| webmin.com/cgi-bin/redirect.cgi/install/https:/graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ== | 216.105.38.11 | | 238 B |
URL webmin.com/cgi-bin/redirect.cgi/install/https:/graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ== IP216.105.38.11:0
File typeHTML document, ASCII text Hash7f27298772855844160360d73cefb754 78630d93c58ee12f304be74c9c2b22edef18835f a19d3fdcfa10252fb1b7659c8d4480c23f6d9b3f47b54d6ecc881dbc156b830a
GET /cgi-bin/redirect.cgi/install/https:/graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ== HTTP/1.1
Host: webmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 18 Apr 2024 07:16:36 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 238
Connection: keep-alive
location: https://graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ==
cache-control: max-age=3600
expires: Thu, 18 Apr 2024 08:16:32 GMT
vary: Accept-Encoding
|
|
| graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ== | 162.19.138.79 | 302 Found | 1.4 kB |
URL User Request POST HTTP/3graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ== IP162.19.138.79:443
CertificateIssuerLet's Encrypt Subjectcpanel.graflex.es Fingerprint20:A0:A1:D7:2C:66:13:8D:79:50:45:82:1B:58:A6:CE:7D:BC:BE:88 ValidityThu, 11 Apr 2024 10:46:47 GMT - Wed, 10 Jul 2024 10:46:46 GMT
File typeHTML document, ASCII text, with very long lines (1914), with CRLF line terminators Hash56c80e3f42ebeb2339acae9602626e6e ba7d0939334b620eb0e7737087f7c231102d6f37 7cd6a23b4a0cf714359ba7569680ed194478467630d9e0b7105f1ac1bca7f4a9
GET /go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ== HTTP/1.1
Host: graflex.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
set-cookie: PHPSESSID=1c28e1b8c99e07ec824aa326b109aa44; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 1448
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Thu, 18 Apr 2024 07:16:36 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback | 104.17.2.184 | | 0 B |
URL challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP104.17.2.184:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://graflex.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 18 Apr 2024 07:16:36 GMT
content-length: 0
location: /turnstile/v0/g/54ea73d52131/api.js?onload=onloadTurnstileCallback
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762ded26d92b527-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| graflex.es/favicon.ico | 162.19.138.79 | | 1.2 kB |
IP162.19.138.79:0
CertificateIssuerLet's Encrypt Subjectcpanel.graflex.es Fingerprint20:A0:A1:D7:2C:66:13:8D:79:50:45:82:1B:58:A6:CE:7D:BC:BE:88 ValidityThu, 11 Apr 2024 10:46:47 GMT - Wed, 10 Jul 2024 10:46:46 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0bde7d4b3da67537eaf9188e6f8049cf 64300fc482d01d38b40ab20e15960b6509665e5a 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /favicon.ico HTTP/1.1
Host: graflex.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ==
Cookie: PHPSESSID=1c28e1b8c99e07ec824aa326b109aa44
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 18 Apr 2024 07:16:37 GMT
server: LiteSpeed
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/qn7z0/0x4AAAAAAAXbJXoMz7_8Jz2b/auto/normal | 104.17.2.184 | | 26 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/qn7z0/0x4AAAAAAAXbJXoMz7_8Jz2b/auto/normal IP104.17.2.184:0
File typeHTML document, ASCII text, with very long lines (41702) Hash9f774ddeeb62202ac76e03c76868e9fd 9effb070dd4882525cf5e2eb3b09a635343395af 9ec33e8fdc75b23ee3e47419ef9299473af71f47764151cf2a28439ebf81614b
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/qn7z0/0x4AAAAAAAXbJXoMz7_8Jz2b/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://graflex.es/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 07:16:37 GMT
content-type: text/html; charset=UTF-8
document-policy: js-profiling
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-opener-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
vary: accept-encoding
server: cloudflare
cf-ray: 8762ded3bfe756bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8762ded3bfe756bb/1713424597608/J1GhxovWVPG0NMg | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8762ded3bfe756bb/1713424597608/J1GhxovWVPG0NMg IP104.17.2.184:0
File typePNG image data, 64 x 91, 8-bit/color RGB, non-interlaced Hash1ec2254f15c0059c90163a8b8c3e6810 c46ebcf2fcfb7edef5c88fa21b79ecd2984e59fa 04ea3fe5817efd668719e78e3750c3324e8b1ec8b820f5d2136a0e24d162034b
GET /cdn-cgi/challenge-platform/h/g/i/8762ded3bfe756bb/1713424597608/J1GhxovWVPG0NMg HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/qn7z0/0x4AAAAAAAXbJXoMz7_8Jz2b/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 07:16:38 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8762dedb2a3456bb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8762ded3bfe756bb/1713424597609/5d92ecc72be318eae7b26027b45a3a17bacaaabb4525318011f35e3c5fa4c23c/DWdiC6Pvi9_EGJE | 104.17.2.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8762ded3bfe756bb/1713424597609/5d92ecc72be318eae7b26027b45a3a17bacaaabb4525318011f35e3c5fa4c23c/DWdiC6Pvi9_EGJE IP104.17.2.184:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/8762ded3bfe756bb/1713424597609/5d92ecc72be318eae7b26027b45a3a17bacaaabb4525318011f35e3c5fa4c23c/DWdiC6Pvi9_EGJE HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/qn7z0/0x4AAAAAAAXbJXoMz7_8Jz2b/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Thu, 18 Apr 2024 07:16:38 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gXZLsxyvjGOrnsmAntFo6F7rKqrtFJTGAEfNePF-kwjwAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIF2S7Mcr4xjq57JgJ7RaOhe6yqq7RSUxgBHzXjxfpMI8ABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8762dedbcb0c56bb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ== | 162.19.138.79 | 302 Found | 0 B |
URL User Request POST HTTP/3graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ== IP162.19.138.79:443
CertificateIssuerLet's Encrypt Subjectcpanel.graflex.es Fingerprint20:A0:A1:D7:2C:66:13:8D:79:50:45:82:1B:58:A6:CE:7D:BC:BE:88 ValidityThu, 11 Apr 2024 10:46:47 GMT - Wed, 10 Jul 2024 10:46:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ== HTTP/1.1
Host: graflex.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 560
Origin: https://graflex.es
DNT: 1
Connection: keep-alive
Referer: https://graflex.es/go/aHAr4qR/Y2xhaW1zQGJlcnhpLmNvbQ==
Cookie: PHPSESSID=1c28e1b8c99e07ec824aa326b109aa44
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
location: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com
content-type: text/html; charset=UTF-8
content-length: 0
date: Thu, 18 Apr 2024 07:16:39 GMT
server: LiteSpeed
vary: User-Agent
|
|
| pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html | 104.18.2.35 | | 12 kB |
URL pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html IP104.18.2.35:0
File typeJavaScript source, ASCII text, with very long lines (746) Hasheb6a7bf869fb01038ba673c26c1f456c 6c7ed31c2c12daa5b08fc3bf73f2ca0abcb4ab10 661971891d0c611cbf9bf83bba003453137bf298db32707012b3ab6d9ce433c7
GET /P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html HTTP/1.1
Host: pub-28ded6188f5945c38347001e1074271f.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://graflex.es/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 07:16:40 GMT
Content-Type: text/html
Content-Length: 11736
Connection: keep-alive
Accept-Ranges: bytes
ETag: "eb6a7bf869fb01038ba673c26c1f456c"
Last-Modified: Wed, 17 Apr 2024 14:29:05 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8762dee4decd0b69-OSL
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 15 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP104.18.10.207:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 07:16:40 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 1339201
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8762deeb1e7b56b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.74 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.74:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 13:58:13 GMT
expires: Sun, 13 Apr 2025 13:58:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 407908
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html | 104.18.2.35 | | 12 kB |
URL pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html IP104.18.2.35:0
File typeJavaScript source, ASCII text, with very long lines (746) Hasheb6a7bf869fb01038ba673c26c1f456c 6c7ed31c2c12daa5b08fc3bf73f2ca0abcb4ab10 661971891d0c611cbf9bf83bba003453137bf298db32707012b3ab6d9ce433c7
GET /P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html HTTP/1.1
Host: pub-28ded6188f5945c38347001e1074271f.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 07:16:41 GMT
Content-Type: text/html
Content-Length: 11736
Connection: keep-alive
Accept-Ranges: bytes
ETag: "eb6a7bf869fb01038ba673c26c1f456c"
Last-Modified: Wed, 17 Apr 2024 14:29:05 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8762deec6d680b69-OSL
|
|
| fonts.googleapis.com/css?family=Yellowtail%26display=swap | 142.250.74.106 | 400 Bad Request | 1.3 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Yellowtail%26display=swap IP142.250.74.106:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hashb33169329d21c93e9efad3b392f6fbdd 20ac39cacb94e70621f6ce2f751ac43fb6d41ebe 47b6bb549c94d6321a48ecacd0fe70bc8b3303b222f418621a0d1659d8169bbc
GET /css?family=Yellowtail%26display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 07:16:40 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html | 104.18.2.35 | | 12 kB |
URL pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html IP104.18.2.35:0
File typeJavaScript source, ASCII text, with very long lines (746) Hasheb6a7bf869fb01038ba673c26c1f456c 6c7ed31c2c12daa5b08fc3bf73f2ca0abcb4ab10 661971891d0c611cbf9bf83bba003453137bf298db32707012b3ab6d9ce433c7
GET /P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html HTTP/1.1
Host: pub-28ded6188f5945c38347001e1074271f.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 07:16:41 GMT
Content-Type: text/html
Content-Length: 11736
Connection: keep-alive
Accept-Ranges: bytes
ETag: "eb6a7bf869fb01038ba673c26c1f456c"
Last-Modified: Wed, 17 Apr 2024 14:29:05 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8762deed0df10b69-OSL
|
|
| www.google.com/s2/favicons?domain=berxi.com | 216.58.211.4 | 301 Moved Permanently | 329 B |
URL GET HTTP/2www.google.com/s2/favicons?domain=berxi.com IP216.58.211.4:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash28657f3ad33b1196e88cef6cd9bac01d 35abc2cba52e2a75a7bf6f4115c49eb472ccefe4 c3262083660798fd46d8a41cfa817031f178c5851fbc3c4298bb3276e1b555c3
GET /s2/favicons?domain=berxi.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://berxi.com&size=16
x-content-type-options: nosniff
server: sffe
content-length: 329
x-xss-protection: 0
date: Thu, 18 Apr 2024 07:16:40 GMT
expires: Thu, 18 Apr 2024 07:46:40 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pub-28ded6188f5945c38347001e1074271f.r2.dev/favicon.ico | 104.18.2.35 | 404 Not Found | 27 kB |
URL GET HTTP/1.1pub-28ded6188f5945c38347001e1074271f.r2.dev/favicon.ico IP104.18.2.35:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerLet's Encrypt Subject*.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT
File typeHTML document, ASCII text, with very long lines (611) Hashdf3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499
GET /favicon.ico HTTP/1.1
Host: pub-28ded6188f5945c38347001e1074271f.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 18 Apr 2024 07:16:41 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8762deed9e8a0b69-OSL
|
|
| ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2 | 104.21.26.223 | 200 OK | 78 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2 IP104.21.26.223:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 78168, version 331.-31196 Hasha9fd1225fb2cd32320e2b931dca01089 44ec5c6a868b4ce62350d9f040ed8e18f7a1d128 c5dd43f53f3af822cbf17b1fb75f46192cdbd51724f277acf6cf0dacb3fd57e7
GET /releases/v5.15.4/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pub-28ded6188f5945c38347001e1074271f.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 07:16:41 GMT
content-type: font/woff2
content-length: 78168
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "a9fd1225fb2cd32320e2b931dca01089"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GH7hkLTTBJej3Ji5ujVdR5DmgYyaC8I2u_mzrUxH7mHIokEmbEGEgA==
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8SvfAGy5L%2FKiIBGNG16AmJWCz4j0OpijL7L%2FuvyDCyHAt4o4Rld9uMSOhec3X%2BV6HKwwBoVWEQl05omT0J1RpYVBACdTjH7yhVsS3oDo7njcYWqzb7R7FtYWXFU7nUvyGhxtGy4mtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762deedf85256c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://berxi.com&size=16 | 142.250.74.132 | | 755 B |
URL t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://berxi.com&size=16 IP142.250.74.132:0
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash412b8de2d32ed9069bdb5402539baad6 3285c56e43053efd5b6e3bfdded60904c15a4777 896b162512d51cea04c75c19609c141b540e456d19e3ebf3972a5084609c3fd6
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://berxi.com&size=16 HTTP/1.1
Host: t0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://www.berxi.com/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 755
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 07:16:40 GMT
expires: Thu, 25 Apr 2024 07:16:40 GMT
cache-control: public, max-age=604800
last-modified: Sat, 09 May 2020 00:46:39 GMT
content-type: image/png
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 | 104.21.26.223 | 200 OK | 27 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 IP104.21.26.223:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (26500) Hash76f34b71fc9fb641507ff6a822cc07f5 73ed2f8f21cd40fb496e61306acbb5849d4dbff4 6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Origin: https://pub-28ded6188f5945c38347001e1074271f.r2.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 07:16:41 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZiAiw5rWCUaCiflfOrkGLPF8mBmRLPdAW0CIQ2EnhxUgORO7XLdYcw==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eHC4IFsSToaWKOKj4H%2F3tDPgQfnzq%2FwpPUHFZ%2FHXh3ZYd8zByFbpV5oVcz0r79SpmaUC2x61x%2FeW4qktw%2F%2BB%2Fw46P6IHPbUytDJQTXWDmeVKFMEnKcC%2FG0RqU4j207ik1deMwnDGdw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762deecfee256c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.berxi.com/ | 143.204.55.115 | 200 OK | 0 B |
IP143.204.55.115:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerAmazon Subject*.berxi.com Fingerprint9F:CC:0D:D5:C0:6D:43:D8:FB:F1:D1:89:E1:59:27:41:1C:85:D1:D3 ValiditySun, 19 Nov 2023 00:00:00 GMT - Tue, 17 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.berxi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
x-amz-id-2: zN/ZCHhRqjxzS1spi/t+y0G6/UracBDGb5FJXhjadrLclI0wJGpPoPbuzuddFUrJX7fnUXZ1QPk=
x-amz-request-id: QG09VB4BMTC47GNT
last-modified: Tue, 16 Apr 2024 14:07:08 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 17 Apr 2024 14:09:38 GMT
etag: W/"e117ab4ba7f120090062c6687c3a05ed"
vary: Accept-Encoding, Origin
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: DENY
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4jm3LuWqz8MYRZYVpyqg1JIDkIGg4UzDr_r3V5LeNkXAo487iZZLWA==
age: 61624
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css | 104.18.10.207 | 200 OK | 160 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css IP104.18.10.207:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (65324) Size160 kB (159515 bytes) Hash7cc40c199d128af6b01e74a28c5900b0 d305110fb79113a961394b433d851a3410342b8c 2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6
GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-28ded6188f5945c38347001e1074271f.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 07:16:40 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 03/18/2024 12:50:34
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 874
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 0bc037613d7a5ea11868b98f1a400626
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8762deeb185e568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 60 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js IP104.18.10.207:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (59729) Hash61f338f870fcd0ff46362ef109d28533 b3c116c65e6f053aaab45e5619a78ec00271a50f 5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548
GET /bootstrap/4.4.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-28ded6188f5945c38347001e1074271f.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 07:16:40 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"61f338f870fcd0ff46362ef109d28533"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 03/18/2024 12:12:20
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1049
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 530a26e05b4ec2831b2046a0d58f2ad8
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8762deeb286c568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html | 104.18.2.35 | 200 OK | 0 B |
URL GET HTTP/1.1pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html IP104.18.2.35:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerLet's Encrypt Subject*.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html HTTP/1.1
Host: pub-28ded6188f5945c38347001e1074271f.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 07:16:41 GMT
Content-Type: text/html
Content-Length: 11736
Connection: keep-alive
Accept-Ranges: bytes
ETag: "eb6a7bf869fb01038ba673c26c1f456c"
Last-Modified: Wed, 17 Apr 2024 14:29:05 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8762deed0df10b69-OSL
|
|
| pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html | 104.18.2.35 | 200 OK | 12 kB |
URL User Request GET HTTP/1.1pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html IP104.18.2.35:443
CertificateIssuerLet's Encrypt Subject*.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT
File typeJavaScript source, ASCII text, with very long lines (746) Hasheb6a7bf869fb01038ba673c26c1f456c 6c7ed31c2c12daa5b08fc3bf73f2ca0abcb4ab10 661971891d0c611cbf9bf83bba003453137bf298db32707012b3ab6d9ce433c7
GET /P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html HTTP/1.1
Host: pub-28ded6188f5945c38347001e1074271f.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://graflex.es/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 07:16:40 GMT
Content-Type: text/html
Content-Length: 11736
Connection: keep-alive
Accept-Ranges: bytes
ETag: "eb6a7bf869fb01038ba673c26c1f456c"
Last-Modified: Wed, 17 Apr 2024 14:29:05 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8762dee4decd0b69-OSL
|
|
| pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html | 104.18.2.35 | 200 OK | 12 kB |
URL GET HTTP/1.1pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html IP104.18.2.35:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerLet's Encrypt Subject*.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT
File typeJavaScript source, ASCII text, with very long lines (746) Hasheb6a7bf869fb01038ba673c26c1f456c 6c7ed31c2c12daa5b08fc3bf73f2ca0abcb4ab10 661971891d0c611cbf9bf83bba003453137bf298db32707012b3ab6d9ce433c7
GET /P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html HTTP/1.1
Host: pub-28ded6188f5945c38347001e1074271f.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 07:16:41 GMT
Content-Type: text/html
Content-Length: 11736
Connection: keep-alive
Accept-Ranges: bytes
ETag: "eb6a7bf869fb01038ba673c26c1f456c"
Last-Modified: Wed, 17 Apr 2024 14:29:05 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8762deec6d680b69-OSL
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251 | 104.21.26.223 | 200 OK | 60 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251 IP104.21.26.223:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (60130) Hasha12ec7ebe75a4d59a5dd6b79e2ba2e16 28f5dcc595ee6d4163481ef64170180502c8629b fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda
GET /releases/v5.15.4/css/free.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Origin: https://pub-28ded6188f5945c38347001e1074271f.r2.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 07:16:41 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HGGwi_Rj0zHYYCPYGKtmMS-y742srosq5Hy5B3PWUO5VeXqJgRD2Mw==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FJUn9qEfjbgJ6iqQ1vZSjPhFzrANx5r4qiqgbcZ9jwpKw1J72oYZkdOrW656FAP%2B6lm5knBQvAaG0GNSh70H6skQuLx6jrWoffFSNNdaIQF2niT4Fv%2FbnVqXKOySMAC6JtlsbfM27w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762deeceed656c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://berxi.com&size=16 | 142.250.74.132 | 200 OK | 755 B |
URL GET HTTP/2t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://berxi.com&size=16 IP142.250.74.132:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash412b8de2d32ed9069bdb5402539baad6 3285c56e43053efd5b6e3bfdded60904c15a4777 896b162512d51cea04c75c19609c141b540e456d19e3ebf3972a5084609c3fd6
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://berxi.com&size=16 HTTP/1.1
Host: t0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://www.berxi.com/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 755
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 07:16:40 GMT
expires: Thu, 25 Apr 2024 07:16:40 GMT
cache-control: public, max-age=604800
last-modified: Sat, 09 May 2020 00:46:39 GMT
content-type: image/png
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| kit.fontawesome.com/585b051251.js | 172.64.147.188 | 200 OK | 12 kB |
URL GET HTTP/2kit.fontawesome.com/585b051251.js IP172.64.147.188:443
Requested byhttps://pub-28ded6188f5945c38347001e1074271f.r2.dev/P09U8Y7T6R5E4DRFTGYUHIJOKIU98Y7T6R5E4DRTFGYHUIJOKIU98Y76TR5E4RDTFGYHJOKPI09-0987T6RTFYGUHIJOPI0U9Y87TFYGUHIJOUY8T76RTF-098765TRFGHJIOU8Y7T6RTDCFGVHBJ-87T6RDFCGVHBJIJUY87T6R5DSXFCGVHBJIY87T6RTD-U8Y7T6R5EDXCFGVHBJHIUY87T6R5D-U8Y7T6R5DXFCGVHBJNHIUYT76R8.html#claims@berxi.com CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (11461) Hash55d343a40c7166a79fd314f13cbb2e93 96904a849c32ca220e0aaa2ae3e81cf2b5cdf764 a1f75d6278713a84a8f28a392c77ca8a6a7c32bf14314d4a34a6ce2f06cfdf7a
GET /585b051251.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-28ded6188f5945c38347001e1074271f.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-28ded6188f5945c38347001e1074271f.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 07:16:40 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F8dOmKiACM4nFpEFdgWh
cf-cache-status: MISS
server: cloudflare
cf-ray: 8762deea9ee15696-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|