Report - send.cm/d/xESA

Report Overview

Submitted URL
send.cm/d/xESA
IP
104.26.13.123
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-10 08:26:31
Access
public
Website Title
32u97td6ey8e
Final URL
send.cm/d/xESA
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dismantlepenantiterrorist.com	17847	2021-11-01	2021-11-01	2024-03-27	741 B	0 B	0.0.0.0
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-05-09	417 B	416 B	18.185.9.67
send.cm	338619	2019-03-18	2019-08-16	2024-04-18	15 kB	1.1 MB	104.26.13.123
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-09	338 B	942 B	3.164.222.26
freedom.send.cm	unknown	2019-03-18	2023-12-16	2024-03-27	1.6 kB	24 kB	104.26.13.123
killerrubacknowledge.com	unknown	2024-02-27	2024-02-28	2024-04-27	458 B	1.1 kB	192.243.61.227
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-05-09	404 B	87 kB	104.21.35.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	dismantlepenantiterrorist.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (17)

	URL	Size	First Seen	Last Seen
	unknown	202 B	2023-12-24	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-24 07:49:38 Last Seen2024-05-10 10:26:32 Times Seen37 Hash d4c4525fb689407dbb954dc0a69a6423 6d9c829975342c1636d82495259fe85393b9bb9f 6487011447de42f0ab52e33b026ae76b27ff113c63d345123614ef3f47c81495 Loading...

	unknown	70 kB	2024-05-07	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 13:43:12 Last Seen2024-05-10 10:26:32 Times Seen3 Hash 6156877a32d3588ab07df77ac2a24702 286c132feb6b333b9d63f69452c9a8b67aa7ff16 7667dff15b48a324c0601cd65f94a51a2e5584cdcc16af8d221b182340ab9593 Loading...

	unknown	247 B	2024-05-10	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 10:26:32 Last Seen2024-05-10 10:26:32 Times Seen1 Hash 6d0c3de526c22f39072cce61a87ca08c 94db30fb3169bf6207ef1900420e819484b24b2a d5bce8f0996eb7c2a3c51c1215221f5c26e3a37b83d2ba1ba1992eb3f79b0ae2 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 104.21.35.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 14:49:08 Times Seen3553 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	send.cm/d/xESA	1.1 kB	2024-05-10	2024-05-10
Pretty URL send.cm/d/xESA IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 10:26:32 Last Seen2024-05-10 10:26:32 Times Seen1 Hash 806b76cd4881315ceac3756eb33b2fb2 6c0fa5e535a22534b580291d45b7667ea71144c9 62e354ebda571200c5866df54d46a8979c087511f037a45e73d3db12eee4824b Loading...

	send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-05-20
Pretty URL send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-20 20:48:54 Times Seen44553 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-05-10	2024-05-10
Pretty URL send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 10:26:32 Last Seen2024-05-10 10:26:33 Times Seen2 Hash bac8e0107bcf1d7ed1ec42bb228f971b 11c9f3b59e7e819e6fa24b327156548bab4f194b 217c46cf1d6e385001fd3244d34a0c7a2a6b88f7ac237def7d16c0f4ace30af1 Loading...

	send.cm/lib/bootstrap/js/bootstrap.bundle.min.js	79 kB	2023-03-07	2024-05-20
Pretty URL send.cm/lib/bootstrap/js/bootstrap.bundle.min.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2024-05-20 11:57:50 Times Seen15794 Hash a454220fc07088bf1fdd19313b6bfd50 265a733cb7fbc481fd2510a659a85ad55c93c895 7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c Loading...

	send.cm/static/js/clipboard.min.js	9.0 kB	2023-03-07	2024-05-20
Pretty URL send.cm/static/js/clipboard.min.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:35 Last Seen2024-05-20 10:23:43 Times Seen724 Hash ad98572d415d2f2452845a6068a913c0 6674f81dd01c76be986cf0a8172d1073e56d7ef4 baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1 Loading...

	freedom.send.cm/s.js	66 kB	2023-12-29	2024-05-19
Pretty URL freedom.send.cm/s.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-29 06:05:37 Last Seen2024-05-19 20:54:22 Times Seen94 Hash 9d1ce4d375ba477f53b06b01a0fc4776 ef2b3631542498d8fd02337a86bd0f9a78178ad7 306d2a6602684ed92b52f88e6c9f796e056ed96f3db412cf36f6df1b8e5a7874 Loading...

	unknown	406 B	2023-12-25	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-25 18:13:22 Last Seen2024-05-10 10:26:33 Times Seen19 Hash 7617feebd6603e1ac8f47d439a6db53a 00a4651c48a0283cfeaf152bc3a4f8d2c30b157a f5f8b2112da564e374451578e2be5ec2dd64edba8d170527137572225c83123e Loading...

	send.cm/js/share.js	329 B	2023-03-07	2024-05-19
Pretty URL send.cm/js/share.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-19 20:33:30 Times Seen545 Hash e38522ef9b2fe6940894f9f35a29f407 d5227e21fbae55e23bd87bf084a4049e797d0775 59b3cd5e8d2207976f8f687c84eba22d83cf960318fa8f7a6f31022ef4e69208 Loading...

	send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js	18 kB	2023-03-07	2024-05-20
Pretty URL send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:24 Last Seen2024-05-20 12:02:12 Times Seen2340 Hash 4a10bcfa0a9c9fa9d503b5a498cac31e c4f6c403e99fb37cb496c3844b332823db7c5837 a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634 Loading...

	send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.8 kB	2024-05-10	2024-05-10
Pretty URL send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 10:26:33 Last Seen2024-05-10 10:26:33 Times Seen1 Hash 15cb1461aacfb462d321d7962cf40bd2 ff29bca88e1b3819bb76e1d715ded0dc15b5535b 0f4cad5b8752d47090a50bf59ce6cc946a99fcd5ac3cff413e35f31396929096 Loading...

	send.cm/static/js/jquery.min.js	93 kB	2023-03-07	2024-05-20
Pretty URL send.cm/static/js/jquery.min.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:49 Last Seen2024-05-20 11:15:15 Times Seen1868 Hash bdce12c949e78d570c8d44e9c2b23508 9afdc4fec954646bd6270caf82f107fdef605bc5 c73b004ebf31b395cf237c3d2b13c1e576f385e04660ceb5f7be163ff3c201dc Loading...

	send.cm/lib/feather-icons/feather.min.js	66 kB	2023-03-07	2024-05-10
Pretty URL send.cm/lib/feather-icons/feather.min.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:44 Last Seen2024-05-10 10:26:33 Times Seen227 Hash 44dee7fbafd7dc2404fa62713a8398c2 34f8691360e3548d1c9c18534cb0ec38b5c63154 a90582369e8cfed7b41dca4758e2fbe09fccf55b89f0cd0b7d46efd0745db831 Loading...

	send.cm/assets/js/dashforge.js	2.3 kB	2023-03-07	2024-05-10
Pretty URL send.cm/assets/js/dashforge.js IP 104.26.13.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:15:58 Last Seen2024-05-10 10:26:33 Times Seen212 Hash 6ede26a7d7238a4ed67bcbdb67b30bb6 581c80a8cfec9844478e3b99b7774221c78d2be9 ccc7d942a1cfa3c238044a4885889799d7b215b5b29b2c48f5db28bececc2040 Loading...

HTTP Transactions (33)

URL IP Response Size

send.cm/static/img/logo.png

104.26.13.123

200 OK

3.2 kB

URL GET HTTP/3
send.cm/static/img/logo.png
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
RIFF (little-endian) data, Web/P image
Size
3.2 kB (3204 bytes)
Hash
a9dcb4c5f953aad68b3ed3cd122d7322
254483e1c45fafc22aa72412a00e66655aa7a134
1761a2e8218a4b6083a5a39a93894c1a6b8b16fc363463fc19de7939d6577bd3

HTTP Headers

GET /static/img/logo.png HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: image/webp
content-length: 3204
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=6655
content-disposition: inline; filename="logo.webp"
etag: "66095244-19ff"
expires: Thu, 30 May 2024 13:09:46 GMT
last-modified: Sun, 31 Mar 2024 12:08:36 GMT
vary: Accept
cf-cache-status: HIT
age: 825759
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bhqy4Gl4lM%2FLvdEFq%2FFdNmC5QeFJRtsS1pyFDpOtCRKD6eBIVZOKOfwi8EfRNLVlpx8zJI8iSwPYd7Oqf692si2C407WLnDO9NZehqpsOnqJUcjfdNknr0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adb8fda568b-OSL
alt-svc: h3=":443"; ma=86400

send.cm/qr/8EKOI

104.26.13.123

200 OK

336 B

URL GET HTTP/3
send.cm/qr/8EKOI
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
PNG image data, 135 x 135, 1-bit grayscale, non-interlaced
Size
336 B (336 bytes)
Hash
360e2e1cfc953bb268bc99569efa5f7c
90060e7961a2a3a9b73e017616859094c15d953b
8e424b30abaee78374c5a7b90ed022a6440e7dffa5f9fe84a3a60bc6e1317263

HTTP Headers

GET /qr/8EKOI HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: image/png
content-length: 336
content-transfer-encoding: binary
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2FRhro5%2Bh7Yhq8oZNiJdjVkC6ubjrml%2FZsTNQjRSoXiCmXc7wBV%2FEt3NkliUHV6zEhtLHJS2DPNPuT3P0fPX7iiCUo8%2B%2FkzKS%2B9zlN20p8W1UsnF%2BH0RDlA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adb8fe1568b-OSL
alt-svc: h3=":443"; ma=86400

send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js

104.26.13.123

200 OK

80 kB

URL GET HTTP/3
send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
JavaScript source, ASCII text, with very long lines (18216)
Size
80 kB (79720 bytes)
Hash
4a10bcfa0a9c9fa9d503b5a498cac31e
c4f6c403e99fb37cb496c3844b332823db7c5837
a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634

HTTP Headers

GET /lib/perfect-scrollbar/perfect-scrollbar.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: W/"4773-5ae64b14b0680-gzip"
vary: Accept-Encoding
expires: Fri, 10 May 2024 08:18:43 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NM3guu%2BoGlRMhdhbSt%2F5S8tN6NotBPCMkkWzLJ%2BNmnDDykN6bSnSJJsHfdjdoCVI71YEMdy9yR3T7bnigzYhRzNOlck%2BNMe3MPmICD7Yq48z9gr8WDg1u5w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adb8fe8568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Regular.woff2

104.26.13.123

200 OK

60 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Regular.woff2
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 60172, version 3.262
Size
60 kB (60172 bytes)
Hash
5a63ce4575258cfd233fd935817bc880
ef1ae2f5392550a65f258ecace9b58fe5e3d3bbb
ecfc5b17caab72e77a345031f6ab2421edba2e5e02860542343b85d0e362beb9

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Regular.woff2 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: font/woff2
content-length: 60172
last-modified: Sun, 31 Mar 2024 12:07:47 GMT
vary: Accept-Encoding
etag: "66095213-eb0c"
expires: Thu, 02 May 2024 19:11:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 825758
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1e8UDFb9zP1ZGV0DE%2BN7AUl8Kekq6MdZoBun8kyHFqxWACI0XHQEdGgTyD6x%2BqIvLAQpRi%2BEowBnPVSU8ulYItrTw6hK86Iu3oUyACBV9L8nixN%2F3zj4OQI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adc7952568b-OSL
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Medium.woff2

104.26.13.123

200 OK

64 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Medium.woff2
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 63940, version 3.262
Size
64 kB (63940 bytes)
Hash
ce77980525f572eb49832d0f4e783b0c
e609699edcc828f162cae782d8bfbb30f7a11500
032f2da358608a2aa15d7bd21384e4bf1f398584e265b37d1814509812cc219b

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Medium.woff2 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: font/woff2
content-length: 63940
last-modified: Sun, 31 Mar 2024 12:07:47 GMT
vary: Accept-Encoding
etag: "66095213-f9c4"
expires: Thu, 02 May 2024 17:16:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 820342
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zrpB6L9vrCCNHCzL1n0bGgRyvASFPAyGsAEmgonpsZTSQiI7dTZvCHWTFFQZjLPv8lPlGPMvcaPTCg0HgeuimUayRPvMcwyOVrywK2IhIsBPkQMCB6aNldg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adc6928568b-OSL
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.26.13.123

200 OK

20 kB

URL GET HTTP/3
send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
gzip compressed data, from Unix
Size
20 kB (20502 bytes)
Hash
586c6fd5d9e3b066b1340e47ae4fb449
c1f3e086a1b448c660e26bb08065a8b528c6cd4e
f6588f3d0f054a94af4325b9eb7bada4bde3618ba8541916d716466d658c5285

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2024 09:31:53 GMT
etag: W/"663b4689-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RWtcXBLpTYDinzMrDBzbeakWU783pttMRIF0WJSYpRegV%2F%2F04tAOdm8FJuo4BAIk%2B1TSuaDmuazPJ%2F8cj7%2BBZ756mzPdAk%2Bdv91%2FoHJyWDSL9szHBSI2cAg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88188adb8fe9568b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 12 May 2024 08:26:06 GMT
cache-control: max-age=172800, public
content-encoding: gzip

send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.26.13.123

302 Found

0 B

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Fri, 10 May 2024 08:26:06 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PJLWwknWFaDHXIL%2Beu0RyMnAaMji5n0jTQjKpRFU2vFUSQ0BD3l%2FrHY4y9FfLXUkVF8%2F1IBgeoJVQhC2mQsflUeo87htQ1Crjko9C8uqtxKwvDtQ8x%2FZm88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88188adcc9ce568b-OSL
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Medium.woff2

104.26.13.123

200 OK

64 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Medium.woff2
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 63940, version 3.262
Size
64 kB (63940 bytes)
Hash
ce77980525f572eb49832d0f4e783b0c
e609699edcc828f162cae782d8bfbb30f7a11500
032f2da358608a2aa15d7bd21384e4bf1f398584e265b37d1814509812cc219b

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Medium.woff2 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: font/woff2
content-length: 63940
last-modified: Sun, 31 Mar 2024 12:07:47 GMT
vary: Accept-Encoding
etag: "66095213-f9c4"
expires: Thu, 02 May 2024 17:16:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 820342
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=05y7lnbFyh90j7qwWlva8e8BZ2sS4JSCzDXM%2FM%2BBaBgkjd3T0kxM2stjqPxLfKBR0SC6%2BVMpdzS3OtzmFkM6we47o06XevOoUMHTPFe%2F9dJzn8JVRvB6ASM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188ade1c41568b-OSL
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Regular.woff2

104.26.13.123

200 OK

60 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Regular.woff2
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 60172, version 3.262
Size
60 kB (60172 bytes)
Hash
5a63ce4575258cfd233fd935817bc880
ef1ae2f5392550a65f258ecace9b58fe5e3d3bbb
ecfc5b17caab72e77a345031f6ab2421edba2e5e02860542343b85d0e362beb9

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff2/IBMPlexSans-Regular.woff2 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: font/woff2
content-length: 60172
last-modified: Sun, 31 Mar 2024 12:07:47 GMT
vary: Accept-Encoding
etag: "66095213-eb0c"
expires: Thu, 02 May 2024 19:11:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 825758
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nkfWLcBDEPyYEBNlLYObj4IUuybx287x9bc3Szffo1fr%2FUpNkHCZdRH%2BlZ6uhrTn48I96tnyH1xDAJR%2F25p4%2Ft%2Fd5dv43bVqhL265jaVKbu8d7%2BjCtVWRIQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188ade1c43568b-OSL
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js

104.26.13.123

200 OK

3.7 kB

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
JavaScript source, ASCII text, with very long lines (7921), with no line terminators
Size
3.7 kB (3706 bytes)
Hash
bac8e0107bcf1d7ed1ec42bb228f971b
11c9f3b59e7e819e6fa24b327156548bab4f194b
217c46cf1d6e385001fd3244d34a0c7a2a6b88f7ac237def7d16c0f4ace30af1

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b9Ch9i%2FoaCJ1P%2FoKF6lBUbYOABwVYsVKyiOKzvcQZ7qEkJleYXQ7FD4xceaIdlN6k5no6jJZWIbHSHazunnQmxSTg%2F0Z3kerhnqiPd7mrSxrqLg0BSxRCLc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88188add0a32568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.26.13.123

302 Found

0 B

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP; cf_clearance=WkzhmC42sQjBNpe3XHslsFTzD1Uf1fZLz8FTzZKD5bA-1715329566-1.0.1.1-KiJu2dLrhIVnpwsCjms9d2gUZFpRsoEgPAWDg.yGqd.1sVUes7hh8HdB7eqXQNcLHeRT.7DiZH6b56mSaSNhOQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Fri, 10 May 2024 08:26:06 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y%2BDYDtcM00AE6wTKPk21VNbUZ1y8xWPyX2WIMusXqugVvPHkBihgX541mSO6Lackt3Oitcmmbxhsmw7ORgZI8sOjZjD5mgelLHDEW8MzGysa7HYUPrHkZZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88188adebd33568b-OSL
alt-svc: h3=":443"; ma=86400

ocsp.r2m03.amazontrust.com/

3.164.222.26

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
3.164.222.26:0
ASN
#0

File type
data
Size
471 B (471 bytes)
Hash
c1ae368dfcd18c3fe0a38f18783ecfe1
591b78d8c937af6063def58fa5d376d07e7d005e
58ceb2cb03a41de3ae12171e7359276ed8fcbc1881b071c2783b782667cf124b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 08:26:06 GMT
Last-Modified: Fri, 10 May 2024 06:52:16 GMT
Server: ECAcc (ska/F73C)
X-Cache: Miss from cloudfront
Via: 1.1 ab37fc2d73bd6e477f5652b6cb140162.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: 4aKNtczPrtuoAcMa9toXJQQufzkr0cJ73bD6g-Vyt63TPWzDTbOLyw==
Age: 5631

freedom.send.cm/s.php?action_name=32u97td6ey8e&idsite=1&rec=1&r=172736&h=8&m=26&s=6&url=https%3A%2F%2Fsend.cm%2Fd%2FxESA&_id=1159572376184d02&_idn=1&send_image=0&_refts=0&pv_id=iStFtG&pf_net=20&pf_srv=254&pf_tfr=60&pf_dm1=214&pf_dm2=338&pf_onl=2&uadata=%7B%7D&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024

104.26.13.123

204 No Content

0 B

URL POST HTTP/3
freedom.send.cm/s.php?action_name=32u97td6ey8e&idsite=1&rec=1&r=172736&h=8&m=26&s=6&url=https%3A%2F%2Fsend.cm%2Fd%2FxESA&_id=1159572376184d02&_idn=1&send_image=0&_refts=0&pv_id=iStFtG&pf_net=20&pf_srv=254&pf_tfr=60&pf_dm1=214&pf_dm2=338&pf_onl=2&uadata=%7B%7D&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /s.php?action_name=32u97td6ey8e&idsite=1&rec=1&r=172736&h=8&m=26&s=6&url=https%3A%2F%2Fsend.cm%2Fd%2FxESA&_id=1159572376184d02&_idn=1&send_image=0&_refts=0&pv_id=iStFtG&pf_net=20&pf_srv=254&pf_tfr=60&pf_dm1=214&pf_dm2=338&pf_onl=2&uadata=%7B%7D&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024 HTTP/1.1
Host: freedom.send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; cf_clearance=WkzhmC42sQjBNpe3XHslsFTzD1Uf1fZLz8FTzZKD5bA-1715329566-1.0.1.1-KiJu2dLrhIVnpwsCjms9d2gUZFpRsoEgPAWDg.yGqd.1sVUes7hh8HdB7eqXQNcLHeRT.7DiZH6b56mSaSNhOQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/3 204 No Content
date: Fri, 10 May 2024 08:26:06 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.16
tk: N
access-control-allow-origin: https://send.cm
access-control-allow-credentials: true
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dndYLYHrdiln%2FXPOX%2B6goQ8N%2FOeAfy2RaPvZHXPXyZMGc90rBLCRs1UmATHkFQkoyBiQLkAxQOqj3%2Fk6oKZxpH%2BHryXM4dJoodWI4%2FszC8ZFeOFCR7W6HTuDSzi6ES9Q3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adedd6c568b-OSL
alt-svc: h3=":443"; ma=86400

freedom.send.cm/s.js

104.26.13.123

200 OK

22 kB

URL GET HTTP/3
freedom.send.cm/s.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
JavaScript source, ASCII text, with very long lines (64283)
Size
22 kB (22127 bytes)
Hash
9d1ce4d375ba477f53b06b01a0fc4776
ef2b3631542498d8fd02337a86bd0f9a78178ad7
306d2a6602684ed92b52f88e6c9f796e056ed96f3db412cf36f6df1b8e5a7874

HTTP Headers

GET /s.js HTTP/1.1
Host: freedom.send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; cf_clearance=WkzhmC42sQjBNpe3XHslsFTzD1Uf1fZLz8FTzZKD5bA-1715329566-1.0.1.1-KiJu2dLrhIVnpwsCjms9d2gUZFpRsoEgPAWDg.yGqd.1sVUes7hh8HdB7eqXQNcLHeRT.7DiZH6b56mSaSNhOQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript
cache-control: public, max-age=259200
cf-bgj: minify
cf-polished: origSize=66607
etag: W/"65ed6d38-1042f"
expires: Fri, 10 May 2024 08:35:27 GMT
last-modified: Sun, 10 Mar 2024 08:20:08 GMT
pragma: public
vary: Accept-Encoding
cf-cache-status: HIT
age: 1550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OGiLt8nouJzY8wVGsvpZqzrwaraBOeMUPhZsl4JAIY%2B6ZID2jdApKST51RgWcLITrQEfsPIob%2FjtDg8S85ZX0lXlg98qB%2Fe32UHu5pDglRB4RrrI97dMtWyzOgQqBHiTBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188ade6c9c568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/88188ad86d99b4ed

104.26.13.123

200 OK

0 B

URL POST HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/88188ad86d99b4ed
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/88188ad86d99b4ed HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12138
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP; cf_clearance=WkzhmC42sQjBNpe3XHslsFTzD1Uf1fZLz8FTzZKD5bA-1715329566-1.0.1.1-KiJu2dLrhIVnpwsCjms9d2gUZFpRsoEgPAWDg.yGqd.1sVUes7hh8HdB7eqXQNcLHeRT.7DiZH6b56mSaSNhOQ; _pk_id.1.43ee=1159572376184d02.1715329567.; _pk_ses.1.43ee=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=8UtbAalI.eObTp44YuxI9XeqFKs5T0rw8zaFGbPZB9k-1715329566-1.0.1.1-FsoGMAkYGOwzzL50Y6UOA6WjLo.zR.orO9LstILXH7GZynq5oLYfL4pWqngHU50934FLtEII5xvDJHk4A_yJhg; Path=/; Expires=Sat, 10-May-25 08:26:06 GMT; Domain=.send.cm; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EdwCKnAEvBj3CqIvawM23nFrEWBRc0pjB%2BJQJsaCiAY%2FzLJRKluNq9vY6ALOh%2Fdo9UK76b2DIJbED3ODBgoyuASis5C%2BUCn954gFxvAHzo8MGrwNBKtEJWo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adfbef0568b-OSL
alt-svc: h3=":443"; ma=86400

killerrubacknowledge.com/9c/ed/24/9ced2453f41586bc39632e754938332a.json

192.243.61.227

200 OK

385 B

URL GET HTTP/1.1
killerrubacknowledge.com/9c/ed/24/9ced2453f41586bc39632e754938332a.json
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://send.cm/d/xESA
Certificate
IssuerLet's Encrypt
Subjectkillerrubacknowledge.com
FingerprintE9:BD:ED:22:27:96:81:ED:FD:26:56:A8:25:6E:25:4B:39:5C:4F:96
ValiditySun, 28 Apr 2024 07:07:31 GMT - Sat, 27 Jul 2024 07:07:30 GMT

File type
JSON text data
Size
385 B (385 bytes)
Hash
57ab4bdad2f0d1bcd53eaa696f0b81ac
1272d340c1fb53d5cae0919033a215cbc28dd03e
088bd8f62db988de46b1fdf75e6fafe5b7eb489b0de2f7996960c9c559dfd70d

HTTP Headers

GET /9c/ed/24/9ced2453f41586bc39632e754938332a.json HTTP/1.1
Host: killerrubacknowledge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 08:26:07 GMT
Content-Type: application/json
Content-Length: 385
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 220808b84fd599f5c7675e92e68e027b
Strict-Transport-Security: max-age=0; includeSubdomains

send.cm/static/js/jquery.min.js

104.26.13.123

200 OK

57 kB

URL GET HTTP/3
send.cm/static/js/jquery.min.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
JavaScript source, ASCII text, with very long lines (32072)
Size
57 kB (57113 bytes)
Hash
bdce12c949e78d570c8d44e9c2b23508
9afdc4fec954646bd6270caf82f107fdef605bc5
c73b004ebf31b395cf237c3d2b13c1e576f385e04660ceb5f7be163ff3c201dc

HTTP Headers

GET /static/js/jquery.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 26 Sep 2020 12:00:16 GMT
etag: W/"16b88-5b0362d29f400-gzip"
vary: Accept-Encoding
expires: Fri, 10 May 2024 08:38:32 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bE32%2BsyEfw7kudfcKbJ9wP%2BCw60V2N%2B9en9M3FA7uYt3Cd71ZaS4ALRxVSxSWBejqD0XZVt1kWsQYLfyi4Tvke0CfdvQA%2FSKjPVcKvy6ZxQk6On%2FYV4xTrw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adb7fd6568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/assets/js/dashforge.js

104.26.13.123

200 OK

11 kB

URL GET HTTP/3
send.cm/assets/js/dashforge.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
JavaScript source, ASCII text, with very long lines (366)
Size
11 kB (10755 bytes)
Hash
6ede26a7d7238a4ed67bcbdb67b30bb6
581c80a8cfec9844478e3b99b7774221c78d2be9
ccc7d942a1cfa3c238044a4885889799d7b215b5b29b2c48f5db28bececc2040

HTTP Headers

GET /assets/js/dashforge.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: max-age=259200
cf-bgj: minify
cf-polished: origSize=3370
etag: W/"d2a-5d2f044f765a3-gzip"
expires: Fri, 10 May 2024 08:24:17 GMT
last-modified: Sun, 12 Dec 2021 10:17:54 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lpmGDejZpxD%2FgFasV8sJ%2BF6Gd1Pvp%2Bsvnh%2BnmohDcEkD7jeeRmiOPXll3vZuKbLDBUGplS0qVLHFuBVzEfgCVs7h3eIdIgsHgRFvSGxyBGupp4sSMKO7elM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adb8fe7568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/js/clipboard.min.js

104.26.13.123

200 OK

9.0 kB

URL GET HTTP/3
send.cm/static/js/clipboard.min.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (9258), with no line terminators
Size
9.0 kB (9034 bytes)
Hash
db9c29b300b6e957b611f437fe482b0c
a7ca1b86b66aa417e5ded8bddf571bd28775d7d1
02b7776bbff33fa250331338c8a085b5447d8575283a7943519c56f72215b2b2

HTTP Headers

GET /static/js/clipboard.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 14 Dec 2022 18:00:20 GMT
etag: W/"234a-5efcd82834534-gzip"
vary: Accept-Encoding
expires: Fri, 10 May 2024 08:41:29 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jy2SIChQcXKN1Oaw0OvSepK%2FUgrCRviEJEQE%2F0S6IJ8DolLSsQaUC%2F2A4CBZ44qynEWM%2Fzjh8sCAr94M1Ak1sWKV%2BPedk6xwj%2B%2Bm3%2FvvKOf29eQ3xKg%2BspE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adc4900568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/HelveticaRoundedBold.woff2

104.26.13.123

200 OK

17 kB

URL GET HTTP/3
send.cm/static/fonts/HelveticaRoundedBold.woff2
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16616, version 1.0
Size
17 kB (16616 bytes)
Hash
179a4505a363dd81e5edb2eee9b3436f
fd888e07deafdc3c1036ca3caf6e85246422700c
0edf38ab37e685e56b8edb4036e001af2749d2b21161cc02f0f24e6dea91238b

HTTP Headers

GET /static/fonts/HelveticaRoundedBold.woff2 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: font/woff2
content-length: 16616
last-modified: Sun, 31 Mar 2024 12:08:29 GMT
vary: Accept-Encoding
etag: "6609523d-40e8"
expires: Thu, 02 May 2024 20:19:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 828027
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O35euCyn76%2FFelEk3VjA6nCABSLh%2FTYJv3vm8XIXewcsW6W%2B9XjbO%2FXjGrTKt6BQCi5Y8a9XwzKSGv6arme0mG6P3OMPaWl2jf3m6CC6wKdyl78aShLR7HY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adc896c568b-OSL
alt-svc: h3=":443"; ma=86400

send.cm/favicon.ico

104.26.13.123

200 OK

65 kB

URL GET HTTP/3
send.cm/favicon.ico
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 64x64, 32 bits/pixel
Size
65 kB (64686 bytes)
Hash
22dab3b36a487940c539e179b7edd7ea
ad1d193daab9eb56c4d27b10e0f0638307c262cc
b64c225956915ee8b619ea190276ebe838880d3a16793a5614487e8be5b5d3bf

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: image/vnd.microsoft.icon
last-modified: Thu, 03 Sep 2020 08:39:39 GMT
etag: W/"fcae-5ae64b15a48c0"
expires: Fri, 10 May 2024 08:41:08 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 524
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oItN29nbODOcCUgsASt%2FR8ar08b9hSfRLjvYZ45sGrV7LfcknwGLgY%2FAcX%2FvI8z4xbBqDvV7Bh2W4uN8VLzDd1LXNREMAj2VDF4wd5pUPzc17rN5cCFQMps%3D"}],"group":"cf-nel","max_age":604800}, {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=hZvccYk1aKSms6FWi7cA_fCbNX6NN5u4G.X3A7TdQ40-1715329566-1.0.1.1-t5Em7cM6Hk5KN852NaFr0yBMw4rIa4TdoHHTABBVR5.a6A2yy2LvK_18tDAq24Y1DC5g7nHbCZrVplrvmFguMJzJ1CDX89m.R0RtPZvAdg6DVZeewaVRJw9XMP2YZuMq9Zned2.C8HZ6UZK5aEhFOQ"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=hZvccYk1aKSms6FWi7cA_fCbNX6NN5u4G.X3A7TdQ40-1715329566-1.0.1.1-t5Em7cM6Hk5KN852NaFr0yBMw4rIa4TdoHHTABBVR5.a6A2yy2LvK_18tDAq24Y1DC5g7nHbCZrVplrvmFguMJzJ1CDX89m.R0RtPZvAdg6DVZeewaVRJw9XMP2YZuMq9Zned2.C8HZ6UZK5aEhFOQ; report-to cf-csp-endpoint
vary: Accept-Encoding
server: cloudflare
cf-ray: 88188add1a4b568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/css/auth.min.css

104.26.13.123

200 OK

789 B

URL GET HTTP/3
send.cm/static/css/auth.min.css
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
ASCII text, with very long lines (789), with no line terminators
Size
789 B (789 bytes)
Hash
f095cdbc5703353ae870aa6fd1504bb8
395b5898fde4cb72dc30e7752bde4e68317fb299
d7091a28d7048b34315acc78d543eb1181751aec851df73f83da7d3b07081116

HTTP Headers

GET /static/css/auth.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: text/css; charset=utf-8
last-modified: Tue, 23 Mar 2021 17:04:40 GMT
etag: W/"315-5be372d95fefb-gzip"
vary: Accept-Encoding
expires: Fri, 10 May 2024 08:41:09 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ig4SuO6d37APkPh2nBIUqWFlIOcSYXA6lwCOmg2nf3fSpXkvasSM39GbRwmyJQqdvy1gPR78OGfTyuxYFuBlOgdpG9y4yKLivsnnfIDXQAa0XrdX%2FXyripI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adb7fd2568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

downstairsnegotiatebarren.com/sfp.js

104.21.35.227

200 OK

86 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
104.21.35.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT

File type

Size
86 kB (85611 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 08:26:07 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: b8b8d20e8958dbf6f609f551cd33c887
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 10 May 2024 08:26:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jJZs8fBbqoS7BreCFclO%2BrHPZh8kG%2FZhqjUBiZThemx9hTmdiGfxwLDcYQsW3Cdlr9cueZJaMkahm9pitdG0fSteG%2BMD5Gsu96hSJ%2BgkbPCE3Oo6CcOAQO8L3iXYj9JWCWhYDmDy168%2BRHdGJbRVvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88188ae31a7556a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dismantlepenantiterrorist.com/pxf.gif?uuid=b0377704-80e9-4c58-85ff-45e33f80cf53&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8

0.0.0.0

0 B

URL GET
dismantlepenantiterrorist.com/pxf.gif?uuid=b0377704-80e9-4c58-85ff-45e33f80cf53&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8
IP
0.0.0.0:0
ASN
#0

Requested by
https://send.cm/d/xESA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=b0377704-80e9-4c58-85ff-45e33f80cf53&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: dismantlepenantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

send.cm/static/css/v03.dark.min.css

104.26.13.123

200 OK

27 kB

URL GET HTTP/3
send.cm/static/css/v03.dark.min.css
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
ASCII text, with very long lines (26782), with no line terminators
Size
27 kB (26782 bytes)
Hash
b2c37297d743f04e8d7f6ba20e616b68
775684035c0fa556d0fc59a154422cb756e31baa
a1f13adb93966bd9b0b1e267f73d3d6bcf4a1233ab3f74d58bff91e3b5c8ae7e

HTTP Headers

GET /static/css/v03.dark.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: text/css; charset=utf-8
last-modified: Tue, 09 Apr 2024 16:32:30 GMT
etag: W/"689e-615ac77e9e42d-gzip"
vary: Accept-Encoding
expires: Fri, 10 May 2024 08:43:51 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4dYFxmLfwLkDxfjRhAgiJZR%2FRpUoTgtTLZ1gqC3Lnk7qbr14EwuwHWgqmYavVkGpO%2Be%2FzVgdVs5nrK5DI2RfBFiEUclkCNKjGeU4KtIbHFnHlEZfmzD8AcI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adbf88e568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/css/dl.min.css

104.26.13.123

200 OK

179 kB

URL GET HTTP/3
send.cm/static/css/dl.min.css
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
179 kB (179112 bytes)
Hash
c5de6aa23a6cf14530e92af9ad877bf8
f902e96d550e35e45e6f36d8fc1b94a81754f8e4
e98de2db04023b81e62c3c5f2f6acf7b6266ecfda0061050f186ef1509d4c043

HTTP Headers

GET /static/css/dl.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 29 Mar 2024 14:33:32 GMT
etag: W/"2bba8-614cd862cd37a-gzip"
vary: Accept-Encoding
expires: Fri, 10 May 2024 08:24:17 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U1hJt0GgeK7%2FeFrDma5bwQsS5UExMgB6VrnHR7oDGsxacdNqe7FpUd%2BxBvX6OLHoOTLb%2BQx8xqHwHXZTTj5axtL9BSZWR0alCGo2SRjH8Uxj3leH34Zi9lY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adb7fd0568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/lib/bootstrap/js/bootstrap.bundle.min.js

104.26.13.123

200 OK

79 kB

URL GET HTTP/3
send.cm/lib/bootstrap/js/bootstrap.bundle.min.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
JavaScript source, ASCII text, with very long lines (65297)
Size
79 kB (78635 bytes)
Hash
a454220fc07088bf1fdd19313b6bfd50
265a733cb7fbc481fd2510a659a85ad55c93c895
7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c

HTTP Headers

GET /lib/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: W/"1332b-5ae64b14b0680-gzip"
vary: Accept-Encoding
expires: Fri, 10 May 2024 08:31:56 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LoHRHvf16B%2FegmzgdmXp29ixhIaiElL1WOcwPorygettiQbg5%2FLIuf8CrTvwFRvp%2BNSGwAqMkQnVcUxr7CxxRzmccu34VzCCQlvMFbu9%2FsxVhNvJfo1L9V4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adc4902568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/lib/@fortawesome/fontawesome-free/css/fa.min.css

104.26.13.123

200 OK

6.8 kB

URL GET HTTP/3
send.cm/lib/@fortawesome/fontawesome-free/css/fa.min.css
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
ASCII text, with very long lines (7103), with no line terminators
Size
6.8 kB (6752 bytes)
Hash
3a4e6fe620850879f073fbeb7d915969
1ea842aabcf1d80ffd383b84c8da0650baefc68f
5a072970160446a139243170334741139bd414e1285dfd785bd552db7c263f80

HTTP Headers

GET /lib/@fortawesome/fontawesome-free/css/fa.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 31 Jan 2022 10:52:41 GMT
etag: W/"1a60-5d6de95650b32-gzip"
vary: Accept-Encoding
expires: Fri, 10 May 2024 08:38:32 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gOMz0RXL14%2BBv5eXSRPN%2B%2BouIIA8qswDHnVgNpUNvolQ9i%2B6qH61tY6%2Bot9%2BtcCEctjyisA53qk0mDmje9EbGmPFnEAfyaJhOw5RjRdqfdE0JvBMkOKhFKc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adb7fcd568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/js/share.js

104.26.13.123

200 OK

329 B

URL GET HTTP/3
send.cm/js/share.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
ASCII text, with very long lines (332), with no line terminators
Size
329 B (329 bytes)
Hash
1d2236286294d62230ccc88e96b5297b
de15f3e22b3e2719f872e47a63b5702c48835a3f
c482daeb5dbeb1b8b60adbd8a47e025cbfe19ea0a0f798d8f77b862781694dbc

HTTP Headers

GET /js/share.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: max-age=259200
cf-bgj: minify
cf-polished: origSize=354
etag: W/"162-5ae64b15a48c0-gzip"
expires: Fri, 10 May 2024 08:41:29 GMT
last-modified: Thu, 03 Sep 2020 08:39:39 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vqgUFY7whFOhq%2BgX%2FdzD%2BPVDSH2OssD8aviCyWdVnv1iHwWPF9QA0lEBEgDcK6RtHSo%2FVTIxIfggEmhIdPH%2FfhKS8JwDgPem%2FlitE0B3P1MBUu47holTFvg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adc490b568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/lib/feather-icons/feather.min.js

104.26.13.123

200 OK

66 kB

URL GET HTTP/3
send.cm/lib/feather-icons/feather.min.js
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type

Size
66 kB (65962 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /lib/feather-icons/feather.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/d/xESA
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: W/"101aa-5ae64b14b0680-gzip"
vary: Accept-Encoding
expires: Fri, 10 May 2024 08:42:26 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mLi88CzhYwWQ6rOpEijFycOC3f5V5Dnd0egPJ%2FAgG%2BYpnxQA0kGsDG5qDF0niVE30UU4w1keY%2F%2B2IyMdzlF6aDRrFQvtNWj0R8xyRmVHJMnavzReRbf%2BRoI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88188adb8fe3568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/lib/@fortawesome/fontawesome-free/webfonts/fa-solid-900.woff2

104.26.13.123

200 OK

74 kB

URL GET HTTP/3
send.cm/lib/@fortawesome/fontawesome-free/webfonts/fa-solid-900.woff2
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/d/xESA
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761
Size
74 kB (74256 bytes)
Hash
418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe

HTTP Headers

GET /lib/@fortawesome/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/lib/@fortawesome/fontawesome-free/css/fa.min.css
Cookie: lang=english; c_7hyj5tegwm4sd1=32u97td6ey8e; aff=228983; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: font/woff2
content-length: 74256
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: "12210-5ae64b14b0680"
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cache-control: max-age=259200
cf-cache-status: HIT
age: 180
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vP80vsZA8UgZQTtEb55J7WNpFACa7Oh784vjlYxqhMeLTlLfK3UJmdcy6qPGFOjGMWmr%2BMwcwSgtsOkGCRiL1plACiNsNbPvpxVfJbP0ZNQP18wfQRPk5uY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88188adc692b568b-OSL
alt-svc: h3=":443"; ma=86400

proftrafficcounter.com/stats

18.185.9.67

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.185.9.67:443
ASN
#16509 AMAZON-02

Requested by
https://send.cm/d/xESA
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
f1a81a38d29b00353199834097a8a3dd
358533f417e404f19e1fd80215d8cdc8f82600e5
ecc168dec8630a630cb0ce9cb0fe3975e29b7cf91e79bf91f0a9c83d2c0a673f

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 08:26:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://send.cm
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=b0377704-80e9-4c58-85ff-45e33f80cf53:2:1; expires=Mon, 08 May 2034 08:26:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

send.cm/d/xESA

104.26.13.123

200 OK

82 kB

URL User Request GET HTTP/2
send.cm/d/xESA
IP
104.26.13.123:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1E:E0:49:51:02:A2:68:5F:65:44:C9:36:B5:3B:56:66:B2:6B:4D:A1
ValiditySat, 30 Mar 2024 22:41:41 GMT - Fri, 28 Jun 2024 22:41:40 GMT

File type

Size
82 kB (82446 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /d/xESA HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 08:26:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=0;includeSubDomains;
expires: Thu, 09 May 2024 08:25:33 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XzdsiHtPm5ftVeB1DZFF1OeVuYU59Ke39C3vLAHA5l0wNxj21aBF%2B5sAPQy4XBkeQiP4m%2FO45Nk7uDpSedbU%2BjBRcvxaYgqIzyUgLNsecqGSiDdGII%2BZKyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: lang=english; domain=.send.cm; path=/
c_7hyj5tegwm4sd1=32u97td6ey8e; domain=.send.cm; path=/
aff=228983; domain=.send.cm; path=/; expires=Fri, 24 May 2024 08:25:33 GMT
__cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLorYL8MfQ5yP; SameSite=None; Secure; path=/; expires=Fri, 10-May-24 08:56:05 GMT; HttpOnly
server: cloudflare
cf-ray: 88188ad86d99b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (17)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash