| eyol.link/r?url=//Assurant%E3%80%82energycomercio%E3%80%82com%E3%80%82br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t | 172.67.210.42 | 301 Moved Permanently | 8.1 kB |
URL User Request GET HTTP/1.1eyol.link/r?url=//Assurant%E3%80%82energycomercio%E3%80%82com%E3%80%82br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t IP172.67.210.42:80
File typeHTML document, ASCII text, with very long lines (17086), with no line terminators Hash0a0adac55b4b3cb25e11380247dc9d09 4d684bbb2a1e126120b3ebd547bbeba5bea4e173 af3758f6088912a514a7e98903353ca4ba7b2003af09a6761117520c336eb8f9
GET /r?url=//Assurant%E3%80%82energycomercio%E3%80%82com%E3%80%82br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t HTTP/1.1
Host: eyol.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Fri, 03 May 2024 20:57:37 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: i/rnJYoT/ZPwW01feFqvCuRjFX/kb+83/d5weWLiSADRw3wxXBJl5biZt2E+lYPoXm0fnzaGyrp5jZiDCZCFJDigR3MFG4TLpAINoKtSzZRf8QA459LxA0Q8Z4B1pz3ufInpL+F4bfsPKX7fhxUpLg==$sZ1B5QIUhkBrEPjFv0nlzQ==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZCiD0K5Ap9A1ak%2BiZUn9y%2FgUPc%2FlECCqnhr2ZooB5oQyTlmPPUVm97EodOHs23x1yk47dtJBtiwWhvAc4UC3bMhWXSx9r7Q9KuCpHWy9ABNhsrUIf1YWKIJrXxk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e32a18682a0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| eyol.link/r?url=//Assurant%E3%80%82energycomercio%E3%80%82com%E3%80%82br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t | 172.67.210.42 | 301 Moved Permanently | 167 B |
URL User Request GET HTTP/1.1eyol.link/r?url=//Assurant%E3%80%82energycomercio%E3%80%82com%E3%80%82br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t IP172.67.210.42:80
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET /r?url=//Assurant%E3%80%82energycomercio%E3%80%82com%E3%80%82br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t HTTP/1.1
Host: eyol.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 May 2024 20:57:37 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 03 May 2024 21:57:37 GMT
Location: https://eyol.link/r?url=//Assurant%E3%80%82energycomercio%E3%80%82com%E3%80%82br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BoIRLJSczgjc%2B9IhNuxnUIQL0DUsdfJmY%2Fz4C7i7e7VdTIwIGDTvQw6srvKhnFMOXp4zu5zyGlPp0TWypsJ6Zt5qj4VK7XRPpyYXu%2FSauLDPfAMDMHZfpwCVrY0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87e32a191d0d0b45-OSL
alt-svc: h2=":443"; ma=60
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:0
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xh5ug/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 May 2024 20:57:38 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 87e32a1e5f5eb511-OSL
alt-svc: h3=":443"; ma=86400
|
|
| eyol.link/cdn-cgi/challenge-platform/h/g/flow/ov1/1210437367:1714768238:d7irk28E-YcrroVk2lJ9O-_7VLfRj3j_D6x_HkIv4j0/87e32a192fcdb51b/353bb6b64df179a | 172.67.210.42 | | 46 kB |
URL eyol.link/cdn-cgi/challenge-platform/h/g/flow/ov1/1210437367:1714768238:d7irk28E-YcrroVk2lJ9O-_7VLfRj3j_D6x_HkIv4j0/87e32a192fcdb51b/353bb6b64df179a IP172.67.210.42:0
File typeASCII text, with very long lines (16364), with no line terminators Hash4ecbcd5cf01642d75849955287026d23 cfc98bf77c95701b5c454ed7bf0e05344ae009b9 99c3d2f94a5ef019a9ebbb0a0e9bb64f6f9db80e19f3ea9a2a82b371a102f06b
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1210437367:1714768238:d7irk28E-YcrroVk2lJ9O-_7VLfRj3j_D6x_HkIv4j0/87e32a192fcdb51b/353bb6b64df179a HTTP/1.1
Host: eyol.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eyol.link/r?url=//Assurant%E3%80%82energycomercio%E3%80%82com%E3%80%82br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t
Content-type: application/x-www-form-urlencoded
CF-Challenge: 353bb6b64df179a
Content-Length: 2079
Origin: https://eyol.link
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 May 2024 20:57:38 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: /+ngAfIe8+kKurRwF+vHHzzBnydn0M8YlVNlQd138Jim4MTrKQyJqcTMc9QnxmMx$KWoIvdf4pB2ld4j9PiQ7Rw==
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G9xj7KLYtXi%2BhiJQcWpH2lO%2FmU9UEbwQzc6m%2FnVAwWkMHan%2BIAkcGErYZxfA0KPJDE%2FrbZgTi5VDtB0UWyYl5vd9XAA%2Bs7wo2Au3YDNJZwa0niMd6ZvGBZmmAFw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e32a1cbb40b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| eyol.link/favicon.ico | 172.67.210.42 | | 26 kB |
IP172.67.210.42:0
File typeHTML document, ASCII text, with very long lines (15922), with no line terminators Hashe09fe358a20df116f4cc9092f0a1aa19 b5b16e2c7b81e14b2865b4a3f4280f3d98d3d7bc 46901ac76345876b987eb6832222ecb4795d8bf662634cac89d47c29a964da53
GET /favicon.ico HTTP/1.1
Host: eyol.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eyol.link/r?url=//Assurant%E3%80%82energycomercio%E3%80%82com%E3%80%82br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t&__cf_chl_rt_tk=wv5MVkw3nkk3cazl0JbPoRAQkADvMOcLL5uj4TZIYXk-1714769857-0.0.1.1-1877
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
date: Fri, 03 May 2024 20:57:37 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: Pgh/Y9s9AdhL0BH7fPXxTqJyknDB711ibGWbxtD/EM1+COOrcJRV2lcbwkbUtRwhpn1X5aQayGSn4iWi3a7kvWJT/8bdBIz16zoDYNhLe2uFFysrSJPMTreGgQLypVIqCSHwBkZmcxy469NwSM33xw==$tyi2eUL2uH8MKy5Vi7Z14g==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qn94RZ6XT54CKuXcW2XHi5SHZgxfjU8JVAkQRl5AYGhCTD3P2%2B1dunRbLamG2EHgfPoLPHhFHT3aJTNrL%2FUNMJT%2BP4Q%2BMErv8tx59TauCDZKx3NFgPN7KDxA%2FKk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e32a1b49e8b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2031277818:1714768353:uiRE4tknviKFXvplN11fhWKWNJvUkHR_KWu3UxRWCuE/87e32a1dce9fb511/c9a0c88b38a02fd | 104.17.2.184 | | 100 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2031277818:1714768353:uiRE4tknviKFXvplN11fhWKWNJvUkHR_KWu3UxRWCuE/87e32a1dce9fb511/c9a0c88b38a02fd IP104.17.2.184:0
File typeASCII text, with very long lines (65536), with no line terminators Hash8688b147dfc7a287da497e39d6b19f61 96c5b4487d2cecfebef283fd9edf776810883a16 3bbd8bec593b83e79a4be18452c4db438b2e90923cd18b8a40cfbbcf67af16ad
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/2031277818:1714768353:uiRE4tknviKFXvplN11fhWKWNJvUkHR_KWu3UxRWCuE/87e32a1dce9fb511/c9a0c88b38a02fd HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xh5ug/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: c9a0c88b38a02fd
Content-Length: 3739
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 May 2024 20:57:38 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: R284oHFTGqJZMCnJcHA9JtzB13CXsIMMd+CvpO0n55HZcmfhN9vxTqy9t9Ykgry/o6hOAGszlTD6GTJVtIs3xBbyc7ks5BHmyvlE98+JZX/gDBB2X34Vz60fEcWY1dJV8vcWdE4WWNM/YjhXSFCZ/i+NvVN/P2lc3PpBpVfaJ65cWqkXvEP2ab0eqxki2/j22S0tY6RHrt/8y+q2E3nFylYwZVPEXNt/nuVqGUpemarNfrpFuJj59jUJu1Q7k3dIwU4KLW3aJRpAF3RVuiYE6PQ/mFS0ojsx9O2ivcq6+MseO3As6G2ObaMGwNNZxkhSH/CQqYAylY1O7vmCdpwtYBE/TVq+179v7ql3s+oD+NSeyAJ+XmT1zIBozYlScQzQAPZOie7JchL26P8pFPZx262DmChBywJSqVmKkpmHGeU=$r8f6i5F+ZcxHwXCOF6eKHg==
vary: accept-encoding
server: cloudflare
cf-ray: 87e32a20495fb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87e32a1dce9fb511/1714769858620/5SYBlui4TL0u1Rn | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87e32a1dce9fb511/1714769858620/5SYBlui4TL0u1Rn IP104.17.2.184:0
File typePNG image data, 53 x 12, 8-bit/color RGB, non-interlaced Hash974db331ca3079d854bb794234bc3d9c 9be7bd7743c8f056d0f1d5a5ef314858665b0883 25dd461d899ee75f5f6bf9892bd9af4301e665c5a1b450e17915078439f14ecb
GET /cdn-cgi/challenge-platform/h/g/i/87e32a1dce9fb511/1714769858620/5SYBlui4TL0u1Rn HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xh5ug/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 May 2024 20:57:39 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87e32a235c18b511-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2031277818:1714768353:uiRE4tknviKFXvplN11fhWKWNJvUkHR_KWu3UxRWCuE/87e32a1dce9fb511/c9a0c88b38a02fd | 104.17.2.184 | | 3.8 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2031277818:1714768353:uiRE4tknviKFXvplN11fhWKWNJvUkHR_KWu3UxRWCuE/87e32a1dce9fb511/c9a0c88b38a02fd IP104.17.2.184:0
File typeASCII text, with very long lines (3488), with no line terminators Hash87749f43fed86dfea26e96bf72166a3d 9bfb7e6e604038587bca506ae31e2153e58977de dd508df298acbc07a85fe2cedcb590288fbe0493f022469643ac2529e6a1f4d8
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/2031277818:1714768353:uiRE4tknviKFXvplN11fhWKWNJvUkHR_KWu3UxRWCuE/87e32a1dce9fb511/c9a0c88b38a02fd HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xh5ug/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: c9a0c88b38a02fd
Content-Length: 38427
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 May 2024 20:57:43 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: IfOYqZCbqR0QU/LdR+4dqTPEtn4iJ/mxT/R58z5Bq2JXawL6ARc7hgGm/zLU/qMMngaWCV6enJehO010ycj9pNpuMcatNBbOCRWBZAHyu1Dk2hq8lIfWphrQha4iEyKa$RyBPb1u7Cwccn+emA90qYQ==
cf-chl-out-s: GWWvJsqv4p+pan5oiLH9pg==$3hu631GWXN7ON8nSx79HUw==
vary: accept-encoding
server: cloudflare
cf-ray: 87e32a3dcebbb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2031277818:1714768353:uiRE4tknviKFXvplN11fhWKWNJvUkHR_KWu3UxRWCuE/87e32a1dce9fb511/c9a0c88b38a02fd | 104.17.2.184 | | 22 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2031277818:1714768353:uiRE4tknviKFXvplN11fhWKWNJvUkHR_KWu3UxRWCuE/87e32a1dce9fb511/c9a0c88b38a02fd IP104.17.2.184:0
File typeASCII text, with very long lines (22320), with no line terminators Hash8319d71580d85d80c3b9ea4d5dca9ccb 7c5a2ec158e4c17f809ef8562a41a3adb155ca18 65d58dc4208f35230d436ab8d53cf5c97eba304035d79cc97a4790f218dad488
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/2031277818:1714768353:uiRE4tknviKFXvplN11fhWKWNJvUkHR_KWu3UxRWCuE/87e32a1dce9fb511/c9a0c88b38a02fd HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xh5ug/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: c9a0c88b38a02fd
Content-Length: 28582
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 May 2024 20:57:40 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: oRA3HKaplW/fqMad3Jqy6mlytghklI1K3ptbHhF4n3z5Tizp1o7zrrTPMpjVWpXY$yMB6IikrtMl2nMhuxTwikw==
vary: accept-encoding
server: cloudflare
cf-ray: 87e32a2b6bf6b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| emersomnasonry.com/?bzdsvkju&qrc=andy.schaut@assurant.com | 0.0.0.0 | | 0 B |
URL User Request GET emersomnasonry.com/?bzdsvkju&qrc=andy.schaut@assurant.com IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /?bzdsvkju&qrc=andy.schaut@assurant.com HTTP/1.1
Host: emersomnasonry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| assurant.energycomercio.com.br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t | 192.185.214.195 | 200 OK | 0 B |
URL User Request GET HTTP/2assurant.energycomercio.com.br/omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t IP192.185.214.195:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
CertificateIssuerLet's Encrypt Subject*.energycomercio.com.br Fingerprint15:1A:2B:C7:9E:46:52:99:4E:71:A0:08:D0:DD:86:99:0E:54:8B:7E ValidityWed, 03 Apr 2024 22:29:37 GMT - Tue, 02 Jul 2024 22:29:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /omluabie/omowunmis/Assurant/YW5keS5zY2hhdXRAYXNzdXJhbnQuY29t HTTP/1.1
Host: assurant.energycomercio.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
refresh: 0;url=https://emersomnasonry.com/?bzdsvkju&qrc=andy.schaut@assurant.com
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 03 May 2024 20:57:44 GMT
server: Apache
X-Firefox-Spdy: h2
|
|