Report - tukix.net/qp9sKz1A43Pt/news/375e2d9ac717821add82f7c82fc4fa02/ZmVybi5nbG93aW5za3lAbWVycmNvLmNvbQ==

Report Overview

Submitted URL
tukix.net/qp9sKz1A43Pt/news/375e2d9ac717821add82f7c82fc4fa02/ZmVybi5nbG93aW5za3lAbWVycmNvLmNvbQ==
IP
183.181.83.141
ASN
#131965 Xserver Inc.
Submitted
2024-04-16 20:14:27
Access
public
Website Title
Loading... Wait...
Final URL
k3ed.icu/main/main.php#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?cfg=fern.glowinsky@merrco.com
Tags
suspicious
urlquery detections
Suspicious - Anti-debugging code

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
tukix.net	unknown	2008-09-09	2015-06-19	2024-04-16	551 B	247 B	183.181.83.141
k3ed.icu	unknown	2024-04-12	2024-04-12	2024-04-16	2.1 kB	4.8 kB	194.5.212.157
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-16	7.1 kB	773 kB	104.17.2.184
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-16	424 B	29 kB	104.17.25.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (47)

	URL	Size	First Seen	Last Seen
	k3ed.icu/main/	0 B	2023-03-07	2024-04-29
Pretty URL k3ed.icu/main/ IP 194.5.212.157 ASN #9009 M247 Europe SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 20:22:16 Times Seen37189014 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8756d7498f47b509	435 kB	2024-04-16	2024-04-16
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8756d7498f47b509 IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 22:14:27 Last Seen2024-04-16 22:14:29 Times Seen2 Hash f05902fa873d1bd6b8ca22aee386efd1 4f089437e5b0d681857be213dcc4d61323520f11 63c80d73006d2cf6ded4b2ef7f81aba018dbaf915315dd676380f51de8e4b4f0 Loading...

	k3ed.icu/main/	0 B	2023-03-07	2024-04-29
Pretty URL k3ed.icu/main/ IP 194.5.212.157 ASN #9009 M247 Europe SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 20:22:16 Times Seen37189014 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	790 B	2024-02-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-07 04:49:48 Last Seen2024-04-19 15:49:11 Times Seen119 Hash a706fbb0bc40bf8c6f1abc82d05efb3b 8b77b60a079fd7bc231b089668ce9a36974a30a7 202d6608974ba82ed57a51038ca52d1697eead72d8be0729715002d6b6f9cdd6 Loading...

	challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	41 kB	2024-04-04	2024-04-17
Pretty URL challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 12:45:54 Last Seen2024-04-17 16:04:31 Times Seen3430 Hash d1048a66fc11ea28c3cb1488fac82c62 f055707cf91f637ec19bf5e65bf378857e798469 8f1ad19042c2f9ee60c2de21f37f788af7b1ecccda8eec1d877f9b9c0e994370 Loading...

	k3ed.icu/main/	0 B	2023-03-07	2024-04-29
Pretty URL k3ed.icu/main/ IP 194.5.212.157 ASN #9009 M247 Europe SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 20:22:16 Times Seen37189014 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal	3.3 kB	2024-04-16	2024-04-16
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 22:14:27 Last Seen2024-04-16 22:14:27 Times Seen1 Hash 06e2622c8422232fd1b3d6d19b1ec970 cf6b61b99f3d1e9d36c262e0fdfee951ec457f80 aea17331a60f9a6f65665876b50065934862ef016eb0ed0b4699089e7dc918a4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 48e9a1a2fa1cf4e819eb83f6486ad79d	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:27 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 48e9a1a2fa1cf4e819eb83f6486ad79d d9151595fd00e16e49c787e6312b7fb394d4de4c e2687451799cb4f0ebb6ede9e173cf74c47c8706aa60e73c089ba9c714d0e3de Loading...

	#2 Eval - 8434a7c3a0dee8200d5c4f408cd5a9a8	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 8434a7c3a0dee8200d5c4f408cd5a9a8 9a59ca946ef3d234385e9fe593c706c770f2c316 eb406f4c2ee0da64107a53c36c65266877daae941b47eb2c5c79a46469c589e3 Loading...

	#3 Eval - 7b10e8df4f837a3ef0ba9b427804a4d5	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 7b10e8df4f837a3ef0ba9b427804a4d5 a0178468b5422f33c75551b9bfa3b8a31cec060c 433e8a57d8766567b9f0de81bec77bb9dce33dd4abf924c5fcd7437a10658590 Loading...

	#4 Eval - 690f0fc0cfcbffdacf42768f1d47f3cf	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 690f0fc0cfcbffdacf42768f1d47f3cf 45da4c7e788aa73aa308546fd2f35c7b9b18826e 2805e0d11b9978f0ac9f890ad5f048ee8b1078701710a6668710a12074f58b1a Loading...

	#5 Eval - 3cd8a548d8915e34c65578d81bf9de53	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 3cd8a548d8915e34c65578d81bf9de53 ccb08ca9860323e36beec8def550524d77ba1246 75ac430ff7955b9d1d3acd92cd61703669958c9983cdf0c4cf9773164afb00e4 Loading...

	#6 Eval - 0aad8b4abd1d71a1dd1a5b9f3d8e8e43	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 0aad8b4abd1d71a1dd1a5b9f3d8e8e43 4ae9d46d4982b3c5f7f7a39e0c91ebf00ab8d33b ada9f7b1936a1204893c4aad33cbe2434db066a9d24aed65b075804d5e83f386 Loading...

	#7 Eval - 13d2bb92349df6835c2a41f37800e94e	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 13d2bb92349df6835c2a41f37800e94e 684110dbbe7abc7556b53cdd53da75d0557ce0c3 8b224faeea73d9db855038ebba71398d9a0246866f2a58c8f8d36ecae17f5f88 Loading...

	#8 Eval - 834338bfc607c88fff5daced6e9a7e1a	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 834338bfc607c88fff5daced6e9a7e1a 29b496e469c1090c17b591570a2a479b49d78e04 63c307574389d26551c542ecf2c268e971757be14064fb0cdb36e1f357259ade Loading...

	#9 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-29 20:22:16 Times Seen350607 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#10 Eval - 54fe6146b87b8fbd2b93da20ccb66c81	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 54fe6146b87b8fbd2b93da20ccb66c81 8c9a927ec39ee8b59f02ee2e28b3887a739d1c83 f4a7e633e5571d9f71e8f021ac87645a44d07599bab0b4e45003c3c54ca8ec7e Loading...

	#11 Eval - 32a59e8517d3e31ed0f34960142af515	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 32a59e8517d3e31ed0f34960142af515 275fad3e4067890bc9d39dd9eed6d5bd48bd6978 e085c5099647c3d49c4369ab96f6d78d56f54e4866338150cc950613d4db2bf9 Loading...

	#12 Eval - 6caf8f9f1971d7bcc4de681514919f1e	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 6caf8f9f1971d7bcc4de681514919f1e 59668ce988cb44bcaf12713d08da284dae37870f 378dad4df9c4a29bd48bc82ca2ccf76d7302bc72c797e4df20ed8dc2d90c1c2e Loading...

	#13 Eval - 23f200b649195cc13ab35d068bb24cf2	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 23f200b649195cc13ab35d068bb24cf2 a3815be66450c7e1250c99159e06ae2dd75477b1 7a7008145ae2067fd8910d0c4301bedb70ff63605dd65ccbed4314ac352dbc5f Loading...

	#14 Eval - 92ce31a23fbdbc65010d0e113e545f16	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 92ce31a23fbdbc65010d0e113e545f16 8bd0d199f221316fb9bdfc208c9372ff021ade88 a73892ec6805d6a2b0f2994a907f239aa8ab5a46b58f9085d1f8162f4244d135 Loading...

	#15 Eval - e5603dd6363397f469369d737e69083c	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash e5603dd6363397f469369d737e69083c 6f697977bf9fe4dea1209b7f887c1d10a6b32bd0 bb0d80da737dcb8a9463d97c338fa20557752b3b826fa4387c044bc8b77d06aa Loading...

	#16 Eval - 5600272eb51c71bb70af797bcfac2099	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 5600272eb51c71bb70af797bcfac2099 d492d4a7b8e368128832a1abb3c82f0c157f308a 8ec3ea4872475e537cce521f4588d79eeecdc0ddb9b13577b025b9594977f844 Loading...

	#17 Eval - d3cd289d8497ac8783db0e7171465bf1	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash d3cd289d8497ac8783db0e7171465bf1 02c1e8d362d30654f23d7958b302723d00c85ad8 ec44561c41428496cf7b2f7f4f00915e90cd7b174fcfd66f0d73b6274ac881c5 Loading...

	#18 Eval - 7949662d81e4adddb86f8ae91a28fc01	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 7949662d81e4adddb86f8ae91a28fc01 27dca9040938d93bc0348d5e63347d8df6b7d8f9 fd253951fc6c5ce81362106c6d8806c0869cd2a974bcb4c9520f5bb675ca84c8 Loading...

	#19 Eval - ac6d43b49aec2f87daf340337b6a7882	60 B	2024-04-04	2024-04-17
Pretty Observations First Seen2024-04-04 12:28:09 Last Seen2024-04-17 16:04:31 Times Seen3428 Hash ac6d43b49aec2f87daf340337b6a7882 d3874a31a6b7fe11121edc3ed80fdc8b66f6589a 1af55b64e0b39e0f5f760a8050b284a66fe404ddff945697590f8240798311b2 Loading...

	#20 Eval - e494f51c5522f8ff32db246fc8dfe495	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash e494f51c5522f8ff32db246fc8dfe495 a4fa32dbf66237629a1cc3342f71988d698b7431 1d2d7c4401ea25b61b02792d083128b05c75d75ceae5e6cf9b0812e9f48a5483 Loading...

	#21 Eval - 163a7ac9f37fc1080ebca6b05ff246af	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 163a7ac9f37fc1080ebca6b05ff246af e0788b71aa9dce10c2af483b54830b3be5cb47b7 deb963707433c6e2b2342fe15362cc1ab9dac093a4299f00fb632c275448d484 Loading...

	#22 Eval - 1c3157c8b4a960f9661e592aea3dbdc1	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 1c3157c8b4a960f9661e592aea3dbdc1 bb94edcef4ae5a3b082f8daabce98f773d6d786a 20689140f172490b6bca3e37172b024043e8e40c0aa99f877fc7781b8b0af1c7 Loading...

	#23 Eval - c9764b36bae3080e90829ff1b6f8592a	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash c9764b36bae3080e90829ff1b6f8592a efaed59bd549dd71efe268363d4711f4efc6c27f d2cebcfb79eccbf518911ea62ae0c15d6b4f68cb2bf45bbd09b2bbae3659f395 Loading...

	#24 Eval - cd003b88c355971d4f68aae0dfd1a023	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash cd003b88c355971d4f68aae0dfd1a023 c7ca92e48a26d0b6c62a34be8eba7916658d8410 fb733351b9becf22619d2730beb6b03a8f0e48ac8ec83bccc64c003865ab64d3 Loading...

	#25 Eval - 5a726b5734526e1e532533fcb92f6bd1	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash 5a726b5734526e1e532533fcb92f6bd1 4b8c69a355674e0226a0cefe546d1369a261661f 15b431d50e4967b7598ee984b96670b09d34fd0b96727e735ba302149f7b133e Loading...

	#26 Eval - dc2e5d4f2e01c342dc0daf82e8ee9813	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash dc2e5d4f2e01c342dc0daf82e8ee9813 848aaf623f99628e39a8ff84f57271e103985d29 5b7445c1af05d0b7506da5f85c134b04ea707ebf39f536b77b2763ff1123171f Loading...

	#27 Eval - a08a8f92c96d29a9c951f0fbd1e88d53	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:28 Times Seen1 Hash a08a8f92c96d29a9c951f0fbd1e88d53 86c42bc37861799f0b54cc2a290df2a70fe38254 b31c1480bb1d991ec3cfd996ee3fdcdee5893bc3faf101c096a67ed4707fab16 Loading...

	#28 Eval - 3835019465f97b95961b58cf83ad7509	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:28 Last Seen2024-04-16 22:14:29 Times Seen1 Hash 3835019465f97b95961b58cf83ad7509 04d0e0fac142746c3896d687fe74d4bc05544197 2a800741bb42b55e29e92f61a330d10afe49932f49d3a02ebfcb70913baae393 Loading...

	#29 Eval - e253ebbf01c049d37d8052368a7a3b71	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash e253ebbf01c049d37d8052368a7a3b71 90c6da4d7c0293e8791ff3c558cc049cef8fff90 dd4efdaf25345f7cef2c75759b6f80ac7443be4061cfb8a66f04fb735f58b515 Loading...

	#30 Eval - dad3a27c87453b8961e3942aafa67d77	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash dad3a27c87453b8961e3942aafa67d77 32578168a60019efe6a1cba4ca1ab06026bebdc8 2156cf0d586cab12a138e94e988dae56a357fe69e43334f3425f39bc6f07ccea Loading...

	#31 Eval - d110c608e4109e53545242ebfddea73a	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash d110c608e4109e53545242ebfddea73a 01068e8d996584261307a548a55a485204ba6323 28022ba366f01175184af3b85798db85427434ed8bbdee57aa44f9b49f5ce358 Loading...

	#32 Eval - 3062ba3148fcd0dd0ff0f0219e6e5057	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash 3062ba3148fcd0dd0ff0f0219e6e5057 28b3774dcd2c15ca2fe985c5dc52cf1293d4dfcd 07fc5f1b4730b0fd9aa085c337960424f104c4450cf745a28c340ca7da118d93 Loading...

	#33 Eval - 4c34df3ec1f19a507e44b18a3014c9fe	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash 4c34df3ec1f19a507e44b18a3014c9fe 688daea3300681809fccc24b966f8953e313ef61 e72de1b384ba50645cb6d3b4971df2c3df85ad038280e2017a8567b1eb630a30 Loading...

	#34 Eval - a3f5f75c35eec5108e218b411b46f119	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash a3f5f75c35eec5108e218b411b46f119 f3cbbb9777d296ec7de1ca66e9923b2094d2d910 f6595d371104e2800d170dd04e9f4c948d243184d857414d74e76966f8a80dc6 Loading...

	#35 Eval - 5e309129e971c46302f09dad4d874063	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash 5e309129e971c46302f09dad4d874063 596a61fc39c2678613ae5fde016180dc4a5167aa 6e72e3e07d322e7a550082f794b71057620391ce9e0b94ca040fc866440e6819 Loading...

	#36 Eval - 8b9666585148860b6b3a1cbaf1b0a677	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash 8b9666585148860b6b3a1cbaf1b0a677 de52121b48c5e472f01510c8b5be90cb14a88500 273b299a9dfd68faf06b0c6157688b9bdd00f7de0ae1a7d1c8d7111ddd7b654e Loading...

	#37 Eval - 354451bda71a939a2c668bc0299d421c	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash 354451bda71a939a2c668bc0299d421c f7eef97333819389fac24250ede51ccc515cafef 9b1b263da3019188ac3e18933b1daf443dd06859b8db19544fb2afc562578073 Loading...

	#38 Eval - 0e4f33539b703869f5600725256b7098	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash 0e4f33539b703869f5600725256b7098 70781a578b2f69c7d48efeb08986a1612e7f6f04 cf0fb9a72058bd6629800277ab243e40f22adf48fb0463e364eea61f04126ac1 Loading...

	#39 Eval - 4027bb20c2e45ec4177f49ef375c0795	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 22:14:29 Last Seen2024-04-16 22:14:29 Times Seen1 Hash 4027bb20c2e45ec4177f49ef375c0795 cb42e68142149d17f802c302c94d9eec5ba8f66a 3af80e74a2b1a1561e4789214f4a91ec39e8a1c325312ef34c1f11b81341edda Loading...

		Size	First Seen	Last Seen
	#1 Write - 8a0bed010a9fd21a560b90da24f37189	795 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 12:57:45 Last Seen2024-04-19 15:49:12 Times Seen3733 Hash 8a0bed010a9fd21a560b90da24f37189 38972fe20940c05edb4139a266dffe2e8e627b1a bc30534b563e7ba1a059a806e101b42c69104b5aacb6afe2293b575e9935dfde Loading...

HTTP Transactions (17)

	URL	IP	Response	Size
	tukix.net/qp9sKz1A43Pt/news/375e2d9ac717821add82f7c82fc4fa02/ZmVybi5nbG93aW5za3lAbWVycmNvLmNvbQ==	183.181.83.141		0 B
URL tukix.net/qp9sKz1A43Pt/news/375e2d9ac717821add82f7c82fc4fa02/ZmVybi5nbG93aW5za3lAbWVycmNvLmNvbQ== IP 183.181.83.141:0 ASN #131965 Xserver Inc. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /qp9sKz1A43Pt/news/375e2d9ac717821add82f7c82fc4fa02/ZmVybi5nbG93aW5za3lAbWVycmNvLmNvbQ== HTTP/1.1 Host: tukix.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Tue, 16 Apr 2024 20:14:02 GMT content-type: text/html; charset=UTF-8 content-length: 0 refresh: 0;url=https://k3ed.icu?e=fern.glowinsky@merrco.com vary: User-Agent accept-ranges: bytes X-Firefox-Spdy: h2`

	k3ed.icu/?e=fern.glowinsky@merrco.com	194.5.212.157	302 Found	0 B
URL User Request GET HTTP/1.1 k3ed.icu/?e=fern.glowinsky@merrco.com IP 194.5.212.157:443 ASN #9009 M247 Europe SRL Certificate IssuerLet's Encrypt Subjectk3ed.icu Fingerprint38:8C:F9:F9:50:CB:2F:02:9C:6D:EE:ED:BE:32:CE:22:DB:AC:19:E4 ValidityFri, 12 Apr 2024 19:50:22 GMT - Thu, 11 Jul 2024 19:50:21 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /?e=fern.glowinsky@merrco.com HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 302 Found Server: nginx Date: Tue, 16 Apr 2024 20:14:03 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Connection: keep-alive Keep-Alive: timeout=60 X-Powered-By: PHP/5.4.16 Set-Cookie: PHPSESSID=q24gc4v9jt1oslf5bmfp7fdcv2; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache location: main/`

	k3ed.icu/main/	194.5.212.157	200 OK	3.5 kB
URL User Request GET HTTP/1.1 k3ed.icu/main/ IP 194.5.212.157:443 ASN #9009 M247 Europe SRL Certificate IssuerLet's Encrypt Subjectk3ed.icu Fingerprint38:8C:F9:F9:50:CB:2F:02:9C:6D:EE:ED:BE:32:CE:22:DB:AC:19:E4 ValidityFri, 12 Apr 2024 19:50:22 GMT - Thu, 11 Jul 2024 19:50:21 GMT File type JavaScript source, ASCII text, with very long lines (3089) Size 3.5 kB (3537 bytes) Hash 79f09d3acff4ecd66e134610b7ebac82 313dc19bddf761be1ab7826bd0a74d05992dceca 589ada898e11bba717914c42c1090e1ddeaf000624b8f83379e79af18a19cc7c HTTP Headers `GET /main/ HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: PHPSESSID=q24gc4v9jt1oslf5bmfp7fdcv2 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Tue, 16 Apr 2024 20:14:03 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/5.4.16 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Encoding: gzip`

	challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	104.17.2.184	302 Found	0 B
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/ Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Tue, 16 Apr 2024 20:14:03 GMT content-length: 0 access-control-allow-origin: * cache-control: max-age=300, public location: /turnstile/v0/b/bcc5fb0a8815/api.js?onload=onloadTurnstileCallback cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 8756d6e77c6ab511-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	k3ed.icu/favicon.ico	194.5.212.157	200 OK	135 B
URL GET HTTP/1.1 k3ed.icu/favicon.ico IP 194.5.212.157:443 ASN #9009 M247 Europe SRL Requested by https://k3ed.icu/main/ Certificate IssuerLet's Encrypt Subjectk3ed.icu Fingerprint38:8C:F9:F9:50:CB:2F:02:9C:6D:EE:ED:BE:32:CE:22:DB:AC:19:E4 ValidityFri, 12 Apr 2024 19:50:22 GMT - Thu, 11 Jul 2024 19:50:21 GMT File type HTML document, ASCII text Size 135 B (135 bytes) Hash 83b862bead2d480026254fb2a6eb9969 26bad9e6c1579172b0e3b6bc1c18918164ff6478 fb258cb538ca92d61c8cd4eb08cc23da70c278b8766eaa731ce11e9b2f1da4d4 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/main/ Cookie: PHPSESSID=q24gc4v9jt1oslf5bmfp7fdcv2 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Tue, 16 Apr 2024 20:14:03 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 135 Connection: keep-alive Keep-Alive: timeout=60 Last-Modified: Mon, 15 Apr 2024 19:23:05 GMT ETag: "87-616278cfe1d53" Accept-Ranges: bytes`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8756d7498f47b509/1713298459462/f86a1f7bc95f9bce15aeb15a6358ef0cdbb1cd7ee390edd0d200dc96f22b8eb6/W-j0Z2AXxDkgLDX	104.17.2.184	401 Unauthorized	8.2 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8756d7498f47b509/1713298459462/f86a1f7bc95f9bce15aeb15a6358ef0cdbb1cd7ee390edd0d200dc96f22b8eb6/W-j0Z2AXxDkgLDX IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type data Size 8.2 kB (8184 bytes) Hash 9af2bc1c9714f77520f468725f59eaf9 ecfae899b4b70a8399d5cc8e037ad7516c94efd0 4a3ffddc99ddefb059667cb932b6c2b93ba9948795594cd2811b4fde9cb849aa HTTP Headers GET /cdn-cgi/challenge-platform/h/b/pat/8756d7498f47b509/1713298459462/f86a1f7bc95f9bce15aeb15a6358ef0cdbb1cd7ee390edd0d200dc96f22b8eb6/W-j0Z2AXxDkgLDX HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 401 Unauthorized date: Tue, 16 Apr 2024 20:14:20 GMT content-type: text/plain; charset=UTF-8 www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g-Gofe8lfm84VrrFaY1jvDNuxzX7jkO3Q0gDclvIrjrYAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1QvuFhVj8-HIEpd2829MedEvnrcAHahftJq4lCTdordKDtEpBDr1tC6_z1kq102Fe8SVbT4nRFRPCH_vL6Pwcc16C8jLMMvXraoC-BiyzAX3Yyr6lZj9UCQ7aK3JEr-tlD2wmLRtqyXfZQu9FdZsCMm0LU5LDAKE1uUBeAV-vLkP_1imLjHgbFE2lJH52yahbxiIjoqT_3PjB45ow3W9ciKiR89cUoS7X-sc6I2Lo7P_Y_FH4aGxC4fBDbjKZDO7UYOs3i1xJCHhgRA2dPWk0tZTjV7-jJE-oyRiReJNq7shr4jYws0e9BzlY1UCMa-U_JWdRb9So4JnoGPmfvSU_QIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIPhqH3vJX5vOFa6xWmNY7wzbsc1-45Dt0NIA3JbyK462ABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20 server: cloudflare cf-ray: 8756d754ef4db509-OSL alt-svc: h3=":443"; ma=86400

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	104.17.25.14		28 kB
URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type JavaScript source, ASCII text, with very long lines (65447) Size 28 kB (27938 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 16 Apr 2024 20:14:24 GMT content-type: application/javascript; charset=utf-8 content-length: 27938 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "603e8adc-15d9d" last-modified: Tue, 02 Mar 2021 18:58:36 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 2823971 expires: Sun, 06 Apr 2025 20:14:24 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lPfu8OPlxmKKD2o%2BXC9ZPU0jzlq8q%2F3rIE25jx5OXY1rolTr%2B%2B2WRFt4Hmgtyd3NxvbRIZCAa%2FYB2yGPGSH0PgjYIHhmAqnjYTYcdoSp0KomST2N1vpDDTXpvofG2Mnukk1S7zGW"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 8756d76da9c8b50b-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	challenges.cloudflare.com/turnstile/v0/b/bcc5fb0a8815/api.js?onload=onloadTurnstileCallback	104.17.2.184	200 OK	41 kB
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/bcc5fb0a8815/api.js?onload=onloadTurnstileCallback IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/ Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (40613) Size 41 kB (40614 bytes) Hash d1048a66fc11ea28c3cb1488fac82c62 f055707cf91f637ec19bf5e65bf378857e798469 8f1ad19042c2f9ee60c2de21f37f788af7b1ecccda8eec1d877f9b9c0e994370 HTTP Headers `GET /turnstile/v0/b/bcc5fb0a8815/api.js?onload=onloadTurnstileCallback HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://k3ed.icu/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Tue, 16 Apr 2024 20:14:03 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * cache-control: max-age=31536000 cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 8756d6e79c91b511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D	104.17.2.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 16 Apr 2024 20:14:19 GMT content-type: image/png cache-control: max-age=2629800, public server: cloudflare cf-ray: 8756d749dfc9b509-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1340804113:1713296272:WqNvEov8V_BNjBxs3iMZ1xAvPwbyEvF6vdKrTcjy1m0/8756d7498f47b509/c64f62578f03996	104.17.2.184	200 OK	23 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1340804113:1713296272:WqNvEov8V_BNjBxs3iMZ1xAvPwbyEvF6vdKrTcjy1m0/8756d7498f47b509/c64f62578f03996 IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (22560), with no line terminators Size 23 kB (22560 bytes) Hash 5cc706507242d3b8ba69e3b1e321a969 88acc77fe5ae1a43a64991f65711e93e1ed0d65c 01678f3c30282ef44a63e69f431464d00be6fedc86d91035bf3d560bb9b8841e HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1340804113:1713296272:WqNvEov8V_BNjBxs3iMZ1xAvPwbyEvF6vdKrTcjy1m0/8756d7498f47b509/c64f62578f03996 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: c64f62578f03996 Content-Length: 25790 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 16 Apr 2024 20:14:21 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: N0goFjUURu7qwl1A+61wjdwjxMTiVx6A/rC740B+VZ5F8iGVd8B/MaAqkZPFzTaO$7sOQXBwDRaaXxWfbE3lEpQ== server: cloudflare cf-ray: 8756d755c845b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal	104.17.2.184	200 OK	78 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/ Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (41919) Size 78 kB (77781 bytes) Hash 8a2ea6465c9ca89b623f1db97c03c0db 411f7b340eea1fd211ea952a0ea69d8d6a44aa7b e05120dccb1de61e2881b2d86fa09574454bf9736748b2eb785a24028db46e53 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 16 Apr 2024 20:14:19 GMT content-type: text/html; charset=UTF-8 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self' critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: cross-origin document-policy: js-profiling origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server: cloudflare cf-ray: 8756d7498f47b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8756d7498f47b509	104.17.2.184	200 OK	435 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8756d7498f47b509 IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 435 kB (434579 bytes) Hash f05902fa873d1bd6b8ca22aee386efd1 4f089437e5b0d681857be213dcc4d61323520f11 63c80d73006d2cf6ded4b2ef7f81aba018dbaf915315dd676380f51de8e4b4f0 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8756d7498f47b509 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 16 Apr 2024 20:14:19 GMT content-type: application/javascript; charset=UTF-8 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 server: cloudflare cf-ray: 8756d749dfd1b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1340804113:1713296272:WqNvEov8V_BNjBxs3iMZ1xAvPwbyEvF6vdKrTcjy1m0/8756d7498f47b509/c64f62578f03996	104.17.2.184	200 OK	100 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1340804113:1713296272:WqNvEov8V_BNjBxs3iMZ1xAvPwbyEvF6vdKrTcjy1m0/8756d7498f47b509/c64f62578f03996 IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 100 kB (99976 bytes) Hash 2b37dd4fe3bd23029f8278c0ee7f4fdb 312493ca061dc1c22e034de36963a983efa0fa3d b80b764764cc145cd6cfe1865a3e5775c1d3171ff46ac933e9bfff6dc70723d0 HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1340804113:1713296272:WqNvEov8V_BNjBxs3iMZ1xAvPwbyEvF6vdKrTcjy1m0/8756d7498f47b509/c64f62578f03996 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: c64f62578f03996 Content-Length: 2663 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 16 Apr 2024 20:14:19 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: 9Z0J5f4EXASJBBKfweb0o6qUQxP+FaYpMDJv6ZnEVHXZ2jVB3uXw0FIYhW1eLcwITeSwncoxsunFwZKrEaV4WqvgKXYGL9r9YXJfgGX6wU2J6BJZ31YRE0RWrWEjJ+dz84MJ1+k9qp8aPClfn9i7U5xJxuvcmbEcwM+MK4x95Le80ABTmTpqWpRlwv8y6ouIPD/Y9E/ursOoEKpxd7rG17/OL9gwY3cWlgHpvmDKdfZcVioe35mRZN3nMxCQ51EF9km3BlUIJMBwJIWtrwM7kuDka/QUckq8D4IpqLF1EjkzcAtd3PV8598c1bH7u1tpUrJRV5v5ubHnH67mhbXm2n5Bu1Pyyszj7RTx7/lORm+ylsEUwWM+eEYIqRr6oqpNq3K5ynNQYgYYp68/yeGgwQ==$A6G4oIAJHyrfD0GeEeQPQw== server: cloudflare cf-ray: 8756d74b7a75b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8756d7498f47b509/1713298459461/nxmn_i-0YZ31JpP	104.17.2.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8756d7498f47b509/1713298459461/nxmn_i-0YZ31JpP IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 53 x 40, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 14e2bf286c16ae0b984270fea5af7b5e 48be2beee8d6f170035e30a2a43bb4b0715a0ed4 f0040575b7bdd25985738665b4673d5e5e1fe7782427c547f395ac25ff48d922 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/i/8756d7498f47b509/1713298459461/nxmn_i-0YZ31JpP HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 16 Apr 2024 20:14:20 GMT content-type: image/png server: cloudflare cf-ray: 8756d754cf24b509-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1340804113:1713296272:WqNvEov8V_BNjBxs3iMZ1xAvPwbyEvF6vdKrTcjy1m0/8756d7498f47b509/c64f62578f03996	104.17.2.184	200 OK	3.3 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1340804113:1713296272:WqNvEov8V_BNjBxs3iMZ1xAvPwbyEvF6vdKrTcjy1m0/8756d7498f47b509/c64f62578f03996 IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (3344), with no line terminators Size 3.3 kB (3344 bytes) Hash a487fea0743639ba1365a7d9aba73d80 8064bcfab1f467dc994fb300eee8cd5cb279a40c 123bcc6e8b75ae807efa71b9b9563204285e6e4d58616af3c237a27773b327ad HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1340804113:1713296272:WqNvEov8V_BNjBxs3iMZ1xAvPwbyEvF6vdKrTcjy1m0/8756d7498f47b509/c64f62578f03996 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: c64f62578f03996 Content-Length: 35243 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 16 Apr 2024 20:14:23 GMT content-type: text/html; charset=UTF-8 cf-chl-out: uQanwA6QXsEfDeJD9Hx4w+7zFtxOGiAD2ACcQPMS6YG33MWTE3GdigDCJjdQt13rsmu7lwPRdo6d7NjOQ1xMzAYLl4K3pZBcoca3Ie1cNX/jvb1Hlm5rg+sr5xsAmQaS$e2XfPcrwt4fPNGDyeJbvfw== cf-chl-out-s: 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$nv0GsoZ5yvV3Kede7tgjTw== server: cloudflare cf-ray: 8756d7640cb7b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal	104.17.2.184	200 OK	78 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/ Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (41919) Size 78 kB (77762 bytes) Hash 0956928ecc0280aca54c3b7277b29e92 cb321874b4c4cdfa6dad991c1e7693ed1c284dea 9130fb74b99e2a9e0a87fb3484869c338adb0266f45377a5b5839ebeef70a1d1 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/r5yep/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 16 Apr 2024 20:14:03 GMT content-type: text/html; charset=UTF-8 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self' critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: cross-origin document-policy: js-profiling origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server: cloudflare cf-ray: 8756d6e85f40b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	k3ed.icu/main/main.php	0.0.0.0		0 B
URL User Request POST k3ed.icu/main/main.php IP 0.0.0.0:0 ASN #0 Certificate IssuerLet's Encrypt Subjectk3ed.icu Fingerprint38:8C:F9:F9:50:CB:2F:02:9C:6D:EE:ED:BE:32:CE:22:DB:AC:19:E4 ValidityFri, 12 Apr 2024 19:50:22 GMT - Thu, 11 Jul 2024 19:50:21 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /main/main.php HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 539 Origin: https://k3ed.icu DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/main/ Cookie: PHPSESSID=q24gc4v9jt1oslf5bmfp7fdcv2 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Sec-Fetch-User: ?1 Pragma: no-cache Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (47)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash