| sigtn.com////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ | 45.60.63.178 | | 0 B |
URL sigtn.com////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ IP45.60.63.178:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET ////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ HTTP/1.1
Host: sigtn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Location: https://www.sigtn.com////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$
Content-Length: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains
Connection: close
|
|
| www.sigtn.com////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ | 45.60.65.178 | | 755 B |
URL www.sigtn.com////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ IP45.60.65.178:0
File typeHTML document, ASCII text, with very long lines (755), with no line terminators Hash499fe2e4ae14fd6a87bb205a5c027a3f b625ee450f76c362317cbaa46c98ea1a221ee46a b4e6d3a0b665a4aab9d61b655d4bbac64e955acbc5cd759aacfd83fa29bebeba
GET ////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ HTTP/1.1
Host: www.sigtn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
Content-Length: 755
X-Iinfo: 14-57914271-0 0NNN RT(1714033506084 17) q(0 -1 -1 -1) r(0 -1) B15(4,200,0) U24
Strict-Transport-Security: max-age=31536000; includeSubDomains
x-incap-sess-cookie-hdr: sQA8JoBCLS9PiT2MrlRkZGITKmYAAAAAJ+T8lKyL49Wgwx4VA6rFag==
Set-Cookie: visid_incap_1371828=DzYnbvoFQT6AEL+O2n+33WITKmYAAAAAQUIPAAAAAABUrAuqs6lYNzbxxuSLQAXO; expires=Fri, 25 Apr 2025 04:45:16 GMT; HttpOnly; path=/; Domain=.sigtn.com; Secure; SameSite=None
incap_ses_7234_1371828=PX1ULOVCZCNf4VGMrlRkZGITKmYAAAAANpuQiT1rW95vZ/i4jXrpIA==; path=/; Domain=.sigtn.com; Secure; SameSite=None
|
|
| www.sigtn.com////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ | 45.60.65.178 | | 0 B |
URL www.sigtn.com////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ IP45.60.65.178:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET ////utils/emt.cfm?client_id=9195153&campaign_id=73466&link=tracker.club-os.com////campaign/click?msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ HTTP/1.1
Host: www.sigtn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: visid_incap_1371828=DzYnbvoFQT6AEL+O2n+33WITKmYAAAAAQUIPAAAAAABUrAuqs6lYNzbxxuSLQAXO; incap_ses_7234_1371828=PX1ULOVCZCNf4VGMrlRkZGITKmYAAAAANpuQiT1rW95vZ/i4jXrpIA==
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html;charset=UTF-8
Location: http://tracker.club-os.com////campaign/click?utp=consumer&&msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$
Server: Microsoft-IIS/10.0
Set-Cookie: CFID=147316658; Expires=Sat, 18-Apr-2054 08:25:06 GMT; Path=/; HttpOnly
CFTOKEN=10108413; Expires=Sat, 18-Apr-2054 08:25:06 GMT; Path=/; HttpOnly
NSC_MC_172.24.100.46_443=7ce2a3d91ca59d11abf6e834e51f905d9087f8bdec85849549be4a11dc6decfc4e690631;Version=1;Max-Age=7200;path=/;secure;httponly
X-Powered-By: ASP.NET
Referrer-Policy: no-referrer-when-downgrade
Date: Thu, 25 Apr 2024 08:25:06 GMT
Content-Length: 0
X-Forwarded-For: 91.90.42.154
x-incap-sess-cookie-hdr: hPSpeOWBRwtf4VGMrlRkZGITKmYAAAAAkwzD0eKA3tPpjijfXfdgMQ==
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-CDN: Imperva
X-Iinfo: 14-57914281-57913605 PNNy RT(1714033506289 15) q(0 0 0 0) r(2 2) U24
|
|
| tracker.club-os.com////campaign/click?utp=consumer&&msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ | 52.200.91.47 | | 0 B |
URL tracker.club-os.com////campaign/click?utp=consumer&&msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ IP52.200.91.47:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET ////campaign/click?utp=consumer&&msgId=d738c6bd137e6a03157c6c728cbc659e734fc398&test=false&target=neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ HTTP/1.1
Host: tracker.club-os.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 303 See Other
date: Thu, 25 Apr 2024 08:25:07 GMT
content-length: 0
location: http://neoparts%E3%80%82com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$
server: Apache/2.4.57 () OpenSSL/1.0.2k-fips
X-Firefox-Spdy: h2
|
|
| neoparts.com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ | 191.252.141.106 | | 0 B |
URL neoparts.com.br/dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ IP191.252.141.106:0 ASN#27715 Locaweb Servicos de Internet SA
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dayo/jtux/d2ltLnRldWdlbHNAeXB0by5iZQ==$ HTTP/1.1
Host: neoparts.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 08:25:07 GMT
Server: Apache
refresh: 0;url=https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/?office=d2ltLnRldWdlbHNAeXB0by5iZQ==$
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/?office=d2ltLnRldWdlbHNAeXB0by5iZQ==$ | 46.101.216.85 | | 49 kB |
URL microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/?office=d2ltLnRldWdlbHNAeXB0by5iZQ==$ IP46.101.216.85:0 ASN#14061 DIGITALOCEAN-ASN
File typegzip compressed data, from Unix Hashf999eaaef306d0ee4e1d0553f140b35f 185442208f350e8b80a0c34f8d9c2e8d91d356bb 9f9fc3c1ad1e23a180eb6bd2c96365d245581c01a368bcfdf8c2d465668314cd
POST /?office=d2ltLnRldWdlbHNAeXB0by5iZQ==$ HTTP/1.1
Host: microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 5797
Origin: https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com
DNT: 1
Connection: keep-alive
Referer: https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/?office=d2ltLnRldWdlbHNAeXB0by5iZQ==$
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 25 Apr 2024 08:25:12 GMT
content-type: text/html; charset=utf-8
location: https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/?office=d2ltLnRldWdlbHNAeXB0by5iZQ==$
set-cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="; Domain=drfilizaltioglucig.com; HttpOnly; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
|
|
| microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/e6ad8e67528b47658e0ac31338f22e31/ | 46.101.216.85 | | 0 B |
URL microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/e6ad8e67528b47658e0ac31338f22e31/ IP46.101.216.85:0 ASN#14061 DIGITALOCEAN-ASN
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e6ad8e67528b47658e0ac31338f22e31/ HTTP/1.1
Host: microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CL/iKALQ4scbyyUAL6QJCw==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 25 Apr 2024 08:25:14 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: thI2ErjdCXnRt7ZnSFIPLGc6oLs=
Sec-WebSocket-Extensions: permessage-deflate
|
|
| microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/e6ad8e67528b47658e0ac31338f22e31/ | 46.101.216.85 | | 0 B |
URL microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/e6ad8e67528b47658e0ac31338f22e31/ IP46.101.216.85:0 ASN#14061 DIGITALOCEAN-ASN
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e6ad8e67528b47658e0ac31338f22e31/ HTTP/1.1
Host: microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AUUpONKyke2AtZ/qRuDEbA==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 25 Apr 2024 08:25:15 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vkEFOTeE6fIU4EH/N9VZSl2dlXE=
Sec-WebSocket-Extensions: permessage-deflate
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/saml2/sso | 46.101.216.85 | 302 Found | 6.3 kB |
URL User Request POST HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/saml2/sso IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typegzip compressed data, from Unix Hash326bcd71f23a9e333f6a0613b4845eeb 3a494c87ed8fe1e1f54a5b17ade5afb91f58031b 649241a3896720400e287855a68f33c523bdb864c2027c977642c7ea988424ca
POST /idhub/saml2/sso HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 928
Origin: https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 25 Apr 2024 08:25:15 GMT
content-type: text/html;charset=UTF-8
cache-control: max-age=0, private, max-age=0, no-cache, no-store
location: /idhub/tb/SELECT_CORE_IDP?code=0854dcde-cb92-4b73-ab60-26cd6d541d74&comparison=MINIMUM&relaystate=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc&authnmethod=30
pragma: no-cache, no-cache
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
access-control-allow-headers: *
set-cookie: IDHUB_JSESSIONID=0C78B54B2A627B441AF29F38BDDA0278; HttpOnly; Path=/idhub/; Secure
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/bklogin.js | 46.101.216.85 | 200 OK | 843 B |
URL GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/bklogin.js IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typeJavaScript source, ASCII text Hash352bedd08145a3164f6b7e9604d2e76f 4d9fc493168facc777cfef847c2cf597a82054e7 8369090f33c05dfc960a52fb74331c2453404fd26890365358fa4713687a5ece
GET /v1/js/bklogin.js HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:17 GMT
content-type: application/javascript
content-length: 843
last-modified: Tue, 26 Apr 2022 13:32:31 GMT
etag: W/"6267f46f-8d4"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/css/styles.css | 46.101.216.85 | 200 OK | 455 B |
URL GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/css/styles.css IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
Hash560e26fa90ae7a98cb74b8e0e854866e 35a56250131411a2e5745155197e3c9fa6c71e7e 5f5fd4bc67e8ece7b1cb838fa9491bffb7306873b6fb2608729c9beed9b4684c
GET /v1/css/styles.css HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:17 GMT
content-type: text/css
content-length: 455
last-modified: Tue, 26 Apr 2022 13:32:31 GMT
etag: W/"6267f46f-467"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/js.cookie.js | 46.101.216.85 | 200 OK | 1.5 kB |
URL GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/js.cookie.js IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typeJavaScript source, ASCII text Hashf78122c0e23061719c8cba6de1680dda e5a2a365508570499760e0ae952c3cc839b840e4 d1f2e59ba5537094a45b344a385a044bf4d0833bde194c886e149ed83fd5044a
GET /v1/js/js.cookie.js HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:17 GMT
content-type: application/javascript
content-length: 1496
last-modified: Tue, 26 Apr 2022 13:32:31 GMT
etag: W/"6267f46f-f2d"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/jquery.localize.min.js | 46.101.216.85 | 200 OK | 1.2 kB |
URL GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/jquery.localize.min.js IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typeJavaScript source, ASCII text, with very long lines (2450) Hash1a8665f58352a2179693d6413dd25bea 93a68ce234ee0d9c3d5c12eaf251d3f26e9cb43b d144b44a0d20d486766490441d539161845e1f6d3460c20af96d9642cbf6b828
GET /v1/js/jquery.localize.min.js HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:17 GMT
content-type: application/javascript
content-length: 1233
last-modified: Tue, 26 Apr 2022 13:32:31 GMT
etag: W/"6267f46f-a18"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/css/bootstrap.min.css | 46.101.216.85 | 200 OK | 20 kB |
URL GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/css/bootstrap.min.css IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typeASCII text, with very long lines (65328) Hash1c42ead1aaa7f881836f599cfcd45434 f43625be403cd019bda62776a5beefefda1bd91d aa91e752713fae0da65e18f1383a9a02cc83cacbd048d55868e51d20feffa4ed
GET /v1/css/bootstrap.min.css HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:17 GMT
content-type: text/css
content-length: 19768
last-modified: Tue, 26 Apr 2022 13:32:31 GMT
etag: W/"6267f46f-1d970"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/jquery-3.1.0.min.js | 46.101.216.85 | 200 OK | 30 kB |
URL GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/jquery-3.1.0.min.js IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typeJavaScript source, ASCII text, with very long lines (32014) Hashc01c2bd743766d00cd5b91bb029a4656 212c27cf14c8e52a00392521319462f0a660fee3 633ba16fa4ae95cc60b2a7dd1dceff0a235d31edc5340e6249ee9c0fcd96d0c8
GET /v1/js/jquery-3.1.0.min.js HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:17 GMT
content-type: application/javascript
content-length: 30066
last-modified: Tue, 26 Apr 2022 13:32:31 GMT
etag: W/"6267f46f-1514e"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| 6a48b548-e6ad8e67.drfilizaltioglucig.com/ajax/libs/font-awesome/5.13.0/css/all.min.css | 46.101.216.85 | 200 OK | 13 kB |
URL GET HTTP/26a48b548-e6ad8e67.drfilizaltioglucig.com/ajax/libs/font-awesome/5.13.0/css/all.min.css IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typeASCII text, with very long lines (58392) Hasheac91e655799d43a51e28cca9bc39f86 2d1ed827ed8443138b281dbab46371a588e1a649 b7d8d88bc1c8d2363ca7724e26ea0c3c7a1a9c86ea55531eb51cd0cb0b80c73f
GET /ajax/libs/font-awesome/5.13.0/css/all.min.css HTTP/1.1
Host: 6a48b548-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:17 GMT
content-type: text/css; charset=utf-8
content-length: 12726
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-e4d2"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
vary: Accept-Encoding
cf-cache-status: HIT
age: 1167791
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MwlCfSwrgz38uXp4urAJKXmGQpEMzhGuQXILUL3rVEItu8JsBfNB%2BioFSzs1CT4sDofROmcr7%2BMfY%2FAo2dyNJEhLNRbpSVLH64VBM2RxWgOwYIHWZPNmt3ZH8jkHd8c1K3my30En"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
cf-ray: 879cf10d6ac137eb-FRA
content-encoding: br
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc | 46.101.216.85 | 200 OK | 11 kB |
URL User Request GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typeHTML document, ASCII text, with very long lines (6602) Hash60c0bb65dd16c9a08020284d894731b7 876dccafc11c5027199110afb018a93c69a4a2fe 90cbc406a48a551f5b420cf616146519e7dea88e92173d3f553270acdc00c7c2
GET /idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/
DNT: 1
Connection: keep-alive
Cookie: IDHUB_JSESSIONID=0C78B54B2A627B441AF29F38BDDA0278; tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:16 GMT
content-type: text/HTML;charset=UTF-8
content-length: 6323
cache-control: max-age=0, private, max-age=0, no-cache, no-store
pragma: no-cache, no-cache
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/i18n/i18n-en.json | 0.0.0.0 | | 0 B |
URL GET a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/js/i18n/i18n-en.json IP0.0.0.0:0
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/js/i18n/i18n-en.json HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/tb/SELECT_CORE_IDP?code=0854dcde-cb92-4b73-ab60-26cd6d541d74&comparison=MINIMUM&relaystate=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc&authnmethod=30 | 46.101.216.85 | 307 Temporary Redirect | 11 kB |
URL User Request GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/tb/SELECT_CORE_IDP?code=0854dcde-cb92-4b73-ab60-26cd6d541d74&comparison=MINIMUM&relaystate=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc&authnmethod=30 IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idhub/tb/SELECT_CORE_IDP?code=0854dcde-cb92-4b73-ab60-26cd6d541d74&comparison=MINIMUM&relaystate=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc&authnmethod=30 HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://microsoft-microsoft-office-microsoft-microsoft.drfilizaltioglucig.com/
DNT: 1
Connection: keep-alive
Cookie: IDHUB_JSESSIONID=0C78B54B2A627B441AF29F38BDDA0278; tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx
date: Thu, 25 Apr 2024 08:25:15 GMT
content-type: text/html;charset=utf-8
location: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
cache-control: max-age=0, private, max-age=0, no-cache, no-store
referrer-policy: no-referrer-when-downgrade
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/images/bkey.png | 46.101.216.85 | 200 OK | 1.3 kB |
URL GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/images/bkey.png IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typePNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced Hash43d6a18930de4534108fc22db73d83a2 72b5d82fd48632405aa11d9c746c736fa4394d79 57207a6b5a06de7215308bfdcd242032de5e6706b134cfc10dade5d3963d7422
GET /images/bkey.png HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:17 GMT
content-type: image/png
last-modified: Tue, 26 Apr 2022 13:32:31 GMT
etag: "6267f46f-501"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| 6a48b548-e6ad8e67.drfilizaltioglucig.com/ajax/libs/font-awesome/5.13.0/webfonts/fa-solid-900.woff2 | 46.101.216.85 | 200 OK | 79 kB |
URL GET HTTP/26a48b548-e6ad8e67.drfilizaltioglucig.com/ajax/libs/font-awesome/5.13.0/webfonts/fa-solid-900.woff2 IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 79444, version 331.524 Hashb15db15f746f29ffa02638cb455b8ec0 75a88815c47a249eadb5f0edc1675957f860cca7 7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7
GET /ajax/libs/font-awesome/5.13.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: 6a48b548-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com
DNT: 1
Connection: keep-alive
Referer: https://6a48b548-e6ad8e67.drfilizaltioglucig.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:18 GMT
content-type: application/octet-stream; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-13654"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
vary: Accept-Encoding
cf-cache-status: HIT
age: 42065
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yA%2FvbRzXXaLsI1eXQIIJWFfZooqglOcUREbgYaigN5c7LDOZEP640%2FZB6tDh5HzPrPrrLx3WpNSgjLw9GyvaD0aeko0pB7V%2BQmysVhGcCSznp0A8L7NIps%2F7N0t%2FyCeBpTXJ5%2Bg1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
cf-ray: 879cf1106f22972c-FRA
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/favicon.ico | 46.101.216.85 | 200 OK | 719 B |
URL GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/favicon.ico IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typeMS Windows icon resource - 1 icon, 16x16 with PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced, 32 bits/pixel Hash0682696fd825d4d6bdb05a17ffaee686 8ec4dc9ad7a9228b0c7e9298883a0b8961bbd20e 3cf760e377fc75ef1e977fb866fc4f967a3634c6d35911bfaa85d6d5ce6daf8f
GET /favicon.ico HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:18 GMT
content-type: image/x-icon
last-modified: Tue, 26 Apr 2022 13:32:31 GMT
etag: "6267f46f-47e"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/images/logo-nmbs-sncb.png | 46.101.216.85 | 200 OK | 4.0 kB |
URL GET HTTP/2a83d6c40-e6ad8e67.drfilizaltioglucig.com/v1/images/logo-nmbs-sncb.png IP46.101.216.85:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc CertificateIssuerLet's Encrypt Subjectdrfilizaltioglucig.com Fingerprint23:64:44:4B:F0:E5:C9:04:E7:F8:B8:60:CC:86:D0:D6:0B:A4:5C:26 ValidityThu, 04 Apr 2024 10:36:25 GMT - Wed, 03 Jul 2024 10:36:24 GMT
File typePNG image data, 162 x 105, 8-bit/color RGBA, non-interlaced Hash55f2d9d00f7086a7693c47f3c75c99da 2f87a8e8d28b77d0f2dbcc446f2d8452bbaf7a17 65c889561c7bfddd0bc7b407989d294e2923beb91a455621ac0d0484cd716c44
GET /v1/images/logo-nmbs-sncb.png HTTP/1.1
Host: a83d6c40-e6ad8e67.drfilizaltioglucig.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a83d6c40-e6ad8e67.drfilizaltioglucig.com/idhub/authenticate?idpCode=24f3ffa7-94d4-44cb-8fe4-6a2c2aeca7b9&relayState=6637d065-d4fb-4bc1-b0d9-e52683d4b7cc
DNT: 1
Connection: keep-alive
Cookie: tBy6a9="ZTZhZDhlNjctNTI4Yi00NzY1LThlMGEtYzMxMzM4ZjIyZTMxOjBiYjQxZDhjLTBkMDYtNGNkMS1iNmI5LTA1MWRkMTI3MmY5Nw=="
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:17 GMT
content-type: image/png
last-modified: Tue, 26 Apr 2022 13:32:31 GMT
etag: "6267f46f-fb7"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|