Report - tukix.net/qp9sKz1A43Pt/news/709bc9cfd76c9f62ae5a0fda029e80d3/Y2hhZC5ncm9zc0BtZWRsb2dpeC5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is

Report Overview

Submitted URL
tukix.net/qp9sKz1A43Pt/news/709bc9cfd76c9f62ae5a0fda029e80d3/Y2hhZC5ncm9zc0BtZWRsb2dpeC5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is_retargeting=true
IP
183.181.83.141
ASN
#131965 Xserver Inc.
Submitted
2024-04-16 10:37:22
Access
public
Website Title
Redirecting...
Final URL
k3ed.icu/main/
Tags
suspicious
urlquery detections
Suspicious - Anti-debugging code

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-16	8.5 kB	778 kB	104.17.3.184
tukix.net	unknown	2008-09-09	2015-06-19	2024-04-16	673 B	245 B	183.181.83.141
k3ed.icu	unknown	2024-04-12	2024-04-12	2024-04-16	1.5 kB	4.8 kB	194.5.212.157

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (49)

	URL	Size	First Seen	Last Seen
	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal	3.2 kB	2024-04-16	2024-04-16
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 12:37:22 Last Seen2024-04-16 12:37:22 Times Seen1 Hash 708295695462bc28b374c1268c1d7247 2d5394445bc83c9fe81234c15f540a2447ddebda 8e0acf49ec66626c16d969125ad9cf2f1969373be53d0742dbe93ad04f59e9f3 Loading...

	k3ed.icu/main/	0 B	2023-03-07	2024-05-26
Pretty URL k3ed.icu/main/ IP 194.5.212.157 ASN #9009 M247 Europe SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-26 18:07:43 Times Seen38228772 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=875389ef29d6569b	425 kB	2024-04-16	2024-04-16
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=875389ef29d6569b IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 12:37:22 Last Seen2024-04-16 12:37:24 Times Seen2 Hash 86db3dcfc18af3b4175020dc1e73bd58 1ce44e7b2d0683f5e357b7582a832c0c1ac92a3b 357447e961d7092d8998714f2e01ab49662ca15b1bc2dca7e9119d9ba83bee6a Loading...

	unknown	790 B	2024-02-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-07 04:49:48 Last Seen2024-04-19 15:49:11 Times Seen119 Hash a706fbb0bc40bf8c6f1abc82d05efb3b 8b77b60a079fd7bc231b089668ce9a36974a30a7 202d6608974ba82ed57a51038ca52d1697eead72d8be0729715002d6b6f9cdd6 Loading...

	k3ed.icu/main/	0 B	2023-03-07	2024-05-26
Pretty URL k3ed.icu/main/ IP 194.5.212.157 ASN #9009 M247 Europe SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-26 18:07:43 Times Seen38228772 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	k3ed.icu/main/	0 B	2023-03-07	2024-05-26
Pretty URL k3ed.icu/main/ IP 194.5.212.157 ASN #9009 M247 Europe SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-26 18:07:43 Times Seen38228772 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	41 kB	2024-04-04	2024-04-17
Pretty URL challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 12:45:54 Last Seen2024-04-17 16:04:31 Times Seen3430 Hash d1048a66fc11ea28c3cb1488fac82c62 f055707cf91f637ec19bf5e65bf378857e798469 8f1ad19042c2f9ee60c2de21f37f788af7b1ecccda8eec1d877f9b9c0e994370 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ecc4f9980dcf8e951aa84f6442046b93	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:22 Last Seen2024-04-16 12:37:22 Times Seen1 Hash ecc4f9980dcf8e951aa84f6442046b93 f594c66830ab8cda0646dd79f231a6470c310e27 b965fa52e49dd7d41395f32e4d63dbed77753a0b62bcb29cb533251fc9f264b7 Loading...

	#2 Eval - 8f0e9ab8bf563dedee40490ca39c83d9	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:22 Last Seen2024-04-16 12:37:22 Times Seen1 Hash 8f0e9ab8bf563dedee40490ca39c83d9 c43b0d7cb64736c8097b72a381075e76005edc29 403f93904e3a8e3bce1b933a38823357395f61642f8263f8e64618c3f20c224f Loading...

	#3 Eval - fc3f5e1a0a4ce864925e957bb5ece60a	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash fc3f5e1a0a4ce864925e957bb5ece60a 05b9a76db03062aa1f1942dc5b6012dda0dff32c 3a381d6cc13fccae427ba7c7c00be51616617c1324bb98b81f5787462bd87cde Loading...

	#4 Eval - 6588e0d72b1560c657f4b815babbdeb1	659 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 6588e0d72b1560c657f4b815babbdeb1 207e758debe03c27c0408c533903b411ede10649 cbf95c4fd7742d3fdcbe5838c5ef564a980d6388a14e4f62be919c896bd389d6 Loading...

	#5 Eval - 98758ee8bf882c477b4ed06383ddb54b	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 98758ee8bf882c477b4ed06383ddb54b 3b18cd7197862d493e326db568c3fc050a8ced9d 6a5ba714a521422313328c73b003cc15248b62cfe7f63d6fd620c0373dc11422 Loading...

	#6 Eval - c6045e1191d8f6564d7de3b50de7f162	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash c6045e1191d8f6564d7de3b50de7f162 9e0ff771c146b9eb483787c355c88a4766add06e d3fbd1d5e6d96ee8f4fa420db11af9b6fbfb001747abebc35cd1595d3cfb20d5 Loading...

	#7 Eval - 3dcf34602b3c55851ef2bc3f44713f71	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 3dcf34602b3c55851ef2bc3f44713f71 9a38608387d5eeb543aa28863f586f3b8dadbb2d 2669fab3efe1a3de7be42ccdb5a191ec3740282adcbf7f0e620036b0be5c76ca Loading...

	#8 Eval - 25de9199c18bb2083313b439d5f26122	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 25de9199c18bb2083313b439d5f26122 49721269f9af30bf8a90fa7efb5963534e53c316 fad4d0595d6cd97e3efdc7e3e9061125033adc2fc7a6dfffd3ef2314de0308e3 Loading...

	#9 Eval - d0215c934bc6d30c63ce8db52be390b6	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash d0215c934bc6d30c63ce8db52be390b6 e727e14d445a4123e3109cf7336a7452a3229b7d f4b1055bc921eb8e814c731b91d68183c0e356b860f9f7116a1865b380052093 Loading...

	#10 Eval - 9f79e407637f8291f2e0b87870b4da5e	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 9f79e407637f8291f2e0b87870b4da5e 08ce1e3708b769aecc8ab710568c3e77e9704b48 838d6b78011b2eea40bde334ad94ad0924ca0e235530dec8df37e421449d61ef Loading...

	#11 Eval - b9338b4009325bff395f47558e9f66ba	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash b9338b4009325bff395f47558e9f66ba 439abbaa0cd45de2816623a84efa93b1de8d0ea7 fc4d4918e78546f03cbbe263c0f8fcb30d0954eabaaa0f559a12baa3ca6b4409 Loading...

	#12 Eval - 202225588677cd209a54b757c8825c59	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 202225588677cd209a54b757c8825c59 cbe64efde850c4735c19a7c5c64dcffc5ed31ef1 15059649b947d134c571e39760d300e0f4ed78199ec9f2e18c58092ca0ed6711 Loading...

	#13 Eval - 5d6d4ca21a6bf660b187cd6439fb9b65	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 5d6d4ca21a6bf660b187cd6439fb9b65 489f47c3655ce97828aa9d057a35282bf1cb4e43 4e93f2fae87eec1465056f1f529d9b81472faa044495c6569fdaa1116150f89e Loading...

	#14 Eval - 4b7391fb680c05c1d405dd912990cdfc	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 4b7391fb680c05c1d405dd912990cdfc ca0c87165f57819a8851067afe2dab694dcf1331 deb70a6433a34f6bd6145f64a7863f3fb587d8252a5660bf879a2c2794f4ce22 Loading...

	#15 Eval - 6c5283bb5de284c5edbf54f80c20470e	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 6c5283bb5de284c5edbf54f80c20470e 102dc4ee0961832f4f144188247a3fd15347f953 a3fa96883c2eaceca3a40d68c4a1181307efdd4c192d1438948aced09d20f7fe Loading...

	#16 Eval - d0d605ddd473606994c52be4042acbc1	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash d0d605ddd473606994c52be4042acbc1 e6a5882c459c75708c06288160328a54644fdf62 a7f8ef1f11b6f97d27b5f445ccb50b3638571abc785648c24fe57c7d51cf1d53 Loading...

	#17 Eval - 7a7588a82f6529109f343827062d3ee0	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 7a7588a82f6529109f343827062d3ee0 18e2de6277b5895f06b4de006527eb63cad782f2 6787523f4131e71695050dc7ef9368520d937c740fb12a2d21c66ca959cbf9c5 Loading...

	#18 Eval - e482c0812c952a551f59f625f9a40c1e	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash e482c0812c952a551f59f625f9a40c1e 53244d1a1841b36467f3608fd9bf8b5a9af21d75 1f2f74a01df31c5f3205eec271150725d20ae8f10aea567496ee39dc7ea2b2c4 Loading...

	#19 Eval - ee1136446029a62ba2f9d6b063b590d7	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash ee1136446029a62ba2f9d6b063b590d7 c12a46234f6120dfcbe9b11b035fc303f69dba5d c262bff29ace25cbc085d792136b360dce1920845a301bd1264613e73647f445 Loading...

	#20 Eval - f71dcd91f8c473f45ee8126f42618c8f	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash f71dcd91f8c473f45ee8126f42618c8f 899fe237201a546362b6eea8b2e14b65e2986e61 0df54ada516566eaee4f933ae138ecd89942ea86524d9d903f375c862efe1120 Loading...

	#21 Eval - 86b852c6b96c4ff6e27b8af19e645a9a	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 86b852c6b96c4ff6e27b8af19e645a9a e0aacf85e2851703c85fbcd0926caa93a33dde57 cb280396427922f7dc7738e509bb5941e41e6b72f924bfa3a2dfeee8e34c623b Loading...

	#22 Eval - 18db498de31f550cb255e8395aa0d2fa	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 18db498de31f550cb255e8395aa0d2fa fba54b9203e071ccbc2b025dd87ef77330f5b55d e61a9450c4d7dd14c71020b39895eafb2286ea2e40989404c4b4e5639ac48152 Loading...

	#23 Eval - b48867efb255a9384d867165b3e7ca85	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash b48867efb255a9384d867165b3e7ca85 5efa56a8db2812a488905839a5f1489203b445fe cbd37cc34baddc8ab9513b17b4e8ccca92bcff586b6e466a4236fb4d1f9e8b3f Loading...

	#24 Eval - 419133c9f18777a1493c461ed3d38d10	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 419133c9f18777a1493c461ed3d38d10 a9566c76b2eb8a6a93cec2aeeb8bbf59662eda98 f03fdfb6402f8cb6d5d17fcf7644f990de27aaebed9dd45d6a7404c45d7facfa Loading...

	#25 Eval - 7d84cd6eac9ed75000ea8a89a29ac123	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 7d84cd6eac9ed75000ea8a89a29ac123 fa50436384bc1932adf9c6c9b964ccef0db3d5d0 af7d063374f927542c51a5dd8ccad297ba56b6923a75f771f9f776e6ef747ffd Loading...

	#26 Eval - 3b1fa3b6d17cb7a2f7fe083365571629	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 3b1fa3b6d17cb7a2f7fe083365571629 1eb80f6d037967a6488200c3a8ecf900fd9be99b fac2e3beb012b967631d18d64a6c2ccb4b265eb03c499815bfcf9eb82af6482e Loading...

	#27 Eval - ac6d43b49aec2f87daf340337b6a7882	60 B	2024-04-04	2024-04-17
Pretty Observations First Seen2024-04-04 12:28:09 Last Seen2024-04-17 16:04:31 Times Seen3428 Hash ac6d43b49aec2f87daf340337b6a7882 d3874a31a6b7fe11121edc3ed80fdc8b66f6589a 1af55b64e0b39e0f5f760a8050b284a66fe404ddff945697590f8240798311b2 Loading...

	#28 Eval - babb3c45a2c644a2cb276999d4b5ad36	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash babb3c45a2c644a2cb276999d4b5ad36 c15ce719a2582e903393a9e8a67bb0b40b8d2210 63560bd2be22384aa077bc4c3fed5a2850d6078c38d3867ffb43225bb2851a81 Loading...

	#29 Eval - a3ad82ee61b3ac65a33cf5556b177f7e	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash a3ad82ee61b3ac65a33cf5556b177f7e 4ce47c351c7366ea7cb519d8f424f6fc603a0b56 12ea8f3d95a894b35ae0aef9f6948eca19408ddba9e40ae2ab1f4f635cbded0b Loading...

	#30 Eval - 951e27a5b4686ee4ab04ef7865623c5d	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 951e27a5b4686ee4ab04ef7865623c5d 516c3a5ac5fb9f84a0ff8f91b9ed0cf9bebae3dd adab997220ec7ccc02403f6cb2b141da5854a38b423e43b8ada862c6ba9ce211 Loading...

	#31 Eval - b3f10c6efb8e3ca0e8f04ee167e3d991	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash b3f10c6efb8e3ca0e8f04ee167e3d991 28e37f97eba7558dfd7d9c600040c0cd49383595 4e66ab555a31fd3f679825871878385286a64ee5d6e5e8065d7a846acf4df622 Loading...

	#32 Eval - 954fbdfbef599a24ac569ea48fd88dbb	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 954fbdfbef599a24ac569ea48fd88dbb de3d69cfa602a6348fdcc0a96b0bde5148a32b98 802fec48563e0548a556cdc6a63f01c149286b7d9a4cd6b46ca1f7f8ff6944b2 Loading...

	#33 Eval - a3f2bca89c79be33fd7eef6e4456892c	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash a3f2bca89c79be33fd7eef6e4456892c cf9e37ba07bd41b9afb013c9fdb9ade7eaf8dbf7 630d38fc43a6ed290ad09daaf5013a50c8978577e83bfc49cf601a7402db0720 Loading...

	#34 Eval - 1f7f28c42ffa29314cef5ed003aa504a	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 1f7f28c42ffa29314cef5ed003aa504a 52eb7d4fc773fc52ef7177f901e6a2e625999f13 d964ba0f39cde06c878010aafe6d931f20c2b8f3da8dcff76f8d0766b9193691 Loading...

	#35 Eval - 4bdaf7d1db7ce1ac83772b786c97620f	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 4bdaf7d1db7ce1ac83772b786c97620f 418daa244022b86b597b947ae8fc0008185129ca d4bd357a29926402b0ee19d45454e421eb989074c5054310a41da0df075f16c7 Loading...

	#36 Eval - 0b08cf0b40c92edefebe2e01ff6005a5	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:23 Times Seen1 Hash 0b08cf0b40c92edefebe2e01ff6005a5 7e4bb05f62a0a2e6860338c47afc8fbfae46ecdd 083cbb3c0f50cfe4aa009c6c38dce2e63286806b933ca92746eca888f3a06887 Loading...

	#37 Eval - 6237f4b51f4a6475e9dce3b7402f3187	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:23 Last Seen2024-04-16 12:37:24 Times Seen1 Hash 6237f4b51f4a6475e9dce3b7402f3187 7ae1246d3a07fcb6e938e407d8b1dc93526ed752 54532660386a2a412c43d3aa64bfc7ddb73c7410bb5e76f649a245bad9c2e065 Loading...

	#38 Eval - b2509ec910cc11c6f8c43b1cb8ef382f	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:24 Last Seen2024-04-16 12:37:24 Times Seen1 Hash b2509ec910cc11c6f8c43b1cb8ef382f da5695696c15861e7815873531bfb39ebac9c305 5578ee0e6546631d669c1a5d5b7221eaf4b0e2c46f5641cc6ef7924fcf05c0dc Loading...

	#39 Eval - 5f2f63d7dc224cb206adcb91e7cbeb96	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:24 Last Seen2024-04-16 12:37:24 Times Seen1 Hash 5f2f63d7dc224cb206adcb91e7cbeb96 bb3552a4057dd1fbe843f6e8cc5e92e01ebb3ad8 5a31e9141e20781a17be9c1e6df52979a7d38956407421fb707f64cb0ba76bd9 Loading...

	#40 Eval - 1af82e0d19277d1cc73a187bff91ee90	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:37:24 Last Seen2024-04-16 12:37:24 Times Seen1 Hash 1af82e0d19277d1cc73a187bff91ee90 747ae9e452217682d74b2c3e49466b465672269b d146b7c713302dbbdd3323125564aed0ee957a662aa5f5eb9b23a4c27eea4f69 Loading...

	#41 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-26
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-26 18:04:18 Times Seen355538 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

		Size	First Seen	Last Seen
	#1 Write - 8a0bed010a9fd21a560b90da24f37189	795 B	2023-03-07	2024-05-23
Pretty Observations First Seen2023-03-07 12:57:45 Last Seen2024-05-23 16:20:51 Times Seen3743 Hash 8a0bed010a9fd21a560b90da24f37189 38972fe20940c05edb4139a266dffe2e8e627b1a bc30534b563e7ba1a059a806e101b42c69104b5aacb6afe2293b575e9935dfde Loading...

HTTP Transactions (17)

	URL	IP	Response	Size
	tukix.net/qp9sKz1A43Pt/news/709bc9cfd76c9f62ae5a0fda029e80d3/Y2hhZC5ncm9zc0BtZWRsb2dpeC5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is_retargeting=true	183.181.83.141		0 B
URL tukix.net/qp9sKz1A43Pt/news/709bc9cfd76c9f62ae5a0fda029e80d3/Y2hhZC5ncm9zc0BtZWRsb2dpeC5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is_retargeting=true IP 183.181.83.141:0 ASN #131965 Xserver Inc. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /qp9sKz1A43Pt/news/709bc9cfd76c9f62ae5a0fda029e80d3/Y2hhZC5ncm9zc0BtZWRsb2dpeC5jb20=?pid=TransactionalEmails&af_adset=ConfirmationEmail&af_ad=ConfirmationEmail_ICE_ICE3171_A_PRIME_KEEP1792_A&is_retargeting=true HTTP/1.1 Host: tukix.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Tue, 16 Apr 2024 10:36:57 GMT content-type: text/html; charset=UTF-8 content-length: 0 refresh: 0;url=https://k3ed.icu?e=chad.gross@medlogix.com vary: User-Agent accept-ranges: bytes X-Firefox-Spdy: h2`

	k3ed.icu/?e=chad.gross@medlogix.com	194.5.212.157	302 Found	0 B
URL User Request GET HTTP/1.1 k3ed.icu/?e=chad.gross@medlogix.com IP 194.5.212.157:443 ASN #9009 M247 Europe SRL Certificate IssuerLet's Encrypt Subjectk3ed.icu Fingerprint38:8C:F9:F9:50:CB:2F:02:9C:6D:EE:ED:BE:32:CE:22:DB:AC:19:E4 ValidityFri, 12 Apr 2024 19:50:22 GMT - Thu, 11 Jul 2024 19:50:21 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /?e=chad.gross@medlogix.com HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 302 Found Server: nginx Date: Tue, 16 Apr 2024 10:36:57 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Connection: keep-alive Keep-Alive: timeout=60 X-Powered-By: PHP/5.4.16 Set-Cookie: PHPSESSID=35j0fcope3g1o1o58p3tl45lp1; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache location: main/`

	k3ed.icu/main/	194.5.212.157	200 OK	3.5 kB
URL User Request GET HTTP/1.1 k3ed.icu/main/ IP 194.5.212.157:443 ASN #9009 M247 Europe SRL Certificate IssuerLet's Encrypt Subjectk3ed.icu Fingerprint38:8C:F9:F9:50:CB:2F:02:9C:6D:EE:ED:BE:32:CE:22:DB:AC:19:E4 ValidityFri, 12 Apr 2024 19:50:22 GMT - Thu, 11 Jul 2024 19:50:21 GMT File type JavaScript source, ASCII text, with very long lines (3087) Size 3.5 kB (3537 bytes) Hash dd3c4c37ca4b21917a5ae8438d85d5e3 cabe221e6c88b4af54601488673bf4918e662c31 4c560715c57735806e9b8ba2d01136745d5f5e510e70353a9bc499af04a281f8 HTTP Headers `GET /main/ HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: PHPSESSID=35j0fcope3g1o1o58p3tl45lp1 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Tue, 16 Apr 2024 10:36:57 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/5.4.16 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Encoding: gzip`

	challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	104.17.3.184	302 Found	0 B
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/ Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Tue, 16 Apr 2024 10:36:57 GMT content-length: 0 location: /turnstile/v0/b/bcc5fb0a8815/api.js?onload=onloadTurnstileCallback access-control-allow-origin: * cache-control: max-age=300, public cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 8753898c7a3156a2-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	k3ed.icu/favicon.ico	194.5.212.157	200 OK	135 B
URL GET HTTP/1.1 k3ed.icu/favicon.ico IP 194.5.212.157:443 ASN #9009 M247 Europe SRL Requested by https://k3ed.icu/main/ Certificate IssuerLet's Encrypt Subjectk3ed.icu Fingerprint38:8C:F9:F9:50:CB:2F:02:9C:6D:EE:ED:BE:32:CE:22:DB:AC:19:E4 ValidityFri, 12 Apr 2024 19:50:22 GMT - Thu, 11 Jul 2024 19:50:21 GMT File type HTML document, ASCII text Size 135 B (135 bytes) Hash 83b862bead2d480026254fb2a6eb9969 26bad9e6c1579172b0e3b6bc1c18918164ff6478 fb258cb538ca92d61c8cd4eb08cc23da70c278b8766eaa731ce11e9b2f1da4d4 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: k3ed.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/main/ Cookie: PHPSESSID=35j0fcope3g1o1o58p3tl45lp1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Tue, 16 Apr 2024 10:36:57 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 135 Connection: keep-alive Keep-Alive: timeout=60 Last-Modified: Mon, 15 Apr 2024 19:23:05 GMT ETag: "87-616278cfe1d53" Accept-Ranges: bytes`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1814499862:1713260009:Kg35X5BWxMjkuLLh1OctCXmQCKgv2nZZuaOY5YIHcKg/8753898d2fa1569b/a3df4441a5cbd6b	104.17.3.184		24 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1814499862:1713260009:Kg35X5BWxMjkuLLh1OctCXmQCKgv2nZZuaOY5YIHcKg/8753898d2fa1569b/a3df4441a5cbd6b IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (22520), with no line terminators Size 24 kB (23750 bytes) Hash 764d36ad52f9a3d2d14aec7b7935bfeb d5b2953d5fa335c449aafa587225701749495e14 e47f687c7de390c566f5f291d123ccc350959d541aea57e004d398c666ef36c3 HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1814499862:1713260009:Kg35X5BWxMjkuLLh1OctCXmQCKgv2nZZuaOY5YIHcKg/8753898d2fa1569b/a3df4441a5cbd6b HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: a3df4441a5cbd6b Content-Length: 25142 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Tue, 16 Apr 2024 10:36:59 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: 3mQonHddpB4OzwHb7guN428vaU1S0BVlZAGn0qGo+APPsaopos4Ym0XBXfMNMDnY$MPfOLmYtaUkrAGkHohBofg== server: cloudflare cf-ray: 87538997388a569b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8753898d2fa1569b/1713263818093/Hc6DEEaEuz-w343	104.17.3.184		7.1 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8753898d2fa1569b/1713263818093/Hc6DEEaEuz-w343 IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 89 x 84, 8-bit/color RGB, non-interlaced Size 7.1 kB (7064 bytes) Hash e7596b3f9aabbb55e4bb16f58cc09f0a 02be415c6b03eacce3e2365b1f55a8e1be315642 dce8ae0c38335950b6dcf9cb35590b5d43340b5616dfa7676db83c953c878fe3 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/i/8753898d2fa1569b/1713263818093/Hc6DEEaEuz-w343 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Tue, 16 Apr 2024 10:36:58 GMT content-type: image/png server: cloudflare cf-ray: 875389916f11569b-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D	104.17.3.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 16 Apr 2024 10:37:13 GMT content-type: image/png cache-control: max-age=2629800, public server: cloudflare cf-ray: 875389ef6a32569b-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/875389ef29d6569b/1713263833735/c29ad3a23874776aca5b5be3810ff513da7b43a9a1c14a741e3c62d78cc5ba96/t4yIjUtAs7N5ik2	104.17.3.184	401 Unauthorized	1 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/875389ef29d6569b/1713263833735/c29ad3a23874776aca5b5be3810ff513da7b43a9a1c14a741e3c62d78cc5ba96/t4yIjUtAs7N5ik2 IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type very short file (no magic) Size 1 B (1 bytes) Hash ff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/pat/875389ef29d6569b/1713263833735/c29ad3a23874776aca5b5be3810ff513da7b43a9a1c14a741e3c62d78cc5ba96/t4yIjUtAs7N5ik2 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 401 Unauthorized date: Tue, 16 Apr 2024 10:37:14 GMT content-type: text/plain; charset=UTF-8 www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gwprTojh0d2rKW1vjgQ_1E9p7Q6mhwUp0Hjxi14zFupYAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1QvuFhVj8-HIEpd2829MedEvnrcAHahftJq4lCTdordKDtEpBDr1tC6_z1kq102Fe8SVbT4nRFRPCH_vL6Pwcc16C8jLMMvXraoC-BiyzAX3Yyr6lZj9UCQ7aK3JEr-tlD2wmLRtqyXfZQu9FdZsCMm0LU5LDAKE1uUBeAV-vLkP_1imLjHgbFE2lJH52yahbxiIjoqT_3PjB45ow3W9ciKiR89cUoS7X-sc6I2Lo7P_Y_FH4aGxC4fBDbjKZDO7UYOs3i1xJCHhgRA2dPWk0tZTjV7-jJE-oyRiReJNq7shr4jYws0e9BzlY1UCMa-U_JWdRb9So4JnoGPmfvSU_QIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIMKa06I4dHdqyltb44EP9RPae0OpocFKdB48YteMxbqWABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20 server: cloudflare cf-ray: 875389f2df05569b-OSL alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal	104.17.3.184	200 OK	78 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/ Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (41919) Size 78 kB (77718 bytes) Hash a7d41c5aec881d1f81bbd3ae66c6904f bc81c17862aebd73ed087fae81ed2db258ecfe5c 62d357bbb86a40bd0206b00408067659076ff9d37e33ee216984613430cc774f HTTP Headers GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 16 Apr 2024 10:37:13 GMT content-type: text/html; charset=UTF-8 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self' critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: cross-origin document-policy: js-profiling origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server: cloudflare cf-ray: 875389ef29d6569b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=875389ef29d6569b	104.17.3.184	200 OK	425 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=875389ef29d6569b IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 425 kB (425007 bytes) Hash 86db3dcfc18af3b4175020dc1e73bd58 1ce44e7b2d0683f5e357b7582a832c0c1ac92a3b 357447e961d7092d8998714f2e01ab49662ca15b1bc2dca7e9119d9ba83bee6a HTTP Headers GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=875389ef29d6569b HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 16 Apr 2024 10:37:13 GMT content-type: application/javascript; charset=UTF-8 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 server: cloudflare cf-ray: 875389ef6a36569b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1903161898:1713259909:_z10IlawPmfDqjDagqV8s7OP1YlWsnL5Rht0KZaUduI/875389ef29d6569b/7f523b94eac0f13	104.17.3.184	200 OK	95 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1903161898:1713259909:_z10IlawPmfDqjDagqV8s7OP1YlWsnL5Rht0KZaUduI/875389ef29d6569b/7f523b94eac0f13 IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 95 kB (94712 bytes) Hash c0b52e83831ca6a3ff004be8ae989133 e7017556c5afb688faf94203968082c10673f7cb 9c5766c6bfd5f4ae016ee7128ebb7b4fb60193be3f8edf6fdcb2cca8db0d6bf0 HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1903161898:1713259909:_z10IlawPmfDqjDagqV8s7OP1YlWsnL5Rht0KZaUduI/875389ef29d6569b/7f523b94eac0f13 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: 7f523b94eac0f13 Content-Length: 2571 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 16 Apr 2024 10:37:13 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: osfhoJyZRRHgvJZtBWemNRgQ7W+N9gbBdzswJfSLusGd2pgnexRxEOncpk9Nj3Ifh6wwe1K+aoQ+5PdeHfW/zpud5lkokvxwp6XFiThUM9ZHMwFwbqdMoGmScrfOIKfRi9wKiDGPrKOVA7WgrNiowduVRxnGWHtEyVabGLNMV3+n2w+aJW9ybOrCTe0mUA6rrSDm3ayiegf1HPr24wjbvIE/Fxw+Ke8TmlgzeNMtsYu6G5hsZopQODmybn/4Lg4xtUeOv8lrNytD9qujkEF/eaEqDENST52p84N8gmbWAaLADwI9hIAH5fRFYiIaCpBEzSanxywKxFCro3zLmuDMm38Lolx4/hDCI71e8SKEg/TbbhucC3vj2WTVISIjH9ghUscaNuCgZB6j7mEIk85QMaDsyZUW7kpLmlgVh+wWU60=$npUiFYIhfrnvVhe3K6jWCw== server: cloudflare cf-ray: 875389f0bbf3569b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/875389ef29d6569b/1713263833740/NfHxTFqtaXRS22r	104.17.3.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/875389ef29d6569b/1713263833740/NfHxTFqtaXRS22r IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 64 x 3, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 54b2d9a8660f929e7f6300c5c34f2864 3ccda86424bf8d1eaf749e83003025b513e476ff 9eb5f222500a1c4a5431429da4ec27c6e102b33092a93fe1697111976f56363d HTTP Headers GET /cdn-cgi/challenge-platform/h/b/i/875389ef29d6569b/1713263833740/NfHxTFqtaXRS22r HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 16 Apr 2024 10:37:14 GMT content-type: image/png server: cloudflare cf-ray: 875389f67cb5569b-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1903161898:1713259909:_z10IlawPmfDqjDagqV8s7OP1YlWsnL5Rht0KZaUduI/875389ef29d6569b/7f523b94eac0f13	104.17.3.184	200 OK	23 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1903161898:1713259909:_z10IlawPmfDqjDagqV8s7OP1YlWsnL5Rht0KZaUduI/875389ef29d6569b/7f523b94eac0f13 IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (22552), with no line terminators Size 23 kB (22552 bytes) Hash 05e8d9a713dcda910426d6aaf443b9dc 2e334e63065d7995f9cdef3ccc72651b5cb52d58 65f29b7e8f9891c83f38b4c7f3e475b8ed3883d9fffd916352bd1df93337fccd HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1903161898:1713259909:_z10IlawPmfDqjDagqV8s7OP1YlWsnL5Rht0KZaUduI/875389ef29d6569b/7f523b94eac0f13 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: 7f523b94eac0f13 Content-Length: 25147 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 16 Apr 2024 10:37:14 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: mVVjrmAoTkSIRUh0xuETxl3NmAiYVrfKa++tye3MtHNVpwOU6OoetJ8Fx9Gb4AUi$8OcF0CudC9uJOe/JVyi7Zg== server: cloudflare cf-ray: 875389f81ef9569b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1903161898:1713259909:_z10IlawPmfDqjDagqV8s7OP1YlWsnL5Rht0KZaUduI/875389ef29d6569b/7f523b94eac0f13	104.17.3.184	200 OK	976 B
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1903161898:1713259909:_z10IlawPmfDqjDagqV8s7OP1YlWsnL5Rht0KZaUduI/875389ef29d6569b/7f523b94eac0f13 IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (976), with no line terminators Size 976 B (976 bytes) Hash 8ac4bd44db1c4a8faf175bd9a9644c61 011227fcee084a0b9d377fa6a636cdfc3e3daa56 6e55659cec25dc7a3f6f57ed3831de95f23548e20ab39d4d2ac1e397ae97d481 HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1903161898:1713259909:_z10IlawPmfDqjDagqV8s7OP1YlWsnL5Rht0KZaUduI/875389ef29d6569b/7f523b94eac0f13 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/toL804vmeDYrjlL/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: 7f523b94eac0f13 Content-Length: 37127 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 16 Apr 2024 10:37:17 GMT content-type: text/html; charset=UTF-8 cf-chl-out: FoZUe7euBozRaSyKnkodSxtF5nHAQJVTJwMn537J4kQvDdzfW4+PCcAdE4u2U8UbPEsxsYHTl8rt2hnBbX3INwoarscYCq4oiYhNr56Ebhc=$ftVp/bnlxF9w0gqXrvyQXA== cf-chl-out-s: 19GOqAfSi9QXgR9/6XJvkVuVbtKje+EkKEF1ny4hG9yy9LvbV2WW3YXSOTOSnZ3grqga0Rinsc399rX0rXQWZX1UqVoxA9caArzen9F6maiYy8q6IAwe1k2iBZOPSEiDqOu3FuQcnhv1P1hnKKewaQ==$hk7/ymlp+IzIHFeaIzVdGw== server: cloudflare cf-ray: 87538a093fa9569b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/turnstile/v0/b/bcc5fb0a8815/api.js?onload=onloadTurnstileCallback	104.17.3.184	200 OK	41 kB
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/bcc5fb0a8815/api.js?onload=onloadTurnstileCallback IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/ Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (40613) Size 41 kB (40614 bytes) Hash d1048a66fc11ea28c3cb1488fac82c62 f055707cf91f637ec19bf5e65bf378857e798469 8f1ad19042c2f9ee60c2de21f37f788af7b1ecccda8eec1d877f9b9c0e994370 HTTP Headers `GET /turnstile/v0/b/bcc5fb0a8815/api.js?onload=onloadTurnstileCallback HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://k3ed.icu/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Tue, 16 Apr 2024 10:36:57 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * cache-control: max-age=31536000 cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 8753898c8a6656a2-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal	104.17.3.184	200 OK	78 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://k3ed.icu/main/ Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (41919) Size 78 kB (77696 bytes) Hash 3f16053fd6bb37fa7205e71a94c994f0 3dd712fe03c7104c7064a4e79333764ff1f2d0ea 78d902b3f8acabe75c457fc3977f6b5915d8df177105ca563ea865e70e2cc0b6 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/pukms/0x4AAAAAAAW0WK3FVyMLGCYF/auto/normal HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://k3ed.icu/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 16 Apr 2024 10:36:57 GMT content-type: text/html; charset=UTF-8 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self' critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: cross-origin document-policy: js-profiling origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server: cloudflare cf-ray: 8753898d2fa1569b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (49)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash