Report - azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr

Report Overview

Submitted URL
azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
IP
172.67.145.15
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 12:18:41
Access
public
Website Title
azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Final URL
azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Tags
phishing microsoft outlook
urlquery detections
Phishing - Microsoft Outlook

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-18	24 kB	1.9 MB	104.17.2.184
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-18	1.3 kB	96 kB	216.58.207.202
azungu.site	unknown	2024-02-10	2024-03-23	2024-04-18	15 kB	591 kB	104.21.73.136

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (46)

	URL	Size	First Seen	Last Seen
	azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/	202 B	2023-05-05	2024-05-01
Pretty URL azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/ IP 104.21.73.136 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-05 20:07:55 Last Seen2024-05-01 11:06:01 Times Seen498 Hash 8cb487d4459c7a6cd9d6f2d45900c628 d35cc3c00025613a8772575e3daa962b633ea2ec 977d0b37baf294b277f8469a4178563b7b21bd289d9df105b5a37a025bfd4d87 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8764993baafd5695	436 kB	2024-04-18	2024-04-18
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8764993baafd5695 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 13:40:17 Last Seen2024-04-18 14:18:44 Times Seen3 Hash ba0f8c1b842aeb752b9154aa5df52ce3 c1f7d689231e805450d8fe4081e1cf045a1b402f a36922fe62e64a968ac0e606bcc1a8eb446c12e97fb1c2a85dcd39c343e3883c Loading...

		Size	First Seen	Last Seen
	#1 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-01
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-01 22:05:35 Times Seen351056 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#2 Eval - 41e5b4edb758ac7df15ec120638b758e	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 41e5b4edb758ac7df15ec120638b758e a632584eab7ed15f595d954002e1fc88abaa55d4 6ed79abd9a2b77885db128088d9f61583c12a7ce32028764efd90939b650e7ab Loading...

	#3 Eval - f2546354c0cab5c0b058ee85e1faf1ce	602 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash f2546354c0cab5c0b058ee85e1faf1ce 2d89e982d662bb5892fe42dbde02b73da53354e6 3fefc77b6b28cdb211232b554783249c2bd49fe989b8f5f0e2f750d2440cb698 Loading...

	#4 Eval - ed0af14ccef0786cae153d17f28a65b1	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash ed0af14ccef0786cae153d17f28a65b1 3915d5cff04ae6654245ac092116f7c2abc2bf14 30475365ccb579e56ee18bb7ac5d01e4ffa6cf6f0de27dd9abe35f5717da5729 Loading...

	#5 Eval - ae2c6b0090ca90a0039473d83c024c17	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash ae2c6b0090ca90a0039473d83c024c17 d694b33fcb35560837dc752bcc1d3dc0d170ead9 0cf52fcf05a9f03246f4635c0ce4327694a8847591bda0eb8274f93e42b415b8 Loading...

	#6 Eval - f8266ef850f40cfd70af0eadc030a8bc	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash f8266ef850f40cfd70af0eadc030a8bc dbb8d74d266e3cbfece35c18f3f847a5d48d74f7 a6a009b1392242797a7960f4d6ba53b6d928214d7feeaf9b6364f7e61345d4f9 Loading...

	#7 Eval - f8e52f8ed08ff49d475878969667eb1d	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash f8e52f8ed08ff49d475878969667eb1d b2823fc9ed427e0fa887d60c6b468c60ce0ae792 ed2377594f6a85463f9ee0d092ec92df6d87e84f5d308879152e7ce744d2f014 Loading...

	#8 Eval - 2e6a1857c22d978223e2f320efb332ac	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 2e6a1857c22d978223e2f320efb332ac 5100864b6ff1f7254ba33e2af2304872702f2969 97d55c80ea1f232e8a562ac667661102da791f9643a6619f7c06ff2161c16cc8 Loading...

	#9 Eval - 7a716923a8f389e6579ce1d0a6c02346	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 7a716923a8f389e6579ce1d0a6c02346 c15fb3c2e7e0bcaf2481f9356390158c3ba94261 b04016ed7fced8992cfc2eac3ff08a33a970e9f2c7609d5e54bf6c184650cc11 Loading...

	#10 Eval - 37b4b5932220cbca40d4b18e9bb0dcc1	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 37b4b5932220cbca40d4b18e9bb0dcc1 566f57a7f6526aafc575d79d9f69f9b6e596c187 08847b41a0bedc902a27c7111ed242d0dc0b323af251dada72ff96bfe96a24f1 Loading...

	#11 Eval - 61e9a7c7d56de2ecdc9c5ba204187f6f	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 61e9a7c7d56de2ecdc9c5ba204187f6f a732e7190042dcb4c6fff4b30f6d08320d75772c c31e15b3a8474b5c82b993fd4a3edbdbf6fe9aaaea58efa35e43cc408b27ac21 Loading...

	#12 Eval - d7e13207a93760b594de140d4961cff8	161 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 14:30:15 Last Seen2024-04-19 09:43:07 Times Seen102 Hash d7e13207a93760b594de140d4961cff8 b62363a5d48a4d8c812c41c546852919ffd608bb 30a8a2ad53b8f62af74a96fbda1a34d23391bdcf90e9060af04d31a1834cf7de Loading...

	#13 Eval - 13d280cbdb5e466458d9c3ed5ba53aa9	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 13d280cbdb5e466458d9c3ed5ba53aa9 d50158e956c5f70c59dbe60053b80c72921a07fa 642e6711a38876d5217037fce03413fd02f7fe6fc08e28c4a78cd11e317182af Loading...

	#14 Eval - aca070609604277f7ce23b4300c9d5ca	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash aca070609604277f7ce23b4300c9d5ca 7976182c775d1607211d6cfebf304362dfa3f942 d51d003ef2785cc13711c936cab5227ad21cc790ff378aaefe6bcdceef944a6e Loading...

	#15 Eval - 2011e7688e1614c0e508d64a27df16bd	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 2011e7688e1614c0e508d64a27df16bd 8a64716b3942c06f1ec6f4bf7b5f0f2b22373fe2 d9e5bf8d4909065b2af134dd9c9cc1390525c5e9faa73365cd2d128593b31334 Loading...

	#16 Eval - 1ae98a5daf3ae266701bba340c2e91ae	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 1ae98a5daf3ae266701bba340c2e91ae bcb1f7e31c16c7e6639bbd41575a0aed17e26835 40f0826661876a1511ba4674c4d8585ef19fe87b3e80d793006819ac1deb4d0f Loading...

	#17 Eval - ca44a491ad9b7667fddee664c41bfa7c	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash ca44a491ad9b7667fddee664c41bfa7c d19cef9f259f279bf33973085f58135a8fa06b15 be6141798feb6c9e2409bcc148efae6a87731340dc13f56d9b2be1549a968ad1 Loading...

	#18 Eval - 9f1356817428e2209e0e11bf92ae6ccb	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 9f1356817428e2209e0e11bf92ae6ccb 42d546d5165adad47a4ff9231b08a862b04c97a7 0875fdb929692dbc4ceee0b5e4fcaa3054e5ed61f0c6518708046fd15992ba0f Loading...

	#19 Eval - 41ba74132c703bf54941eec63a899670	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 41ba74132c703bf54941eec63a899670 343f2dd15a55561b440dbd01755a57db80d3ce02 5f2c51f2cef00d65875d58ca7b3d0853158183f6770af1cf77b89be9bcc8804c Loading...

	#20 Eval - 559739a63e22679401416aa21655ac4d	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 559739a63e22679401416aa21655ac4d 4e7042a42cc900c6ebc15ea8476fe189e86b097c d0e42d1b4f9c51434ea05228a099870128d9817a209e8630927312c09f0d32e7 Loading...

	#21 Eval - 1fe19cfc442013af9983a995cd273052	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 1fe19cfc442013af9983a995cd273052 7294dbc938607611784fbe4b797a79e67a366ce9 04932bf2c0c697020ac21f8da046d979158155a802b118042c7ed9670e7e4894 Loading...

	#22 Eval - d0628b1d49747e525fe6fc80b9a7596d	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash d0628b1d49747e525fe6fc80b9a7596d 27d126303c09ec96e7337ae2093eead94c174b00 08e28d7bce8bd69d88b4633a7e377956b6dce5cf2edb8b12a4c687f236af2492 Loading...

	#23 Eval - 107baf1897c9992e8736efc9a0ab9e06	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 107baf1897c9992e8736efc9a0ab9e06 a69846a116ac30049cda23d061e38702d3687b20 b2167b933f269a58346085eff82dc2cac54578c0a1a161d2ca2dc5e933babcb9 Loading...

	#24 Eval - 36d85b09f23b93a03d7556daea8e346d	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 36d85b09f23b93a03d7556daea8e346d 08c13876e473fb7a3562513b76bcca07993f9b84 dddd6ef73841667477c71838e6377eb181dd4bab58f7e45a13c379211a941d40 Loading...

	#25 Eval - d6fec5fbd88c64a7f4a6fc060098bd4a	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash d6fec5fbd88c64a7f4a6fc060098bd4a 9e3c29cfd0e59f42ccf65f39b0dae12f7b5c5d03 197bf2e2732c18064c2acf9854fb25b6e8f33aea693cd39f6bf2ed9a6d157790 Loading...

	#26 Eval - 16549844058e030392449c307cd3b4a1	142 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 16:39:32 Last Seen2024-04-19 12:24:13 Times Seen96 Hash 16549844058e030392449c307cd3b4a1 b095927b508c4960362343d7c00da2b3beea83d9 3a2d31b38b0835d2942cfd57c46d82a3b2e02e84841819a3c01bec45d52de9ca Loading...

	#27 Eval - 2933f778145e17f3e9b65d524070a929	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 2933f778145e17f3e9b65d524070a929 f7862bb62786147777013db8688b27db44ae785f d2c77c4857a3ab533b20b66ee9552fe915840561abe273910418b770ac65f1fc Loading...

	#28 Eval - 9c347dbfa5546fab021613dacd59ccee	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 9c347dbfa5546fab021613dacd59ccee e0c0015946d54bbc9d3ceb472be109b7379f7977 7d31caec7f646d06f162482e70103b525f8653f0d5c56a85e2cc0aea62ee7473 Loading...

	#29 Eval - 77df7847ce8ffe86275039f62848c4e0	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 77df7847ce8ffe86275039f62848c4e0 c839893a3d3600c04806c49bba8a0f1b865327e6 926765e50acce20c1255e9c18770ebfbe269aa636b252d70a067a534be75df9f Loading...

	#30 Eval - 6acc0d49462a313f306a03149c96f6aa	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:44 Last Seen2024-04-18 14:18:44 Times Seen1 Hash 6acc0d49462a313f306a03149c96f6aa dc72e1ae022217414718d7c7de6b4c698b186bd9 8718b45a0120c9479ebd678bff3dfe911ff67ba4f44a75b4fd3375f340ce9905 Loading...

	#31 Eval - ed3847829d612b753fe36f6515b915a4	481 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash ed3847829d612b753fe36f6515b915a4 720226b4a604d57993cb8c0d5170e242e866227f cf991c76a31f78d25ea58791a9c072653f02c359f3fe435faa619a49caf3ba33 Loading...

	#32 Eval - f47e9b8625365927faa5fe3c0e5be91e	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash f47e9b8625365927faa5fe3c0e5be91e 78606a97e27b425c8b331bc32dd7b2bb8a477d30 ec694d7257d9b55727899999899a21391ddc7a03ad954d24d915517494f4ed86 Loading...

	#33 Eval - 9fba386b83419a08ff1faa8007dd23a1	60 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 14:11:25 Last Seen2024-04-19 12:29:21 Times Seen535 Hash 9fba386b83419a08ff1faa8007dd23a1 c6148c7d249ddcfe37f49e99ac7cb60fe3bd43f2 a197c137af56d7b49dd589ed67e397152047dea7b7a147b0403d07bd1c6d59ee Loading...

	#34 Eval - f84286a8d3b16d99085279af50ec7f46	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash f84286a8d3b16d99085279af50ec7f46 abe5bbb3c217257272667e17a29e8ffbc70e9bac 73ed2c28803df49f976344135dcbc96a19e173d947cc6a86cb9ce4e16bf4956d Loading...

	#35 Eval - ebd2b15bec5ef445fb90e80677fc2308	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash ebd2b15bec5ef445fb90e80677fc2308 b7e1735e43ff25e2d729a02c2cae4181cbc385e6 9c3f3ca51ad6a3acb65dd6a83c112b796ad8390affdf37b55acc45f016cb3645 Loading...

	#36 Eval - e99e88267fa1ed9ce7084f4afaa24692	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash e99e88267fa1ed9ce7084f4afaa24692 bad6750972d9b54dda303ff43c320eb12c63ccf2 8e48273a79bad59ab4d531268bf78a8439fcd79ee497739d385b1c9d65e04e9e Loading...

	#37 Eval - a1da8c35f5046a8704ca08822fea1630	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash a1da8c35f5046a8704ca08822fea1630 04f51ae3355bb17e4e50a4ae4ff993fb236bcf28 a8f4b58287c03d7e66c2bfc747abd16f560680c3b3e5572be44b09d7b18a16cd Loading...

	#38 Eval - 3c65ae7c9b7749f478c42cc32f494c9c	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash 3c65ae7c9b7749f478c42cc32f494c9c ed2517f699bb88c8184db1a216a4fa2398ce5a00 a87ebfb5805d35c2af88987bcfab3691c936b2f0a89f94e8354d827775961e4b Loading...

	#39 Eval - 7fe3028e570534d725e9152cb430078d	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash 7fe3028e570534d725e9152cb430078d 250b4b70335380c1fef45bbd52cebd1e19a7ccd3 7d7ed1fb35a7a575aff8e2ca3a0dbf2366a92ba2753d129bc4e7d97fa9063cdc Loading...

	#40 Eval - cebe35e67d75d47bdd2fadd641fa9d51	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash cebe35e67d75d47bdd2fadd641fa9d51 c1d1bcc937882ff283d9f808b9148778fac6d474 62da984cb7328df8dda01682c2defcbfa0ef0614fd9141c6db5a311f41699521 Loading...

	#41 Eval - d7aacad05e674c76fc9f00aa6e5239da	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash d7aacad05e674c76fc9f00aa6e5239da fa4c48d850a62b78d3db7e5e6a4743ab522801c3 8316dedbc215ffbc86510da2aa981b2f473ddf24d6d510bc496671412f0d9cc4 Loading...

	#42 Eval - 3977e89d24444ff0133b0a9ee3f33143	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash 3977e89d24444ff0133b0a9ee3f33143 7a1eae8d497adce51f22397ea37e835da08da318 b7ccca3829af5e4da3c3f0d393b52cabcfa0eae498f109ec2687537c098bc7e7 Loading...

	#43 Eval - f1f02fd34d4e9d2ccbe43d0c986a2f1e	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:18:45 Last Seen2024-04-18 14:18:45 Times Seen1 Hash f1f02fd34d4e9d2ccbe43d0c986a2f1e 55b9c02c49ee4a08dcea7ec9463095dcd9c92e86 fae8d7aa8844b0afd148cefec7911c2c01f1400e3550d5be80bd2f698e8d9f4d Loading...

		Size	First Seen	Last Seen
	#1 Write - 086707e4369f60afedcafb16050a7618	39 B	2023-03-07	2024-05-01
Pretty Observations First Seen2023-03-07 01:03:24 Last Seen2024-05-01 21:02:07 Times Seen44702 Hash 086707e4369f60afedcafb16050a7618 8216b0cc6876cbd44f01c158e7dff3833ceccd41 a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e Loading...

HTTP Transactions (59)

URL IP Response Size

challenges.cloudflare.com/turnstile/v0/api.js

104.17.2.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 18 Apr 2024 12:18:15 GMT
content-length: 0
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
location: /turnstile/v0/g/54ea73d52131/api.js
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498ae2b5cb523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.207.202

31 kB

URL
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:13 GMT
expires: Wed, 16 Apr 2025 05:54:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 195842
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.2.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/blgfo/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:15 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 876498b1cb805695-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2092249552:1713439586:QVg781Hh-f0NkxioOWACbnBRNB1VkMJ5rqk4X7aiVE4/876498b0e9d55695/01f4b1579acc9be

104.17.2.184

108 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2092249552:1713439586:QVg781Hh-f0NkxioOWACbnBRNB1VkMJ5rqk4X7aiVE4/876498b0e9d55695/01f4b1579acc9be
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
108 kB (107720 bytes)
Hash
57751116a4052462751f43dc327f8a79
021962e1e6e5b6db000107b45401e6d9c5b5e05a
db1937ccd32e49f34313eddf27e8ca0453d2e02a5e013682dcd9872d9a5195ad

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/2092249552:1713439586:QVg781Hh-f0NkxioOWACbnBRNB1VkMJ5rqk4X7aiVE4/876498b0e9d55695/01f4b1579acc9be HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/blgfo/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 01f4b1579acc9be
Content-Length: 2717
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:16 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: WxV1XXA2VYl8MUnr0BWvJuZ4qrC1HFMx8q5z/d2/tK2Nj4U1LZbvxS8vc670UVId10on6q8xx34X+BPj4uX4UNdvKC1qOJpd+WlKlB3i2tTZcWJBw3PPL7O+hpvIngA5N0CQF7PpjxNVq2QL+/Am9/aSjdqAbwLOnQ2tyM6ee6MQ/XZytGXyhaAnWUqEfYXZiYiPitaxxMMXqCvKEAfu2lRqNqeQKF92PCTrUCjerkNuCtPbWf7IyEIg7EZnHinTMeGXcd9AhtwM7uzxhzluQrmjNEm/a7pPqItsXxsMmC4St0BaF7+AOgAPOt+qq1AMLUvjJU3P1uisCxNe4AEvNRGtqaEAB0jU0SNNREBGk8MQKOUq5VsWzzyqC7tllXL04DYMjvBaBN5zch3bQFSB2b27kgVDp/Y5oa4WO8B7IdZnYtNHNJAOkFTm14F2z1unRijoMKmMJ14sivuqgcdIKA==$jgfWDxYcYG6dH0Ht6yglIA==
vary: accept-encoding
server: cloudflare
cf-ray: 876498b3df145695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498b0e9d55695/1713442696320/38d8816864afaaaebcf0877017327d21a617a9092dfed4b224fefea9f2c8a1cf/nANmcYzhXa1boDT

104.17.2.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498b0e9d55695/1713442696320/38d8816864afaaaebcf0877017327d21a617a9092dfed4b224fefea9f2c8a1cf/nANmcYzhXa1boDT
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/876498b0e9d55695/1713442696320/38d8816864afaaaebcf0877017327d21a617a9092dfed4b224fefea9f2c8a1cf/nANmcYzhXa1boDT HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/blgfo/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 18 Apr 2024 12:18:17 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gONiBaGSvqq688IdwFzJ9IaYXqQkt_tSyJP7-qfLIoc8AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIDjYgWhkr6quvPCHcBcyfSGmF6kJLf7UsiT-_qnyyKHPABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 876498bbfb345695-OSL
alt-svc: h3=":443"; ma=86400

azungu.site/cdn-cgi/challenge-platform/h/g/rc/876498b0e9d55695

104.21.73.136

21 B

URL
azungu.site/cdn-cgi/challenge-platform/h/g/rc/876498b0e9d55695
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
JSON text data
Size
21 B (21 bytes)
Hash
018598ff9794435b440d1bbf293cc10f
9129b0ca1a4febdf97636946a1fe7be8abf11890
898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/rc/876498b0e9d55695 HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Content-Type: application/json
Content-Length: 596
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:17 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=Noo9JfKSd1.13W_xZrowHFLpN8o4QzVUI29VKasnpL4-1713442697-1.0.1.1-pEdPgdOS1weIVwrSAX1vWtrpNKCdrvXiDzbZJRc108WszwbqIXoBPVUnIEnX8eJ7khuXOrcQlL08QrLYIlHL9A; path=/; expires=Fri, 18-Apr-25 12:18:17 GMT; domain=.azungu.site; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=spCEsSZLM%2Bs2NuWxeLPmneA%2BSlEb9%2Bi%2FLjGkxIMM7CCIDTZu%2B%2FvXH7doQxU81FUE4RdBXiDXGmsXqMCN%2BCHN13u%2FC9PROKxg2t92fLFH0TklhM4E0pr50w2nelwpEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876498bdaad1b505-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.2.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 18 Apr 2024 12:18:18 GMT
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
location: /turnstile/v0/g/54ea73d52131/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498c059e35695-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.207.202

31 kB

URL
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:13 GMT
expires: Wed, 16 Apr 2025 05:54:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 195845
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2092249552:1713439586:QVg781Hh-f0NkxioOWACbnBRNB1VkMJ5rqk4X7aiVE4/876498b0e9d55695/01f4b1579acc9be

104.17.2.184

4.3 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2092249552:1713439586:QVg781Hh-f0NkxioOWACbnBRNB1VkMJ5rqk4X7aiVE4/876498b0e9d55695/01f4b1579acc9be
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4412), with no line terminators
Size
4.3 kB (4274 bytes)
Hash
9875eda564f0557ee9aba123d17634b8
c2a4e44bfb7bac25c854bbf06f795da0ded79791
0cdb697abd2724d0104db841a2cf8d95adf55b8096d56379506820d3020e0c6a

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/2092249552:1713439586:QVg781Hh-f0NkxioOWACbnBRNB1VkMJ5rqk4X7aiVE4/876498b0e9d55695/01f4b1579acc9be HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/blgfo/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 01f4b1579acc9be
Content-Length: 25942
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:17 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: bi5ruGk3eW7WDQKAnL+34WrtkoADaS32FCVOWU0jOB04cVLPbaPUkT5Ulbh05DN81rHI81TCurDiTIVFL3ylyDYDHfkskskLbxGQUkRkYezT2GW4aKiA9TcMTMYpoOL/$VUGad4fVI35bxWzMMQ5D4A==
cf-chl-out-s: 7UP/R/yvWWE7N0QP6nu430cNZFKU+VhCHjJa6Bv+qnlDyXaj7iOI4VybPiFfDso9coKc/H/nn/8UxQrzKafQRfcmXkWofb9elPEljMEF3cOwwK+RsuplXjWBW1co+5ikKv4/Ttam7OmTiGY6L5fRItQYNTAYBO0WX9xvx68L4VTJV/KC3wEZTkmJu6drGNQx$LB/ljwAhNDHAvR/Py3OaeA==
vary: accept-encoding
server: cloudflare
cf-ray: 876498bd4d315695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498c0da9e5695/1713442698823/533a053039adafa8410f2ef2b2a9c6909b189454920b124d7be84ac3d060486b/wGxle9ZzZM95ijx

104.17.2.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498c0da9e5695/1713442698823/533a053039adafa8410f2ef2b2a9c6909b189454920b124d7be84ac3d060486b/wGxle9ZzZM95ijx
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/876498c0da9e5695/1713442698823/533a053039adafa8410f2ef2b2a9c6909b189454920b124d7be84ac3d060486b/wGxle9ZzZM95ijx HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/zwh56/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 18 Apr 2024 12:18:19 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gUzoFMDmtr6hBDy7ysqnGkJsYlFSSCxJNe-hKw9BgSGsAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIFM6BTA5ra-oQQ8u8rKpxpCbGJRUkgsSTXvoSsPQYEhrABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 876498c7de875695-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876498c0da9e5695/1713442698829/EmIshwq9VXQQJSl

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876498c0da9e5695/1713442698829/EmIshwq9VXQQJSl
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 47 x 46, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
f0b32c6bebf66cc3dee69dc0aaba0dfc
f6c94c7964967366635f47141b3b2094eac76729
48e63c108b9bd994343d5034a040cf31393554bf3b457ed53e16d77c59b5d2d9

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/876498c0da9e5695/1713442698829/EmIshwq9VXQQJSl HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/zwh56/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:20 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 876498ccaf465695-OSL
alt-svc: h3=":443"; ma=86400

azungu.site/cdn-cgi/challenge-platform/h/g/rc/876498c0da9e5695

104.21.73.136

21 B

URL
azungu.site/cdn-cgi/challenge-platform/h/g/rc/876498c0da9e5695
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
JSON text data
Size
21 B (21 bytes)
Hash
018598ff9794435b440d1bbf293cc10f
9129b0ca1a4febdf97636946a1fe7be8abf11890
898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/rc/876498c0da9e5695 HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Content-Type: application/json
Content-Length: 596
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=Noo9JfKSd1.13W_xZrowHFLpN8o4QzVUI29VKasnpL4-1713442697-1.0.1.1-pEdPgdOS1weIVwrSAX1vWtrpNKCdrvXiDzbZJRc108WszwbqIXoBPVUnIEnX8eJ7khuXOrcQlL08QrLYIlHL9A
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:20 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=ZkZUVQpSnuIx31TaJsLcY9fTzmnlwPuAXXZLYpza2rk-1713442700-1.0.1.1-f.1hSCMykAxRspbn4UehU15COZ898TkTjWN6hpfMnJs0ahHqeCgkalsEnAXCbnjnR2T5QzKBHUYt3uOFSX9t0w; path=/; expires=Fri, 18-Apr-25 12:18:20 GMT; domain=.azungu.site; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AugTbaZrviD3ECVFy9MvovwEtIWR3EckRxiMjE2frq0HZFuNjjWmxK2WiZxxW0iI0AN34opun%2Bd0wYhbV4kowKFtYcKTFmj2tb0hsfFHS0uTO0US%2FHvbUy2KyRi21Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876498ce3ad0b505-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.2.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 18 Apr 2024 12:18:20 GMT
content-length: 0
location: /turnstile/v0/g/54ea73d52131/api.js
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498d02cbc5695-OSL
alt-svc: h3=":443"; ma=86400

azungu.site/_canada_driod/functions/validate.php

104.21.73.136

31 kB

URL
azungu.site/_canada_driod/functions/validate.php
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
31 kB (31192 bytes)
Hash
cd7bc652307ad520366f441f280c3841
6793c65d772047d2f94cae30b74e5e99266731a4
76fac969d2b0e07d21bf7f1c395d0a855abbf6559edb1cc13415db1811ec6187

HTTP Headers

POST /_canada_driod/functions/validate.php HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=ZkZUVQpSnuIx31TaJsLcY9fTzmnlwPuAXXZLYpza2rk-1713442700-1.0.1.1-f.1hSCMykAxRspbn4UehU15COZ898TkTjWN6hpfMnJs0ahHqeCgkalsEnAXCbnjnR2T5QzKBHUYt3uOFSX9t0w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:20 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RN%2FJF1%2F37N8WghSaNmXfHp3z6iFAqUxWySrvStlwEFmdgOqPdfGJx7am8FxTaRoDKeSeyyoCC6R1kJT2aSgoumjjvb1QNRy5ue5Bqy2sZ0z7YmGi3h%2Fh1HqfIcOUFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876498ce6b42b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.2.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ljqva/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:21 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 876498d16ec05695-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876498d09d995695/1713442701345/-Xy504xbs6eDhoT

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876498d09d995695/1713442701345/-Xy504xbs6eDhoT
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 37 x 68, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
cdcfbcd4951bac6800e40dd16b9141e0
db35b57c762ae3e5cf5b11c49f17f5030370f4b2
de681e717ae4ffd90166442a9d3bebb136aeaf5d6f35a7455d15502e7de40ef6

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/876498d09d995695/1713442701345/-Xy504xbs6eDhoT HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ljqva/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:22 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 876498da5d255695-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498d09d995695/1713442701345/26b225c0ebf2391f57da42de1a9bfcd3587c2223ad41bc664a52ad3fee0c67cf/rCPDTexf8nm_257

104.17.2.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498d09d995695/1713442701345/26b225c0ebf2391f57da42de1a9bfcd3587c2223ad41bc664a52ad3fee0c67cf/rCPDTexf8nm_257
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/876498d09d995695/1713442701345/26b225c0ebf2391f57da42de1a9bfcd3587c2223ad41bc664a52ad3fee0c67cf/rCPDTexf8nm_257 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ljqva/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 18 Apr 2024 12:18:22 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gJrIlwOvyOR9X2kLeGpv801h8IiOtQbxmSlKtP-4MZ88AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tICayJcDr8jkfV9pC3hqb_NNYfCIjrUG8ZkpSrT_uDGfPABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 876498da8d885695-OSL
alt-svc: h3=":443"; ma=86400

azungu.site/cdn-cgi/challenge-platform/h/g/rc/876498d09d995695

104.21.73.136

21 B

URL
azungu.site/cdn-cgi/challenge-platform/h/g/rc/876498d09d995695
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
JSON text data
Size
21 B (21 bytes)
Hash
018598ff9794435b440d1bbf293cc10f
9129b0ca1a4febdf97636946a1fe7be8abf11890
898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/rc/876498d09d995695 HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Content-Type: application/json
Content-Length: 596
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=ZkZUVQpSnuIx31TaJsLcY9fTzmnlwPuAXXZLYpza2rk-1713442700-1.0.1.1-f.1hSCMykAxRspbn4UehU15COZ898TkTjWN6hpfMnJs0ahHqeCgkalsEnAXCbnjnR2T5QzKBHUYt3uOFSX9t0w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:22 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=6iSaY5m0SNfksetWhTjAbrZMY._bBZjbQNHTo6MUvFs-1713442702-1.0.1.1-8Tn1Eg33CM3OSYUfuxzeC2.C7zYiOUoeggjQFnHiXK0Yk78lKdt2Mexya1q8zFyt8MII6ktlX6qKi8_8DRYeow; path=/; expires=Fri, 18-Apr-25 12:18:22 GMT; domain=.azungu.site; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p7J%2FdqVBoqE07gDdUJrnmANethqbEI%2BLntKsTfujXeIeq2CxwfSOjlfYNq%2FW2QExJwKdfPdRaS%2Fant2jnA8LvzxrbIpkO83ARNHe%2BuxV9bq%2FdZih2rFlRWzMVyknkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876498dcd8c6b505-OSL
alt-svc: h3=":443"; ma=86400

azungu.site/_canada_driod/functions/validate.php

104.21.73.136

31 kB

URL
azungu.site/_canada_driod/functions/validate.php
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
31 kB (31192 bytes)
Hash
cd7bc652307ad520366f441f280c3841
6793c65d772047d2f94cae30b74e5e99266731a4
76fac969d2b0e07d21bf7f1c395d0a855abbf6559edb1cc13415db1811ec6187

HTTP Headers

POST /_canada_driod/functions/validate.php HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=6iSaY5m0SNfksetWhTjAbrZMY._bBZjbQNHTo6MUvFs-1713442702-1.0.1.1-8Tn1Eg33CM3OSYUfuxzeC2.C7zYiOUoeggjQFnHiXK0Yk78lKdt2Mexya1q8zFyt8MII6ktlX6qKi8_8DRYeow
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:23 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V5xm5H98aPG5vDf5j%2FCuYHBRk%2F8np5moBdTATiPl7L81RFPUfYrobzw5f5mHnqeSPrimet%2BdCX11708U3vEq3wbbS38hAXP92sdlwE8zQhiCxaMJ7qDr0ZovjMaLBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876498dd0902b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ljqva/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal

104.17.2.184

194 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ljqva/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
194 kB (193872 bytes)
Hash
bc29c22551f70b942f2071bb84aa3620
bd44896df6628efb424ef8ee42ebec7d91a21d9e
b5f78c0697ba26ea4e4eb3f6edead84afe3247081012ca64dbed61cce2ef262a

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ljqva/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:20 GMT
content-type: text/html; charset=UTF-8
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
document-policy: js-profiling
cross-origin-embedder-policy: require-corp
vary: accept-encoding
server: cloudflare
cf-ray: 876498d09d995695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2107347684:1713439810:ta8VlONAbYctemlwbjk_b5ezqkmSjsAQrynzLdbmSdA/876498d09d995695/c0d15728c3a209b

104.17.2.184

4.3 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2107347684:1713439810:ta8VlONAbYctemlwbjk_b5ezqkmSjsAQrynzLdbmSdA/876498d09d995695/c0d15728c3a209b
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4412), with no line terminators
Size
4.3 kB (4281 bytes)
Hash
2d350e6d2189c9afdeac5e868a220fa2
b54593a9284119a27c62e3b42c1274048dedf3f4
17f7b7b0a6d3be4a1f5bae76197ccd85032a3545923dabb604623bd50643a6c0

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/2107347684:1713439810:ta8VlONAbYctemlwbjk_b5ezqkmSjsAQrynzLdbmSdA/876498d09d995695/c0d15728c3a209b HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ljqva/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: c0d15728c3a209b
Content-Length: 25510
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:22 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: YICKSg9PMEH9zaXQk2Bnvm6T6inuZVRb2v/BsZ5EN007GZzHtMdO8j18u8uEXPolUDTPpZQGuOt7azETwFshEA1Enig6l/+MfKtZmYSJ9JV+Rujf6gX3spLn6YT22MssbnW1B5+sdGeW/Semy8pH549+h6/+a+2ZwqIV94y1qEdIuzTdDzAjnnQhNjS6I785$oeOxt6PIXippVn+gadvyaw==
cf-chl-out: kGR3+LQuEmLPYfoCGwzkwjcdf2yiZhohDKtEGxhtHEyfWvLeRz3A3xGRPaJKaXeKS6uxcapFQLUrUEkz4A50SNdzJbembEGrKMZ6ceX0UZp9vCKBBCZ6XYmHWbXh/OYJ$UNo5EaPTQ9dkXGIn8UnpxQ==
vary: accept-encoding
server: cloudflare
cf-ray: 876498dc68975695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

azungu.site/favicon.ico

104.21.73.136

197 kB

URL
azungu.site/favicon.ico
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
197 kB (197176 bytes)
Hash
5948879b0f61957de5b7a1a360d342e4
5bdd2b3b341cd17501c6091a8950ffc330321f0d
6750c834283e48bdafa0732814f81bc4a80532ffce11b8eed7a1a91ec85ea48d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=6iSaY5m0SNfksetWhTjAbrZMY._bBZjbQNHTo6MUvFs-1713442702-1.0.1.1-8Tn1Eg33CM3OSYUfuxzeC2.C7zYiOUoeggjQFnHiXK0Yk78lKdt2Mexya1q8zFyt8MII6ktlX6qKi8_8DRYeow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 12:18:23 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ptPEk9QExkR5M8TD2NWQPFmu2UasGByQA7YwaBL4wpAkAqEh7ePNnT7nr6dzBZqLdwcgy89Xvrf%2B1AOj84yqW6XrEIngQNFhmWBoU2KwM0CFF2GwVN%2F3wMzVNSnAFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498df9dddb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498dfbe235695/1713442703759/f4e79291db01e4b87250ef99fba29af49a1a9304d7e39c9cb2a54715f9455c92/4_D75d8lFRyI-WE

104.17.2.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498dfbe235695/1713442703759/f4e79291db01e4b87250ef99fba29af49a1a9304d7e39c9cb2a54715f9455c92/4_D75d8lFRyI-WE
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/876498dfbe235695/1713442703759/f4e79291db01e4b87250ef99fba29af49a1a9304d7e39c9cb2a54715f9455c92/4_D75d8lFRyI-WE HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xed58/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 18 Apr 2024 12:18:24 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g9OeSkdsB5LhyUO-Z-6Ka9JoakwTX45ycsqVHFflFXJIAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIPTnkpHbAeS4clDvmfuimvSaGpME1-OcnLKlRxX5RVySABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 876498e95d5d5695-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/894248237:1713439497:FX7j6FkuRcBGXFntVweSR7p7UxW4E2ph9yGgqhIir3E/876498dfbe235695/5c2b9591a37e134

104.17.2.184

4.2 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/894248237:1713439497:FX7j6FkuRcBGXFntVweSR7p7UxW4E2ph9yGgqhIir3E/876498dfbe235695/5c2b9591a37e134
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4412), with no line terminators
Size
4.2 kB (4239 bytes)
Hash
855eb9cf48c1fef583c9952ddf63f4cc
a3c6627dfbee13817855acefbf5985e1755cbbd0
53b3108e000ef7efaf3c2fa73e5e54f230acc7d7a583865566e1f72c4e15ffa3

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/894248237:1713439497:FX7j6FkuRcBGXFntVweSR7p7UxW4E2ph9yGgqhIir3E/876498dfbe235695/5c2b9591a37e134 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xed58/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 5c2b9591a37e134
Content-Length: 25566
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:25 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: 3DwYkP9JNtdLxlkvOZJHxdqyVinYpu9opw0s4vAw/R4Fs8BpMqQ4SLPddRRL3P6bK0A632YctZY3TXR+5LCDH7FOfJsR0FJTRgcjvQAFq8ebdFWlHsW4mwgZumsUZX6Rd398qPmKlEGkzkKcbbhiHOe6Ah182EHkQzzCTkxwOtCBQaIo7benWLciTaXVYT4m$dMWawfSjxzIRd8Xz4H3UJQ==
cf-chl-out: QLz+ODr2r+XCHj36FJnkUyXxr65k8dhWo2TiwgBzEgj9Upf82iK21iBpq2U9SzpnvL8VA81lJ0UszFgCSZL0uhM2lOF7wAPahg5tYfFnGOvnZ9GlZ/TNP6eXEG5sDRwv$iDjlrI6BxoS46YVU9nYhKQ==
vary: accept-encoding
server: cloudflare
cf-ray: 876498ea4ed35695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.2.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 18 Apr 2024 12:18:25 GMT
content-length: 0
location: /turnstile/v0/g/54ea73d52131/api.js
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498ec8ad75695-OSL
alt-svc: h3=":443"; ma=86400

azungu.site/_canada_driod/functions/validate.php

104.21.73.136

31 kB

URL
azungu.site/_canada_driod/functions/validate.php
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
31 kB (31192 bytes)
Hash
cd7bc652307ad520366f441f280c3841
6793c65d772047d2f94cae30b74e5e99266731a4
76fac969d2b0e07d21bf7f1c395d0a855abbf6559edb1cc13415db1811ec6187

HTTP Headers

POST /_canada_driod/functions/validate.php HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=yKX1xStru_e99O6Vn1xp5KkjTI6ui4TqtVANJRLXSVY-1713442705-1.0.1.1-.BBTLCcxzLZhgf2aVXJOyQ.PDarlUKKtENPdWziKtSElmchWHl2Q8oX.gLY357WceBhpT86ed9D4.ni3d7BGkA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E3xuGhG%2BBR8rEaKSlfMbQ0yhEK5%2ByZKY9QAU24ClJ4QJH2kQ8%2BoIlK27dNQ%2BL1CqRnPOjISKBJLDdWsS63ZnM8oN7HBmutIfOcUK5XKKfKc36bOzQcl5bemUxbP69A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876498eace50b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8vu8t/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal

104.17.2.184

26 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8vu8t/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
26 kB (25708 bytes)
Hash
14e211f537cf6acd920c10ea46b7647e
a5fcf7415f85a1d35318e21c49326dd661bfb836
1a942d3a71be44d906aae595eb907eda3781275a07fd95072b00278373e94c0a

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8vu8t/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:25 GMT
content-type: text/html; charset=UTF-8
document-policy: js-profiling
origin-agent-cluster: ?1
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-embedder-policy: require-corp
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-resource-policy: cross-origin
vary: accept-encoding
server: cloudflare
cf-ray: 876498ed0bc15695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498ed0bc15695/1713442705885/2e209ee1693cd2b2081b045ca11d8f58f85302d4703929613ada7eb238ea8830/ABzTPeJs9_1fajz

104.17.2.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876498ed0bc15695/1713442705885/2e209ee1693cd2b2081b045ca11d8f58f85302d4703929613ada7eb238ea8830/ABzTPeJs9_1fajz
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/876498ed0bc15695/1713442705885/2e209ee1693cd2b2081b045ca11d8f58f85302d4703929613ada7eb238ea8830/ABzTPeJs9_1fajz HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8vu8t/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 18 Apr 2024 12:18:26 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gLiCe4Wk80rIIGwRcoR2PWPhTAtRwOSlhOtp-sjjqiDAAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIC4gnuFpPNKyCBsEXKEdj1j4UwLUcDkpYTrafrI46ogwABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 876498f33d795695-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876498ed0bc15695/1713442705885/2Ueu_QZtAclDhx_

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876498ed0bc15695/1713442705885/2Ueu_QZtAclDhx_
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 12 x 59, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
e1db937b63a0ef0d4b9ac2dc78ec7f4c
dccb4d3f82077c17523d576fedc7d8968eefc6bb
e4a79794105a6f86f6dc8b23f8990146d9cb159ff3976d2eb34215e547e048a1

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/876498ed0bc15695/1713442705885/2Ueu_QZtAclDhx_ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8vu8t/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:26 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 876498f38dff5695-OSL
alt-svc: h3=":443"; ma=86400

azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/

104.21.73.136

200 OK

423 B

URL User Request GET HTTP/3
azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
IP
104.21.73.136:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectazungu.site
Fingerprint02:54:C7:F3:6E:93:7C:4A:BA:F0:9E:D8:44:14:A9:91:43:92:B6:32
ValiditySat, 23 Mar 2024 20:33:03 GMT - Fri, 21 Jun 2024 20:33:02 GMT

File type
HTML document, ASCII text, with very long lines (748), with no line terminators
Size
423 B (423 bytes)
Hash
10254d71028158b89d876e6a4f0535c9
bfa04ed686efc45f51cb441810cae52406ed07b8
224949b68a5e620df1b740fd956d1c2121c756e36c743ec7cdcf5a7d8cdbb3da

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/ HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:18:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hr5XqM5z6pXLhlW2ZLPl2GPpvfpuzV9FX2XPOS5jn9ELw9h8lJIC5UwJwpJkzK2sFmsQLeFKv64a5nxj7yOXHw5AWZLu4UFHZhJieuRzHT1G56%2F86nyOaLcWXTvMig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876498a9fcca569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

azungu.site/favicon.ico

104.21.73.136

231 B

URL
azungu.site/favicon.ico
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
231 B (231 bytes)
Hash
5948879b0f61957de5b7a1a360d342e4
5bdd2b3b341cd17501c6091a8950ffc330321f0d
6750c834283e48bdafa0732814f81bc4a80532ffce11b8eed7a1a91ec85ea48d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=yKX1xStru_e99O6Vn1xp5KkjTI6ui4TqtVANJRLXSVY-1713442705-1.0.1.1-.BBTLCcxzLZhgf2aVXJOyQ.PDarlUKKtENPdWziKtSElmchWHl2Q8oX.gLY357WceBhpT86ed9D4.ni3d7BGkA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 12:18:25 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 9
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cTE06cGIJAmkOZoV0cBQ30Ga879q3xJ1vhDlWovDTVEtnjQrnP36ejJ7ZPX%2B0Mn%2BkenfOpEBzg2jltDAAVGY3k1Nfs75V6kv8hQlmJsUxJqPYRr7GQfb4T4HxZmqxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498ecf96bb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

azungu.site/_canada_driod/functions/validate.php

104.21.73.136

32 kB

URL
azungu.site/_canada_driod/functions/validate.php
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
32 kB (31996 bytes)
Hash
41a7af80fa8df3d3acba873b8d4b3743
997ed58ce0765bd06f29b1c60672c517aed6962b
154f04cc85a5bfe1ab66d69077c025d210effa595df17066867bba5a2971b1d3

HTTP Headers

POST /_canada_driod/functions/validate.php HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=Noo9JfKSd1.13W_xZrowHFLpN8o4QzVUI29VKasnpL4-1713442697-1.0.1.1-pEdPgdOS1weIVwrSAX1vWtrpNKCdrvXiDzbZJRc108WszwbqIXoBPVUnIEnX8eJ7khuXOrcQlL08QrLYIlHL9A
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:18 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LRnpOLy1lhcgEH89%2BkpNDwxnk1dvRHc9BRJiqFP9NU0VX8tIJIUJ7ybL4NPfyzfkMxCNmKXzD1lB9GOERI6YiWAjCYg1zESkxa2TmuVp8qn2ahB9zQjLYEfjuhAB4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876498bdeb0ab505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js

104.17.2.184

40 kB

URL
challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42414)
Size
40 kB (40055 bytes)
Hash
374fec8b5e50cd6ab980f3fef21a5aa0
7f474607991a19b6f1b78cc32e0f75b501b60774
8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a

HTTP Headers

GET /turnstile/v0/g/54ea73d52131/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://azungu.site/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:27 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498faea5e5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876498fb5b435695/1713442708152/g8Ufb1ZTs83LSEL

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876498fb5b435695/1713442708152/g8Ufb1ZTs83LSEL
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 74 x 89, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
1ffbe42d55f7831c92eaa43315878c9a
0f44e9436e5c334b9311f369cb63629d903f6d7d
fc46355223d13cce1df7802f892ac40a19786a7b69870f23f6b7ce53cd1f547d

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/876498fb5b435695/1713442708152/g8Ufb1ZTs83LSEL HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/7cbe4/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:28 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87649900fd6f5695-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js

104.17.2.184

184 kB

URL
challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42414)
Size
184 kB (184084 bytes)
Hash
374fec8b5e50cd6ab980f3fef21a5aa0
7f474607991a19b6f1b78cc32e0f75b501b60774
8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a

HTTP Headers

GET /turnstile/v0/g/54ea73d52131/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://azungu.site/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:25 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498ecbb1a5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

azungu.site/cdn-cgi/challenge-platform/h/g/rc/876498fb5b435695

104.21.73.136

21 B

URL
azungu.site/cdn-cgi/challenge-platform/h/g/rc/876498fb5b435695
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
JSON text data
Size
21 B (21 bytes)
Hash
018598ff9794435b440d1bbf293cc10f
9129b0ca1a4febdf97636946a1fe7be8abf11890
898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/rc/876498fb5b435695 HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Content-Type: application/json
Content-Length: 596
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=n6UrXpLBMlY2C8Ym3t9RPmpZ8in2rqHTsoV_r8F5feE-1713442707-1.0.1.1-TGpEkWbwFa.U6JWwG4UUDcwoKlAdZCF82coS06lJOKnT1j2lHnugvuZKP6D8op6Q_6MAKWsQ.R4WVwK75sfMRg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:29 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=cX3PXkhkTtrh1l0WXq5Juk.c6VPcHfEqjLSDPCDzpig-1713442709-1.0.1.1-65UmRlzBnsC4m0zFMyL1mZDC9FNrjUQc1aiygZ9_RhLwbhv_dyyW2jJ6p_CfBdqQHN_0MPVghUl9kJ2xtCJJ2A; path=/; expires=Fri, 18-Apr-25 12:18:29 GMT; domain=.azungu.site; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MH9ndSCRqdw%2Fp4dbYQF2ZkvjAGz5BYyzDKAL%2BjQNu50asojoffsZJQzk9Q6M0k93%2BJUYH8edZ2f6fihUW0eEaj9NG%2Ftp%2FtdIRNcpfHQPag9G%2BIFlfWd%2F260TgYA1Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876499072f11b505-OSL
alt-svc: h3=":443"; ma=86400

azungu.site/favicon.ico

104.21.73.136

231 B

URL
azungu.site/favicon.ico
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
231 B (231 bytes)
Hash
5948879b0f61957de5b7a1a360d342e4
5bdd2b3b341cd17501c6091a8950ffc330321f0d
6750c834283e48bdafa0732814f81bc4a80532ffce11b8eed7a1a91ec85ea48d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=Noo9JfKSd1.13W_xZrowHFLpN8o4QzVUI29VKasnpL4-1713442697-1.0.1.1-pEdPgdOS1weIVwrSAX1vWtrpNKCdrvXiDzbZJRc108WszwbqIXoBPVUnIEnX8eJ7khuXOrcQlL08QrLYIlHL9A
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 12:18:18 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cifJEayDE2V0RO%2Bm9HDzGhi9gQwk8YeI5k8pDKkNU7iIO39JYx3%2FNgp5Nj6XRRGbaUij8fd1JWjOj%2FssNdD3N9qY3K4LAk1rh3fGfcYUZhW2%2FoOEaA6cABC9mhLfkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498c0aeb1b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

azungu.site/_canada_driod/functions/validate.php

104.21.73.136

32 kB

URL
azungu.site/_canada_driod/functions/validate.php
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
32 kB (31594 bytes)
Hash
31f49f85b1ed89bda10199f94b070872
2e6a782a2ca3670ee4c254743623c7718d8a2d62
8b3f1aefbd19c6675cf1abb652a7f743f9abd50e1f8b54837bab6a4c73aab681

HTTP Headers

POST /_canada_driod/functions/validate.php HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=cX3PXkhkTtrh1l0WXq5Juk.c6VPcHfEqjLSDPCDzpig-1713442709-1.0.1.1-65UmRlzBnsC4m0zFMyL1mZDC9FNrjUQc1aiygZ9_RhLwbhv_dyyW2jJ6p_CfBdqQHN_0MPVghUl9kJ2xtCJJ2A
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:29 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TXhZD%2FRVJEa5bX6nja5MUN9pzDyDkN8X5sg520WPU7bWCQz15GaVII7l%2F%2BBwkEmMigus8%2FbAoyW75wXHdoJwLjXsDTmMbH0lreG6LbeRvykMQRY8lzPGkWSiKkI%2FAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876499077f70b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/

104.21.73.136

200 OK

197 kB

URL User Request GET HTTP/3
azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
IP
104.21.73.136:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectazungu.site
Fingerprint02:54:C7:F3:6E:93:7C:4A:BA:F0:9E:D8:44:14:A9:91:43:92:B6:32
ValiditySat, 23 Mar 2024 20:33:03 GMT - Fri, 21 Jun 2024 20:33:02 GMT

File type
HTML document, ASCII text, with very long lines (748), with no line terminators
Size
197 kB (197276 bytes)
Hash
10254d71028158b89d876e6a4f0535c9
bfa04ed686efc45f51cb441810cae52406ed07b8
224949b68a5e620df1b740fd956d1c2121c756e36c743ec7cdcf5a7d8cdbb3da

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/ HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=yKX1xStru_e99O6Vn1xp5KkjTI6ui4TqtVANJRLXSVY-1713442705-1.0.1.1-.BBTLCcxzLZhgf2aVXJOyQ.PDarlUKKtENPdWziKtSElmchWHl2Q8oX.gLY357WceBhpT86ed9D4.ni3d7BGkA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5sQnrMY6s8I5%2Bz2659aJuALAFmhv3cENinygx2pHZJHBtfHCQDrzu9Cd%2Bqu%2FmWHBOKlEH8CGwtRAqYH02Vv63qPdDsZuVebcIoXSs8xPkS5jnIwM3nlAFExpLy%2BN6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876498ebaf57b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1326455946:1713439648:8v9cH_r6eYGtztQLF2XulcQnprZ9zv0Ec5yue0Sq4tc/87649909cb615695/3e628ec2ecfbc22

104.17.2.184

87 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1326455946:1713439648:8v9cH_r6eYGtztQLF2XulcQnprZ9zv0Ec5yue0Sq4tc/87649909cb615695/3e628ec2ecfbc22
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
87 kB (87013 bytes)
Hash
4ce855d6dd67e85c53c1f84e1ceb234e
3f96c57ede0d35988656fe24c00e4cf7d01ed579
3ae8cdafcdaecb1f6a7a8bb20097ae0e56809dbbbd586aa7bd1d69a3fb597729

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1326455946:1713439648:8v9cH_r6eYGtztQLF2XulcQnprZ9zv0Ec5yue0Sq4tc/87649909cb615695/3e628ec2ecfbc22 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5hu4w/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 3e628ec2ecfbc22
Content-Length: 2708
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:30 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 80MhpAKpYLF4K1IZWZM4vsQSiAZnDIlIitGW3ysVuDfN2y9tSeGkxEpogcqSunaxQMD6i4khHRkosfI+kvmx1dTjAH5XcIj+EIo30unMgQZuQi65FWZRt7Vd7YZgNQSNTxvfCCVEzW5It5bueareg05ICZ/5Hv7ZfSo3ZGxQPwVvgWHNK+WyUSG4RNeKPJZVCvPGhOoFV+sE8tEwnUqHz+pMbcWEHHNdjwHHgCBdPxjry3t3nKpE0RU293hQVP7qJRCwaC9SlhbYlv9GpJbb6g3Mhl3oKpKmW4lbti77vfZwt3xoTJZ+W9p1+74RGPw5WYEtRhu9edA1g3uxnxGdmA3b0RAfvwbMWBWyIMzeC4nQCWLDMXOHuwFUVvKU3Dbv$vXQ14aijuvQoyO4A8pvAoQ==
vary: accept-encoding
server: cloudflare
cf-ray: 8764990c3f885695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87649909cb615695/1713442710454/d10ca55afa3f7fa1c483c1d42a5c57c0b175dc777e66ada53a9a84259a640e0c/IXPv7-zLPtlPxvz

104.17.2.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87649909cb615695/1713442710454/d10ca55afa3f7fa1c483c1d42a5c57c0b175dc777e66ada53a9a84259a640e0c/IXPv7-zLPtlPxvz
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/87649909cb615695/1713442710454/d10ca55afa3f7fa1c483c1d42a5c57c0b175dc777e66ada53a9a84259a640e0c/IXPv7-zLPtlPxvz HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5hu4w/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 18 Apr 2024 12:18:31 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g0QylWvo_f6HEg8HUKlxXwLF13Hd-Zq2lOpqEJZpkDgwAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tINEMpVr6P3-hxIPB1CpcV8Cxddx3fmatpTqahCWaZA4MABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 876499101de65695-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1326455946:1713439648:8v9cH_r6eYGtztQLF2XulcQnprZ9zv0Ec5yue0Sq4tc/87649909cb615695/3e628ec2ecfbc22

104.17.2.184

4.3 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1326455946:1713439648:8v9cH_r6eYGtztQLF2XulcQnprZ9zv0Ec5yue0Sq4tc/87649909cb615695/3e628ec2ecfbc22
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4412), with no line terminators
Size
4.3 kB (4252 bytes)
Hash
e479e7c40088a00c6f431e48e74f4ead
3e444f0cc8b56f61346517037ec00b90d19cfdf3
f987e4df8e4a68d64f62fde1f84b40731d16903b14b29ada0806cb85404e14de

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1326455946:1713439648:8v9cH_r6eYGtztQLF2XulcQnprZ9zv0Ec5yue0Sq4tc/87649909cb615695/3e628ec2ecfbc22 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5hu4w/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 3e628ec2ecfbc22
Content-Length: 25749
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:31 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: c23Fhp5F5w/ZlrUhe4+V9e2o1r2WwLUcCPR6dRL9aofif/n83AJKJtcN2YfGX2uKl4oCgsRfd7YT2WhngtFiBBrr0nismYVjI5U0wnSFQzXNv/oUnkCcAHLzU6IPT0+S$pZ8r3tIUewJKL4mTlEX2AQ==
cf-chl-out-s: 5QEkKV15UUihD7qwsZK2s3q631r2UteZP0TusT6sEE0lpVPKRBKISpuV5a4dREPo874eh8fT0cGfEqbyBHpQWH1SXYI1kd1MAQqXhxwKTabBHx0XoYao84MFywjmw+jAgLsbiCf9BaZrApbuThz2Lmg15okjYqitg7ymoExGsJJevaoIzjZXGnikevD28hLi$q+TT/kwRGd5TtO5/9Ppa0A==
vary: accept-encoding
server: cloudflare
cf-ray: 876499153e335695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.2.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 18 Apr 2024 12:18:32 GMT
content-length: 0
location: /turnstile/v0/g/54ea73d52131/api.js
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 87649917aa515695-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js

104.17.2.184

144 kB

URL
challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42414)
Size
144 kB (143882 bytes)
Hash
374fec8b5e50cd6ab980f3fef21a5aa0
7f474607991a19b6f1b78cc32e0f75b501b60774
8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a

HTTP Headers

GET /turnstile/v0/g/54ea73d52131/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://azungu.site/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:23 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 876498df4d425695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

azungu.site/favicon.ico

104.21.73.136

26 kB

URL
azungu.site/favicon.ico
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
26 kB (25907 bytes)
Hash
5948879b0f61957de5b7a1a360d342e4
5bdd2b3b341cd17501c6091a8950ffc330321f0d
6750c834283e48bdafa0732814f81bc4a80532ffce11b8eed7a1a91ec85ea48d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=WcyB38SQq80mFIdY9.Xpo6ShENPbIRAYTX_80xlWnN4-1713442711-1.0.1.1-LQGzKWzoOnM2BjAsNfIRAj9v3RcRHX4gIUmGOwLoC90yQUOxKfOr35tVVZ4VCAhEIaA_rY9saCnOFfTlGw0bIw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 12:18:32 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AmvN4O1kSKFItWZ2a2EwuMxfFR33J2fZvgNxZrU7j1JYpD5gdHguBqXvutx9%2FYynYBtrk8hxY4%2F4e2AoCgvtCUG5AJ%2FqPsyCttD%2BQ9aStXMiWbPC%2FACdi%2F%2FxXzOc1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876499181cfbb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/15635712:1713439742:-MGR1jH6Yjy9agOERfrhgxqgw1swSFtPedVwhiL5u5k/876499183b5e5695/8b0512ea01eb5ef

104.17.2.184

98 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/15635712:1713439742:-MGR1jH6Yjy9agOERfrhgxqgw1swSFtPedVwhiL5u5k/876499183b5e5695/8b0512ea01eb5ef
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
98 kB (97702 bytes)
Hash
fea880a59fc97dbaa8063707a3e715b7
c40e8be7b65b0b46c460b0a84e9bdd676e58c1f3
3616b8fabc4bfef53a17674b922948d988bd4bd90fcba6266c8fbc6b6f9d81a9

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/15635712:1713439742:-MGR1jH6Yjy9agOERfrhgxqgw1swSFtPedVwhiL5u5k/876499183b5e5695/8b0512ea01eb5ef HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yfq7o/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 8b0512ea01eb5ef
Content-Length: 2691
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:32 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: XvOnGFuVVnk3wMOdhuvi7VvTQs+9ajadLbT0SH1pjQ71WfWeTCsvv6fWlKIU8hU8z8E7nteLSX9yFX5M+RQSINboZIR7aQZTVndi9cb88+T0tZ2ws9mGRi1EUwuXRF5YCmbCSbylgZ/ZhGlGF5hT4Zoa2Ml/1uqhpcSX3EyGJ9oe4SimS19mw/cduJErT1QF1APGXJmshZtEx+Rko77fkmorAJf1c9nZaKxbVtJd6nikzfWABbsZ7QmEotCrPWcv5pkz2eCg1cCWB3mh7OXez7nyqBxacIqIliBlA/8/GgPxkCNqqD7vyaBOQtu4A9kI3k6EMytFC5AaYSS5oCbh7FX/ONoh+pTsNYj/Wdihi3w+W5SmzqTsZ93lEa7zj3jiN8508adi1FVIoWKPcqtPTw==$+AWz+GkikR9KnwpIA6hwcA==
vary: accept-encoding
server: cloudflare
cf-ray: 8764991aefc55695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876499183b5e5695/1713442712809/2HElrHSuR2P3MYT

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876499183b5e5695/1713442712809/2HElrHSuR2P3MYT
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 17 x 36, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
2b79f23739c13a35907e866d8a432d81
7187a61b6b13ad55e7785a8ef1b781e5f5904512
e5b57ecaaace12cc8b8d2d3af3ac7482520a11e5c5da7b81ff93d94443a6eb7a

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/876499183b5e5695/1713442712809/2HElrHSuR2P3MYT HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yfq7o/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:34 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 876499279f545695-OSL
alt-svc: h3=":443"; ma=86400

azungu.site/cdn-cgi/challenge-platform/h/g/rc/876499183b5e5695

104.21.73.136

21 B

URL
azungu.site/cdn-cgi/challenge-platform/h/g/rc/876499183b5e5695
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
JSON text data
Size
21 B (21 bytes)
Hash
018598ff9794435b440d1bbf293cc10f
9129b0ca1a4febdf97636946a1fe7be8abf11890
898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/rc/876499183b5e5695 HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Content-Type: application/json
Content-Length: 596
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=WcyB38SQq80mFIdY9.Xpo6ShENPbIRAYTX_80xlWnN4-1713442711-1.0.1.1-LQGzKWzoOnM2BjAsNfIRAj9v3RcRHX4gIUmGOwLoC90yQUOxKfOr35tVVZ4VCAhEIaA_rY9saCnOFfTlGw0bIw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:35 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=IjbtGDkOo9SqRwnonNixqXXQJkTUZYLps_Jrrw7WptA-1713442715-1.0.1.1-8OSHRJTEB1s18qJOvoVQz3Y.Hzp7mis2xbxgsw7e_ldtCWsVq8nTvFhCGGgNOzaGnTl7y7VTeTvwyfvKFagXhA; path=/; expires=Fri, 18-Apr-25 12:18:35 GMT; domain=.azungu.site; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=555%2Ba3eWeri248M2xCkFCpwtT3aXmY6A0XEj%2B0%2BMD24yWD1YtSjl2W9RsPsoBApJwerETgUWdPT%2B25XyNTU%2BeQ3dmMjfahYw0bBG7C9jk4JV4VSMhRQz3txQoBNhpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876499294e20b505-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/zwh56/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal

104.17.2.184

30 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/zwh56/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
30 kB (29849 bytes)
Hash
f5161427839d9d6a4ba7d03a47079c0f
4227dd1a73f0bcd54e0b5afee8c14ee7609e167d
a9023234ad265392612441f75aad63f0324a4f717d416278fa577b34724607a1

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/zwh56/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:18 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
document-policy: js-profiling
origin-agent-cluster: ?1
cross-origin-opener-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 876498c0da9e5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.207.202

31 kB

URL
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:13 GMT
expires: Wed, 16 Apr 2025 05:54:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 195862
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=876499183b5e5695

104.17.2.184

197 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=876499183b5e5695
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
197 kB (196801 bytes)
Hash
63f5efe773b7ec56d77fcd7e264c1c21
432c7a61765b626ebbbef46b20b72d5cb56f01f5
c02c8a429015e29d919771cfba5f80ed7a5ff50a6b2fc5822b4a9958091c549a

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=876499183b5e5695 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yfq7o/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:32 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 87649918fc925695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

azungu.site/_canada_driod/functions/validate.php

104.21.73.136

404 B

URL
azungu.site/_canada_driod/functions/validate.php
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
404 B (404 bytes)
Hash
94e6d98b78b1d6db32ae8e3bedef1b11
c4c72999d2c2f20adafc8e70da64871368a3f574
235080173416a88e2144a8f6aac71b8c3b5b04029124835a09f5bcdab08a4976

HTTP Headers

POST /_canada_driod/functions/validate.php HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=WcyB38SQq80mFIdY9.Xpo6ShENPbIRAYTX_80xlWnN4-1713442711-1.0.1.1-LQGzKWzoOnM2BjAsNfIRAj9v3RcRHX4gIUmGOwLoC90yQUOxKfOr35tVVZ4VCAhEIaA_rY9saCnOFfTlGw0bIw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:32 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zJs0mOceqbwD3Tkz%2BgZlbU7aXe3VdYeOWSWBuqeT9fUaJfVIUhWVwpAf2gejKijXcqamMzu19blh8xx7hc%2BdOV2P8%2FIVfUB2vn%2BEko1NyD5RhsG6KR%2BWuoMv3yevHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87649915da3eb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1544847837:1713439706:tWNKqaN_o0FmdsfgFI0zbal8LJdGpLpIH5QLfRq9vGQ/8764992bcf0a5695/b512d75556e42e9

104.17.2.184

200 OK

134 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1544847837:1713439706:tWNKqaN_o0FmdsfgFI0zbal8LJdGpLpIH5QLfRq9vGQ/8764992bcf0a5695/b512d75556e42e9
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
134 kB (133727 bytes)
Hash
fc0b89bd47ec4d458fa0e359fe3944cd
0a0f9bee7dd910974f4ea9812460530a4ba1d47f
bc25ac96159c6f1f927cc317de3bd09a05a2b4feaf86269f15cc8d1481dce5fb

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1544847837:1713439706:tWNKqaN_o0FmdsfgFI0zbal8LJdGpLpIH5QLfRq9vGQ/8764992bcf0a5695/b512d75556e42e9 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: b512d75556e42e9
Content-Length: 2720
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:36 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: AkeZKTaMY7v0WPvIKx5JAE4wKOvPBJTZ4xkysCrwSBU4YRUssoKpbxDXlswpqMmRZnnBZ7ongIS1tTftBY3DRwVW80mT/OwXT22G7YEkKpwcu6id/QhjlJ8H71W4XdTTLEUjjE9F8DWLQRySBtk+Z1HPDQABLe6EoEE7hpALJZiWk/01sfme5pUJyqz9dpX+GgAemmBEQl+JLJ6PDwO0r3JRzQAYk1aVuvoUsUPHWA0boZ6KjrphyxuymzAvxz//1EFLDANOkBvH7W3dcVjA2oHWLyJ3itZ+Xb2JR3d9S6FeeUfoSYlVZa0g7yMSEPk6oqKDmW+tC627Ixho/Tiu4nqmeOg1IdONJF/7ikgNAxC2uExJO4ez98FiVO1n3rycEzbtLRUdCzJ0TOaIGJTrr07Uq/INwkJkN2NGbbjsMR0mK8hn+qSz/GAuvYAmkRk2CzTcRk68xvxT13MmK8Ar6NVLKmGaiTjLvjtez6+3H10=$DETF7O9FQjLr2y//3U6tOQ==
vary: accept-encoding
server: cloudflare
cf-ray: 8764992e8c5d5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1544847837:1713439706:tWNKqaN_o0FmdsfgFI0zbal8LJdGpLpIH5QLfRq9vGQ/8764992bcf0a5695/b512d75556e42e9

104.17.2.184

200 OK

4.2 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1544847837:1713439706:tWNKqaN_o0FmdsfgFI0zbal8LJdGpLpIH5QLfRq9vGQ/8764992bcf0a5695/b512d75556e42e9
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4412), with no line terminators
Size
4.2 kB (4242 bytes)
Hash
658ec73ec0e3818461ad0c4ff509c575
ec39af83c5ba0b91700377c29ae00b2a5379b94f
a175b25202f0173612cf159f250478b39842c91e2514813790629d710c563f46

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1544847837:1713439706:tWNKqaN_o0FmdsfgFI0zbal8LJdGpLpIH5QLfRq9vGQ/8764992bcf0a5695/b512d75556e42e9 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: b512d75556e42e9
Content-Length: 26179
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:37 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: iYn8vaaAhZQJgRXAW61w77yYV8X2nQl3mkMyq0cQfesgOnMuHEgGm0JJ81CfChp0dP0X9geoEJH53zzxXKsJih9Rk9z75cOpEVSa1L9Dr1y02Lq0D6EK08qmV1wvrKBi$RsEbflajMiiBaz39Oe2PFw==
cf-chl-out-s: F0f6FwTFN6UfwKobuyAbcLaZuTpuMAcAtZ4uaXRbCyXnFjocSg9idCnMCLjZIxonUU0XvO9V1Hff5OByyOSF3RLEvbvVhV+nqoFOCUeqByV2k1mvdNKhGgiKOGnl8YF4alsnqeq/cyQMszK3ak71EPsEvmwTsP4z5somUIasXLLZly896RXl2azM9uCwrKFz$J9+EyWLb8Yx6faN+4cDJLg==
vary: accept-encoding
server: cloudflare
cf-ray: 876499388cfc5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/15635712:1713439742:-MGR1jH6Yjy9agOERfrhgxqgw1swSFtPedVwhiL5u5k/876499183b5e5695/8b0512ea01eb5ef

104.17.2.184

35 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/15635712:1713439742:-MGR1jH6Yjy9agOERfrhgxqgw1swSFtPedVwhiL5u5k/876499183b5e5695/8b0512ea01eb5ef
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4412), with no line terminators
Size
35 kB (35420 bytes)
Hash
4c89fe28903eb534597fed18d7b4cac9
f8e96abf43067457af2e6abaedd753a6cc595290
74b16fee8da1db304ab7ac4521e20e6a44a5fca56156c11d1d3097a3e43082bb

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/15635712:1713439742:-MGR1jH6Yjy9agOERfrhgxqgw1swSFtPedVwhiL5u5k/876499183b5e5695/8b0512ea01eb5ef HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yfq7o/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 8b0512ea01eb5ef
Content-Length: 25947
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:35 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: 9fLQGE3jSRgCP8pW1WK0a72H03QhyoOf1bUF2BqjF9Zuajwl6ahJNAmykx5XadgZaQc9y0H5UvYIn5uXXAkUzOeRWkVijXKl1NhKAhoo3r+rVbVLWbxJClciCAiBT89H$K9+icghfICuiT7xxXWqZIQ==
cf-chl-out-s: Ma671ZY2Vlu3cuF9SLdbSCHLRbgexJZYB2zH72DmmF15mIZn/2vCSPFgc1Z5Bt8eNothwLKsegSPpRWAjr+Ec5oEjSIoJ5NBGivIR7CGkOYKlExuBkfcwhe59jOSmi0W6hhYc3EFqRQY1oT9cfKGTR/SEyrn4JOSHuu9yghXdMOCcNQMY6vsGz9VITePutEK$PyBlLqtLP2gfGoXD7czAKQ==
vary: accept-encoding
server: cloudflare
cf-ray: 87649928da415695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

azungu.site/_canada_driod/functions/validate.php

104.21.73.136

403 B

URL
azungu.site/_canada_driod/functions/validate.php
IP
104.21.73.136:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
403 B (403 bytes)
Hash
ed409f26ec80a3cea767efa3bf87f5a8
695c4fee6af28840e3950806a77a40ea24e81cf1
978a0cda11414b029b725a86459a143cf4f368247dbf738e890645bddaf5619b

HTTP Headers

POST /_canada_driod/functions/validate.php HTTP/1.1
Host: azungu.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://azungu.site
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Cookie: cf_clearance=IiSyYkgKDDwR7ME1AEju_.lffojb3RV_4jkzhfIvL94-1713442717-1.0.1.1-eTEuE6KETiRBPWjbO.jY2D.Vwd2vYp2YO40zBqQyOLCcoHh1ab_gh3mmbqGOEj1hvoni964caoMBPAkLSDwAAQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:37 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TyfUAVR8ePPERMdKYpT2jneYFRM1xokwAccui0wRk4Mh%2Bu7BG6iuwfR33beanThrgF7v7DiTlrJ1rNyeJOUgV%2F%2BIUuP9Lct0%2BVdcqpXSiZkVCbR1IUfpHiKnXk4%2Fsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876499395e85b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tabvs/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal

104.17.2.184

26 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tabvs/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
26 kB (25733 bytes)
Hash
1ae4b0da2ce4a8e75d115ca4f11c4617
b8efd64876ee6ad40632924f7db74ac442a3c877
9d0c4126b777aa0674cb5f33a4b1bc460b275a6029e07ff62af7554e9104e526

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tabvs/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:38 GMT
content-type: text/html; charset=UTF-8
cross-origin-opener-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
document-policy: js-profiling
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
vary: accept-encoding
server: cloudflare
cf-ray: 8764993baafd5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8764992bcf0a5695

104.17.2.184

200 OK

431 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8764992bcf0a5695
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
431 kB (430710 bytes)
Hash
910eec35f74d9696961de7f11a494244
fbb03138eac6195ea364aaeff50f10ceb5dbe5da
707e662442f4fce27c867ee6a714ab9bdd4914825807a83c9ea5e7b609f52eb4

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8764992bcf0a5695 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:35 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 8764992cb9045695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal

104.17.2.184

200 OK

80 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://azungu.site/_canada_driod/zone/b3b32a2d422265cd25c3323ed0157f81/_adbe3/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null/
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
80 kB (80047 bytes)
Hash
5c5518e04251701bb53abc85bb84fb08
1bcddf9a5a223ed6def64569d7f9fe2f8e523dec
7e8c193af11ed81184689a799df5391169f4f6f4471a17787707619e7eb4ecf7

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/0u4nr/0x4AAAAAAAVdntCB6V5RxXfy/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://azungu.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:18:35 GMT
content-type: text/html; charset=UTF-8
origin-agent-cluster: ?1
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-embedder-policy: require-corp
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
vary: accept-encoding
server: cloudflare
cf-ray: 8764992bcf0a5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (46)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash