| padfjffgbkgds.pages.dev/sasktel/ | 188.114.96.1 | 308 Permanent Redirect | 0 B |
URL User Request GET HTTP/2padfjffgbkgds.pages.dev/sasktel/ IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectpadfjffgbkgds.pages.dev FingerprintBC:86:9B:FE:A5:BF:07:B0:34:18:F6:4E:99:A6:CA:CB:3E:5F:06:22 ValidityMon, 15 Apr 2024 13:06:12 GMT - Sun, 14 Jul 2024 13:06:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | SaskTel |
GET /sasktel/ HTTP/1.1
Host: padfjffgbkgds.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 308 Permanent Redirect
date: Thu, 18 Apr 2024 04:33:34 GMT
content-length: 0
location: /sasktel
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TdprNWJcWscQ%2FYCBBTpgQfXG8nkpvUNFaSNgc0hBXBPoArwTzZHBKZNxonQi98bMLzu30LVlephFl5k6sLBZhb3TqsdnfJaLOs2BWJRntvmcIdPh5EHXaYzWybNRVL%2FXxvC81LPFSt1Zhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761effc9b6c56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css | 104.17.24.14 | 200 OK | 5.6 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css IP104.17.24.14:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://padfjffgbkgds.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:33:34 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 208299
expires: Tue, 08 Apr 2025 04:33:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I2XRO8J9mzzzhgaVArbP0DfUxSSOsqrNuO78Yx3vdsmGmbj8O9ekrk08hgbeZOGqomua9F8BDYkwgmZ8MsjpAimzhPD1LOY2UBzqonHBqyWhnDBrDxQoqK1btQaaaDRy7S9LmbI5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8761f000ca34b51d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.7.0/jquery.min.js | 104.17.24.14 | 200 OK | 27 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.7.0/jquery.min.js IP104.17.24.14:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashe6c2415c0ace414e5153670314ce99a9 5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6 d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8
GET /ajax/libs/jquery/3.7.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://padfjffgbkgds.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:33:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 27437
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "659afac8-6b2d"
last-modified: Sun, 07 Jan 2024 20:26:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 211499
expires: Tue, 08 Apr 2025 04:33:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AttPyKlD4v4I5icHa%2FNijB1TNp1MBm%2BsYtZQGSAFN3eq15fXrlyUrKsIbcgLD6sNX6HTJ3mxmXDtMZsEnO7V2LNfq9nnOzfhWEJrimgFqSa3VKPlVlgrqF7JClY4AwYfu3RuK31L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8761f000da3eb51d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/css.css | 162.0.229.111 | 200 OK | 353 B |
IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
Hash88cb543b67161bf6bc940ce0f4d0b112 971bb336cfae4ee8fab6aef7b64d94a8ea517dfd 4ea2880bbb5055eb6493499d243a86911663924955d78ac35d672a5a0e9995ae
GET /css.css HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://padfjffgbkgds.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:33:35 GMT
content-type: text/css
last-modified: Fri, 28 Jul 2023 12:47:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 353
date: Thu, 18 Apr 2024 04:33:35 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdn.espinqbo.com/pinger.js | 66.29.132.209 | 200 OK | 1.1 kB |
URL GET HTTP/2cdn.espinqbo.com/pinger.js IP66.29.132.209:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.espinqbo.com Fingerprint9C:D5:D8:B8:4C:BE:11:9B:39:5A:62:37:C2:2B:97:CC:0B:88:43:DC ValidityThu, 27 Jul 2023 00:00:00 GMT - Sat, 27 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (306), with CRLF line terminators Hashcf6d10da974e5f087994279de38d0374 1088cb612a8c5965083938055a5f480245aa3cf6 d975aac868da65446d458077bb59aaed98be179991a95c720574b89023f44d32
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Suspicious Javascript code |
GET /pinger.js HTTP/1.1
Host: cdn.espinqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://padfjffgbkgds.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 27 Jul 2023 14:41:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1050
date: Thu, 18 Apr 2024 04:33:35 GMT
server: LiteSpeed
access-control-allow-origin: *
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/logo_footer.png | 162.0.229.111 | 200 OK | 12 kB |
URL GET HTTP/2cdn.ourqbo.com/logo_footer.png IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typePNG image data, 556 x 95, 8-bit/color RGBA, non-interlaced Hash812689942aae0e796c9eb1b62a9273ab 4fed2f3714edb86ea39045aa0089162773643089 a2f5bc2a6d9995b81037a459205fcf8bdc13319fe5ff7f964bbb4697446c236a
GET /logo_footer.png HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://padfjffgbkgds.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:33:35 GMT
content-type: image/png
last-modified: Fri, 28 Jul 2023 12:47:33 GMT
accept-ranges: bytes
content-length: 12208
date: Thu, 18 Apr 2024 04:33:35 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/navstatus-logo.png | 162.0.229.111 | 200 OK | 10 kB |
URL GET HTTP/2cdn.ourqbo.com/navstatus-logo.png IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typePNG image data, 300 x 50, 8-bit/color RGBA, non-interlaced Hasha12a263597beb569807c25ac36b2652e 848a81784294a1eead23736ca994729883c7d180 ae60419bf4d27dc55f3130901a6417b0b90982e48788403787aa0bdada7abcd6
GET /navstatus-logo.png HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://padfjffgbkgds.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:33:35 GMT
content-type: image/png
last-modified: Fri, 28 Jul 2023 12:47:36 GMT
accept-ranges: bytes
content-length: 10039
date: Thu, 18 Apr 2024 04:33:35 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/sask_tel_logo.png | 162.0.229.111 | 200 OK | 15 kB |
URL GET HTTP/2cdn.ourqbo.com/sask_tel_logo.png IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typePNG image data, 556 x 95, 8-bit/color RGBA, non-interlaced Hash743606e562ffc1ddc12db6f91d10e48e c58dc9c0db99276a5fa8edeedcc0654526564ee3 f61d1ba3bbd9d7c4cc0637d899575cdc7ea1331fb227be41bd45544cdb87b8e3
GET /sask_tel_logo.png HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://padfjffgbkgds.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:33:35 GMT
content-type: image/png
last-modified: Fri, 28 Jul 2023 12:47:34 GMT
accept-ranges: bytes
content-length: 14935
date: Thu, 18 Apr 2024 04:33:35 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/app.css | 162.0.229.111 | 200 OK | 118 kB |
IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (31912) Size118 kB (117996 bytes) Hash43c5c3259b2123528945e7c234ec8d3e c1ebe1e7016ecfe96cfdd9b362bca6dce1a71e7e 62adafd10921df16d6a3a26490e7a3e2dd71a4c6382d94b195e35eb53b0bd92d
GET /app.css HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://padfjffgbkgds.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:33:35 GMT
content-type: text/css
last-modified: Fri, 28 Jul 2023 12:47:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 117996
date: Thu, 18 Apr 2024 04:33:35 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/custom.css | 162.0.229.111 | 200 OK | 720 B |
URL GET HTTP/2cdn.ourqbo.com/custom.css IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (5155), with no line terminators Hash24d179aa17c60ee8194d887059e5a1c1 969170a9c562b26043bd43205b0fe8bb1705a7c7 20acf6071c07533112fb29adbc4f801ee108589e83cdd0a35fbef7b6fd60a23e
GET /custom.css HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://padfjffgbkgds.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:33:35 GMT
content-type: text/css
last-modified: Fri, 28 Jul 2023 12:47:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 720
date: Thu, 18 Apr 2024 04:33:35 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/custompages.css | 162.0.229.111 | 200 OK | 2.4 kB |
URL GET HTTP/2cdn.ourqbo.com/custompages.css IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (18765), with no line terminators Hash06d7c930f347cdc59ae7bfe38989c533 cd884c0f2efd3df50e532c59b8b2e0d715fdf849 bee99bd5aa1a7f59f637f7209ff5853888ec0985c38a2cbf0c964cfcc008d46b
GET /custompages.css HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://padfjffgbkgds.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:33:35 GMT
content-type: text/css
last-modified: Fri, 28 Jul 2023 12:47:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2429
date: Thu, 18 Apr 2024 04:33:35 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Montserrat | 142.250.74.170 | 200 OK | 1.0 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Montserrat IP142.250.74.170:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hasha7ff283218620aac42a99eeb8e0492d3 44b1bf027f23b39e43725da574082c8053303bce ef4c53b2b1810d3d50288a3c417409620a61b7447a9a6fe8170b67fde6f05570
GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.ourqbo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 04:33:36 GMT
date: Thu, 18 Apr 2024 04:33:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 | 104.17.24.14 | 200 OK | 77 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 IP104.17.24.14:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://padfjffgbkgds.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:33:36 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4274032
expires: Tue, 08 Apr 2025 04:33:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FMDKbPepKhWaymgN0yPETg7eSDERV4BOURladmw2icnykJOHR76XZH%2FEEjBDjGjHIkiKLS2jAx75Zr%2BMEwapz8JlAvtPO0zRVe7e%2FhrskL5bb1nuuToWkWjVoaeezUTq9sAjNaQE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8761f008c86cb51d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 142.250.74.131 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP142.250.74.131:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://padfjffgbkgds.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://cdn.ourqbo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:45:31 GMT
expires: Fri, 18 Apr 2025 02:45:31 GMT
cache-control: public, max-age=31536000
age: 6485
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/fonts/MuseoSansCyrl-300.woff | 162.0.229.111 | 404 Not Found | 1.3 kB |
URL GET HTTP/2cdn.ourqbo.com/fonts/MuseoSansCyrl-300.woff IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
GET /fonts/MuseoSansCyrl-300.woff HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://padfjffgbkgds.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://cdn.ourqbo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Thu, 18 Apr 2024 04:33:36 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2 | 142.250.74.131 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2 IP142.250.74.131:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23236, version 1.0 Hash716309aab2bca045f9627f63ad79d0bf 38804233a29aaf975d557fe14e762c627bef76e0 115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://padfjffgbkgds.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://cdn.ourqbo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:19 GMT
expires: Tue, 15 Apr 2025 22:10:19 GMT
cache-control: public, max-age=31536000
age: 195797
last-modified: Tue, 02 May 2023 15:08:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/fonts/MuseoSansCyrl-500.woff | 162.0.229.111 | 404 Not Found | 1.3 kB |
URL GET HTTP/2cdn.ourqbo.com/fonts/MuseoSansCyrl-500.woff IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
GET /fonts/MuseoSansCyrl-500.woff HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://padfjffgbkgds.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://cdn.ourqbo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Thu, 18 Apr 2024 04:33:36 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/fonts/MuseoSansCyrl-300.ttf | 162.0.229.111 | 404 Not Found | 1.3 kB |
URL GET HTTP/2cdn.ourqbo.com/fonts/MuseoSansCyrl-300.ttf IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
GET /fonts/MuseoSansCyrl-300.ttf HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://padfjffgbkgds.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://cdn.ourqbo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Thu, 18 Apr 2024 04:33:36 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| cdn.ourqbo.com/fonts/MuseoSansCyrl-500.ttf | 162.0.229.111 | 404 Not Found | 1.3 kB |
URL GET HTTP/2cdn.ourqbo.com/fonts/MuseoSansCyrl-500.ttf IP162.0.229.111:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerSectigo Limited Subjectcdn.ourqbo.com FingerprintC9:B2:CF:B8:D5:D8:81:B0:4B:63:B3:5D:9D:51:12:7E:A8:00:F9:6E ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
GET /fonts/MuseoSansCyrl-500.ttf HTTP/1.1
Host: cdn.ourqbo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://padfjffgbkgds.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://cdn.ourqbo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Thu, 18 Apr 2024 04:33:36 GMT
server: LiteSpeed
x-frame-options: ALLOWALL
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| webmail.sasktel.net/b177b3c/branding/hid-2370/images/favicon.ico | 69.49.108.145 | 404 Not Found | 1.2 kB |
URL GET HTTP/1.1webmail.sasktel.net/b177b3c/branding/hid-2370/images/favicon.ico IP69.49.108.145:443
Requested byhttps://padfjffgbkgds.pages.dev/sasktel CertificateIssuerDigiCert Inc Subjectmail.sasktel.net FingerprintEA:6D:88:D3:BD:A0:D8:40:BE:02:92:E7:25:8F:87:E8:C7:08:8F:0D ValidityTue, 16 Apr 2024 00:00:00 GMT - Sat, 17 May 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (710) Hash7c0b231109f7d7f53181b69cf08b4bde 16f456544456bc32c2f5fe068888a5e10f67136e 90495c22ebd73f85a0d716930a24ac3480fb5e37db6240daed4259cd21aa4c1a
GET /b177b3c/branding/hid-2370/images/favicon.ico HTTP/1.1
Host: webmail.sasktel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://padfjffgbkgds.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 18 Apr 2024 04:33:38 GMT
Server: Apache
X-XSS-Protection: 1
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Tue, 16 Jun 2020 11:18:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Access-Control-Allow-Origin: https://cdn.raygun.io
Content-Security-Policy: default-src 'self'; font-src 'self' https://fonts.gstatic.com; frame-src *; style-src 'unsafe-inline' 'self' https://fonts.googleapis.com https://cdn.cookielaw.org; script-src 'unsafe-eval' 'unsafe-inline' 'self' https://tags.expo9.exponential.com https://s.tribalfusion.com/ https://tpc.googlesyndication.com https://cdn.appdynamics.com https://www.google-analytics.com https://cdn.cookielaw.org https://www.googletagmanager.com http://www.googletagservices.com https://www.googletagservices.com http://www.googletagmanager.com https://remotedesktops.websiteos.com https://adservice.google.com https://adservice.google.com.ua https://securepubads.g.doubleclick.net https://www.googleadservices.com https://www.google.com; connect-src 'self' https://pdx-col.eum-appdynamics.com https://cdn.cookielaw.org https://securepubads.g.doubleclick.net https://pagead2.googlesyndication.com; img-src * data:;
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1160
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: text/html
Set-Cookie: BIGipServer~C7~C7_PMAIL.0_IPv4_80_POOL=!tMQ0VNWs79DRCC4PuhBcLaPPGzU6jFM44DAUmTAUzs0sreeKq0L+CWpaO3YtKTQ2SXAHdhLODC/aNVg=; path=/; Httponly; Secure
|
|
| padfjffgbkgds.pages.dev/sasktel | 188.114.96.1 | 200 OK | 50 kB |
URL User Request GET HTTP/2padfjffgbkgds.pages.dev/sasktel IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectpadfjffgbkgds.pages.dev FingerprintBC:86:9B:FE:A5:BF:07:B0:34:18:F6:4E:99:A6:CA:CB:3E:5F:06:22 ValidityMon, 15 Apr 2024 13:06:12 GMT - Sun, 14 Jul 2024 13:06:11 GMT
File typeHTML document, ASCII text, with very long lines (49643), with CRLF line terminators Hashbafae7b6cd7cfe70e8d552f475e87490 515a3c90389708766925350690266e185665bf51 26df0bd3b604eaa31824b5deb5f4fb572747d028ef125f103a4df3c3a3ac9716
GET /sasktel HTTP/1.1
Host: padfjffgbkgds.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:33:34 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"628c41872094f35edc7756875a1184c2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4d0%2BxpqA9Ow56SozTLDweOMfc%2F65DBQtLZ2hS5xXEGDZ8VGv%2BLRGicybUZI0p%2Fu2RA%2FXkaFf7%2FRTj%2BnT2gDpuSWRsSg0Pa%2F1u5SC3lZj3AyVgVuUssiR6jgHo7UC9lZYao0EYhPvtEpM1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761effccb9056a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|