| t1.a.editions-legislatives.fr/r/?id=hfe20c57a,3602a3f1,7f94ba88&p1=xftprojects.com/dfgfb/67e8bb9dd70296406e5bedc16737c64e1fbc5f26/YmFycnlAc2x1cnBtYWlsLm5ldA== |  52.50.224.229 | 302 Found | 17 B |
URL t1.a.editions-legislatives.fr/r/?id=hfe20c57a,3602a3f1,7f94ba88&p1=xftprojects.com/dfgfb/67e8bb9dd70296406e5bedc16737c64e1fbc5f26/YmFycnlAc2x1cnBtYWlsLm5ldA== IP52.50.224.229:0
File typeASCII text, with no line terminators Hashedf537e37d4549950774190c58f93b76 4e2078632eccec8993f151be9338bbcb88ce6f58 afff9c63cfeacd26e5d4000edf576f1386d6729dca783eb45004f484a73a3514
GET /r/?id=hfe20c57a,3602a3f1,7f94ba88&p1=xftprojects.com/dfgfb/67e8bb9dd70296406e5bedc16737c64e1fbc5f26/YmFycnlAc2x1cnBtYWlsLm5ldA== HTTP/1.1
Host: t1.a.editions-legislatives.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 15 Nov 2024 12:47:39 GMT
content-type: text/plain; charset=utf-8
content-length: 17
location: https://xftprojects.com/dfgfb/67e8bb9dd70296406e5bedc16737c64e1fbc5f26/YmFycnlAc2x1cnBtYWlsLm5ldA==
server: Apache
x-robots-tag: noindex
p3p: CP="CAO DSP COR CURa DEVa TAIa OUR BUS IND UNI COM NAV"
set-cookie: AMCV_EDB0539A5733225A7F000101%40AdobeOrg=MCMID%7C82145657203237847030643169217977253887; Domain=editions-legislatives.fr; Path=/; Expires=Wed, 10-Dec-2025 12:47:39 GMT
nlid=fe20c57a|3602a3f1; Domain=editions-legislatives.fr; Path=/
nllastdelid=3602a3f1; Domain=editions-legislatives.fr; Path=/; Expires=Wed, 10-Dec-2025 12:47:39 GMT
X-Firefox-Spdy: h2
|
|
| xftprojects.com/dfgfb/67e8bb9dd70296406e5bedc16737c64e1fbc5f26/YmFycnlAc2x1cnBtYWlsLm5ldA== |  162.241.114.35 | 200 OK | 0 B |
URL xftprojects.com/dfgfb/67e8bb9dd70296406e5bedc16737c64e1fbc5f26/YmFycnlAc2x1cnBtYWlsLm5ldA== IP162.241.114.35:0 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dfgfb/67e8bb9dd70296406e5bedc16737c64e1fbc5f26/YmFycnlAc2x1cnBtYWlsLm5ldA== HTTP/1.1
Host: xftprojects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 15 Nov 2024 12:47:39 GMT
Server: Apache
refresh: 0;url=https://coffrman.com/?tgdhlizu&qrc=barry@slurpmail.net
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| coffrman.com/?tgdhlizu&qrc=barry@slurpmail.net |  82.153.68.97 | 302 Found | 0 B |
URL User Request GET HTTP/1.1coffrman.com/?tgdhlizu&qrc=barry@slurpmail.net IP82.153.68.97:443
CertificateIssuerLet's Encrypt Subjectcoffrman.com Fingerprint3D:31:9B:0E:FE:B0:D4:72:6C:AB:AF:7C:FE:91:8D:EF:EB:14:69:61 ValidityFri, 01 Nov 2024 08:18:55 GMT - Thu, 30 Jan 2025 08:18:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft Outlook |
GET /?tgdhlizu&qrc=barry@slurpmail.net HTTP/1.1
Host: coffrman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Set-Cookie: qPdM=2HkTPt7z10vw; path=/; samesite=none; secure; httponly
qPdM.sig=N6EeejVw35ze_HV9u1-ZkcV4bVE; path=/; samesite=none; secure; httponly
location: /?tgdhlizu=ab4699f96a7f4666b5595713432acecdf026d3fbf29e0681b94b49fdf5a93784b9def09a85dc82798290e6ab0ccc656fe45f54ed03bb8b2c215a7fc2f35f3d15&qrc=barry%40slurpmail.net
Date: Fri, 15 Nov 2024 12:47:40 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked
|
|
| coffrman.com/?tgdhlizu=ab4699f96a7f4666b5595713432acecdf026d3fbf29e0681b94b49fdf5a93784b9def09a85dc82798290e6ab0ccc656fe45f54ed03bb8b2c215a7fc2f35f3d15&qrc=barry%40slurpmail.net | 82.153.68.97 | 200 OK | 3.3 kB |
URL User Request GET HTTP/1.1coffrman.com/?tgdhlizu=ab4699f96a7f4666b5595713432acecdf026d3fbf29e0681b94b49fdf5a93784b9def09a85dc82798290e6ab0ccc656fe45f54ed03bb8b2c215a7fc2f35f3d15&qrc=barry%40slurpmail.net IP82.153.68.97:443
CertificateIssuerLet's Encrypt Subjectcoffrman.com Fingerprint3D:31:9B:0E:FE:B0:D4:72:6C:AB:AF:7C:FE:91:8D:EF:EB:14:69:61 ValidityFri, 01 Nov 2024 08:18:55 GMT - Thu, 30 Jan 2025 08:18:54 GMT
File typeHTML document, ASCII text, with very long lines (1928) Hash0053c7fcbb14363be6f78572dd0c1750 4f943772ae36f8e0346bf9556ca0f1de847968b8 b1ec112111ce76a45250b55eceeb1996660aea273217c49c9b6c1fea7d01893b
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft Outlook |
GET /?tgdhlizu=ab4699f96a7f4666b5595713432acecdf026d3fbf29e0681b94b49fdf5a93784b9def09a85dc82798290e6ab0ccc656fe45f54ed03bb8b2c215a7fc2f35f3d15&qrc=barry%40slurpmail.net HTTP/1.1
Host: coffrman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: qPdM=2HkTPt7z10vw; qPdM.sig=N6EeejVw35ze_HV9u1-ZkcV4bVE
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Date: Fri, 15 Nov 2024 12:47:40 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked
|
|
| challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback |  104.18.95.41 | 302 Found | 0 B |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP104.18.95.41:443
Requested byhttps://coffrman.com/?tgdhlizu=ab4699f96a7f4666b5595713432acecdf026d3fbf29e0681b94b49fdf5a93784b9def09a85dc82798290e6ab0ccc656fe45f54ed03bb8b2c215a7fc2f35f3d15&qrc=barry%40slurpmail.net CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://coffrman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 15 Nov 2024 12:47:40 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/b/22755d9a86c9/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 8e2f59e80fea56a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| coffrman.com/favicon.ico | 82.153.68.97 | 500 Internal Server Error | 22 B |
IP82.153.68.97:443
Requested byhttps://coffrman.com/?tgdhlizu=ab4699f96a7f4666b5595713432acecdf026d3fbf29e0681b94b49fdf5a93784b9def09a85dc82798290e6ab0ccc656fe45f54ed03bb8b2c215a7fc2f35f3d15&qrc=barry%40slurpmail.net CertificateIssuerLet's Encrypt Subjectcoffrman.com Fingerprint3D:31:9B:0E:FE:B0:D4:72:6C:AB:AF:7C:FE:91:8D:EF:EB:14:69:61 ValidityFri, 01 Nov 2024 08:18:55 GMT - Thu, 30 Jan 2025 08:18:54 GMT
File typeASCII text, with no line terminators Hash6aab5444a217195068e4b25509bc0c50 7b22eaf7eaa9b7e1f664a0632d3894d406fe7933 fc5525d427bfa27792d3a87411be241c047d07f07c18e2fc36bf00b1c2e33d07
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Microsoft Outlook |
GET /favicon.ico HTTP/1.1
Host: coffrman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://coffrman.com/?tgdhlizu=ab4699f96a7f4666b5595713432acecdf026d3fbf29e0681b94b49fdf5a93784b9def09a85dc82798290e6ab0ccc656fe45f54ed03bb8b2c215a7fc2f35f3d15&qrc=barry%40slurpmail.net
Cookie: qPdM=2HkTPt7z10vw; qPdM.sig=N6EeejVw35ze_HV9u1-ZkcV4bVE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 500 Internal Server Error
Date: Fri, 15 Nov 2024 12:47:40 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1 | 104.18.95.41 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1 IP104.18.95.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 15 Nov 2024 12:47:41 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
priority: u=4,i=?0
server: cloudflare
cf-ray: 8e2f59e979915691-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8e2f59e8d8fb5691/1731674861311/b465bfa44daacc3ce98ddd409d5369bb940c77611829559f8126417580cbf223/kYL8iasmd3vEDYQ | 104.18.95.41 | 401 Unauthorized | 1 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8e2f59e8d8fb5691/1731674861311/b465bfa44daacc3ce98ddd409d5369bb940c77611829559f8126417580cbf223/kYL8iasmd3vEDYQ IP104.18.95.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/8e2f59e8d8fb5691/1731674861311/b465bfa44daacc3ce98ddd409d5369bb940c77611829559f8126417580cbf223/kYL8iasmd3vEDYQ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Fri, 15 Nov 2024 12:47:42 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gtGW_pE2qzDzpjd1AnVNpu5QMd2EYKVWfgSZBdYDL8iMAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tILRlv6RNqsw86Y3dQJ1TabuUDHdhGClVn4EmQXWAy_IjABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tILRlv6RNqsw86Y3dQJ1TabuUDHdhGClVn4EmQXWAy_IjABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA2ofNYujuBSGe3VokTOshcBYsN3IYqVG1vzSM-oCNQXOis6OMxshBYgGBi7QofI09eX3MiEJXFbY9F5l3e8-_QYq1SaXGxnEUzFLxdxsrqg_HDC1t7FnimSy0L1ex7MmHaWHHFKZvblAZW4u3w1pnvpb9w-jFqacUEW3fpSMZS_Yd7X8ZtgHadv02nmX_vYOfXYz1-xrGqFTGxaoYv67qpr8Z_qEW3JxhCu5bAG07lhyKUQwCjYBaHaw9ts0dop6n4rTO43MDNBGwSB1W3JKJgCrpVXUb1nOd5pPabD8TOMECeRricTImLIJXlsMxbWvR9FO1r0FuE_1vIFSjDDXnaQIDAQAB", max-age=20
priority: u=4,i=?0
server: cloudflare
cf-ray: 8e2f59f01e805691-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/ | 104.18.95.41 | 200 OK | 6.4 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/ IP104.18.95.41:443
Requested byhttps://coffrman.com/?tgdhlizu=ab4699f96a7f4666b5595713432acecdf026d3fbf29e0681b94b49fdf5a93784b9def09a85dc82798290e6ab0ccc656fe45f54ed03bb8b2c215a7fc2f35f3d15&qrc=barry%40slurpmail.net CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeHTML document, ASCII text, with very long lines (22061) Hash20c6a71d607f90c31f9af5dc5e832337 6dfaf5ccc6aa4644d1f17a7235ff1bed68679063 66294a069e0ee42aa195906d8ec4e2595f1a961da78962e455608eb59ba6b5e8
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://coffrman.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 15 Nov 2024 12:47:40 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 8e2f59e8d8fb5691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8e2f59e8d8fb5691&lang=auto | 104.18.95.41 | 200 OK | 117 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8e2f59e8d8fb5691&lang=auto IP104.18.95.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size117 kB (117303 bytes) Hash41a8ed9f0b2abb57eca625b7413b7e7f 9f451ce6eac2c49649f6f77a6192bcb3f095394f a70e707bfe29104fc2f21cfa22a2763d325f86407fa05273a71c42575fb0a213
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8e2f59e8d8fb5691&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 15 Nov 2024 12:47:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=2,i=?0
server: cloudflare
cf-ray: 8e2f59e9899a5691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/559443506:1731670846:6d413Ux55wtwerla_65Ki6fXVSGenfMfwH92xFDCnbY/8e2f59e8d8fb5691/qDuSyZreHOD9WHDNrwFZLzdWbQ5_x5KMovZTXPqh6ao-1731674860-1.1.1.1-dWKeMrxcR28GjROlJFcAHAMJKribFX_I64fMqg7oI6EabZixuFT8bgSwIqIB_Wbt | 104.18.95.41 | 200 OK | 26 kB |
URL POST HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/559443506:1731670846:6d413Ux55wtwerla_65Ki6fXVSGenfMfwH92xFDCnbY/8e2f59e8d8fb5691/qDuSyZreHOD9WHDNrwFZLzdWbQ5_x5KMovZTXPqh6ao-1731674860-1.1.1.1-dWKeMrxcR28GjROlJFcAHAMJKribFX_I64fMqg7oI6EabZixuFT8bgSwIqIB_Wbt IP104.18.95.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeASCII text, with very long lines (26328), with no line terminators Hash1f64772e0a50cbc49cbf61ea3c81032b dcbec140c28d4ae9fab076aee24e49c116aa473c 02c2c294ea914079852286426558ba3519e7f4c7f507ee23214621d0aa9fa3bb
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/559443506:1731670846:6d413Ux55wtwerla_65Ki6fXVSGenfMfwH92xFDCnbY/8e2f59e8d8fb5691/qDuSyZreHOD9WHDNrwFZLzdWbQ5_x5KMovZTXPqh6ao-1731674860-1.1.1.1-dWKeMrxcR28GjROlJFcAHAMJKribFX_I64fMqg7oI6EabZixuFT8bgSwIqIB_Wbt HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/
Content-type: application/x-www-form-urlencoded
CF-Challenge: qDuSyZreHOD9WHDNrwFZLzdWbQ5_x5KMovZTXPqh6ao-1731674860-1.1.1.1-dWKeMrxcR28GjROlJFcAHAMJKribFX_I64fMqg7oI6EabZixuFT8bgSwIqIB_Wbt
Content-Length: 28224
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 15 Nov 2024 12:47:43 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: +NCwvfrCjeh6z3AIpgv/2wBBI9EJu39Xm56t9QZclFxzyEb/VgUG8DOAQ9qhxEa6GcW8JhjGPv72kMY0$wvPG2BJ46GMCqF23
priority: u=3,i=?0
server: cloudflare
cf-ray: 8e2f59f6cca75691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8e2f59e8d8fb5691/1731674861313/yKdpcyi--AwHM4o | 104.18.95.41 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8e2f59e8d8fb5691/1731674861313/yKdpcyi--AwHM4o IP104.18.95.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typePNG image data, 58 x 97, 8-bit/color RGB, non-interlaced Hashb1c2529647e4e403f9f82211c336297b ccd918063cd99963e2354017960b3726cf7cd816 1689b6f42b20d8b098ffec6591c440b6d905abbdd4168f32339f5b68b4fd69bd
GET /cdn-cgi/challenge-platform/h/b/i/8e2f59e8d8fb5691/1731674861313/yKdpcyi--AwHM4o HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 15 Nov 2024 12:47:42 GMT
content-type: image/png
content-length: 61
priority: u=4,i=?0
server: cloudflare
cf-ray: 8e2f59f5aba65691-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/turnstile/v0/b/22755d9a86c9/api.js | 104.18.95.41 | 200 OK | 48 kB |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/b/22755d9a86c9/api.js IP104.18.95.41:443
Requested byhttps://coffrman.com/?tgdhlizu=ab4699f96a7f4666b5595713432acecdf026d3fbf29e0681b94b49fdf5a93784b9def09a85dc82798290e6ab0ccc656fe45f54ed03bb8b2c215a7fc2f35f3d15&qrc=barry%40slurpmail.net CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeJavaScript source, ASCII text, with very long lines (47671) Hashb804bcd42117b1bbe45326212af85105 7b4175aaf0b7e45e03390f50cb8ed93185017014 b7595c3d2e94df7416308fa2ccf5ae8832137c76d2e9a8b02e6ed2cb2d92e2f7
GET /turnstile/v0/b/22755d9a86c9/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://coffrman.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 15 Nov 2024 12:47:40 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 28 Oct 2024 19:08:47 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8e2f59e8482156a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/559443506:1731670846:6d413Ux55wtwerla_65Ki6fXVSGenfMfwH92xFDCnbY/8e2f59e8d8fb5691/qDuSyZreHOD9WHDNrwFZLzdWbQ5_x5KMovZTXPqh6ao-1731674860-1.1.1.1-dWKeMrxcR28GjROlJFcAHAMJKribFX_I64fMqg7oI6EabZixuFT8bgSwIqIB_Wbt | 104.18.95.41 | 200 OK | 137 kB |
URL POST HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/559443506:1731670846:6d413Ux55wtwerla_65Ki6fXVSGenfMfwH92xFDCnbY/8e2f59e8d8fb5691/qDuSyZreHOD9WHDNrwFZLzdWbQ5_x5KMovZTXPqh6ao-1731674860-1.1.1.1-dWKeMrxcR28GjROlJFcAHAMJKribFX_I64fMqg7oI6EabZixuFT8bgSwIqIB_Wbt IP104.18.95.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size137 kB (136684 bytes) Hashbb36f16fa7b7757ead34c5730bae138f 8e84c0cc708e0939c384fbfe6097e306679452bd 71b1e19929503fef8c71aa9c88552c94d39a1d33aa0e10d1679682739014767c
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/559443506:1731670846:6d413Ux55wtwerla_65Ki6fXVSGenfMfwH92xFDCnbY/8e2f59e8d8fb5691/qDuSyZreHOD9WHDNrwFZLzdWbQ5_x5KMovZTXPqh6ao-1731674860-1.1.1.1-dWKeMrxcR28GjROlJFcAHAMJKribFX_I64fMqg7oI6EabZixuFT8bgSwIqIB_Wbt HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxv5w/0x4AAAAAAAyqY9aGCvMOiI9O/auto/fbE/normal/auto/
Content-type: application/x-www-form-urlencoded
CF-Challenge: qDuSyZreHOD9WHDNrwFZLzdWbQ5_x5KMovZTXPqh6ao-1731674860-1.1.1.1-dWKeMrxcR28GjROlJFcAHAMJKribFX_I64fMqg7oI6EabZixuFT8bgSwIqIB_Wbt
Content-Length: 2845
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 15 Nov 2024 12:47:41 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: onOJ0zAF6D4BZZK6yBmVkxxkSdDpYvbJ+AHimEB7FdlRRnZZhpzrGdfExRGk5hfBvwYMc3LbDPO0cSYlY0jirlKJsSxXHHnRLmnrmalx919xJK5P+ZIFAL4TEDmrJ/Gnyz0Pa3bQQg+qPkXOh3vpf+yQy5sv5Ww8tY8hgqVzx8uh+5y/yR4e3OmpE8mWzAO6O5QGWgjb3rPu4g6wIxx3vKWlHAkOWmKSgKaragpKVEpID8aKua2iVUd7C4YHQiItYQm84ztWLX1HFdI5OpZglgtgCCfg0HZMGR2z8yqtTQD00fEMBFkJgwUamHIj7iK5OjO2aavSVhzq2VTcoWWEC9tA8iqCLDY0/zKr3bgoSrXs8F67N7w1gHQoM3ZlrOGCmuFt8vdEq8oxMWXTeL1U7y3DC7big6igfDYFWkccyR8SOi5csGN5n2oMVUEDsCrL+b95H/uzLp6NoYlb/Q==$LpsZs9c7qI8JSrYL
priority: u=3,i=?0
server: cloudflare
cf-ray: 8e2f59eb1ad65691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|