| cio.economictimes.indiatimes.com/etl.php?url=https://nivafollower.com/.syh/jack.wu@slurpmail.net | 96.6.16.163 | | 0 B |
URL cio.economictimes.indiatimes.com/etl.php?url=https://nivafollower.com/.syh/jack.wu@slurpmail.net IP96.6.16.163:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /etl.php?url=https://nivafollower.com/.syh/jack.wu@slurpmail.net HTTP/1.1
Host: cio.economictimes.indiatimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: optout=1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: Bhoot
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: *
pragma: no-cache
location: ./etlr.php?url=https://nivafollower.com/.syh/jack.wu@slurpmail.net
x-cool: 22.33
content-language: en
access-control-allow-credentials: true
strict-transport-security: max-age=25920000; includeSubdomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: no-cache, no-store, must-revalidate
expires: Wed, 24 Apr 2024 17:20:33 GMT
date: Wed, 24 Apr 2024 17:20:33 GMT
set-cookie: PHPSESSID=964f34fe8b2065a1449185f38b602a3f; expires=Wed, 01-May-2024 17:20:33 GMT; Max-Age=604800; path=/; secure; HttpOnly
pmUsr=1713979233; expires=Thu, 24-Apr-2025 18:27:13 GMT; Max-Age=31540000; path=/; secure; HttpOnly; SameSite=None
x-frame-options: sameorigin, SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| cio.economictimes.indiatimes.com/etlr.php?url=https://nivafollower.com/.syh/jack.wu@slurpmail.net | 96.6.16.163 | | 0 B |
URL cio.economictimes.indiatimes.com/etlr.php?url=https://nivafollower.com/.syh/jack.wu@slurpmail.net IP96.6.16.163:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /etlr.php?url=https://nivafollower.com/.syh/jack.wu@slurpmail.net HTTP/1.1
Host: cio.economictimes.indiatimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: optout=1; PHPSESSID=964f34fe8b2065a1449185f38b602a3f; pmUsr=1713979233
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: Bhoot
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: *
pragma: no-cache
location: https://nivafollower.com/.syh/jack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign=
x-cool: 55.32
content-language: en
access-control-allow-credentials: true
strict-transport-security: max-age=25920000; includeSubdomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: no-cache, no-store, must-revalidate
expires: Wed, 24 Apr 2024 17:20:34 GMT
date: Wed, 24 Apr 2024 17:20:34 GMT
set-cookie: cio_subscription_source=email; expires=Wed, 01-May-2024 17:20:33 GMT; Max-Age=604800; path=/
cio_pop_user_sub=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
x-frame-options: sameorigin, SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback | 104.17.2.184 | | 0 B |
URL challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP104.17.2.184:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nivafollower.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 17:20:34 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/b/471dc2adc340/api.js?onload=onloadTurnstileCallback
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797c3c91a5956c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nivafollower.com/favicon.ico | 45.156.184.16 | | 708 B |
URL nivafollower.com/favicon.ico IP45.156.184.16:0 ASN#208161 Pars Shabakeh Azarakhsh LLC
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash2382378378c002d88b9a507c712c3349 2e894db3808b554abadc8b144338ad9e2ea937ba 37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
GET /favicon.ico HTTP/1.1
Host: nivafollower.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nivafollower.com/.syh/jack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign=
Cookie: PHPSESSID=0mg39rar6uau6jbiu08t1fkdf7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Wed, 24 Apr 2024 17:20:34 GMT
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/yhp5e/0x4AAAAAAAX4lZNTyq7U_WyS/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:34 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8797c3ca6af056ab-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c3c9da6d56ab/1713979235280/7340205363100d801b9ac6d9f2f953e43c5b0f64e7c6f0531e38742b4ea3669d/bTPS4-VyZLwYB9V | 104.17.2.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c3c9da6d56ab/1713979235280/7340205363100d801b9ac6d9f2f953e43c5b0f64e7c6f0531e38742b4ea3669d/bTPS4-VyZLwYB9V IP104.17.2.184:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/8797c3c9da6d56ab/1713979235280/7340205363100d801b9ac6d9f2f953e43c5b0f64e7c6f0531e38742b4ea3669d/bTPS4-VyZLwYB9V HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/yhp5e/0x4AAAAAAAX4lZNTyq7U_WyS/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Wed, 24 Apr 2024 17:20:36 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gc0AgU2MQDYAbmsbZ8vlT5DxbD2TnxvBTHjh0K06jZp0AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIHNAIFNjEA2AG5rG2fL5U-Q8Ww9k58bwUx44dCtOo2adABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8797c3d2ccc456ab-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c3c9da6d56ab/1713979235284/Lajooklva6C1p6G | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c3c9da6d56ab/1713979235284/Lajooklva6C1p6G IP104.17.2.184:0
File typePNG image data, 99 x 34, 8-bit/color RGB, non-interlaced Hashcd9d70727b1893b1f14961806b765f40 adc9cedb90fc34bd6536782665b91f8f067ffee5 521758d76acb88e8fbc23c0211a013cb57d9f3bcad5d78590b7461b4b8ebe17f
GET /cdn-cgi/challenge-platform/h/b/i/8797c3c9da6d56ab/1713979235284/Lajooklva6C1p6G HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/yhp5e/0x4AAAAAAAX4lZNTyq7U_WyS/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:36 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8797c3d36d5956ab-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/api.js?render=explicit | 104.17.3.184 | 302 Found | 0 B |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP104.17.3.184:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 17:20:41 GMT
content-length: 0
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
location: /turnstile/v0/b/471dc2adc340/api.js?render=explicit
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797c3f21f5b5689-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.0.min.js | 151.101.194.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.0.min.js IP151.101.194.137:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 17:20:41 GMT
age: 6436861
x-served-by: cache-lga21931-LGA, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 22, 1389180
x-timer: S1713979241.323198,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.3.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.3.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:41 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8797c3f3ac5f569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c3f2db71569c/1713979241870/7K5MDNDdzP8hwo0 | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c3f2db71569c/1713979241870/7K5MDNDdzP8hwo0 IP104.17.3.184:0
File typePNG image data, 60 x 15, 8-bit/color RGB, non-interlaced Hash88570889eba21e50b6f1b0437f45106e ea97747ed5f1591131f2ff2be30d221c6b104de6 6c6b0d74d14bf0201facc077a95a7cd3c1728021888648b5c9115d26ac729315
GET /cdn-cgi/challenge-platform/h/b/i/8797c3f2db71569c/1713979241870/7K5MDNDdzP8hwo0 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:42 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8797c3f90b0f569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/945711370:1713976145:KvWUDIrv8nGdefJ3j5ESMzZGDcQ8DAy5gM9ZW-x_yNM/8797c3f2db71569c/f817e0dda2f9c94 | 104.17.3.184 | | 87 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/945711370:1713976145:KvWUDIrv8nGdefJ3j5ESMzZGDcQ8DAy5gM9ZW-x_yNM/8797c3f2db71569c/f817e0dda2f9c94 IP104.17.3.184:0
File typeASCII text, with very long lines (65536), with no line terminators Hash9633c8a4c5049276f814accbb4d0091e 87707cc58c0c731ebe6f1c0d937c45ba75e9dbc2 aa4c0d00a7c61cb071e82a41ec196b315b0d5bfe2b9504cbf7d93a10ac13ff61
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/945711370:1713976145:KvWUDIrv8nGdefJ3j5ESMzZGDcQ8DAy5gM9ZW-x_yNM/8797c3f2db71569c/f817e0dda2f9c94 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: f817e0dda2f9c94
Content-Length: 2739
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:41 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: jR82DrW7vcFYE5oiflqfQsNRFMuFS8oYkCmPn48+6lM6txgIoZBASYbUwSUMAGjW0xRMqJVp0GQ0hpF+w5Uo61KqQzR4PsUsDwnvcK+QeXJBNLuocs2eCMJAmAwSRdU2+AnoX/uhI9MntchdyvPQL0Puhrjvkxy5CMVROXS2sOSgxv1OaNhm/sniTGhEdbN+H+DWcwHsea0Y81pqWBVaGi1/rTrocZJ5m03BvU+Xyxrw9n7Jx6CtFfGaNxRMHJR54bIMstRPzDzBQUPO3F7IPzSBdhK6RktZnUSai/UwV2oggBbV4pUAdO59JaTGIYZHGda/NeLQ+Ex9yAT8sNjT+4jMaTwAK/Bbz/RE5F65dfX+XN1fJuSYbPBA6q1H3ok+$avpAc1dTlj0jUYE7Yx5oxg==
vary: accept-encoding
server: cloudflare
cf-ray: 8797c3f59f0a569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/945711370:1713976145:KvWUDIrv8nGdefJ3j5ESMzZGDcQ8DAy5gM9ZW-x_yNM/8797c3f2db71569c/f817e0dda2f9c94 | 104.17.3.184 | | 31 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/945711370:1713976145:KvWUDIrv8nGdefJ3j5ESMzZGDcQ8DAy5gM9ZW-x_yNM/8797c3f2db71569c/f817e0dda2f9c94 IP104.17.3.184:0
File typeASCII text, with very long lines (22568), with no line terminators Hash4dfea3051dc8be16f19100228ad35c0a 8ebd34c980351223e76780fa4a60630024b9c347 ffc9d382dc0a92be7a2a98a08b7e22407245e81f33cfbab8ec925d65ecf5a0a4
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/945711370:1713976145:KvWUDIrv8nGdefJ3j5ESMzZGDcQ8DAy5gM9ZW-x_yNM/8797c3f2db71569c/f817e0dda2f9c94 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: f817e0dda2f9c94
Content-Length: 25847
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:43 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: ngbN5aMSHd3uDsehQE6x+gtIDpN+FeLV/3KQNBsFLxtoDs3t7DmPEWYlQmp+0hlD$I9aW+YbiYL72ErOza/ZNXQ==
vary: accept-encoding
server: cloudflare
cf-ray: 8797c4011c3e569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?render=explicit | 104.17.3.184 | 200 OK | 213 kB |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?render=explicit IP104.17.3.184:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42414) Size213 kB (213265 bytes) Hashf94a2211ce789a95a7c67e8c660d63e8 f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f 926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b
GET /turnstile/v0/b/471dc2adc340/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:41 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797c3f23ac9569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Early-Data: accepted
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c41a1f02569c/1713979248016/cce4d0511d697421c9405e296b507e64fa4834e7ef3382bf3c79e1d4ab26f72c/jVu81FRn-fL0QVz | 104.17.3.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c41a1f02569c/1713979248016/cce4d0511d697421c9405e296b507e64fa4834e7ef3382bf3c79e1d4ab26f72c/jVu81FRn-fL0QVz IP104.17.3.184:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/8797c41a1f02569c/1713979248016/cce4d0511d697421c9405e296b507e64fa4834e7ef3382bf3c79e1d4ab26f72c/jVu81FRn-fL0QVz HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/Sp_xOU08DjqDdFe/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Wed, 24 Apr 2024 17:20:48 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gzOTQUR1pdCHJQF4pa1B-ZPpINOfvM4K_PHnh1Ksm9ywAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIMzk0FEdaXQhyUBeKWtQfmT6SDTn7zOCvzx54dSrJvcsABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8797c4208fd8569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c41a1f02569c/1713979248054/9adddd92ef6ce44ed3e78caee495a600161034820e6489d5b2867d66e19f78d8/f5_ImRO2teAEz-l | 104.17.3.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c41a1f02569c/1713979248054/9adddd92ef6ce44ed3e78caee495a600161034820e6489d5b2867d66e19f78d8/f5_ImRO2teAEz-l IP104.17.3.184:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/8797c41a1f02569c/1713979248054/9adddd92ef6ce44ed3e78caee495a600161034820e6489d5b2867d66e19f78d8/f5_ImRO2teAEz-l HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/Sp_xOU08DjqDdFe/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Wed, 24 Apr 2024 17:20:48 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gmt3dku9s5E7T54yu5JWmABYQNIIOZInVsoZ9ZuGfeNgAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIJrd3ZLvbORO0-eMruSVpgAWEDSCDmSJ1bKGfWbhn3jYABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8797c420bfff569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c41a1f02569c/1713979248019/mOVnyo5OjwlX7AS | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c41a1f02569c/1713979248019/mOVnyo5OjwlX7AS IP104.17.3.184:0
File typePNG image data, 81 x 24, 8-bit/color RGB, non-interlaced Hash6f94c5f2b70eabd2cc1e1b0c2b170b3b e28c3400316c14d293881472b051be8c98c1db90 f224d61e9db83ba6eda7d12ef245854cc377872fbf33b2097cfdae844baa76e6
GET /cdn-cgi/challenge-platform/h/b/i/8797c41a1f02569c/1713979248019/mOVnyo5OjwlX7AS HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/Sp_xOU08DjqDdFe/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:49 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8797c424cc67569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c41a1f02569c/1713979248057/ncLRyANIibVkXeZ | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c41a1f02569c/1713979248057/ncLRyANIibVkXeZ IP104.17.3.184:0
File typePNG image data, 72 x 7, 8-bit/color RGB, non-interlaced Hash55579e5ed18930ce89346b8363b545db 72e0a2afbc8f81bf74a8c503d6133558f258c8a2 4eedc5e55d3583214cc89fc88ed75437705829ce7613ff9dcf06b32a64251dcd
GET /cdn-cgi/challenge-platform/h/b/i/8797c41a1f02569c/1713979248057/ncLRyANIibVkXeZ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/Sp_xOU08DjqDdFe/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:49 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8797c4283881569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1603822813:1713975965:Eud9L1q-TLLDJ12-cQdfyn81gkFvKzep3TuWjtwZMOw/8797c41a1f02569c/cbfdf1d05e7a522 | 104.17.3.184 | | 989 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1603822813:1713975965:Eud9L1q-TLLDJ12-cQdfyn81gkFvKzep3TuWjtwZMOw/8797c41a1f02569c/cbfdf1d05e7a522 IP104.17.3.184:0
File typeASCII text, with very long lines (968), with no line terminators Hash1839d3abd5733414842f4e4bcac49e38 a923d110af6ed1829deee01a61318a25af245eb6 cd3cccb973917c00ce6cd5ca954f11b607f6bef8ae310ea503241ad160dc7793
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1603822813:1713975965:Eud9L1q-TLLDJ12-cQdfyn81gkFvKzep3TuWjtwZMOw/8797c41a1f02569c/cbfdf1d05e7a522 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/Sp_xOU08DjqDdFe/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: cbfdf1d05e7a522
Content-Length: 38732
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:55 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: TRqAdRW3RbjzQIFlnPjkWkP94z7IfF3XuR/GzR26DDuzCZoeW4i5sEOHolLff5BdgDzExHfr08gTmcyb3+7x0VhR26t+AklRIQMullGAUyhfBj7BKR215zFImeCVcfiflNyOQzU4C4hLyl17Rr22uA==$NH6SY+4k8HCR6g+ZR1JCIg==
cf-chl-out: +FGnU/DNYvV3B3UPKbZ1qHo6XQBKU8EjKysPxY3xtP510l82Ms/v/LgS9USyz4ed2JltxduI6hSndNCo0beJ/NLkvUvQrEK8iX8kac/X/lE=$zijbGuZPuR2JWO0FCGNa8Q==
vary: accept-encoding
server: cloudflare
cf-ray: 8797c44a28fe569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c44a8976569c/1713979255769/ef319635d1bb62c26b496144e09509dbb0ae69cc1c1fca963e67c18156534906/1qRJP19Zbs8UmRQ | 104.17.3.184 | 401 Unauthorized | 1 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c44a8976569c/1713979255769/ef319635d1bb62c26b496144e09509dbb0ae69cc1c1fca963e67c18156534906/1qRJP19Zbs8UmRQ IP104.17.3.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/8797c44a8976569c/1713979255769/ef319635d1bb62c26b496144e09509dbb0ae69cc1c1fca963e67c18156534906/1qRJP19Zbs8UmRQ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Wed, 24 Apr 2024 17:20:56 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g7zGWNdG7YsJrSWFE4JUJ27CuacwcH8qWPmfBgVZTSQYAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIO8xljXRu2LCa0lhROCVCduwrmnMHB_Klj5nwYFWU0kGABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8797c44f7fc8569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c44a8976569c/1713979255806/9498d9d9538c632c5d5eaf981ace4c3cb7582d63e561ada1763c02910f0667a8/LN4MTgyOe5_oJb9 | 104.17.3.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8797c44a8976569c/1713979255806/9498d9d9538c632c5d5eaf981ace4c3cb7582d63e561ada1763c02910f0667a8/LN4MTgyOe5_oJb9 IP104.17.3.184:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/8797c44a8976569c/1713979255806/9498d9d9538c632c5d5eaf981ace4c3cb7582d63e561ada1763c02910f0667a8/LN4MTgyOe5_oJb9 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Wed, 24 Apr 2024 17:20:56 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20glJjZ2VOMYyxdXq-YGs5MPLdYLWPlYa2hdjwCkQ8GZ6gAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIJSY2dlTjGMsXV6vmBrOTDy3WC1j5WGtoXY8ApEPBmeoABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8797c4517a4f569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1035570313:1713976123:mrcaDTWFdcVvjm2RKXOUGkIj9LkNsNhKEIAOvxgtJLk/8797c44a8976569c/0e5ff3236f88ec8 | 104.17.3.184 | | 90 kB |
URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1035570313:1713976123:mrcaDTWFdcVvjm2RKXOUGkIj9LkNsNhKEIAOvxgtJLk/8797c44a8976569c/0e5ff3236f88ec8 IP104.17.3.184:0
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash12784d263ea11de3e7ac581f401113cd 72610fdc565fb45b104a5f14be89e0a0a93e4859 36cdc00fb9b4b8dbe34ddd0032a8b151fd73d1c7ded6fcb23a40253387d5eb9a
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1035570313:1713976123:mrcaDTWFdcVvjm2RKXOUGkIj9LkNsNhKEIAOvxgtJLk/8797c44a8976569c/0e5ff3236f88ec8 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 0e5ff3236f88ec8
Content-Length: 2759
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:55 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: q0/shn8jMoSutsWYcWPdwXYjZbpil1ZdNgoRT7Y+iPFLgKORNkr9B07FTJPDuutPkVZ+XfYEJjWV97KaXlagX1oxKhxw4ubUVm1ZiM7c94kqse45tt+lsUXNqDohJ48eXjZ1vn4FrL92Y0Lw7hzCiNdZzyPu5gNeOrjagG+7OGdSBiZID7fmuf1Yh2T60x/z1A06WHzTIB6ldiY/A8i05/UNC58lE4VQyu0y4XPdv3qUka8+KdewTdCMVvmTCLhSsvxg6NkyyO6Cy3GeLlXA1b89Lpg1SbXr6BwabEgadIOMz1zdC7/qJoOf9cbbmyRVv/2mVqKHt37q0/MGbt0o8dWaAAXmvw3RTEmeWRKdtUtCw9uvKk8x9U43xSmxfRhuYmf7NnlnxL/OWNN2ZweIe/IgdKDUQSwU9Q1cEw//24c=$a9IJfZ7IX95wSyoMH+eM3g==
vary: accept-encoding
server: cloudflare
cf-ray: 8797c44cbc31569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c44a8976569c/1713979255810/e-jqxwslGhIygSU | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8797c44a8976569c/1713979255810/e-jqxwslGhIygSU IP104.17.3.184:0
File typePNG image data, 65 x 88, 8-bit/color RGB, non-interlaced Hash580dcd4d6c3ecdedc873fe9374f7d952 7ff82c3dc9258d3c946ee26683d080524a442c4f 359f93416e76855dcae8673c8ce500b1a056c765275b4d4fc469bb00bd260d23
GET /cdn-cgi/challenge-platform/h/b/i/8797c44a8976569c/1713979255810/e-jqxwslGhIygSU HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:58 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8797c45b3f49569c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= | 188.114.96.1 | 200 OK | 4.0 kB |
URL User Request GET HTTP/2abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= IP188.114.96.1:443
CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeHTML document, ASCII text, with very long lines (4342), with no line terminators Hash826e4fa2cc3cc710ca75ea929a2fb3ef 3a5a280e00c25845e022b67a557d762d1ac66e47 d238fa80de73f00f7f408b149d47d9b9de3affe9b03620b632d07eec8a10fd19
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nivafollower.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:20:41 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=e9e7697cfe5011ab9fece62b60023014; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lNusKrLK8BN6zPD3CveCzsAKJPLZdSANprZDQX1N2EnBVBf8bWnHe0c6V67lLBNDW1F31X5qXctYgKxKF%2B3andxIRQcZCfJnAUJf2K6k8bW3bCS0erimvIsQP%2Bj7wGLTXn%2FfLx5jVoLoJCtUHrMNVtL76ba21GUGe4yIlDiUvQCXbf0UgrXDo%2FR6GJZ8Ukg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797c3ee1bed5684-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/captcha/style.css | 188.114.96.1 | 200 OK | 4.2 kB |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/captcha/style.css IP188.114.96.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeASCII text, with very long lines (4215), with no line terminators Hash846cbff10057d33e9574f2cbbc5e8255 8c9862bb420c2256d34a5eabf061b470f2687b19 c835b1183e7b37a91a0f53cb018d8ec9e26eb5dd0d0d7349eaadf0f3a5324e45
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /captcha/style.css HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign=
Cookie: PHPSESSID=e9e7697cfe5011ab9fece62b60023014
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:41 GMT
content-type: text/css
last-modified: Mon, 22 Apr 2024 22:01:15 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 718
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4w%2FNeQXMOJPD59n%2FYBc8a6%2FnOf0%2FnrQ2YYTPk9NtOLUpyg6HEO36SmAQjl02266BMjZQEpTy2NsqMqx9%2Bx%2B%2Fofy3GSYHPZF4tT65h2iV%2F8myvgqRQ8%2Fmo%2F5Hkr%2F5Izip5yb0M1FbQ7jY%2BTZo4JI5dlbsO55CsSbFME0xxIcwf27sLiCjPzkqWRoHd7iDJrI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797c3f1ffb556ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/Sp_xOU08DjqDdFe/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal | 104.17.3.184 | 200 OK | 80 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/Sp_xOU08DjqDdFe/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal IP104.17.3.184:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hash6ddd60fb6e9daede6e9df6beb4073cdb e8a61a8dcf369b5fc4922a8177f54eab6d252e3f b44da4db4e986687e87be424bfd7703e71ceba2689a619421b64738e910036d5
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/Sp_xOU08DjqDdFe/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:47 GMT
content-type: text/html; charset=UTF-8
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
origin-agent-cluster: ?1
cross-origin-embedder-policy: require-corp
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
vary: accept-encoding
server: cloudflare
cf-ray: 8797c41a1f02569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/captcha/logo.svg | 188.114.96.1 | 200 OK | 3.2 kB |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/captcha/logo.svg IP188.114.96.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeSVG Scalable Vector Graphics image Hash139acb17c8f845685c1ddbb0d43aa08c 3ee29155a52f1138e4e3b87bb0555878e996154f a39f3d7ce2a6ee2813680e1844dd05fd5364b75c17addc25d231d4f1ed62ec88
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /captcha/logo.svg HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign=
Cookie: PHPSESSID=e9e7697cfe5011ab9fece62b60023014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:41 GMT
content-type: image/svg+xml
last-modified: Mon, 22 Apr 2024 22:01:15 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 718
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ygv%2BwJNe6%2Br7i284R9ewrouRFmSUfWz1aZbzVzNlge3hQ%2Bk7aUog%2FybmJnFeQiyAzlGHRviBKdW06CaUmEYUjIaaYxl1hLtxiihet4yygc9xz0kVZsd6WUbjbVjVFftEWiKtrVxtYVPe16kiW3gvNktYSTY3pPssk2GY%2BmozbR9EPnnmnP3KXFm6GSmi%2BSc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797c3f1ffb956ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8797c44a8976569c | 104.17.3.184 | 200 OK | 444 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8797c44a8976569c IP104.17.3.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size444 kB (444355 bytes) Hash700b57870f74621f5b4c03b41bac35cd b614d0ea2027c294728a7670c052b104e77117f1 46de98c527d33861f6690de51a06baf24ca22bc47f7ade8c0f8e3e1a3cc1d51d
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8797c44a8976569c HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:55 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 8797c44ac9cb569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal | 104.17.3.184 | 200 OK | 80 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal IP104.17.3.184:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hash867ef7d0e7ad50e11b3e057788acfaa6 0359f3e2834160ed833ac87e84c68017933df991 c1df637aa9cf112424cd38ce66e8108f5cee8450d47dce74d637a56bf34da64b
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:41 GMT
content-type: text/html; charset=UTF-8
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-embedder-policy: require-corp
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
document-policy: js-profiling
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-resource-policy: cross-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
origin-agent-cluster: ?1
vary: accept-encoding
server: cloudflare
cf-ray: 8797c3f2db71569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal | 104.17.3.184 | 200 OK | 80 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal IP104.17.3.184:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hash826f7d3d5db1d326a7a9caf821231722 3662ed3bd3424bd5a93b6594d6939507ea3f540b 3945f4aecf0bdfa20eea620a2b235ce2810f235577477780471ecc50bf9e15ac
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv2/-e2rbcvUy2ymTqm/2gnsv/0x4AAAAAAAXcuaO10s84QZ4I/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:20:55 GMT
content-type: text/html; charset=UTF-8
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-embedder-policy: require-corp
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-opener-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 8797c44a8976569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nivafollower.com/.syh/jack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= | 45.156.184.16 | 302 Found | 4.0 kB |
URL User Request POST HTTP/2nivafollower.com/.syh/jack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= IP45.156.184.16:443 ASN#208161 Pars Shabakeh Azarakhsh LLC
CertificateIssuerLet's Encrypt Subjectmail.nivafollower.com Fingerprint35:01:61:49:62:B9:93:CA:17:A7:BD:05:B8:CD:B9:D5:D5:91:1E:B4 ValidityWed, 20 Mar 2024 05:57:45 GMT - Tue, 18 Jun 2024 05:57:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /.syh/jack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign= HTTP/1.1
Host: nivafollower.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 560
Origin: https://nivafollower.com
DNT: 1
Connection: keep-alive
Referer: https://nivafollower.com/.syh/jack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign=
Cookie: PHPSESSID=0mg39rar6uau6jbiu08t1fkdf7
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
location: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/Mjack.wu@slurpmail.net?utm_source=promotions&utm_medium=email&utm_campaign=
vary: Accept-Encoding
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:20:39 GMT
X-Firefox-Spdy: h2
|
|