05b81d Loading...

	punosy.best/cdn/modules/click-request/module.min.js	1.7 kB	2023-03-08	2024-03-04
Pretty URL punosy.best/cdn/modules/click-request/module.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:37:11 Last Seen2024-03-04 15:45:28 Times Seen18 Hash 21659bd81200d7f945e637c03af0a5bb cf18b5e549685f7b0c0078f1afa900ba1737c929 792f79d8e2617edd8bfd06d8d252e8d0670988bc7f3670c263f7c3f3afc4f2cb Loading...

HTTP Transactions (51)

	URL	IP	Response	Size
	bcvc.ink/RkD5p8V	188.114.96.1	301 Moved Permanently	178 B
URL HTTP/1.1 bcvc.ink/RkD5p8V IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 178 B (178 bytes) Hash cd2e0e43980a00fb6a2742d3afd803b8 81ffbd1712afe8cdf138b570c0fc9934742c33c1 bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d HTTP Headers `GET /RkD5p8V HTTP/1.1 Host: bcvc.ink User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Sun, 29 Jan 2023 17:27:30 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Location: https://bcvc.ink/RkD5p8V CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eSLLC%2FU8rw5Rs%2FFxHGO9IvyLaHLpozgRjiC5iJ5qksjp6yfSxUdBMDd7MVc7L%2ByyNOo7qWRt7F5geLM4lMHoADuF0jTH4uH4SlKyEAWegLXUkYkruP0wPkQTdg%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7913adcc1b1d0b41-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5eb7c9bc996a0ff420e58af45526f053 8c2614832b8efe1c9da0bbd465d6f3f172d95a9e c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F" Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8781 Expires: Sun, 29 Jan 2023 19:53:51 GMT Date: Sun, 29 Jan 2023 17:27:30 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 81dd5c5cc5b3278876cb44dcb520a60f c0511a59e9eccdcdda98717b87c89c5d59974808 41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE" Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11111 Expires: Sun, 29 Jan 2023 20:32:41 GMT Date: Sun, 29 Jan 2023 17:27:30 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash dcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 29 Jan 2023 16:35:38 GMT content-type: application/json age: 3112 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 302c7548412192add063ad6c8b99cf3b e5d178931a27db036ce8daae302594d3ff7050b8 fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D" Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3798 Expires: Sun, 29 Jan 2023 18:30:48 GMT Date: Sun, 29 Jan 2023 17:27:30 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 6EUE/MrUtegRYdwuyJNKlhud/+lu1b37yRA49frZjKkUB3IqnVs9kfhLa7p0avOu6N7XrHkZ/bQ= x-amz-request-id: 48G1D6ZRSY9QW62K content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 29 Jan 2023 17:21:28 GMT age: 362 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.pki.goog/s/gts1p5/33Hwl1Lbc8o	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/33Hwl1Lbc8o IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash fd26e8c721b149c8362474cd47c33c88 70b5d0c19ac6be065b609f50a346fae806dc80e2 5882bab090978161b03837faa573e184f6b3d48a2c732ec8703bb7328a51c683 HTTP Headers `POST /s/gts1p5/33Hwl1Lbc8o HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sun, 29 Jan 2023 17:27:30 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.pki.goog/s/gts1p5/33Hwl1Lbc8o	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/33Hwl1Lbc8o IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash fd26e8c721b149c8362474cd47c33c88 70b5d0c19ac6be065b609f50a346fae806dc80e2 5882bab090978161b03837faa573e184f6b3d48a2c732ec8703bb7328a51c683 HTTP Headers `POST /s/gts1p5/33Hwl1Lbc8o HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bcvc.ink/RkD5p8V	188.114.97.1	200 OK	15 kB
URL HTTP/2 bcvc.ink/RkD5p8V IP 188.114.97.1:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1693), with CRLF line terminators Size 15 kB (14582 bytes) Hash d20244b68738cc5c7c9d2af64ce84424 554fb40d9bc1772df4951052b57e4cfc6cbe9331 4a191e053fa1b4f355b9e6bce6cc7980c7db628777e190a530c22cca9ef06294 HTTP Headers `GET /RkD5p8V HTTP/1.1 Host: bcvc.ink User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Sun, 29 Jan 2023 17:27:30 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding x-frame-options: SAMEORIGIN, SAMEORIGIN set-cookie: _kei_=1; expires=Sun, 29-Jan-2023 21:00:00 GMT; Max-Age=12750; path=/ x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains x-xss-protection: 1; mode=block cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FE3Qtch931l8090rsXw0xI244VWGhuzswBEV%2BReWPjoxQkDZEmt6eo8qC3%2B7tzw1Fdto0VZQgQYlrnzDhvs8%2BrgUq4kSO8i0uWkrE1QhZ9qImjjRj5h4pCAsxg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7913adceacd2b521-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	25 kB
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 25 kB (24894 bytes) Hash 8f7b78d7ad3a5bff78501da5eb80a727 199382576014d15d1bcbe16dac93b28aa349f874 ce44b57956eaa6d5259ec7750f77e154d11553bacc31b72743c944b9cea5b49f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 75bf326700e29b1b06e57fb96ee2b064 4f979f28905b65637a058cd44be6c25bb51a42e4 385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	32 kB
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 32 kB (32178 bytes) Hash 2184d4c97f2b58f73bb4169c0e4b03ff 6748fe59a67c85df91515dd1685bd9a794f01c06 8ba2f801399d21228d53bb800a3ab791bce95df8a0b7e3b6e394b07496b7ccd7 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	404 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 404 B (404 bytes) Hash 905d0c395e05566f803e32f22435afa5 1b92c9384bc48ee9200fa332098628f5fc795f4c 54b524e2b4941379d9ca6080d823d2be9f6d7020c7e2f7e48d221a118efd6915 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6593 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Etag: "63d4aeef-118" Last-Modified: Sun, 29 Jan 2023 15:37:37 GMT Server: ECS (amb/6B76) X-Cache: HIT Content-Length: 278`

	ocsp.digicert.com/	93.184.220.29	200 OK	1.1 kB
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 1.1 kB (1128 bytes) Hash c78ef64f0865f61cca7c95c305fc309d a4c7ca9be475b72d2da7742e80a846181537ceef 2d2edbd51d5fa0ea41fc8c825f1f7c3e6dee70556077602e2d7a7501feac4ddf HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 483 Cache-Control: max-age=129231 Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Etag: "63d6006e-116" Expires: Tue, 31 Jan 2023 05:21:21 GMT Last-Modified: Sun, 29 Jan 2023 05:13:18 GMT Server: ECS (amb/6BB8) X-Cache: HIT Content-Length: 278`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash cbe8674637b70787818226b0a8cdb801 de686f6519f2a5862d9363b172265de917a89cd1 2ab8eed9ba84d5fe589cc60be9423e8c65a74a7d05f2dea0b2d2bbcff1cb9dbd HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4749 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Last-Modified: Sun, 29 Jan 2023 16:08:22 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 280`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash bab8a4c1e6bb2e6c9cc00222eef1235d 1a5dd108e9f9aaf33bc048b0097a9f510d295cad fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtag/js?id=UA-12855174-12	172.217.21.168	200 OK	44 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-12855174-12 IP 172.217.21.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1759) Size 44 kB (44095 bytes) Hash 6a6a2450b17e7921a3ef7941c4230b59 6abb6da92e519bb7c42c045b9e40bb68f1fbd88b 556d9e3734e9d81a4a713ff87387114790789081f191c3a155d551c2615f267a HTTP Headers `GET /gtag/js?id=UA-12855174-12 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sun, 29 Jan 2023 17:27:30 GMT expires: Sun, 29 Jan 2023 17:27:30 GMT cache-control: private, max-age=900 last-modified: Sun, 29 Jan 2023 15:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 44095 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 661b06354b71499c0315d18d5ec841c2 eb1b5d91ed820d63f13086453fabfe80f6be66c4 80bd0f227d87cd5cf5986abc477bf5577b89af91b2736b89b76eb437e4077e59 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6593 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Last-Modified: Sun, 29 Jan 2023 15:37:37 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 278`

	punosy.best/cdn/ipp/mn.min.js?v=0.394821	188.114.96.1	200 OK	2.8 kB
URL HTTP/2 punosy.best/cdn/ipp/mn.min.js?v=0.394821 IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (8310), with no line terminators Size 2.8 kB (2776 bytes) Hash 9b2b5cedde88270670594f835f9223d4 937d9f0b912ed2738c51231e5e545339daa7bab2 7f4858e97c4459601deb5166a32d66c65234843db12f6c625a0a54b69c0b4253 HTTP Headers `GET /cdn/ipp/mn.min.js?v=0.394821 HTTP/1.1 Host: punosy.best User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 29 Jan 2023 17:27:30 GMT content-type: application/javascript; charset=utf-8 last-modified: Thu, 29 Dec 2022 12:58:09 GMT vary: Accept-Encoding etag: W/"63ad8ee1-2076" x-content-type-options: nosniff x-frame-options: DENY x-xss-protection: 1; mode=block cache-control: max-age=14400 cf-cache-status: HIT age: 5138 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q52dodp%2BcY%2BdGpd8Tdhfp5NyWmNm9IWg3c%2Bh8pWPJyRsMrkbOEeG4KgpnkYWcgUUuojt0r2zkKe3hfEvSoQPWguNgBW0lgIKJNMWRPUKUz5vQuHAOV2LuT%2B4jUM8jw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7913add13bc3b524-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	2.1 kB
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 2.1 kB (2074 bytes) Hash 1f158197252dbfd4af9f7a6ad385f6ac d85ead71f719a1796a7d5e772c0242a50888eeba 78b8c4b2669292fedf85f1819cae11dbca1221d4fc946cc904d6aa8b6c757d7f HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4749 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Last-Modified: Sun, 29 Jan 2023 16:08:22 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 280`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ba2ca6af7b23ce2e11aa4f9d86e66269 212aef55d64b6add292dcf6241b16e7c93d1bae2 f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.bvmcdn.net/opdis.js?v=1.0040	104.21.18.18	200 OK	2.5 kB
URL HTTP/2 cdn.bvmcdn.net/opdis.js?v=1.0040 IP 104.21.18.18:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 2.5 kB (2501 bytes) Hash 61fdf084402440728e06a647768307af 762801b1f7744c6d6d47d1abd0ed78425e21ea50 98c49712d6e3178f0d9c5d9d1640135f24f702077bcaddace1f5e58effaa7ef8 HTTP Headers `GET /opdis.js?v=1.0040 HTTP/1.1 Host: cdn.bvmcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 29 Jan 2023 17:27:30 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=604800 cf-bgj: minify cf-polished: origSize=11444 etag: W/"6376009f-2cb4" expires: Fri, 03 Feb 2023 20:45:52 GMT last-modified: Thu, 17 Nov 2022 09:36:31 GMT vary: Accept-Encoding x-content-type-options: nosniff x-frame-options: DENY x-xss-protection: 1; mode=block cf-cache-status: HIT age: 160898 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yVyit4TkUO5jqoTE22miB4MwNNGL%2Bai0fDR%2BSV3SClOHLFRgPDuse9JaihwsVW15qZEeKmJQVsEUi83s8SdD7TVT2IfiJZc%2FANfeCOz%2FVakHMfzvdFYIkJM0x4h9Jz6tSw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7913add14b76b51b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	punosy.best/cdn/v3/main.min.js?v=2.346522	188.114.96.1	200 OK	21 kB
URL HTTP/2 punosy.best/cdn/v3/main.min.js?v=2.346522 IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (13071), with no line terminators Size 21 kB (21117 bytes) Hash ebedc638a3cfcbdb597cacf0c7d91bc1 d9245beae5d9d1ed42628dbb3e0e205fc4c6e524 67c42f1e7e981de7f833c0cad9e340831816eee0f96f38be4b0d19913266e576 HTTP Headers `GET /cdn/v3/main.min.js?v=2.346522 HTTP/1.1 Host: punosy.best User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 29 Jan 2023 17:27:30 GMT content-type: application/javascript; charset=utf-8 last-modified: Fri, 09 Dec 2022 08:26:38 GMT vary: Accept-Encoding etag: W/"6392f13e-330f" x-content-type-options: nosniff x-frame-options: DENY x-xss-protection: 1; mode=block cache-control: max-age=14400 cf-cache-status: HIT age: 5138 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dI5vEfIPsESulxpCgfeWRI78TlVnnAp42z3ZMNucl6%2BFTStLEs0s7c80DhwNloq%2Fx54%2Fx503PrM5JdgCoAoj91Q8zhChjuZFac3r8ifs64rLGvPeFe3zkubpjZf9pQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7913add14bc5b524-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	2.8 kB
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 2.8 kB (2781 bytes) Hash d25ad0bdd7420bdfe52d7a90735dc391 7d24b39a3ce30d163ff2b6a5225a4c8f721a967c d8f2990c3436501d086c45f8650a6616893fa8a5557dec1479011f679d0fa7c9 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/s/gts1p5/9VCnrQbQz-k	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/9VCnrQbQz-k IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 1914e4d4a7db0b30b4229da7cf8f7c69 3a25a59a5f3c22533cd79d6b9e09a794bbfb7307 59768d2ccf809327f6ec9d1a6ee01809da575fcb2f7d1dac8529270ade9ae646 HTTP Headers `POST /s/gts1p5/9VCnrQbQz-k HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:31 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 29 Jan 2023 16:49:04 GMT age: 2307 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	www.google-analytics.com/analytics.js	142.250.74.110	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.110:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Sun, 29 Jan 2023 15:46:59 GMT expires: Sun, 29 Jan 2023 17:46:59 GMT cache-control: public, max-age=7200 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript age: 6032 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google-analytics.com/j/collect?v=1&_v=j99&a=14295943&t=pageview&_s=1&dl=https%3A%2F%2Fbcvc.ink%2FRkD5p8V&ul=en-us&de=UTF-8&dt=%C4%B0ndir%20KARPUZ%20JANT%20MODU%20rar&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1230294442&gjid=323457069&cid=1651562530.1675013259&tid=UA-12855174-12&_gid=867375692.1675013259&_r=1&_slc=1&cd2=399935&z=1079909996	142.250.74.110	200 OK	2 B
URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=14295943&t=pageview&_s=1&dl=https%3A%2F%2Fbcvc.ink%2FRkD5p8V&ul=en-us&de=UTF-8&dt=%C4%B0ndir%20KARPUZ%20JANT%20MODU%20rar&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1230294442&gjid=323457069&cid=1651562530.1675013259&tid=UA-12855174-12&_gid=867375692.1675013259&_r=1&_slc=1&cd2=399935&z=1079909996 IP 142.250.74.110:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash 38684612f0c6bb6dfa16da92f4a6878f 6fe62d0dd7db314b7f9bb945672f078e01d27f0f a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f HTTP Headers POST /j/collect?v=1&_v=j99&a=14295943&t=pageview&_s=1&dl=https%3A%2F%2Fbcvc.ink%2FRkD5p8V&ul=en-us&de=UTF-8&dt=%C4%B0ndir%20KARPUZ%20JANT%20MODU%20rar&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1230294442&gjid=323457069&cid=1651562530.1675013259&tid=UA-12855174-12&_gid=867375692.1675013259&_r=1&_slc=1&cd2=399935&z=1079909996 HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://bcvc.ink Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK access-control-allow-origin: https://bcvc.ink date: Sun, 29 Jan 2023 17:27:31 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 16a7b6a7128312e2f985d30df18c4487 6017bff79ffb525d9c7f9f32b999b74b5dc69602 663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16" Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9642 Expires: Sun, 29 Jan 2023 20:08:13 GMT Date: Sun, 29 Jan 2023 17:27:31 GMT Connection: keep-alive`

	fonts.gstatic.com/s/catamaran/v17/o-0IIpQoyXQa2RxT7-5r5TRA.woff2	216.58.207.227	200 OK	33 kB
URL HTTP/2 fonts.gstatic.com/s/catamaran/v17/o-0IIpQoyXQa2RxT7-5r5TRA.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 32936, version 1.0\012- data Size 33 kB (32936 bytes) Hash aa75d579aa645838875e1695b85c37ef 80cf51631e0800ff73b4613ac9980e5962c43b47 1446d98a31453a4fd4d5af36e11831aa7b52cbc92cbd001fdf4e062e0cabe461 HTTP Headers `GET /s/catamaran/v17/o-0IIpQoyXQa2RxT7-5r5TRA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://bcvc.ink Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 32936 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 27 Jan 2023 10:05:32 GMT expires: Sat, 27 Jan 2024 10:05:32 GMT cache-control: public, max-age=31536000 last-modified: Fri, 24 Jun 2022 18:45:17 GMT content-type: font/woff2 age: 199319 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/s/gts1p5/9VCnrQbQz-k	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/9VCnrQbQz-k IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 1914e4d4a7db0b30b4229da7cf8f7c69 3a25a59a5f3c22533cd79d6b9e09a794bbfb7307 59768d2ccf809327f6ec9d1a6ee01809da575fcb2f7d1dac8529270ade9ae646 HTTP Headers `POST /s/gts1p5/9VCnrQbQz-k HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:31 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	44.238.73.182	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 44.238.73.182:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: HAun91wmA8dpwuU79RIuEg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: SfQdlOauvXEym6PSOZZSAVubNZc=`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 48d4a3324ff60fa33c9373518c4460cd 66cc79aee9234d7c7ff9d6ed41b19832c0150f55 7900f5619b3750ee58235b86e999a7c67788babb005ea45702b1a8f15b235a39 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:32 GMT Etag: "63d67522-117" Server: ECS (amb/6B9E) Content-Length: 279`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69" Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18135 Expires: Sun, 29 Jan 2023 22:29:47 GMT Date: Sun, 29 Jan 2023 17:27:32 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69" Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18135 Expires: Sun, 29 Jan 2023 22:29:47 GMT Date: Sun, 29 Jan 2023 17:27:32 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg	34.120.237.76	200 OK	4.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.5 kB (4475 bytes) Hash 4205d8106659e00fff1cbe9262918b8c ab4f6528594a1725934727dc7d834c028a79c609 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4475 x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fa_e6HsaIAMF5Lg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google date: Sat, 28 Jan 2023 21:56:46 GMT age: 70246 etag: "ab4f6528594a1725934727dc7d834c028a79c609" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg	34.120.237.76	200 OK	8.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.7 kB (8652 bytes) Hash 43c4a8e963936a8064dbd2bd3c67b905 8508727c97127c98b886833af28b3470306216c2 070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8652 x-amzn-requestid: 21c734f0-cd73-4691-812e-7cd3908f8f89 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fRbH4HtPIAMFUGA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d07232-291e20fb41c53db7664d04b2;Sampled=0 x-amzn-remapped-date: Wed, 25 Jan 2023 00:05:06 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: j2zDtHz3pZLHJKG3-PaITyUzHOQBEELzuDIt7sbB8X_B10OxG394tg== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Sun, 29 Jan 2023 06:49:29 GMT age: 38283 etag: "8508727c97127c98b886833af28b3470306216c2" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg	34.120.237.76	200 OK	9.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.2 kB (9167 bytes) Hash 3be81f83687ddb6c93d3ff3c09a9dba2 50a48e737310d3f31840db4301b25927fbcc12c5 e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9167 x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fPGLfFtOIAMFp7w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0 x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Sat, 28 Jan 2023 20:46:16 GMT age: 74476 etag: "50a48e737310d3f31840db4301b25927fbcc12c5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11470 bytes) Hash 10a6491e2c1dfde68c7cd7297e70700f d0f195319825a6d3e5e50ad15b2fcab27cb65896 4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11470 x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fIf6WFgAIAMF6gw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0 x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google date: Sun, 29 Jan 2023 04:01:15 GMT age: 48377 etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d2bbd93-ce5c-4300-9ac3-8ccdde169701.jpeg	34.120.237.76	200 OK	6.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d2bbd93-ce5c-4300-9ac3-8ccdde169701.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.9 kB (6875 bytes) Hash 7ed721e83648418f4a5d64f9d038fd1a 7a311c79e311448941a8d624c1064b1a2d97cfbd b961e73aaba814eec66532ceeafad5191371fc762b05338990e8cc9c8ecfcbff HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d2bbd93-ce5c-4300-9ac3-8ccdde169701.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6875 x-amzn-requestid: 5fb13e91-8750-4dd9-90a2-f1218ea6009b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fS9t2E0AoAMF_LA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d10ff2-22e819312302377c4bf698ff;Sampled=0 x-amzn-remapped-date: Wed, 25 Jan 2023 11:18:10 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: QH_-DX5fiBhfS9MVH6pJi57mqFRRPSPf0iDbp_5BHE1jUqCZvvPesQ== via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Sun, 29 Jan 2023 08:01:17 GMT age: 33975 etag: "7a311c79e311448941a8d624c1064b1a2d97cfbd" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5594 bytes) Hash 4c77437e3a7361861aed8bfecbfe6bd6 fefd238c13c0fdfb7d964c90fcc8a8cbbf953034 282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5594 x-amzn-requestid: a13a8181-5783-42c1-9fda-1fcf8db4f0f9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fVpetFv-oAMF_Kg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d222c4-68165b34525ca2a054f0b505;Sampled=0 x-amzn-remapped-date: Thu, 26 Jan 2023 06:50:44 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: rJbdYq3bZDatEVvC83VR5WiWOFwNwVZEB16ez21KdnQJJrgJ-yKPCg== via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google date: Sun, 29 Jan 2023 14:55:48 GMT age: 9104 etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 48d4a3324ff60fa33c9373518c4460cd 66cc79aee9234d7c7ff9d6ed41b19832c0150f55 7900f5619b3750ee58235b86e999a7c67788babb005ea45702b1a8f15b235a39 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 0 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 29 Jan 2023 17:27:32 GMT Etag: "63d67522-117" Last-Modified: Sun, 29 Jan 2023 17:27:32 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 279`

	fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2	216.58.207.227	200 OK	24 kB
URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size 24 kB (23580 bytes) Hash e1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537 HTTP Headers `GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://bcvc.ink Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23580 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 24 Jan 2023 04:29:08 GMT expires: Wed, 24 Jan 2024 04:29:08 GMT cache-control: public, max-age=31536000 age: 478708 last-modified: Tue, 26 Apr 2022 15:48:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	bc.vc/js/app.v5.js	172.67.130.232	200 OK	0 B
URL HTTP/2 bc.vc/js/app.v5.js IP 172.67.130.232:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/app.v5.js HTTP/1.1 Host: bc.vc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 29 Jan 2023 17:27:30 GMT content-type: application/javascript; charset=utf-8 last-modified: Mon, 07 Aug 2017 14:31:23 GMT vary: Accept-Encoding etag: W/"598879bb-4dd" expires: Thu, 02 Feb 2023 08:43:16 GMT cache-control: max-age=604800 x-content-type-options: nosniff x-frame-options: SAMEORIGIN strict-transport-security: max-age=31536000; includeSubDomains x-xss-protection: 1; mode=block cf-cache-status: HIT age: 290654 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KiR%2BTgUBb%2FfibiY6yiHKcO%2F99cNJjp4ucWvLf2%2FhuFTGVlv4UAL0VQZZ8YxphKYCsv4D6alEjEXmgZ4VeiBQ%2FzvkWE115pscPlazl1a5nT3JKCNzJI5cgg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7913add0ad36b527-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Lato	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Lato IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Lato HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 29 Jan 2023 17:27:30 GMT date: Sun, 29 Jan 2023 17:27:30 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Muli	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Muli IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Muli HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 29 Jan 2023 17:27:30 GMT date: Sun, 29 Jan 2023 17:27:30 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Catamaran:100,200,300,400,500,600,700,800,900	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Catamaran:100,200,300,400,500,600,700,800,900 IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Catamaran:100,200,300,400,500,600,700,800,900 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 29 Jan 2023 17:27:30 GMT date: Sun, 29 Jan 2023 17:27:30 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	bvmcdn.com/d5ba2198-5df4-489f-a350-a1f374e44a0f/?type=banner&width=350&height=350&title=%25C4%25B0ndir%2520KARPUZ%2520JANT%2520MODU%2520rar,399935&image=&ck=0&subid=399935	188.114.97.1	200 OK	0 B
URL HTTP/2 bvmcdn.com/d5ba2198-5df4-489f-a350-a1f374e44a0f/?type=banner&width=350&height=350&title=%25C4%25B0ndir%2520KARPUZ%2520JANT%2520MODU%2520rar,399935&image=&ck=0&subid=399935 IP 188.114.97.1:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /d5ba2198-5df4-489f-a350-a1f374e44a0f/?type=banner&width=350&height=350&title=%25C4%25B0ndir%2520KARPUZ%2520JANT%2520MODU%2520rar,399935&image=&ck=0&subid=399935 HTTP/1.1 Host: bvmcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://bcvc.ink Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK date: Sun, 29 Jan 2023 17:27:31 GMT content-type: application/json; charset=utf-8 vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: * cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pJd3QkyQMN9JmJAFHUvEGuGN3tlFa95%2Fr56j2IIjf3YhS3SEyHbHtcJM5rHwY8moESIAVUCio0xry7Nhs%2Ff9J6WbspMzn0Vy6byb1MVzREFyc4b35J%2BOnb8aUM4W"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7913add35c16b523-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	uptimecdn.com/script/compatibility.js	104.21.55.95	200 OK	0 B
URL HTTP/2 uptimecdn.com/script/compatibility.js IP 104.21.55.95:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /script/compatibility.js HTTP/1.1 Host: uptimecdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 29 Jan 2023 17:27:30 GMT content-type: application/javascript x-guploader-uploadid: ADPycdvlhDYanHECByaSza43raCvmpFPU8fiCV7OLEX_q4EIweZAHwBoezGh7KYmWphViGMHxR6yJfcHC_HKodp5ba6Xmg x-goog-generation: 1655802523449377 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 14461 x-goog-hash: crc32c=COVK0Q==, md5=lGu5GSoU5trQNansgXjwcw== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * expires: Sun, 29 Jan 2023 16:58:34 GMT cache-control: public, max-age=14400 last-modified: Tue, 21 Jun 2022 09:08:43 GMT etag: W/"946bb9192a14e6dad035a9ec8178f073" age: 2237 alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cK3v3YNk5PGKgs0f49HLPFmify2gOqGhuJh0%2Bqzjw%2FgCTorPNbUoCh6jv3PmYgesU48G1Ba60ZV8VxygUJSEizb8Jt7ck6hF9q%2F1KNhrEfF%2BFmrtRe%2FXMLU%2BFsUBm6Bk"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7913add238da1c0a-OSL content-encoding: br X-Firefox-Spdy: h2

	pnsqsv.com/ipp/901?mc=1	188.114.96.1	200 OK	0 B
URL HTTP/2 pnsqsv.com/ipp/901?mc=1 IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /ipp/901?mc=1 HTTP/1.1 Host: pnsqsv.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://bcvc.ink Connection: keep-alive Referer: https://bcvc.ink/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 29 Jan 2023 17:27:32 GMT content-type: text/plain; charset=utf-8 vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: * cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HXmfoNizfZKXMlCgdJn2EsQjzse1nfpjgQQ8KY42cHpSwpjd92f4uwqn%2FzFsVPSHV6s7IExjYShD5NpGsW787n3QhCAn3vLUC6tHF6cAp%2B5ohQXKHJyZMFXVKwpw"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7913addc2eab0afe-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML