Report - konkur-farbi-ua.eu/ditin-uah/auth

Report Overview

Submitted URL
konkur-farbi-ua.eu/ditin-uah/auth
IP
172.67.142.208
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-07 21:23:50
Access
public
Website Title
Telegram Web
Final URL
konkur-farbi-ua.eu/ditin-uah/auth
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
konkur-farbi-ua.eu	unknown	unknown	No data	No data	12 kB	1.3 MB	104.21.39.27
kws2.web.telegram.org	49675	2003-12-15	2021-06-23	2024-05-06	1.7 kB	654 B	149.154.167.99
venus.web.telegram.org	47739	2003-12-15	2017-01-29	2024-05-07	423 B	521 B	149.154.167.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	konkur-farbi-ua.eu/index-cfdc21d6.js	124 kB	2024-01-19	2024-05-19
Pretty URL konkur-farbi-ua.eu/index-cfdc21d6.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-19 04:59:27 Last Seen2024-05-19 07:46:18 Times Seen73 Hash a7486090a1e3aacc43501b1df0e3a3d4 a9236c75a8dfc3d7fb7da9ed71ebf53c8e78af08 102f0d983e9bbdc33b42c3da07fd98000f13d8c1671b5648c55a3c387e41c5b2 Loading...

	konkur-farbi-ua.eu/countries-5301fc59.js	24 kB	2023-08-29	2024-05-19
Pretty URL konkur-farbi-ua.eu/countries-5301fc59.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-29 04:08:58 Last Seen2024-05-19 07:46:18 Times Seen402 Hash dff89d22ad674afafcc150af3a75d51f 3e103a40939f3e33f2ed2d2ac340dbd049b8dca1 7b4921656e143af35794b7fc9d4d23580fa232ffcf179bc8569317e424032d80 Loading...

	konkur-farbi-ua.eu/button-1a8a4b7d.js	8.5 kB	2023-12-10	2024-05-19
Pretty URL konkur-farbi-ua.eu/button-1a8a4b7d.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-19 07:46:18 Times Seen115 Hash db2fcb1faf0ad3210f38a9dbeffebfbf a248f132d7662f64581bbd4a05756283345b6261 c8fff421d8b23fd9ddbf046f1c63d411ab15ee745fadc28bf1851d156514fae8 Loading...

	konkur-farbi-ua.eu/putPreloader-ae29ef38.js	699 B	2023-12-10	2024-05-19
Pretty URL konkur-farbi-ua.eu/putPreloader-ae29ef38.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-19 07:46:18 Times Seen106 Hash 259f536476625e11ffe9d1f10e96e242 78be832ca3954ee6c4cadec81a4ddb54650843a0 34e349140e7a6b3a220786219a85623d17cd6ad2c1239c1554a581ba7c72307c Loading...

	konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js	357 B	2023-10-29	2024-05-19
Pretty URL konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-10-29 15:08:50 Last Seen2024-05-19 07:46:18 Times Seen180 Hash db363d8053c3aa976b2e2162860d6932 fef1a8b065868caacf63184d97c10aaf10ec6a28 62ba5e078c4aaa3ff5c8c24cb8216de89afaa7dd10bfd364a0396913bbd34663 Loading...

	konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js	290 B	2023-12-10	2024-05-19
Pretty URL konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-19 07:46:18 Times Seen158 Hash cd6f232e1ba73081b1b70f3e1a14648f 7feaacf5309dc73289c5047b81c7c5781fc6f786 1b58f13a4a6a472ae93c91076b73ff754e8f7d4b3573764aed63a13e184d6fb1 Loading...

	konkur-farbi-ua.eu/asset/jquery.min.js	90 kB	2023-09-12	2024-05-19
Pretty URL konkur-farbi-ua.eu/asset/jquery.min.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-12 10:04:29 Last Seen2024-05-19 07:46:18 Times Seen171 Hash 1db92b83313d6fbaf76fd364688c8e6c 90c3cf0d1af00de7424a6b4b8f7f41b1200d3964 3ca4587ad13382ba7ede987f96682cc928589f037b1403fb43bd8ffc430809da Loading...

	konkur-farbi-ua.eu/langSign-66e8939d.js	1.6 kB	2023-10-29	2024-05-19
Pretty URL konkur-farbi-ua.eu/langSign-66e8939d.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-29 15:08:50 Last Seen2024-05-19 07:46:18 Times Seen128 Hash b1fb189d8c6640ca34096506a34baaa4 cb811e89f3c08f1d90eda051a29760fa1165e4d8 7285632faf1a90db84b6da17536028924fd77630408e7ba20172637dd2b7fe32 Loading...

	konkur-farbi-ua.eu/lang-9ff1b05a.js	102 kB	2023-12-10	2024-05-19
Pretty URL konkur-farbi-ua.eu/lang-9ff1b05a.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-19 07:46:18 Times Seen97 Hash 4230df4a8128c30f22af1783386cae6f a5716da6085a7a07fc430f3f410bb36c9e54ac34 52113907183285220d884b4a99c8ee805b977e6b0039992d95005db0988187e0 Loading...

	konkur-farbi-ua.eu/page-49e139d4.js	10 kB	2023-12-10	2024-05-19
Pretty URL konkur-farbi-ua.eu/page-49e139d4.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-19 07:46:18 Times Seen166 Hash 6ccaefefec5a957c2d80fe5f97c8098b bf1eda880c524c21f78ff0424592f81fba4214ab 65659681146410adb22da9de126db5da27eb6032631d55c1c2bedebabd8e8f5f Loading...

	konkur-farbi-ua.eu/pageSignQR-55e34e76.js	5.6 kB	2023-12-10	2024-05-19
Pretty URL konkur-farbi-ua.eu/pageSignQR-55e34e76.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-19 07:46:18 Times Seen119 Hash 908a426b097ed038bf16088bb70c4d0a 51b080072f896e324ba8a2229e9303364354326d 96e7ecf00e95236690fe564fcef37e9a3f856d7731085dd856eec61a50720216 Loading...

	konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js	66 kB	2023-12-10	2024-05-19
Pretty URL konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js IP 104.21.39.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-10 02:45:21 Last Seen2024-05-19 07:46:18 Times Seen136 Hash 9bc1dca9d012e6cc87fc199909f9667b b340b1309516f10074080f5fcec5593101022612 d7d3232bf40cc555ad219d6b688afe4b2427e7fa00ae719e5f7fa4152dc0857f Loading...

HTTP Transactions (30)

	URL	IP	Response	Size
	konkur-farbi-ua.eu/asset/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2	104.21.39.27	200 OK	11 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Web Open Font Format (Version 2), TrueType, length 11016, version 1.0 Size 11 kB (11016 bytes) Hash 15fa3062f8929bd3b05fdca5259db412 6ff06a34f68ad0324ddec1bbe4d453c959178b36 5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479 HTTP Headers GET /asset/fonts/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-91acc02b.css Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: font/woff2 content-length: 11016 last-modified: Thu, 07 Dec 2023 12:00:17 GMT etag: "2b08-60bea3607d640" cache-control: max-age=14400 cf-cache-status: REVALIDATED accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uEMDvo2Q%2FmQENoFaa81%2FpLCKRmxKPT0XVcUWrHgdYmOc1N%2F3xyaR%2F5l%2FicoM7zbaxSh1Vi7u%2FIzGFRzHXU%2BYEDLmeS9DuHKoDRNRywKGrnsGG7MxBv3PPpZ8ogqSXobObLAXewQ%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 880445616e5b0b59-OSL alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/mtproto.worker-62192466.js	104.21.39.27		229 kB
URL konkur-farbi-ua.eu/mtproto.worker-62192466.js IP 104.21.39.27:0 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type data Size 229 kB (229295 bytes) Hash 9172da6c8eb1281160e566ddf6b3ffed e41586ae0e834b26f50a085a68e9a56c4a3562e5 a4cc553ba69a7b5afa5aa9031a7be3b2aa0cdfa50bd11c657ec8864aa8d9f831 HTTP Headers `GET /mtproto.worker-62192466.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin-uah/auth Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: sharedworker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: application/javascript expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache vary: Accept-Encoding cf-cache-status: BYPASS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m4Lnk8MgXQ8L4WXPt4TrROAX6kLcIbuhs5eUr%2Fkuba9qZlIVH1NSNJSgGdIcxEW9xmFRKNuaMc9FkMBmSbmsCcFPSm5ai3S8d4Z4p%2FnYZnQaubzzfdqhH2RYlneKdvSPwvC5A1E%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044561ae990b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js	104.21.39.27	200 OK	3.9 kB
URL GET HTTP/3 konkur-farbi-ua.eu/textToSvgURL-c6ebb454.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (306) Size 3.9 kB (3919 bytes) Hash db363d8053c3aa976b2e2162860d6932 fef1a8b065868caacf63184d97c10aaf10ec6a28 62ba5e078c4aaa3ff5c8c24cb8216de89afaa7dd10bfd364a0396913bbd34663 HTTP Headers `GET /textToSvgURL-c6ebb454.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin-uah/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:01 GMT etag: W/"165-60bea75733040-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y%2BqYXEYkY%2BSa0PKeZkExNnWsgLdN2ndEJsz5qeTMNgvXekzzy%2FRl6l3YR8pxaTL%2FzpE5H%2Folr8JUKPamueAsWq0YZ7GYaNfiJqQF%2FXjQOaE0DFyTXO3h6ElmrbLDMR99JPGBZLY%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044564f9b80b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/img/favicon-16x16.png?v=jw3mK7G9Ry	104.21.39.27	200 OK	1.0 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/img/favicon-16x16.png?v=jw3mK7G9Ry IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced Size 1.0 kB (1012 bytes) Hash e3ce05eb00b3215df220efaf0fd06e21 d1533966f79dc2984c34317035f31cf3c91298c9 0d67b7e8ea46e3c959329a0e79a8c8b236187f452edc7049524245e4aa6bee21 HTTP Headers GET /asset/img/favicon-16x16.png?v=jw3mK7G9Ry HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin-uah/auth Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: image/png content-length: 1012 last-modified: Thu, 07 Dec 2023 12:00:12 GMT etag: "3f4-60bea35bb8b00" cache-control: max-age=14400 cf-cache-status: REVALIDATED accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ix0jEfp%2BBVnpbLbbdhOCMk03Inse2chHyGHLeFxLIQkLvxQGcIrlLF%2BXqWooDuyq%2BvxFXkJJ2N%2B6Xfsh0uKonfFQFRK85Rh9R4QzlqF8FFdnOe2yfrt6tZvcBeknJMuV0zAL5XU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8804456499730b59-OSL alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/img/android-chrome-192x192.png?v=jw3mK7G9Ry	104.21.39.27	200 OK	9.0 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/img/android-chrome-192x192.png?v=jw3mK7G9Ry IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Size 9.0 kB (9024 bytes) Hash 87fecdadac0beb95f9b7c87b3b3236f0 822f92446c0033a32462aa21208efaef1f0d8c3c 25aa724658da8e71f5cc7c35ccbb43075866af5bed964edb09979caace667b0b HTTP Headers GET /asset/img/android-chrome-192x192.png?v=jw3mK7G9Ry HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin-uah/auth Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: image/png content-length: 9024 last-modified: Thu, 07 Dec 2023 12:00:13 GMT etag: "2340-60bea35cacd40" cache-control: max-age=14400 cf-cache-status: REVALIDATED accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1v2iSCS8unuSn%2F1Sgp%2BD3RQbXBz4lwWwQ8T1KmB0VjmJckFoQNmDFExTVPEsyUHR9hgCHiKi1UuocPfAX2Gt5ll%2FmtxqqRTtaW%2BzUnSxTUkp1ZJ17Dp0SBTYxafJSBqtcs1NEHs%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8804456499720b59-OSL alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/button-1a8a4b7d.js	104.21.39.27	200 OK	3.8 kB
URL GET HTTP/3 konkur-farbi-ua.eu/button-1a8a4b7d.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (8465) Size 3.8 kB (3776 bytes) Hash db2fcb1faf0ad3210f38a9dbeffebfbf a248f132d7662f64581bbd4a05756283345b6261 c8fff421d8b23fd9ddbf046f1c63d411ab15ee745fadc28bf1851d156514fae8 HTTP Headers `GET /button-1a8a4b7d.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin-uah/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:56 GMT etag: W/"213e-60bea7526e500-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2NIKwfAx2Bk1zNZkPcI9EZaFOxCcG63dCwa785lApMbtHYujTL2bltjYns9xWSETLf3O8Lr1Z%2FomGwMdC8g4bsdoMLVDwZcLVhCir02J63iUzVw8Lkk5n60Ly28CE7efAWpvG%2BE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044564f9b20b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	kws2.web.telegram.org/apiws	149.154.167.99		0 B
URL kws2.web.telegram.org/apiws IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /apiws HTTP/1.1 Host: kws2.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://konkur-farbi-ua.eu Sec-WebSocket-Protocol: binary Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: LrjHbGmUc3KZdI0Y1YdY5g== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx/1.18.0 Date: Tue, 07 May 2024 21:23:26 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: J3hhVRzNeO2PNa/Cg1XO/oGVaxI= Sec-WebSocket-Protocol: binary`

	konkur-farbi-ua.eu/asset/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2	104.21.39.27	200 OK	11 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Web Open Font Format (Version 2), TrueType, length 11056, version 1.0 Size 11 kB (11056 bytes) Hash 07db243db21ed0a6b4ff05ff429686b7 5d62925fdd7ed8e80f206d095ed093994f13d276 ce897833ac6e362df7c91ac8223fe511c6defcf33964928a81004600a2dd4c2e HTTP Headers GET /asset/fonts/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-91acc02b.css Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 07 May 2024 21:23:26 GMT content-type: font/woff2 content-length: 11056 last-modified: Thu, 07 Dec 2023 12:00:17 GMT etag: "2b30-60bea3607d640" cache-control: max-age=14400 cf-cache-status: REVALIDATED accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ty98A4%2B%2F24dWPm4VQ6ICTOh8LxyeldxwMB79Pm2Qso4d1U5kqmUoNi2UQC0cgLXesgmFfRP9Xt2yQFU45EhhwT%2BLirLqOAsBpsC8PJL0pnxVkdXtMhaequf6Vl8%2FRdcjBV8P7tc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8804456a4f1e0b59-OSL alt-svc: h3=":443"; ma=86400

	venus.web.telegram.org/apiw1	149.154.167.99		169 B
URL venus.web.telegram.org/apiw1 IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type HTML document, ASCII text, with CRLF line terminators Size 169 B (169 bytes) Hash c2a982d42f89274763eef2a44fe01030 86e6d53f6478cdd0c05611093d9c55a953454af7 d8b55de3a4d5331f3b450a86bb907afe17dc964adca30f39d101a3d55a4a9d6a HTTP Headers `POST /apiw1 HTTP/1.1 Host: venus.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ Content-Length: 0 Origin: https://konkur-farbi-ua.eu Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 404 Not Found server: nginx/1.18.0 date: Tue, 07 May 2024 21:23:26 GMT content-type: text/html content-length: 169 pragma: no-cache cache-control: no-store access-control-allow-origin: * access-control-allow-methods: POST, OPTIONS access-control-allow-headers: origin, content-type access-control-max-age: 1728000 X-Firefox-Spdy: h2`

	kws2.web.telegram.org/apiws	149.154.167.99		0 B
URL kws2.web.telegram.org/apiws IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /apiws HTTP/1.1 Host: kws2.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://konkur-farbi-ua.eu Sec-WebSocket-Protocol: binary Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: ouoGPBAbb+AAizxeeFTL9w== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx/1.18.0 Date: Tue, 07 May 2024 21:23:26 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: WFtp71qvxqpoaStIWkLubtSU3WY= Sec-WebSocket-Protocol: binary`

	kws2.web.telegram.org/apiws	149.154.167.99		0 B
URL kws2.web.telegram.org/apiws IP 149.154.167.99:0 ASN #62041 Telegram Messenger Inc File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /apiws HTTP/1.1 Host: kws2.web.telegram.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://konkur-farbi-ua.eu Sec-WebSocket-Protocol: binary Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 6UC9SHiTu2uCy7FZZqKtxg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx/1.18.0 Date: Tue, 07 May 2024 21:23:26 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: Uq+zU5nY4Q93xO+FuhGQOcCnkCc= Sec-WebSocket-Protocol: binary`

	konkur-farbi-ua.eu/page-49e139d4.js	104.21.39.27	200 OK	11 kB
URL GET HTTP/3 konkur-farbi-ua.eu/page-49e139d4.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (10193) Size 11 kB (11384 bytes) Hash 6ccaefefec5a957c2d80fe5f97c8098b bf1eda880c524c21f78ff0424592f81fba4214ab 65659681146410adb22da9de126db5da27eb6032631d55c1c2bedebabd8e8f5f HTTP Headers `GET /page-49e139d4.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin-uah/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:59 GMT etag: W/"27fc-60bea7554abc0-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RoCQZY0s%2FodEScbW%2B7fDwmp%2BXtzSglMYJ2fJMUhXP6c1QN2%2BGolq7ERVpgT5qBZ22x8TC1V1DoX9d7wTOUYAHff7pzbvFu%2BbgJqeoXAE8DRTezyyrLeKSjhbqYxFWLt3OeVXq0g%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044564f9af0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/page-49e139d4.js	104.21.39.27	200 OK	14 kB
URL GET HTTP/3 konkur-farbi-ua.eu/page-49e139d4.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (10193) Size 14 kB (14539 bytes) Hash 6ccaefefec5a957c2d80fe5f97c8098b bf1eda880c524c21f78ff0424592f81fba4214ab 65659681146410adb22da9de126db5da27eb6032631d55c1c2bedebabd8e8f5f HTTP Headers `GET /page-49e139d4.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/pageSignQR-55e34e76.js Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:26 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:59 GMT etag: W/"27fc-60bea7554abc0-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: HIT age: 1 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qflPeU4FsCUGBkgae6Qb53iHdkX8sgLFtkh9oY5NBUoKxjffY%2BCNLiiaiQpQzS7oF1F73Zhhy2%2FUUgjSzt3vd2rKg1ik%2Fkh8QWt6zLrls38DaKLXj%2F7jTn29NHZt%2BeFDUeTUc%2F0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 880445678c6b0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/jquery.min.js	104.21.39.27	200 OK	42 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/jquery.min.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 42 kB (42337 bytes) Hash 1db92b83313d6fbaf76fd364688c8e6c 90c3cf0d1af00de7424a6b4b8f7f41b1200d3964 3ca4587ad13382ba7ede987f96682cc928589f037b1403fb43bd8ffc430809da HTTP Headers `GET /asset/jquery.min.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin-uah/auth Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:24 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:10:36 GMT etag: W/"16182-60bea5aed0700-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ayqzD0jtTC63MIJkx0QbaYXxMXU5s%2BgNb3nLktazoAMkN1dfJpNTallbN6NHljBzo36xyLAkx4fZLo%2BDjxkmxJiIjq0x2TX2PdBjVK21VO8aUZFE%2BTWiDvttAoiYHHDpofbtx70%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8804455a7e400b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js	104.21.39.27	200 OK	66 kB
URL GET HTTP/3 konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 66 kB (66217 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /qr-code-styling-8a04fb73.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin-uah/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:26 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"102a9-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nly4jMW5%2B4MzQKefo92h5ba6scjM21C2uRR7S0NVAXOxtDT6MqpBcL616AIfFlNMnz1mdVAi6In%2Fsz1vKlc6KTUkrsuaUww%2F7jjXDco%2BhDGWUMu26Nl%2B89YNiVN9%2FpKBDdiMyuU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044567cca40b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/countries-5301fc59.js	104.21.39.27	200 OK	24 kB
URL GET HTTP/3 konkur-farbi-ua.eu/countries-5301fc59.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 24 kB (24097 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /countries-5301fc59.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-cfdc21d6.js Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:56 GMT etag: W/"5e21-60bea7526e500-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Brhya8dY1SnNbHYRmTv%2BrgxL6GwP7yxZFq47avfqFfXCcYdddervhownnCrbwjhOLM8tQ6%2F3ebiUgjsdN78riqUseE8s28md7Z9dcmQP5nZY7kdNT3wp264sZrB5Y84kJCXH3Hc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044561cecf0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/langSign-66e8939d.js	104.21.39.27	200 OK	1.6 kB
URL GET HTTP/3 konkur-farbi-ua.eu/langSign-66e8939d.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (1751), with no line terminators Size 1.6 kB (1646 bytes) Hash 0d55451ee39b2aa034b815696a9b13ad 6144047d9652181c02b1e107703a9851ba5838ae 6efafb0c9358c1754c8d06ee1049bae36ff61108eb534f6c79a94d8b62f5b8f2 HTTP Headers `GET /langSign-66e8939d.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-cfdc21d6.js Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:58 GMT etag: W/"66e-60bea75456980-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rJ%2B4UAcQsyLYskgLicK0n20HTpBHtpLpoh%2BDS2eEkejFajv5ZECw%2BTLP44WItygBu7XaEWSigm8ZuvyQ0kBS7YLVOaAM1yH%2BMy%2FopVVth1gRPPzwq0ElOhdNgVe3OUX32mAg%2FD4%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044561cecb0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/lang-9ff1b05a.js	104.21.39.27	200 OK	102 kB
URL GET HTTP/3 konkur-farbi-ua.eu/lang-9ff1b05a.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 102 kB (102332 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /lang-9ff1b05a.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-cfdc21d6.js Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:58 GMT etag: W/"18fbc-60bea75456980-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hFLNhFROnIhL2tWoP%2F2r71afE5ICijcEe8WbkrL0kbRVYMb6B1ZSG423AIUcSMKP2kdC7t2JL85BVTWAVUh0W2obk9Ppjpc%2FBZqrRYUBay0F%2BQ%2FOsKdx%2Bx4b1V1t2U60nmXm6lA%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044561cec70b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/putPreloader-ae29ef38.js	104.21.39.27	200 OK	699 B
URL GET HTTP/3 konkur-farbi-ua.eu/putPreloader-ae29ef38.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (736), with no line terminators Size 699 B (699 bytes) Hash cf9e4f7c2e108253b09f1f704d067045 298d923ef22804845e9e5b4d8771b4ca5e946365 fbf0df8e2e3349d955976a5f574da93bd6183fd4d6bfbdf66cd89007a7cb2aa3 HTTP Headers `GET /putPreloader-ae29ef38.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/pageSignQR-55e34e76.js Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:26 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"2bb-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: HIT age: 1 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tVVHFwFDQZZ0wyW0qqhEXFtrFZy%2BsZzQhREGUdaQSiELCLE85J9yzzrC4c%2BkuR3N4bS8gN4y4ajypQD%2B1%2Fhaa8QQraWMWgyVNGBspbxIg3A99b5japJASZnIdPdbCYjR%2BTzj3mU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 880445678c6f0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js	104.21.39.27	200 OK	290 B
URL GET HTTP/3 konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (302), with no line terminators Size 290 B (290 bytes) Hash 3fb939d07fab69f5a0ad5db75c79a87f 2fcb8f40614f577982a15551a4d00b06deeea3fd 17f7485908469fb755abc429df99392b299c396fa52b327f68ef0c31a1bb81e6 HTTP Headers `GET /_commonjsHelpers-725317a4.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:26 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:55 GMT etag: W/"122-60bea7517a2c0-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: HIT age: 0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uhIO6d%2Bngjn1NkpuucVLczEFzF4LiDHi4R4aBrSzOI3%2FKqVmPbKZpeIaP9328dzQWQEpKzluFOkzKt5ZmlzFSNiPvFRqZX6%2Bsu4s9ybGMFzdea5qIFPv2CBaLVACG7HPmq0GXhU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8804456a2ef60b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/pageSignQR-55e34e76.js	104.21.39.27	200 OK	5.6 kB
URL GET HTTP/3 konkur-farbi-ua.eu/pageSignQR-55e34e76.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (5762), with no line terminators Size 5.6 kB (5585 bytes) Hash f83ba728a3431f8dc5ad3630071aebbb 7b4322b87b21a92f98fd468edd5e86a675ac492e fdeef2c5c3478ee3d6d9f22fe492369bae1137e804e8048219633bb504d2633c HTTP Headers `GET /pageSignQR-55e34e76.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin-uah/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"15d1-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U6PIgKxLPADbLiE3DWasJ98OlpXe8848hkg9reNDBS4ZGjR1is6hUZXzz1Jz9qc%2FvRhvEk49kmKU%2BA6vUe6Wh%2F%2Ba%2FATi09pp0wdSDA3y1izvosNZl0sHQLhoMTIILv8jGuVwdOQ%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044564f9ad0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/ditin-uah/auth	104.21.39.27	200 OK	14 kB
URL User Request GET HTTP/2 konkur-farbi-ua.eu/ditin-uah/auth IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type HTML document, ASCII text, with very long lines (1757) Size 14 kB (13645 bytes) Hash d81cb17c6ca692cce341c509d5ec57cc 39fee452e599617961a264e2c53349afe08846cb ca911752ea5025c6a56d55637663ab5821d42ec5baf6be205ffa9a62025252ec HTTP Headers `GET /ditin-uah/auth HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 07 May 2024 21:23:23 GMT content-type: text/html; charset=UTF-8 set-cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr; path=/ expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dd4gD9UAsMGHNfKdZXF2BYOYCfHLNCsmLr2rGGUA3R1wWyNWzo076XWQGgmL6ypE%2Bqdz5kEA0%2BVeIGNXRQ2sI7REckolgf5QyiemzWAMa7HnquuOwlGyePWuj0OSZxIxIoSkCvM%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044557992d56c5-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	konkur-farbi-ua.eu/index-cfdc21d6.js	104.21.39.27	200 OK	124 kB
URL GET HTTP/3 konkur-farbi-ua.eu/index-cfdc21d6.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 124 kB (123889 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /index-cfdc21d6.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin-uah/auth Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:24 GMT content-type: application/javascript expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache vary: Accept-Encoding cf-cache-status: BYPASS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kIfRHqpMbhyisd4XPHnPumFHtJZBruV2KlnFJ3sbxLBttUU7IGVQOZD00EzukFcxGjs2tmikWCqi07nXpk8lEfEk3p9G56tIe29LV2pmsEDwW6rNxjVPbUOD2FZaBBXAmWCDIbk%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8804455a7e3d0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/putPreloader-ae29ef38.js	104.21.39.27	200 OK	699 B
URL GET HTTP/3 konkur-farbi-ua.eu/putPreloader-ae29ef38.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (736), with no line terminators Size 699 B (699 bytes) Hash cf9e4f7c2e108253b09f1f704d067045 298d923ef22804845e9e5b4d8771b4ca5e946365 fbf0df8e2e3349d955976a5f574da93bd6183fd4d6bfbdf66cd89007a7cb2aa3 HTTP Headers `GET /putPreloader-ae29ef38.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin-uah/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"2bb-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sfjnU7z87ZlGphN9jrRGBk9D4R9qKPo6ZhHVQEX7y1Vx%2FsuC18z0h0iNf44A9oXyvgpGSaoGK%2BkTnM%2BhkpF8CgCc%2Fc5jTGB9dxLKeanbTqP43019%2FnCtzSww45xVIHJSBGgSzBU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044564f9b30b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/pageSignQR-55e34e76.js	104.21.39.27	200 OK	5.6 kB
URL GET HTTP/3 konkur-farbi-ua.eu/pageSignQR-55e34e76.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (5762), with no line terminators Size 5.6 kB (5585 bytes) Hash f83ba728a3431f8dc5ad3630071aebbb 7b4322b87b21a92f98fd468edd5e86a675ac492e fdeef2c5c3478ee3d6d9f22fe492369bae1137e804e8048219633bb504d2633c HTTP Headers `GET /pageSignQR-55e34e76.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/index-cfdc21d6.js Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"15d1-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TCuKu%2FlW35RqanjgktOhqppHQZvYWJ%2BCWYIQfOBuctaDOhm%2F47zicqaurkwCVwRV5OcboMV3PFWFKqQVUb0UoMllVeyDNRrHMVJdA%2FlZESTI58WoCUsAI5Z%2Bg91KsTTdKvzu44g%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8804456509cd0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js	104.21.39.27	200 OK	66 kB
URL GET HTTP/3 konkur-farbi-ua.eu/qr-code-styling-8a04fb73.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 66 kB (66217 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /qr-code-styling-8a04fb73.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/pageSignQR-55e34e76.js Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:26 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:18:00 GMT etag: W/"102a9-60bea7563ee00-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D3v1Bi8d5AwBp1WWhKwgbBPPRwi%2BsVyGyCjrO6Zh%2FIEmFyUOjRt5oyZalSSxIQrxNSf7s0mdCLkkcx6%2B7VGUjjxALk1KQYJPDNRzknHJvgFwqQuVLd%2BfcrB97vuEz%2FP8frF%2F3T8%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044567dcad0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/index-91acc02b.css	104.21.39.27	200 OK	425 kB
URL GET HTTP/3 konkur-farbi-ua.eu/index-91acc02b.css IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type Size 425 kB (425367 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /index-91acc02b.css HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://konkur-farbi-ua.eu/ditin-uah/auth Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:24 GMT content-type: text/css last-modified: Thu, 07 Dec 2023 12:17:58 GMT etag: W/"67d97-60bea75456980-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=73cixF8fL1Bv%2FfWbnoXaYF%2BJwSCrk2odykaPBgMsMY7ujIaWh2YfR1VXrFyTSCXwscQ1D1GQnDKcdpEVxT8hkGp407Hvm2UE3wISQ3CqVcNChKlYbNV6X2HZqBy%2BrwfhmgtS6Yw%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8804455a7e420b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/crypto.worker-b2b2021e.js	104.21.39.27	200 OK	69 kB
URL GET HTTP/3 konkur-farbi-ua.eu/crypto.worker-b2b2021e.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 69 kB (68845 bytes) Hash 061a201747d764fcd611ff886b2b27ef d0fbcab1a5c52c5c38f46b2ed048cf8637716686 58fafa3a075d804360271b6b081e9c3c46ba344659ef3cb10d5561afc1147448 HTTP Headers `GET /crypto.worker-b2b2021e.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin-uah/auth DNT: 1 Connection: keep-alive Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:25 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:57 GMT etag: W/"10ced-60bea75362740-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i2faSlC6j%2FaPjbdxOwpxEMOjgSYwtekZ5nh4vqxFoAOSPmgf%2BZUPi3%2FLry95FacnFbAbAWUFB1bUz9hpnX3joo5fCVi5AnL%2BMLkgGKaFp1%2FbcUxeUce%2FcQlc2aRv6nTPdDnR93Y%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 880445617e710b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js	104.21.39.27	200 OK	290 B
URL GET HTTP/3 konkur-farbi-ua.eu/_commonjsHelpers-725317a4.js IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type ASCII text, with very long lines (302), with no line terminators Size 290 B (290 bytes) Hash 3fb939d07fab69f5a0ad5db75c79a87f 2fcb8f40614f577982a15551a4d00b06deeea3fd 17f7485908469fb755abc429df99392b299c396fa52b327f68ef0c31a1bb81e6 HTTP Headers `GET /_commonjsHelpers-725317a4.js HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin-uah/auth DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:26 GMT content-type: text/javascript last-modified: Thu, 07 Dec 2023 12:17:55 GMT etag: W/"122-60bea7517a2c0-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fFMnGDDhAp%2BVQDv%2B5bOfc5IojKBXaavbAelTPgCFf4i%2BgcBxX%2BIKQGNuenAXofg9yfsnFsZwUixA3a2IhWOQAc0UaQmjODnoJwL41PYnm%2By90l4lyIO0dgFr1xhbxvWhGi%2FxbjM%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 88044567cca70b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	konkur-farbi-ua.eu/asset/img/logo_padded.svg	104.21.39.27	200 OK	1.1 kB
URL GET HTTP/3 konkur-farbi-ua.eu/asset/img/logo_padded.svg IP 104.21.39.27:443 ASN #13335 CLOUDFLARENET Requested by https://konkur-farbi-ua.eu/ditin-uah/auth Certificate IssuerGoogle Trust Services LLC Subjectkonkur-farbi-ua.eu Fingerprint52:2B:94:73:FC:7A:78:AD:B3:3C:FE:D8:79:C2:4A:25:E6:A4:65:9F ValidityMon, 06 May 2024 06:36:04 GMT - Sun, 04 Aug 2024 06:36:03 GMT File type SVG Scalable Vector Graphics image Size 1.1 kB (1069 bytes) Hash 4c0b48654a4881c325148a5e00964160 d7d21756c9dd4c1bf4d97087811745aad60506a0 7583a3643a9480ab4d81dd46b700cf3a38ebdd94af1a6059d2b6a3ecff8a65c5 HTTP Headers `GET /asset/img/logo_padded.svg HTTP/1.1 Host: konkur-farbi-ua.eu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://konkur-farbi-ua.eu/ditin-uah/auth DNT: 1 Connection: keep-alive Cookie: PHPSESSID=qfabobj30nvjqad01ik3399ghr Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 07 May 2024 21:23:28 GMT content-type: image/svg+xml last-modified: Thu, 07 Dec 2023 12:00:14 GMT etag: W/"42d-60bea35da0f80" cache-control: max-age=14400 cf-cache-status: REVALIDATED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jwWmVHnZsCkiruRvnORhve0P%2BXJOYR6R2Nw6McJnHYgf87SR1m%2BWG0Hp%2B1m29HVub5LMNxiO4Wd%2FTfkX%2BnytTSVzbpTqWbHZ8DtG8Yue8bcEVUd4gB%2BlHdBHMFOJVp5zziWWUBc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 880445770a4e0b59-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML