| advant-connection.life/cdn-cgi/challenge-platform/h/b/flow/ov1/129604671:1746868275:BvBvVGFHLm7Dx-6oRFW80mb5cqUzTg0Xu2HfUNzf1q4/93d893299ec3b4f3/MND3dQXB_MK5MOpumVA7oBh6tLTozsmlqbars490GH8-1746871072-1.2.1.1-oweJ3Uvi3mCFUOSjNtRYN.UdDedz5dEtLj5vigYRXy8F1kXXlty9UBpGedakG_4I |  188.114.97.1 | 200 OK | 4.2 kB |
URL POST advant-connection.life/cdn-cgi/challenge-platform/h/b/flow/ov1/129604671:1746868275:BvBvVGFHLm7Dx-6oRFW80mb5cqUzTg0Xu2HfUNzf1q4/93d893299ec3b4f3/MND3dQXB_MK5MOpumVA7oBh6tLTozsmlqbars490GH8-1746871072-1.2.1.1-oweJ3Uvi3mCFUOSjNtRYN.UdDedz5dEtLj5vigYRXy8F1kXXlty9UBpGedakG_4I IP188.114.97.1:443
Requested byhttps://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= CertificateIssuerGoogle Trust Services Subjectadvant-connection.life Fingerprint78:9F:5F:70:D1:DE:81:0B:E3:74:41:4F:07:5C:80:DF:21:B0:57:E3 ValidityMon, 28 Apr 2025 18:02:58 GMT - Sun, 27 Jul 2025 19:01:25 GMT
File typeASCII text, with very long lines (4160), with no line terminators Hash495fb504cf5c7ef7b037d6d010104557 882d5819f903e800b20a13f90b680d7f612d5190 c0d25927f23cd74589c064df8026dd1f8d9ddfd219e1654b1d6d9addac43a764
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/129604671:1746868275:BvBvVGFHLm7Dx-6oRFW80mb5cqUzTg0Xu2HfUNzf1q4/93d893299ec3b4f3/MND3dQXB_MK5MOpumVA7oBh6tLTozsmlqbars490GH8-1746871072-1.2.1.1-oweJ3Uvi3mCFUOSjNtRYN.UdDedz5dEtLj5vigYRXy8F1kXXlty9UBpGedakG_4I HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4=
cf-chl: MND3dQXB_MK5MOpumVA7oBh6tLTozsmlqbars490GH8-1746871072-1.2.1.1-oweJ3Uvi3mCFUOSjNtRYN.UdDedz5dEtLj5vigYRXy8F1kXXlty9UBpGedakG_4I
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 4363
Origin: https://advant-connection.life
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 May 2025 09:57:58 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 93d8934f2e09b4f3-OSL
cf-chl-out: EsCB9930waMSF4zEAjMXuBr1TR63MdTIFAkJEDOcSlhoqZs0pqT+M52tU9LEnd4ajpGKjgssv9VmdLuj20tmxg==$k5UQl/xrMbj86FODhFyQDg==
content-encoding: br
cf-chl-out-s: gfDMriQqJT9/LkZLFqoTY7DUP0NjIBqSx8Mce6WraHm1Te0CsYLgOWHHOakgWLAgySX9PykNm+ImOtqdN8UpUSQAEW7lzGEDIkW31c+cpW6tOTIBE/MJ5nnv8aattjV/VAwoIFNAWof12Za2uafEe5rSlGc2SgDCxA74W0dXzSqWI24Jo4LuJKZgMq7IHm7j3ATdrqqCSmY7gkHJUTQnv7zDctA1n9qHJ9brhtyPw2Eum1VDWEZC0dK2jqHM7jnJZR7K9sWNWVPol0Dt23V01r5/6EBGo6gKnnBwNJsEMbz5ZJq1eSe3HhmyKEbWGX+rV75U21DFz8upiU5o4PYsr6V8ml5/BEi4/xJ8jqGsU6gUN0qdT2gURv85wdmGeeDgLCuYNS97uZVhHV+g9Aqr6m7x82UL+vBoWUKbp2YytRqYEyP9Gp7tgKWKBWcAW81X$SE/nvTttEQtkbrvsJyVNgQ==
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A7SvsTUfsC%2BylMRUwhcDZOxsEdhffcWJT3FZivGn%2Ftw4wLiam3h%2F8dX%2F2Fx2KQh3sw5DWyWD0hGDuLE8iO2gejfo%2BYMVgZI5W4kRxdWL70rTSxKYctSMTRFR1exuQDfIWN21KlCTy8td"}],"group":"cf-nel","max_age":604800}
set-cookie: cf_clearance=lGgVJG3vTNukvu2h.ZnjvbsvRNICTIoiVkUj0OP0yvg-1746871078-1.2.1.1-HG_SNWlocctpG5prVopd4JI3dWeOT42WJXvS06h8E58.ChzQrmQjaQDnvCPnKb7IHgkZuPw33WcqHATTnGLNSxXq8M1iq.PD0G2dgnd5gqiEah6SwTmbZHFN5WyrYBgw6GR_vleNE7KrIVgjbNgoVbmxaBioe3QfRPnNbHgX2tETX3xujbVHGGRAWOgk_GBLH0YFtqdKBcd9Bbqi5cEGztEIflEfl8GbeEc0s33Mn7F6KwtH_mvOAqN400D9ngkftbp5m_oe7iDaOLnnZX7dGnFTVZiRr5c1jB4lbUfSdlm2wIq5nQPubKEuiF8Qm55yzMux8TZJkEVBIdqFvWsta5NlrfmLe8pZ7FVbTDiwwi_TU0vu3DHFwBHMJrkztY4Z; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=advant-connection.life; Expires=Sun, 10 May 2026 09:57:58 GMT
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2101&min_rtt=1107&rtt_var=1066&sent=85&recv=29&lost=0&retrans=0&sent_bytes=76185&recv_bytes=11079&delivery_rate=170560&cwnd=48000&unsent_bytes=0&cid=67feed666b0d7a76&ts=6355&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= | 188.114.97.1 | 403 Forbidden | 7.5 kB |
URL User Request GET advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= IP188.114.97.1:443
CertificateIssuerGoogle Trust Services Subjectadvant-connection.life Fingerprint78:9F:5F:70:D1:DE:81:0B:E3:74:41:4F:07:5C:80:DF:21:B0:57:E3 ValidityMon, 28 Apr 2025 18:02:58 GMT - Sun, 27 Jul 2025 19:01:25 GMT
File typeHTML document, ASCII text, with very long lines (7547), with no line terminators Hash9c5cc0b6b52eb75fe3c382f442b7c6d1 ba800553d080400deb736534514e8ce86739b27a 6072520134b604a61a716627707fc40bc730cbb7b551a05dab2542ac480e20c9
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to Suspicious *.life Domain |
GET /l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sat, 10 May 2025 09:57:52 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
cf-ray: 93d893284db0b505-OSL
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8gB3Zc6Ai2FFqUDWB6UI%2FwUkuMTYJUjlBr7P76uuQ%2BshaF6LWFMGft%2BIwSs3GTW1MPRIHjBG1vVLsJsaRClzKfsPl0szIjnt%2BzJAD%2FrOQ3B%2FoGITxzqg18EZvE62QltuAcXNEiswdHU0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="93d893284db0b505", cfL4;desc="?proto=TCP&rtt=553&min_rtt=507&rtt_var=153&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3229&recv_bytes=1189&delivery_rate=6241379&cwnd=253&unsent_bytes=0&cid=819e2d828659e05a&ts=48&x=0"
X-Firefox-Spdy: h2
|
|
| advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= | 188.114.97.1 | 301 Moved Permanently | 7.4 kB |
URL User Request GET advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= IP188.114.97.1:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to Suspicious *.life Domain |
GET /l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 10 May 2025 09:57:52 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 10 May 2025 10:57:52 GMT
Location: https://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4=
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CrGO7rFCuP7dvIcdURowYMYFAbkIVnyr%2FGf0oXHwKl0%2FqWSCs7%2F1RpJw5VH87XjCNtFFY8L2zSXlZX2PgcrFy7yXOQWIJXUQEmkQD2Q6m83aRpX7%2BWLB4VCoEZzGGFi86Oz7swxK1Sn%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 93d893296b7d0b3d-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=435&min_rtt=435&rtt_var=217&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=485&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
|
| advant-connection.life/favicon.ico | 188.114.97.1 | 403 Forbidden | 6.9 kB |
URL GET advant-connection.life/favicon.ico IP188.114.97.1:443
Requested byhttps://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= CertificateIssuerGoogle Trust Services Subjectadvant-connection.life Fingerprint78:9F:5F:70:D1:DE:81:0B:E3:74:41:4F:07:5C:80:DF:21:B0:57:E3 ValidityMon, 28 Apr 2025 18:02:58 GMT - Sun, 27 Jul 2025 19:01:25 GMT
File typeHTML document, ASCII text, with very long lines (6894), with no line terminators Hash6f299d6ff69414ebd8e176e66f7352a8 0a43d7ca6d79fa710ab7922e6fd4a2b4dbc3e7c1 0f602a1865bbbe728321fbce03c4e68a55510c55a24853c120cbd20cc2d80aec
GET /favicon.ico HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4=&__cf_chl_rt_tk=G58ExppD1LtUtfTCkyu7A6kTbDkuGdpyA4BaOXc4Zck-1746871072-1.0.1.1-PyTRzkUgkg9fHG2IZ9kGWZlgaJNkDz2ixO7nSCHHdT0
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sat, 10 May 2025 09:57:52 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
cf-ray: 93d8932ae92fb4f3-OSL
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tRAgiyqCyVqtj7cRbeF4dlT419rah59OOGrDj28PhJeLwvyEmwv30jgVm2nzAifJPsZe%2FAH5aA4HpPM4MDBFhreZAsWmNYSAz%2FTHEICB3Bd2feJjUrjpEkv8GWf7LEUUz5i5Z8D%2FRYc2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="93d8932ae92fb4f3", cfL4;desc="?proto=QUIC&rtt=2627&min_rtt=1107&rtt_var=1139&sent=57&recv=17&lost=0&retrans=0&sent_bytes=50574&recv_bytes=2510&delivery_rate=1826737&cwnd=48000&unsent_bytes=0&cid=67feed666b0d7a76&ts=401&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= | 188.114.97.1 | 302 Found | 184 kB |
URL User Request POST advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= IP188.114.97.1:443
CertificateIssuerGoogle Trust Services Subjectadvant-connection.life Fingerprint78:9F:5F:70:D1:DE:81:0B:E3:74:41:4F:07:5C:80:DF:21:B0:57:E3 ValidityMon, 28 Apr 2025 18:02:58 GMT - Sun, 27 Jul 2025 19:01:25 GMT
Size184 kB (184014 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to Suspicious *.life Domain |
POST /l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4=&__cf_chl_tk=G58ExppD1LtUtfTCkyu7A6kTbDkuGdpyA4BaOXc4Zck-1746871072-1.0.1.1-PyTRzkUgkg9fHG2IZ9kGWZlgaJNkDz2ixO7nSCHHdT0
Content-Type: application/x-www-form-urlencoded
Content-Length: 4142
Origin: https://advant-connection.life
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=lGgVJG3vTNukvu2h.ZnjvbsvRNICTIoiVkUj0OP0yvg-1746871078-1.2.1.1-HG_SNWlocctpG5prVopd4JI3dWeOT42WJXvS06h8E58.ChzQrmQjaQDnvCPnKb7IHgkZuPw33WcqHATTnGLNSxXq8M1iq.PD0G2dgnd5gqiEah6SwTmbZHFN5WyrYBgw6GR_vleNE7KrIVgjbNgoVbmxaBioe3QfRPnNbHgX2tETX3xujbVHGGRAWOgk_GBLH0YFtqdKBcd9Bbqi5cEGztEIflEfl8GbeEc0s33Mn7F6KwtH_mvOAqN400D9ngkftbp5m_oe7iDaOLnnZX7dGnFTVZiRr5c1jB4lbUfSdlm2wIq5nQPubKEuiF8Qm55yzMux8TZJkEVBIdqFvWsta5NlrfmLe8pZ7FVbTDiwwi_TU0vu3DHFwBHMJrkztY4Z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Sat, 10 May 2025 09:57:58 GMT
content-type: text/html; charset=UTF-8
location: https://advant-connection.life/l/downloads/?h=aHR0cHM6Ly9hZHZhbnQtY29ubmVjdGlvbi5saWZlLz9zPTExMiZ0MT01ODQmdDI9bW90aXZlK2IxK2t1cnNidWNoK3BkZiZ0Mz0xMDFjOTk0NXU0Y3QmdDQ9
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 93d89350e8f2b4f3-OSL
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
vary: User-Agent
cf-cache-status: DYNAMIC
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=taYXe6Ul6Q9pPD36Z0dNZz9%2FmCKygs2BgRsBvLUfEV%2FyV7NjJNAFn95iTCY2rqdIUOtQ5re5AYolIdm%2Fl%2FBGU4MsvMRIesqz80araCCGwKLvTu6zbfJg1cx6QjZivoQfXkYQBt35%2BYI%2F"}],"group":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2322&min_rtt=1107&rtt_var=1242&sent=92&recv=34&lost=0&retrans=0&sent_bytes=81086&recv_bytes=16338&delivery_rate=27031&cwnd=48000&unsent_bytes=0&cid=67feed666b0d7a76&ts=6547&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| advant-connection.life/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=93d893299ec3b4f3 | 188.114.97.1 | 200 OK | 100 kB |
URL GET advant-connection.life/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=93d893299ec3b4f3 IP188.114.97.1:443
Requested byhttps://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= CertificateIssuerGoogle Trust Services Subjectadvant-connection.life Fingerprint78:9F:5F:70:D1:DE:81:0B:E3:74:41:4F:07:5C:80:DF:21:B0:57:E3 ValidityMon, 28 Apr 2025 18:02:58 GMT - Sun, 27 Jul 2025 19:01:25 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size100 kB (100298 bytes) Hashf98110dff4a79f4ff8a89a40d0e5be57 12a0deafd02de84d538d4519e12bad38d5f3c835 37c6006d63b386a3cfb88a326377455b6db5d0795af6189b2a8a1084952611b3
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=93d893299ec3b4f3 HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4=&__cf_chl_rt_tk=G58ExppD1LtUtfTCkyu7A6kTbDkuGdpyA4BaOXc4Zck-1746871072-1.0.1.1-PyTRzkUgkg9fHG2IZ9kGWZlgaJNkDz2ixO7nSCHHdT0
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 May 2025 09:57:52 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 93d8932aa8cdb4f3-OSL
server: cloudflare
content-encoding: br
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3pk%2F0rfAxgy4PXbG0ZuvXz8yxBZ41Gqt0Y7JAsFx5SuKthJ9AFeQ3QdMjJp0RBtOn6sqgwr2IsLKjRhH%2BMaBIB6gnyXRFO5plkYQy1peUADHQgjCuEWGqUodzF0Ir0eNCUoyXlJfQcaI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2751&min_rtt=1107&rtt_var=1508&sent=21&recv=13&lost=0&retrans=0&sent_bytes=10678&recv_bytes=1932&delivery_rate=4331959&cwnd=12000&unsent_bytes=0&cid=67feed666b0d7a76&ts=355&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| advant-connection.life/favicon.ico | 188.114.97.1 | 403 Forbidden | 6.8 kB |
URL GET advant-connection.life/favicon.ico IP188.114.97.1:443
Requested byhttps://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= CertificateIssuerGoogle Trust Services Subjectadvant-connection.life Fingerprint78:9F:5F:70:D1:DE:81:0B:E3:74:41:4F:07:5C:80:DF:21:B0:57:E3 ValidityMon, 28 Apr 2025 18:02:58 GMT - Sun, 27 Jul 2025 19:01:25 GMT
File typeHTML document, ASCII text, with very long lines (6766), with no line terminators Hashb924bd61fa44639fe596ed64c4f5cd50 990c4ee5506c678b4e8d3f1aa57875c3523efc0d c306541ea3706b3915ef4a0b54a89f4fd07dfe05e58f78aa354b91136ba6d908
GET /favicon.ico HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sat, 10 May 2025 09:57:52 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
cf-ray: 93d8932b59cab4f3-OSL
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ld7qCI4rlNE7zmDtQSW%2Ba5Z74KL6OBdaJRuzGnM0xp%2Fk1WgT1WVzyHhagHWrHo2xbvaYEpHupHvRuCb8%2BmNEWVnD6tYsAN031nYbxshHzHYkOkPuWQTw8NNbaW34P9LwyezZV4R2ZWG2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="93d8932b59cab4f3", cfL4;desc="?proto=QUIC&rtt=2464&min_rtt=1107&rtt_var=1180&sent=64&recv=19&lost=0&retrans=0&sent_bytes=56700&recv_bytes=2902&delivery_rate=299001&cwnd=48000&unsent_bytes=0&cid=67feed666b0d7a76&ts=462&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| challenges.cloudflare.com/turnstile/v0/b/701fd2559006/api.js?onload=OUxOl5&render=explicit | 104.18.94.41 | 200 OK | 48 kB |
URL GET challenges.cloudflare.com/turnstile/v0/b/701fd2559006/api.js?onload=OUxOl5&render=explicit IP104.18.94.41:443
Requested byhttps://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File typeJavaScript source, ASCII text, with very long lines (48199) Hash836e5c0174a12217e501c67b80a15c72 b938c4182594f1caac154d8d10a463df7cbc5b81 caa976b62fb6b8808a12c08ee3434d1b41d614d404674fd4a3fd7c0528c923f4
GET /turnstile/v0/b/701fd2559006/api.js?onload=OUxOl5&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://advant-connection.life
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 May 2025 09:57:52 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 05 May 2025 16:10:46 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 93d8932b7bb756b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| advant-connection.life/cdn-cgi/challenge-platform/h/b/flow/ov1/129604671:1746868275:BvBvVGFHLm7Dx-6oRFW80mb5cqUzTg0Xu2HfUNzf1q4/93d893299ec3b4f3/MND3dQXB_MK5MOpumVA7oBh6tLTozsmlqbars490GH8-1746871072-1.2.1.1-oweJ3Uvi3mCFUOSjNtRYN.UdDedz5dEtLj5vigYRXy8F1kXXlty9UBpGedakG_4I | 188.114.97.1 | 200 OK | 16 kB |
URL POST advant-connection.life/cdn-cgi/challenge-platform/h/b/flow/ov1/129604671:1746868275:BvBvVGFHLm7Dx-6oRFW80mb5cqUzTg0Xu2HfUNzf1q4/93d893299ec3b4f3/MND3dQXB_MK5MOpumVA7oBh6tLTozsmlqbars490GH8-1746871072-1.2.1.1-oweJ3Uvi3mCFUOSjNtRYN.UdDedz5dEtLj5vigYRXy8F1kXXlty9UBpGedakG_4I IP188.114.97.1:443
Requested byhttps://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= CertificateIssuerGoogle Trust Services Subjectadvant-connection.life Fingerprint78:9F:5F:70:D1:DE:81:0B:E3:74:41:4F:07:5C:80:DF:21:B0:57:E3 ValidityMon, 28 Apr 2025 18:02:58 GMT - Sun, 27 Jul 2025 19:01:25 GMT
File typeASCII text, with very long lines (16476), with no line terminators Hash8df6c71515b16d205baab9a41c4c7c0b de2e6e0c44c6e0eddcb65936e901a61bd5c78821 acbd7716515317636447f8186bf566e39c67026d596e24a45422198bcf495b15
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/129604671:1746868275:BvBvVGFHLm7Dx-6oRFW80mb5cqUzTg0Xu2HfUNzf1q4/93d893299ec3b4f3/MND3dQXB_MK5MOpumVA7oBh6tLTozsmlqbars490GH8-1746871072-1.2.1.1-oweJ3Uvi3mCFUOSjNtRYN.UdDedz5dEtLj5vigYRXy8F1kXXlty9UBpGedakG_4I HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4=
cf-chl: MND3dQXB_MK5MOpumVA7oBh6tLTozsmlqbars490GH8-1746871072-1.2.1.1-oweJ3Uvi3mCFUOSjNtRYN.UdDedz5dEtLj5vigYRXy8F1kXXlty9UBpGedakG_4I
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 2133
Origin: https://advant-connection.life
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 May 2025 09:57:52 GMT
content-type: text/plain; charset=UTF-8
cf-ray: 93d8932c2b34b4f3-OSL
server: cloudflare
content-encoding: br
cf-chl-gen: bbRxl+TcMk1Hq11y2zgxV9pRtMXYaVOC4zUJEp4eCiM=$5vmyBfuI9J/1D6iBGNONRg==
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xJQNu5u52MNRQzkJtPtChWNvM%2F2YBBJxhULHAuQgULIS4tcBLb521NSowsuJT8SO3BVSsEwIWt%2Fg6zBmMia8jNTbOpl0AyZxMmdbh2V%2FjJNG4%2Bui%2BNHA9qnnygo8zmR8gxUOQ%2FRVMi0j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2228&min_rtt=1107&rtt_var=1082&sent=71&recv=24&lost=0&retrans=0&sent_bytes=62713&recv_bytes=5877&delivery_rate=2730138&cwnd=48000&unsent_bytes=0&cid=67feed666b0d7a76&ts=664&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/856982538:1746868215:uchhevNfY2SlSKIy59nkafqXqokW4iyHZxrUdFCC8Rg/93d8932d7da556bd/pbZWp3WsVnlmh8ugBPBBVKhuE3ms_vriBsO6fnaK_to-1746871072-1.2.1.1-BulQFRhvdFs7LgImf94.V0KOtkiNOsCnI8pRcBjMZFkPpZQtQk3V31kY.dalBbOp | 104.18.94.41 | 200 OK | 227 kB |
URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/856982538:1746868215:uchhevNfY2SlSKIy59nkafqXqokW4iyHZxrUdFCC8Rg/93d8932d7da556bd/pbZWp3WsVnlmh8ugBPBBVKhuE3ms_vriBsO6fnaK_to-1746871072-1.2.1.1-BulQFRhvdFs7LgImf94.V0KOtkiNOsCnI8pRcBjMZFkPpZQtQk3V31kY.dalBbOp IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size227 kB (227420 bytes) Hash3a7c5f39fad0f7c7b33a6da68807839f 04dc15603975c364c3955d39c917a32ede7ac266 ad9c648ea5f76019b5a90c4549bc0c782024542626d33acb0ff3c5cf086d6848
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/856982538:1746868215:uchhevNfY2SlSKIy59nkafqXqokW4iyHZxrUdFCC8Rg/93d8932d7da556bd/pbZWp3WsVnlmh8ugBPBBVKhuE3ms_vriBsO6fnaK_to-1746871072-1.2.1.1-BulQFRhvdFs7LgImf94.V0KOtkiNOsCnI8pRcBjMZFkPpZQtQk3V31kY.dalBbOp HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
cf-chl: pbZWp3WsVnlmh8ugBPBBVKhuE3ms_vriBsO6fnaK_to-1746871072-1.2.1.1-BulQFRhvdFs7LgImf94.V0KOtkiNOsCnI8pRcBjMZFkPpZQtQk3V31kY.dalBbOp
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 4269
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 May 2025 09:57:53 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 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$z4lMGJCv1ZN6UjxfX+/buQ==
priority: u=3,i=?0
server: cloudflare
cf-ray: 93d89330fbc056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/93d8932d7da556bd/1746871073449/240c7f0bbe2ebd5e19b21d9ab6c626f9ee5a12e9260af323fb4dfa645c728341/nIAonyvv8GjuHa_ | 104.18.94.41 | 401 Unauthorized | 1 B |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/93d8932d7da556bd/1746871073449/240c7f0bbe2ebd5e19b21d9ab6c626f9ee5a12e9260af323fb4dfa645c728341/nIAonyvv8GjuHa_ IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/93d8932d7da556bd/1746871073449/240c7f0bbe2ebd5e19b21d9ab6c626f9ee5a12e9260af323fb4dfa645c728341/nIAonyvv8GjuHa_ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 401 Unauthorized
date: Sat, 10 May 2025 09:57:54 GMT
content-type: text/plain; charset=utf-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gJAx_C74uvV4Zsh2atsYm-e5aEukmCvMj-036ZFxyg0EAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tICQMfwu-Lr1eGbIdmrbGJvnuWhLpJgrzI_tN-mRccoNBABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tICQMfwu-Lr1eGbIdmrbGJvnuWhLpJgrzI_tN-mRccoNBABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1r6z50Qwapjvi7gKQBPiehOkJb40cvj8RgN_zo7Ag1Zt0ItIZ08z6yBoyxcQd_a3O1eJagQvs0q2WZqQcXhBy3zBsvQBUQF8QxmVXDj3rgtzSqQSahQmiLHDl8Bcv0QZEdy4zOIIyDuI5UyRXhX7XZGrCVD8CZ90xBA5BKM69472-2BHpBla9Lbeh9YUrkZ5O98MUI_u6VEapusnXAf_lwrQA8tyF-9S11SxHG6uu9ywb9GCpVeaxdoonr9TgwPU5JgXSFuW_Ow1I_O2alIJcGt4Lb8SBKG-hKMrnxnwzFPje27Rczkpqu7PtgYXJvH_uDRKG-nqq_rghxAOH_kchwIDAQAB", max-age=20
priority: u=4,i=?0
server: cloudflare
cf-ray: 93d89338684156bd-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= | 188.114.97.1 | 403 Forbidden | 7.4 kB |
URL User Request GET advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= IP188.114.97.1:443
CertificateIssuerGoogle Trust Services Subjectadvant-connection.life Fingerprint78:9F:5F:70:D1:DE:81:0B:E3:74:41:4F:07:5C:80:DF:21:B0:57:E3 ValidityMon, 28 Apr 2025 18:02:58 GMT - Sun, 27 Jul 2025 19:01:25 GMT
File typeHTML document, ASCII text, with very long lines (7398), with no line terminators Hash1cb0fb555181b1a5e56f98754cac3e2c eb5ebdc8cc2e435a48c93feb1ba01f0b3753bd32 f0ff2264b9a86f72d19f8564319befb9ef208ce391b6d23ebea147d4d96bf83b
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to Suspicious *.life Domain |
GET /l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sat, 10 May 2025 09:57:52 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
cf-ray: 93d893299ec3b4f3-OSL
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o8l18F9ZPZ%2FGu9usjzXuJ7tLniTmK8dCJU3O2uDbHBvK5x%2FM62FjTd14wcTudNyT5%2BIwAZLm2Z%2FYuxl3IXnNxfZ%2FirQUpv7H08z9CITZnKers622%2FuTZOdgqkbE0U7blwP5g2BUvBg09"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="93d893299ec3b4f3", cfL4;desc="?proto=QUIC&rtt=2894&min_rtt=1430&rtt_var=1582&sent=13&recv=9&lost=0&retrans=0&sent_bytes=4179&recv_bytes=1342&delivery_rate=415318&cwnd=12000&unsent_bytes=0&cid=67feed666b0d7a76&ts=217&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ | 104.18.94.41 | 200 OK | 28 kB |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ IP104.18.94.41:443
Requested byhttps://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4= CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File typeHTML document, ASCII text, with very long lines (22244) Hash2b8b898160721582a4c8d490f60693b6 7c4fa67d340aefd20ae8c0c22e67e6752992a1c4 3a8b866b580904c6a36a08bc9f0c9afacd205f80f672227a1fa11d0dc95b92ee
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 May 2025 09:57:52 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: default-src 'none'; script-src 'nonce-6uLHJsjY9sTFnNvL' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 93d8932d7da556bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1 | 104.18.94.41 | 200 OK | 61 B |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1 IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 May 2025 09:57:52 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
priority: u=4,i=?0
server: cloudflare
cf-ray: 93d8932e2ef056bd-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=93d8932d7da556bd&lang=auto | 104.18.94.41 | 200 OK | 114 kB |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=93d8932d7da556bd&lang=auto IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size114 kB (114244 bytes) Hasha09a3d6b6b4f016362a52f60500ad868 75fbab289a8ea282c3891fa87280d694246b0272 f8c619f9b178d89612d1463faf07d01a0e51e13711143513e894240bba6f6f58
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=93d8932d7da556bd&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 May 2025 09:57:53 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=3,i=?0
server: cloudflare
cf-ray: 93d8932e5f3256bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/93d8932d7da556bd/1746871073458/M1tlzRbiNwsP925 | 104.18.94.41 | 200 OK | 61 B |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/93d8932d7da556bd/1746871073458/M1tlzRbiNwsP925 IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File typePNG image data, 70 x 25, 8-bit/color RGB, non-interlaced Hashf0cc61caefe54ef6d8a752d2c965c226 32c17ae8a66d770912cd9eac90dbeb221ae10854 f8e4cdc0cb3642425d4ae81ea6c00e86a3362c51d5f4f77e535d5769ecbffe39
GET /cdn-cgi/challenge-platform/h/b/d/93d8932d7da556bd/1746871073458/M1tlzRbiNwsP925 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/zhzor/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 May 2025 09:57:57 GMT
content-type: image/png
content-length: 61
priority: u=4,i=?0
server: cloudflare
cf-ray: 93d8934948a956bd-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| advant-connection.life/l/downloads/?h=aHR0cHM6Ly9hZHZhbnQtY29ubmVjdGlvbi5saWZlLz9zPTExMiZ0MT01ODQmdDI9bW90aXZlK2IxK2t1cnNidWNoK3BkZiZ0Mz0xMDFjOTk0NXU0Y3QmdDQ9 | 188.114.97.1 | 200 OK | 184 kB |
URL User Request GET advant-connection.life/l/downloads/?h=aHR0cHM6Ly9hZHZhbnQtY29ubmVjdGlvbi5saWZlLz9zPTExMiZ0MT01ODQmdDI9bW90aXZlK2IxK2t1cnNidWNoK3BkZiZ0Mz0xMDFjOTk0NXU0Y3QmdDQ9 IP188.114.97.1:443
CertificateIssuerGoogle Trust Services Subjectadvant-connection.life Fingerprint78:9F:5F:70:D1:DE:81:0B:E3:74:41:4F:07:5C:80:DF:21:B0:57:E3 ValidityMon, 28 Apr 2025 18:02:58 GMT - Sun, 27 Jul 2025 19:01:25 GMT
File typeHTML document, ASCII text, with very long lines (53667), with CRLF line terminators Size184 kB (184014 bytes) Hash538432ab103bbd94971ef86a79376fa4 77f4a96b5a744cde2ad8deace67bd4d2b371e8f9 3e8882be6ca61e10315d8330310909b8574910afbaeca3757002baff0d8a896d
GET /l/downloads/?h=aHR0cHM6Ly9hZHZhbnQtY29ubmVjdGlvbi5saWZlLz9zPTExMiZ0MT01ODQmdDI9bW90aXZlK2IxK2t1cnNidWNoK3BkZiZ0Mz0xMDFjOTk0NXU0Y3QmdDQ9 HTTP/1.1
Host: advant-connection.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://advant-connection.life/l/g.php?p=downloads&s=112&t1=584&t2=motive+b1+kursbuch+pdf&t3=101c9945u4ct&t4=&__cf_chl_tk=G58ExppD1LtUtfTCkyu7A6kTbDkuGdpyA4BaOXc4Zck-1746871072-1.0.1.1-PyTRzkUgkg9fHG2IZ9kGWZlgaJNkDz2ixO7nSCHHdT0
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=lGgVJG3vTNukvu2h.ZnjvbsvRNICTIoiVkUj0OP0yvg-1746871078-1.2.1.1-HG_SNWlocctpG5prVopd4JI3dWeOT42WJXvS06h8E58.ChzQrmQjaQDnvCPnKb7IHgkZuPw33WcqHATTnGLNSxXq8M1iq.PD0G2dgnd5gqiEah6SwTmbZHFN5WyrYBgw6GR_vleNE7KrIVgjbNgoVbmxaBioe3QfRPnNbHgX2tETX3xujbVHGGRAWOgk_GBLH0YFtqdKBcd9Bbqi5cEGztEIflEfl8GbeEc0s33Mn7F6KwtH_mvOAqN400D9ngkftbp5m_oe7iDaOLnnZX7dGnFTVZiRr5c1jB4lbUfSdlm2wIq5nQPubKEuiF8Qm55yzMux8TZJkEVBIdqFvWsta5NlrfmLe8pZ7FVbTDiwwi_TU0vu3DHFwBHMJrkztY4Z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 May 2025 09:57:58 GMT
content-type: text/html; charset=UTF-8
cf-ray: 93d893519a15b4f3-OSL
server: cloudflare
content-encoding: br
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M8UniMipeqvwP5SRil6QEBRdZTq77L6Wb%2BSqfE%2B7X8NzBtN6VQdmgsIqKpBdgDv9fUI9ZYOACQP0NPyjrVHn3N9k41l8qqtINPM%2F%2FibJyqKLwiVvDmW5j1BmmJ4KooaZCoIJsAMXsNM%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2326&min_rtt=1107&rtt_var=940&sent=94&recv=36&lost=0&retrans=0&sent_bytes=81940&recv_bytes=17344&delivery_rate=7452&cwnd=48000&unsent_bytes=0&cid=67feed666b0d7a76&ts=6622&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
0.0.0.0