Report - efficient-pickle-wedelia.glitch.me/?/amFwYW5fZXNjQG1zLmh1YXdlaS5jb20=

Report Overview

Visited public
2023-12-06 06:00:17
Tags
URL
efficient-pickle-wedelia.glitch.me/?/amFwYW5fZXNjQG1zLmh1YXdlaS5jb20=
Finishing URL
pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com
IP / ASN
52.55.211.28
#14618 AMAZON-AES
Title
pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/يالساعة2مساءً،قدنحتاجإلىأيأولادتقنيينآخرينTaimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
images.sftcdn.net	77483	2008-09-15	2017-07-20 18:12:39	2023-12-05 02:36:18	592 B	2.4 kB	104.110.18.102
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-05 06:14:20	1.8 kB	80 kB	142.250.74.99
logo.clearbit.com	27344	2003-07-04	2015-06-30 18:39:45	2023-12-04 06:57:59	1.4 kB	46 kB	54.230.111.35
efficient-pickle-wedelia.glitch.me	unknown	unknown	No data	No data	535 B	1.4 kB	54.210.49.4
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-05 05:09:58	471 B	28 kB	104.17.24.14
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-11-19 18:48:38	1.8 kB	4.2 kB	142.250.74.164
fonts.google.com	31986	1997-09-15	2016-06-16 09:59:26	2023-12-04 12:38:39	1.3 kB	26 kB	142.250.74.14
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2023-12-05 05:18:59	491 B	118 kB	104.18.11.207
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-12-05 11:45:58	350 B	941 B	54.230.218.11
pub-b87b9b3509e646b4acf71341c1b54921.r2.dev	unknown	unknown	No data	No data	4.0 kB	49 kB	104.18.2.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-06 06:00:05	medium	Client IP	Internal IP	ET HUNTING Suspicious Glitch Hosted DNS Request - Possible Phishing Landing
2023-12-06 06:00:05	medium	Client IP	Internal IP	ET HUNTING Suspicious Glitch Hosted DNS Request - Possible Phishing Landing
2023-12-06 06:00:05	medium	Client IP	Internal IP	ET HUNTING Suspicious Glitch Hosted DNS Request - Possible Phishing Landing
2023-12-06 06:00:06	medium	Client IP	54.210.49.4	ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing
2023-12-06 06:00:06	medium	Client IP	Internal IP	ET HUNTING Suspicious Glitch Hosted DNS Request - Possible Phishing Landing
2023-12-06 06:00:07	low	Client IP	Internal IP	ET INFO Clearbit Logo Query in DNS Lookup
2023-12-06 06:00:07	low	Client IP	Internal IP	ET INFO Clearbit Logo Query in DNS Lookup

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-05-09
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-05-09 08:59 Times Seen6763 Hash 7f9fb969ce353c5d77707836391eb28d 62c4042e9ebc691a5372d653b424512a561d1670 2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515 Loading...

	pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com	ScriptElement	1.3 kB	2023-03-08	2025-05-07
Pretty URL pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 16:44 Last Seen2025-05-07 22:46 Times Seen2606 Hash 160f11a1f1b5c685346e0f033b170f66 b8ea0e8e982a0195c3d1ed8f6bfbb31649052960 af555745524b5a2d7e9aa623f85964fad33cda13494e21646a2e597854a7b2d1 Loading...

	pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com	ScriptElement	3.4 kB	2023-03-08	2025-05-07
Pretty URL pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 16:44 Last Seen2025-05-07 22:46 Times Seen2513 Hash c47fcb454544146076bf38a0ad01ed5f b4fe3c348e85b6f631fc0df9f739e9316c560df6 3b9192cc0217fb9406b6e9d9d6b08f78ecef7b87739b999b6d817be0bf23c5fc Loading...

HTTP Transactions (23)

	URL	IP	Response	Size
	ocsp.r2m03.amazontrust.com/	54.230.218.11		471 B
URL ocsp.r2m03.amazontrust.com/ IP 54.230.218.11:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash fd0307f91f1893c4b05e303ab46f7d97 956b8121fd065e49d19d1bef7c650d95866e5420 7b29a236c51af0575fb43c2ab94e4a6f397ffa55609552628c84eac5016d5113 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m03.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Wed, 06 Dec 2023 06:00:00 GMT Last-Modified: Wed, 06 Dec 2023 05:52:00 GMT Server: ECAcc (amb/6B0A) X-Cache: Miss from cloudfront Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: KNZN6iLIyuYlg0_vk_t4lFKXSjSXBc76u3Cy1Qlu53B96V5NDgrobg== Age: 480`

	efficient-pickle-wedelia.glitch.me/?/amFwYW5fZXNjQG1zLmh1YXdlaS5jb20=	54.210.49.4		942 B
URL efficient-pickle-wedelia.glitch.me/?/amFwYW5fZXNjQG1zLmh1YXdlaS5jb20= IP 54.210.49.4:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text Size 942 B (942 bytes) Hash 040479fce009e6b3cbd669d32c9014dd 32046e05a8a5b2fa5d80196ea02befc5ef55dcf8 0377dfb6beb1fb670af24d0051d7e07a927952aec939bf3e8bc48ce7a9cd7d1d HTTP Headers GET /?/amFwYW5fZXNjQG1zLmh1YXdlaS5jb20= HTTP/1.1 Host: efficient-pickle-wedelia.glitch.me User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Wed, 06 Dec 2023 06:00:00 GMT content-type: text/html; charset=utf-8 content-length: 942 x-amz-id-2: IHDeEY0Svu2v9DgzJ52B3uIY/p8tNgGAuZqNjypJH69jP2/zovd+l4tKiVTVO3w+rnzAi8g8qu8= x-amz-request-id: GX7MAKR8X30G8CTE last-modified: Wed, 06 Dec 2023 00:24:36 GMT etag: "040479fce009e6b3cbd669d32c9014dd" x-amz-server-side-encryption: AES256 cache-control: no-cache x-amz-version-id: ktez6La3LROEMRS9kJRpx3E7rzbiWftR accept-ranges: bytes server: AmazonS3 X-Firefox-Spdy: h2`

	pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html	104.18.2.35		4.7 kB
URL pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html IP 104.18.2.35:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1280) Size 4.7 kB (4693 bytes) Hash 4ec75dcfe65cc7e3af05ae5e79c89685 f26afbc721a3f127c0bd605e3353af451bf1c949 13e37107c2ba24f625390521ebbd939af8d98462a92cb9fc9b2d2ea077be5609 HTTP Headers GET /%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html HTTP/1.1 Host: pub-b87b9b3509e646b4acf71341c1b54921.r2.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efficient-pickle-wedelia.glitch.me/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Wed, 06 Dec 2023 06:00:00 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive ETag: W/"4ec75dcfe65cc7e3af05ae5e79c89685" Last-Modified: Tue, 05 Dec 2023 20:48:00 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 83124e5bfc59b503-OSL Content-Encoding: gzip`

	cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js	104.17.24.14	200 OK	27 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 104.17.24.14:443 ASN #13335 CLOUDFLARENET Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type ASCII text, with very long lines (32180) Size 27 kB (26660 bytes) Hash 7f9fb969ce353c5d77707836391eb28d 62c4042e9ebc691a5372d653b424512a561d1670 2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515 HTTP Headers `GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 06 Dec 2023 06:00:00 GMT content-type: application/javascript; charset=utf-8 content-length: 26660 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec4-14983" last-modified: Mon, 04 May 2020 16:11:48 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 1049663 expires: Mon, 25 Nov 2024 06:00:00 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2kEVvCOv%2FhdEvbVmmbzZdiKaYcpg772gEasq3H2CKl5SbwyN6F0x%2Fc%2FSftTASmWxZvT%2F9Xydse8BbxD0AUjjFUxYfE4aXFpDLuns5D82ceiZZiZEJt6jPyiSPseBr9ElMl0sSBWi"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 83124e5e18767129-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	images.sftcdn.net/images/t_app-logo-xl,f_auto,dpr_2/p/7a60e021-3fe5-4334-9e56-7cc6ebae632d/2825932570/roundcube-webmail-roundcube_logo_icon.svg	104.110.18.102	200 OK	1.6 kB
URL GET HTTP/2 images.sftcdn.net/images/t_app-logo-xl,f_auto,dpr_2/p/7a60e021-3fe5-4334-9e56-7cc6ebae632d/2825932570/roundcube-webmail-roundcube_logo_icon.svg IP 104.110.18.102:443 ASN #16625 AKAMAI-AS Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerLet's Encrypt Subjects4-san.cloudinary.com Fingerprint75:55:C4:D1:C8:20:EE:33:27:A0:B6:81:5C:2D:14:B3:CF:05:B4:3A ValidityThu, 30 Nov 2023 07:44:23 GMT - Wed, 28 Feb 2024 07:44:22 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 1.6 kB (1620 bytes) Hash 99724406fe475a16c3ba875b3e4742e7 b0a47e644eb92d1d0dcd7dcd41f393f0da26fb1b 2175ef57d8cb9f2c1d8d1f75f2a4d0cce3963fdf0c8013cafbe5ecd1866a6c2c HTTP Headers GET /images/t_app-logo-xl,f_auto,dpr_2/p/7a60e021-3fe5-4334-9e56-7cc6ebae632d/2825932570/roundcube-webmail-roundcube_logo_icon.svg HTTP/1.1 Host: images.sftcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/webp content-length: 1620 content-disposition: inline; filename="2825932570.webp" etag: "99724406fe475a16c3ba875b3e4742e7" last-modified: Fri, 26 Jun 2020 13:52:47 GMT date: Wed, 06 Dec 2023 06:00:01 GMT cache-control: private, no-transform, immutable, max-age=31536000 access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options access-control-allow-origin: * accept-ranges: bytes timing-allow-origin: * server: Cloudinary strict-transport-security: max-age=604800 vary: Accept,User-Agent x-content-type-options: nosniff server-timing: cld-akam;dur=5;start=2023-12-06T06:00:01.000Z;desc=hit,rtt;dur=3 X-Firefox-Spdy: h2

	pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/assets/css/style.css	104.18.2.35	404 Not Found	6.5 kB
URL GET HTTP/1.1 pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/assets/css/style.css IP 104.18.2.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint91:F0:8B:D3:AA:FC:86:18:F9:F2:29:EB:98:8C:D8:5A:3A:76:5C:CF ValidityWed, 11 Oct 2023 17:13:53 GMT - Tue, 09 Jan 2024 17:13:52 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (611) Size 6.5 kB (6476 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /assets/css/style.css HTTP/1.1 Host: pub-b87b9b3509e646b4acf71341c1b54921.r2.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Wed, 06 Dec 2023 06:00:01 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 83124e5dbd85b503-OSL Content-Encoding: gzip`

	pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/assets/js/script.js	104.18.2.35	404 Not Found	6.5 kB
URL GET HTTP/1.1 pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/assets/js/script.js IP 104.18.2.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint91:F0:8B:D3:AA:FC:86:18:F9:F2:29:EB:98:8C:D8:5A:3A:76:5C:CF ValidityWed, 11 Oct 2023 17:13:53 GMT - Tue, 09 Jan 2024 17:13:52 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (611) Size 6.5 kB (6476 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /assets/js/script.js HTTP/1.1 Host: pub-b87b9b3509e646b4acf71341c1b54921.r2.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Wed, 06 Dec 2023 06:00:01 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 83124e5e093db51e-OSL Content-Encoding: gzip`

	www.google.com/fonts	142.250.74.164		0 B
URL www.google.com/fonts IP 142.250.74.164:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /fonts HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently content-type: application/binary cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 06 Dec 2023 06:00:01 GMT location: https://fonts.google.com/ p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: script-src 'nonce-NfoJSjQiYSgTikB1gN2iaw' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport cross-origin-opener-policy: same-origin-allow-popups server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=511=dVuGug4UNjddIvufke-q0UUJKw1llfnNLwB0cYzbSY_7QFZZLE1d0u9RSBwezlqvTvxrcxT8b7d41nQqG4Lvr85D6keSg6gg4FAH-u_B5TeYoq1hYUA7Zk8e8osWWh7KXJHrOHyUKVm8azxgQuSJaaT04BjpN6MPkp5e-6KUb4Q; expires=Thu, 06-Jun-2024 06:00:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/fonts	142.250.74.164		0 B
URL www.google.com/fonts IP 142.250.74.164:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /fonts HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently content-type: application/binary cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 06 Dec 2023 06:00:01 GMT location: https://fonts.google.com/ p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: script-src 'nonce-D_qh67g_rimX7Ox8bz8kXg' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport cross-origin-opener-policy: same-origin-allow-popups server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=511=iUg3zLnt83Guh28i8llMv2vw0iTGs0j96tcf0GutopcoCqcUF-Oh_trDmcTlqcDGydeJFKdSLGbhVQ5SDFBqC25khk-_lKmBP618O38m_KF_zVWktrXKviR8HS7kptVwsWGjkDg0u5lLmzO6UB4eax_fw0t5i26jQOKH8G81EiI; expires=Thu, 06-Jun-2024 06:00:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.google.com/	142.250.74.14		24 kB
URL fonts.google.com/ IP 142.250.74.14:0 ASN #15169 GOOGLE File type data Size 24 kB (23526 bytes) Hash cf3822fcff99269059af538f2d66d8a2 c5b795bf9782ae25b257a61b7b0f66855abc593b 77ab00b79de2212a5c1fbac589311edfbd1e24e797587fb6469411908b555b7b HTTP Headers `GET / HTTP/1.1 Host: fonts.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/html; charset=utf-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 06 Dec 2023 06:00:01 GMT p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: script-src 'nonce-VkaznyGgqCchve4LXF_E5A' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=511=qCcoResgBbdjsV33R2QNuU1gHDTSmlw_e0OxnF3jyw0zDo20vnQ83moC_M6eua3jFrZKtHq8Bbai7B3z3l8vl4hqVNL8hYvepHN8LF-E_YaD5qiTn6DDL1piXIq3Ufnig6o96njw2tC6vweEKKgHF357Mb3_XmdkHlU0xpL6ThE; expires=Thu, 06-Jun-2024 06:00:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc9.ttf	142.250.74.99	200 OK	21 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc9.ttf IP 142.250.74.99:443 ASN #15169 GOOGLE Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo\012- data Size 21 kB (20828 bytes) Hash ecec6c79a27c8914400d4116e02668aa 3b2880007b93580c4b35e2b31afe2fc9b6fa5923 8a9a74f4455f392ec3e7499cfda6097b536bb4b7f1e529a079c3d953c08b54ca HTTP Headers GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc9.ttf HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 20828 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 04 Dec 2023 23:25:55 GMT expires: Tue, 03 Dec 2024 23:25:55 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:45 GMT content-type: font/ttf vary: Accept-Encoding age: 110046 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc9.ttf	142.250.74.99	200 OK	21 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc9.ttf IP 142.250.74.99:443 ASN #15169 GOOGLE Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto LightRegularVersion 2.137; 2017Roboto-Ligh\012- data Size 21 kB (20847 bytes) Hash 85df2cb76110ce9ce787b45a5266d23a 91187234316d05377268346f4631e2de3bb6affe 4501b0c41bd6ffd12d34114eed5113b9e136f5f1715d7b4348dd1ccb570470f9 HTTP Headers GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc9.ttf HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 20847 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 04 Dec 2023 22:07:34 GMT expires: Tue, 03 Dec 2024 22:07:34 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:41 GMT content-type: font/ttf vary: Accept-Encoding age: 114747 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/assets/js/script.js	104.18.2.35	404 Not Found	6.5 kB
URL GET HTTP/1.1 pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/assets/js/script.js IP 104.18.2.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint91:F0:8B:D3:AA:FC:86:18:F9:F2:29:EB:98:8C:D8:5A:3A:76:5C:CF ValidityWed, 11 Oct 2023 17:13:53 GMT - Tue, 09 Jan 2024 17:13:52 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (611) Size 6.5 kB (6476 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /assets/js/script.js HTTP/1.1 Host: pub-b87b9b3509e646b4acf71341c1b54921.r2.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Wed, 06 Dec 2023 06:00:01 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 83124e6248f8b503-OSL Content-Encoding: gzip`

	logo.clearbit.com/ms.huawei.com	54.230.111.35	200 OK	15 kB
URL GET HTTP/2 logo.clearbit.com/ms.huawei.com IP 54.230.111.35:443 ASN #16509 AMAZON-02 Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerAmazon Subjectclearbit.com FingerprintCE:F9:48:B9:1B:6F:17:74:BE:F2:87:A9:D6:47:48:D7:81:AC:02:31 ValidityMon, 18 Sep 2023 00:00:00 GMT - Thu, 17 Oct 2024 23:59:59 GMT File type PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced\012- data Size 15 kB (14905 bytes) Hash 254b5a2e27ba1f82d04b94a59f08d99f 088f872fb35401341bf9941fece2acca5c942e36 c8dfa325eee5a4b2b4d2a67b2a9ccf61c15f3802aca5ed1642d3ea015bf24c54 HTTP Headers `GET /ms.huawei.com HTTP/1.1 Host: logo.clearbit.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: image/png access-control-allow-origin: * cache-control: public, max-age=2592000 date: Wed, 06 Dec 2023 06:00:02 GMT x-envoy-response-flags: - server: envoy strict-transport-security: max-age=63072000; includeSubDomains; preload x-content-type-options: nosniff x-cache: Hit from cloudfront via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: VvPzxvYphoiolbiLVySIQBlgJJMdhRascTxjeo6Cb3piEZ7zXyOkcQ== X-Firefox-Spdy: h2`

	www.google.com/fonts	142.250.74.164	301 Moved Permanently	0 B
URL GET HTTP/2 www.google.com/fonts IP 142.250.74.164:443 ASN #15169 GOOGLE Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1 ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /fonts HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently content-type: application/binary cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 06 Dec 2023 06:00:01 GMT location: https://fonts.google.com/ p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: script-src 'nonce-NfoJSjQiYSgTikB1gN2iaw' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport cross-origin-opener-policy: same-origin-allow-popups server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=511=dVuGug4UNjddIvufke-q0UUJKw1llfnNLwB0cYzbSY_7QFZZLE1d0u9RSBwezlqvTvxrcxT8b7d41nQqG4Lvr85D6keSg6gg4FAH-u_B5TeYoq1hYUA7Zk8e8osWWh7KXJHrOHyUKVm8azxgQuSJaaT04BjpN6MPkp5e-6KUb4Q; expires=Thu, 06-Jun-2024 06:00:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/fonts	142.250.74.164	301 Moved Permanently	0 B
URL GET HTTP/2 www.google.com/fonts IP 142.250.74.164:443 ASN #15169 GOOGLE Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1 ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /fonts HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently content-type: application/binary cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 06 Dec 2023 06:00:01 GMT location: https://fonts.google.com/ p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: script-src 'nonce-D_qh67g_rimX7Ox8bz8kXg' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport cross-origin-opener-policy: same-origin-allow-popups server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=511=iUg3zLnt83Guh28i8llMv2vw0iTGs0j96tcf0GutopcoCqcUF-Oh_trDmcTlqcDGydeJFKdSLGbhVQ5SDFBqC25khk-_lKmBP618O38m_KF_zVWktrXKviR8HS7kptVwsWGjkDg0u5lLmzO6UB4eax_fw0t5i26jQOKH8G81EiI; expires=Thu, 06-Jun-2024 06:00:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.google.com/	142.250.74.14	200 OK	0 B
URL GET HTTP/2 fonts.google.com/ IP 142.250.74.14:443 ASN #15169 GOOGLE Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: fonts.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/html; charset=utf-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 06 Dec 2023 06:00:01 GMT p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: script-src 'nonce-e6Tp_OHluFnNTKp4YmQTIA' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=511=boNO6DXoLqH8T4d6XQZXxi7hBcx11qFclBsp338ywraklYjLhvFfMv-Roqum07UbU-nvRwkDULtbYskrSwiSKGbmhtzPpwsRhdH4SVRGa3Bcp3km6uopqGuyYU3i3gy4T7vAlc1AY-o2LUIz6O9CHJruGahBEZks62Svl-smEqM; expires=Thu, 06-Jun-2024 06:00:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	logo.clearbit.com/ms.huawei.com	54.230.111.35	200 OK	15 kB
URL GET HTTP/2 logo.clearbit.com/ms.huawei.com IP 54.230.111.35:443 ASN #16509 AMAZON-02 Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerAmazon Subjectclearbit.com FingerprintCE:F9:48:B9:1B:6F:17:74:BE:F2:87:A9:D6:47:48:D7:81:AC:02:31 ValidityMon, 18 Sep 2023 00:00:00 GMT - Thu, 17 Oct 2024 23:59:59 GMT File type PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced\012- data Size 15 kB (14905 bytes) Hash 254b5a2e27ba1f82d04b94a59f08d99f 088f872fb35401341bf9941fece2acca5c942e36 c8dfa325eee5a4b2b4d2a67b2a9ccf61c15f3802aca5ed1642d3ea015bf24c54 HTTP Headers `GET /ms.huawei.com HTTP/1.1 Host: logo.clearbit.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: image/png access-control-allow-origin: * cache-control: public, max-age=2592000 date: Wed, 06 Dec 2023 06:00:02 GMT x-envoy-response-flags: - server: envoy strict-transport-security: max-age=63072000; includeSubDomains; preload x-content-type-options: nosniff x-cache: Miss from cloudfront via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: zIo-CHJ1hUo8GHfaFz7vMAt4jzNpQ0T8dxAcwZNm858thtTNLJ6IVQ== X-Firefox-Spdy: h2`

	logo.clearbit.com/ms.huawei.com	54.230.111.35	200 OK	15 kB
URL GET HTTP/2 logo.clearbit.com/ms.huawei.com IP 54.230.111.35:443 ASN #16509 AMAZON-02 Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerAmazon Subjectclearbit.com FingerprintCE:F9:48:B9:1B:6F:17:74:BE:F2:87:A9:D6:47:48:D7:81:AC:02:31 ValidityMon, 18 Sep 2023 00:00:00 GMT - Thu, 17 Oct 2024 23:59:59 GMT File type PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced\012- data Size 15 kB (14905 bytes) Hash 254b5a2e27ba1f82d04b94a59f08d99f 088f872fb35401341bf9941fece2acca5c942e36 c8dfa325eee5a4b2b4d2a67b2a9ccf61c15f3802aca5ed1642d3ea015bf24c54 HTTP Headers `GET /ms.huawei.com HTTP/1.1 Host: logo.clearbit.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: image/png access-control-allow-origin: * cache-control: public, max-age=2592000 date: Wed, 06 Dec 2023 06:00:02 GMT x-envoy-response-flags: - server: envoy strict-transport-security: max-age=63072000; includeSubDomains; preload x-content-type-options: nosniff x-cache: Hit from cloudfront via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: h8Xx6ol9jAXtG0w1igy4qQMQ7zcuO4Y7MgqL_m98ynHJ9lmYNVMwtQ== X-Firefox-Spdy: h2`

	fonts.google.com/	142.250.74.14	200 OK	0 B
URL GET HTTP/2 fonts.google.com/ IP 142.250.74.14:443 ASN #15169 GOOGLE Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: fonts.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/html; charset=utf-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Wed, 06 Dec 2023 06:00:01 GMT p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: script-src 'nonce-VkaznyGgqCchve4LXF_E5A' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /cspreport cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=511=qCcoResgBbdjsV33R2QNuU1gHDTSmlw_e0OxnF3jyw0zDo20vnQ83moC_M6eua3jFrZKtHq8Bbai7B3z3l8vl4hqVNL8hYvepHN8LF-E_YaD5qiTn6DDL1piXIq3Ufnig6o96njw2tC6vweEKKgHF357Mb3_XmdkHlU0xpL6ThE; expires=Thu, 06-Jun-2024 06:00:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html	104.18.2.35	200 OK	24 kB
URL User Request GET HTTP/1.1 pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html IP 104.18.2.35:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint91:F0:8B:D3:AA:FC:86:18:F9:F2:29:EB:98:8C:D8:5A:3A:76:5C:CF ValidityWed, 11 Oct 2023 17:13:53 GMT - Tue, 09 Jan 2024 17:13:52 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1280) Size 24 kB (23563 bytes) Hash 4ec75dcfe65cc7e3af05ae5e79c89685 f26afbc721a3f127c0bd605e3353af451bf1c949 13e37107c2ba24f625390521ebbd939af8d98462a92cb9fc9b2d2ea077be5609 HTTP Headers GET /%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html HTTP/1.1 Host: pub-b87b9b3509e646b4acf71341c1b54921.r2.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efficient-pickle-wedelia.glitch.me/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Wed, 06 Dec 2023 06:00:00 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive ETag: W/"4ec75dcfe65cc7e3af05ae5e79c89685" Last-Modified: Tue, 05 Dec 2023 20:48:00 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 83124e5bfc59b503-OSL Content-Encoding: gzip`

	maxcdn.bootstrapcdn.com/bootstrap/3.3.4/css/bootstrap.min.css	104.18.11.207	200 OK	117 kB
URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.4/css/bootstrap.min.css IP 104.18.11.207:443 ASN #13335 CLOUDFLARENET Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04 ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT File type ASCII text, with very long lines (65371) Size 117 kB (117305 bytes) Hash eedf9ee80c2faa4e1b9ab9017cdfcb88 ed29315e0ffb3f14382431f2724235bf67f44eb3 f04b517ba5d6a0510485689a3e42dac000f51640fd71b986804cba178eae42a5 HTTP Headers `GET /bootstrap/3.3.4/css/bootstrap.min.css HTTP/1.1 Host: maxcdn.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 06 Dec 2023 06:00:00 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 etag: W/"eedf9ee80c2faa4e1b9ab9017cdfcb88" last-modified: Mon, 25 Jan 2021 22:03:58 GMT cdn-cachedat: 08/04/2023 12:50:24 cdn-proxyver: 1.04 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 722 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-status: 200 cdn-requestid: 7e74c5fea2151758aaf7c8cf1f839c4a cdn-cache: HIT cf-cache-status: HIT age: 944420 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 83124e5dd8325685-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf	142.250.74.99	200 OK	36 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf IP 142.250.74.99:443 ASN #15169 GOOGLE Requested by https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/%D9%8A%D8%A7%D9%84%D8%B3%D8%A7%D8%B9%D8%A92%D9%85%D8%B3%D8%A7%D8%A1%D9%8B%D8%8C%D9%82%D8%AF%D9%86%D8%AD%D8%AA%D8%A7%D8%AC%D8%A5%D9%84%D9%89%D8%A3%D9%8A%D8%A3%D9%88%D9%84%D8%A7%D8%AF%D8%AA%D9%82%D9%86%D9%8A%D9%8A%D9%86%D8%A2%D8%AE%D8%B1%D9%8A%D9%86Taimatuhaqtitiyumayungataima.html#japan_esc@ms.huawei.com Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-Regularhtt\012- data Size 36 kB (36216 bytes) Hash a0d084a3e8176664e75f8eca3ebea96c 324ec20b91392a6871d7846e0ff2972447a1b2b8 a9ef021078603005c0b08fba881f1a7eb62ef213238021f3e8a4a00daa60b9d6 HTTP Headers GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev DNT: 1 Connection: keep-alive Referer: https://pub-b87b9b3509e646b4acf71341c1b54921.r2.dev/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 20776 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 05 Dec 2023 15:01:25 GMT expires: Wed, 04 Dec 2024 15:01:25 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:42 GMT content-type: font/ttf vary: Accept-Encoding age: 53916 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (23)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type