| icemoon.s3.amazonaws.com/control_ikb.html | 3.5.21.110 | | 3.4 kB |
URL icemoon.s3.amazonaws.com/control_ikb.html IP3.5.21.110:0
File typeHTML document, ASCII text, with CRLF line terminators Hashf0ee275fb434899bd7fbda71858e9061 2086cfb98872599b18ce6e73291310b0b34ca852 ca803db0f20f7b905d7ce2f1e8dec896b2cde64b39370dd54fcf19bfc1c563a2
GET /control_ikb.html HTTP/1.1
Host: icemoon.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: IqAU0lckXdWdLrrx3M93BjnSkKgs6K+cd54hAUWgV21BZOTi9A8wWwWx9iir/lsIPSUgempkD3Weq072d2jJXA==
x-amz-request-id: AMMACQJGKV01ES6D
Date: Fri, 10 May 2024 15:51:43 GMT
Last-Modified: Thu, 09 May 2024 06:25:24 GMT
ETag: "f0ee275fb434899bd7fbda71858e9061"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/html
Server: AmazonS3
Content-Length: 3405
|
|
| challenges.cloudflare.com/turnstile/v0/api.js | 104.17.2.184 | | 0 B |
URL challenges.cloudflare.com/turnstile/v0/api.js IP104.17.2.184:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 15:51:44 GMT
content-length: 0
location: /turnstile/v0/g/1b3559406bc8/api.js
access-control-allow-origin: *
cache-control: max-age=300, public
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17a63b7c56bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| donclion.top/_duraguard_oxy/?login=&page=null&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null | 104.21.13.108 | | 32 kB |
URL donclion.top/_duraguard_oxy/?login=&page=null&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null IP104.21.13.108:0
File typeHTML document, ASCII text, with very long lines (1847), with no line terminators Hash71f735f917a7fbb9410f465d607b4e40 50b8ea5c87de73399b18fda62cf7509d07df4946 311336d02e7cd94cc017e129c277f95be8da36830582245981a9b6b456e08beb
GET /_duraguard_oxy/?login=&page=null&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sorlebae.click/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 10 May 2024 15:51:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JaNtF2SnERYMjCBiWU3C%2F3cbNoN8RD35k9xThC%2FrDnrV76tdGDUFzlnd8qSF%2BkvAJrTxF7%2BZAuezvGKlKa1iA4w2oW2MfhUSKWAhoRW99qmitDF%2F%2F71DvGtildk3yXI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b17a3bf170b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| donclion.top/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.13.108 | | 0 B |
URL donclion.top/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.13.108:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 15:51:44 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aEymyVnCDo4Cffd6tIPHDX5U%2BKJV5Q767cw4JMB4%2Fvf3DsXoOUUaFc5x9m1b4jhFFQxAfrm473iBlI4rllnHiRj7epao4xlp%2F9PajLWbsxHCOwtb0T5ArD2%2BlnW%2FA4s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17a7eabbb4ed-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:0
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/m2jnl/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:44 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 881b17a8ab311c06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=881b17a80a421c06 | 104.17.2.184 | | 120 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=881b17a80a421c06 IP104.17.2.184:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size120 kB (119938 bytes) Hashd655f90f7b493fddfaf24ca66c027fec b1781684719a11820fe5634e677402d444f8a9f2 cf91b471408cac62130b999e404932b0636e1e2c45909ba3c260fceda9174b53
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=881b17a80a421c06 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/m2jnl/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:44 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 881b17a8ab351c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/881b17a80a421c06/1715356305068/5c8ea8b478fc62fb39429072be3d9088708483d6193483079b1315198c0e6a49/ROtI6veWF9OMn5U | 104.17.2.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/881b17a80a421c06/1715356305068/5c8ea8b478fc62fb39429072be3d9088708483d6193483079b1315198c0e6a49/ROtI6veWF9OMn5U IP104.17.2.184:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/881b17a80a421c06/1715356305068/5c8ea8b478fc62fb39429072be3d9088708483d6193483079b1315198c0e6a49/ROtI6veWF9OMn5U HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/m2jnl/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Fri, 10 May 2024 15:51:45 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gXI6otHj8Yvs5QpByvj2QiHCEg9YZNIMHmxMVGYwOakkAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAwJNLx-F--HQ4G6w81Lqhm55Wqle9iE4E64E37YL7QkK_ylJ-Dsmf1v3knq_MpBi8JncpUaWMssdL2Aha6xVtTuit-n3zEDZCW0VR_73N-Mc6DxdptQ_jsmIxis7apwux2f5L0gN0Z4K9C36tRcIL-chm-gijHvxrbhcCYusNwrgAlFaiqNWBqxKTiuPduHX4CNzNb7BAiNPz7ppY7Xn1WjmxSB-BaqSVLCYtDy-Mw41UBzE3QEcVUcRH9er-MksFvohzvhlnTTonFaMyAUYx3d_uCdDannmVQhRsm-aJs_P_GGe1TX3e9g5Sy-NmhGrro0kncbPlfTwFxa8SwJ5-8QIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIFyOqLR4_GL7OUKQcr49kIhwhIPWGTSDB5sTFRmMDmpJABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAi_Bv1vvWWnyuOfVJgRV-AQLxEJECUUmMRrMnYz-gJA-oMd79ajvP3atoTZqB_EsZIq7SMmpbCRFhPolqzIrtXh7AF1Q-ZWY2RoRVRgKr7d6iJMZ49iZUmbz837eqBZJrEMuXftZmY35str5sb0GjzklF8z_hcQJC9vancYXncsYoiMDaROW0tLwSQA9BGfbmA6GlbVj4XH8DH19cKifxmO6RlIPPKlL1KmZbrRakkpuqvJO2-x1Zc2S5GCpponuvQTqJQH8Ud9loZLI75e-Xa9KAUNtBTM0t9WSEsv8cSJLV1BPBVTy1lOnwghofw4fqmlYv6CXClzAUqWouSTJ7uwIDAQAB", max-age=20
server: cloudflare
cf-ray: 881b17ae19601c06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1721309538:1715353946:sgr1v1JJSuZYi5Eh1guiyQVea_IEmnP6F3sRKqRa6Yw/881b17a80a421c06/0a7c8688d6ff869 | 104.17.2.184 | | 88 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1721309538:1715353946:sgr1v1JJSuZYi5Eh1guiyQVea_IEmnP6F3sRKqRa6Yw/881b17a80a421c06/0a7c8688d6ff869 IP104.17.2.184:0
File typeASCII text, with very long lines (65536), with no line terminators Hash7e5c7d985375410fb6a65512b0610979 6196f17a78fb4c47209bad70dcd398e8bfd72f8b 727f48d4313a37985b2f3980bba45b5fda33a83b2b26a24659c480cbe4ea480d
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1721309538:1715353946:sgr1v1JJSuZYi5Eh1guiyQVea_IEmnP6F3sRKqRa6Yw/881b17a80a421c06/0a7c8688d6ff869 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/m2jnl/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 0a7c8688d6ff869
Content-Length: 2763
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:45 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: Z69GqsL8qETZo50EdBKOEy0Fg22bWek4Fbgi3EsMF2GM5jV4h3pOF5khSebE2DhhdqemtpAHxTaOSUm2V6RSXCPMQyMzWYfx64afhVRWctsITpPesgCvL0rfP68AULKGrCdI7cpX+pQmmoxiH2e51aR0Zo0WWvQix/06G3m6bPZL6vsIevZ+KJecvsRcfmP7cTtNjoC5mSmkDtwkcLspvWenT1WelN5w4nb9rgNnsGsVufP66sSpIJSN0FIZcDSpxlw1qMdj5aJhofdxItGy3C8Rz73UMIYYirhw4pb2jgqLhVDCuQ53w2Tg/pG/DZc+yha0ZoKYZDEtcYSYkk3y+iHC6XozA281bBtzdUm5gArcBhaY63O7XTckXKM1wLKMWLubKTx7/3zV8iR6ciZSRhq+Mc5GDNGpUw5yE38g2vQVjKD0ZJXbAuKtJSMpGwd7kkq/9/LSiX38DS1XHNeOgshR8s7ghX35YEyBSAKRnJI=$p/B3UU8ZS11gcb23BZybkQ==
server: cloudflare
cf-ray: 881b17aa8d6f1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.js | 142.250.74.170 | 200 OK | 85 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.js IP142.250.74.170:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text Hash2849239b95f5a9a2aea3f6ed9420bb88 af32f706407ab08f800c5e697cce92466e735847 1fe2bb5390a75e5d61e72c107cab528fc3c29a837d69aab7d200e1dbb5dcd239
GET /ajax/libs/jquery/3.6.0/jquery.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 85110
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 05:10:26 GMT
expires: Sat, 10 May 2025 05:10:26 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 38481
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| donclion.top/_duraguard_oxy/functions/spinner.gif | 104.21.13.108 | | 46 kB |
URL donclion.top/_duraguard_oxy/functions/spinner.gif IP104.21.13.108:0
File typeGIF image data, version 89a, 48 x 48 Hashbab0ad7ce20e911217791c00bcd4e35b 0822ac44951def4349090998b9ecb153128f03d5 bd750f550a5db2901c0bd52ec564da6adfbad55562b862b1f125d96d9d62b026
GET /_duraguard_oxy/functions/spinner.gif HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/?login=&page=null&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:48 GMT
content-type: image/gif
content-length: 46341
last-modified: Wed, 07 Oct 2020 17:45:56 GMT
etag: "b505-5b118499e5d00"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hybp8FvDce4hbV4vlroX0N5Wj7z4SBLb%2Ba%2B5I8r%2FuOvi%2FfJstWIBmXgizZ0vQJhV%2BCP7vV6YjOO5H84dtEK8HYoR8Yuy1xn4UGobLMmXrVCzTAYaWXzjEd0ZDlQBpOo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17bbff2db4ed-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sorlebae.click/control_ikb4/?login=&page=null&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null | 172.67.217.47 | | 2.8 kB |
URL sorlebae.click/control_ikb4/?login=&page=null&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null IP172.67.217.47:0
File typeHTML document, ASCII text, with CRLF line terminators Hashb2fd167f49c912d99460c26289adb487 4a4007fa729dd330e57ccc39fcf320e9f28d838f 3b0c566da558d0cecb7a08a49ffd2905ff2af60dcca6dd0e0b5320b0b66355fc
GET /control_ikb4/?login=&page=null&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null HTTP/1.1
Host: sorlebae.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://icemoon.s3.amazonaws.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 15:51:43 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=foDwZ3tpN0igEIv2nRtZI6G13hJpFVZxOkM%2BPiCO1n3qhddFIyKaNDVlA8K16a%2FGfa46FZGP%2ByfiwH6KSMOnjZsy9T4REfZZQ%2BM0T4lqLYesJOLRqk5zll5C%2BtorVmaTpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b179c598c568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| donclion.top/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js | 104.21.13.108 | | 7.8 kB |
URL donclion.top/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js IP104.21.13.108:0
File typeJavaScript source, ASCII text, with very long lines (7850), with no line terminators Hash17afa8fdc3fc596956de90c481edae5a 9bda3c90ea972c7434170f1464035c9415cda7a1 12ba80754e581f8813fe7368ed3637b6c4dfb335bc01dd35e798e19704e19940
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:44 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jEDXImNRfiP6WqzPWG%2Bfo9mnNPpNKI5NWWSAWl9DdmTNblKLqR%2BhKZ00DlCJX0eEA%2FvFBCFNClC6r3JVX%2BNA6SIOPeyY3BARMjkhzIAZ9RYAvC01%2Bmvz983Ib%2F5%2FXog%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17a80ad5b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/s2/favicons?domain= | 142.250.74.132 | | 1.6 kB |
URL www.google.com/s2/favicons?domain= IP142.250.74.132:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1136) Hash4c897ae556077ac19ca558718789ba76 a673a81ea0a3e7a2fdf759a014a608df15efecbd 2d841defe31ddac7bb79861466085b6a632a04ea330532a98d8180f7dbaff68f
GET /s2/favicons?domain= HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 10 May 2024 15:51:48 GMT
server: sffe
content-length: 1580
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.js | 142.250.74.170 | 200 OK | 85 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.js IP142.250.74.170:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text Hash2849239b95f5a9a2aea3f6ed9420bb88 af32f706407ab08f800c5e697cce92466e735847 1fe2bb5390a75e5d61e72c107cab528fc3c29a837d69aab7d200e1dbb5dcd239
GET /ajax/libs/jquery/3.6.0/jquery.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 85110
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 05:10:26 GMT
expires: Sat, 10 May 2025 05:10:26 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 38485
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/css/all.min.css | 104.17.24.14 | 200 OK | 10 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/css/all.min.css IP104.17.24.14:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (58392) Hash76cb46c10b6c0293433b371bae2414b2 0038dc97c79451578b7bd48af60ba62282b4082b 876d023d9d10c97941b80c3b03e2a5b94631ff7a4af9cee5604a6a2d39718d84
GET /ajax/libs/font-awesome/5.13.0/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 15:51:51 GMT
content-type: text/css; charset=utf-8
content-length: 10301
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-e4d2"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 56169
expires: Wed, 30 Apr 2025 15:51:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=moVUhyGC%2BOJrrrjZoCohVYPp649L8cbIa1%2BSrK8jlT5H01s18b7ju0VwoSoI11JXkFabXDd2JMjRkf9Vevit%2B0jGwwRMpz2kmYEiaCj9WyWHUFv8QGJrrfN6sAAc7r9RF9pRk6Zm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881b17d52d36b4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/favicon.png | 104.21.13.108 | 200 OK | 43 kB |
URL GET HTTP/3donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/favicon.png IP104.21.13.108:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typePNG image data, 1201 x 1201, 8-bit/color RGBA, non-interlaced Hash61b2ad5f71e3b5aff667399326f629c5 73352c23c4ef36d897982b29dbee57bf0c1a945d 601bbf7565cf796dea3733ac80ee6f81421d820138f192c9c9b7df9859deffb5
GET /_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/favicon.png HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:52 GMT
content-type: image/png
content-length: 42948
last-modified: Fri, 25 Aug 2023 21:38:48 GMT
etag: "a7c4-603c62b807c63"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9Mc5k8qR2sehIoP%2FXufsVFPl07vhP4MhGy8drxrevREtz2CTezWRFO9EJb1KohigHth3MaDbbzgajW4jv%2BO%2BbIrcun0ODPbfrHqdFHNqX0jX6JAlg61f9NzuTZhFe1o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17d50984b4ed-OSL
alt-svc: h3=":443"; ma=86400
|
|
| donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/index.php?login=&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null | 104.21.13.108 | 200 OK | 15 kB |
URL User Request GET HTTP/3donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/index.php?login=&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null IP104.21.13.108:443
CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash459791e7527c3d1e51906a92459091c0 f3136b9b65089df7155f78603bc541cec92669fd 3411080797f8646559dd8b8849e520f9d88be1d25b8483569b00770da7a56424
GET /_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/index.php?login=&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/?login=&page=null&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:51 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PIa4p4ivCEfDoEQODbvs%2Fg8qhBAXuf34mrUKnOIRHaphJURIy7is%2BsCOYdnqyyivjm8Ux4q2u3CyvuZCts2EHUQVbTqEVyuRzsOTLegdnL01B23zvr5RSUFWadK6mPw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b17d2fe9cb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| donclion.top/favicon.ico | 104.21.13.108 | 404 Not Found | 2.1 kB |
IP104.21.13.108:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typeHTML document, ASCII text Hash067f9234d63c75eff3fb973e5dbdc85a 7a2007d62d760aae7085b0fe50e6e21dbd84acac bc3649a6a5a489b8b2d63204e091312c407c0642a10d81e5a58515ab88b752d1
GET /favicon.ico HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/?login=&page=null&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 10 May 2024 15:51:44 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=REh%2Frw1CRZYXuRvlR5%2BlOYhbKPN7Ab0pv4IXHHaGXpippVRnDz3P%2BWY40SDSYR5gcXI5lDncKvSDCwAQo7GRAqS7a1Ugc%2BOa6tPmaRfhDUOijkCJMk9jSlmZc%2BOtYkg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17a7eab3b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.gCTwf0GZEAw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoP-ZGN-qHHxi5dM0EEICNP69DsLw/m=el_main | 142.250.74.42 | 200 OK | 75 kB |
URL GET HTTP/2translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.gCTwf0GZEAw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoP-ZGN-qHHxi5dM0EEICNP69DsLw/m=el_main IP142.250.74.42:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (1613) Hash416b0fc07995be8d2b5b67aba46171b0 dd355df12143ce031c19ed0b2b8bf512b6c7d5f1 99a05e6c4657850662d766688752248659646b186aff567879d5d159812d1904
GET /_/translate_http/_/js/k=translate_http.tr.en_US.gCTwf0GZEAw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoP-ZGN-qHHxi5dM0EEICNP69DsLw/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 75088
date: Fri, 10 May 2024 15:51:53 GMT
expires: Sat, 10 May 2025 15:51:53 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 12 Nov 2022 06:10:12 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/lazy.min.js | 104.21.13.108 | 200 OK | 35 kB |
URL GET HTTP/3donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/lazy.min.js IP104.21.13.108:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typeJavaScript source, ASCII text, with very long lines (3895) Hash31981ce3478934a1cda1995278b40dff 98bd72fbd634f5be64bd3aa325e58e6241520f87 5992e78ca3ce1b9be202bbcdef3a32d9ebd6a3609bf039a21b379b5f77076f7b
GET /_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/lazy.min.js HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:52 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 06:07:22 GMT
etag: W/"170eb-5ee3137e33a80"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z2DJtab%2BtyKoo5aBnj00C3dtRKsfUBMV%2FZa2TMGUgOgtPzeJjaBQKk%2B5EnCMAPPJukwdelwlM90X3EmvEYTDziRsM31B4T%2FG%2BlJ7TlfQVYeyBzuYCG1UG%2FiOQ5TWvvw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17d4f976b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/bootstrap.min.js | 104.21.13.108 | 200 OK | 51 kB |
URL GET HTTP/3donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/bootstrap.min.js IP104.21.13.108:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typeJavaScript source, ASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/bootstrap.min.js HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:52 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 06:07:22 GMT
etag: W/"c75f-5ee3137e33a80"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wA%2Ba4bbmFX4kmItPjHnBUm5WsL79uVhdIii%2Fo5BvzU%2FyJ%2Fq7CG0X%2BT1gQn2NbWznALyzj9MSdpOiZV4Cmy9r6x%2BGaxwHwNMRgDMzXibtcDQEGnE%2FqoehicRykAK41bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17d50991b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null | 104.21.13.108 | 200 OK | 5.7 kB |
URL User Request GET HTTP/3donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null IP104.21.13.108:443
CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typeHTML document, ASCII text, with very long lines (6355), with no line terminators Hash62bf5f167e0931383114de76642530ad 611a3f4f2311bcc6fc1522734196ac01e5270bdc f05f818fb9b8a12e90a02bbdb2841e50469bdd72344d95ee08c8c28d126e9179
GET /_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/index.php?login=&request_type=null&page_bg=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:51 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NGlvE6DYdYS6IbJmvD54ICMQueHwRSR5LhmzNLNCTHFzvg%2BkRX%2FdQSkA6%2BEnPIXu%2Biud4sNiTbH0TRILsKcJ2dtk1nppeASVuZu%2BDxlQJSbOa%2F9AivuI%2BpkSGPpj1%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b17d3f80cb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/element.js | 104.21.13.108 | 200 OK | 76 kB |
URL GET HTTP/3donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/element.js IP104.21.13.108:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typeJavaScript source, ASCII text, with very long lines (560) Hash0488b0a11637f1cbf4c98b1eb5da3fc6 0af19be63182dec40cc1ac5e44ed3931dcd9e905 ba50c8f42aa8a0da326900248ebd80ef8eecece26db4aafc47042457bbd14529
GET /_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/element.js HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:52 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 06:07:22 GMT
etag: W/"12812-5ee3137e33a80"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0QB%2FQJytAYqxkgmSR7TzT8xKil9QM3HxcMKXdFng1hKOrO7IbdhzmEo3QA4g8phdgNb3cJcaXYwpNdgkq3q3DsnS%2BXRwY5HMYLlIRe3g8ZUCJGXd4XWFNU1TEkbBb7E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17d5099ab4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/jquery.min.js | 104.21.13.108 | 404 Not Found | 299 B |
URL GET HTTP/3donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/jquery.min.js IP104.21.13.108:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typeHTML document, ASCII text, with very long lines (310), with no line terminators Hashcf6b346918b0688cd9e32a68d6c7ce28 c8a4199208fa75708db0ca3815862c25ad2f3bb4 e4e55e16d36e03a53008c3307d81d7acec83c2306ba1c63bc545b7661ed5f22c
GET /_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/jquery.min.js HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 10 May 2024 15:51:52 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BGEcFs9sK5m9sTdWT9cHSt6m%2B06DKbHc%2FMoiIVFnEsBE2jW1oEbgpCIvsxSNqlLBd0NS4ZTI9gX1A969%2BqrxhjB4NRMJ%2FjT9Pgjb0fE6eOgtGGJQhi54KCpuGmrid0o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17d4f971b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/style.css | 104.21.13.108 | 200 OK | 452 kB |
URL GET HTTP/3donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/style.css IP104.21.13.108:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typeASCII text, with CRLF line terminators Size452 kB (452452 bytes) Hash9e4c341286f64a30098a5d74a2b8467d a437144b96f3ce5f625b2d5f972ee945f042305e 4cf0ca7b90144acb209b510a8d73dffd5197caafa83f545a15cc6071c6933acb
GET /_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/style.css HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:52 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 00:47:16 GMT
etag: W/"6e764-5ee54facdad00"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jb1%2F5BR6WS%2FUE3d2c7a1%2FAGT4tKb%2FGYR0DKPyie36eRzQJFwQIye%2FtMp2hUYKyrgKQ53goAmZwwLhmgD1r4Ug8tFBmN2Jla0aMNgFKPGW%2FzCt%2BSw7oUjvIm%2BnuxXslI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17d4f973b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| translate.google.com/gen204?nca=te_li&client=wt_lib&logld=vTE_20221115 | 216.58.211.14 | 204 No Content | 0 B |
URL GET HTTP/2translate.google.com/gen204?nca=te_li&client=wt_lib&logld=vTE_20221115 IP216.58.211.14:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen204?nca=te_li&client=wt_lib&logld=vTE_20221115 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
content-type: image/gif; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 10 May 2024 15:51:53 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-Ja1jhn4B2jz8zqKaj184Jg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
reporting-endpoints: default="/_/TranslateApiHttp/web-reports?context=eJzjEtDikmJw05BicEqfwRoExELcHDNbf25kE_gx5WScklJSfmF8SVFiXnFOYklqcWpRWWpRvJGBkYmBqYG5noF5fIEBAKIDFRQ"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=19.SE=cJJq17dfVecKZjKY5zd6kHTMw8lKXxp6-xwZZgC5Sk6Bj8gU1RakX6kahrhvziTz4HchYG4ZEElMFIX56xzaAdy8s2Xze7oLUn3T6mkdN1V8qPr-wO2I-D1Z0oOaVMnAN1B9ZFxM_uhhOZGOFLJKoj-x-IF1iJhoxjZp-mHPfjw; expires=Tue, 10-Jun-2025 08:10:11 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/world.js | 104.21.13.108 | 200 OK | 7.2 kB |
URL GET HTTP/3donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/world.js IP104.21.13.108:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectdonclion.top Fingerprint6A:DB:BB:36:1E:73:2D:C2:C5:1E:1A:EF:92:4B:9C:EE:8A:EF:BF:38 ValidityThu, 09 May 2024 12:26:34 GMT - Wed, 07 Aug 2024 12:26:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8147), with no line terminators Hash168ce4bb8d0ba0c08bbd4c6ff24d273e 9a25927fc93a26fa817da6f6ea8dd25db83d7dca 981923cf5da0541987755036c02192e5851f8dfd8cbdafb045af2a5e2000457c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Generic phishing | urlquery | suspicious | Suspicious - Anti-debugging code |
GET /_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/resources/world.js HTTP/1.1
Host: donclion.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=1r22Wa460DTeVmN.yNJ5mFMWCZFxBGkrjrIJd1zxSBc-1715356304-1.0.1.1-NBnlKNUwK3ijW.c3AlghZyrSuWE4nFdU1WrZI4o2aAm0fzaAiOerkv164Fwe7Hr7jaAA690GdOt754.mZKhk7g; captcha=1; PHPSESSID=ldemukbbtu3a50ggahb7inquir
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:52 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 14:52:47 GMT
etag: W/"1c25-605a34ba79958"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L5OUo%2F3GDN1HBKFJ2pgESgmuTC9n95p1p1bOEE91vJwuO0HTFcUfN5ljlqW6x1SC%2B7dN%2B9Ew25fJ3uKcPKZv9ZuRad2X5Ne8OTxNndJgMXhXCzs5AJEbqsuZs5tb6Eo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b17d50996b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/webfonts/fa-regular-400.woff2 | 104.17.24.14 | 200 OK | 14 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/webfonts/fa-regular-400.woff2 IP104.17.24.14:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 13584, version 331.524 Hashc20b5b7362d8d7bb7eddf94344ace33e 260bb01acd44d88dcb7f501a238ab968f86bef9e 6a8c8e9e1e7f692c21af1956de163f3d026778e6449fe93a09a671847ca1ae65
GET /ajax/libs/font-awesome/5.13.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://donclion.top
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 15:51:52 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 13584
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-3510"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 211175
expires: Wed, 30 Apr 2025 15:51:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H5A6ySkFmM4Zq7%2BmCBmckdBKUwENeiAtEM4UxRq97DT9XcJ4%2FgLu351TzYsEDlbFlknb2Qkj5rO11loUA0DeNl1EFBPfFdkbUuoM4sxn%2FDaV%2F2GYsHWPk7r8GO5jLknEkggg%2FSmW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881b17dbcc66b4ed-OSL
alt-svc: h3=":443"; ma=86400
|
|
| translate.googleapis.com/translate_static/css/translateelement.css | 142.250.74.42 | 404 Not Found | 0 B |
URL GET HTTP/2translate.googleapis.com/translate_static/css/translateelement.css IP142.250.74.42:443
Requested byhttps://donclion.top/_duraguard_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://donclion.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 10 May 2024 15:51:52 GMT
server: sffe
content-length: 1602
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|