Report - verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9

Report Overview

Submitted URL
verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
IP
104.21.24.83
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-08 22:07:54
Access
public
Website Title
Captcha.bot - Verification done right
Final URL
verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Tags
suspicious
urlquery detections
Suspicious - Anti-debugging code

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ad-delivery.net	1341	2017-05-03	2017-06-22	2024-05-08	893 B	2.4 kB	104.26.3.70
cdn.discordapp.com	2474	2015-02-26	2015-08-24	2024-05-07	477 B	5.7 kB	162.159.129.233
captcha.bot	326501	2021-08-25	2021-09-03	2024-04-17	407 B	7.8 kB	104.26.7.110
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-05-07	512 B	1.2 kB	35.244.181.201
verif.extazia.fr	unknown	unknown	No data	No data	10 kB	191 kB	104.21.24.83
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-05-08	3.4 kB	335 kB	104.17.2.184
js.chargebee.com	23733	2011-03-26	2019-05-23	2024-05-07	450 B	1.4 kB	143.204.55.121

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9	1.5 kB	2024-04-21	2024-05-11
Pretty URL verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9 IP 104.21.24.83 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-21 23:04:26 Last Seen2024-05-11 14:31:59 Times Seen4 Hash 10abb26aaab723f940a2e23228a07ebe d6ece9e3952fbe532bc2960cfbb19a4d0d4ad221 b32352ecc468df4f7b2af4f596fa6315755f5087c375142f28cd6e236dade8ab Loading...

	verif.extazia.fr/verification/static/css/adcf9ed6.js	821 B	2024-01-29	2024-05-13
Pretty URL verif.extazia.fr/verification/static/css/adcf9ed6.js IP 104.21.24.83 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-29 19:15:02 Last Seen2024-05-13 06:06:00 Times Seen990 Hash 13e74cf77973de510fd2f5c5a81a1789 b86ca7b50442a4ade34d797bc5c4556fb7eb99ed 0c4258840867e9c67cd63f0a6ebbb68388dbb052c8851cb26c9236a19b7d3500 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 39b8f1aa588b89516d87fc9e63b5fd84	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:00 Last Seen2024-05-09 00:08:00 Times Seen1 Hash 39b8f1aa588b89516d87fc9e63b5fd84 829980a4009a9ea867752decf9bc4bdb4a9d98c8 4a25b21e63ef2db1f131205270a204cf8b224b505abdf266ba7ff3d84da9ded8 Loading...

	#2 Eval - 2813da693a6ccc193d0ab46d09173e3b	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:00 Last Seen2024-05-09 00:08:00 Times Seen1 Hash 2813da693a6ccc193d0ab46d09173e3b cf9804a49303d23b23bc5f91dbaf8eeb068c2703 536fcfc2c9e1bd64e9fd9c8a2c61ba5738acf8d5111d7074d4dd74a0b878da98 Loading...

	#3 Eval - ed36a6f77d385b0b4d123299df4bb609	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:00 Last Seen2024-05-09 00:08:00 Times Seen1 Hash ed36a6f77d385b0b4d123299df4bb609 d46a3788473066aef11d4510d8831d43d9b7ea93 a2b738bedfd9c891073e8c6efd9dba2efb7ecfe4c9c2cea96e75670a0e5f79e2 Loading...

	#4 Eval - 834dd8bed5c743ff24bf2319924348d9	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:00 Last Seen2024-05-09 00:08:00 Times Seen1 Hash 834dd8bed5c743ff24bf2319924348d9 ef7e6cc62376bf752979886a6cb8ea22b0c84b9c ef699449bf0372338402dae02ac1ccedf2774f9d94cb9539354a13ffa28698c4 Loading...

	#5 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-20
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-20 00:17:32 Times Seen353139 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#6 Eval - 5a1a1dce0edf558199108ce3282da4ec	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:00 Last Seen2024-05-09 00:08:00 Times Seen1 Hash 5a1a1dce0edf558199108ce3282da4ec cdec0396589e264f584da2e41b4062db54e2ff22 8b9ca5a2f3177cbd2f8d42b30b79c9ff288b9fb0f2f27bd213b76e2475abfb1b Loading...

	#7 Eval - a754d7a9e445d1bbb5765a0af5850d64	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:00 Last Seen2024-05-09 00:08:00 Times Seen1 Hash a754d7a9e445d1bbb5765a0af5850d64 b75ede73d4da284cc015459a30d54f9aaf44ec87 9c5bd39b7f1506d9508fe7f01bada2cb84d33ea166c475cf88be9efbfd1c329e Loading...

	#8 Eval - db15e36a033124c5ad73b8bda8ab4476	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:00 Last Seen2024-05-09 00:08:00 Times Seen1 Hash db15e36a033124c5ad73b8bda8ab4476 c376d9f423310465c6b7dc8d87594699de966ec2 b9128b873956636880267e888b4d58021d3c939584a271d30cef51bc9c8fa9d5 Loading...

	#9 Eval - a87074dd8a26912047b84dd495f96d74	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:00 Last Seen2024-05-09 00:08:01 Times Seen1 Hash a87074dd8a26912047b84dd495f96d74 1b3434b3c33b2f669b7466a31769f6c833d2e096 cd2240041ac56b7875ae51722939767163c9dcc28ac9749afcc85ca66374d324 Loading...

	#10 Eval - 849b5ec7ea3408b1eeaf5883ed522af4	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash 849b5ec7ea3408b1eeaf5883ed522af4 118f6aebeb2f345a4a0a7266612cf2ef467665f7 660ad5f566770d3faace5a250d528eb97089af66fbd086ff78fdc76292762121 Loading...

	#11 Eval - afc8243ceb0b755e4d0bbb1221c2757a	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash afc8243ceb0b755e4d0bbb1221c2757a 4e5639f33ca30c92650731bbb044c4f78d9b9a15 ffb3d05fd4d28a2c3a9f28a70418b8c0456af7c4e8d180e7dbaed63dfb9fc43b Loading...

	#12 Eval - 3e5d5d02e12a56b9a7cff827be5eac54	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash 3e5d5d02e12a56b9a7cff827be5eac54 b3e7ce584aa45795e4d44b1b6b49d02530924f21 928f7ea16ccd727b314381779e0cc198f617e27eb93cb158cb92545e3f9aaa18 Loading...

	#13 Eval - b2524357509bf3077dad49cb05265d77	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash b2524357509bf3077dad49cb05265d77 a0a6cc2ed88158d87e91335828b5e5e52e51e1d5 d6b1f5a3cdcd678d54d03ddc34e75ed5df0dd9ff7ca18d47086d12f049b41555 Loading...

	#14 Eval - 638f164812e52452514b41db50af4944	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash 638f164812e52452514b41db50af4944 0fc7a46fa7e78148b44cbc51fa148872479117b5 362357ea27a146aaa53dca50cff4fc2745435e9223b37ca50e165fbcfddbc22a Loading...

	#15 Eval - 44ce9c2b5dbdc0f28d7037c070550b74	62 B	2024-05-03	2024-05-09
Pretty Observations First Seen2024-05-03 14:37:29 Last Seen2024-05-09 15:26:38 Times Seen386 Hash 44ce9c2b5dbdc0f28d7037c070550b74 a9d8ff605c113bef81e606ea0bb2d8b0d65bd13e b87899b17160a1ab0138f3ff2eacc0c7c9107f22f6ab3ad6e9d9973b98deb26d Loading...

	#16 Eval - b9ad47d8f9203950bc175ffeaea790ff	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash b9ad47d8f9203950bc175ffeaea790ff c867650ff520c0bb21b7e9f5a45a3fd544c7997b 7eebfc7feda183f6fed9635a3baecafb92e1e2e18c003e8bb0ee5af7a2ce8730 Loading...

	#17 Eval - e5dc5a1cefb9c34ffcedabd660a9ef7e	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash e5dc5a1cefb9c34ffcedabd660a9ef7e 46af71e4121e4e1c53aff963dc892a7ebc264765 e4184b6cddba70c682d3a7349d57ff29ed79837732b85f85cf6d52b4c10a1a5c Loading...

	#18 Eval - 31bbed556e4071f470f86bb6afe6157a	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash 31bbed556e4071f470f86bb6afe6157a 079a0413bc7039fc8facc046724177f542e6c2fe a3b9f8bda05f05416aa7065656b45aa2f84baabd613beb62413025f38c79a4ac Loading...

	#19 Eval - 81f9cd4c2b5e29a42866e82f5b286d0b	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash 81f9cd4c2b5e29a42866e82f5b286d0b 8233ffcbc7a90afe9c077a96e591b41082ed2b97 22c16c74c1a31492d1e9c1f47a9f9b520ce95b8367b201c3ca7c16107cb4b20a Loading...

	#20 Eval - daa745a5e1dd20d1dc4e45008ca4e055	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash daa745a5e1dd20d1dc4e45008ca4e055 945823e9e73421bc3813a813dd30cc3394911265 75db95bce16d80fd1ef1d0262e9f52d485addcbe0dbe048760e12cdd58122b6a Loading...

	#21 Eval - a48669d83c0fec73b3661a7eb068d988	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash a48669d83c0fec73b3661a7eb068d988 ab124b0960c539b909304d73b3dc5270075edfa1 48fc85159a8e79b1a2ec859afd9179fcc96da2f56fb3032fbeecfdead3aed421 Loading...

	#22 Eval - 27ea381fe472b8825fd75ce2a1694f23	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash 27ea381fe472b8825fd75ce2a1694f23 c076091e3e83571e1bb25185ed3ffaa0968e750d 44f1c0495d88ce74af49e97040fa4b8526018dbd517caf490fb8d36da3df09e6 Loading...

	#23 Eval - 78d1e31c5b32a00fe99ee67f3b181b35	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 00:08:01 Last Seen2024-05-09 00:08:01 Times Seen1 Hash 78d1e31c5b32a00fe99ee67f3b181b35 8ccd57284a665bf17155ec2a5e1ef70a647b4798 d9138c8eed814829a6a931ab147271aea9313523c8a77e983c441de7ad2a7074 Loading...

HTTP Transactions (23)

URL IP Response Size

verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9

104.21.24.83

200 OK

6.9 kB

URL User Request POST HTTP/1.1
verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
IP
104.21.24.83:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (16106), with no line terminators
Size
6.9 kB (6880 bytes)
Hash
b54fd1da3a1d90301c1dac9d640de567
cb652b56a02dd982fe6712978577f2c9faf4b658
be720da833a5e992b1ae6fd8340c38432a3c0fe382213eaa39f2c781e96c14b6

HTTP Headers

GET /verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9 HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 22:07:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: /qcy8nzFLaNSaq8cIjaveYSRw2vQqbD13rC5lZYfmDbR/hvHsQXmGCbfzcpgDukzyb690NZjczSdPq+Bc12rMMqxojf/rPdRdASqnXgZu/+/Stv4YAgHRca2BhFzkciQ7jirNJE891KKEMMcYg3pSA==$GZ16Z9wmdJNMONv/5BpPSQ==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l8OoJ60ki4YyjSPNs%2FUOB%2FpR0YkjyHX1KAYwZa3e3OcBo5XRlGEcFEQEImoMPM5%2F50te1znXbrnB4zFF0QynEs5UrpWI%2FHpsjHhh0tR2IqKtHBk5wkAb7KKjbCTcnQ0WuEM3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880cc3564847b524-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

verif.extazia.fr/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880cc3564847b524

104.21.24.83

113 kB

URL
verif.extazia.fr/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880cc3564847b524
IP
104.21.24.83:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
113 kB (112844 bytes)
Hash
a1220ed9fedde88930e1ce6c49df8d29
e6dc4d3ef4e9683f5f1d92a7eaab44dab4d24735
a558beb64c745d99e36ea669ebbb82528a57d7d39b5af0492953971bc86fafbf

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880cc3564847b524 HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9&__cf_chl_rt_tk=bjz0nQNBFLCKXu5R.zakPuIEjw0l6kZZj9sz36YreYg-1715206050-0.0.1.1-2047
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 22:07:30 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SpIYoZbN94VyOpq5pgZ%2FK9HxGtw2rP0H%2FIVaqtysopedl%2FJiNv3OCreG4%2F4Knk6nifkpAs8avZRcodYEHYiT%2BodaY3SYr5QmUiz8ynv70fD0H5UiqCbb1FiSrCSvY181bdkb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880cc359180756c3-OSL
alt-svc: h2=":443"; ma=60

verif.extazia.fr/favicon.ico

104.21.24.83

6.0 kB

URL
verif.extazia.fr/favicon.ico
IP
104.21.24.83:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (14482), with no line terminators
Size
6.0 kB (6043 bytes)
Hash
14095f2630dcc5cf650beaaa498a1b42
e6fcf5cc3e0c865523f4fce6a131bd518f8a230a
2f2bbc3271249c22c73565bf2b2552bddf4f911e0fe3694410c1617aec62d7b1

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=8df3c5548c5e43d
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 22:07:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: kmNrADsk95/lBBP3XNPZnfvcWXnRWVbXkLThi+AjcliFq5EQXDjWgetVV0VWpFlLzF9+1CGqLmR9+dQ0+KXatKEz/Y3BL7u2Bj90lUif9HVGmGaL57NvOpu8Pg9K8rc3tL/e+jYjw9jhL0IA/UT26A==$ykxnaMR5ZL+xdjOoLuC2gg==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QUmAC7tfcdHkzIiI1fs%2B776l8JvvuKxLy0JBiAxfCZ0Y3rcZ4TbDAdssr73v1Clp2YGZ9oR4kWHsc%2F0ZP%2BepNSyDMWDTEFNjqDZcaGk79FVdbZbfL7%2FPr1VbN8yk3lQitdU1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880cc35a981eb509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

104.21.24.83

200 OK

7.9 kB

URL User Request POST HTTP/1.1
verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
IP
104.21.24.83:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (17750), with no line terminators
Size
7.9 kB (7901 bytes)
Hash
94e70a63dd0b6d676e418e9aa87372d4
bb52070b38796d324d2667ad47ce163e5f9db2f1
fd297a0893d1d58fc251260d3558194c51131603e16df220553db3591501c47b

HTTP Headers

GET /verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9 HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Wed, 08 May 2024 22:07:30 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: AhXvtf9fcBFZZQw21hA4nosYfEcIQ/3wGKyGpSc6seyhNF30xwURS2JSygtmirzCqIJzZfSoPiTQPkDfuWOaRr/ZsHrzZsWnxpiTEphswWLA+jvAMGMhEpafwT+mPpYb8jA791wSMfkYbt6mhDeF+g==$LzTYrlEzAHfg02Bui5Q//Q==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3JWMIxWrrzx3LqJrOD5PYNGHS%2BzgjjjiKCkOWNNKaj2X7iKmut33ER37NbvrgM40S4zxUh1ZA1Qof2NiN14YgyPq1Xb0wW6Uj72lN2Gs37v4Fgl9E14X8hwQztxbxLqppHG7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880cc3547e9bb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

verif.extazia.fr/cdn-cgi/challenge-platform/h/b/flow/ov1/328965612:1715203781:ijVaIxErUiB_c_m3NQftDFQJzdq1VQDRx_bMHl2ZP2o/880cc3564847b524/8df3c5548c5e43d

104.21.24.83

12 kB

URL
verif.extazia.fr/cdn-cgi/challenge-platform/h/b/flow/ov1/328965612:1715203781:ijVaIxErUiB_c_m3NQftDFQJzdq1VQDRx_bMHl2ZP2o/880cc3564847b524/8df3c5548c5e43d
IP
104.21.24.83:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (15688), with no line terminators
Size
12 kB (11946 bytes)
Hash
2704a496a75b13a59f1b1a6e39e01d61
fe6f7c00d778b46721d0a067fbe9b26486d8456d
a2afd20d9b640874fa223bb6d1249303f32c79a9726b7b704ad063ddd1ef2c3c

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/328965612:1715203781:ijVaIxErUiB_c_m3NQftDFQJzdq1VQDRx_bMHl2ZP2o/880cc3564847b524/8df3c5548c5e43d HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Content-type: application/x-www-form-urlencoded
CF-Challenge: 8df3c5548c5e43d
Content-Length: 2356
Origin: http://verif.extazia.fr
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=8df3c5548c5e43d
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 22:07:31 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: y2GXLjgD5GqnivlHlM0RyRVzBm2XU2lcUtaRevaO4bmz/hk6WFauOLHgaLamOmJw$cOpjS+uxna1S8Ctz96/ftQ==
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=826BI182Ieq8%2FgzpUAepjC8uPwZ1syK6dxuf1lZVp%2F%2FPZARS3TXF0mKkMmkqXoJdQ2AXuF%2Bf774UZh1uc1dLmHfh6VN2vywKt9nBUvRfCOhqLDKchkEhcCsMRkEeChYoV1fd"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880cc35c6aea56c3-OSL
alt-svc: h2=":443"; ma=60

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rlqx6/0x4AAAAAAADnOjc0PNeA8qVm/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 22:07:31 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 880cc35f7debb4f1-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rlqx6/0x4AAAAAAADnOjc0PNeA8qVm/light/normal

104.17.2.184

26 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rlqx6/0x4AAAAAAADnOjc0PNeA8qVm/light/normal
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (41702)
Size
26 kB (25697 bytes)
Hash
422b0cb338ec85887db3722ed888a482
c6f3a33fd77802a0b5a3cc8fac06915fb6b6d537
96d73c6e0d074ee75ff5d2190b88e2775fa72f8df7428248c84df8c909964069

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rlqx6/0x4AAAAAAADnOjc0PNeA8qVm/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 22:07:31 GMT
content-type: text/html; charset=UTF-8
origin-agent-cluster: ?1
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
document-policy: js-profiling
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-resource-policy: cross-origin
vary: accept-encoding
server: cloudflare
cf-ray: 880cc35e3cbdb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/96550248:1715203924:-3tlNsxENqseQSKRr3F7lmfabil5vn4GPabgyMcoEtM/880cc35e3cbdb4f1/44cf13c384d13bf

104.17.2.184

107 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/96550248:1715203924:-3tlNsxENqseQSKRr3F7lmfabil5vn4GPabgyMcoEtM/880cc35e3cbdb4f1/44cf13c384d13bf
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
107 kB (106722 bytes)
Hash
0e90f178ee93056d88f4bd0546116925
ac0c2736e0e127c72b3ae7428cfaca00f7b4f6cb
2d394e4e96ed0f2684999791d564902d312d3745d3b9a38bb695add4bc780e43

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/96550248:1715203924:-3tlNsxENqseQSKRr3F7lmfabil5vn4GPabgyMcoEtM/880cc35e3cbdb4f1/44cf13c384d13bf HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rlqx6/0x4AAAAAAADnOjc0PNeA8qVm/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 44cf13c384d13bf
Content-Length: 3823
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 22:07:32 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: EUjzzbCTW2fg3RRgp/oDaccobrP1RiS3vyXjDEXeLnKn/uyNaP4/O/rllAkT4pTobRNv/J8KeoVoBHVbl558NzAtCG1olOgfTkHFsdKL2uL51ExEj+ZHkpNclb24O4KMDOjEM9tTVuyjOr7nbET2zHTJUPXpGoPOhLK0iazRlsnkOiMtTdXpYpSQS9ZqKYqBjKD5JTjvMURzgKCt6J3wLthiO76fdaE4LGJjPO0ZTCI4GGhWnS8PF1IMEUW3btEQzSvFRxppA/LxPir0rGw1CceXC98YdOb/x5DAXlig/aJjk2iIW47/7ThpBNXf4Jjqd37jzmADZAKr7Rv8E8ggQCjEfsEMLVRuP9jAEVXUiJdgdrv1cwxM4pF7A+Pzxgv6D84QstaP7qx3XTY1/C8nUnf0TtVbBTfsXMwNR36F5sM=$dB+Ki/OCNVJJCjz88SnvFQ==
vary: accept-encoding
server: cloudflare
cf-ray: 880cc361a800b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=880cc35e3cbdb4f1

104.17.2.184

181 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=880cc35e3cbdb4f1
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
181 kB (181421 bytes)
Hash
8781c2e943bbede957f451f669aab626
acf8a5fd5f3f2a2eb7b64362b87872ed8a106a36
885f73e158d0ae1167fe9a217ca775647321888e5777645039c1d09e30bbb89d

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=880cc35e3cbdb4f1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rlqx6/0x4AAAAAAADnOjc0PNeA8qVm/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 22:07:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 880cc35f8df2b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

verif.extazia.fr/cdn-cgi/challenge-platform/h/b/flow/ov1/328965612:1715203781:ijVaIxErUiB_c_m3NQftDFQJzdq1VQDRx_bMHl2ZP2o/880cc3564847b524/8df3c5548c5e43d

104.21.24.83

2.5 kB

URL
verif.extazia.fr/cdn-cgi/challenge-platform/h/b/flow/ov1/328965612:1715203781:ijVaIxErUiB_c_m3NQftDFQJzdq1VQDRx_bMHl2ZP2o/880cc3564847b524/8df3c5548c5e43d
IP
104.21.24.83:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3232), with no line terminators
Size
2.5 kB (2481 bytes)
Hash
da5c3cd9b278408f64873262b5a17c1d
0164d1937ae729d01a05dc00b1f4c3cd80e7a710
86807b7e92c5ca178223fae6c117f9f99eb7378fb41690370114ede38b324193

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/328965612:1715203781:ijVaIxErUiB_c_m3NQftDFQJzdq1VQDRx_bMHl2ZP2o/880cc3564847b524/8df3c5548c5e43d HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Content-type: application/x-www-form-urlencoded
CF-Challenge: 8df3c5548c5e43d
Content-Length: 3781
Origin: http://verif.extazia.fr
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=8df3c5548c5e43d
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 22:07:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-out-s: Toiovflrs9AOWxjDPnbBUg==$jrbKgi0NjV9NmjWA6/kvJg==
cf-chl-out: lzOpAOFLuIfvgDecKlMlO08VApzG+c9fszYcOfeNy5hVbPFZfgXZTgc2iXiqrANYzSmDrBN869kwdKQc5UCSIp0ug5/qMTaz7Ike08c8LYnoiIhOiPUrYmmKGWUuNYA6$9bCCm6+lH0Ku57dFVnppFw==
set-cookie: cf_chl_rc_ni=;Expires=Tue, 07 May 2024 22:07:35 GMT;SameSite=Strict
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7iyJQuOLwCWQMSDreWdTVa0T2e4Ggbc6xSBGqk5n6g5Cg1IPIPPHJhmpZ3Yo276xOgfKyDodZIeYST3iPwz8DDbmVb1%2FXybC5giOEq5OdcZTM5AeZxFuUKtBpH4C0Cee3dhn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880cc3794d2f56c3-OSL
alt-svc: h2=":443"; ma=60

104.21.24.83

200 OK

5.3 kB

URL User Request POST HTTP/1.1
verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
IP
104.21.24.83:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text
Size
5.3 kB (5343 bytes)
Hash
af0db522910b9245b925175fe19af597
3b2d005a4330a1666d9ca747139dcc4469198291
47781cda9b27d2cf4dac0444ab986e1919b8973f57dd4bdfcf9cd89e00c5931f

HTTP Headers

POST /verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9 HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9&__cf_chl_tk=bjz0nQNBFLCKXu5R.zakPuIEjw0l6kZZj9sz36YreYg-1715206050-0.0.1.1-2047
Content-Type: application/x-www-form-urlencoded
Content-Length: 3204
Origin: http://verif.extazia.fr
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=8df3c5548c5e43d
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 22:07:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_chl_3=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.extazia.fr
cf_clearance=uZz8Y6uL7dwcXRJElPErYIkZbCdv6tu_lsndDENyG5s-1715206050-1.0.1.1-X5quDLDNgWGxnbciQYoEfMWel.BHIhXh9mfci3q8co5GjXQ3VlIJEPfw_ixoatChd.sZYklze6JpTtl3dLofXw; Path=/; Expires=Thu, 08-May-25 22:07:36 GMT; Domain=.extazia.fr; HttpOnly
Cache-Control: public, max-age=0
last-modified: Sat, 20 Apr 2024 23:39:30 GMT
x-powered-by: Express
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZyBpR3WwCLbgHnc99Av7KieODlNyrClx8F%2B8TA4Da7xKJ9OqmdJpjhHOWvfy7vbu17%2BZ%2BUlQgzCIPBferQfU0Mb37lsddirIyGAYj%2BLcfr5ank6Jpubfpw3gPuT9Skr%2BFnkl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880cc37a0e1456c3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/animation.css

143.204.55.121

200 OK

722 B

URL GET HTTP/2
js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/animation.css
IP
143.204.55.121:443
ASN
#16509 AMAZON-02

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Certificate
IssuerAmazon
Subjectjs.chargebee.com
Fingerprint52:82:F0:7C:BC:34:17:D8:A0:66:8F:88:80:B7:A2:DE:2C:94:03:0D
ValidityMon, 12 Feb 2024 00:00:00 GMT - Tue, 11 Mar 2025 23:59:59 GMT

File type
ASCII text
Size
722 B (722 bytes)
Hash
520016f3fad41f77bb889758ac030aaf
48ca24438fbec42628371ec9320c6730a887f3e8
c8c900ec5cbe9ef18bea37051bc2bf2aa9846c2ce787d248f2451575e2a372fd

HTTP Headers

GET /assets/cbjs-2023.10.09-09.27/v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://verif.extazia.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 722
last-modified: Tue, 10 Oct 2023 04:38:56 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: foyXDctj67AQ38AQugjXyXC8alSOBAgn
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Wed, 08 May 2024 22:07:24 GMT
cache-control: max-age=300,public
etag: "520016f3fad41f77bb889758ac030aaf"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U8Wc_nd5XHQRk9K12gG0JLdpLvM7dNAEt2UcaxBK21gZNL3wC3QDcQ==
age: 14
X-Firefox-Spdy: h2

ad-delivery.net/px.gif?ch=1&e=0.7088262389751865

104.26.3.70

200 OK

43 B

URL GET HTTP/2
ad-delivery.net/px.gif?ch=1&e=0.7088262389751865
IP
104.26.3.70:443
ASN
#13335 CLOUDFLARENET

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Certificate
IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:56:A5:CD:68:65:E1:00:BD:87:3E:45:0C:B1:3B:C2:2C:8C:4E:18
ValidityTue, 19 Mar 2024 04:48:01 GMT - Mon, 17 Jun 2024 04:48:00 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /px.gif?ch=1&e=0.7088262389751865 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://verif.extazia.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 22:07:37 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPo6zuHjBRo7_QGjoPgBJ4cm6NGA39yz_qNjtg8PMIqquxVgKc71qnGT6ngjUyjh9ypCKobTvAyZ2w
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Tue, 30 Apr 2024 17:17:29 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 712208
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QQC9C4mqufDrQjNVqIZVoQe6vesnrsrnUwm%2BboAUsu0Pd4lHa7%2BRZfefr4ngTt5wGo8MFTw1Dj9LR%2FeKiW7k5afgItCDzq93qodiBBID8t4fIG5bcmkndLZQXG8Mi94pYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880cc3857e2b56c0-OSL
X-Firefox-Spdy: h2

ad-delivery.net/px.gif?ch=2

104.26.3.70

200 OK

43 B

URL GET HTTP/2
ad-delivery.net/px.gif?ch=2
IP
104.26.3.70:443
ASN
#13335 CLOUDFLARENET

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Certificate
IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:56:A5:CD:68:65:E1:00:BD:87:3E:45:0C:B1:3B:C2:2C:8C:4E:18
ValidityTue, 19 Mar 2024 04:48:01 GMT - Mon, 17 Jun 2024 04:48:00 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://verif.extazia.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 22:07:37 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPo6zuHjBRo7_QGjoPgBJ4cm6NGA39yz_qNjtg8PMIqquxVgKc71qnGT6ngjUyjh9ypCKobTvAyZ2w
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Tue, 30 Apr 2024 17:17:29 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 712208
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X%2BegGWvtKZq3oeRrFxPbChAe1pJkoweSXYy2NgoOXVsZq1OOjejJSh7pOQVAFhpsG0o6jae1v9dN4TOGQquO2SelInyaeBNnwITSl3H3rqGTCuq73uoj4yOtqDNA8n48Ww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880cc3857e3256c0-OSL
X-Firefox-Spdy: h2

verif.extazia.fr/verification/static/css/css1.css

104.21.24.83

200 OK

291 B

URL GET HTTP/1.1
verif.extazia.fr/verification/static/css/css1.css
IP
104.21.24.83:80
ASN
#13335 CLOUDFLARENET

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9

File type
ASCII text
Size
291 B (291 bytes)
Hash
a93ef5132380a6ad49819c2664fc035e
ce917239581abee682829a3abc09ef7c132f60fe
a20824ed6fb4e350d836d37b4b57a3592001a7d37bc931bbd8d82075683cf6f1

HTTP Headers

GET /verification/static/css/css1.css HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Cookie: cf_chl_3=8df3c5548c5e43d; cf_clearance=uZz8Y6uL7dwcXRJElPErYIkZbCdv6tu_lsndDENyG5s-1715206050-1.0.1.1-X5quDLDNgWGxnbciQYoEfMWel.BHIhXh9mfci3q8co5GjXQ3VlIJEPfw_ixoatChd.sZYklze6JpTtl3dLofXw
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 22:07:37 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=14400
etag: W/"2c5-18e4d6c77d0"
last-modified: Sun, 17 Mar 2024 17:18:58 GMT
x-powered-by: Express
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ST4YO3nzUoaov2YsPuhIL53F87SpP77wQfJobHFKCX9UHWb1jyeKAeWHt5%2F1f1lLhmjdo7G7Cg1mbB0AHiI6NprzkNsUnHEiMi8VEymkeONF3or1wIpGa6DNzxI%2FPBUiA9dE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880cc385185b56c3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

verif.extazia.fr/verification/static/css/adcf9ed6.js

104.21.24.83

200 OK

317 B

URL GET HTTP/1.1
verif.extazia.fr/verification/static/css/adcf9ed6.js
IP
104.21.24.83:80
ASN
#13335 CLOUDFLARENET

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9

File type
ASCII text
Size
317 B (317 bytes)
Hash
13e74cf77973de510fd2f5c5a81a1789
b86ca7b50442a4ade34d797bc5c4556fb7eb99ed
0c4258840867e9c67cd63f0a6ebbb68388dbb052c8851cb26c9236a19b7d3500

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Anti-debugging code

HTTP Headers

GET /verification/static/css/adcf9ed6.js HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Cookie: cf_chl_3=8df3c5548c5e43d; cf_clearance=uZz8Y6uL7dwcXRJElPErYIkZbCdv6tu_lsndDENyG5s-1715206050-1.0.1.1-X5quDLDNgWGxnbciQYoEfMWel.BHIhXh9mfci3q8co5GjXQ3VlIJEPfw_ixoatChd.sZYklze6JpTtl3dLofXw
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 22:07:37 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=14400
etag: W/"335-18e4d6c77d0"
last-modified: Sun, 17 Mar 2024 17:18:58 GMT
x-powered-by: Express
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DZXSb8yUJM4BiBtqM0l%2FB%2BAXwk49BCiGfc2crMYCuyt%2BWbFdQOYDOVEW0jbQ75qpo%2Bx%2FfnVGTgxjuIheeKK10ZWYPMhmrHW9zSRGxIFsKCKcZyUg0An6yiIc7nzqxR%2FJDzEI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880cc38539c35694-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

verif.extazia.fr/verification/static/css/css2.css

104.21.24.83

200 OK

9.7 kB

URL GET HTTP/1.1
verif.extazia.fr/verification/static/css/css2.css
IP
104.21.24.83:80
ASN
#13335 CLOUDFLARENET

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9

File type
ASCII text, with very long lines (349)
Size
9.7 kB (9723 bytes)
Hash
08b4a39a15b3e19cf7d57a2076ead84c
0c1191f12ae6650bac4059a181c62d43d21b8071
c47c49c0df3848d6d9e8cd0b2fc071cb1f26ae1d9e2506d8804f9661e42243d7

HTTP Headers

GET /verification/static/css/css2.css HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Cookie: cf_chl_3=8df3c5548c5e43d; cf_clearance=uZz8Y6uL7dwcXRJElPErYIkZbCdv6tu_lsndDENyG5s-1715206050-1.0.1.1-X5quDLDNgWGxnbciQYoEfMWel.BHIhXh9mfci3q8co5GjXQ3VlIJEPfw_ixoatChd.sZYklze6JpTtl3dLofXw
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 22:07:37 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=14400
etag: W/"d3a3-18e4d6c77d0"
last-modified: Sun, 17 Mar 2024 17:18:58 GMT
x-powered-by: Express
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WmWfpM%2Fgk2DcHHbceThcW966Jp55d7lXmrg%2B%2Fc3YIL7HfEX2LZT6Ad24yDwg6njljQfJT5WLL8qIul%2FNien00OZ4PJXyx7WEt4iKSreO2Q9Oh8GxTDnT4Fy7vOuNXJmE98eQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880cc3852ee256c1-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/96550248:1715203924:-3tlNsxENqseQSKRr3F7lmfabil5vn4GPabgyMcoEtM/880cc35e3cbdb4f1/44cf13c384d13bf

104.17.2.184

18 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/96550248:1715203924:-3tlNsxENqseQSKRr3F7lmfabil5vn4GPabgyMcoEtM/880cc35e3cbdb4f1/44cf13c384d13bf
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3564), with no line terminators
Size
18 kB (18325 bytes)
Hash
599fe29fb469f5476f9d540ca6187b5c
fe8e0d5fa498ab9ecc9d77ec723464ac9b8a458e
fad24a5e35401640b8191a463118854291b1bf65a17a39339cba6452d343aebb

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/96550248:1715203924:-3tlNsxENqseQSKRr3F7lmfabil5vn4GPabgyMcoEtM/880cc35e3cbdb4f1/44cf13c384d13bf HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rlqx6/0x4AAAAAAADnOjc0PNeA8qVm/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 44cf13c384d13bf
Content-Length: 28355
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 22:07:35 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: 5H55NQbL5djbuUWxRtAWWw==$MwDPtr4titv4K+ZV/O4AVA==
cf-chl-out: 8T2kdvRBVPLuVBgpcDeI9A6BthsrZVyUi4oyGPN2PBSt5LAyLm+tGS2y1XEk1XhlaV5thkO+Q+k4jhavvJ+cnSIDFhCHOGiFcJwFmNrNEHLYJqU/tAU457xjE4gj4Nnz$FpxdXrEj9KhlPOkbEm+hug==
vary: accept-encoding
server: cloudflare
cf-ray: 880cc3787989b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.discordapp.com/icons/1231234143137042524/5a7113a67bb14627f35e47080670bbb3.webp

162.159.129.233

200 OK

4.4 kB

URL GET HTTP/2
cdn.discordapp.com/icons/1231234143137042524/5a7113a67bb14627f35e47080670bbb3.webp
IP
162.159.129.233:443
ASN
#13335 CLOUDFLARENET

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Certificate
IssuerCloudflare, Inc.
Subjectdiscordapp.com
Fingerprint97:8B:EE:AD:1E:BF:A1:69:E7:94:29:F7:55:7A:29:64:19:C7:81:39
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 128x128, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.4 kB (4414 bytes)
Hash
b84e2296a96f770a2aa4475e60dd7a79
93d5ac0084a92d4d92427661a1e0f2b1fe9673ec
96ec82e01c61e38d32808f86edaeacda1373947a083a048a00643ed6429a4ce8

HTTP Headers

GET /icons/1231234143137042524/5a7113a67bb14627f35e47080670bbb3.webp HTTP/1.1
Host: cdn.discordapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://verif.extazia.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 22:07:38 GMT
content-type: image/webp
content-length: 4414
cf-ray: 880cc3870d3db4eb-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
expires: Thu, 08 May 2025 22:07:38 GMT
last-modified: Sat, 20 Apr 2024 13:27:16 GMT
x-discord-transform-duration: 7
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ctnVd%2BCjF%2Bq5xUucTb0RdWrIoP2An8VL9RMI64dqdSPRzMzEsGnRExPYOi71LObYcWCg%2FDAp%2BPjBKx7R2K2fiiuW%2Bm3ANhGMtgS%2FH7Dbn0L5iQrD%2FVNpLZclSFYupZDZNxChPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: __cf_bm=F1GQL3FLzy5FSrPti0clHY9OGkuG8ZvrwZ0Q0OFytxQ-1715206058-1.0.1.1-9LrmbW7SlkSLN02IoFm2Ljdd6JFBzNWJhdtOZHf.69euPwhka93yz.xUTYm5Z7ZwZ43UxR3C_8y3462ng3aJUg; path=/; expires=Wed, 08-May-24 22:37:38 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
_cfuvid=A1qb0uLsnhKc6kvNe6hjnafy2vNt.NmFeVMIMO.8Xu0-1715206058125-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

verif.extazia.fr/verification/static/assets/logo.png

104.21.24.83

42 B

URL GET
verif.extazia.fr/verification/static/assets/logo.png
IP
104.21.24.83:0
ASN
#13335 CLOUDFLARENET

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9

File type
ASCII text, with no line terminators
Size
42 B (42 bytes)
Hash
48465d1826b96ac08828cf29a152b25d
e0229e84cdfdf6dbd53b45defe40a4553bb792e2
0857dbdd08cf64d271a9655ab2797b37c5c16cc32a9c483b8cbdec4eded3afcf

HTTP Headers

GET /verification/static/assets/logo.png HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Cookie: cf_chl_3=8df3c5548c5e43d; cf_clearance=uZz8Y6uL7dwcXRJElPErYIkZbCdv6tu_lsndDENyG5s-1715206050-1.0.1.1-X5quDLDNgWGxnbciQYoEfMWel.BHIhXh9mfci3q8co5GjXQ3VlIJEPfw_ixoatChd.sZYklze6JpTtl3dLofXw
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Wed, 08 May 2024 22:07:38 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 42
Connection: keep-alive
access-control-allow-headers: *
access-control-allow-origin: *
location: https://captcha.bot/
vary: Accept, Accept-Encoding
x-powered-by: Express
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F41WLYVsCtCIdDVjYnVdPvE449gB9cNBxxVkw3PwFMWSi%2Bmf%2BNUMaeJUUXm%2BSaMnSqAb6u2316nofRisgAY8aywuw1ch6ZFQSX5McM21Hw7KIk1CO9ue%2Fr7KM8BK0G539dyw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880cc387da6656c3-OSL
alt-svc: h2=":443"; ma=60

captcha.bot/

104.26.7.110

7.3 kB

URL GET
captcha.bot/
IP
104.26.7.110:0
ASN
#13335 CLOUDFLARENET

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4C:81:88:2F:A4:71:F0:64:EC:46:D9:1B:4A:BE:91:90:DF:5E:DC:54
ValiditySun, 25 Jun 2023 00:00:00 GMT - Mon, 24 Jun 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (2134), with no line terminators
Size
7.3 kB (7255 bytes)
Hash
13412f7d1b009685b0436c942e98c901
8f6f6e0dc3b64364cae8c42675528e395a5b9558
ecafa88f4d35d2f6b633cbfdb74223830c13328adca1b251973d05637ab4f865

HTTP Headers

GET / HTTP/1.1
Host: captcha.bot
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://verif.extazia.fr/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 22:07:38 GMT
content-type: text/html
last-modified: Thu, 04 Apr 2024 19:27:40 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AXa5Im8TkpYY4l51x3%2Bax%2BgstLGksHaTnJ3mRBqmB%2B1tmJs14xWCm5cGJ3UN5MLodfz%2Bnjk%2BIK6MEmbdDKKccfbUY9GHDr1kQMed3Ra0PkDGToEbQCc7uDHShKgm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880cc388d8d6b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=rwxhtXPLTI1SZNhBrhR3NACI8NG136DXSNvekw7vwtHG4RdffUfI55Zfkm5_osBGm4vCscghbLROmf2RGMGnzdqqKUCi8wRcCStkXfwnAXGJw_4pdnQsY6IILnAHarFh
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Wed, 08 May 2024 22:07:01 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 47
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

verif.extazia.fr/verification/static/css/logo.png

104.21.24.83

200 OK

15 kB

URL GET HTTP/1.1
verif.extazia.fr/verification/static/css/logo.png
IP
104.21.24.83:80
ASN
#13335 CLOUDFLARENET

Requested by
http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9

File type
RIFF (little-endian) data, Web/P image
Size
15 kB (14910 bytes)
Hash
09c754ad1c663c4478489bb1648e439b
39c52cf6ace0dff4bf06457a7bd856534f314319
6227e69f1c3711825b5166ddcbd07539e556ce7068917ad7701a5af5b4814f33

HTTP Headers

GET /verification/static/css/logo.png HTTP/1.1
Host: verif.extazia.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://verif.extazia.fr/verification/?data=eyJndWlsZElkIjoiMTIzMTIzNDE0MzEzNzA0MjUyNCIsImNsaWVudElkIjoiOTQ2NDY4ODkyMzMzNzAzMjg4IiwibmFtZSI6IkNoaWxsIGFuZCBMb3ZlIiwibWVtYmVycyI6MiwiaWNvbiI6Imh0dHBzOi8vY2RuLmRpc2NvcmRhcHAuY29tL2ljb25zLzEyMzEyMzQxNDMxMzcwNDI1MjQvNWE3MTEzYTY3YmIxNDYyN2YzNWU0NzA4MDY3MGJiYjMud2VicCJ9
Cookie: cf_chl_3=8df3c5548c5e43d; cf_clearance=uZz8Y6uL7dwcXRJElPErYIkZbCdv6tu_lsndDENyG5s-1715206050-1.0.1.1-X5quDLDNgWGxnbciQYoEfMWel.BHIhXh9mfci3q8co5GjXQ3VlIJEPfw_ixoatChd.sZYklze6JpTtl3dLofXw
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 22:07:38 GMT
Content-Type: image/png
Content-Length: 14910
Connection: keep-alive
Cache-Control: public, max-age=14400
etag: W/"3a3e-18e4d6c7bb8"
last-modified: Sun, 17 Mar 2024 17:18:59 GMT
x-powered-by: Express
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8x8PMnMhC7VuUoyNsrEo5iUPluZl6vXMrg5R%2FTnx9PaTtCNvXZ4jWqIFeu%2BrJAytxyv4U129fRQK5OfVOQB3Hepl%2FIH19yzmSCUT2ZNT5E6pD4V%2BkO62vpyqXDPxdHgObDBA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880cc386795656c3-OSL
alt-svc: h2=":443"; ma=60

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash