Report - tukix.net/qp9sKz1A43Pt/news/cf39278a6d0b89ca4223ddd1b1526157/cmF5QGJyaXRlY29yZS5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is

Report Overview

Submitted URL
tukix.net/qp9sKz1A43Pt/news/cf39278a6d0b89ca4223ddd1b1526157/cmF5QGJyaXRlY29yZS5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is_retargeting=true
IP
183.181.83.141
ASN
#131965 Xserver Inc.
Submitted
2024-04-16 20:39:28
Access
public
Website Title
Sign in to your account
Final URL
k3ed.icu/main/main.php#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?cfg=ray@britecore.com
Tags
phishing microsoft outlook suspicious
urlquery detections
Phishing - Microsoft Outlook
Suspicious - Anti-debugging code

Detections

urlquery
4
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
aadcdn.msauth.net	1421	2018-10-25	2018-11-19	2024-04-16	500 B	21 kB	13.107.246.53
tukix.net	unknown	2008-09-09	2015-06-19	2024-04-16	665 B	239 B	183.181.83.141
k3ed.icu	unknown	2024-04-12	2024-04-12	2024-04-16	2.8 kB	30 kB	194.5.212.157
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-16	1.2 kB	4.5 kB	104.17.3.184
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-16	862 B	58 kB	104.17.25.14
outlook.office.com	77	1999-04-20	2018-12-21	2019-01-03	423 B	8.7 kB	52.98.149.178
bc1q40c2emxhhsumh59zjrhxrhp.com	unknown	2024-02-24	2024-02-24	2024-03-28	1.0 kB	17 kB	193.222.96.132
aadcdn.msftauth.net	1455	2018-10-25	2018-11-19	2024-04-16	2.5 kB	44 kB	152.199.23.37

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-04-29
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-29 21:47:52 Times Seen263283 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	unknown	6.6 kB	2024-04-16	2024-04-16
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash 03c5d05c5c8c08b96a7951810b9240d7 9d45d055567656a9a61bdc46438f474db09fd736 53df319a62ea578dc66b49c43400eae773243d1c12447ecedac2620395c9400e Loading...

	k3ed.icu/main/main.php#1PLuwyRsC4TqKB0Ee93uttjQdlx2E8gFX2auA1Xd5QDQsEvGNzbg3u7gQFiuNz9LBkgbldor32ivGNctnoKqSSGIxZdkyn6aHmm2zLuDNM9uAlYXJInCB4l83ytCWzNDW9FwUa9HWjcwFaupSR1uVnCZW5CSFpvCyb8tlhbiBnOgxiFqaHU64w61CITi7pUGA29WkkeVH3cemRFwzzDD6JFIry0zXVgyXpuhKJdrMpG8hlFQViu119JtHK3FFjdDJIVtr8VdyBmPX1FSj9UliDP0oSF4bTHUCCo3KjhjVD8SFNLYXFjfj8fH1VMdOt8r5wuQPM9KqiD56o434ninwy5xtSLilTJrpeif1sZrKCxQ1BT6ZcuvKA3esOxNIhf7vxmxZmZKZwA17u77HBCscGGEvesdvHl1fHye4xZ34A4c5bjMNWe0CVE896mEOHG3peiuMhxQSB3XNmJBiYBVTg32nqHb8ofyCy2pQzgIbjFZGoBYmdTgtXjQo12wpi42Q7rGGIpS24SIttGQHA6ayq1Wr4tQmySdFkUm3je5n7NRAuHh4OsDeuAFy3wVBo8hJ3DMmSRKZFBA9iSe6kRkPs0nvwj7VrpEv2rRVjBUYcv8unmBIeWxGXVctekpGJ4bMv2HOECNQ7VlvhXdwTLcQGpkVJJBsNNejPW8uyVkGQGb8DpExbRnRgIN0rosfcHy1DGwcCQSsx4BatgHF85xpNkpeJSuVA2XdJtqljjOQnp1RGIwON3dAnDP6vj25mZj5sKrM3fDrFEilnPaaTnLg1BnxUqDhpWnRHODK3hbIVu4ijetcCftDQRaLhO2GKpysecchto0oT5HcjbpWqTzgLK12y4JjuiMIuY0Xn1mg64tqfTmFMVWyGYAf2kzxClg7kg5HhsYowsOMlas86oGMmh2pBBXeWdlgtrYLTWaqoYcK9ETf3z2qR4QtFNHC13SuuQgnNrNbp0WzFPOIpQ9gVZJBNrdOu5jZWAnJ1bVrbR0QGPz6GJmBJ5cwxql1wE1sfobgz6ILYICFxcLeV7PEd2bKtwMZaNrpcDGMJoxH7anFm8ThgIWuL7eeD1dOPFe1iVN2jlKrv76RfZ9wI50udeIRgWF5CU7UQVWahGBMOHE3GOzpUzT7OCY5zEbbzi6pe3zvJahySWBzKbYELSMAuKF4pRfZ9monpYT99aH17jBRvAwgsiRX3x1tohsyDRW2QPbZZT17cDYHdvYFNPCRnEkLVNkzFgBv5Nv5GxcTabAoGz3upGmMlHyguSPa8rGefbjVJvPTHqinZlSo2ebnVJEqCuBLVhZasi6cOV5vlnTlJLJM0UaWEOnhiY2df1oIkvU8r0ENox88iSVjN5frTCIcAKqQMOz7kufLvTyTrG2JyX2l2iNWUv9vgzm3oVaIqqtVk2PLIRuhPxCSQpPKVYgcxCgWyqEZR8UbaJWTBraqZMjPc8A86QlEtBA22f1UnV5yF1rgtBHso1hB9RKgI5UbHudKKfE8aKGQM77fJPH8QZJZRufzAaLhFY2peHxordfdlms5bad2aX21rhA1smj7lmwz33YvhdIDAbIMmWOwTQyl89mAvGHQ2ep5hnAzAjcbvVXRRLoLCW6K5tlA92qbgPhydS8NblYGgWy7IWSkTZ5YsqzBtZNKP4j2WrQ8MPP2Mnauk3Oe3TdvjM6NMUxCYQFViw34mS78giCBmqQpk3UEP1rCVZeUPTP8pTcLMkT3DwFZWvphyjWoln0hnecd72lxVxiIScLvIruFWTXvdTTzhURE83Rg6cO2K7KCjw82XCIUwFpKyjkQdcumgmCmyqojy8VRF3UDGCxdhXYQhjGuvbRLxt75UwotFkkkoeX5Rvj8shZKBFe6R5Soz0tuwSXbdiwBxuHoZ0xsixcTdr04xSs7SWCoOzA2S6DpAlOAlm3ETfx7HxbepDlizXGoxhqqn4PYpEzL1CpVRX2zudNUQ9cq7TPFaf5ykVwKz5vBIVwzSy9nLWiC6v3eoSTz8Y8sTEctKI4sDB2w9bTU8bxfGAt5tnFBlN4fshIdZNGDoJ9yV3t4e0jVBN14aHGvuKLX2ub2hRFGAPevSHz6IT2jH4oRL4ngP8eRCpTUgzBRoQmgyWngQqAxuYof3MwSUKKx9Esqd3hCUESsBgIrGjZahoqlaXd5HYDRD5hQ9yt3dmvOCegjyfuPDUbORpTznwq0CHRMglPtHlhkAxD8N7Yq29eUy8tVFTWiBO4R9TlRfCbPaPXXXWoZ5DTDLmzrgwJRkNJuH4lWHxMSmKPjGeiMRcpDzZ4QvOIQBrljwGged26ANWTuacg2pFGYFLObzw2bYnuv4LJiOPSBLM5WZlZo1FnHqbSZIUbHiGcmrVEfLwRxjWuiitGk832zfUzYPKG7qStRO77AEY8XVCfd6Wyf0AOgvnel8VsyNWqC4xdIwlGrXWF4SdjTO79jvoEDj7c74CJ8aXRGix7guMkn0DgPLp9gNOU6V6dZIX8SVZzexGv1tQoutFjf4swSgqZcwdcfbk76jHkQnPSRFhl9WEp16VUnmTzS7L7i5fppWJgkz8bfqxpmbPoiKiF7cfZj17B6n1wkKMFkVQAlo0IzP7SAqyHCNHVOOxVcyrwjebEa2fvqfe04mSFMqmoe3k3SSY4rqBLFMpPPFlfUAgZW8EIz17N5sQYkP2MgExVqXLgC6wwGMwDUbmucthiW8ghYj3eXAaoyVEa2aHJXdmRoJmBcDT9MaqKttZq49PC5uM8EuRCHet6XPHatBjgLJ0fdZGh9vUfZHnEbfgStKZqAGB4iVk4EkjSkZauv4JuL79WmpPPaOgKvSONN8SstbkObuiHy2ck9lgvL5lVUCGpvvdiE5L8h5WtAea9hmtqIJWtPipJV69qBmJgsuoJAkcaznjQJNhrxdVmvk6rrfR2BAj45HNF20QBn9s7XJyuXuQsPXTgcLjOmCSrjG6lGWX46qb49Ky6epz3mtkzeDoAfg2yX9UE6SIc?cfg=ray@britecore.com	4.2 kB	2024-04-16	2024-04-19
Pretty URL k3ed.icu/main/main.php#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?cfg=ray@britecore.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 00:32:16 Last Seen2024-04-19 09:41:43 Times Seen190 Hash bcbf3815f7d4f8975dfc3d5e823eafa6 6fb38099b6f82307e8b0022aac08673936f5aab1 cddbd0745a0e364f4945147af5c68aaa5026ab44c7869381780ca483eb0fe290 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 632e5d5bfb32b4f2f54e8fd492b95bd1	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash 632e5d5bfb32b4f2f54e8fd492b95bd1 94a5112353e129ad7722959b5ec2f50e9535850f cd3080d410919a7d59848ff719fb997f32191124a16f0060005222a0fc7be1ce Loading...

	#2 Eval - 4685f39abc0e5d7bc8d725a46f9fe1a4	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash 4685f39abc0e5d7bc8d725a46f9fe1a4 7a368fcb2d2573468ed9b76190623c3de26eb14a 9affc01af58f72e26e93fffe986f5af969fb63cc4cccfa8ae5f7a3dc9ed02c32 Loading...

	#3 Eval - dfd2ffe917d55e6970fc66569b7a64b8	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash dfd2ffe917d55e6970fc66569b7a64b8 b07512acbcfafa1a2eed884628e37743e89d701e f3ad52dd4051bec1b3f3903a29a27b4a7ca34231a07b1bd6888425b38ec728e7 Loading...

	#4 Eval - 3cdbf18b7e8572a0d3369958704836fb	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash 3cdbf18b7e8572a0d3369958704836fb 9e1de684eb47a750e57bad709258ab054c5f5049 b2c01063c4755e4d6914c118400580a9a67f0ea4e7aa87890f0a25733e5a05e8 Loading...

	#5 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-29 21:53:24 Times Seen350645 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#6 Eval - 2a17faed0f9858b26c6f73028bb7e67f	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash 2a17faed0f9858b26c6f73028bb7e67f 6e76bca3651ed0cfee4ce0c2ba82f0ba541a23de f6dc3d58b61a14272a1793ed389263e411be3ec49972b14f8d08fc3b95bc4001 Loading...

	#7 Eval - b7191b135fae927aee2061e66da43779	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash b7191b135fae927aee2061e66da43779 ade6c9b617690aa1d5802cbe49017a15424f6783 5c9880d71e3f25db5e4e3ba4e0715041b40b6695f864095ea0f12db61a26511a Loading...

	#8 Eval - f24e494cf58c9d4c113786a600efd048	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash f24e494cf58c9d4c113786a600efd048 c7dfdc5821ca5022d7f25d9c003022bae80b3200 41cbdfe0d061bc26096b9ee2de50941c4571bff5e788e6e309fd18040402457a Loading...

	#9 Eval - 4f963a330f94c78da190194ac9ba80c8	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash 4f963a330f94c78da190194ac9ba80c8 6dc515ecaddc549838698cae0a4b35c001fad724 57aa2d8b81e83c65d0b5b8144b4ff690b156cf7ce47bc88a089d6a00428c899c Loading...

	#10 Eval - cd8500925968e7b9d339831ac24342c6	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash cd8500925968e7b9d339831ac24342c6 8da83d5cb052fdc115a2bcf2ccc2fc74ea3aec17 f89fbe6cb69ff3b3f167c60b627c5a12083e919077c66abdc371dc16792bfb25 Loading...

	#11 Eval - ac6d43b49aec2f87daf340337b6a7882	60 B	2024-04-04	2024-04-17
Pretty Observations First Seen2024-04-04 12:28:09 Last Seen2024-04-17 16:04:31 Times Seen3428 Hash ac6d43b49aec2f87daf340337b6a7882 d3874a31a6b7fe11121edc3ed80fdc8b66f6589a 1af55b64e0b39e0f5f760a8050b284a66fe404ddff945697590f8240798311b2 Loading...

	#12 Eval - d12384cac8a2a341c2d4f5119a5e4c6a	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash d12384cac8a2a341c2d4f5119a5e4c6a 6ee1a2ce295c2dde19cead92ace15e10fa04d519 7fa8d4655501c7ee053f8d9f02b2ff715e290657cfcfa2ca5d37c1e0221b11d6 Loading...

	#13 Eval - b5b8dedb3bcb243a400f344d7e2188bc	144 B	2024-04-04	2024-04-17
Pretty Observations First Seen2024-04-04 13:15:39 Last Seen2024-04-17 14:03:52 Times Seen765 Hash b5b8dedb3bcb243a400f344d7e2188bc deb6d93bb172dc9fa4a5ac9141b54b7600f5eb1b bd8aa22f6ba3314fb18e581bf8a4cd701096bb8604a9eb5de195869407e4ce43 Loading...

		Size	First Seen	Last Seen
	#1 Write - 8a0bed010a9fd21a560b90da24f37189	795 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 12:57:45 Last Seen2024-04-19 15:49:12 Times Seen3733 Hash 8a0bed010a9fd21a560b90da24f37189 38972fe20940c05edb4139a266dffe2e8e627b1a bc30534b563e7ba1a059a806e101b42c69104b5aacb6afe2293b575e9935dfde Loading...

	#2 Write - e4508d7b4aa37325133e0c3636661671	16 kB	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:39:29 Last Seen2024-04-16 22:39:29 Times Seen1 Hash e4508d7b4aa37325133e0c3636661671 f43981976d82ceff61c6f5dba92f289f8c845068 64972ab47b4b1ab0f9d18b3d804855b51ae5754d02190a794e93456ebb2fc32f Loading...

HTTP Transactions (19)

	URL	IP	Response	Size
	tukix.net/qp9sKz1A43Pt/news/cf39278a6d0b89ca4223ddd1b1526157/cmF5QGJyaXRlY29yZS5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is_retargeting=true	183.181.83.141		0 B
URL tukix.net/qp9sKz1A43Pt/news/cf39278a6d0b89ca4223ddd1b1526157/cmF5QGJyaXRlY29yZS5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is_retargeting=true IP 183.181.83.141:0 ASN #131965 Xserver Inc. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /qp9sKz1A43Pt/news/cf39278a6d0b89ca4223ddd1b1526157/cmF5QGJyaXRlY29yZS5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is_retargeting=true HTTP/1.1 Host: tukix.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Tue, 16 Apr 2024 20:39:03 GMT content-type: text/html; charset=UTF-8 content-length: 0 refresh: 0;url=https://k3ed.icu?e=ray@britecore.com vary: User-Agent accept-ranges: bytes X-Firefox-Spdy: h2`

	k3ed.icu/?e=ray@britecore.com	194.5.212.157		0 B
URL k3ed.icu/?e=ray@britecore.com IP 194.5.212.157:0 ASN #9009 M247 Europe SRL File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /?e=ray@britecore.com HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 302 Found Server: nginx Date: Tue, 16 Apr 2024 20:39:04 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Connection: keep-alive Keep-Alive: timeout=60 X-Powered-By: PHP/5.4.16 Set-Cookie: PHPSESSID=mejd52k3igahe9uuv927p2rkh7; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache location: main/`

	k3ed.icu/main/	194.5.212.157		3.5 kB
URL k3ed.icu/main/ IP 194.5.212.157:0 ASN #9009 M247 Europe SRL File type JavaScript source, ASCII text, with very long lines (3081) Size 3.5 kB (3529 bytes) Hash 03c5800311550302a0cb76a8e642b710 3dc7b64fe3f8d4ea9274700f62f51275987d70ee e42b8c8137c12141edabb62aa86ab22a8f4b9a3c0a96f2787ed49b7d3b4b59b5 HTTP Headers `GET /main/ HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: PHPSESSID=mejd52k3igahe9uuv927p2rkh7 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Tue, 16 Apr 2024 20:39:04 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/5.4.16 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Encoding: gzip`

	challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	104.17.3.184		0 B
URL challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Tue, 16 Apr 2024 20:39:04 GMT content-length: 0 location: /turnstile/v0/b/bcc5fb0a8815/api.js?onload=onloadTurnstileCallback cross-origin-resource-policy: cross-origin access-control-allow-origin: * cache-control: max-age=300, public vary: Accept-Encoding server: cloudflare cf-ray: 8756fb8cab3fb4ee-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	k3ed.icu/favicon.ico	194.5.212.157		135 B
URL k3ed.icu/favicon.ico IP 194.5.212.157:0 ASN #9009 M247 Europe SRL File type HTML document, ASCII text Size 135 B (135 bytes) Hash 83b862bead2d480026254fb2a6eb9969 26bad9e6c1579172b0e3b6bc1c18918164ff6478 fb258cb538ca92d61c8cd4eb08cc23da70c278b8766eaa731ce11e9b2f1da4d4 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/main/ Cookie: PHPSESSID=mejd52k3igahe9uuv927p2rkh7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Tue, 16 Apr 2024 20:39:04 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 135 Connection: keep-alive Keep-Alive: timeout=60 Last-Modified: Mon, 15 Apr 2024 19:23:05 GMT ETag: "87-616278cfe1d53" Accept-Ranges: bytes`

	k3ed.icu/main/main.php	194.5.212.157		5.7 kB
URL k3ed.icu/main/main.php IP 194.5.212.157:0 ASN #9009 M247 Europe SRL File type HTML document, ASCII text, with very long lines (4198) Size 5.7 kB (5655 bytes) Hash e11c2acf1ae86fc07f6c79e559a6075a 6b430e0023c111831bdd16e24f8039dd90c091bf 10c57b3e50bc1fc08d7e6de8562b40c1b0147b98e1ee09290edd2cfcb7375620 HTTP Headers POST /main/main.php HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 539 Origin: https://k3ed.icu DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/main/ Cookie: PHPSESSID=mejd52k3igahe9uuv927p2rkh7 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Sec-Fetch-User: ?1 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Tue, 16 Apr 2024 20:39:10 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/5.4.16 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Encoding: gzip`

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	104.17.25.14	200 OK	28 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.25.14:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 28 kB (27938 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 16 Apr 2024 20:39:10 GMT content-type: application/javascript; charset=utf-8 content-length: 27938 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "603e8adc-15d9d" last-modified: Tue, 02 Mar 2021 18:58:36 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 2825457 expires: Sun, 06 Apr 2025 20:39:10 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E83lhLXj7OI6k1DiOftIcPgESwEiymSO5FinbPePZOXd8DgP%2BRjG8Euq2d4U%2BqnxJfooGPYoo0lJzAT%2B6SA3f4JGL2GJ1IxVfBlQmMs1vBR168WSyVyw9k7wriQsantNtIn0kbN8"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 8756fbb53d2056be-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	outlook.office.com/mail/favicon.ico	52.98.149.178	200 OK	7.9 kB
URL GET HTTP/2 outlook.office.com/mail/favicon.ico IP 52.98.149.178:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerDigiCert Inc Subjectoutlook.com Fingerprint2C:61:C5:26:BC:9A:1C:E6:BE:6B:92:00:FC:AF:29:2A:23:84:5E:5C ValidityMon, 22 Jan 2024 00:00:00 GMT - Tue, 21 Jan 2025 23:59:59 GMT File type MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel Size 7.9 kB (7886 bytes) Hash ac16fa7fc862073b02acd1187fc6def4 f2b9a6255f6293000f30eee272abdd372a14e9d3 e35d94b76894d6eca96ff5b1a12d94dfe73485ef3c52cb5b4395be8ffac1cb45 HTTP Headers `GET /mail/favicon.ico HTTP/1.1 Host: outlook.office.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-length: 7886 content-type: image/x-icon last-modified: Mon, 15 Apr 2024 16:41:28 GMT accept-ranges: bytes etag: "1da8f53c326b2ce" server: Microsoft-IIS/10.0 request-id: 22444162-84eb-b91a-89fb-a547f5502414 strict-transport-security: max-age=31536000; includeSubDomains; preload alt-svc: h3=":443";ma=2592000,h3-29=":443";ma=2592000 x-preferredroutingkeydiagnostics: 0 x-calculatedbetarget: GV2PPF390DB4E8F.SWEP280.PROD.OUTLOOK.COM x-backendhttpstatus: 200 x-besku: UNKNOWN x-proxy-routingcorrectness: 1 x-proxy-backendserverstatus: 200 x-firsthopcafeefz: GVX x-bepartition: Clique/CLSWEP280GVX00 x-feproxyinfo: GV3P280CA0073.SWEP280.PROD.OUTLOOK.COM x-feefzinfo: GVX ms-cv: YkFEIuuEGrmJ+6VH9VAkFA.1 x-powered-by: ASP.NET x-feserver: GV3P280CA0073 date: Tue, 16 Apr 2024 20:38:56 GMT X-Firefox-Spdy: h2

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/311052937:1713296339:dyNZRVyFj33mXqOpc4BCshoPkAbdAmX472fJZU2cIo8/8756fb8d781256b9/07a6b23de45eeaf	104.17.3.184		3.0 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/311052937:1713296339:dyNZRVyFj33mXqOpc4BCshoPkAbdAmX472fJZU2cIo8/8756fb8d781256b9/07a6b23de45eeaf IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (3344), with no line terminators Size 3.0 kB (3033 bytes) Hash 20f5cf775c7ab11073597ddcbab9eabf 1d46a614de915871c5ad5774796c2ae572566bbd 1d9245aa446647e81f71d0e4025924cacab5d019a0395c4ace3a79ec7a4ea7fc HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/311052937:1713296339:dyNZRVyFj33mXqOpc4BCshoPkAbdAmX472fJZU2cIo8/8756fb8d781256b9/07a6b23de45eeaf HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/epdud/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: 07a6b23de45eeaf Content-Length: 35359 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 16 Apr 2024 20:39:10 GMT content-type: text/html; charset=UTF-8 cf-chl-out: ytJExp9G7rEVnLSAlQdo54RKpSNqUgV7kF6uQqfmuYcZ9JYzLFk4oPGHP2W+q4puo9dzd+5j0iHGR9vzU64dmEtyikJ0L5XQUvLJLEwKuET9kcfN2HOiEe/ARkKyXfpY$4zKYb6MuLkLk4h51hbgqcA== cf-chl-out-s: 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$yYl+XWJ1y1cqZ6zPC1+GXw== server: cloudflare cf-ray: 8756fbafe9ea56b9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	bc1q40c2emxhhsumh59zjrhxrhp.com/api/v3/auth	193.222.96.132	200 OK	2 B
URL OPTIONS HTTP/1.1 bc1q40c2emxhhsumh59zjrhxrhp.com/api/v3/auth IP 193.222.96.132:443 ASN #203168 Constant MOULIN Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerLet's Encrypt Subjectbc1q40c2emxhhsumh59zjrhxrhp.com Fingerprint48:9A:4F:1A:B8:FC:BD:69:69:82:D1:71:4A:E7:3A:E0:39:F2:04:DA ValiditySat, 24 Feb 2024 20:50:15 GMT - Fri, 24 May 2024 20:50:14 GMT File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash e0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3 HTTP Headers OPTIONS /api/v3/auth HTTP/1.1 Host: bc1q40c2emxhhsumh59zjrhxrhp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://k3ed.icu/ Origin: https://k3ed.icu DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK date: Tue, 16 Apr 2024 20:39:12 GMT server: uvicorn vary: Origin access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT access-control-max-age: 600 access-control-allow-credentials: true access-control-allow-origin: https://k3ed.icu access-control-allow-headers: content-type content-length: 2 content-type: text/plain; charset=utf-8`

	bc1q40c2emxhhsumh59zjrhxrhp.com/api/v3/auth	193.222.96.132	200 OK	16 kB
URL OPTIONS HTTP/1.1 bc1q40c2emxhhsumh59zjrhxrhp.com/api/v3/auth IP 193.222.96.132:443 ASN #203168 Constant MOULIN Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerLet's Encrypt Subjectbc1q40c2emxhhsumh59zjrhxrhp.com Fingerprint48:9A:4F:1A:B8:FC:BD:69:69:82:D1:71:4A:E7:3A:E0:39:F2:04:DA ValiditySat, 24 Feb 2024 20:50:15 GMT - Fri, 24 May 2024 20:50:14 GMT File type JSON text data Size 16 kB (16470 bytes) Hash 165d8a8cc59a71c0f9afb96fb9fd7b4c c76320f91d4d065441578fc2831b2638f638de60 3ae58746635067010f103f2467b7bb7d67b419257bcac7855ab369598dcf7d8e HTTP Headers POST /api/v3/auth HTTP/1.1 Host: bc1q40c2emxhhsumh59zjrhxrhp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 169 Origin: https://k3ed.icu DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK date: Tue, 16 Apr 2024 20:39:12 GMT server: uvicorn content-length: 16470 content-type: application/json access-control-allow-origin: * access-control-allow-credentials: true`

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	104.17.25.14	200 OK	28 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.25.14:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 28 kB (27938 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 16 Apr 2024 20:39:16 GMT content-type: application/javascript; charset=utf-8 content-length: 27938 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "603e8adc-15d9d" last-modified: Tue, 02 Mar 2021 18:58:36 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 2825463 expires: Sun, 06 Apr 2025 20:39:16 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5ujc%2BDLG3HFZ3dTxQVlziGUOihGCRZLOD9UJl3W37kBsm2r1W%2FhbbEdyk2%2BYN%2BMXtquDiVap%2BCRp%2BM77LJwwAdunhoGOszJGGmoWqHNCM6ceZdKVkOicgybkznD3duOB3CngGoe2"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 8756fbd95d4c712e-OSL alt-svc: h3=":443"; ma=86400

	aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg	152.199.23.37	200 OK	1.4 kB
URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg IP 152.199.23.37:443 ASN #15133 EDGECAST Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 1.4 kB (1435 bytes) Hash ee5c8d9fb6248c938fd0dc19370e90bd d01a22720918b781338b5bbf9202b241a5f99ee4 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a HTTP Headers `GET /shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1 Host: aadcdn.msftauth.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-encoding: gzip accept-ranges: bytes access-control-allow-origin: * access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding age: 1780329 cache-control: public, max-age=31536000 content-md5: nzaLxFgP7ZB3dfMcaybWzw== content-type: image/svg+xml date: Tue, 16 Apr 2024 20:39:16 GMT etag: 0x8D79A1B9F5E121A last-modified: Thu, 16 Jan 2020 00:32:52 GMT server: ECAcc (ska/F76D) vary: Accept-Encoding x-cache: HIT x-ms-blob-type: BlockBlob x-ms-lease-status: unlocked x-ms-request-id: a1e45449-701e-0068-210c-804015000000 x-ms-version: 2009-09-19 content-length: 1435 X-Firefox-Spdy: h2

	aadcdn.msftauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg	152.199.23.37	200 OK	621 B
URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg IP 152.199.23.37:443 ASN #15133 EDGECAST Requested by https://k3ed.icu/main/main.php#1PLuwyRsC4TqKB0Ee93uttjQdlx2E8gFX2auA1Xd5QDQsEvGNzbg3u7gQFiuNz9LBkgbldor32ivGNctnoKqSSGIxZdkyn6aHmm2zLuDNM9uAlYXJInCB4l83ytCWzNDW9FwUa9HWjcwFaupSR1uVnCZW5CSFpvCyb8tlhbiBnOgxiFqaHU64w61CITi7pUGA29WkkeVH3cemRFwzzDD6JFIry0zXVgyXpuhKJdrMpG8hlFQViu119JtHK3FFjdDJIVtr8VdyBmPX1FSj9UliDP0oSF4bTHUCCo3KjhjVD8SFNLYXFjfj8fH1VMdOt8r5wuQPM9KqiD56o434ninwy5xtSLilTJrpeif1sZrKCxQ1BT6ZcuvKA3esOxNIhf7vxmxZmZKZwA17u77HBCscGGEvesdvHl1fHye4xZ34A4c5bjMNWe0CVE896mEOHG3peiuMhxQSB3XNmJBiYBVTg32nqHb8ofyCy2pQzgIbjFZGoBYmdTgtXjQo12wpi42Q7rGGIpS24SIttGQHA6ayq1Wr4tQmySdFkUm3je5n7NRAuHh4OsDeuAFy3wVBo8hJ3DMmSRKZFBA9iSe6kRkPs0nvwj7VrpEv2rRVjBUYcv8unmBIeWxGXVctekpGJ4bMv2HOECNQ7VlvhXdwTLcQGpkVJJBsNNejPW8uyVkGQGb8DpExbRnRgIN0rosfcHy1DGwcCQSsx4BatgHF85xpNkpeJSuVA2XdJtqljjOQnp1RGIwON3dAnDP6vj25mZj5sKrM3fDrFEilnPaaTnLg1BnxUqDhpWnRHODK3hbIVu4ijetcCftDQRaLhO2GKpysecchto0oT5HcjbpWqTzgLK12y4JjuiMIuY0Xn1mg64tqfTmFMVWyGYAf2kzxClg7kg5HhsYowsOMlas86oGMmh2pBBXeWdlgtrYLTWaqoYcK9ETf3z2qR4QtFNHC13SuuQgnNrNbp0WzFPOIpQ9gVZJBNrdOu5jZWAnJ1bVrbR0QGPz6GJmBJ5cwxql1wE1sfobgz6ILYICFxcLeV7PEd2bKtwMZaNrpcDGMJoxH7anFm8ThgIWuL7eeD1dOPFe1iVN2jlKrv76RfZ9wI50udeIRgWF5CU7UQVWahGBMOHE3GOzpUzT7OCY5zEbbzi6pe3zvJahySWBzKbYELSMAuKF4pRfZ9monpYT99aH17jBRvAwgsiRX3x1tohsyDRW2QPbZZT17cDYHdvYFNPCRnEkLVNkzFgBv5Nv5GxcTabAoGz3upGmMlHyguSPa8rGefbjVJvPTHqinZlSo2ebnVJEqCuBLVhZasi6cOV5vlnTlJLJM0UaWEOnhiY2df1oIkvU8r0ENox88iSVjN5frTCIcAKqQMOz7kufLvTyTrG2JyX2l2iNWUv9vgzm3oVaIqqtVk2PLIRuhPxCSQpPKVYgcxCgWyqEZR8UbaJWTBraqZMjPc8A86QlEtBA22f1UnV5yF1rgtBHso1hB9RKgI5UbHudKKfE8aKGQM77fJPH8QZJZRufzAaLhFY2peHxordfdlms5bad2aX21rhA1smj7lmwz33YvhdIDAbIMmWOwTQyl89mAvGHQ2ep5hnAzAjcbvVXRRLoLCW6K5tlA92qbgPhydS8NblYGgWy7IWSkTZ5YsqzBtZNKP4j2WrQ8MPP2Mnauk3Oe3TdvjM6NMUxCYQFViw34mS78giCBmqQpk3UEP1rCVZeUPTP8pTcLMkT3DwFZWvphyjWoln0hnecd72lxVxiIScLvIruFWTXvdTTzhURE83Rg6cO2K7KCjw82XCIUwFpKyjkQdcumgmCmyqojy8VRF3UDGCxdhXYQhjGuvbRLxt75UwotFkkkoeX5Rvj8shZKBFe6R5Soz0tuwSXbdiwBxuHoZ0xsixcTdr04xSs7SWCoOzA2S6DpAlOAlm3ETfx7HxbepDlizXGoxhqqn4PYpEzL1CpVRX2zudNUQ9cq7TPFaf5ykVwKz5vBIVwzSy9nLWiC6v3eoSTz8Y8sTEctKI4sDB2w9bTU8bxfGAt5tnFBlN4fshIdZNGDoJ9yV3t4e0jVBN14aHGvuKLX2ub2hRFGAPevSHz6IT2jH4oRL4ngP8eRCpTUgzBRoQmgyWngQqAxuYof3MwSUKKx9Esqd3hCUESsBgIrGjZahoqlaXd5HYDRD5hQ9yt3dmvOCegjyfuPDUbORpTznwq0CHRMglPtHlhkAxD8N7Yq29eUy8tVFTWiBO4R9TlRfCbPaPXXXWoZ5DTDLmzrgwJRkNJuH4lWHxMSmKPjGeiMRcpDzZ4QvOIQBrljwGged26ANWTuacg2pFGYFLObzw2bYnuv4LJiOPSBLM5WZlZo1FnHqbSZIUbHiGcmrVEfLwRxjWuiitGk832zfUzYPKG7qStRO77AEY8XVCfd6Wyf0AOgvnel8VsyNWqC4xdIwlGrXWF4SdjTO79jvoEDj7c74CJ8aXRGix7guMkn0DgPLp9gNOU6V6dZIX8SVZzexGv1tQoutFjf4swSgqZcwdcfbk76jHkQnPSRFhl9WEp16VUnmTzS7L7i5fppWJgkz8bfqxpmbPoiKiF7cfZj17B6n1wkKMFkVQAlo0IzP7SAqyHCNHVOOxVcyrwjebEa2fvqfe04mSFMqmoe3k3SSY4rqBLFMpPPFlfUAgZW8EIz17N5sQYkP2MgExVqXLgC6wwGMwDUbmucthiW8ghYj3eXAaoyVEa2aHJXdmRoJmBcDT9MaqKttZq49PC5uM8EuRCHet6XPHatBjgLJ0fdZGh9vUfZHnEbfgStKZqAGB4iVk4EkjSkZauv4JuL79WmpPPaOgKvSONN8SstbkObuiHy2ck9lgvL5lVUCGpvvdiE5L8h5WtAea9hmtqIJWtPipJV69qBmJgsuoJAkcaznjQJNhrxdVmvk6rrfR2BAj45HNF20QBn9s7XJyuXuQsPXTgcLjOmCSrjG6lGWX46qb49Ky6epz3mtkzeDoAfg2yX9UE6SIc?cfg=ray@britecore.com Certificate IssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 621 B (621 bytes) Hash 4e48046ce74f4b89d45037c90576bfac 4a41b3b51ed787f7b33294202da72220c7cd2c32 8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93 HTTP Headers `GET /shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1 Host: aadcdn.msftauth.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-encoding: gzip accept-ranges: bytes access-control-allow-origin: * access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding age: 1962034 cache-control: public, max-age=31536000 content-md5: R2FAVxfpONfnQAuxVxXbHg== content-type: image/svg+xml date: Tue, 16 Apr 2024 20:39:16 GMT etag: 0x8D8852A740F01B9 last-modified: Tue, 10 Nov 2020 03:41:05 GMT server: ECAcc (ska/F695) vary: Accept-Encoding x-cache: HIT x-ms-blob-type: BlockBlob x-ms-lease-status: unlocked x-ms-request-id: 4c2f906d-401e-0037-6c65-7eaa39000000 x-ms-version: 2009-09-19 content-length: 621 X-Firefox-Spdy: h2

	aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css	152.199.23.37	200 OK	20 kB
URL GET HTTP/2 aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css IP 152.199.23.37:443 ASN #15133 EDGECAST Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (61177) Size 20 kB (19970 bytes) Hash f0e5964f8bbedf73d2d3001623bb663b aadf3504d5e5a93e678487eeb4a63398f2699341 9537f00ca371747a97a2acca388f7b2379a7fa7c59bde18c3d2621c0de8de492 HTTP Headers `GET /ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css HTTP/1.1 Host: aadcdn.msftauth.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Moz: prefetch DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-encoding: gzip accept-ranges: bytes access-control-allow-origin: * access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding age: 1926694 cache-control: public, max-age=31536000 content-md5: 9K2/nGCj75WAmmAI9nZNCA== content-type: text/css date: Tue, 16 Apr 2024 20:39:16 GMT etag: 0x8DA7650B375AC9B last-modified: Thu, 04 Aug 2022 19:37:00 GMT server: ECAcc (ska/F7A0) vary: Accept-Encoding x-cache: HIT x-ms-blob-type: BlockBlob x-ms-lease-status: unlocked x-ms-request-id: 8887ee14-601e-0019-5fb8-7e9917000000 x-ms-version: 2009-09-19 content-length: 19970 X-Firefox-Spdy: h2

	aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css	13.107.246.53	200 OK	20 kB
URL GET HTTP/2 aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css IP 13.107.246.53:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerDigiCert Inc Subjectaadcdn.msauth.net FingerprintEB:7C:D1:4E:EF:B5:D4:72:25:0B:1A:AF:5F:10:3D:EA:13:80:5A:47 ValidityMon, 29 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT File type ASCII text, with very long lines (61177) Size 20 kB (19953 bytes) Hash ce26137fc0d9b7d7a0d52ebe3a186512 b9d7fb3fe7d08f46c2d1153bb47b13809375c663 1304c5090f063c677a5b3720fe7b97ef4d9ea102e2bdd837ce399df6057fe385 HTTP Headers `GET /ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css HTTP/1.1 Host: aadcdn.msauth.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://k3ed.icu DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 16 Apr 2024 20:39:16 GMT content-type: text/css content-length: 19953 cache-control: public, max-age=31536000 content-encoding: gzip last-modified: Mon, 18 Apr 2022 21:18:26 GMT etag: 0x8DA2180FA29F5AF x-ms-request-id: 7fee1130-201e-0058-3033-8fdebc000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref: 20240416T203916Z-16c87f56bf7wrdm6rf6untz4q000000004yg000000004k5h x-fd-int-roxy-purgeid: 4554691 x-cache: TCP_HIT accept-ranges: bytes X-Firefox-Spdy: h2

	aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico	152.199.23.37	200 OK	17 kB
URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico IP 152.199.23.37:443 ASN #15133 EDGECAST Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Size 17 kB (17174 bytes) Hash 12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21 HTTP Headers `GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1 Host: aadcdn.msftauth.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding age: 1966734 cache-control: public, max-age=31536000 content-md5: EuPayFgGHQiAI7K9SOL6lg== content-type: image/x-icon date: Tue, 16 Apr 2024 20:39:16 GMT etag: 0x8D8731240E548EB last-modified: Sun, 18 Oct 2020 03:02:30 GMT server: ECAcc (ska/F738) x-cache: HIT x-ms-blob-type: BlockBlob x-ms-lease-status: unlocked x-ms-request-id: 582df77a-301e-0028-1b5a-7e9304000000 x-ms-version: 2009-09-19 content-length: 17174 X-Firefox-Spdy: h2

	aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg	152.199.23.37	200 OK	673 B
URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg IP 152.199.23.37:443 ASN #15133 EDGECAST Requested by https://k3ed.icu/main/main.php#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?cfg=ray@britecore.com Certificate IssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 673 B (673 bytes) Hash bc3d32a696895f78c19df6c717586a5d 9191cb156a30a3ed79c44c0a16c95159e8ff689d 0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68 HTTP Headers `GET /shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1 Host: aadcdn.msftauth.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-encoding: gzip accept-ranges: bytes access-control-allow-origin: * access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding age: 1965965 cache-control: public, max-age=31536000 content-md5: DhdidjYrlCeaRJJRG/y9mA== content-type: image/svg+xml date: Tue, 16 Apr 2024 20:39:16 GMT etag: 0x8D7B007297AE131 last-modified: Wed, 12 Feb 2020 22:01:50 GMT server: ECAcc (ska/F732) vary: Accept-Encoding x-cache: HIT x-ms-blob-type: BlockBlob x-ms-lease-status: unlocked x-ms-request-id: 52d23733-f01e-004c-3a5c-7e7d2e000000 x-ms-version: 2009-09-19 content-length: 673 X-Firefox-Spdy: h2

	k3ed.icu/main/main.php	194.5.212.157	200 OK	19 kB
URL User Request POST HTTP/1.1 k3ed.icu/main/main.php IP 194.5.212.157:443 ASN #9009 M247 Europe SRL Certificate IssuerLet's Encrypt Subjectk3ed.icu Fingerprint38:8C:F9:F9:50:CB:2F:02:9C:6D:EE:ED:BE:32:CE:22:DB:AC:19:E4 ValidityFri, 12 Apr 2024 19:50:22 GMT - Thu, 11 Jul 2024 19:50:21 GMT File type HTML document, ASCII text, with very long lines (4198) Size 19 kB (19233 bytes) Hash e11c2acf1ae86fc07f6c79e559a6075a 6b430e0023c111831bdd16e24f8039dd90c091bf 10c57b3e50bc1fc08d7e6de8562b40c1b0147b98e1ee09290edd2cfcb7375620 HTTP Headers POST /main/main.php HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 539 Origin: https://k3ed.icu DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/main/ Cookie: PHPSESSID=mejd52k3igahe9uuv927p2rkh7 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Sec-Fetch-User: ?1 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Tue, 16 Apr 2024 20:39:10 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/5.4.16 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Encoding: gzip`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (19)

URL

IP

ASN

File type

Size