Report - revanced.net/

Report Overview

Visited public
2025-07-08 04:18:19
Tags
Submit Tags
URL
revanced.net/
Finishing URL
counterfeits.revanced.app/
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Title
ReVanced - Counterfeit notice

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
revanced.net	unknown	2022-04-01	2022-04-01	2025-06-29	481 B	14 kB	104.21.80.1
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-07-02	444 B	279 kB	142.250.178.72
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-07-02	479 B	2.9 kB	142.250.178.106
counterfeits.revanced.app	unknown	2022-03-20	2025-06-29	2025-06-29	11 kB	193 kB	104.26.9.2
images.dmca.com	11903	2000-05-18	2012-06-18	2025-07-01	508 B	4.3 kB	194.242.11.186
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-07-02	545 B	26 kB	142.250.74.35
api.revanced.app	unknown	2022-03-20	2023-08-08	2025-06-29	461 B	3.4 kB	104.26.9.2
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2025-07-02	528 B	20 kB	104.16.80.73

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (17)

	URL	From	Size	First Seen	Last Seen
	counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js	ScriptElement	6.0 kB	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash e91705b752678e4983f1f2b59f2850ce ba9527b4a4e6bc9c05ccef93c7371c2a69ac796f 147689caa9a848f9e5ab7db32fb4a6cf27d8b15b918654f60bd2a798fa909e66 Loading...

	counterfeits.revanced.app/_app/immutable/entry/start.C5n7LZkd.js	ScriptElement	83 B	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/entry/start.C5n7LZkd.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash 7bdc22dbcacfb48a586fa5d44590827a 7ac11fcdce0d2794b05487e5c82df33b655001b2 5cab48c9783b6cfc4a1c04d55c784e4a33d46a310c798e14459d844fa78e0ae8 Loading...

	counterfeits.revanced.app/_app/immutable/chunks/BE1sodMW.js	ImportedModule	198 B	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/chunks/BE1sodMW.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash e00af47e4353597d4432bd19a64fb168 f9c2175260e7081d7346aecf7a779e9afca5824c ccbdd8a7f10902e975726aeb0afb91df84ae51c2dff137fc837f9b39118e9959 Loading...

	counterfeits.revanced.app/_app/immutable/nodes/0.BdC3betr.js	ScriptElement	716 B	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/nodes/0.BdC3betr.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash a2005848100304b4585f9d915afa89bf 36bf08c5152e9e2ae1ff3facd5bf6c8cf3abb416 062d83b3119aa3f8f503a1e18ae9a784839a228eee5c35ec2a7dcd197b991e4b Loading...

	counterfeits.revanced.app/_app/immutable/chunks/C3QPT_kW.js	ImportedModule	7.1 kB	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/chunks/C3QPT_kW.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash 8de129f7a924d3998c41eaf7de34843a 631b882e1c2f76de787d631a52919f6e2b6d3152 cfd4112c1d69ad6ad90dead4ff8723352eee5d6716fb68f75b6bba1a54198462 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MQ6K849	ScriptElement	278 kB	2025-07-08	2025-07-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MQ6K849 IP 142.250.178.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash a348c3ff506925a73da3d04692061c88 b914e519010d0b4d784fcab1aaaf2216724ecc6a 68fbffcf3ff3c15767da3d8722e3b834194318af091359b6ad53fb022b017d7b Loading...

	counterfeits.revanced.app/_app/immutable/chunks/BZeeLo81.js	ImportedModule	1.3 kB	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/chunks/BZeeLo81.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash 230b1da2038aba3ce390aa08e72c2795 6e83ec125069838d7bc06414d01a1a1b26a057a9 b48f796cc0ddb605c69783e383540c8f2e3510afe113852ee91396bd64425ef0 Loading...

	counterfeits.revanced.app/_app/immutable/chunks/B8NDo7Oz.js	ImportedModule	32 kB	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/chunks/B8NDo7Oz.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash 063cec9cb1c002a18a358068b73e0653 964fa94ad6177d8bad3588f664eeeaa73e98911b 26513123e22f4d168e0000da5c4f5429761162a9289d602a275d0b8ecc6a1533 Loading...

	counterfeits.revanced.app/_app/immutable/chunks/B0Pbnc08.js	ImportedModule	154 B	2025-06-29	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/chunks/B0Pbnc08.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-06-29 22:40 Last Seen2025-07-08 04:18 Times Seen2 Hash 588060288481604b76bdee563dfc3fd4 f29ec63cadc1084eef8a3be4668794f227b06499 80d538d092fbd703bbcf91f2959852ba45d9346743587b9559c41447cce7b4b3 Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-07-16
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.80.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-07-16 09:14 Times Seen91123 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

	counterfeits.revanced.app/	ScriptElement	473 B	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/ IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash 70d087e12741bdf69b4d630bf9f49251 a95bf174c8154f00c0149e37f3bd4276929d74c2 cb724459671e36cbe2ea73368627e8ad4c251fb10e98ed930d0f30317b2a488b Loading...

	counterfeits.revanced.app/_app/immutable/chunks/D1vQJYxC.js	ImportedModule	16 kB	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/chunks/D1vQJYxC.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash 21bb0fd60e364fa3192b9c72a2c5a391 e2dfae3a4a21ea7c5fba03e31292882bdc87dba0 4001a07ce3b5bd212efa1f74660849c00834a44e98cee976c982a966aa092f60 Loading...

	counterfeits.revanced.app/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	ScriptElement	12 kB	2023-03-07	2025-07-16
Pretty URL counterfeits.revanced.app/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-16 09:13 Times Seen41433 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	counterfeits.revanced.app/_app/immutable/chunks/6BVPCVzl.js	ImportedModule	633 B	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/chunks/6BVPCVzl.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash 3b939f927167bca74b4f05a5eb642c07 14c37dfdd097c6083da31b89fc3e5b95fd9b8f27 12540714d08b655c6e3c3e3d210efc63a1ea791bd5de7ec195090e8585bb3a8a Loading...

	counterfeits.revanced.app/_app/immutable/chunks/BSAPNWeU.js	ImportedModule	6.7 kB	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/chunks/BSAPNWeU.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash 317d4cbd08f62aa6d95ff67865452b54 7fb9179ab65c1ee16cfcd2b9353efc988361f10d 1ef2d4fcd26b6970650f04dc1bdc7dff32565fc978d9842202184e993e08983e Loading...

	counterfeits.revanced.app/_app/immutable/nodes/1.DOdp7qs0.js	ScriptElement	1.7 kB	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/nodes/1.DOdp7qs0.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash e41b8eee280838f0cf9359bdebfae5fc 77ec6898be07a3fb05637fbdb8dcf4d86b786b36 cc6c234862e3b42f5d5f565cbd9d663c54caa8a010abfd4d7ea2b4ad5fd3af9d Loading...

	counterfeits.revanced.app/_app/immutable/nodes/2.CW9TyZyw.js	ScriptElement	20 kB	2025-07-08	2025-07-08
Pretty URL counterfeits.revanced.app/_app/immutable/nodes/2.CW9TyZyw.js IP 104.26.9.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-08 04:18 Last Seen2025-07-08 04:18 Times Seen1 Hash 4f88e4c1088f41e09211e3d858dc292f c1c5c6b11d6465b94171d5cc97443298e84090df 669dbc66d883ccaf464e7cac5decc75a5fa2245a3732cabc2fba34d382569835 Loading...

HTTP Transactions (30)

	URL	IP	Response	Size
	GET counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js	104.26.9.2	200 OK	6.0 kB
URL GET counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type ASCII text, with very long lines (5515) Size 6.0 kB (5974 bytes) Hash e91705b752678e4983f1f2b59f2850ce ba9527b4a4e6bc9c05ccef93c7371c2a69ac796f 147689caa9a848f9e5ab7db32fb4a6cf27d8b15b918654f60bd2a798fa909e66 HTTP Headers `GET /_app/immutable/entry/app.eVodBLCd.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc661dee256bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"9edad199ca2c6483d868812d007b505b" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=thrPDW6%2Faf8jAZGo2c3Kfc276v7Q%2BBmH%2F9l37sGw5cgjmuT7CxnAS1H5zy1jLgHTBt5hCVG34T77HLbSoJaXQSkVuG5JsASYAWl35VxLvvnrNRv7lrZyDQIKl%2BTdap%2BhbFHSTF%2FoUxML1pOk"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=8713&min_rtt=3141&rtt_var=3002&sent=53&recv=20&lost=0&retrans=0&sent_bytes=37479&recv_bytes=5154&delivery_rate=1149056&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1115&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/chunks/B8NDo7Oz.js	104.26.9.2	200 OK	32 kB
URL GET counterfeits.revanced.app/_app/immutable/chunks/B8NDo7Oz.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type JavaScript source, ASCII text, with very long lines (29946) Size 32 kB (31913 bytes) Hash 063cec9cb1c002a18a358068b73e0653 964fa94ad6177d8bad3588f664eeeaa73e98911b 26513123e22f4d168e0000da5c4f5429761162a9289d602a275d0b8ecc6a1533 HTTP Headers `GET /_app/immutable/chunks/B8NDo7Oz.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/entry/start.C5n7LZkd.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc6628f3856bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"9aefc7e1f027ee49fb8fe3b3128ffd88" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BAdBhrc3vRCWfTnBlvzbUxD%2FO%2B0rVe7byeC7S9hWg%2BQu2DHcQVo6xeFMC1tzMzxHkDePYHm62VzDducDqPCf%2B%2BJnspasgcjKGygifbglGniLWZUPHlEnQm0DnDL34pcr9%2BNXtRTEU%2FB67fF2"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=7082&min_rtt=1421&rtt_var=4494&sent=62&recv=26&lost=0&retrans=0&sent_bytes=41341&recv_bytes=6453&delivery_rate=1149056&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1224&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/nodes/0.BdC3betr.js	104.26.9.2	200 OK	716 B
URL GET counterfeits.revanced.app/_app/immutable/nodes/0.BdC3betr.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type Java source, ASCII text, with very long lines (715) Size 716 B (716 bytes) Hash a2005848100304b4585f9d915afa89bf 36bf08c5152e9e2ae1ff3facd5bf6c8cf3abb416 062d83b3119aa3f8f503a1e18ae9a784839a228eee5c35ec2a7dcd197b991e4b HTTP Headers `GET /_app/immutable/nodes/0.BdC3betr.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc6640ff156bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"265a69faa2cab2cb715467551b96e811" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3ZSO%2FA%2F9PNUkuezeV0aMPk4for9%2BHAtTOmVeUsHGf76pP426TILp3BCviqSlB06ZByx4%2Fkiwu5BHfJd4USON5HqhBPxPuVU%2FT0wjZ1lqvJV4a2NRUNTRxwMHKxwk9JAposZk2HvUfp6V3j00"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=4403&min_rtt=1421&rtt_var=3259&sent=97&recv=36&lost=0&retrans=0&sent_bytes=70570&recv_bytes=7933&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1470&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/chunks/B0Pbnc08.js	104.26.9.2	200 OK	154 B
URL GET counterfeits.revanced.app/_app/immutable/chunks/B0Pbnc08.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type ASCII text Size 154 B (154 bytes) Hash 588060288481604b76bdee563dfc3fd4 f29ec63cadc1084eef8a3be4668794f227b06499 80d538d092fbd703bbcf91f2959852ba45d9346743587b9559c41447cce7b4b3 HTTP Headers `GET /_app/immutable/chunks/B0Pbnc08.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/nodes/0.BdC3betr.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc664682356bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"56c9750aa320f7da062955d3efbdfea5" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=95xca3XFhwbSAg8QmqrmOep6njIEaGoBh3sudbqbokx2Ir%2FynObmh%2FeLSSZ%2FHQgPoU%2FzTfzhRYGy07VROp%2BL2dK6w4eNvhoPTMNgR4fKmUKc35RwFdnvfv6pH8m7sLzsJgBFuZRXrfIVqXGg"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: REVALIDATED priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3458&min_rtt=1421&rtt_var=2798&sent=115&recv=43&lost=0&retrans=0&sent_bytes=82765&recv_bytes=9277&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1523&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/	104.26.9.2	200 OK	13 kB
URL User Request GET counterfeits.revanced.app/ IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type HTML document, ASCII text, with very long lines (4634) Size 13 kB (13113 bytes) Hash 2ec8da90251550b3304f18413fbef00f 8beefcc14f8a25100e54f7e2c0527d844c8c004a fe899b0a8d7bc5f35dfb99233590c8eccb714fb5f841ef68e8f0c055a0f96ef0 HTTP Headers `GET / HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 08 Jul 2025 04:17:56 GMT content-type: text/html; charset=utf-8 content-encoding: br access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate link: <./_app/immutable/entry/start.C5n7LZkd.js>; rel="modulepreload", <./_app/immutable/chunks/B8NDo7Oz.js>; rel="modulepreload", <./_app/immutable/chunks/D1vQJYxC.js>; rel="modulepreload", <./_app/immutable/chunks/6BVPCVzl.js>; rel="modulepreload", <./_app/immutable/entry/app.eVodBLCd.js>; rel="modulepreload", <./_app/immutable/chunks/BSAPNWeU.js>; rel="modulepreload", <./_app/immutable/chunks/BZeeLo81.js>; rel="modulepreload", <./_app/immutable/nodes/0.BdC3betr.js>; rel="modulepreload", <./_app/immutable/chunks/BE1sodMW.js>; rel="modulepreload", <./_app/immutable/chunks/B0Pbnc08.js>; rel="modulepreload", <./_app/immutable/nodes/2.CW9TyZyw.js>; rel="modulepreload", <./_app/immutable/chunks/C3QPT_kW.js>; rel="modulepreload" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NzzLMIz2tBvIDrFijfVbwXZ5n71e8ovFAld8bCWDdSMXZX99Jz199KLSsbiCmrmmtG8BLvuU8kqiz%2FyQsuoMC%2F8SjwjthEdZluALGxTijpRpBV9Zx%2BhsRvPeDO9zGkcNgFmm0aprOniTTMwS"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare cf-ray: 95bcc65a9cc9b4ff-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfCacheStatus;desc="DYNAMIC", cfOrigin;dur=32,cfEdge;dur=18, cfL4;desc="?proto=TCP&rtt=5661&min_rtt=453&rtt_var=10443&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3285&recv_bytes=1270&delivery_rate=8551181&cwnd=254&unsent_bytes=0&cid=e803bcaa383ffd74&ts=74&x=0" X-Firefox-Spdy: h2

	GET counterfeits.revanced.app/favicon.ico	104.26.9.2	200 OK	20 kB
URL GET counterfeits.revanced.app/favicon.ico IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel Size 20 kB (20239 bytes) Hash 2326ffb2e08a5369c64ac1d6e2c66ebe 8dde70bf4954b08ea4342dd6b3645593b68ce3fa 3b09b0e36b219d01ad411ff4449e0568c50fb6da8a30e41f62a98988e4874800 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:57 GMT content-type: image/vnd.microsoft.icon cf-ray: 95bcc6614e9b56bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"a3d3cef5cb05ecfa08a5eee1fcb8dc3d" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7pwvdr5LZ3uhNeEe%2BRqCNVjHyZWluZwh4YhUR%2BWpAivDrEad6KRJOCBSvOH8la93tHueZkwYhzeViAFw5RTlQokT%2FFjy9UndInmVQIenTqjBDSvJFZrU6KP3OfyF6AbFA6XmMN8Bc671WF3E"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: REVALIDATED priority: u=6,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=8395&min_rtt=3141&rtt_var=3909&sent=29&recv=14&lost=0&retrans=0&sent_bytes=14775&recv_bytes=2765&delivery_rate=931772&cwnd=12000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1024&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/assets/2.FQyu8DOz.css	104.26.9.2	200 OK	3.7 kB
URL GET counterfeits.revanced.app/_app/immutable/assets/2.FQyu8DOz.css IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type Unicode text, UTF-8 text, with very long lines (3669) Size 3.7 kB (3680 bytes) Hash b1ca39d78b3f432ae83eeb699fafbdb6 c103653de196ef6c32b6964786f020b1a4505ec1 cb75d30524f859e458715a0640784bf0f8ff4585f74924b627d15aa874fba2c2 HTTP Headers `GET /_app/immutable/assets/2.FQyu8DOz.css HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:57 GMT content-type: text/css; charset=utf-8 cf-ray: 95bcc65d1c5756bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"097e0f3cd335ea64bf4b922378dcfdd0" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xc%2FmBJJC5VuXJX7fCUJUq9jEuPtAb3z7BIK6PaRp25YXaj8HYdwO9eNS%2FA2Ql6fHDxCtQ17fWWzEzkO%2FDzGs3iCwXr0nA6Pf%2FG%2B%2FZJDV%2F%2BzlQIBG8ahrqlHZhoXoN99AbEGTdNnnQMf2RDgw"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: REVALIDATED priority: u=2,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=9092&min_rtt=3141&rtt_var=4552&sent=23&recv=11&lost=0&retrans=0&sent_bytes=11619&recv_bytes=2384&delivery_rate=931772&cwnd=12000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=355&x=1", cfExtPri, cfHdrFlush;dur=0

	GET images.dmca.com/Badges/dmca-badge-w150-5x1-08.png?ID=c4633676-254e-4a82-9be0-c340a2b81403	194.242.11.186	200 OK	3.5 kB
URL GET images.dmca.com/Badges/dmca-badge-w150-5x1-08.png?ID=c4633676-254e-4a82-9be0-c340a2b81403 IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://counterfeits.revanced.app/ Certificate IssuerLet's Encrypt Subjectimages.dmca.com FingerprintDA:16:CD:D2:8F:F0:62:E2:4A:FC:F2:E3:4C:28:25:22:5C:60:AE:24 ValidityFri, 04 Jul 2025 11:10:44 GMT - Thu, 02 Oct 2025 11:10:43 GMT File type PNG image data, 150 x 30, 8-bit/color RGBA, interlaced Size 3.5 kB (3498 bytes) Hash 4ca1f82f5e5b9d0c572cc382cf3935a3 46eb95917b34e710cb471394a80f95e904743d7a ce784660775c196b3eaae5369bab374896a97a682531863832d64b8249d9ac14 HTTP Headers `GET /Badges/dmca-badge-w150-5x1-08.png?ID=c4633676-254e-4a82-9be0-c340a2b81403 HTTP/1.1 Host: images.dmca.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 08 Jul 2025 04:17:57 GMT content-type: image/png content-length: 3498 server: BunnyCDN-NO1-830 cdn-pullzone: 1574055 cdn-uid: c136c664-112d-4533-8247-f90f6849ab39 cdn-requestcountrycode: NO cache-control: public, max-age=31536000 etag: "fadaf3aace6d11:0" last-modified: Mon, 25 Jul 2016 19:39:16 GMT x-powered-by: ASP.NET cdn-proxyver: 1.28 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 06/04/2025 14:39:11 cdn-edgestorageid: 830 link: <https://dmca-images.azurewebsites.net/Badges/dmca-badge-w150-5x1-08.png?ID=c4633676-254e-4a82-9be0-c340a2b81403>; rel="canonical" cdn-requestid: 1bfeaccbac82851798cbe17adbf3d0d1 cdn-cache: HIT cdn-status: 200 cdn-requesttime: 0 accept-ranges: bytes X-Firefox-Spdy: h2

	GET counterfeits.revanced.app/_app/immutable/chunks/BZeeLo81.js	104.26.9.2	200 OK	1.3 kB
URL GET counterfeits.revanced.app/_app/immutable/chunks/BZeeLo81.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type Java source, ASCII text, with very long lines (1266) Size 1.3 kB (1267 bytes) Hash 230b1da2038aba3ce390aa08e72c2795 6e83ec125069838d7bc06414d01a1a1b26a057a9 b48f796cc0ddb605c69783e383540c8f2e3510afe113852ee91396bd64425ef0 HTTP Headers `GET /_app/immutable/chunks/BZeeLo81.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc6628f4156bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"43c0c76c589ca0af39c7ca0654bdab7c" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ffThk4cgcJln9c08WsUc7apruwSFQ7rNPRtli%2FLZFSsGB1NfxkmPqIKf8q41LcwX9nFkU0%2BIjSXm5oBstGIbthfPJ%2BpPBUq8dV4gozbrYyTNUqrYNOltD6tRf4PUHZDCFIwWEnhDNYIRb3Iq"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=5318&min_rtt=1421&rtt_var=4553&sent=88&recv=30&lost=0&retrans=0&sent_bytes=66708&recv_bytes=6887&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1269&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/assets/1.CIkcOo2W.css	104.26.9.2	200 OK	166 B
URL GET counterfeits.revanced.app/_app/immutable/assets/1.CIkcOo2W.css IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type ASCII text Size 166 B (166 bytes) Hash 6f62580bc3ab9159facceaa7462ad32a e577e74b5ce1e1535d11d3edbf6c778c0604ce58 ae947b75869561120365dfff0a7369f67bf32b90436f081b095c259ec68a72f1 HTTP Headers `GET /_app/immutable/assets/1.CIkcOo2W.css HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: text/css; charset=utf-8 cf-ray: 95bcc6640fee56bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"a83067dc27c4c726dc106a7ef7880f6e" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MUsWs4GOLD255Gyqn4lTAKPM%2Fnz6vBTdjtdyhr9%2Fc9I%2FehQH6CXqmW1GHcl3AS1o4Wyeur7IDEFKTHrdRwTY88jrFO27xCQjdMrr05cknopabCLNRA%2Fwd0jQxL92%2FzMMBmvwZyp4SlUdq78d"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: REVALIDATED priority: u=2,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=4671&min_rtt=1421&rtt_var=3631&sent=95&recv=35&lost=0&retrans=0&sent_bytes=69554&recv_bytes=7888&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1458&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/chunks/6BVPCVzl.js	104.26.9.2	200 OK	633 B
URL GET counterfeits.revanced.app/_app/immutable/chunks/6BVPCVzl.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type Java source, ASCII text, with very long lines (632) Size 633 B (633 bytes) Hash 3b939f927167bca74b4f05a5eb642c07 14c37dfdd097c6083da31b89fc3e5b95fd9b8f27 12540714d08b655c6e3c3e3d210efc63a1ea791bd5de7ec195090e8585bb3a8a HTTP Headers `GET /_app/immutable/chunks/6BVPCVzl.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/chunks/BSAPNWeU.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc662ff7556bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"d1b7ba96e2bbf7abe31da786a7137bfe" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hlkhQlmNjsorHIRkZplJE7umY6Ucqk1Bo8SRWKcunrkBqMlukGpk2iLat4ymvafumNA4PD0j8LMBPeDWI5M%2FPmKqO523v%2BBSp0%2B2D0AqKzJciQL5smOhWmzP9n0UPVcaz5bb%2FHL3p9IUnznN"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=4871&min_rtt=1421&rtt_var=4309&sent=90&recv=31&lost=0&retrans=0&sent_bytes=68236&recv_bytes=6932&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1291&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/favicon.ico	104.26.9.2	200 OK	20 kB
URL GET counterfeits.revanced.app/favicon.ico IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel Size 20 kB (20239 bytes) Hash 2326ffb2e08a5369c64ac1d6e2c66ebe 8dde70bf4954b08ea4342dd6b3645593b68ce3fa 3b09b0e36b219d01ad411ff4449e0568c50fb6da8a30e41f62a98988e4874800 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: image/vnd.microsoft.icon cf-ray: 95bcc666f95456bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"a3d3cef5cb05ecfa08a5eee1fcb8dc3d" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7pwvdr5LZ3uhNeEe%2BRqCNVjHyZWluZwh4YhUR%2BWpAivDrEad6KRJOCBSvOH8la93tHueZkwYhzeViAFw5RTlQokT%2FFjy9UndInmVQIenTqjBDSvJFZrU6KP3OfyF6AbFA6XmMN8Bc671WF3E"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 1 priority: u=6,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=2977&min_rtt=1405&rtt_var=1869&sent=125&recv=47&lost=0&retrans=0&sent_bytes=89067&recv_bytes=9705&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1923&x=1", cfExtPri, cfHdrFlush;dur=0

	GET fonts.gstatic.com/s/manrope/v19/xn7gYHE41ni1AdIRggexSg.woff2	142.250.74.35	200 OK	25 kB
URL GET fonts.gstatic.com/s/manrope/v19/xn7gYHE41ni1AdIRggexSg.woff2 IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subject.gstatic.com Fingerprint31:00:3B:00:14:9F:47:29:F3:46:E5:7C:57:30:CC:88:CC:DB:A8:07 ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT File type Web Open Font Format (Version 2), TrueType, length 24836, version 1.0 Size 25 kB (24836 bytes) Hash 938c6e8019b69313372c47dbb7a7c930 b42951014c5eca12749d87a4706caf22dc4fe081 a30ddcd349703aff7464c34bef3fffdff405ee50c113440d7c8693c02d210972 HTTP Headers GET /s/manrope/v19/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://counterfeits.revanced.app DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 24836 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 03 Jul 2025 10:22:55 GMT expires: Fri, 03 Jul 2026 10:22:55 GMT cache-control: public, max-age=31536000 age: 410102 last-modified: Thu, 29 May 2025 18:59:17 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET counterfeits.revanced.app/_app/immutable/entry/start.C5n7LZkd.js	104.26.9.2	200 OK	83 B
URL GET counterfeits.revanced.app/_app/immutable/entry/start.C5n7LZkd.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type Java source, ASCII text Size 83 B (83 bytes) Hash 7bdc22dbcacfb48a586fa5d44590827a 7ac11fcdce0d2794b05487e5c82df33b655001b2 5cab48c9783b6cfc4a1c04d55c784e4a33d46a310c798e14459d844fa78e0ae8 HTTP Headers `GET /_app/immutable/entry/start.C5n7LZkd.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc661cee056bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"119d993ec96ddf7688bb85decd68d58a" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gUsPxGQTVt4AnBEA%2B7vqXuXqfoGFekOn89FMslq8pz8PHKN1F6YyeO7sWwopnj9dHiyj%2Fs%2FN%2FX2QH3FSYdSxIOCUnVYOvewMLFbSqFHiWBBi8TX3CCCT2IdE23S1QHz7qe0kDhYm6fDClMHl"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=8713&min_rtt=3141&rtt_var=3002&sent=52&recv=20&lost=0&retrans=0&sent_bytes=36564&recv_bytes=5154&delivery_rate=1149056&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1114&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/chunks/BSAPNWeU.js	104.26.9.2	200 OK	6.7 kB
URL GET counterfeits.revanced.app/_app/immutable/chunks/BSAPNWeU.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type JavaScript source, ASCII text, with very long lines (6697) Size 6.7 kB (6698 bytes) Hash 317d4cbd08f62aa6d95ff67865452b54 7fb9179ab65c1ee16cfcd2b9353efc988361f10d 1ef2d4fcd26b6970650f04dc1bdc7dff32565fc978d9842202184e993e08983e HTTP Headers `GET /_app/immutable/chunks/BSAPNWeU.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc6628f3f56bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"09b92149934914f711bf89446b579b25" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aVYoAsvTR6Xc%2BEZFcHFUEHp5Q302VVL82WGEhtgiN6NNGsqHa8Ix2OZXNrR4luMJuGc%2FfWrX%2F9PJXmuPSxDiV44cr3%2FhlhMyq4g8WAvCZjM1XmzPZRP4cpUMiqHUer%2B9OgKZB1Zw29JgfGRd"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=5829&min_rtt=1421&rtt_var=4708&sent=82&recv=28&lost=0&retrans=0&sent_bytes=62538&recv_bytes=6541&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1234&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/nodes/1.DOdp7qs0.js	104.26.9.2	200 OK	1.7 kB
URL GET counterfeits.revanced.app/_app/immutable/nodes/1.DOdp7qs0.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type JavaScript source, ASCII text, with very long lines (1695) Size 1.7 kB (1696 bytes) Hash e41b8eee280838f0cf9359bdebfae5fc 77ec6898be07a3fb05637fbdb8dcf4d86b786b36 cc6c234862e3b42f5d5f565cbd9d663c54caa8a010abfd4d7ea2b4ad5fd3af9d HTTP Headers `GET /_app/immutable/nodes/1.DOdp7qs0.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc664681f56bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"be032f5adb60a7df391a99144570c896" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zBpbeyWGGJIJZVrCA%2BJwT%2B065TiVsFfG%2BoIg9VKkNmZMxrzjbuTmC1RW3z2oP5RjViuNdc%2FG3Qevcdk7ldmdLYkugcAvUeqbbEV7sbyohWh4AxnuR6QEhSRIYom4Dv28CefBjTzn%2FL1%2BOeGg"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3732&min_rtt=1421&rtt_var=3001&sent=112&recv=42&lost=0&retrans=0&sent_bytes=80919&recv_bytes=9233&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1514&x=1", cfExtPri, cfHdrFlush;dur=0

	GET api.revanced.app/v4/about	104.26.9.2	200 OK	2.0 kB
URL GET api.revanced.app/v4/about IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectrevanced.app Fingerprint34:DE:19:1D:B1:4E:A3:65:5E:E1:68:9D:B2:83:80:12:3C:51:A4:9C ValidityTue, 27 May 2025 09:03:38 GMT - Mon, 25 Aug 2025 10:03:17 GMT File type JSON text data Size 2.0 kB (2008 bytes) Hash b2e1706139f3c9d189e1833f3693a7c4 43fdf8a529b147b5850f1fe99fce5a10980b935e 63794c42564a37e283d9d92fff4933cfda4c79ac4b07fc1a0f9572aa57d4ddfb HTTP Headers `GET /v4/about HTTP/1.1 Host: api.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ Origin: https://counterfeits.revanced.app DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/json cf-ray: 95bcc6655d8156b1-OSL vary: Accept-Encoding, Origin access-control-allow-origin: https://counterfeits.revanced.app access-control-allow-credentials: true access-control-expose-headers: WWW-Authenticate cache-control: max-age=86400 strict-transport-security: max-age=15552000; includeSubDomains; preload x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff referrer-policy: no-referrer-when-downgrade permissions-policy: geolocation=(), microphone=(), camera=() content-encoding: gzip last-modified: Mon, 07 Jul 2025 11:25:00 GMT cf-cache-status: HIT age: 30579 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dX7L3PxmJncUsUUfAwNnb5DAAsjq%2Fn125uE2qx04XiiLoQvqyOW9q0xllxt3YxamhJosHaaK%2BIeKALadAuPDEVxhnGSFhgt4zdc9kgXCewFxuixyODAbeXFc%2FRZ6ems3Eh8%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=522&min_rtt=442&rtt_var=200&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3200&recv_bytes=1100&delivery_rate=7661375&cwnd=253&unsent_bytes=0&cid=c943a7ad0c3aa316&ts=41&x=0" X-Firefox-Spdy: h2

	GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	104.16.80.73	200 OK	20 kB
URL GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.80.73:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcloudflareinsights.com Fingerprint9D:9F:FB:08:8A:BA:46:3F:69:F6:F3:D7:AE:78:13:8D:FD:5A:C8:D5 ValidityWed, 25 Jun 2025 22:10:34 GMT - Tue, 23 Sep 2025 23:10:19 GMT File type JavaScript source, ASCII text, with very long lines (19948), with no line terminators Size 20 kB (19948 bytes) Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f HTTP Headers GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ Origin: https://counterfeits.revanced.app DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Tue, 08 Jul 2025 04:17:57 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2024.6.1" last-modified: Thu, 06 Jun 2024 15:52:56 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 95bcc65d881f5687-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	GET counterfeits.revanced.app/logo.svg	104.26.9.2	200 OK	442 B
URL GET counterfeits.revanced.app/logo.svg IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type SVG Scalable Vector Graphics image Size 442 B (442 bytes) Hash 3d3089088688b894fbfcbb1e5176d4b0 f11a8463d642311445280e627f37391e4e940a48 a029827a4b224fdbf2f207c20a86e9a1b32d6d94de8c938f14113a542b5c242e HTTP Headers `GET /logo.svg HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:57 GMT content-type: image/svg+xml cf-ray: 95bcc65d1c5e56bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"f995d99f0b9ee743e408fa2088e60994" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S%2FlnHB2MQr6rYHc%2BRc9OQXz%2Fbr5q1Bk5Zf2xGgoeAFv0kkQDJOLSJwESEpmhOGWFx5dKav0so4S5QWVGrVMaJmtZodQ5VY7WmNB2auQ4DxIYhlMCrIA4L725zpJaXolKPLX3ve09SJvFlPjx"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: REVALIDATED priority: u=4,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=8997&min_rtt=3141&rtt_var=3605&sent=26&recv=12&lost=0&retrans=0&sent_bytes=13626&recv_bytes=2428&delivery_rate=931772&cwnd=12000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=359&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/nodes/2.CW9TyZyw.js	104.26.9.2	200 OK	20 kB
URL GET counterfeits.revanced.app/_app/immutable/nodes/2.CW9TyZyw.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type ASCII text, with very long lines (15063) Size 20 kB (20159 bytes) Hash 4f88e4c1088f41e09211e3d858dc292f c1c5c6b11d6465b94171d5cc97443298e84090df 669dbc66d883ccaf464e7cac5decc75a5fa2245a3732cabc2fba34d382569835 HTTP Headers `GET /_app/immutable/nodes/2.CW9TyZyw.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc6640ff356bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"d01ed5e2cb2cbe2ead427a036e15232d" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gNNGfuBI5ADVpwAseK3o28rC%2FC0nH0kj0njpzdSEyGXa6oEaG0lK96SH%2B%2BAmD%2Fv7XVUNwmqCvwuW0sJzSHwno7eT9j6zcbXWmBODgjLoIIQMFv8NaFl9aFBHE7hEpuvW0CUaU5%2BWhUbTgBu1"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=4403&min_rtt=1421&rtt_var=3259&sent=99&recv=36&lost=0&retrans=0&sent_bytes=71894&recv_bytes=7933&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1472&x=1", cfExtPri, cfHdrFlush;dur=0

	GET revanced.net/	104.21.80.1	301 Moved Permanently	13 kB
URL User Request GET revanced.net/ IP 104.21.80.1:443 ASN #13335 CLOUDFLARENET Certificate IssuerCLOUDFLARE, INC. Subjectrevanced.net Fingerprint6A:CA:14:BD:B3:11:8C:0C:C1:60:19:24:F3:83:68:6C:F9:47:6C:50 ValidityFri, 30 May 2025 11:30:22 GMT - Thu, 28 Aug 2025 11:38:05 GMT File type Size 13 kB (13113 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: revanced.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 301 Moved Permanently date: Tue, 08 Jul 2025 04:17:56 GMT location: https://counterfeits.revanced.app/ vary: accept-encoding report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZAd7%2B3wCNEjkBXalh3TH5s0MD9BzBfzhdxmjV96rtXkEofAX669QvOOQ2yDN67LgzJyldfB7Ab9%2F30ErNnKqsVmrjSqS7STJesw%3D"}]} nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} server: cloudflare cf-ray: 95bcc65a1b4856ba-OSL X-Firefox-Spdy: h2`

	GET counterfeits.revanced.app/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	104.26.9.2	200 OK	12 kB
URL GET counterfeits.revanced.app/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type JavaScript source, ASCII text, with very long lines (12331) Size 12 kB (12332 bytes) Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 HTTP Headers `GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:57 GMT content-type: application/javascript last-modified: Mon, 30 Jun 2025 18:08:27 GMT etag: W/"6862d29b-302c" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cKr3%2FY3yZWEOUCZpwMmxh%2FhrJnWCkfUb1XcfNqKYgDou4S2tfjuOhrfVhXPBY1O8RYRzNh1kI3r91gzYwR7JzMI5FX7tH8kt5I5vaDp3BD84GSSHZxyr1P80OcabxMdLOhUhZlmwVivMatI%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains; preload x-content-type-options: nosniff speculation-rules: "/cdn-cgi/speculation" server: cloudflare cf-ray: 95bcc65d1c6056bb-OSL x-frame-options: DENY expires: Thu, 10 Jul 2025 04:17:57 GMT cache-control: max-age=172800, public content-encoding: gzip

	POST counterfeits.revanced.app/cdn-cgi/rum?	104.26.9.2	204 No Content	0 B
URL POST counterfeits.revanced.app/cdn-cgi/rum? IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ content-type: application/json Content-Length: 1406 Origin: https://counterfeits.revanced.app DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 204 No Content date: Tue, 08 Jul 2025 04:17:58 GMT access-control-allow-origin: https://counterfeits.revanced.app access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 95bcc661eeec56bb-OSL x-frame-options: DENY x-content-type-options: nosniff`

	GET counterfeits.revanced.app/_app/immutable/chunks/C3QPT_kW.js	104.26.9.2	200 OK	7.1 kB
URL GET counterfeits.revanced.app/_app/immutable/chunks/C3QPT_kW.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (6095) Size 7.1 kB (7132 bytes) Hash 8de129f7a924d3998c41eaf7de34843a 631b882e1c2f76de787d631a52919f6e2b6d3152 cfd4112c1d69ad6ad90dead4ff8723352eee5d6716fb68f75b6bba1a54198462 HTTP Headers `GET /_app/immutable/chunks/C3QPT_kW.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/nodes/2.CW9TyZyw.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc664782c56bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"d844d328e873ac99ca13c5e228ae02de" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6WUX729lg7qszgk6cHvFB1aMF07Os8%2FaGCHGe7Fn1Edo5w9O5NRrFM82cHRuYdYK5NTy1emzAyvbVvqAKpDVBE8a9UXbGebn1fzJ8CrC2ygtdW6es5av%2FhVm7pLlT9of41fnVlX2xZWgwPzw"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3106&min_rtt=1405&rtt_var=2150&sent=119&recv=45&lost=0&retrans=0&sent_bytes=84791&recv_bytes=9366&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1536&x=1", cfExtPri, cfHdrFlush;dur=0

	GET www.googletagmanager.com/gtm.js?id=GTM-MQ6K849	142.250.178.72	200 OK	278 kB
URL GET www.googletagmanager.com/gtm.js?id=GTM-MQ6K849 IP 142.250.178.72:443 ASN #15169 GOOGLE Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subject.google-analytics.com Fingerprint06:CD:2A:9C:6E:F9:40:51:AA:E0:81:4A:BB:69:6C:BA:FA:AD:AB:4D ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT File type JavaScript source, ASCII text, with very long lines (4748) Size 278 kB (277602 bytes) Hash a348c3ff506925a73da3d04692061c88 b914e519010d0b4d784fcab1aaaf2216724ecc6a 68fbffcf3ff3c15767da3d8722e3b834194318af091359b6ad53fb022b017d7b HTTP Headers `GET /gtm.js?id=GTM-MQ6K849 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 08 Jul 2025 04:17:58 GMT expires: Tue, 08 Jul 2025 04:17:58 GMT cache-control: private, max-age=900 last-modified: Tue, 08 Jul 2025 03:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1319:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1319:0 report-to: {"group":"ascgcycc:1319:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1319:0"}],} server: Google Tag Manager content-length: 95806 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET counterfeits.revanced.app/_app/immutable/assets/0.BfSkA_SL.css	104.26.9.2	200 OK	2.2 kB
URL GET counterfeits.revanced.app/_app/immutable/assets/0.BfSkA_SL.css IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type ASCII text, with very long lines (2223) Size 2.2 kB (2224 bytes) Hash bacf94e21aad175f6e9fef9e55ff6ef6 080a2874177c21e4ad49cc359bbd4dc2410d6483 bcae43defe1c8b3a4f26dbd2844487a4226fc5abf8dbd1b35fc378385e76473a HTTP Headers `GET /_app/immutable/assets/0.BfSkA_SL.css HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:57 GMT content-type: text/css; charset=utf-8 cf-ray: 95bcc65d0c5456bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"c8d826ce71157f8a2ee10854201dbdfb" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g3Egl%2FNrmlTM7OEvrNsqcEGLjqHUhagDBDrtWLNS8c0YSGjxc5SoD9ahf%2FVFVE44rrQxAXGyploYO2ILue90ETW9wHsSbC7hZa7IaqD8n5tb2b%2F4ZHeznzWm5KfeP%2BopEO6p1vNl5xGn2vUK"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: REVALIDATED priority: u=2,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=9943&min_rtt=7782&rtt_var=3802&sent=18&recv=10&lost=0&retrans=0&sent_bytes=8692&recv_bytes=2340&delivery_rate=492818&cwnd=12000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=348&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/assets/Button.DZ6ey6-d.css	104.26.9.2	200 OK	701 B
URL GET counterfeits.revanced.app/_app/immutable/assets/Button.DZ6ey6-d.css IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type ASCII text, with very long lines (700) Size 701 B (701 bytes) Hash b9d41feeb6696fe54e3620572431e6eb 76487a36305f3674861e6e8507e8a7303a48b79a e2dc254885f9cf59b42a6540cbcdf00bd598d2a9261f62fa813ede9f2bf6563d HTTP Headers `GET /_app/immutable/assets/Button.DZ6ey6-d.css HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:57 GMT content-type: text/css; charset=utf-8 cf-ray: 95bcc65d1c5656bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"50b062ce066d38b0ed20b86261ce8076" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gKDxPOFYCO0HTUefvaxDBrxKxqHnbyzKpiiINLP5CjKXGTZzbeIhOi8d1lmYrkDZZ%2FL0kuiI1QkzIW%2F4MAJySmfj2iwQ2CmE7nBUV91l3tzYJ3Rbil0gOVx6%2BxxBWO6O43z%2F4v7a4IrQGQoo"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: REVALIDATED priority: u=2,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=9943&min_rtt=7782&rtt_var=3802&sent=21&recv=10&lost=0&retrans=0&sent_bytes=10413&recv_bytes=2340&delivery_rate=492818&cwnd=12000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=350&x=1", cfExtPri, cfHdrFlush;dur=0

	GET counterfeits.revanced.app/_app/immutable/chunks/BE1sodMW.js	104.26.9.2	200 OK	198 B
URL GET counterfeits.revanced.app/_app/immutable/chunks/BE1sodMW.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type Java source, ASCII text Size 198 B (198 bytes) Hash e00af47e4353597d4432bd19a64fb168 f9c2175260e7081d7346aecf7a779e9afca5824c ccbdd8a7f10902e975726aeb0afb91df84ae51c2dff137fc837f9b39118e9959 HTTP Headers `GET /_app/immutable/chunks/BE1sodMW.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/nodes/0.BdC3betr.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc664682156bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"570d52b226c929530520a3718d28833d" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WjsBgHF83TBH5a32864myV61pNxKSKw%2BYXLCm4Ofi5d%2FclkRrdrthH5BW1DubqufiHQGwY2%2BcDqg%2F4EBRT2MXuvRWASp09fkmlAERro8hnQnJ3zBm8kGnLnkrMCh9XXdUxCs%2FxM3KV272Jl%2F"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3201&min_rtt=1405&rtt_var=2612&sent=117&recv=44&lost=0&retrans=0&sent_bytes=83766&recv_bytes=9321&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1530&x=1", cfExtPri, cfHdrFlush;dur=0

	GET fonts.googleapis.com/css2?family=Manrope:wght@200..800&display=swap	142.250.178.106	200 OK	2.2 kB
URL GET fonts.googleapis.com/css2?family=Manrope:wght@200..800&display=swap IP 142.250.178.106:443 ASN #15169 GOOGLE Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectupload.video.google.com FingerprintB7:F0:7E:3A:46:13:9F:42:76:6A:5D:6E:85:25:78:85:99:EE:67:71 ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT File type ASCII text Size 2.2 kB (2168 bytes) Hash 77018145163a955db32d4c2cfbb57f0f 2635cb6af085688276331d583bb75b45b040bffc fb686243cce8e0dd8c03996b4f5e447cb25f57d5f152272adc2bbb0031708965 HTTP Headers `GET /css2?family=Manrope:wght@200..800&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 08 Jul 2025 04:17:57 GMT date: Tue, 08 Jul 2025 04:17:57 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET counterfeits.revanced.app/_app/immutable/chunks/D1vQJYxC.js	104.26.9.2	200 OK	16 kB
URL GET counterfeits.revanced.app/_app/immutable/chunks/D1vQJYxC.js IP 104.26.9.2:443 ASN #13335 CLOUDFLARENET Requested by https://counterfeits.revanced.app/ Certificate IssuerGoogle Trust Services Subjectcounterfeits.revanced.app FingerprintE8:7B:33:3E:A4:19:7C:D4:B6:2B:4C:D7:B1:7C:F8:14:63:62:51:EB ValidityTue, 20 May 2025 16:06:28 GMT - Mon, 18 Aug 2025 17:06:24 GMT File type JavaScript source, ASCII text, with very long lines (16427) Size 16 kB (16428 bytes) Hash 21bb0fd60e364fa3192b9c72a2c5a391 e2dfae3a4a21ea7c5fba03e31292882bdc87dba0 4001a07ce3b5bd212efa1f74660849c00834a44e98cee976c982a966aa092f60 HTTP Headers `GET /_app/immutable/chunks/D1vQJYxC.js HTTP/1.1 Host: counterfeits.revanced.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://counterfeits.revanced.app/_app/immutable/entry/app.eVodBLCd.js DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 08 Jul 2025 04:17:58 GMT content-type: application/javascript cf-ray: 95bcc6628f3c56bb-OSL access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"7ae75b8d27f182319ae4342fde2aa930" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZH1wPPoeDbz9VICsKY%2BxWtJ0jcYjlqD4ElJaLWQZBu7XYbrAegK8KUtaVusOLSnPvI%2BhI%2BqY7zc7OZ0grTDs1Xa5orN42kkjhGudmfEty2i1Qs3EOHtcK2cYOuvGplMKVFGIJzVdYeD2LsB8"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS priority: u=3,i=?0 strict-transport-security: max-age=15552000; includeSubDomains; preload speculation-rules: "/cdn-cgi/speculation" server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=6429&min_rtt=1421&rtt_var=4677&sent=74&recv=27&lost=0&retrans=0&sent_bytes=54866&recv_bytes=6497&delivery_rate=7286823&cwnd=24000&unsent_bytes=0&cid=a5d34a8290dcf2b3&ts=1228&x=1", cfExtPri, cfHdrFlush;dur=0

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML