| foliaencantada.com.br/cgi-bin/auth/2/andlaXhAZmliZXItdGVjaGluYy5jb20= | 108.179.252.148 | | 0 B |
URL foliaencantada.com.br/cgi-bin/auth/2/andlaXhAZmliZXItdGVjaGluYy5jb20= IP108.179.252.148:0 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /cgi-bin/auth/2/andlaXhAZmliZXItdGVjaGluYy5jb20= HTTP/1.1
Host: foliaencantada.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 19:30:00 GMT
server: nginx/1.23.4
content-type: text/html; charset=UTF-8
content-length: 0
refresh: 0;url=https://link.mail.beehiiv.com/ls/click?upn=u001.Nq-2Bwv5d-2Fp8t7aJzFPq57Cnk3gsi-2F-2BrdVbZy-2FRq9Xoh9CssT0icF94SeYqDh4PnSbMBk-2FigXZgJaS-2FYebPfhp8sRXvIzjkT8dU-2B6sjpF7dD3vqNe9Gcduj9y2ivhIkmc6oESJuSIcVtFAMQqEoJoPbuPRfnFpnTHJyI5p7w4htZKFdB7mQ-2FX5wPx7V4qlBxaCw4L3_6vELXDU9KZ1iFJaR21H6607UfE8a5rAlES7g2JPVe78ychpezAp9z7qTJ6rc6w6PAc4G-2FhEDcs2bgwt0G4zD0-2FIAtdo7BiHlCEQvoCXbFdeQwGYwBZrfGS96REdKNfnDL-2BJicmGtuqwsZmTFeDPcY8qVHPs-2FPDU1x4aDTPOh3WYcckJvICEkn66978YyxZWihV-2F6lWyKTx4ZlB8MuFA8w8kBJhAwAi8TS76Vq7LWM7tpE46aEs8C3X6VcoR2bqax-2FMp5nDADTirzUBKZT-2FA4xMoXF0u8eJgNx9bD35OTSMmqzOF8h4wLUniuTbVPTEEMRZR2DmkrXbEzLOWxz8sAfX4t4AsqDbRmMxiipBoOpl0YD6iN0R9yW64k09emgoSIvZ-2BpwPOLr04ZlEMFlWVdAlJ3xcR9R3g0nUGwxUiYW3s-2BoBzU3m-2FY8smcbZmB-2BQ-2F5#jweix@fiber-techinc.com
cache-control: max-age=7200
expires: Wed, 24 Apr 2024 21:30:00 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
x-server-cache: false
X-Firefox-Spdy: h2
|
|
| educdtmonline.com/pg?utm_source=theresas-newsletter-9e90b6.beehiiv.com&utm_medium=newsletter&utm_campaign=calfrist-time | 81.25.127.181 | | 344 B |
URL educdtmonline.com/pg?utm_source=theresas-newsletter-9e90b6.beehiiv.com&utm_medium=newsletter&utm_campaign=calfrist-time IP81.25.127.181:0 ASN#41541 sw hosting & communications technologies SL
File typeHTML document, ASCII text Hashddbb2cf2db173a6e7a28ac4ef6803434 faa61f9db6fa52dac45fbd2d780d0f49bdce072b 50eefc1e75e448355c850494dbe6eeb511daaef36716212386e7453a1e84d1a7
GET /pg?utm_source=theresas-newsletter-9e90b6.beehiiv.com&utm_medium=newsletter&utm_campaign=calfrist-time HTTP/1.1
Host: educdtmonline.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 19:29:58 GMT
Server: Apache
Location: https://educdtmonline.com/pg/?utm_source=theresas-newsletter-9e90b6.beehiiv.com&utm_medium=newsletter&utm_campaign=calfrist-time
Content-Length: 344
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| educdtmonline.com/pg/?utm_source=theresas-newsletter-9e90b6.beehiiv.com&utm_medium=newsletter&utm_campaign=calfrist-time | 81.25.127.181 | | 416 B |
URL educdtmonline.com/pg/?utm_source=theresas-newsletter-9e90b6.beehiiv.com&utm_medium=newsletter&utm_campaign=calfrist-time IP81.25.127.181:0 ASN#41541 sw hosting & communications technologies SL
File typeHTML document, ASCII text, with CRLF line terminators Hash00b241b3b2f3545f72d71c6c83bf73f6 a79fa765a543884e4fdfb20d490177538cf0a145 ba87dc1935eb2a3e4ffe67f59f5d3b438464e14b434d6f5eff49dfeb20abe745
GET /pg/?utm_source=theresas-newsletter-9e90b6.beehiiv.com&utm_medium=newsletter&utm_campaign=calfrist-time HTTP/1.1
Host: educdtmonline.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 19:29:58 GMT
Server: Apache
Last-Modified: Wed, 24 Apr 2024 16:21:54 GMT
Accept-Ranges: bytes
Content-Length: 416
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.3.184:0
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/nz6ne/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:02 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8798816a8f8c56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/166338991:1713983442:KRMsEGSnT2n_OjugTHl6cgML0uncKTr7RfZm_vaJxX8/87988169fecc56c5/b28bdb0a9a32002 | 104.17.3.184 | | 87 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/166338991:1713983442:KRMsEGSnT2n_OjugTHl6cgML0uncKTr7RfZm_vaJxX8/87988169fecc56c5/b28bdb0a9a32002 IP104.17.3.184:0
File typeASCII text, with very long lines (65536), with no line terminators Hashefe58184c5d4d870606f885e64a5518c 4301537f8963a0ff53fda66727f047fa78679767 665fe681b0c75d3259168963e63d156137bc17df3fb91b4fcc1dd1d3d1d014f7
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/166338991:1713983442:KRMsEGSnT2n_OjugTHl6cgML0uncKTr7RfZm_vaJxX8/87988169fecc56c5/b28bdb0a9a32002 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/nz6ne/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: b28bdb0a9a32002
Content-Length: 3404
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:02 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: QTyWNX0Z2V5+mhcvjFAKwg45SoHzTF/pP9NKQ97MEzkYbEaRXMuROs9nlozHH8QqVwY9PRl0p61bLmB5yuPg0FIR2lkdZ1GBnlWjrQLs2B5NpR8RQdKxCetfVSMcKyxTG5KNhzZORWgQ4s+DjmBmdZ6WQcBTaseU89igwHypP00e8Cw+qm3vDcwqFa9ZI0IhGoWpGCknEbK8Ru227FRjrM1F0wbnXgyGfDUMVQtF/bTASSMcoDOcE2ZoUGux3M7DSAs8HnX5zjYzdryjofO/dTYuYU84oUJnPrH+X/cwzQ8ZBTJ1vwlUeU2lLlMUy48SjUaBNik52qXgE9GvPZR/axva/z2YXJUlVMdy6pzsrfsFgqIp7uADJi8fPgd6DWu3$4f1f75yv5xufAXyn4hEL+g==
vary: accept-encoding
server: cloudflare
cf-ray: 8798816c8a2656c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87988169fecc56c5/1713987002343/ZVa3rmWjqWGn569 | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87988169fecc56c5/1713987002343/ZVa3rmWjqWGn569 IP104.17.3.184:0
File typePNG image data, 26 x 61, 8-bit/color RGB, non-interlaced Hash722dd528556920f1c15acf87d9db221b 68a471c277f68ec26094a9b2b41c9655504588d8 28b43204362b5723d423c4d4dbed937291092a557068b09ae5dc2fbdbed63428
GET /cdn-cgi/challenge-platform/h/b/i/87988169fecc56c5/1713987002343/ZVa3rmWjqWGn569 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/nz6ne/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:03 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 879881745e8d56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/166338991:1713983442:KRMsEGSnT2n_OjugTHl6cgML0uncKTr7RfZm_vaJxX8/87988169fecc56c5/b28bdb0a9a32002 | 104.17.3.184 | | 3.7 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/166338991:1713983442:KRMsEGSnT2n_OjugTHl6cgML0uncKTr7RfZm_vaJxX8/87988169fecc56c5/b28bdb0a9a32002 IP104.17.3.184:0
File typeASCII text, with very long lines (968), with no line terminators Hashf80e845153a57a0236c5c60eeaf2dbf6 973e55e3776bd0cf430eb5493686fd3fe54d3798 a42e27b2cc6009c9040793248a1ae5210a1ac8e24f7555fb5585f0918bf6710d
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/166338991:1713983442:KRMsEGSnT2n_OjugTHl6cgML0uncKTr7RfZm_vaJxX8/87988169fecc56c5/b28bdb0a9a32002 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/nz6ne/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: b28bdb0a9a32002
Content-Length: 38918
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:09 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: jQZOU2puum5FxY2hlBdDteIvV49Xm1ve0lYTbxCrDHjw2G9rI19Pvq18oWtZU4kIJfOD/eRp0naycJv0YePzDjNxvwOOcCm2SV4nXG38d4g=$ogZqcuTHmeTFXiCOmxsgOw==
cf-chl-out-s: mEbTps5ejPg3XLRLQ39llErf3SGx8S+VmDH4+4nG//vcCNp/hz80WwPqHqRPJjenQoAh5u+fehZQR+WW17/Ymtoy1FIpA4ukOzoGEtw9gCWmSMVh+uKDvBXic4FQi8EpmIR6+IQ03LPVYzVfquSLUA==$99jvLroLBo2qkF1h2WuNzQ==
vary: accept-encoding
server: cloudflare
cf-ray: 87988199fef056c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit | 104.17.3.184 | 200 OK | 14 kB |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit IP104.17.3.184:443
Requested byhttps://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42414) Hashf94a2211ce789a95a7c67e8c660d63e8 f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f 926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b
GET /turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dr-0c-xeqstsmarter.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:11 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 879881a8aade56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/879881aabd5e56c5/1713987012801/lz9j_3aEgN2k_Bo | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/879881aabd5e56c5/1713987012801/lz9j_3aEgN2k_Bo IP104.17.3.184:0
File typePNG image data, 99 x 2, 8-bit/color RGB, non-interlaced Hash2c14b31a55a608520ca22200d611fd49 3b5ad1ef9888a816f1bf042eda96aa43adbd00dc 8f1d51f38721b1c5f9ff26192f23ad10cf19707056f32867e16831208cf75e84
GET /cdn-cgi/challenge-platform/h/b/i/879881aabd5e56c5/1713987012801/lz9j_3aEgN2k_Bo HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/tqava/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:14 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 879881b61ce656c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/648106014:1713983136:pTEL2GlglFUExTSc3a61sJgakpysuTUlPMVS1YChfqY/879881aabd5e56c5/3c5fb3f80f017d8 | 104.17.3.184 | | 96 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/648106014:1713983136:pTEL2GlglFUExTSc3a61sJgakpysuTUlPMVS1YChfqY/879881aabd5e56c5/3c5fb3f80f017d8 IP104.17.3.184:0
File typeASCII text, with very long lines (65536), with no line terminators Hash2845ba9d3fbf4a0d088e3541b452be75 b092ae14847d8c30a94a796c173166863780c70e 921dfcf87f19f045981568a2b37d4426989fc9d3aeefcf35b133a179b2d8f697
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/648106014:1713983136:pTEL2GlglFUExTSc3a61sJgakpysuTUlPMVS1YChfqY/879881aabd5e56c5/3c5fb3f80f017d8 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/tqava/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 3c5fb3f80f017d8
Content-Length: 3418
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:12 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: KcyWDmIf9MZCQJwaTcXjuRHvERJ6eA/MEKN7a9V7Uj02AX0Fw+k3dSQ53TUa/dVBQuldPsTnahcD+zFXpyLhnbzMKUd8FN71NAx1IxSDwvNOJlRPsTYWGGieNVzY00M/RGMi+z2GqTv7K93gp5PubrFW3PdM9Tv84NBDjomxC9clrdmAuLkiwBdGomIQR7hV73qyzRXKEqXFkwZk4Ntcw2t/LNZ7dk9CHSfyriJdoznGnjW+feqtRSG3G21Gybo14/TP17LL/S1x4Ta4oSYijZSAImShYG0snyk26R62slEEsQIfhT7nlHi/CW7R7gfsVa7wA9RHPXPpKRFEpAfoGj6EVON7AlfMrgv5eFa84x7wnTJdCIgGrz2Vi7acJa6v/yV5y5eYp2JUK0gVbgsLJfoFMpI1w/fNJUONA350g2g5IdX+eFrrQB6UVXt99on7WcYkKUoWQVRoHER/sKYCDg==$3AjSc4nIoRXgSbJOCFqlXg==
vary: accept-encoding
server: cloudflare
cf-ray: 879881add94056c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dr-0c-xeqstsmarter.ru/favicon.ico | 104.21.49.93 | 403 Forbidden | 16 kB |
URL GET HTTP/3dr-0c-xeqstsmarter.ru/favicon.ico IP104.21.49.93:443
Requested byhttps://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com CertificateIssuerLet's Encrypt Subjectdr-0c-xeqstsmarter.ru Fingerprint41:1E:6D:E3:03:CC:8B:02:F8:F6:8D:E7:DC:6E:25:42:5F:7E:73:AE ValidityFri, 19 Apr 2024 12:30:18 GMT - Thu, 18 Jul 2024 12:30:17 GMT
File typeHTML document, ASCII text, with very long lines (15843), with no line terminators Hashdd43c41ee43898ad3950333bd81062ab cca9f60bf8f824c83ccebc1c67ea1147562a7e57 3f2d688b7c0ace77f475f1d4472284cdb82eb201527af919692f8a8175ca2fd5
GET /favicon.ico HTTP/1.1
Host: dr-0c-xeqstsmarter.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:30:11 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: Yyo8NHK6PcU5KcN0B3hQtggjZPLsmdDO7Sdec9xNzAkjujWUXMvkUUDr3eLhK0ixZS8jWTzWiCqlAXUt8HlQ6KAVE4mJFdJhBgy4GmKBvHKTVwOXyK219elUW30rW1Ah3uxb1//MawTX77E4JZnpHA==$t/1vqDzm9Ul1ffA0kB+dBg==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=43%2B3VBm04u9nVA1hCSZOEj560BQi2w%2Bf9T4LD7NeXRavEFOz815AUt%2F%2BR2SefSmqjLJuUwu2EP671lHIGCRAcbRX7JXj4wNOjxRcEbQuteq%2Bbi11KoKEnYlKssg3%2Fv103t%2B%2BDMMj9Po%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879881a8ae86569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/tqava/0x4AAAAAAADnPIDROrmt1Wwj/light/normal | 104.17.3.184 | 200 OK | 80 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/tqava/0x4AAAAAAADnPIDROrmt1Wwj/light/normal IP104.17.3.184:443
Requested byhttps://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hash59cd45d8631e244b85aead226ef29edc ffed987c472999723318104bd07336b651964e92 258c3335f1ce9170b95b10e8323e05298b27695ffa8d98aa7f7ebc22b7cf91bf
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/tqava/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:12 GMT
content-type: text/html; charset=UTF-8
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
cross-origin-opener-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
cross-origin-embedder-policy: require-corp
origin-agent-cluster: ?1
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
vary: accept-encoding
server: cloudflare
cf-ray: 879881aabd5e56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dr-0c-xeqstsmarter.ru/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=879881a76c9f569b | 104.21.49.93 | 200 OK | 392 kB |
URL GET HTTP/3dr-0c-xeqstsmarter.ru/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=879881a76c9f569b IP104.21.49.93:443
Requested byhttps://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com CertificateIssuerLet's Encrypt Subjectdr-0c-xeqstsmarter.ru Fingerprint41:1E:6D:E3:03:CC:8B:02:F8:F6:8D:E7:DC:6E:25:42:5F:7E:73:AE ValidityFri, 19 Apr 2024 12:30:18 GMT - Thu, 18 Jul 2024 12:30:17 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size392 kB (391481 bytes) Hash725e8ae9868b3e179d3718942d781e60 7690121d814f2ca81653477d2d875bdee3547d14 eed562d779bba1209d0684de1758ebbdb824e3f047f493974ae189c3f45e5a23
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=879881a76c9f569b HTTP/1.1
Host: dr-0c-xeqstsmarter.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com?__cf_chl_rt_tk=Hth30cYaHs3mLM3rgsmzIeht6Bqz.eWUOIGRItWC2Bs-1713987011-0.0.1.1-1642
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:11 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QxRpXt2e43YxLUfNpIzNXPl%2B%2F%2FsqlQu6STrFsSEeU3veb4aTWgx7WoMmeNE%2FLCeap7U4AcsJzOS1DWVv6QYkGfqbgkT%2B1Hp9N8%2Fhk4umHlXNr1nu2peRSb8Yfc7IQ3BTMzA8Pjsybwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879881a7cd2a569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dr-0c-xeqstsmarter.ru/cdn-cgi/challenge-platform/h/b/flow/ov1/147193257:1713983241:J5fnfCzhrqRt1qSgKw6HVRW9XFQYpEzka214y9OpeNc/879881a76c9f569b/b90598efd9c3b19 | 104.21.49.93 | 200 OK | 2.3 kB |
URL POST HTTP/3dr-0c-xeqstsmarter.ru/cdn-cgi/challenge-platform/h/b/flow/ov1/147193257:1713983241:J5fnfCzhrqRt1qSgKw6HVRW9XFQYpEzka214y9OpeNc/879881a76c9f569b/b90598efd9c3b19 IP104.21.49.93:443
Requested byhttps://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com CertificateIssuerLet's Encrypt Subjectdr-0c-xeqstsmarter.ru Fingerprint41:1E:6D:E3:03:CC:8B:02:F8:F6:8D:E7:DC:6E:25:42:5F:7E:73:AE ValidityFri, 19 Apr 2024 12:30:18 GMT - Thu, 18 Jul 2024 12:30:17 GMT
File typeASCII text, with very long lines (2332), with no line terminators Hash0586de2d5aa0b476bfed91aac5b7605d 11f601435abc2cd1e1fc758d8e0061316fca1e57 2fe525b5b9181674f19912e213545f9a5d6e0d22044208a3dbd4ebe8aa855283
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/147193257:1713983241:J5fnfCzhrqRt1qSgKw6HVRW9XFQYpEzka214y9OpeNc/879881a76c9f569b/b90598efd9c3b19 HTTP/1.1
Host: dr-0c-xeqstsmarter.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com
Content-type: application/x-www-form-urlencoded
CF-Challenge: b90598efd9c3b19
Content-Length: 2573
Origin: https://dr-0c-xeqstsmarter.ru
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:20 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: ZZfQOTDLQkClPn0hRQMiX2q9GbC3lV+VtRWXFGBcY2tbeaDiAwnyIIJBxFjLH/b9+DoT1Jo+xV+j0OgM7Is+A1aIn/pMA60HoBkwOT9Fips=$PH1YpGD7yVXWkb3DDeXl6w==
cf-chl-out: xKHZgzXbla4Ak5XZv3X4fvsiKsUBsL619Im5QPreMxbWd2Rj8iEGiXj2j4qSoTrcmn/AfLgyQtRWbAalKaYGXj5Cz1+gCo4xrxWeL5WBlI4=$Du4Mgcg3gl9AZiFO+9rW0A==
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gX%2FlZ0Cb73ryXgN7D%2FLOsG3ohOX1ETqM7T8Zecq9sg667UWeHVmtJC%2BiQq1lpeShtA9Ewva4PQYQa67K1lJpHMAUjEBh%2BdwLa%2FiLpXU0cJrwjNaX0za6nVDRgpqy3n2VNdUBga7WuuM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879881df6d64569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com | 104.21.49.93 | 403 Forbidden | 16 kB |
URL User Request GET HTTP/3dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com IP104.21.49.93:443
CertificateIssuerLet's Encrypt Subjectdr-0c-xeqstsmarter.ru Fingerprint41:1E:6D:E3:03:CC:8B:02:F8:F6:8D:E7:DC:6E:25:42:5F:7E:73:AE ValidityFri, 19 Apr 2024 12:30:18 GMT - Thu, 18 Jul 2024 12:30:17 GMT
File typeHTML document, ASCII text, with very long lines (15984), with no line terminators Hash2613da1e6d29e7e2813809c4f5e23542 cef21c9d226d441876108061d80e2ff460d27563 68b7cdcaa91d5f7b761daf4b8af04a2f6e2e86084e64e5c499bc206911312e93
GET /Mjweix@fiber-techinc.com HTTP/1.1
Host: dr-0c-xeqstsmarter.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://educdtmonline.com/
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:30:11 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: Ee+phbPSiBgu+Co7mgTGMGC9SlNKvKi8RD6/eXrhLiUVNqvswgQuwrWEcoargK6nqqHrIdmeHHR7N3ZUyx+tQuirwuevTJOS/i4i9upkvRWZMFMx05LWi0OV+X5iEEmux1mI5SzcJSxJAL+BlbIXMA==$8xoh4A9zTGGvsdzCE6zj8g==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FXX3e4zvGLT3bEyPZJ6K68apxUQJYJeLsiIwLQBaEHrQIxi3iXSD%2BzvTkOClGcWdCeHFfF9kRGLDP%2BkvOkb%2FP0bFogZ%2F1YdSVMkcKOL15%2FrvVim8uOmvUciRf3jKsmYE261Rf1YElVw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879881a76c9f569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dr-0c-xeqstsmarter.ru/cdn-cgi/challenge-platform/h/b/flow/ov1/147193257:1713983241:J5fnfCzhrqRt1qSgKw6HVRW9XFQYpEzka214y9OpeNc/879881a76c9f569b/b90598efd9c3b19 | 104.21.49.93 | 200 OK | 16 kB |
URL POST HTTP/3dr-0c-xeqstsmarter.ru/cdn-cgi/challenge-platform/h/b/flow/ov1/147193257:1713983241:J5fnfCzhrqRt1qSgKw6HVRW9XFQYpEzka214y9OpeNc/879881a76c9f569b/b90598efd9c3b19 IP104.21.49.93:443
Requested byhttps://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com CertificateIssuerLet's Encrypt Subjectdr-0c-xeqstsmarter.ru Fingerprint41:1E:6D:E3:03:CC:8B:02:F8:F6:8D:E7:DC:6E:25:42:5F:7E:73:AE ValidityFri, 19 Apr 2024 12:30:18 GMT - Thu, 18 Jul 2024 12:30:17 GMT
File typeASCII text, with very long lines (15984), with no line terminators Hash7b8a228c1e6fa0c5359cb035c2099ea6 ffcb26bdec1a4b7b8b24861fcfb22e414ed2d215 4d90ad611139cb45847aaf2b0658da65f503ae788a297968a16980d9dd19626c
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/147193257:1713983241:J5fnfCzhrqRt1qSgKw6HVRW9XFQYpEzka214y9OpeNc/879881a76c9f569b/b90598efd9c3b19 HTTP/1.1
Host: dr-0c-xeqstsmarter.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com
Content-type: application/x-www-form-urlencoded
CF-Challenge: b90598efd9c3b19
Content-Length: 1948
Origin: https://dr-0c-xeqstsmarter.ru
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 19:30:12 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 3K4tRbAOghbGsdmQEn9LlEp+loWU2cUw/WaaDXoMJfZAO4siemV7q+KywcuoH61D$8tDfTb0ft4nPyuCGuDgaYg==
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6ARIb37Cjwa0Xi8x8FAxttxwLmn%2BCoQRG69vUgDVxpGSu2RsJHH1mgFr6sHniRiAdapmBDP%2FaZ0QrPWiMLN4XhmwKP4HZAXikiitpa%2Bnw8uUEO5BTFTZwL%2F8YKKHtyPYQg9zFDTkddY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879881a97fa0569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dr-0c-xeqstsmarter.ru/favicon.ico | 104.21.49.93 | 403 Forbidden | 16 kB |
URL GET HTTP/3dr-0c-xeqstsmarter.ru/favicon.ico IP104.21.49.93:443
Requested byhttps://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com CertificateIssuerLet's Encrypt Subjectdr-0c-xeqstsmarter.ru Fingerprint41:1E:6D:E3:03:CC:8B:02:F8:F6:8D:E7:DC:6E:25:42:5F:7E:73:AE ValidityFri, 19 Apr 2024 12:30:18 GMT - Thu, 18 Jul 2024 12:30:17 GMT
File typeHTML document, ASCII text, with very long lines (15907), with no line terminators Hashf461429d19b80a7be8a1778612dad532 17f7b312873fe2f55c6afb814e16046ad314b82f b467758aeb3cbd82185ffad6c332fcc8f0502a2a169ab0811dfc948547590ff7
GET /favicon.ico HTTP/1.1
Host: dr-0c-xeqstsmarter.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dr-0c-xeqstsmarter.ru/Mjweix@fiber-techinc.com?__cf_chl_rt_tk=Hth30cYaHs3mLM3rgsmzIeht6Bqz.eWUOIGRItWC2Bs-1713987011-0.0.1.1-1642
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:30:11 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: jxwQEzDIe1LqU3B937tA6x9VmRiKY4Wf08eX7vJIUJuKrddO7S0iMBpK4ZQqCcDagyKFDl/62ugI7NUwSo5LpfMwPpH64fxlj2HEHd/oMIRqHOuY8ARoU+VpYlu9HG0LzB+RbAp5ch+SaR3PC5IBCg==$y2F1St8z86mYcdU0BS5mAA==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9eNK4aE8st7W4RnwYSE3vF%2FlK7PwyAMNH3L%2Bhtf1Vy5Il9X2HtJX%2Fp4vnJqgeZv2af87nFZ8UgDnJf%2Fr6TMe6tFGttv8Mos4qH8PLH35cFBIX3NHwsuk8snns4KM%2Bxz4ZMEIB5u8bBc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879881a85e05569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|