Report - www.everki.com/za_en/wheretobuy/redirect/index?redirect=1&&url=https://UBS.sabsecurities.co.uk/dHJhY3kuZGVsbG9tb0B1YnMuY29t

Report Overview

Visited public
2023-08-26 11:05:51
Tags
URL
www.everki.com/za_en/wheretobuy/redirect/index?redirect=1&&url=https://UBS.sabsecurities.co.uk/dHJhY3kuZGVsbG9tb0B1YnMuY29t
Finishing URL
helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec
IP / ASN
172.66.40.202
#13335 CLOUDFLARENET
Title
helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
helpdesk-esupport.com	unknown	2023-08-21	2023-08-21 22:18:19	2023-08-25 05:21:23	9.4 kB	178 kB	172.67.180.167
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20 07:02:03	2023-08-26 05:10:04	2.3 kB	94 kB	104.17.3.184
unpkg.com	11693	2016-01-06	2016-01-08 00:26:01	2023-08-26 05:10:52	838 B	65 kB	104.16.124.175
www.everki.com	unknown	2005-04-19	2013-11-12 12:31:16	2023-08-25 20:14:43	846 B	5.2 kB	172.66.43.54
ubs.sabsecurities.co.uk	unknown	2010-02-08	2023-08-24 22:23:56	2023-08-25 17:44:26	508 B	320 B	176.74.19.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-08-26 11:05:38	low	172.67.180.167	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
2023-08-26 11:05:38	low	172.67.180.167	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
2023-08-26 11:05:38	low	172.67.180.167	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	From	Size	First Seen	Last Seen
	unknown	Function	34 B	2023-04-11	2025-05-11
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16 Last Seen2025-05-11 18:42 Times Seen67037 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec IP 172.67.180.167 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 20:49 Times Seen4657302 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unpkg.com/axios/dist/axios.min.js	ScriptElement	32 kB	2023-04-28	2025-05-05
Pretty URL unpkg.com/axios/dist/axios.min.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-28 01:15 Last Seen2025-05-05 18:48 Times Seen2658 Hash 6470a918ba1fd4b8d0882df0269ddb82 97814fdab64aa7d1b30f082f9eb272d4b1ce18a2 fd4ce12a87594281afcee9c73a40fe7acc282bcc9e764fbb3afa1481a96a091e Loading...

		Size	First Seen	Last Seen
	#1 Eval - ef063c8d7caefec14be49beacbd215ad	1.8 kB	2024-08-21 08:02	2024-08-21 08:02
Pretty Observations First Seen2024-08-21 08:02 Last Seen2024-08-21 08:02 Times Seen1 Hash ef063c8d7caefec14be49beacbd215ad 7710fc0ac97903d9fab7e334cc52f7be75f69545 bbc1ad03c4e673b42a333411d35ac408d4ca3d7bf2a024fa110976c90d30d3bc Loading...

	#2 Eval - d16f3bb59671dce01b3b127daabead55	2.0 kB	2024-08-21 08:02	2024-08-21 08:02
Pretty Observations First Seen2024-08-21 08:02 Last Seen2024-08-21 08:02 Times Seen1 Hash d16f3bb59671dce01b3b127daabead55 a3ef06c937b440d1ea73a7f4b28b70d754212037 520ac24449600ab0ba9a2c9c750f1d16ee49885ddb1f1a971467da8e27af6df4 Loading...

	#3 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07 01:03	2025-05-11 20:20
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 20:20 Times Seen369113 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#4 Eval - b5af8360f257e163567e71c4e7f60aa6	2.0 kB	2024-08-21 08:02	2024-08-21 08:02
Pretty Observations First Seen2024-08-21 08:02 Last Seen2024-08-21 08:02 Times Seen1 Hash b5af8360f257e163567e71c4e7f60aa6 3aeaa66d52b80368af406518d4c4ab8ff846ab12 805656727072f65de71fa482ec0f369533b172e2ec34f45c00aa6732f947a67d Loading...

	#5 Eval - df95431f5a27b3ae74b4a46ff7df8edc	598 B	2024-08-21 08:02	2024-08-21 08:02
Pretty Observations First Seen2024-08-21 08:02 Last Seen2024-08-21 08:02 Times Seen1 Hash df95431f5a27b3ae74b4a46ff7df8edc 9ce98cccbbc295e0a5160d53e82749ff5a75f22e 0415b4d11af7002d08cd05dfe37a564ba3d611fcd2b0d141ebfebcb3254c1a55 Loading...

		Size	First Seen	Last Seen
	#1 Write - bf6d8993bd45b3f22f12b81da47f8bc6	3.6 kB	2023-08-16 12:05	2024-08-21 08:36
Pretty Observations First Seen2023-08-16 12:05 Last Seen2024-08-21 08:36 Times Seen2609 Hash bf6d8993bd45b3f22f12b81da47f8bc6 93010ad068ab338fdb8a4c489d7d0715911e6278 bc4d17d30d824e3e9b6592bacbe1461cb4716098f887f635fb265a278a80bec5 Loading...

	#2 Write - 0c97480a2b7cfc0e736d618569843781	3.6 kB	2023-08-25 14:20	2024-08-21 08:06
Pretty Observations First Seen2023-08-25 14:20 Last Seen2024-08-21 08:06 Times Seen1391 Hash 0c97480a2b7cfc0e736d618569843781 abcb76a9741bc0580bdf4ffbd63cb693ccf303da 73928b259c46f1f0c71aa4eb6aac8e2c23a947e964d81efe5e0699ab812b946a Loading...

HTTP Transactions (25)

	URL	IP	Response	Size
	www.everki.com/	172.66.43.54		0 B
URL www.everki.com/ IP 172.66.43.54:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: www.everki.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Sat, 26 Aug 2023 11:05:37 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sat, 26 Aug 2023 12:05:37 GMT Location: https://www.everki.com/ Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fcb99c76b43b523-OSL alt-svc: h3=":443"; ma=86400`

	ubs.sabsecurities.co.uk/dHJhY3kuZGVsbG9tb0B1YnMuY29t	176.74.19.164		0 B
URL ubs.sabsecurities.co.uk/dHJhY3kuZGVsbG9tb0B1YnMuY29t IP 176.74.19.164:0 ASN #41000 Freethought Internet Limited File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /dHJhY3kuZGVsbG9tb0B1YnMuY29t HTTP/1.1 Host: ubs.sabsecurities.co.uk User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found x-powered-by: PHP/7.4.33 location: https://helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41 content-length: 0 content-type: text/html; charset=UTF-8 date: Sat, 26 Aug 2023 11:05:34 GMT server: Apache X-Firefox-Spdy: h2`

	helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41	172.67.180.167		3.6 kB
URL helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41 IP 172.67.180.167:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5515), with no line terminators Size 3.6 kB (3603 bytes) Hash 299bb4dcb9ba3611c04210ac85dfd35a 319beb5d4d9329f6b3dfc36bd88c5fde3e95407b 94143a64e0bbbf5e6579f63c9d541aea473f67ca8e64c73df3c58ae4bf9144b1 HTTP Headers `GET /MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Sat, 26 Aug 2023 11:05:38 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ss%2F6lRSfNX%2F1Pffeg%2F2sPfuPqPnNko7%2B%2FK6jvgWT%2B5OvH3Zdp%2B3Ddwv%2FVPLyZKCSQXYUfTenH8GBxR6r%2FI0WrdjL8n4O8C1EG3SS8ih7swcFyf7KwLgANXVPSkE5mvVwFjYGl2ClL84%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fcb99cf8eee0b41-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/cdn-cgi/styles/challenges.css	172.67.180.167		2.6 kB
URL helpdesk-esupport.com/cdn-cgi/styles/challenges.css IP 172.67.180.167:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (6600), with no line terminators Size 2.6 kB (2624 bytes) Hash 2c78b7f8fa496092bf41d5edd51611e7 8b0b1b276e8194b0a5497db478ec2ea9b4f83c42 2b0bd09c1cc7119d27e45353a59bf6c2721563e1689853ff704057a7439508d2 HTTP Headers `GET /cdn-cgi/styles/challenges.css HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41 DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 26 Aug 2023 11:05:38 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Wed, 23 Aug 2023 13:09:20 GMT ETag: W/"64e60500-19c8" Server: cloudflare CF-RAY: 7fcb99d0683bb4f3-OSL X-Frame-Options: DENY X-Content-Type-Options: nosniff Vary: Accept-Encoding Expires: Sat, 26 Aug 2023 13:05:38 GMT Cache-Control: max-age=7200, public Content-Encoding: gzip`

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=7fcb99cf8eee0b41	172.67.180.167		56 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=7fcb99cf8eee0b41 IP 172.67.180.167:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65536), with no line terminators Size 56 kB (55595 bytes) Hash c0c0a11f1bc017e06b367182e9d262a0 51354ef5ca847e82b3fdb2b076bfe5013a70537a 083471bdfc039a7df087eb9ded66bfc0ddb747ab17c94ed4dcd8764655024fdf HTTP Headers GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=7fcb99cf8eee0b41 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41?__cf_chl_rt_tk=GVYUYjGwPMJdwTIxcRFtfJJp3ntYgIy6Wz7I7uk9qKw-1693047938-0-gaNycGzNB9A DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Sat, 26 Aug 2023 11:05:38 GMT Content-Type: application/javascript; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lh%2Fikndz25X%2FSKCkMGlo6mR6zTFjjb3rap80Zuq5PtHf2meFLk7pZhLJCVB9%2FwDDg%2B6M6s94eRZBMBqA7lB3cXeRnlob0v7DPqruioLvzXYI80JqIFdjy9tnDBmSSO6ktrqk%2B%2BlSDe4%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fcb99d09895b4f3-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/favicon.ico	172.67.180.167	403 Forbidden	3.3 kB
URL GET HTTP/1.1 helpdesk-esupport.com/favicon.ico IP 172.67.180.167:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators Size 3.3 kB (3305 bytes) Hash 317ff4a5af0684551db985323cc98355 36ad65f4c6526653c332684baad78a8cdc4b6d3c fd4012de60349db546c44aa556be3a73ab70b1e6bfdd455c4a4931e212360467 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41 DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Sat, 26 Aug 2023 11:05:38 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jJsVRhaTKcjn826QoFxvt90pTXhB2HBcqzs4X%2FRGWZ%2B0%2FK3EsmpIPc3kh5tmCYUnbSzAiUOIy%2Bntrvj07Fxgz9rcbtV1E65m0vE3WHGVO876Om6FgWgTS3jvpEbk5HVNXQizJZ06LNk%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fcb99d0d900b4f3-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/favicon.ico	172.67.180.167	403 Forbidden	3.3 kB
URL GET HTTP/1.1 helpdesk-esupport.com/favicon.ico IP 172.67.180.167:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators Size 3.3 kB (3311 bytes) Hash 1b34587caf1ed2e8c8778533de83a86a 0db7c08805f039c68bfd9275ce34fcef60ef18e2 17ccda525c9725c6dcc1474f7e9b7014ba3b849d602d3268424e899b77e59a59 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41 DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Sat, 26 Aug 2023 11:05:38 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9GWF6b3zQ790XBdbiaaOe%2BJe1r6ekP863MSwonMrVphUbznzTKFpXRuvPuA%2F%2F6m7km77UMM0hSvyFVoC35DFgvSI7sP0%2FaV2Zgle2%2BiNJMbVuBjenbPFWgd%2FjC5B7Bcb%2BWRgEcJcQXw%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fcb99d10d3fb51e-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1260283349:1693044329:il4_tUzn-PLGeXA1Em94xeQBVxlEOcCy7bvYqpzkQ3Q/7fcb99cf8eee0b41/a181efe15860751	172.67.180.167		7.5 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1260283349:1693044329:il4_tUzn-PLGeXA1Em94xeQBVxlEOcCy7bvYqpzkQ3Q/7fcb99cf8eee0b41/a181efe15860751 IP 172.67.180.167:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (9848), with no line terminators Size 7.5 kB (7452 bytes) Hash 86c95a50a2ad3877fa8353cd6a9d92af ba200e05ea6b75063bec87878a3fc6d37cbd6099 8a2572ae1b807788feeffece98eb75544df2a928458a2503bae15e54ca9ffd24 HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1260283349:1693044329:il4_tUzn-PLGeXA1Em94xeQBVxlEOcCy7bvYqpzkQ3Q/7fcb99cf8eee0b41/a181efe15860751 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41 Content-type: application/x-www-form-urlencoded CF-Challenge: a181efe15860751 Content-Length: 1887 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Sat, 26 Aug 2023 11:05:38 GMT Content-Type: text/plain; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive cf-chl-gen: awuBph9lr/WjL/SxFUi293lpRs3aUmzbeJPLb3gNva7n0q9XQqKa7Ygf0DoRdMWi$DTUkx1k9Pt5ppvhnGfVVtQ== Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BVWXT%2BmOF3Nht2DaSgKla3kgMyuTfz7qzMDF6M9YenTGcmqtkIgTOy6H65zu2l4j4IJNKWo8hbdiu%2B4Gzd4mRXlWlfG5uVWk3ZIyztxvk0%2Bk3Tm1o866oXW%2BnIQtX8iKWZHVCoMkQtc%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fcb99d1de5eb51d-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1260283349:1693044329:il4_tUzn-PLGeXA1Em94xeQBVxlEOcCy7bvYqpzkQ3Q/7fcb99cf8eee0b41/a181efe15860751	172.67.180.167		2.4 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1260283349:1693044329:il4_tUzn-PLGeXA1Em94xeQBVxlEOcCy7bvYqpzkQ3Q/7fcb99cf8eee0b41/a181efe15860751 IP 172.67.180.167:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (3148), with no line terminators Size 2.4 kB (2416 bytes) Hash e75a75dd6a1a196ec19c34c73b14ea95 b0ed31043bc9bf1bf9c3e744e91d2f766c6b0fb0 d131895ca379a43ada611f94405c382d89a698c81fabc67e64cd4347f62609b0 HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1260283349:1693044329:il4_tUzn-PLGeXA1Em94xeQBVxlEOcCy7bvYqpzkQ3Q/7fcb99cf8eee0b41/a181efe15860751 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41 Content-type: application/x-www-form-urlencoded CF-Challenge: a181efe15860751 Content-Length: 3038 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Sat, 26 Aug 2023 11:05:41 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive set-cookie: cf_chl_rc_m=;Expires=Fri, 25 Aug 2023 11:05:41 GMT;SameSite=Strict cf-chl-out: g0dg4Gjctu+dcDhnaqZzpo77pNwXOzXPDdG/3cBN877CsUq1e0gXJ71Xo3xeIdU45cd1PuVLo+qnLGx1bORhKg==$7hjlj/9BiTJyfY/fcrxsMQ== cf-chl-out-s: CDfeKBlwRtko4NHGC5nQlIbfT9t7jXY7Cht7cIQ1ArXHUoNuvDD1eaXPapSIyfEV7zuiCLK7B/rXzH5LY72/wsKVXJnWsLjqo1x5jsQoS845g8G6573JpduzioB2j3b9NTzXNgCbK3XRTarqXLaa+oevrhjHfgCA4xmXKCdi+Ac=$GpkQ3AC/WtV3wP13crXgDQ== Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=29il0CqNg%2FnpBIFD0r%2BDcxB4qTT3mOmedqBaSHJt%2FKnn97ReqiKhepIB3giv5SwHuMOzvJ1%2FDkMfSI0WgKwnSnkHBrKPC%2BRFMeEJDFAhc7JPuCI4sHbUVLW2%2BD7XaQs7n4HXkfdglQs%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fcb99e06b2cb51d-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/abrkx/0x4AAAAAAADnPIDROrmt1Wwj/light/normal	104.17.3.184		7.4 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/abrkx/0x4AAAAAAADnPIDROrmt1Wwj/light/normal IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11051) Size 7.4 kB (7352 bytes) Hash 10eefb77548fe78320e4eacac11f6cf0 0f0fba8257213805a9e5e5d79612734a47ae69b9 3ed4f16a90a940f36d30f6da2a9ca14ff72216420057f6dd0d6d573197a943b1 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/abrkx/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Sat, 26 Aug 2023 11:05:38 GMT content-type: text/html; charset=UTF-8 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self' cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: cross-origin document-policy: js-profiling origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server: cloudflare cf-ray: 7fcb99d26c5fb512-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec	172.67.180.167	200 OK	3.7 kB
URL User Request POST HTTP/1.1 helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec IP 172.67.180.167:80 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5707), with no line terminators Size 3.7 kB (3716 bytes) Hash 73b0ce9c05ff43d2a54b1267af3c2293 ae8b251f826ddf972ffa0a904f7dceda4fb69284 0f16e39fe6e9649cb9fac0fbdb842732e8854fa3881fe34a3dc48c7575f9437a HTTP Headers GET /beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/MdHJhY3kuZGVsbG9tb0B1YnMuY29t&session=852fcc707e00e9393ace5478f2e80a41852fcc707e00e9393ace5478f2e80a41?__cf_chl_tk=GVYUYjGwPMJdwTIxcRFtfJJp3ntYgIy6Wz7I7uk9qKw-1693047938-0-gaNycGzNB9A DNT: 1 Connection: keep-alive Cookie: PHPSESSID=dcfc9e9c918d36c91d687c1f5b8e3230 Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 403 Forbidden Date: Sat, 26 Aug 2023 11:05:42 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M4bfTMdgVVQYMRDFngGR4%2FIzL8lKt6SYwT3uZM0cg5jNyB9R4QK%2BVn%2FCMKKTR7tya3cissWH%2BE7G63jT2ElP4YLghsJ3NdtRDNJWQ%2FsSPoDXAGSP4MARzDhNq48gd2hQhU38SgSUjy0%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fcb99e6cc94b51d-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/cdn-cgi/styles/challenges.css	172.67.180.167		2.6 kB
URL helpdesk-esupport.com/cdn-cgi/styles/challenges.css IP 172.67.180.167:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (6600), with no line terminators Size 2.6 kB (2624 bytes) Hash 2c78b7f8fa496092bf41d5edd51611e7 8b0b1b276e8194b0a5497db478ec2ea9b4f83c42 2b0bd09c1cc7119d27e45353a59bf6c2721563e1689853ff704057a7439508d2 HTTP Headers `GET /cdn-cgi/styles/challenges.css HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec DNT: 1 Connection: keep-alive Cookie: PHPSESSID=dcfc9e9c918d36c91d687c1f5b8e3230 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 26 Aug 2023 11:05:42 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Wed, 23 Aug 2023 13:09:20 GMT ETag: W/"64e60500-19c8" Server: cloudflare CF-RAY: 7fcb99e718531c06-OSL X-Frame-Options: DENY X-Content-Type-Options: nosniff Vary: Accept-Encoding Expires: Sat, 26 Aug 2023 13:05:42 GMT Cache-Control: max-age=7200, public Content-Encoding: gzip`

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=7fcb99e6cc94b51d	172.67.180.167		57 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=7fcb99e6cc94b51d IP 172.67.180.167:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65536), with no line terminators Size 57 kB (57001 bytes) Hash 4eda06652920dd761d6371ba1587f31b a43b7081e0be6f5d692a29c6e5810c1d934d3b2e c45643349b22e4ca4deda25ca0e093dee3aebcbe37baf79e052aaaa48d6134d0 HTTP Headers GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=7fcb99e6cc94b51d HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec?__cf_chl_rt_tk=_dZ43NII0Y9IBcXhmKJKrAeM7IDWr9_Zr5QQqcRaaWU-1693047942-0-gaNycGzNCLs DNT: 1 Connection: keep-alive Cookie: PHPSESSID=dcfc9e9c918d36c91d687c1f5b8e3230 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Sat, 26 Aug 2023 11:05:42 GMT Content-Type: application/javascript; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v325%2B17yjRnYOkdtqOfBMO3ME%2B5kKeSoWqAZIkLAS%2FRlqzevg9RzxyqSvRwM7aMrHOfAQk8FRU9h%2FSNmF%2BJ9zHRL9HZrPkSM42OjCNwkl4iMlJ1Ln8VoWFVUhKHjr2hotKFw8IQhCgo%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fcb99e7389e1c06-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/7fcb99d26c5fb512/1693047939289/uWKM63H9xu3fHDS	104.17.3.184		3.4 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/7fcb99d26c5fb512/1693047939289/uWKM63H9xu3fHDS IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type PNG image data, 5 x 36, 8-bit/color RGB, non-interlaced\012- data Size 3.4 kB (3382 bytes) Hash 9bdae9c02656dc6eca7964040152b36a cb1eac7f87836ccb663d4d00cb226962de9857fb 09ba58c28378aa399543dc05d119ae0a991f77b840fde3a9e5ca2719bb58ca85 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/i/7fcb99d26c5fb512/1693047939289/uWKM63H9xu3fHDS HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/abrkx/0x4AAAAAAADnPIDROrmt1Wwj/light/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Sat, 26 Aug 2023 11:05:40 GMT content-type: image/png server: cloudflare cf-ray: 7fcb99ddbc51b512-OSL alt-svc: h3=":443"; ma=86400`

	helpdesk-esupport.com/favicon.ico	172.67.180.167	403 Forbidden	3.3 kB
URL GET HTTP/1.1 helpdesk-esupport.com/favicon.ico IP 172.67.180.167:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4946), with no line terminators Size 3.3 kB (3321 bytes) Hash 46128f1f8158885848c4f3593d0fea14 d7284bb5cf55a40dcc818c46364cf9dbd6b126c0 b6e25a4a175c076c5ea427a7feb83ac2c25e85baa94c46dd643c2bdc2be0cb04 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec DNT: 1 Connection: keep-alive Cookie: PHPSESSID=dcfc9e9c918d36c91d687c1f5b8e3230 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Sat, 26 Aug 2023 11:05:42 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t3FSs%2By5fH2TUeVBZxz42z%2BA21mpYeqcUCvUX%2FdMLaSXIzMv5NAowDRZvf7gixA8znX%2FKatiWjEwluIIofRLPRgY3i7rdh1VoIBdcXhHsrKX12cG0dHl2CiJr2A%2FHxLoQYbxr5Z3A88%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fcb99e798491c12-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	challenges.cloudflare.com/turnstile/v0/g/313d8a27/api.js?onload=URXdVe4&render=explicit	104.17.3.184		18 kB
URL challenges.cloudflare.com/turnstile/v0/g/313d8a27/api.js?onload=URXdVe4&render=explicit IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (29469) Size 18 kB (17680 bytes) Hash edbcde7402e6acb63167572645982f3f 1e2d65ed3606a7946422b3977ff79affe34fc16d 1ae488283b6cebf52b5bd97cd3dbe44e84ab7e87234525258a07e59a1904c2ed HTTP Headers `GET /turnstile/v0/g/313d8a27/api.js?onload=URXdVe4&render=explicit HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/3 200 OK date: Sat, 26 Aug 2023 11:05:42 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * cache-control: max-age=31536000 vary: Accept-Encoding server: cloudflare cf-ray: 7fcb99e7aa88b512-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1348772321:1693045316:eV7LuP9tsJUKbl7RW3nM-ZDiDL-TVF9jWRmhZyRIbv0/7fcb99e6cc94b51d/033ed8a2a5a6afc	172.67.180.167		2.4 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1348772321:1693045316:eV7LuP9tsJUKbl7RW3nM-ZDiDL-TVF9jWRmhZyRIbv0/7fcb99e6cc94b51d/033ed8a2a5a6afc IP 172.67.180.167:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (3176), with no line terminators Size 2.4 kB (2437 bytes) Hash 9d41cf7316fe637783f35ed9b836aff3 bbbd8a501f99342c95aee9189770457025ba0d6d 6775da0681bdf732e8a45167f7b03882cd34f9b7e5b80e794f75983775293b81 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1348772321:1693045316:eV7LuP9tsJUKbl7RW3nM-ZDiDL-TVF9jWRmhZyRIbv0/7fcb99e6cc94b51d/033ed8a2a5a6afc HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec Content-type: application/x-www-form-urlencoded CF-Challenge: 033ed8a2a5a6afc Content-Length: 3012 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Cookie: PHPSESSID=dcfc9e9c918d36c91d687c1f5b8e3230 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Sat, 26 Aug 2023 11:05:47 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive set-cookie: cf_chl_rc_m=;Expires=Fri, 25 Aug 2023 11:05:47 GMT;SameSite=Strict cf-chl-out: KlpiaH/kSZgTmKTfrxFxe6M+rtK03uzZBapWPovGMrQNZkALA9Qw8MPp16yR93twUko3x32gEEw0fLsL0QOa1Q==$W4GS88myF80x1N+vWnImEA== cf-chl-out-s: kanv6ivgFJfpt/AYx/ob0/dGsoj6u/izjOn2Z1oEd25saOxxKehhZwUGMh+78vkKcNyndlBYBi9HY335eMxAmBMWtZKSyhOUNIjcZFyN+JwJ8767hCT0POuZKRnACuhzkoVpHH653zXD9KmtWz5JkXtHnh8BI/PaiXeUfiFmZ7U=$rY3KktRPAkJ7op2Zidzraw== Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KHAeMACsJym8xzOY%2FJUSFx3ae65OL%2BKMMSF7cQaJu3hvL1jcaiA9GYJxVQ0%2BBE5c1z%2FWm3hiOfA8uzdBz2jSRo%2BMWDuIBO0yd5wBWr2Y6iJO62GpTb6inDTDzhU5GG1U3s2swi0USuo%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fcb9a04cb2cb50f-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec	172.67.180.167	200 OK	2.4 kB
URL User Request POST HTTP/1.1 helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec IP 172.67.180.167:80 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6150) Size 2.4 kB (2396 bytes) Hash 8d463a75294350dad5eab8e1160bf195 c69bdd7e7fa630700dfa3bafb436b35d0440b985 d7c2ec4ce3a97980140e52e8046d624e6b0ec438f447fb768666aa0590ad7372 HTTP Headers POST /beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec?__cf_chl_tk=_dZ43NII0Y9IBcXhmKJKrAeM7IDWr9_Zr5QQqcRaaWU-1693047942-0-gaNycGzNCLs Content-Type: application/x-www-form-urlencoded Content-Length: 2401 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Cookie: PHPSESSID=dcfc9e9c918d36c91d687c1f5b8e3230 Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Sat, 26 Aug 2023 11:05:47 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: cf_clearance=6HEfLjCof7BHL4v9U0XwftxCW8w3GIyrTH6zkBYQrVg-1693047942-0-1-32b3bbaf.6b0d8b6b.3eb1b0e5-160.0.0; path=/; expires=Sun, 25-Aug-24 11:05:47 GMT; domain=.helpdesk-esupport.com; HttpOnly; SameSite=None expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache vary: Accept-Encoding x-turbo-charged-by: LiteSpeed CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wXkn%2BfqW3BDdyM5J0NQiDeZYsN7u9V3RVGnzxCs2XTU%2B8CIoWgwqc0gmfELKy%2B%2BE1QTMlp%2FK86yVvhCD%2FCpC44JyTJgzgPx%2BupI3OsaeDR%2FjGcgKcUkp6OWYBu6KzLy36MCF18pV43Q%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fcb9a05ec9eb50f-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	www.everki.com/za_en/wheretobuy/redirect/index?redirect=1&&url=https://UBS.sabsecurities.co.uk/dHJhY3kuZGVsbG9tb0B1YnMuY29t	172.66.40.202		3.5 kB
URL www.everki.com/za_en/wheretobuy/redirect/index?redirect=1&&url=https://UBS.sabsecurities.co.uk/dHJhY3kuZGVsbG9tb0B1YnMuY29t IP 172.66.40.202:0 ASN #13335 CLOUDFLARENET File type gzip compressed data, from Unix\012- data Size 3.5 kB (3477 bytes) Hash ec76a62e0c323781c551fe7616122c61 34419dc22f5a82344a47cce48fff131ad733a75f ebd27de18e713d34ba7f70f6db7cbf4d8aa862c17cf80f7db68efefadf1268d4 HTTP Headers GET /za_en/wheretobuy/redirect/index?redirect=1&&url=https://UBS.sabsecurities.co.uk/dHJhY3kuZGVsbG9tb0B1YnMuY29t HTTP/1.1 Host: www.everki.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found date: Sat, 26 Aug 2023 11:05:34 GMT content-type: text/html; charset=UTF-8 location: https://ubs.sabsecurities.co.uk/dHJhY3kuZGVsbG9tb0B1YnMuY29t set-cookie: PHPSESSID=8i9gpefqa7r992qsbo75ko4goi; expires=Sat, 26-Aug-2023 13:05:34 GMT; Max-Age=7200; path=/; domain=www.everki.com; secure; HttpOnly store=za_en; expires=Sun, 25-Aug-2024 11:05:34 GMT; Max-Age=31536000; path=/; HttpOnly wp_customerId=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=www.everki.com wp_customerGroup=NOT+LOGGED+IN; expires=Sun, 25-Aug-2024 11:05:34 GMT; Max-Age=31536000; path=/; domain=www.everki.com _ga=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0 _gid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0 _gat=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0 AMP_TOKEN=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0 strict-transport-security: max-age=31536000 content-security-policy: upgrade-insecure-requests; x-content-type-options: nosniff x-xss-protection: 1; mode=block x-frame-options: SAMEORIGIN vary: Accept-Encoding x-varnish: 51171218 age: 0 pragma: no-cache expires: -1 cache-control: no-store, no-cache, must-revalidate, max-age=0 cf-cache-status: DYNAMIC server: cloudflare cf-ray: 7fcb99b4ee0f1c12-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	helpdesk-esupport.com/boot/a2c9b74d23234504ce77381258fc155f64e9dc8b3b241	172.67.180.167	403 Forbidden	3.5 kB
URL GET HTTP/1.1 helpdesk-esupport.com/boot/a2c9b74d23234504ce77381258fc155f64e9dc8b3b241 IP 172.67.180.167:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5225), with no line terminators Size 3.5 kB (3482 bytes) Hash b45c4523622ae85de6d0d25682f3260b eff9a02f5ef3d67a0021b9fb62bdd2cbd17d71ed 6642ccebddf49955c8230aac8a5360128a10379cf083af3d12904ae7f1811335 HTTP Headers GET /boot/a2c9b74d23234504ce77381258fc155f64e9dc8b3b241 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec Cookie: PHPSESSID=dcfc9e9c918d36c91d687c1f5b8e3230 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 403 Forbidden Date: Sat, 26 Aug 2023 11:05:47 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tANNn1nnaXGmuBCAK8n01P1G%2FsWQPYyKrS6wvfe1seZho7MkpSokIrEFAvxYuRX6H1qcp6hJ%2Fp4eUMS7O1MS0fw5zBAq7HWp%2BeXw9GCULuQ0rCMCYrsqKgkUfbWknpI26io3jpsQdPU%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fcb9a06bc50b51b-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/jm/a2c9b74d23234504ce77381258fc155f64e9dc8b3b242	172.67.180.167	403 Forbidden	3.5 kB
URL GET HTTP/1.1 helpdesk-esupport.com/jm/a2c9b74d23234504ce77381258fc155f64e9dc8b3b242 IP 172.67.180.167:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5194), with no line terminators Size 3.5 kB (3463 bytes) Hash 5cc457fe011556315dc374d7bfc3fe07 ef6d35240d3e0cc9fb947c71309dbd4a1ab36fdb faba7bc59567af86b7cf2579a0446a823b81ac138c9328b974d8627229622465 HTTP Headers GET /jm/a2c9b74d23234504ce77381258fc155f64e9dc8b3b242 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec Cookie: PHPSESSID=dcfc9e9c918d36c91d687c1f5b8e3230 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 403 Forbidden Date: Sat, 26 Aug 2023 11:05:47 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yyXKZ%2F1gbJ83hhJ5czqscWdOfjy8DzFNrvkaF0%2BnvT1anLapBvsumbVVO4Z8BgOyEoUxbP0Uz48RVRhlktIYcbHWviwoooW1%2B3vUG0NQD4fsumxWnacMenz%2Fdq4bcJglx4Qz2G17bOo%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fcb9a06bf55b4fd-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7fcb99e8ec56b512	104.17.3.184		64 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7fcb99e8ec56b512 IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65536), with no line terminators Size 64 kB (63723 bytes) Hash fef337d6d05d4d9c800be1f4f705d3cf 40d7b877e16140358d8fcaf3d042fdd647c9e40e f447d4430fed31f8eca9f2be9c275ba464126afaf4ff7484f66229b407f3a8e7 HTTP Headers GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7fcb99e8ec56b512 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/skc89/0x4AAAAAAADnPIDROrmt1Wwj/light/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Sat, 26 Aug 2023 11:05:42 GMT content-type: application/javascript; charset=UTF-8 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 server: cloudflare cf-ray: 7fcb99e9ad49b512-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	unpkg.com/axios@1.4.0/dist/axios.min.js	104.16.124.175	200 OK	32 kB
URL GET HTTP/2 unpkg.com/axios@1.4.0/dist/axios.min.js IP 104.16.124.175:443 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type ASCII text, with very long lines (31803) Size 32 kB (31842 bytes) Hash 6470a918ba1fd4b8d0882df0269ddb82 97814fdab64aa7d1b30f082f9eb272d4b1ce18a2 fd4ce12a87594281afcee9c73a40fe7acc282bcc9e764fbb3afa1481a96a091e HTTP Headers `GET /axios@1.4.0/dist/axios.min.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://helpdesk-esupport.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 26 Aug 2023 11:05:47 GMT content-type: application/javascript; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"7c62-l4FP2rZKp9GzDwgvnrJy1LHOGKI" via: 1.1 fly.io fly-request-id: 01GZP8TZEXW4PFCT61FHX2WRTS-fra cf-cache-status: HIT age: 9747039 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7fcb9a071c0fb523-OSL content-encoding: br X-Firefox-Spdy: h2

	helpdesk-esupport.com/jq/a2c9b74d23234504ce77381258fc155f64e9dc8b3b23b	172.67.180.167	403 Forbidden	5.2 kB
URL GET HTTP/1.1 helpdesk-esupport.com/jq/a2c9b74d23234504ce77381258fc155f64e9dc8b3b23b IP 172.67.180.167:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5269), with no line terminators Size 5.2 kB (5215 bytes) Hash 2c02e07482510ecdd7c4637efb5bf875 61d5be3d40faf5e302106cfaaabe0d553aeea1a8 0e466b44604c544c172577f291d3b0e4616039d0d37d7dabb0928bef07d3a4cd HTTP Headers GET /jq/a2c9b74d23234504ce77381258fc155f64e9dc8b3b23b HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec Cookie: PHPSESSID=dcfc9e9c918d36c91d687c1f5b8e3230 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 403 Forbidden Date: Sat, 26 Aug 2023 11:05:47 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XS9FCyI7kgi3FSEnurFXhzvM89WePr3i8UGLKD%2ByRcbOLBUPHMt6OYFsxtbnhY1RzTzhm%2FnGQoRjEMxMPf%2BahmiQ2sFJqetVjfjrIRJXhwW2grVuXPL5rXbTZccq1CA4b8BeMjMZ4m4%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fcb9a06ad99b50f-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	unpkg.com/axios/dist/axios.min.js	104.16.124.175	302 Found	32 kB
URL GET HTTP/2 unpkg.com/axios/dist/axios.min.js IP 104.16.124.175:443 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e9dc862bfeaPASbeebb091955c06fa68b3eb8afc0bae5164e9dc862bfec Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type Size 32 kB (31842 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /axios/dist/axios.min.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://helpdesk-esupport.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found date: Sat, 26 Aug 2023 11:05:47 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /axios@1.4.0/dist/axios.min.js vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01H8RQY3Z3P2DXK7AGVAQX2BDP-fra cf-cache-status: HIT age: 422 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7fcb9a06fbe7b523-OSL X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (25)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash