Report - konkur-farbi-ua.eu/ditin/auth

Report Overview

Submitted URL
konkur-farbi-ua.eu/ditin/auth
IP
104.21.39.27
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-07 11:53:19
Access
public
Website Title
Telegram Web
Final URL
konkur-farbi-ua.eu/ditin/auth
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
konkur-farbi-ua.eu	unknown	unknown	No data	No data	12 kB	973 kB	104.21.39.27
venus.web.telegram.org	47739	2003-12-15	2017-01-29	2024-05-03	1.3 kB	1.6 kB	149.154.167.99
kws2.web.telegram.org	49675	2003-12-15	2021-06-23	2024-05-06	1.7 kB	654 B	149.154.167.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	konkur-farbi-ua.eu/pageSignQR-55e34e76.js	5.6 kB	2023-12-10	2024-05-25
Pretty URL konkur-farbi-ua.eu/pageSignQR-55e34e76.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-25 16:45:49 Times Seen166 Hash 908a426b097ed038bf16088bb70c4d0a 51b080072f896e324ba8a2229e9303364354326d 96e7ecf00e95236690fe564fcef37e9a3f856d7731085dd856eec61a50720216 Loading...

	konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js	290 B	2023-12-10	2024-05-25
Pretty URL konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-25 16:45:49 Times Seen206 Hash cd6f232e1ba73081b1b70f3e1a14648f 7feaacf5309dc73289c5047b81c7c5781fc6f786 1b58f13a4a6a472ae93c91076b73ff754e8f7d4b3573764aed63a13e184d6fb1 Loading...

	konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js	66 kB	2023-12-10	2024-05-25
Pretty URL konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-25 16:45:49 Times Seen183 Hash 9bc1dca9d012e6cc87fc199909f9667b b340b1309516f10074080f5fcec5593101022612 d7d3232bf40cc555ad219d6b688afe4b2427e7fa00ae719e5f7fa4152dc0857f Loading...

	konkur-farbi-ua.eu/countries-5301fc59.js	24 kB	2023-08-29	2024-05-28
Pretty URL konkur-farbi-ua.eu/countries-5301fc59.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-29 04:08:58 Last Seen2024-05-28 20:42:34 Times Seen435 Hash dff89d22ad674afafcc150af3a75d51f 3e103a40939f3e33f2ed2d2ac340dbd049b8dca1 7b4921656e143af35794b7fc9d4d23580fa232ffcf179bc8569317e424032d80 Loading...

	konkur-farbi-ua.eu/lang-9ff1b05a.js	102 kB	2023-12-10	2024-05-25
Pretty URL konkur-farbi-ua.eu/lang-9ff1b05a.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-25 16:45:49 Times Seen128 Hash 4230df4a8128c30f22af1783386cae6f a5716da6085a7a07fc430f3f410bb36c9e54ac34 52113907183285220d884b4a99c8ee805b977e6b0039992d95005db0988187e0 Loading...

	konkur-farbi-ua.eu/button-1a8a4b7d.js	8.5 kB	2023-12-10	2024-05-25
Pretty URL konkur-farbi-ua.eu/button-1a8a4b7d.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-25 16:45:49 Times Seen159 Hash db2fcb1faf0ad3210f38a9dbeffebfbf a248f132d7662f64581bbd4a05756283345b6261 c8fff421d8b23fd9ddbf046f1c63d411ab15ee745fadc28bf1851d156514fae8 Loading...

	konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js	357 B	2023-10-29	2024-05-28
Pretty URL konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-10-29 15:08:50 Last Seen2024-05-28 20:42:35 Times Seen232 Hash db363d8053c3aa976b2e2162860d6932 fef1a8b065868caacf63184d97c10aaf10ec6a28 62ba5e078c4aaa3ff5c8c24cb8216de89afaa7dd10bfd364a0396913bbd34663 Loading...

	konkur-farbi-ua.eu/putPreloader-ae29ef38.js	699 B	2023-12-10	2024-05-25
Pretty URL konkur-farbi-ua.eu/putPreloader-ae29ef38.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-25 16:45:49 Times Seen153 Hash 259f536476625e11ffe9d1f10e96e242 78be832ca3954ee6c4cadec81a4ddb54650843a0 34e349140e7a6b3a220786219a85623d17cd6ad2c1239c1554a581ba7c72307c Loading...

	konkur-farbi-ua.eu/asset/jquery.min.js	90 kB	2023-09-12	2024-05-25
Pretty URL konkur-farbi-ua.eu/asset/jquery.min.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-12 10:04:29 Last Seen2024-05-25 16:45:49 Times Seen203 Hash 1db92b83313d6fbaf76fd364688c8e6c 90c3cf0d1af00de7424a6b4b8f7f41b1200d3964 3ca4587ad13382ba7ede987f96682cc928589f037b1403fb43bd8ffc430809da Loading...

	konkur-farbi-ua.eu/index-cfdc21d6.js	124 kB	2024-01-19	2024-05-25
Pretty URL konkur-farbi-ua.eu/index-cfdc21d6.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-19 04:59:27 Last Seen2024-05-25 16:45:49 Times Seen105 Hash a7486090a1e3aacc43501b1df0e3a3d4 a9236c75a8dfc3d7fb7da9ed71ebf53c8e78af08 102f0d983e9bbdc33b42c3da07fd98000f13d8c1671b5648c55a3c387e41c5b2 Loading...

	konkur-farbi-ua.eu/langSign-66e8939d.js	1.6 kB	2023-10-29	2024-05-28
Pretty URL konkur-farbi-ua.eu/langSign-66e8939d.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-29 15:08:50 Last Seen2024-05-28 20:42:35 Times Seen164 Hash b1fb189d8c6640ca34096506a34baaa4 cb811e89f3c08f1d90eda051a29760fa1165e4d8 7285632faf1a90db84b6da17536028924fd77630408e7ba20172637dd2b7fe32 Loading...

	konkur-farbi-ua.eu/page-49e139d4.js	10 kB	2023-12-10	2024-05-25
Pretty URL konkur-farbi-ua.eu/page-49e139d4.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-25 16:45:49 Times Seen213 Hash 6ccaefefec5a957c2d80fe5f97c8098b bf1eda880c524c21f78ff0424592f81fba4214ab 65659681146410adb22da9de126db5da27eb6032631d55c1c2bedebabd8e8f5f Loading...

HTTP Transactions (30)

	URL	IP	Response	Size
	konkur-farbi-ua.eu/index-cfdc21d6.js	104.21.39.27	200 OK	55 kB
URL GET HTTP/3 konkur-farbi-ua.eu/index-cfdc21d6.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (63446), with no line terminators Size 55 kB (55001 bytes) Hash a7486090a1e3aacc43501b1df0e3a3d4 a9236c75a8dfc3d7fb7da9ed71ebf53c8e78af08 102f0d983e9bbdc33b42c3da07fd98000f13d8c1671b5648c55a3c387e41c5b2 HTTP Headers `GET /index-cfdc21d6.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin/auth Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: application/javascript expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache vary: Accept-Encoding cf-cache-status: BYPASS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bL6ZFRnYkfVmYLtDLMHXSfViTeyy4O8OB5LzpOLEJSqkNMpMJhmc28ohl7s3TUAQ5ksSHalb9J12IAxBn6ziL48oWZBgGXX2enDuzgS3yvKfwJor6HlF6K3MwGTDqQWAZ%2FEnVKw%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019808f27131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/img/favicon-16x16.png?v=jw3mK7G9Ry	104.21.39.27	200 OK	1.0 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/img/favicon-16x16.png?v=jw3mK7G9Ry IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced Size 1.0 kB (1012 bytes) Hash e3ce05eb00b3215df220efaf0fd06e21 d1533966f79dc2984c34317035f31cf3c91298c9 0d67b7e8ea46e3c959329a0e79a8c8b236187f452edc7049524245e4aa6bee21 HTTP Headers GET /asset/img/favicon-16x16.png?v=jw3mK7G9Ry HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin/auth Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: image/png content-length: 1012 last-modified: Thu, 07 Dec 2023 12:00:12 GMT etag: "3f4-60bea35bb8b00" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hqnHDHMs%2BbWqU4aXHcDmSIl2oa29Og0tmEh73CyEN2e%2FHJqfk32cqitgPdmEuv%2B6AXvShU2UBXxFxaj71XsSTpKbIdRXsgpDTD6SBQEvGSCI4JMUqmt%2B57bdbCjPdgJsnKkDdRg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8801019bb8277131-OSL alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/img/android-chrome-192x192.png?v=jw3mK7G9Ry	104.21.39.27	200 OK	9.0 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/img/android-chrome-192x192.png?v=jw3mK7G9Ry IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Size 9.0 kB (9024 bytes) Hash 87fecdadac0beb95f9b7c87b3b3236f0 822f92446c0033a32462aa21208efaef1f0d8c3c 25aa724658da8e71f5cc7c35ccbb43075866af5bed964edb09979caace667b0b HTTP Headers GET /asset/img/android-chrome-192x192.png?v=jw3mK7G9Ry HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin/auth Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: image/png content-length: 9024 last-modified: Thu, 07 Dec 2023 12:00:13 GMT etag: "2340-60bea35cacd40" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=167GGFmdwCQr1G9SCJ5TBK%2FJnA765ntkAEo5yTzM32pf0lan80vgVRPsq9tHUYNy2HZUVIQ5P3YX677a3MJtwNRoZk3jmVBnQWMdeI7xK6zteNmafWAHJ0G7s%2BNArMnokTDIW4g%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8801019bb8267131-OSL alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/langSign-66e8939d.js	104.21.39.27	200 OK	2.9 kB
URL GET HTTP/3 konkur-farbi-ua.eu/langSign-66e8939d.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (895) Size 2.9 kB (2915 bytes) Hash b1fb189d8c6640ca34096506a34baaa4 cb811e89f3c08f1d90eda051a29760fa1165e4d8 7285632faf1a90db84b6da17536028924fd77630408e7ba20172637dd2b7fe32 HTTP Headers `GET /langSign-66e8939d.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-cfdc21d6.js Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:58 GMT etag: W/"66e-60bea75456980-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ODJyzv%2FaQ4TFk3dwpqLThLyoGIqdH6gNM0Y2wL0xyBieJOt%2BRnRnyWY6mKPwuNBmwF6SB3wh2Oow0gOI8Eg3vCc4bHLXDEC31BduRn5h%2BUBH%2FLFI6qJ63uwvkMJHJ18Us0AK%2F0g%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019aeeaa7131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	venus.web.telegram.org/apiw1	149.154.167.99		169 B
URL venus.web.telegram.org/apiw1 IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type HTML document, ASCII text, with CRLF line terminators Size 169 B (169 bytes) Hash c2a982d42f89274763eef2a44fe01030 86e6d53f6478cdd0c05611093d9c55a953454af7 d8b55de3a4d5331f3b450a86bb907afe17dc964adca30f39d101a3d55a4a9d6a HTTP Headers `POST /apiw1 HTTP/1.1 Host: venus.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ Content-Length: 0 Origin: https://konkur-farbi-ua.eu Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 404 Not Found server: nginx/1.18.0 date: Tue, 07 May 2024 11:52:52 GMT content-type: text/html content-length: 169 pragma: no-cache cache-control: no-store access-control-allow-origin: * access-control-allow-methods: POST, OPTIONS access-control-allow-headers: origin, content-type access-control-max-age: 1728000 X-Firefox-Spdy: h2`

	konkur-farbi-ua.eu/pageSignQR-55e34e76.js	104.21.39.27	200 OK	35 kB
URL GET HTTP/3 konkur-farbi-ua.eu/pageSignQR-55e34e76.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Java source, ASCII text, with very long lines (5536) Size 35 kB (35062 bytes) Hash 908a426b097ed038bf16088bb70c4d0a 51b080072f896e324ba8a2229e9303364354326d 96e7ecf00e95236690fe564fcef37e9a3f856d7731085dd856eec61a50720216 HTTP Headers `GET /pageSignQR-55e34e76.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-cfdc21d6.js Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"15d1-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dw6GFmwZs7gvJpheapVcrsKNDSTj5K5o%2Bs5zVdS%2FsHVnofGo2Fyd8XT56admbKaPkAaaN1tzq2ktPRvNul1GIGtJBTafyq%2FTvOhaRbNLfbAxRQl3efvFfAIINiUtqwtcua7mQm4%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019be85e7131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	venus.web.telegram.org/apiw1	149.154.167.99		169 B
URL venus.web.telegram.org/apiw1 IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type HTML document, ASCII text, with CRLF line terminators Size 169 B (169 bytes) Hash c2a982d42f89274763eef2a44fe01030 86e6d53f6478cdd0c05611093d9c55a953454af7 d8b55de3a4d5331f3b450a86bb907afe17dc964adca30f39d101a3d55a4a9d6a HTTP Headers `POST /apiw1 HTTP/1.1 Host: venus.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ Content-Length: 0 Origin: https://konkur-farbi-ua.eu Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 404 Not Found server: nginx/1.18.0 date: Tue, 07 May 2024 11:52:52 GMT content-type: text/html content-length: 169 pragma: no-cache cache-control: no-store access-control-allow-origin: * access-control-allow-methods: POST, OPTIONS access-control-allow-headers: origin, content-type access-control-max-age: 1728000 X-Firefox-Spdy: h2`

	konkur-farbi-ua.eu/lang-9ff1b05a.js	104.21.39.27	200 OK	38 kB
URL GET HTTP/3 konkur-farbi-ua.eu/lang-9ff1b05a.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Unicode text, UTF-8 text, with very long lines (14604) Size 38 kB (37517 bytes) Hash 4230df4a8128c30f22af1783386cae6f a5716da6085a7a07fc430f3f410bb36c9e54ac34 52113907183285220d884b4a99c8ee805b977e6b0039992d95005db0988187e0 HTTP Headers `GET /lang-9ff1b05a.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-cfdc21d6.js Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:58 GMT etag: W/"18fbc-60bea75456980-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VZ6uvxR4pGOZDqN7FknPibiH8b54IwkoYrC1X0Degq9gT3qDNITakBAhM6yuWautK%2BZCCQSOQSmV2rwgwHv1vKuV0vCjQuM7JWK%2F4PGy9S2hfHENpfHNLKKsIjbwAcQC3PVxGNY%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019aeea67131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/button-1a8a4b7d.js	104.21.39.27	200 OK	3.6 kB
URL GET HTTP/3 konkur-farbi-ua.eu/button-1a8a4b7d.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (8465) Size 3.6 kB (3607 bytes) Hash db2fcb1faf0ad3210f38a9dbeffebfbf a248f132d7662f64581bbd4a05756283345b6261 c8fff421d8b23fd9ddbf046f1c63d411ab15ee745fadc28bf1851d156514fae8 HTTP Headers `GET /button-1a8a4b7d.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:56 GMT etag: W/"213e-60bea7526e500-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lUi4oPxS1Y0Hr5y5kY6qlKJu57lxcCaPErE1v4hFNSI9uRXwLr0%2F8dPJ2pqn%2BbWNGlUgLcfjN8gIk305tXazFbM7q%2BQ23gnAQO08fxVx1xDxJ0IG0Vx2grCHoeX0KN7IDxVOZ04%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019bd8537131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	kws2.web.telegram.org/apiws	149.154.167.99		0 B
URL kws2.web.telegram.org/apiws IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /apiws HTTP/1.1 Host: kws2.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://konkur-farbi-ua.eu Sec-WebSocket-Protocol: binary Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: r+lgb6szzrusl0yS9rT6MA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx/1.18.0 Date: Tue, 07 May 2024 11:52:53 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: YT9O8xB4tQH9ZxtWpBmhd6x/dcM= Sec-WebSocket-Protocol: binary`

	venus.web.telegram.org/apiw1	149.154.167.99		169 B
URL venus.web.telegram.org/apiw1 IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type HTML document, ASCII text, with CRLF line terminators Size 169 B (169 bytes) Hash c2a982d42f89274763eef2a44fe01030 86e6d53f6478cdd0c05611093d9c55a953454af7 d8b55de3a4d5331f3b450a86bb907afe17dc964adca30f39d101a3d55a4a9d6a HTTP Headers `POST /apiw1 HTTP/1.1 Host: venus.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ Content-Length: 0 Origin: https://konkur-farbi-ua.eu Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 404 Not Found server: nginx/1.18.0 date: Tue, 07 May 2024 11:52:53 GMT content-type: text/html content-length: 169 pragma: no-cache cache-control: no-store access-control-allow-origin: * access-control-allow-methods: POST, OPTIONS access-control-allow-headers: origin, content-type access-control-max-age: 1728000 X-Firefox-Spdy: h2`

	kws2.web.telegram.org/apiws	149.154.167.99		0 B
URL kws2.web.telegram.org/apiws IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /apiws HTTP/1.1 Host: kws2.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://konkur-farbi-ua.eu Sec-WebSocket-Protocol: binary Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: zw5/bBrJ8j0j/sTEXVs8Zg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx/1.18.0 Date: Tue, 07 May 2024 11:52:53 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: zoINyXuJZzY9hgmDm7VMn4ngN5s= Sec-WebSocket-Protocol: binary`

	kws2.web.telegram.org/apiws	149.154.167.99		0 B
URL kws2.web.telegram.org/apiws IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /apiws HTTP/1.1 Host: kws2.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://konkur-farbi-ua.eu Sec-WebSocket-Protocol: binary Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: sd8pTFqfiHdqDxQZaJFoWA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx/1.18.0 Date: Tue, 07 May 2024 11:52:53 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: LKZk78F3tm+qXT8cSk6sQo2ZKtQ= Sec-WebSocket-Protocol: binary`

	konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js	104.21.39.27	200 OK	7.6 kB
URL GET HTTP/3 konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text Size 7.6 kB (7587 bytes) Hash cd6f232e1ba73081b1b70f3e1a14648f 7feaacf5309dc73289c5047b81c7c5781fc6f786 1b58f13a4a6a472ae93c91076b73ff754e8f7d4b3573764aed63a13e184d6fb1 HTTP Headers `GET /_commonjsHelpers-725317a4.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:55 GMT etag: W/"122-60bea7517a2c0-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VdxnLGTXzlzCzcZde1C4Ta3uSNH3ZZV7QZ38Y8XMa7kA0nYwGQCTABllaorWCzjROxSvKda3DbsdPYfHcfFQovpXBKapalWr5q2ZKTc3YkkIRNmEAeQDQbuVdFpNJwFuAx%2BRPEg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019ede5e7131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/img/logo_padded.svg	104.21.39.27	200 OK	5.6 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/img/logo_padded.svg IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type SVG Scalable Vector Graphics image Size 5.6 kB (5628 bytes) Hash 256adedc8580ce9d3e5d41bb6467a8e2 b1dd7a21d38aeabac25762e7c0587f82fd40274a eeb79b0ae5da35d3433de6edeec3a0e3cce9c24f517dbad26ed97e852666c8f4 HTTP Headers `GET /asset/img/logo_padded.svg HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin/auth DNT: 1 Connection: keep-alive Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:54 GMT content-type: image/svg+xml last-modified: Thu, 07 Dec 2023 12:00:14 GMT etag: W/"42d-60bea35da0f80" cache-control: max-age=14400 cf-cache-status: REVALIDATED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L5%2BelPCfyKPWc1dMOt2EuZcrDEAHVdDf9Zb9%2FDrB6pMrHvDLd9e9lHrNgWFkNCYaFPe%2FoGXtt32LUfmPC4TzclnhGpK3EWHf2qi%2FEkyGIJxEEIjFP7r0UNGbqUDG1l553AvTn4E%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 880101aeae197131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/countries-5301fc59.js	104.21.39.27	200 OK	24 kB
URL GET HTTP/3 konkur-farbi-ua.eu/countries-5301fc59.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 24 kB (24097 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /countries-5301fc59.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-cfdc21d6.js Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:56 GMT etag: W/"5e21-60bea7526e500-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qLT6JSLU%2B3IlcEXxV7I8LqQICZFNETAaxZ%2B4hIvVPR91EHx5768%2BMMc5bsTUZ1FSRq2uZj1NUT1Rx4y3niyiy1nZCD0RUTAS9Vh%2FqokSZapcS0zfHMSXGvYq0rXZM9qpGR4fiFw%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019aeeb27131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js	104.21.39.27	200 OK	357 B
URL GET HTTP/3 konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (361), with no line terminators Size 357 B (357 bytes) Hash ea2a87dc9755781a19e407ae7bc5dc0d 41a7d07495e01e09e53eb51215ccf778c3aea92f 0a6994411c1666d1f665895c1d61536c24b0f0f5f9176f81d839c5316ea3d1be HTTP Headers `GET /textToSvgURL-c6ebb454.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:01 GMT etag: W/"165-60bea75733040-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R8NWdYG3xCl9Ze2r2aBdBD4w4CxjumDULsluQfjZwC2zQZegbcQm35ZyQ3i4uxnkbxuRw52kwDajN3D8%2FaUMl1bB9lp0AXyWt7G%2FcD8gqV1eJP9pyJ4wzMw4ONAkmq9lvHy%2FY8w%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019bd85d7131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2	104.21.39.27	200 OK	11 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Web Open Font Format (Version 2), TrueType, length 11056, version 1.0 Size 11 kB (11056 bytes) Hash 07db243db21ed0a6b4ff05ff429686b7 5d62925fdd7ed8e80f206d095ed093994f13d276 ce897833ac6e362df7c91ac8223fe511c6defcf33964928a81004600a2dd4c2e HTTP Headers GET /asset/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-91acc02b.css Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: font/woff2 content-length: 11056 last-modified: Thu, 07 Dec 2023 12:00:17 GMT etag: "2b30-60bea3607d640" cache-control: max-age=14400 cf-cache-status: REVALIDATED accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gVxao%2FM09U59iUSz4%2B3OhfbjqxoGkhklcwaUqaFUqx412UEEU2jEzYleP6hFBSPwhVyJbvpb7O9cN79XZodxhD2uY6I8tnDIj9Nkv%2B5%2BHqY9chYVVCs6qlKZzUnsLjPeAG5WIfU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 880101a0aaca7131-OSL alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/crypto.worker-b2b2021e.js	104.21.39.27	200 OK	69 kB
URL GET HTTP/3 konkur-farbi-ua.eu/crypto.worker-b2b2021e.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 69 kB (68845 bytes) Hash 061a201747d764fcd611ff886b2b27ef d0fbcab1a5c52c5c38f46b2ed048cf8637716686 58fafa3a075d804360271b6b081e9c3c46ba344659ef3cb10d5561afc1147448 HTTP Headers `GET /crypto.worker-b2b2021e.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin/auth DNT: 1 Connection: keep-alive Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:57 GMT etag: W/"10ced-60bea75362740-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gz4GyD6wgzno6C5zfnOa6bBV9VXrMRcpiaidDWCXmmK9fB4NOtLOsHQsBfXWft7z5k3oUR60BnICYUCe77dMnTRnaOJIS%2B9l%2FBvT%2BZBnzD96avvtrG9SdZrPbjbXl3sJ4T8iP1Y%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019aae277131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/page-49e139d4.js	104.21.39.27	200 OK	10 kB
URL GET HTTP/3 konkur-farbi-ua.eu/page-49e139d4.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (10193) Size 10 kB (10236 bytes) Hash 6ccaefefec5a957c2d80fe5f97c8098b bf1eda880c524c21f78ff0424592f81fba4214ab 65659681146410adb22da9de126db5da27eb6032631d55c1c2bedebabd8e8f5f HTTP Headers `GET /page-49e139d4.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/pageSignQR-55e34e76.js Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:59 GMT etag: W/"27fc-60bea7554abc0-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=edX6x76QA0vApDwqnK9%2BkOglH1DzEevyHLi0r5zP1wMQh6WBGpGjbtyAQJs6mM0bUQe6vcpv0QbKumbjQmiqbugSNVIoEBeYFk3xW%2BswNowgEsPNkgpuolH%2BDGrnfbP9wcaJWL4%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019e1cf17131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/ditin/auth	104.21.39.27	200 OK	14 kB
URL User Request GET HTTP/2 konkur-farbi-ua.eu/ditin/auth IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type HTML document, ASCII text, with very long lines (1757) Size 14 kB (13645 bytes) Hash d81cb17c6ca692cce341c509d5ec57cc 39fee452e599617961a264e2c53349afe08846cb ca911752ea5025c6a56d55637663ab5821d42ec5baf6be205ffa9a62025252ec HTTP Headers `GET /ditin/auth HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 07 May 2024 11:52:50 GMT content-type: text/html; charset=UTF-8 set-cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii; path=/ expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RcSQfejnYUu90tr17gHwnFAql8YUKe6DJJCjD%2BsE%2FXmJvmtToKdEKxdNuFdkyUxfyPkyluaDDEIalaU5FC%2FSwm1y3IfWymCx9ZRBDwZaHbKOFpHxG7Pz%2FbAXIqCJ58ICyPAhX%2BA%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 880101956ca6568f-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	konkur-farbi-ua.eu/page-49e139d4.js	104.21.39.27	200 OK	10 kB
URL GET HTTP/3 konkur-farbi-ua.eu/page-49e139d4.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (10193) Size 10 kB (10236 bytes) Hash 6ccaefefec5a957c2d80fe5f97c8098b bf1eda880c524c21f78ff0424592f81fba4214ab 65659681146410adb22da9de126db5da27eb6032631d55c1c2bedebabd8e8f5f HTTP Headers `GET /page-49e139d4.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:59 GMT etag: W/"27fc-60bea7554abc0-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wwh8LMQoYYL%2F24Yf9u%2BIE9F5GN6TwjV7Dg4mzoueNZ3z9A1sgk85gow%2FsGue20wdbM433Bj6RaZh6sJEcFhHTvjLXABu%2Bp9HXc33O6vNhl3PeaS6wUfHS1n0D3ZegzL8a1g5yHU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019bd84b7131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/putPreloader-ae29ef38.js	104.21.39.27	200 OK	699 B
URL GET HTTP/3 konkur-farbi-ua.eu/putPreloader-ae29ef38.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (736), with no line terminators Size 699 B (699 bytes) Hash cf9e4f7c2e108253b09f1f704d067045 298d923ef22804845e9e5b4d8771b4ca5e946365 fbf0df8e2e3349d955976a5f574da93bd6183fd4d6bfbdf66cd89007a7cb2aa3 HTTP Headers `GET /putPreloader-ae29ef38.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/pageSignQR-55e34e76.js Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"2bb-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: HIT age: 0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2B%2BIOZlUXwaJSokIfOqzoU5z0LsTZT5mK2Ru4x5n6SJu%2BHTIp5HrODLr%2FpdM4kBK4DXWNHNkbn%2BXwRP%2BEou%2FDuOwA5f%2Fl5aXMuuDAYYcFgSPy0efVxRbDOMcjKJEfAW9hPSUwfU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019e1cf97131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js	104.21.39.27	200 OK	357 B
URL GET HTTP/3 konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (361), with no line terminators Size 357 B (357 bytes) Hash ea2a87dc9755781a19e407ae7bc5dc0d 41a7d07495e01e09e53eb51215ccf778c3aea92f 0a6994411c1666d1f665895c1d61536c24b0f0f5f9176f81d839c5316ea3d1be HTTP Headers `GET /textToSvgURL-c6ebb454.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/pageSignQR-55e34e76.js Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:01 GMT etag: W/"165-60bea75733040-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: HIT age: 0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pSkIYKBhS%2F7MakvSN2sv9ad7779ZeG%2FS5h6tbltN30dm49PbT17y%2FC7wBhYU9U%2Btkd8wTBgJGTyz8dY%2F0ds0OAuthNlMV%2Bt6FsE5rZeBdKkhQn97JvM3MlF4Rdy7AidXgG6Ia04%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019e2d047131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js	104.21.39.27	200 OK	66 kB
URL GET HTTP/3 konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 66 kB (66217 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /qr-code-styling-8a04fb73.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"102a9-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7IAw%2FH85Ks2EHmwf3bsFNNDdVg4Dp1K4OgPrX6vyy8sYcsTUwI6Zx1oVNQw%2FTw4N%2FAFtP72Avd5ISpeQr%2FQIraKqU746HhkPHLtnr8x%2BnIKP3mNTzTdotci%2BbclsvpF65yXjOXA%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019ede5d7131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js	104.21.39.27	200 OK	66 kB
URL GET HTTP/3 konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 66 kB (66217 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /qr-code-styling-8a04fb73.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/pageSignQR-55e34e76.js Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"102a9-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZjvJsxnpGpBpPAtCyW4EdhZevRFBRCHGOWwPgQByrnctuWi1QtZXu9MiqNyhaC8SLtagFTSOd7G0kFj429lZW4V%2FcRx%2B0tSbBQiezA9ljh35eOw2oee%2BkoWtITiP%2FSD%2FHN937m8%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019eee687131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/jquery.min.js	104.21.39.27	200 OK	90 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/jquery.min.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 90 kB (90498 bytes) Hash 1db92b83313d6fbaf76fd364688c8e6c 90c3cf0d1af00de7424a6b4b8f7f41b1200d3964 3ca4587ad13382ba7ede987f96682cc928589f037b1403fb43bd8ffc430809da HTTP Headers `GET /asset/jquery.min.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin/auth Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:10:36 GMT etag: W/"16182-60bea5aed0700-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S3S96XcKufCWKpqlUqbmP60%2B15Vm8gftd%2BgZEOcJdgAb4qsEvbuKmsQ3%2BzMQpVcOmrZi9mNfHzaEg%2B0jf5uTydmV4SCP6L6hG6N4T%2FXu6cGwochYGEPgzhmz1jnlUiYkVU7mMDk%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019808fd7131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/index-91acc02b.css	104.21.39.27	200 OK	425 kB
URL GET HTTP/3 konkur-farbi-ua.eu/index-91acc02b.css IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 425 kB (425367 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /index-91acc02b.css HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin/auth Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: text/css last-modified: Thu, 07 Dec 2023 12:17:58 GMT etag: W/"67d97-60bea75456980-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zT3c6o45P5FdJoJvl2Gd4mLbwnCSjRD9KgvI1NpbyLNe9vBJYodPKu0hUoDQFDot2W8Qpt%2BRqlejX6tZMnPYn3vwmezsMWjY%2FxP2j%2Fnoa7zXKP1RugIG3l0VrdFd7xKHbQHGhIU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019809037131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2	104.21.39.27	200 OK	11 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Web Open Font Format (Version 2), TrueType, length 11016, version 1.0 Size 11 kB (11016 bytes) Hash 15fa3062f8929bd3b05fdca5259db412 6ff06a34f68ad0324ddec1bbe4d453c959178b36 5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479 HTTP Headers GET /asset/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-91acc02b.css Cookie: PHPSESSID=d7g0e37to9d1j98lko0huor9ii Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 07 May 2024 11:52:51 GMT content-type: font/woff2 content-length: 11016 last-modified: Thu, 07 Dec 2023 12:00:17 GMT etag: "2b08-60bea3607d640" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fG7TYFaApKKB%2Bbs%2FuzXoK15T8Etc2mGYapj8BBcMBJkv%2B40z1jWvrlI1gSc%2F4B06TFByLxIIBV6ronl37ICTLGlgj4xKlurBRwHUo9hSF%2FLAosIWuXU%2BLIW5ZCBalpF%2Bx2p6UGc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8801019a8e007131-OSL alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/putPreloader-ae29ef38.js	104.21.39.27	200 OK	699 B
URL GET HTTP/3 konkur-farbi-ua.eu/putPreloader-ae29ef38.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (736), with no line terminators Size 699 B (699 bytes) Hash cf9e4f7c2e108253b09f1f704d067045 298d923ef22804845e9e5b4d8771b4ca5e946365 fbf0df8e2e3349d955976a5f574da93bd6183fd4d6bfbdf66cd89007a7cb2aa3 HTTP Headers `GET /putPreloader-ae29ef38.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 11:52:52 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"2bb-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pFLE5JLjkz1JNFK2kHN2N88ROOZ32ZY%2BFPo3AYyDurBSTdk5axKUxt2%2F8eS4jTb37VM9GnkLsTpg31x3vASxD2qPDZBKVY2pI9C3ZrPIrqQb0T3r61njETktWJJ%2Fq32pKupJ%2BJg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8801019bd85a7131-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML