Report - globalpharmacyoranization.com/sisi/auth/NxEdG/ZGViYmllLmhhdG1ha2VyQGFuYS5vcmc=

Report Overview

Visitedpublic

2023-11-06 21:58:03

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
aadcdn.msauth.net	1421	2018-10-25	2018-11-19 11:50:03	2023-11-06 05:46:14	500 B	1.6 kB	13.107.213.53
adfs.heart.org	unknown	1995-01-12	2016-10-10 20:42:57	2023-11-06 12:12:58	446 B	6.9 kB	69.152.183.140
httpbin.org	352975	2011-06-12	2013-07-23 00:01:27	2023-11-06 12:13:01	480 B	283 B	52.4.162.191
logincdn.msauth.net	2330	2018-10-25	2019-04-23 03:13:28	2023-11-06 11:44:11	510 B	1.1 kB	192.229.221.185
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-11-06 08:53:07	422 B	90 kB	151.101.194.137
globalpharmacyoranization.com	unknown	2021-02-11	2021-02-14 06:10:09	2023-11-06 02:31:50	534 B	269 B	162.241.124.47
tablearicl.minterneug.ru	unknown	2023-10-18	2023-10-24 18:37:00	2023-11-06 02:31:47	26 kB	742 kB	104.21.54.122
aadcdn.msftauth.net	1455	2018-10-25	2018-11-19 11:50:32	2023-11-06 05:32:39	1.5 kB	7.8 kB	152.199.23.37
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20 07:02:03	2023-11-06 13:10:14	2.2 kB	122 kB	104.17.2.184
cdn.socket.io	62068	2010-04-18	2015-03-23 23:14:03	2023-11-06 10:56:27	423 B	46 kB	143.204.55.115

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	From	Size	First Seen	Last Seen
	tablearicl.minterneug.ru/myscr102026.js	ScriptElement	25 kB	2023-10-24	2023-11-17
URL tablearicl.minterneug.ru/myscr102026.js IP / ASN 104.21.54.122 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-24 Last Seen 2023-11-17 Times Seen 258 Size 25 kB (24682 bytes) MD5 59cc96cce270764f0c41c0c6e5fd7571 SHA1 5822dbb6687925ae6ba7a4d89c22e9fb0380a2a7 SHA256 80895e6b224927dcdef56b435854c06e3d3fbf18f17c6991734707ddee3d218a Format Code Loading...

	code.jquery.com/jquery-3.6.0.min.js	ScriptElement	90 kB	2023-03-07	2025-08-03
URL code.jquery.com/jquery-3.6.0.min.js IP / ASN 151.101.194.137 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-03 Times Seen 264173 Size 90 kB (89501 bytes) MD5 8fb8fee4fcc3cc86ff6c724154c49c42 SHA1 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 SHA256 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Format Code Loading...

	cdn.socket.io/4.6.0/socket.io.min.js	ScriptElement	46 kB	2023-04-05	2025-08-02
URL cdn.socket.io/4.6.0/socket.io.min.js IP / ASN 143.204.55.115 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-05 Last Seen 2025-08-02 Times Seen 38579 Size 46 kB (45806 bytes) MD5 80f5b8c6a9eeac15de93e5a112036a06 SHA1 f7174635137d37581b11937fc90e9cb325077bce SHA256 0401de33701f1cad16ecf952899d23990b6437d0a5b7335524edf6bdfb932542 Format Code Loading...

	unknown	Function	37 B	2023-04-11	2025-08-03
URL IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-03 Times Seen 322913 Size 37 B (37 bytes) MD5 29d0c84b9d1d8da446a6062c6a840ad9 SHA1 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 SHA256 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Format Code Loading...

	tablearicl.minterneug.ru/web1/assets/js/pages.min.js?cb=1699307866382	ScriptElement	92 kB	2023-11-01	2024-08-20
URL tablearicl.minterneug.ru/web1/assets/js/pages.min.js?cb=1699307866382 IP / ASN 104.21.54.122 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-11-01 Last Seen 2024-08-20 Times Seen 6471 Size 92 kB (92383 bytes) MD5 16d4296fd1c5e8424d0d1ac72bd24267 SHA1 2cecad8640c7bbd71f5c4a1e63b0744ccea4919a SHA256 c51aa4190d40abba316825083c097b1d27b8299ba86082af950e17f2d372b7f5 Format Code Loading...

	unknown	Function	79 B	2023-04-11	2025-08-03
URL IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-03 Times Seen 122265 Size 79 B (79 bytes) MD5 aa049e2749b8531cb8f233c2f64fc2b2 SHA1 b611a5a62c1813ae5b4763378b3a4a565556530a SHA256 e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Format Code Loading...

	tablearicl.minterneug.ru/web1/assets/js/pages-head-top-web.min.js?cb=1699307865404	ScriptElement	2.4 kB	2023-10-23	2024-08-21
URL tablearicl.minterneug.ru/web1/assets/js/pages-head-top-web.min.js?cb=1699307865404 IP / ASN 104.21.54.122 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-23 Last Seen 2024-08-21 Times Seen 3776 Size 2.4 kB (2394 bytes) MD5 5587d13a8f284b6b792c72a3d569c7ae SHA1 2ad2b05b75fa15e7f15fdea3ed4771b166f5f41e SHA256 de59ea88654c99cb8b905042b552d9a960be17031538c7a2e65950b8f99089cd Format Code Loading...

	challenges.cloudflare.com/turnstile/v0/api.js?render=explicit	ScriptElement	34 kB	2023-10-31	2023-11-07
URL challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP / ASN 104.17.2.184 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-31 Last Seen 2023-11-07 Times Seen 4632 Size 34 kB (34254 bytes) MD5 c0390df00fecb63b161780e815a6610c SHA1 e3a9b96c3d11004287c2bd6d1af16aff1c34f74e SHA256 47651e05cbf8b23aee60b901bb914f56609eb1848970c1cc7a2b2fe9fd034d3b Format Code Loading...

	unknown	ScriptElement	376 B	2023-10-24	2024-08-21
URL IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-24 Last Seen 2024-08-21 Times Seen 258 Size 376 B (376 bytes) MD5 b52cb6c3c85eb62134a259b86c43edc5 SHA1 6ee407f7dd1447b49e5f222d5e253fc261972adc SHA256 736f4798943156bd9908ce2537d8e9dd8a3e56d34a62cd204604d8c5519e8dfa Format Code Loading...

	tablearicl.minterneug.ru/web1/assets/js/pages-head-web.min.js?cb=1699307866382	ScriptElement	14 kB	2023-10-22	2023-12-13
URL tablearicl.minterneug.ru/web1/assets/js/pages-head-web.min.js?cb=1699307866382 IP / ASN 104.21.54.122 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-22 Last Seen 2023-12-13 Times Seen 13891 Size 14 kB (13626 bytes) MD5 701637cf7b3c9588cdf84dbb449ba48e SHA1 a3fd0695db073372cbb52345cb18cd4f8186edeb SHA256 fe2ea5cd48f2ca8001c5283ee74d2b41305644374b0c1e7b90b9cb6b5bb73a94 Format Code Loading...

	HASH	FROM	Size	First Seen	Last Seen
	e6ed1c3a495a892e1d450c6a59d77acc	DocumentWrite	4.6 kB	2023-10-24	2024-08-21
Introduced by DocumentWrite First Seen 2023-10-24 Last Seen 2024-08-21 Times Seen 258 Size 4.6 kB (4639 bytes) MD5 e6ed1c3a495a892e1d450c6a59d77acc SHA1 9f84a98911a4645a7c6cebab67ae50627ed10700 SHA256 d42bb8f27341b735fddad6a2fbc5d301d12965690b5998095fe8c6a9353e28d0 Format Code Loading...

	3c4d8d4ea0f1c8e2233933e8e7d47df6	DocumentWrite	3.6 kB	2023-10-31	2024-08-20
Introduced by DocumentWrite First Seen 2023-10-31 Last Seen 2024-08-20 Times Seen 11222 Size 3.6 kB (3575 bytes) MD5 3c4d8d4ea0f1c8e2233933e8e7d47df6 SHA1 215c647d3ec59b648f6820c8c430ba48c2bcafc6 SHA256 7e2cf29eff03854a3888ec69cf7c94781f12b82bffd8e38b16e6c80b43799fca Format Code Loading...

HTTP Transactions (45)

URL IP Response Size

globalpharmacyoranization.com/sisi/auth/NxEdG/ZGViYmllLmhhdG1ha2VyQGFuYS5vcmc=

162.241.124.47

0 B

URL

globalpharmacyoranization.com/sisi/auth/NxEdG/ZGViYmllLmhhdG1ha2VyQGFuYS5vcmc=

IP / ASN

162.241.124.47

#46606 UNIFIEDLAYER-AS-1

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5619497

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /sisi/auth/NxEdG/ZGViYmllLmhhdG1ha2VyQGFuYS5vcmc= HTTP/1.1
Host: globalpharmacyoranization.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 Nov 2023 21:57:43 GMT
Server: Apache
refresh: 0;url=https://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

GET tablearicl.minterneug.ru/myscr102026.js

104.21.54.122

200 OK

35 kB

URL

tablearicl.minterneug.ru/myscr102026.js

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeASCII text, with very long lines (24682), with no line terminators

First Seen2023-10-24

Last Seen2023-11-17

Times Seen258

Size35 kB (34690 bytes)

MD559cc96cce270764f0c41c0c6e5fd7571

SHA15822dbb6687925ae6ba7a4d89c22e9fb0380a2a7

SHA25680895e6b224927dcdef56b435854c06e3d3fbf18f17c6991734707ddee3d218a

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /myscr102026.js HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:45 GMT
content-type: application/javascript
last-modified: Mon, 23 Oct 2023 20:57:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 7185
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XPcdO4y4NqBbhAyof28nXwGENJ8addF0MQl63iHZqq1lgepftJbJFVwbT9fWQeidS6cPvArGCxt%2FJ1hO5%2FbP4%2FXStz0b11Z4TI4mMW8sWvwBJCqcGxnv436so4UAfz8w%2FHlPbpbG90iWydc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8220980dc8c30b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-bold.woff2

104.21.54.122

200 OK

28 kB

URL

tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-bold.woff2

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 28000, version 1.66\012- data

First Seen2023-04-09

Last Seen2025-08-03

Times Seen77249

Size28 kB (28000 bytes)

MD5a4bca6c95fed0d0c5cc46cf07710dcec

SHA173b56e33b82b42921db8702a33efd0f2b2ec9794

SHA2565a51d246af54d903f67f07f2bd820ce77736f8d08c5f1602db07469d96dbf77f

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/fonts/GDSherpa-bold.woff2 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tablearicl.minterneug.ru/xeg877p87u
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:46 GMT
content-type: font/woff2
content-length: 28000
last-modified: Fri, 25 Aug 2023 04:00:16 GMT
etag: "6d60-603b761e42cdb"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=znYW9zsv0FbkAFHGxY%2FzuKGrUCCGbdtVsUCEvIaTgXFdhLhW%2BD1ofjG%2FQwvgao7qA%2BWCLervybaWYdlXP6D7Xbe8cwikOBY8xnnR4nrdvd1JGVpYMtNJksxAWHnKIZfPON09Uko0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7184
accept-ranges: bytes
server: cloudflare
cf-ray: 822098153d320b41-OSL

GET tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-bold.woff

104.21.54.122

200 OK

36 kB

URL

tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-bold.woff

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeWeb Open Font Format, TrueType, length 35970, version 1.0\012- data

First Seen2023-05-09

Last Seen2025-08-03

Times Seen74555

Size36 kB (35970 bytes)

MD5496b7bbde91c7dc7cf9bbabbb3921da8

SHA12bd3c406a715ab52dad84c803c55bf4a6e66a924

SHA256ae40a04f95df12b0c364f26ab691dc0c391d394a28bcdb4aeacfaca325d0a798

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/fonts/GDSherpa-bold.woff HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tablearicl.minterneug.ru/xeg877p87u
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:46 GMT
content-type: font/woff
content-length: 35970
last-modified: Fri, 25 Aug 2023 04:00:22 GMT
etag: "8c82-603b7623b006b"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mSqKJHLgHOOn5k6Z1%2BSFjJWmsTRcJfA8cg2H0Yic7nb7JUqu%2Fd1vTMyehYBzDEadgxefZ%2B0eU4jVV3I31xaY3cR0uYDGb%2F0otLImVUzHyHClMOTwnJjjgS%2B40YmoqYDtP0O%2BwY4L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7184
accept-ranges: bytes
server: cloudflare
cf-ray: 822098153d330b41-OSL

GET tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-regular.woff2

104.21.54.122

200 OK

29 kB

URL

tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-regular.woff2

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 28584, version 1.66\012- data

First Seen2023-04-09

Last Seen2025-08-03

Times Seen77786

Size29 kB (28584 bytes)

MD517081510f3a6f2f619ec8c6f244523c7

SHA187f34b2a1532c50f2a424c345d03fe028db35635

SHA2562c7292014e2ef00374aeb63691d9f23159a010455784ee0b274ba7db2bcca956

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/fonts/GDSherpa-regular.woff2 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tablearicl.minterneug.ru/xeg877p87u
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:46 GMT
content-type: font/woff2
content-length: 28584
last-modified: Fri, 25 Aug 2023 04:00:25 GMT
etag: "6fa8-603b76269b664"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
age: 7184
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dT1p0biGEggjuUh6xXs7dFw%2FWzBxik5zJrE2qUgwE4IU0fk35iAf9Kb9i4a4R6NyxExD7w23MxZDwWpz2ihv5hLQ%2FxShgvpLYuAnpfj293vETw1P8Ph5bFL%2BVvaibwAMg645AMgC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 822098153d350b41-OSL

GET tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-regular.woff

104.21.54.122

200 OK

37 kB

URL

tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-regular.woff

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeWeb Open Font Format, TrueType, length 36696, version 1.0\012- data

First Seen2023-05-09

Last Seen2025-08-03

Times Seen74536

Size37 kB (36696 bytes)

MD5a69e9ab8afdd7486ec0749c551051ff2

SHA1c34e6aa327b536fb48d1fe03577a47c7ee2231b8

SHA256fd78a1913db912221b8ead1e62fad47d1ff0a9fa6cd88d3b128a721ad91d2faf

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/fonts/GDSherpa-regular.woff HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tablearicl.minterneug.ru/xeg877p87u
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:46 GMT
content-type: font/woff
content-length: 36696
last-modified: Fri, 25 Aug 2023 04:00:28 GMT
etag: "8f58-603b762947b93"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bfVa%2FYNc84OSOpSrk7eEE7Q0QK6ndki3sux4vuik4NXMKfygNHDhkWhcV6rs8ER9ic9sXS2wS0yObAA4NQb2zAuGmiunMpvVhhw1fJLYFUdPmbdC3crRxt3FMuqmGbLzEQ0S%2FF7j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7184
accept-ranges: bytes
server: cloudflare
cf-ray: 822098153d3d0b41-OSL

GET tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-vf.woff2

104.21.54.122

200 OK

44 kB

URL

tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-vf.woff2

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 43596, version 1.0\012- data

First Seen2023-04-18

Last Seen2025-08-03

Times Seen76036

Size44 kB (43596 bytes)

MD52a05e9e5572abc320b2b7ea38a70dcc1

SHA1d5fa2a856d5632c2469e42436159375117ef3c35

SHA2563efcb941aaddaf4aea08dab3fb97d3e904aa1b83264e64b4d5bda53bc7c798ec

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/fonts/GDSherpa-vf.woff2 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tablearicl.minterneug.ru/xeg877p87u
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:46 GMT
content-type: font/woff2
content-length: 43596
last-modified: Fri, 25 Aug 2023 04:00:36 GMT
etag: "aa4c-603b7631474f7"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9vTPHwljZreZ4v6if8YpZbccqiorqUb29xJNymOWpU%2FCYL%2FQjaOJLw%2BoTkYPW0gxvIXN3MLS51wnkhMBgqXB7ZZzRFBQIn3k7mbi2%2BicZWhotETq%2Ba9xXfV8H8HbPOwP774R1MLK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7184
accept-ranges: bytes
server: cloudflare
cf-ray: 822098153d3e0b41-OSL

GET tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-vf2.woff2

104.21.54.122

200 OK

93 kB

URL

tablearicl.minterneug.ru/web1/assets/fonts/GDSherpa-vf2.woff2

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 93276, version 1.0\012- data

First Seen2023-05-01

Last Seen2025-08-03

Times Seen75943

Size93 kB (93276 bytes)

MD5bcd7983ea5aa57c55f6758b4977983cb

SHA1ef3a009e205229e07fb0ec8569e669b11c378ef1

SHA2566528a0bf9a836a53dfd8536e1786ba6831c9d1faa74967126fddf5b2081b858c

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/fonts/GDSherpa-vf2.woff2 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tablearicl.minterneug.ru/xeg877p87u
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:46 GMT
content-type: font/woff2
content-length: 93276
last-modified: Fri, 25 Aug 2023 04:00:32 GMT
etag: "16c5c-603b762dd727e"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3nzeYPYoM5K%2F0H%2BJKELWoYrpC%2FCFvPRjcdMlNNaB13oL%2B08wM2%2FfKcXOBCppBZj9O%2BI6FvynjPHyQb0L%2Bt%2F%2B08Pn1%2FnxdSqFqjTZ0r6NT2xa6O61WalEaFmpXshUyeeysF2YXoVs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7184
accept-ranges: bytes
server: cloudflare
cf-ray: 822098153d3f0b41-OSL

GET tablearicl.minterneug.ru/web1/assets/css/pages-okta.css?cb=1699307866382

104.21.54.122

200 OK

0 B

URL

tablearicl.minterneug.ru/web1/assets/css/pages-okta.css?cb=1699307866382

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5619497

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/css/pages-okta.css?cb=1699307866382 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:47 GMT
content-type: text/css
content-length: 0
last-modified: Thu, 24 Aug 2023 12:07:13 GMT
etag: "0-603aa11867866"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dSGadcxIoMR5N%2BhkiHYeq73Gh6SzXaAmneNK0IawUwowRDMaH0E1lLiN74kOpj6y8w%2BNwoarw4L7zJ3L1Kun8Hpdhk21aB6ZZmdftZqPDB6ek4pk9fci50ErGODVymfiHsXFq%2BT4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 822098152d2f0b41-OSL

GET tablearicl.minterneug.ru/web1/assets/back.png

104.21.54.122

200 OK

231 B

URL

tablearicl.minterneug.ru/web1/assets/back.png

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typePNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data

First Seen2023-07-01

Last Seen2025-08-02

Times Seen19264

Size231 B (231 bytes)

MD5547988bac5584b4608466d761e16f370

SHA1c11bb71049702528402a31027f200184910a7e23

SHA25670e32b2db3f079bb0295a85a0db15ed9e5926294dd947938d6cfa595f5ab18b4

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/back.png HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:54 GMT
content-type: image/png
content-length: 231
last-modified: Sun, 19 Mar 2023 15:20:17 GMT
etag: "e7-5f7425905ae40"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ljtuthMzrEhCHCCeOIjDs2P1bTesORuEnjzo%2FmHDyxPx6586onRhV9986XKJnouvNnRNzovAwYxBXSkCYPlFl0%2FimtVCRqLBtqHxtXM6Fus0x%2B1FH4%2BxnuFGizlUAQPYO6emShlJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7186
accept-ranges: bytes
server: cloudflare
cf-ray: 822098499c060b41-OSL

GET tablearicl.minterneug.ru/web1/assets/key.png

104.21.54.122

200 OK

727 B

URL

tablearicl.minterneug.ru/web1/assets/key.png

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data

First Seen2023-07-01

Last Seen2025-08-02

Times Seen19369

Size727 B (727 bytes)

MD5839cb0f55c3d2d5c2f740bda95cb2878

SHA193f6fa3a2da8b7184d4b5c5f2065872793370c2e

SHA25640ecb8832f6a9a8aaa0cc6e1287e867a4fca38433d091d86c6cab1f28fbab652

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/key.png HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:54 GMT
content-type: image/png
content-length: 727
last-modified: Sun, 19 Mar 2023 15:20:17 GMT
etag: "2d7-5f7425905ae40"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
age: 7185
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mTwMJhI3S8YCsROf1cGaZh7YL%2FzmdkVc5WmVgIqpa8TcDGQBEHYyB0mubM8P0ZXxCo0x6ONXkgJekq7BiOuhY6HD2DUnJwC7qjkXUmpqQVf8aRoJ6kGmD28fGJdflLOfMgUfIt85"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 822098499c0d0b41-OSL

GET aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg

152.199.23.37

200 OK

190 B

URL

aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg

IP / ASN

152.199.23.37

#15133 EDGECAST

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators

First Seen2023-04-29

Last Seen2025-08-03

Times Seen33881

Size190 B (190 bytes)

MD540eb39126300b56bf66c20ee75b54093

SHA183678d94097257eb474713dec49e8094f49d2e2a

SHA256765709425a5b9209e875dccf2217d3161429d2d48159fc1df7b253b77c1574f4

Certificate Info

IssuerDigiCert Inc

Subjectaadcdn.msftauth.net

Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6

ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

HTTP Headers

GET /shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 13702107
cache-control: public, max-age=31536000
content-md5: rp+/fadJKxLUo+jgFmYTeQ==
content-type: image/svg+xml
date: Mon, 06 Nov 2023 21:57:54 GMT
etag: 0x8DB5C3F4721247A
last-modified: Wed, 24 May 2023 10:11:44 GMT
server: ECAcc (ska/F697)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: cf4cbdca-101e-0042-0c5d-942f4a000000
x-ms-version: 2009-09-19
content-length: 190
X-Firefox-Spdy: h2

GET aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg

152.199.23.37

200 OK

2.4 kB

URL

aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg

IP / ASN

152.199.23.37

#15133 EDGECAST

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4714), with CRLF line terminators

First Seen2023-04-19

Last Seen2025-08-03

Times Seen84948

Size2.4 kB (2407 bytes)

MD5b59c16ca9bf156438a8a96d45e33db64

SHA14e51b7d3477414b220f688adabd76d3ae6472ee3

SHA256a7ee799dd5b6f6dbb70b043b766362a6724e71458f9839306c995f06b218c2f8

Certificate Info

IssuerDigiCert Inc

Subjectaadcdn.msftauth.net

Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6

ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

HTTP Headers

GET /shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 13708571
cache-control: public, max-age=31536000
content-md5: nTculR1Fom7eLci0F6rk+A==
content-type: image/svg+xml
date: Mon, 06 Nov 2023 21:57:54 GMT
etag: 0x8DB5C3F4ADC079A
last-modified: Wed, 24 May 2023 10:11:51 GMT
server: ECAcc (ska/F7B6)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 9d35d246-701e-009b-604e-944da7000000
x-ms-version: 2009-09-19
content-length: 2407
X-Firefox-Spdy: h2

GET tablearicl.minterneug.ru/web1/assets/css/pages-godaddy.css?cb=1699307866382

104.21.54.122

200 OK

13 kB

URL

tablearicl.minterneug.ru/web1/assets/css/pages-godaddy.css?cb=1699307866382

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeASCII text, with very long lines (1437), with CRLF line terminators

First Seen2023-10-11

Last Seen2023-11-29

Times Seen3957

Size13 kB (13168 bytes)

MD55732ce20ba6fd490b9732cfd3cb8ba04

SHA150d032727014bccd0f319138a2424d2e9bb17aeb

SHA2560abd0eb456f4f3d9ac24b04778f49a4405baa2ea161bfb744803aefeda7cac73

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/css/pages-godaddy.css?cb=1699307866382 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:47 GMT
content-type: text/css
last-modified: Mon, 09 Oct 2023 21:28:17 GMT
etag: W/"954d-6074f44c310a2"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t5UPFcM5AwYZGSYr7I93%2Btk4Yk3SePmsZUggR1SurOeNyBNHZhyNpxdi%2B7VgfsOafUH2KPadVB7i8dMRoARVECaKphYn3Ld6Pm11armS981JaYb%2FqKBOgV1P1JWisNT4BVAwf1y3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 822098152d2e0b41-OSL
content-encoding: br

GET tablearicl.minterneug.ru/web1/assets/godaddy-logo.png

104.21.54.122

200 OK

50 kB

URL

tablearicl.minterneug.ru/web1/assets/godaddy-logo.png

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typePNG image data, 2160 x 443, 8-bit/color RGBA, non-interlaced\012- data

First Seen2023-08-31

Last Seen2024-09-19

Times Seen19259

Size50 kB (49602 bytes)

MD5db783743cd246ff4d77f4a3694285989

SHA1b9466716904457641b7831868b47162d8d378d41

SHA2565913b1ec0fc58ab2bec576804b9e9b566a584ea3d21a1bf74a7b40051a447fdc

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/godaddy-logo.png HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:54 GMT
content-type: image/png
content-length: 49602
last-modified: Thu, 24 Aug 2023 13:40:53 GMT
etag: "c1c2-603ab607e0f57"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TcZZHiYFaNj2Ah7G%2BkW%2BRgz95N%2BTubcZgUAxAL8mQ%2F9a7tGKqPktiYUGU4JB1XcG1JciLprivZX%2BqdKyaFgBbDLEN70OlVCYqqeAqyI09O8%2BeQRF6T19HiIrgEi09%2Bc4zWV0J6yl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7185
accept-ranges: bytes
server: cloudflare
cf-ray: 82209849ec2f0b41-OSL

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8220981b2fcf5687/1699307867744/a5e06c1c5bca1fca732b133002eeb0e181545f9fb52741b9fe37e25ec84df816/_q_4vbLQtefiFaT

104.17.2.184

2.8 kB

URL

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8220981b2fcf5687/1699307867744/a5e06c1c5bca1fca732b133002eeb0e181545f9fb52741b9fe37e25ec84df816/_q_4vbLQtefiFaT

IP / ASN

104.17.2.184

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typedata

First Seen2023-11-06

Last Seen2023-11-06

Times Seen1

Size2.8 kB (2820 bytes)

MD5ed08b029f5ee7b604a714cc6ec6da409

SHA1e9962cfb860500f6c0853c6a52fff5e798e29161

SHA256955ad17f1810e4d0816bf00fbccd12ea0cb74e44ed3b7d609e4e2b3e866f1c4c

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/pat/8220981b2fcf5687/1699307867744/a5e06c1c5bca1fca732b133002eeb0e181545f9fb52741b9fe37e25ec84df816/_q_4vbLQtefiFaT HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/sj6n3/0x4AAAAAAAMGFEMQvBchnbzj/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Mon, 06 Nov 2023 21:57:51 GMT
content-type: text/plain; charset=UTF-8
www-authenticate: PrivateToken challenge=AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gpeBsHFvKH8pzKxMwAu6w4YFUX5-1J0G5_jfiXshN-BYAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAt8SUYggKYrs_TQnqvnamFkvzJcCJ4Rsj_CQUNFnlKUe7aqoqFk1VE7Ei5whb6TPAKReGt0fOqNkrp2Sh9I9tszTKGLCPhkgp99mv6RnlnbrvHMK_84lsSpUO9WcxYdNHUphZO7oO3ty0PXWzjX0o8RNiljK-5j30pDOFd3w1Wnc9p_4uBO3_TyR96HGk5Mu306unw2QYjZxTQwuhFFQY9fVq8UE7Emkr8Fmn21nWngZzvnIDDNyJuIE3oeNpdNZPPTIV-vaJZ_vsMRMmm2z0HabOzyJe4RP6upBegtyotBPrDP_xU5rgyUGsRG2SVosqMa2ymF1ybw6kWsT6KQ9r3wIDAQAB, max-age=20, PrivateToken challenge=AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIKXgbBxbyh_KcysTMALusOGBVF-ftSdBuf434l7ITfgWABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAyAcIyqXWj0XAym0z5V844rFA0WOzLVwj0uCwmVj6zC4qOH40oBiGHrMNMBnDyk95jvnBAuHeEs855e7nA4l4DPJ4jUWKZbua8BxGAzjn74A1BV81a52F1zvBPUm-VEJXPAPXQehXphSv51uR7HKtfcM5oaS33TGDSy-6xv0r84xjMuTBvwPgXGehxpi1MCGGE5yWkzKN5Zzllk7m6Nkiv6learV-Uz7tzaoPbdZkBk1bFXxm2q07jWavoBZ-JEuEJyjQ00PSTz2Zjpbct6AlR3eCS9sbmXtb5XxSs7JMsvoa8uojD7a5m2SEJIwaf8xKL6wtxkaPonUfvsLj4JoJZQIDAQAB, max-age=20
server: cloudflare
cf-ray: 822098348f535687-OSL
alt-svc: h3=":443"; ma=86400

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/sj6n3/0x4AAAAAAAMGFEMQvBchnbzj/auto/normal

104.17.2.184

200 OK

47 kB

URL

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/sj6n3/0x4AAAAAAAMGFEMQvBchnbzj/auto/normal

IP / ASN

104.17.2.184

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (40091)

First Seen2023-11-06

Last Seen2023-11-06

Times Seen1

Size47 kB (47190 bytes)

MD5a353bdbdc97ac0db2b4b3b72ebbc7e4b

SHA1f71f8b884ea803799a2b6a77eddb6e130bf7c262

SHA2563227da332ee09e3ae2b834b625d3d1a6da5c66d473f6a3c98b75c5135e32eae8

Certificate Info

IssuerCloudflare, Inc.

Subjectchallenges.cloudflare.com

Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E

ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/sj6n3/0x4AAAAAAAMGFEMQvBchnbzj/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:54 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 822098498afc5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET tablearicl.minterneug.ru/web1/assets/godaddy-microsoftlogo.png

104.21.54.122

200 OK

71 kB

URL

tablearicl.minterneug.ru/web1/assets/godaddy-microsoftlogo.png

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typePNG image data, 2446 x 899, 8-bit/color RGBA, non-interlaced\012- data

First Seen2023-08-31

Last Seen2025-08-02

Times Seen19264

Size71 kB (70712 bytes)

MD5f70ff06d19498d80b130ec78176fd3ff

SHA19d8a3b74c5164ff7ae2c7930b6d7b14707b404fc

SHA256df6dbab5251e56b405e48aaf57d3cd4188f073ffba71131fa6cd26e6742923ae

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/godaddy-microsoftlogo.png HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:55 GMT
content-type: image/png
content-length: 70712
last-modified: Thu, 24 Aug 2023 12:58:17 GMT
etag: "11438-603aac821e121"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=71xxsMuUqt7A97DhvO6ib44gZrtisopC4bveMmOuhn4qNZ3ccFnZFmCMyITSiJMQWZH3HM3rx7z29zmys%2B8biNKzMHgztdioRcySNe0IOBacgaSU%2FI6iv6z%2ByDEk8QmWlhSxjKEX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7186
accept-ranges: bytes
server: cloudflare
cf-ray: 8220984b7cef0b41-OSL

GET tablearicl.minterneug.ru/web1/assets/officelogo.png

104.21.54.122

200 OK

1.4 kB

URL

tablearicl.minterneug.ru/web1/assets/officelogo.png

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typePNG image data, 108 x 24, 8-bit/color RGBA, non-interlaced\012- data

First Seen2023-07-01

Last Seen2025-08-02

Times Seen17679

Size1.4 kB (1400 bytes)

MD5333ee830e5ab72c41dd9126a27b4d878

SHA112d8d66ebb3076f3d6069e133c3212f97c8774e1

SHA2568702292cbc365e9f0488143e2b309b85efe09c61fd2e0a2e21c53735a309313c

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/officelogo.png HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/web1/assets/pages/u5g2wd23kn.css?cb=1699307866382
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:55 GMT
content-type: image/png
content-length: 1400
last-modified: Sun, 19 Mar 2023 15:20:17 GMT
etag: "578-5f7425905ae40"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7O%2BL%2BhGcRAPf9jTDDa4m1umNQlAB4PsHKo4hVeftuSzmFaJanqKNzAD6VxAyXDDqmLpagiJ9NVmSD9N4et%2FOmpI2nxMi%2FnvVXGbETSKwP7vLBsniVT6xeBHib9r3XCIRKuA0SFik"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7186
accept-ranges: bytes
server: cloudflare
cf-ray: 8220984b7cf20b41-OSL

GET aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg

13.107.213.53

200 OK

673 B

URL

aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg

IP / ASN

13.107.213.53

#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators

First Seen2023-04-12

Last Seen2025-08-03

Times Seen84987

Size673 B (673 bytes)

MD5bc3d32a696895f78c19df6c717586a5d

SHA19191cb156a30a3ed79c44c0a16c95159e8ff689d

SHA2560e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68

Certificate Info

IssuerDigiCert Inc

Subjectaadcdn.msauth.net

Fingerprint88:95:0C:FA:9D:33:AA:BF:A4:FD:9D:84:A6:E8:02:06:58:50:AD:8C

ValiditySun, 29 Oct 2023 00:00:00 GMT - Tue, 29 Oct 2024 23:59:59 GMT

HTTP Headers

GET /shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 673
content-type: image/svg+xml
content-encoding: gzip
content-md5: DhdidjYrlCeaRJJRG/y9mA==
last-modified: Wed, 24 May 2023 10:11:46 GMT
etag: 0x8DB5C3F47E260FD
x-cache: TCP_HIT
x-ms-request-id: e0c41049-f01e-006c-6ee4-108148000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0QDpJZQAAAAC70a5LurM2QIbfBNT8CaPHQU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0Y2FJZQAAAADAERPXida5Q5soxyRW8XbXU1ZHMjBFREdFMDUxNgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 06 Nov 2023 21:57:54 GMT
X-Firefox-Spdy: h2

GET adfs.heart.org/adfs/portal/logo/logo.png

69.152.183.140

200 OK

6.4 kB

URL

adfs.heart.org/adfs/portal/logo/logo.png

IP / ASN

69.152.183.140

#7018 ATT-INTERNET4

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typePNG image data, 260 x 32, 8-bit/color RGBA, non-interlaced\012- data

First Seen2023-08-31

Last Seen2024-08-21

Times Seen17474

Size6.4 kB (6428 bytes)

MD5d3f69be16baf7acef2e7f4dd03729866

SHA1e11aa0084b93253a24dd3ed57ddde66d27c84d2b

SHA2563a5eeea11e1041db96b81498ab69c050dd045d9e56c69e19bd98430ba752165f

Certificate Info

IssuerSectigo Limited

Subjectadfs.heart.org

Fingerprint11:D1:74:EB:5A:DF:CB:58:DE:8A:EE:06:70:FD:78:6D:A5:F4:22:58

ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

HTTP Headers

GET /adfs/portal/logo/logo.png HTTP/1.1
Host: adfs.heart.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 6428
Content-Type: image/png
Expires: Wed, 06 Dec 2023 21:57:55 GMT
ETag: 3A5EEEA11E1041DB96B81498AB69C050DD045D9E56C69E19BD98430BA752165F
Server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age = 31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:;
Date: Mon, 06 Nov 2023 21:57:55 GMT

tablearicl.minterneug.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket

104.21.54.122

0 B

URL

tablearicl.minterneug.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5619497

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET //web1socket/socket.io/?type=User&EIO=4&transport=websocket HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://tablearicl.minterneug.ru
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8FQWVJ2V082Z+rQ35udc7Q==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Mon, 06 Nov 2023 21:57:57 GMT
Connection: upgrade
Sec-WebSocket-Accept: +zDL6BmdKJ96DxFYV4/YMGhuERQ=
Upgrade: websocket
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ybDZvvenissGHZdZV9JNB8ZIJLiu0PSXy0d1UIJ25aYyET7brGrOryBY0886HHwOAL3TZctKNHdVgVa8QeVFlrEjnFDGoLwdxEKARVYtgl9r%2B5STXSvoIL2nFpilYk9d2p2ujadsr2KjGc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 822098541da3b527-OSL
alt-svc: h3=":443"; ma=86400

GET httpbin.org/ip

52.4.162.191

200 OK

31 B

URL

httpbin.org/ip

IP / ASN

52.4.162.191

#14618 AMAZON-AES

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeJSON data\012- , ASCII text

First Seen2023-04-19

Last Seen2025-06-23

Times Seen13859

Size31 B (31 bytes)

MD5421fbb31f37428f936586985bd35b7ef

SHA1df617524b5cf0200e58b7ed3ce98c102fb952ca4

SHA256f0c09e029405dd8f7f6574163ea5018413c7e621b7a69e6fb2ee223efdc32ddf

Certificate Info

IssuerAmazon

Subjecthttpbin.org

Fingerprint14:0C:C7:A8:EC:FA:7F:9C:9D:D2:B8:7E:C9:B8:93:3A:A1:11:F6:01

ValidityThu, 21 Sep 2023 00:00:00 GMT - Fri, 18 Oct 2024 23:59:59 GMT

HTTP Headers

GET /ip HTTP/1.1
Host: httpbin.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tablearicl.minterneug.ru
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 06 Nov 2023 21:57:57 GMT
content-type: application/json
content-length: 31
server: gunicorn/19.9.0
access-control-allow-origin: https://tablearicl.minterneug.ru
access-control-allow-credentials: true
X-Firefox-Spdy: h2

GET tablearicl.minterneug.ru/web1/assets/css/pages.min.css?cb=1699307866382

104.21.54.122

200 OK

17 kB

URL

tablearicl.minterneug.ru/web1/assets/css/pages.min.css?cb=1699307866382

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeASCII text, with very long lines (17014), with no line terminators

First Seen2023-11-01

Last Seen2024-08-20

Times Seen25049

Size17 kB (17014 bytes)

MD54d38e2ffc538c11f0dca9cb2ad6ca08a

SHA1400ca5c484a88f9a91a1d1439e5f51a621ad3eaa

SHA2566b14e6f4239ef85c9180a099263a041df2b82bd65a245e72cca365cbd5e88fa8

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/css/pages.min.css?cb=1699307866382 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:47 GMT
content-type: text/css
last-modified: Wed, 01 Nov 2023 13:29:30 GMT
etag: W/"4276-6091742db8c68"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FHIFVmYbfVGsov6FgDoRoCtpDo1dFBPZHEKaao9FnftF7CMWyDZ80%2FU2TErJwkQW1%2BRgGzyyVWa1msO0aiMqQD1oNqjmwgvfs3ikzZPl1NcwKNX65%2Bo5QKIhrw%2FlgvZUfvUC6bpk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 822098152d2d0b41-OSL
content-encoding: br

POST tablearicl.minterneug.ru/web1/info

104.21.54.122

200 OK

36 kB

URL

tablearicl.minterneug.ru/web1/info

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5619497

Size36 kB (36403 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

POST /web1/info HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 27
Origin: https://tablearicl.minterneug.ru
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6ImN5OTEzOXhDb21xa0lSUVlPc2oyR3c9PSIsInZhbHVlIjoiQWR1N0szYjZUSTAzWUQvdmFiWndIY3FjQWpjZTZYQThnZDR6VUFSd0gzc2d3YjBvSjVHem9IeXZMRlFoVStQb3lKMnkya05vT3ZrRUwzd0ZDelVPYVdIblMrbnA4cXFuTjF4NmhsUUVuQWZFbStaazgrM2o1aHlGMDBZdDB6TjUiLCJtYWMiOiIzMzZlZGJkYzljNWU2YTE4MDQxYTVjYTlkOGMwMDAxOTdlNzQ3OTFkZjM3ZmZiYzZmMjI5YTU5ZTc1ZTAyZGI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlNHekdJNW5ZUVZKSTFia3pTVTM2UEE9PSIsInZhbHVlIjoieTBBbG5OaTlxT2laRkdOWDV0ZC9Hcjk2aHlFa0JNTVdwVlV6TVlYenVkcllWODAyVUQyRTErYkhNM0NsVTJkZG4xaDhVVWQ2aERrelg0T3JJZmFESGpVZkhkMVBUVkdKemZUNGx0c1A0Q1poaXJPZUJvblk3WXZMZThBT05ZdUYiLCJtYWMiOiJlMGU3NjgwZTRmODBhMmZhMjZlZjY5YjhlMzU0MjBhYjI3YWI3ZGJmOWI4NDc1NjExMDgyNDliNGI4ZmUyZmMxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:54 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.1.10
cache-control: no-cache, private
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8OONYJLPqXL7bLtWdQuQPpxmInqnEmPvl74g7iTbchq5USxRpC%2BLwO8S4rMB9GAASNMq0aiyvKoVAKr5h1HkWoYGfhGradWZuuvmPqRdaCEGBXBgtW2BcJqG97ZMr9PCJK0QyVtA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; expires=Mon, 06-Nov-2023 23:57:54 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D; expires=Mon, 06-Nov-2023 23:57:54 GMT; Max-Age=7200; path=/; httponly; samesite=lax
server: cloudflare
cf-ray: 82209840efca0b41-OSL
content-encoding: br

GET challenges.cloudflare.com/turnstile/v0/api.js?render=explicit

104.17.2.184

302 Found

34 kB

URL

challenges.cloudflare.com/turnstile/v0/api.js?render=explicit

IP / ASN

104.17.2.184

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5619497

Size34 kB (34254 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerCloudflare, Inc.

Subjectchallenges.cloudflare.com

Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E

ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

HTTP Headers

GET /turnstile/v0/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Mon, 06 Nov 2023 21:57:45 GMT
cache-control: max-age=300, public
location: /turnstile/v0/b/61b90d1d/api.js?render=explicit
vary: accept-encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 8220980e19261c16-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET tablearicl.minterneug.ru/xeg877p87u

104.21.54.122

200 OK

61 B

URL

tablearicl.minterneug.ru/xeg877p87u

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with no line terminators

First Seen2023-10-24

Last Seen2023-11-17

Times Seen251

Size61 B (61 bytes)

MD51db576c692d0cd0c668b03e6a906a4f5

SHA1403e54955ef4f2abe190c057c3cfd1ed03331438

SHA2567a91535c2dee0ac669058c1ff014ef856fa83bcaf82effcdb4705ee6c4895245

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /xeg877p87u HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 06 Nov 2023 21:57:45 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=awJq35RHreRDyqGdkkzVH7sJdy2oV2kmWcK0ibn3Ytfhv3Qb4sL73fdrtw6R9zkFL10MvSmdoeAdlIOXrSHXOqGL76Dky0J84O7Z4%2Fu%2FmQ0%2Blu1S6KCfDhjTJyPt%2F8fcNtXCfrDDXjHu0IQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8220980aaa050b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdn.socket.io/4.6.0/socket.io.min.js

143.204.55.115

200 OK

46 kB

URL

cdn.socket.io/4.6.0/socket.io.min.js

IP / ASN

143.204.55.115

#16509 AMAZON-02

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeASCII text, with very long lines (45667)

First Seen2023-04-05

Last Seen2025-08-02

Times Seen38579

Size46 kB (45806 bytes)

MD580f5b8c6a9eeac15de93e5a112036a06

SHA1f7174635137d37581b11937fc90e9cb325077bce

SHA2560401de33701f1cad16ecf952899d23990b6437d0a5b7335524edf6bdfb932542

Certificate Info

IssuerAmazon

Subjectcdn.socket.io

FingerprintBB:7D:4E:26:70:F6:06:2A:12:E9:92:A8:F1:9F:CD:82:0B:BF:48:ED

ValiditySun, 22 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT

HTTP Headers

GET /4.6.0/socket.io.min.js HTTP/1.1
Host: cdn.socket.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="socket.io.min.js"
content-encoding: gzip
date: Fri, 27 Oct 2023 10:49:06 GMT
etag: W/"80f5b8c6a9eeac15de93e5a112036a06"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: fra1::bqgb5-1698403746025-0e8d119dc2bf
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eo0MgSnt675AH88HsqyRRtDrRqqCAe0MSwSkeoKvCMo4etIBHTvZIw==
age: 1293588
X-Firefox-Spdy: h2

POST tablearicl.minterneug.ru/web1/info

0.0.0.0

0 B

URL

tablearicl.minterneug.ru/web1/info

IP / ASN

0.0.0.0

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5619497

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

POST /web1/info HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 26
Origin: https://tablearicl.minterneug.ru
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

GET challenges.cloudflare.com/turnstile/v0/b/61b90d1d/api.js?render=explicit

104.17.2.184

200 OK

34 kB

URL

challenges.cloudflare.com/turnstile/v0/b/61b90d1d/api.js?render=explicit

IP / ASN

104.17.2.184

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeASCII text, with very long lines (34253)

First Seen2023-10-31

Last Seen2023-11-07

Times Seen4632

Size34 kB (34254 bytes)

MD5c0390df00fecb63b161780e815a6610c

SHA1e3a9b96c3d11004287c2bd6d1af16aff1c34f74e

SHA25647651e05cbf8b23aee60b901bb914f56609eb1848970c1cc7a2b2fe9fd034d3b

Certificate Info

IssuerCloudflare, Inc.

Subjectchallenges.cloudflare.com

Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E

ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

HTTP Headers

GET /turnstile/v0/b/61b90d1d/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tablearicl.minterneug.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 06 Nov 2023 21:57:45 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 8220980e494b1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

POST tablearicl.minterneug.ru/web1/info

104.21.54.122

200 OK

91 B

URL

tablearicl.minterneug.ru/web1/info

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typetroff or preprocessor input, ASCII text, with no line terminators

First Seen2023-10-23

Last Seen2025-01-29

Times Seen6347

Size91 B (91 bytes)

MD5348478242d981ddc47795f90e6f89d2a

SHA18f862536625baf2d0eb45d44acc9802c71df79e1

SHA25699691950fad5cb4b6df0bab904cc60d404840fe839c3614ffb841898ecdb3ddb

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

POST /web1/info HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 26
Origin: https://tablearicl.minterneug.ru
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6ImN5OTEzOXhDb21xa0lSUVlPc2oyR3c9PSIsInZhbHVlIjoiQWR1N0szYjZUSTAzWUQvdmFiWndIY3FjQWpjZTZYQThnZDR6VUFSd0gzc2d3YjBvSjVHem9IeXZMRlFoVStQb3lKMnkya05vT3ZrRUwzd0ZDelVPYVdIblMrbnA4cXFuTjF4NmhsUUVuQWZFbStaazgrM2o1aHlGMDBZdDB6TjUiLCJtYWMiOiIzMzZlZGJkYzljNWU2YTE4MDQxYTVjYTlkOGMwMDAxOTdlNzQ3OTFkZjM3ZmZiYzZmMjI5YTU5ZTc1ZTAyZGI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlNHekdJNW5ZUVZKSTFia3pTVTM2UEE9PSIsInZhbHVlIjoieTBBbG5OaTlxT2laRkdOWDV0ZC9Hcjk2aHlFa0JNTVdwVlV6TVlYenVkcllWODAyVUQyRTErYkhNM0NsVTJkZG4xaDhVVWQ2aERrelg0T3JJZmFESGpVZkhkMVBUVkdKemZUNGx0c1A0Q1poaXJPZUJvblk3WXZMZThBT05ZdUYiLCJtYWMiOiJlMGU3NjgwZTRmODBhMmZhMjZlZjY5YjhlMzU0MjBhYjI3YWI3ZGJmOWI4NDc1NjExMDgyNDliNGI4ZmUyZmMxIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:54 GMT
content-type: application/json
x-powered-by: PHP/8.1.10
cache-control: no-cache, private
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LECR1hofuceryDZCwwxfwHR3Pj8broeFxR0YfGnDfcwot%2BrkNN%2Fc38QcaJhGbUMvT97oHlgU3mLMPi%2FaMkVVpqQkpjghvuY3gzYYA4XoMcuWSjW3ATfj05FIUDFrJYwU3U9mzlfT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6IlVEZzlwcVQzN0FhL3JyaUpUU0Z0WWc9PSIsInZhbHVlIjoiMU0zbFBvUGl4VkxvVmtMTGozV2x4UUtKaTUzQ0hrYUFwL3Jmb3c1RnAvNUowQ001R1pWVkZEOUIrZFBPMkpWalZ5TTN2WHlNbitCcnByZUJnelMyaGsvQS9XWTlVVXdSUVptQ2FWbDFkWUczV2NVR3pZUVg3aSsvY1VqVW1NTW0iLCJtYWMiOiI1OGE0MTg0Y2UzYTc4OGExZWEyM2NmZWMzOTZkMjI2NjI2OWVjNmM1NTYxMzlhZjViMDgyYmNmYTVhNzJlMmIzIiwidGFnIjoiIn0%3D; expires=Mon, 06-Nov-2023 23:57:54 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IkNYVXBEMmZtRmYwNlpxZ29ITWlHYVE9PSIsInZhbHVlIjoiZm9reGhMMVkyWjAvQ01qc0Z2U05oeXFEVWxXWUlFV0JJamxmUHZKdFJNZHNvLzhjcEN0R2JkWWl3VGprKzcvekplOHNwYXdieFc0K2swTG4vT1NxZS9QWVFyVlFnYU5vRGcxYUx0UW44YWNaZGpHVjRWMDRPU3NQUG9XLzE5MTQiLCJtYWMiOiI1NWYwNjY3YzQ2ZDFlYTNkYzBlZmNjMzQ2MTFlZDk2ZWU0MzE4NjU3ZDAxNDUwZWJiN2IzZDM5MWYyZWU0YzllIiwidGFnIjoiIn0%3D; expires=Mon, 06-Nov-2023 23:57:54 GMT; Max-Age=7200; path=/; httponly; samesite=lax
server: cloudflare
cf-ray: 82209840dfc60b41-OSL
content-encoding: br

GET logincdn.msauth.net/shared/1.0/content/images/picker_verify_email_958962caa7cf6b75cd412e9e3b687b22.svg

192.229.221.185

200 OK

268 B

URL

logincdn.msauth.net/shared/1.0/content/images/picker_verify_email_958962caa7cf6b75cd412e9e3b687b22.svg

IP / ASN

192.229.221.185

#15133 EDGECAST

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators

First Seen2023-09-01

Last Seen2025-04-05

Times Seen19072

Size268 B (268 bytes)

MD51318aafc1fb9ded0c623e5b9a557e6df

SHA10917cdd7633cd1642b02b2b785416ec7e5106dcc

SHA256d86660a84daa211b121ec9fe0df83d6b945f61b888384391eabc7d6b4e941dc4

Certificate Info

IssuerMicrosoft Corporation

Subjectidentitycdn.msauth.net

FingerprintAF:EB:E8:D6:8A:D6:D5:DF:17:8C:0E:CB:4E:EA:B9:23:51:37:24:F6

ValidityThu, 02 Nov 2023 23:14:23 GMT - Sun, 27 Oct 2024 23:14:23 GMT

HTTP Headers

GET /shared/1.0/content/images/picker_verify_email_958962caa7cf6b75cd412e9e3b687b22.svg HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 13143300
cache-control: public, max-age=31536000
content-md5: pFQUXilUkzYtIbvSwGgVBQ==
content-type: image/svg+xml
date: Mon, 06 Nov 2023 21:57:54 GMT
etag: 0x8DB5C409F549E50
last-modified: Wed, 24 May 2023 10:21:22 GMT
server: ECAcc (ska/F7AD)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: e6e3cc87-601e-0079-1c72-993a7c000000
x-ms-version: 2009-09-19
content-length: 212
X-Firefox-Spdy: h2

GET code.jquery.com/jquery-3.6.0.min.js

151.101.194.137

200 OK

90 kB

URL

code.jquery.com/jquery-3.6.0.min.js

IP / ASN

151.101.194.137

#54113 FASTLY

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeASCII text, with very long lines (65447)

First Seen2023-03-07

Last Seen2025-08-03

Times Seen264173

Size90 kB (89501 bytes)

MD58fb8fee4fcc3cc86ff6c724154c49c42

SHA1b82d238d4e31fdf618bae8ac11a6c812c03dd0d4

SHA256ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

Certificate Info

IssuerSectigo Limited

Subject*.jquery.com

FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D

ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 06 Nov 2023 21:57:45 GMT
age: 4069765
x-served-by: cache-lga21931-LGA, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 159563
x-timer: S1699307865.325950,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2

GET tablearicl.minterneug.ru/web1/assets/pages/u5g2wd23kn.css?cb=1699307866382

104.21.54.122

200 OK

1.1 kB

URL

tablearicl.minterneug.ru/web1/assets/pages/u5g2wd23kn.css?cb=1699307866382

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeASCII text, with very long lines (1164), with no line terminators

First Seen2023-09-28

Last Seen2023-11-29

Times Seen3378

Size1.1 kB (1121 bytes)

MD51d425fb9c0a48323d58155b61ac338d8

SHA1755d9cf7e096cd1f590b408f1921f78dba97d5c9

SHA256da5bb4dcce3afee4e8b582d18c202dd7f2ec4e9485986f18f1c8ff9271235adf

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/pages/u5g2wd23kn.css?cb=1699307866382 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:47 GMT
content-type: text/css
last-modified: Mon, 23 Oct 2023 20:56:45 GMT
etag: W/"461-6086875c72803"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8IZVTYJYxpiFZok7aMsamCcnqszm1Bj%2F552GcVzHsfnNgKE4T1TCJElfOJEzOQpSEGiMC4VSBzQpL2V%2FY2oSCqHoiiqCMxB4iBG3MFjduC1aTaqiFrmjKV4jJusRBnWonbzNLkoj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 822098151d220b41-OSL
content-encoding: br

GET tablearicl.minterneug.ru/web1/assets/godaddy-left.png

104.21.54.122

200 OK

30 kB

URL

tablearicl.minterneug.ru/web1/assets/godaddy-left.png

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typePNG image data, 506 x 303, 8-bit/color RGBA, non-interlaced\012- data

First Seen2023-08-31

Last Seen2025-02-06

Times Seen22277

Size30 kB (29796 bytes)

MD5210433a8774859368f3a7b86d125a2a7

SHA1408bacddc39f12cad285579c102fe4a629862d88

SHA2569c6addfc339ce1c1d262290ab4cc2de8d38d4b54b11a8e85afd44fbb0acc2561

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/godaddy-left.png HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:55 GMT
content-type: image/png
content-length: 29796
last-modified: Thu, 24 Aug 2023 14:10:07 GMT
etag: "7464-603abc9079d32"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=39q3vvYYHCq1XuiY65n4TYzl50f4FZ3aHWCQ9MMKZHPqD%2FoXGQZ6ptpAIkrIOJzgkSG5b8XAw2nHnse5tTiIPpW366UbfDRIS5ot%2BAyModD9GFbNV9sPD2I2Z%2FIrQYapXsJCgxdY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7187
accept-ranges: bytes
server: cloudflare
cf-ray: 8220984b7cee0b41-OSL

GET tablearicl.minterneug.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket

104.21.54.122

101 Switching Protocols

0 B

URL

tablearicl.minterneug.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5619497

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET //web1socket/socket.io/?type=User&EIO=4&transport=websocket HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://tablearicl.minterneug.ru
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8FQWVJ2V082Z+rQ35udc7Q==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Mon, 06 Nov 2023 21:57:57 GMT
Connection: upgrade
Sec-WebSocket-Accept: +zDL6BmdKJ96DxFYV4/YMGhuERQ=
Upgrade: websocket
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ybDZvvenissGHZdZV9JNB8ZIJLiu0PSXy0d1UIJ25aYyET7brGrOryBY0886HHwOAL3TZctKNHdVgVa8QeVFlrEjnFDGoLwdxEKARVYtgl9r%2B5STXSvoIL2nFpilYk9d2p2ujadsr2KjGc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 822098541da3b527-OSL
alt-svc: h3=":443"; ma=86400

POST tablearicl.minterneug.ru/web1/info

0.0.0.0

0 B

URL

tablearicl.minterneug.ru/web1/info

IP / ASN

0.0.0.0

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5619497

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

POST /web1/info HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 135
Origin: https://tablearicl.minterneug.ru
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

GET tablearicl.minterneug.ru/web1/assets/cloudfavicon.ico

104.21.54.122

200 OK

34 kB

URL

tablearicl.minterneug.ru/web1/assets/cloudfavicon.ico

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeMS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\012- data

First Seen2023-05-08

Last Seen2025-07-23

Times Seen39797

Size34 kB (34494 bytes)

MD588415acda09a4cbd9d87543c3ba78180

SHA12dec4705e9ab399efdc6eef36e079aa31d1df8d9

SHA25620cccc47c1bac9d2ef36b6a1c58af58c5c169ad5ca084080f0392b86f949641c

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/cloudfavicon.ico HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:45 GMT
content-type: image/x-icon
last-modified: Wed, 16 Aug 2023 15:22:46 GMT
etag: W/"86be-6030bde212b57"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=juPMPRIA2W5Oy1v0j4Yl6QOvP9HMEt092PA4zMaJxLrjMx%2BcXmgiIPYJuk8FgSJ0iVNW3M%2FETNwBMvYljWMd9DS6HRyVbllbGpnchQy57s%2BZpWsD39e03NsF3mTvWTFu7p6zYHHM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7184
server: cloudflare
cf-ray: 8220980fc9aa0b41-OSL
content-encoding: br

GET tablearicl.minterneug.ru/web1/assets/js/pages.min.js?cb=1699307866382

104.21.54.122

200 OK

92 kB

URL

tablearicl.minterneug.ru/web1/assets/js/pages.min.js?cb=1699307866382

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5619497

Size92 kB (92383 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/js/pages.min.js?cb=1699307866382 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:56 GMT
content-type: application/javascript
last-modified: Wed, 01 Nov 2023 20:01:40 GMT
etag: W/"168df-6091cbd4f670c"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LkZGMeSj38hYRtQb6Bc9ZAOyzuXkIkoF9wzKUR8jkNR21baz04nwIoNbuq4Ln7Ae9B42Bf7AVmxL%2BWXlKMRre0B9CNVW0UwzZqk%2B3LYOtCXCw2oCHT1acX%2FjIOVakp6AftGc3kWO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 8220984b7cf10b41-OSL
content-encoding: br

GET tablearicl.minterneug.ru/web1/assets/microsoftfavicon.ico

104.21.54.122

200 OK

17 kB

URL

tablearicl.minterneug.ru/web1/assets/microsoftfavicon.ico

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data

First Seen2023-04-05

Last Seen2025-08-03

Times Seen156741

Size17 kB (17174 bytes)

MD512e3dac858061d088023b2bd48e2fa96

SHA1e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5

SHA25690cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/microsoftfavicon.ico HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Cookie: XSRF-TOKEN=eyJpdiI6IlpBWittTVRFak9hcWFmZFRpUkp3U1E9PSIsInZhbHVlIjoiTVVOYTQyWDJsYnFlRjVxSG9SOHJ1UkhFYXhnYTZEcUFESFFpOFdYVjQydG9Yb3phYW9IdU5XTXk5V2RTZGJYZ1oxS3Z6Q2ZwVmZGejhxZEMvQ3N5Z2Q0NnVJQ0Frc1dkNmY2RUxrZGN6N21PMlRCUlMvNE9lZkVFSHFhNXN0bHEiLCJtYWMiOiIxMzc5NzQ2NjM3MzI4MGRhYWRlYjQzMWUwMmU1OTYzNGU5YmUzNGFkYjE3Y2RjMWZlNGViMjNmYjlkMGQwNzM1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdJYzZZVWVVL1JqQ0lHcG1LOWVPakE9PSIsInZhbHVlIjoicTRudGd4TnJiNlNJV3RkZVBaNHRNeEVCc1RxalFWNnozOUhnVndIQjhwNUxyZHNwSldsbFM1SGNpeXN1VTI1MUY0QkF4djJ0c0l0QVpqelFjai9MUUpGdk1KUk5Cd2UwRWdNd2ZjbmlpN1FtTW1GdlJFbDc1VVVsOG41QTI4OWsiLCJtYWMiOiI3NDA4Mzg0ZTk4Nzc0MmM3YWZmYmQ3NDhlMDM3YTM2NzkxZWJmNjMwMmMwOTlmYzg4ZGI4YzkyMmFkODQ4OTk5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:55 GMT
content-type: image/x-icon
last-modified: Sun, 19 Mar 2023 15:20:17 GMT
etag: W/"4316-5f7425905ae40"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=37vXi%2FycT%2FDpLv3lAKfZ%2BYbNTdeAMYp%2BNJ6Cz1SjfBvKIC%2BpIGBZVzQVeK2SixLO2wW%2FGR%2BI81d1a%2BKGkbsNRfM7k6ivvg4GK%2FeBPg8P3sg6auTSc7QQKqTG0WZlIYHmg34hvkCy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7185
server: cloudflare
cf-ray: 8220984d8e400b41-OSL
content-encoding: br

POST tablearicl.minterneug.ru/web1/validatecaptcha

104.21.54.122

200 OK

20 B

URL

tablearicl.minterneug.ru/web1/validatecaptcha

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typetroff or preprocessor input, ASCII text, with no line terminators

First Seen2023-04-05

Last Seen2025-04-06

Times Seen31862

Size20 B (20 bytes)

MD50b35866f4a3aa4d34ce5dda2d14c2cd8

SHA1d2b80911f09c3106fdf0df9920f983945d644083

SHA256493851374626d927bfe1c7d084fa977a0e636c03f163fda258ab6b638edc2f0d

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

POST /web1/validatecaptcha HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 566
Origin: https://tablearicl.minterneug.ru
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:53 GMT
content-type: application/json
x-powered-by: PHP/8.1.10
cache-control: no-cache, private
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EwDUj4bodafa3hNWe52SeBtS1DDL7E8at0LiiMXsvrTaehA2EIZfJ8aacE0beJkhIs9cUSgFicUpvkLWrdCS9TCr%2BijoQtMLzVDTdrAu6Yjt6YLWTltLoHYQoO2uSMCRM8UMvIoX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6ImN5OTEzOXhDb21xa0lSUVlPc2oyR3c9PSIsInZhbHVlIjoiQWR1N0szYjZUSTAzWUQvdmFiWndIY3FjQWpjZTZYQThnZDR6VUFSd0gzc2d3YjBvSjVHem9IeXZMRlFoVStQb3lKMnkya05vT3ZrRUwzd0ZDelVPYVdIblMrbnA4cXFuTjF4NmhsUUVuQWZFbStaazgrM2o1aHlGMDBZdDB6TjUiLCJtYWMiOiIzMzZlZGJkYzljNWU2YTE4MDQxYTVjYTlkOGMwMDAxOTdlNzQ3OTFkZjM3ZmZiYzZmMjI5YTU5ZTc1ZTAyZGI0IiwidGFnIjoiIn0%3D; expires=Mon, 06-Nov-2023 23:57:53 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IlNHekdJNW5ZUVZKSTFia3pTVTM2UEE9PSIsInZhbHVlIjoieTBBbG5OaTlxT2laRkdOWDV0ZC9Hcjk2aHlFa0JNTVdwVlV6TVlYenVkcllWODAyVUQyRTErYkhNM0NsVTJkZG4xaDhVVWQ2aERrelg0T3JJZmFESGpVZkhkMVBUVkdKemZUNGx0c1A0Q1poaXJPZUJvblk3WXZMZThBT05ZdUYiLCJtYWMiOiJlMGU3NjgwZTRmODBhMmZhMjZlZjY5YjhlMzU0MjBhYjI3YWI3ZGJmOWI4NDc1NjExMDgyNDliNGI4ZmUyZmMxIiwidGFnIjoiIn0%3D; expires=Mon, 06-Nov-2023 23:57:53 GMT; Max-Age=7200; path=/; httponly; samesite=lax
server: cloudflare
cf-ray: 82209837ba870b41-OSL
content-encoding: br

GET tablearicl.minterneug.ru/web1/assets/cloudfavicon.ico

104.21.54.122

200 OK

34 kB

URL

tablearicl.minterneug.ru/web1/assets/cloudfavicon.ico

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeMS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\012- data

First Seen2023-05-08

Last Seen2025-07-23

Times Seen39797

Size34 kB (34494 bytes)

MD588415acda09a4cbd9d87543c3ba78180

SHA12dec4705e9ab399efdc6eef36e079aa31d1df8d9

SHA25620cccc47c1bac9d2ef36b6a1c58af58c5c169ad5ca084080f0392b86f949641c

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/cloudfavicon.ico HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:47 GMT
content-type: image/x-icon
last-modified: Wed, 16 Aug 2023 15:22:46 GMT
etag: W/"86be-6030bde212b57"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=juPMPRIA2W5Oy1v0j4Yl6QOvP9HMEt092PA4zMaJxLrjMx%2BcXmgiIPYJuk8FgSJ0iVNW3M%2FETNwBMvYljWMd9DS6HRyVbllbGpnchQy57s%2BZpWsD39e03NsF3mTvWTFu7p6zYHHM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 7186
server: cloudflare
cf-ray: 82209818e87a0b41-OSL
content-encoding: br

GET aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg

152.199.23.37

200 OK

2.9 kB

URL

aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg

IP / ASN

152.199.23.37

#15133 EDGECAST

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2923), with no line terminators

First Seen2023-05-07

Last Seen2025-04-06

Times Seen22460

Size2.9 kB (2905 bytes)

MD5e924de0d471df54b6280f3dc8b187cb8

SHA1857f03226070b502a9e06b4249710ec10be4c9e9

SHA25624ce135a31ce83ac3d62471fcc0e1a82ce6f1533c993ee59ca4e110d5f2fae33

Certificate Info

IssuerDigiCert Inc

Subjectaadcdn.msftauth.net

Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6

ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

HTTP Headers

GET /shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 13139766
cache-control: public, max-age=31536000
content-md5: XHrPYKKsqlxUvysuxtSE2A==
content-type: image/svg+xml
date: Mon, 06 Nov 2023 21:57:54 GMT
etag: 0x8DB5C3F4A98E9BB
last-modified: Wed, 24 May 2023 10:11:50 GMT
server: ECAcc (ska/F6F3)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 3afb7c4b-e01e-0039-1e7a-99c6de000000
x-ms-version: 2009-09-19
content-length: 1173
X-Firefox-Spdy: h2

GET tablearicl.minterneug.ru/web1/assets/js/pages-head-top-web.min.js?cb=1699307865404

104.21.54.122

200 OK

2.4 kB

URL

tablearicl.minterneug.ru/web1/assets/js/pages-head-top-web.min.js?cb=1699307865404

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeASCII text, with very long lines (2572), with no line terminators

First Seen2023-10-23

Last Seen2023-11-29

Times Seen3139

Size2.4 kB (2394 bytes)

MD5207127ad0286515cd05c7197ca4839af

SHA1da5130cf88e4a758b49ce84f1ff0483ee26f29b9

SHA25623794b050f43c5f461200b5c71ea38f75a03fb964f10b91f23ae903fc16894fb

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/js/pages-head-top-web.min.js?cb=1699307865404 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:46 GMT
content-type: application/javascript
last-modified: Sat, 21 Oct 2023 21:35:46 GMT
etag: W/"95a-60840c594e1e3"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QFIWHVzJ4MpOU7wF9VegnfkI3IF1Ig%2FPajVS0c%2BS4pK4ElzHI7CeDS0FSWNVDe9Wlpcb%2FTFZyiI1dgClP9kNHMaPWJ110Bap0tujjiLnXOmc3PozuZsTKJT1p6oyLPh2%2B%2FN%2BRbLS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 8220980ef94e0b41-OSL
content-encoding: br

GET tablearicl.minterneug.ru/web1/assets/js/pages-head-web.min.js?cb=1699307866382

104.21.54.122

200 OK

14 kB

URL

tablearicl.minterneug.ru/web1/assets/js/pages-head-web.min.js?cb=1699307866382

IP / ASN

104.21.54.122

#13335 CLOUDFLARENET

Requested byhttps://tablearicl.minterneug.ru/xeg877p87u#debbie.hatmaker@ana.org

Resource Info

File typeASCII text, with very long lines (13626), with no line terminators

First Seen2023-10-22

Last Seen2023-12-13

Times Seen13891

Size14 kB (13626 bytes)

MD5701637cf7b3c9588cdf84dbb449ba48e

SHA1a3fd0695db073372cbb52345cb18cd4f8186edeb

SHA256fe2ea5cd48f2ca8001c5283ee74d2b41305644374b0c1e7b90b9cb6b5bb73a94

Certificate Info

IssuerLet's Encrypt

Subjectminterneug.ru

Fingerprint87:0C:34:4B:78:14:F8:59:0A:FF:D5:4A:15:33:7B:6A:6C:4A:26:E1

ValidityThu, 19 Oct 2023 10:28:36 GMT - Wed, 17 Jan 2024 10:28:35 GMT

HTTP Headers

GET /web1/assets/js/pages-head-web.min.js?cb=1699307866382 HTTP/1.1
Host: tablearicl.minterneug.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tablearicl.minterneug.ru/xeg877p87u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 06 Nov 2023 21:57:47 GMT
content-type: application/javascript
last-modified: Sun, 22 Oct 2023 12:15:47 GMT
etag: W/"353a-6084d10c51e3d"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Sj4rBh0CTTqFh27XmqHm3cDbk1O%2FsXmy3A5hf51EuspYUnzAN%2Fu3dB2%2FZlQtVxAQP%2FwmzE9orsgKt0xiaG%2F8hoUF%2FcdxzJNHc9SrhKmLOGi7zd%2BBp%2FuA5Fom6S5780rk6V2rl%2B8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 822098153d310b41-OSL
content-encoding: br