{"report_id":"4cfff667-4ddf-41b9-95b8-44864fb18a9b","version":6,"status":"done","tags":["phishing","microsoft","outlook"],"date":"2023-11-29T16:59:50Z","url":{"schema":"http","addr":"clickproxy.retailrocket.net/?url=https://kertazs.info/new/css/vmnnlc////dG9tLnJ1c3NlbGxAaW50cmFkaWVtLmNvbQ==","fqdn":"clickproxy.retailrocket.net","domain":"retailrocket.net","tld":"net"},"ip":{"addr":"193.17.93.93","port":0,"asn":210756,"as":"G-Core Rus LLC","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"title":"Loading"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T10:03:51Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"clickproxy.retailrocket.net","ip":{"addr":"193.17.93.93","port":0,"asn":210756,"as":"G-Core Rus LLC","country":"Russia","country_code":"RU"},"domain_registered":"2014-04-16","domain_rank":0,"first_seen":"2017-12-19 14:04:59","last_seen":"2023-11-26 01:06:27","alert_count":0,"request_count":1,"received_data":530,"sent_data":574,"comment":"","tags":null,"fingerprints":null},{"fqdn":"kertazs.info","ip":{"addr":"91.209.70.135","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"domain_registered":"2023-11-26","domain_rank":0,"first_seen":"2023-11-28 14:20:22","last_seen":"2023-11-29 02:56:40","alert_count":1,"request_count":1,"received_data":261,"sent_data":566,"comment":"","tags":null,"fingerprints":null},{"fqdn":"iswjukwfxi.mbhaj.ru","ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-11-28","domain_rank":0,"first_seen":"2023-11-29 16:40:34","last_seen":"2023-11-29 16:40:34","alert_count":1,"request_count":16,"received_data":454970,"sent_data":7899,"comment":"","tags":null,"fingerprints":null},{"fqdn":"challenges.cloudflare.com","ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":0,"first_seen":"2021-10-20 07:02:03","last_seen":"2023-11-29 08:11:22","alert_count":0,"request_count":9,"received_data":427062,"sent_data":5690,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.socket.io","ip":{"addr":"143.204.55.115","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2010-04-18","domain_rank":62068,"first_seen":"2015-03-23 23:14:03","last_seen":"2023-11-28 17:25:06","alert_count":0,"request_count":1,"received_data":46488,"sent_data":428,"comment":"","tags":null,"fingerprints":null},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":634,"first_seen":"2012-05-21 19:28:02","last_seen":"2023-11-29 08:06:50","alert_count":0,"request_count":1,"received_data":90088,"sent_data":427,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/764o/myscr189528.js","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"01073bf4d54cdb88cef1e3a5e2a161b0","sha1":"b4b3d656c93b658cc0e248fef8ab737aaae6042f","sha256":"ea374b87d6a44955db37b7858115c46f8096ead88394cb6fed03121463fe9cc3","sha512":"0ab1ad89240f988cfba96b3fd7af894566edeec44c923e8e63d6ef4163a911f9d9d4481c3a311f206bcedb4095d16c585f6dea322210e3b079cdc836873ab6db","ssdeep":"384:b3r5u9kUNplu0Ny8ilpfRVC0QBLKiPpGFi2S4gAhfYPAWwOaYYS4genJWW32F5IP:b75uC4lhVKS8q4gAmYeGtlVL","tlshash":"7ec2c9181e04efb0927f4b8385919a881934eb9bfbc4ec5d80979ad3f729366c6d7c44","size":27839,"data":"","first_seen":"2023-11-29T16:40:59Z","last_seen":"2023-12-06T03:13:39Z","times_seen":313,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=82dc66e8be470b55","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0222d547e16fbce6af1eb7593911cff5","sha1":"b11742bcfcbd408b2292ef611c6b1a0c9aeecbff","sha256":"5aaec2d832d74278721fe0e0aff50140c12fe4f688cbb7f8927ddb364d4e9433","sha512":"dc7f3c9c0adc1cc23e780638193612047b292eb618920a68871cae30adc3e6002f4d24e94241b19fd3b2426bd521988e3eb7c75c1691b44ef7e5eeab64f2a24d","ssdeep":"3072:kphzf+AgCGiB8huJwUA/7+zJgzM4EWYnafM:Glf+ANfsf/7GaMZJ","tlshash":"e80471cc7b81bc59053379787027321670af3e456c3c19daea01b5d42af631a92d7aee","size":180008,"data":"","first_seen":"2023-11-29T17:40:55Z","last_seen":"2023-11-29T18:45:21Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/api.js?render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6142a5f5c66e2c1be52ee9506a565962","sha1":"c3b39e8352efd1e0619b6dd62af8b2a917622868","sha256":"51cd12da61a7401c73472b2ac77067adfa30e9fc0545b4b7c240e9154e011fc7","sha512":"3de194e4c8f32703cfee9e2a48230d21301e28a39beefb36dcb2b8df26b962b3a508e7fd8fe55aca2f619293e293cdf64459bf5d91526cbceda770396765d5e2","ssdeep":"768:3YpyCIUTKuBT1ytljuXeMDKLFn76p+B5nLZ73akHgMO4B4oq0HVi:30nKuBT1Yj7MDCKp","tlshash":"9ff229993187343187ee41e0207b67877339ba3ae58cc840d85bc97539bcd8ad137ba9","size":34254,"data":"","first_seen":"2023-11-07T13:44:12Z","last_seen":"2023-11-30T20:53:42Z","times_seen":32842,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","size":89501,"data":"","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-03T19:30:55.929495Z","times_seen":444585,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/js/pages-head-top-web.min.js?cb=1701277177856","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a11baab9cf587c58833a0646864f045e","sha1":"3d72375b703509d42c569a9670e4e3ffef34c119","sha256":"b325e049a223118610d89fa42c186efc2c718a9138f30c70cefa764c2787b0dc","sha512":"0c9e7e7a68f56a6eccae496abc8047eb013782777436954accd27fad0c75e3a54924f8500fce3cb90399807aabf513b0253dfdb448589eaa27291d2bcb1991c7","ssdeep":"","tlshash":"a541e21030154b6d4a7f238ef4715868bdd583263525b890c0afb89cb4b2fd605a6f77","size":2394,"data":"","first_seen":"2023-11-09T15:46:52Z","last_seen":"2024-08-20T20:16:30.383407Z","times_seen":4017,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1c862db5f2555377c2dc1e62ed7b3981","sha1":"c29e6dc25c08a70995127ec13ded6f80d9a36174","sha256":"27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac","sha512":"31143265b96385ef4b575b72591775139057dff85891be61591e3d55259b6d1dc95d86a0feec40c801d38e64278cfbe50c3c2a16757f986ad40f716935bf2bb2","ssdeep":"","tlshash":"0c8000ac38802000803328e8002fa8aaa020083030800e022a02e8888cb222c822a8ae","size":26,"data":"","first_seen":"2023-04-11T21:13:06Z","last_seen":"2026-04-03T19:30:30.398571Z","times_seen":263973,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/js/pages-head-web.min.js?cb=1701277178624","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e2663af643d013c14c8124da541ca2d0","sha1":"6fdff694fa243006c25083b91ec51aa28f8568a7","sha256":"31ae6827f3782d745a595d0b9c858aed76784fb6b8a050792bcd869c484363dd","sha512":"3b5ce5d038d551473459bb31fe3ac6415259eae80a0c0269bcb3533c25b2222e5da16d10c5d1df010d07de2e3f6a6ecedca01aa69e450b1a1d38f67a41f7ce0e","ssdeep":"","tlshash":"c7200000000000000c300000000000000000000000000c000003000000000000000000","size":9451,"data":"","first_seen":"2023-11-23T23:16:43Z","last_seen":"2024-08-20T18:07:12.684101Z","times_seen":3141,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"48264f476354a5105ee5ee7a9fae9089","sha1":"ab3d6c6ec1496b5ce78026744d64c0550745e4fc","sha256":"249d0382a275f37617c771e5783c7b68a292e4ff68870d3b165601867253e083","sha512":"2475cede5260932dc60000b03bd5ee3a32d2838cc0fb1ee2424dc1944a2410d4743a83e0216655d01d5506ad50f44f98f6fa90b08f1d1210d2ef4a5191bed7db","ssdeep":"","tlshash":"79e0d8246c2246501d5a906eb977a2983ca111033402f1a63acfab295f32fc684f9df4","size":371,"data":"","first_seen":"2023-11-29T16:40:59Z","last_seen":"2024-08-20T17:27:19.965522Z","times_seen":313,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.socket.io/4.6.0/socket.io.min.js","fqdn":"cdn.socket.io","domain":"socket.io","tld":"io"},"ip":{"addr":"143.204.55.115","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"80f5b8c6a9eeac15de93e5a112036a06","sha1":"f7174635137d37581b11937fc90e9cb325077bce","sha256":"0401de33701f1cad16ecf952899d23990b6437d0a5b7335524edf6bdfb932542","sha512":"b976a5f02202439d94c6817d037c813fa1945c6bb93762284d97ff61718c5b833402f372562034663a467fdbaa46990de24cb1e356392340e64d034e4ba1b4e4","ssdeep":"384:1ZS0CCnasl8gRR/PoPez+iCMN0Fkiw2Jh4RWdRGhAjbp2ChPL8cYRGv5MRUK6np9:/CCnVl7tUkBxkdRGOfDiY5C5MAn5GY2","tlshash":"1423a488f2a1b06187e37165443f110ba27a746964c9c18cf639d9f19eb8ece7123f79","size":45806,"data":"","first_seen":"2023-04-05T03:09:50Z","last_seen":"2026-04-03T09:57:49.448884Z","times_seen":39623,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a53a6ba69ff80a724b741664d2f1932f","sha1":"938f3de541fda3270c3d12685a5ab17612050d7a","sha256":"c9209c29faacd31ca5fff6bc5e60862593e2bff6815a30652104a107b77dc52d","sha512":"9bca8f885ac8550ecbc3937a465e8d62a8635f18691fe3e829e60d9236a60f14f8a92e26c1c8d95bdbd03ca1fbc40aa7bf3ed2fd0943375750332cc9abc75fc9","ssdeep":"","tlshash":"e151c5f6c4fa4213a6996260025f76412930025b0c88b9797fccc50d9f6d96f01b07c4","size":3100,"data":"","first_seen":"2024-08-20T17:26:48.644331Z","last_seen":"2024-08-20T17:26:48.644331Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":[{"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-03T19:31:03.201931Z","times_seen":664974,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"write":[{"md5":"a8e741d31987a2b413ec1e4a38ef8e83","sha1":"dd875c5bf789350a87b0a2402c3b9c79844c41ce","sha256":"f2d2665f059d9475c8145ce7b6230fe66211706da80dafbc477f5f769515aff0","sha512":"27b737dd054ee0ba48b8dcb6c393658614f7eef34d60b209511e2a98ab70b4a6f8a63c3200173cc62a9bb7afff19dec8836a58352abc1be334a6e58b7883dc61","ssdeep":"96:rJxrYlcCC3HZr5k9ZBDZU4coP9uhYWWNuCuDf56ywUvKg:k/+HSxPQhYSDsHg","tlshash":"dea14362a5b29765ed3240b223a29bf8f8454003b706887576d7630f5ff6bf1c482be4","size":4763,"data":"","first_seen":"2023-11-29T16:40:59Z","last_seen":"2024-08-20T17:27:19.975501Z","times_seen":313,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"a27c88365ce7cd8f68390c4c024e29e1","sha1":"1d15a8d192608f93096ef8d9aa623c360dbb7351","sha256":"0ca2b3df8f04565300bafcd6c929a1d310d2a761ff9f8dda200f3f6cffab50ce","sha512":"1ce1d149845e13e3f312f848dcbd973d241a0815da5aa7202a2db68160a84a21e9585bc115a3020ffc995139a8a25f44c0f28f51e5f9a9099753708e937d6584","ssdeep":"","tlshash":"e671c264acf3509185cbd30cbbe0ed861be0b1a3919a5656bb4c874ec7857ec8957f02","size":3574,"data":"","first_seen":"2023-11-07T13:07:13Z","last_seen":"2024-08-20T20:33:21.268002Z","times_seen":72071,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"http","addr":"clickproxy.retailrocket.net/?url=https://kertazs.info/new/css/vmnnlc////dG9tLnJ1c3NlbGxAaW50cmFkaWVtLmNvbQ==","fqdn":"clickproxy.retailrocket.net","domain":"retailrocket.net","tld":"net"},"ip":{"addr":"193.17.93.93","port":0,"asn":210756,"as":"G-Core Rus LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-29T16:59:36.822354031Z","timestamp":1701277176822,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /?url=https://kertazs.info/new/css/vmnnlc////dG9tLnJ1c3NlbGxAaW50cmFkaWVtLmNvbQ== HTTP/1.1\r\nHost: clickproxy.retailrocket.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Wed, 29 Nov 2023 16:59:32 GMT\r\ncontent-type: application/json\r\ncontent-length: 0\r\nlocation: https://kertazs.info/new/css/vmnnlc////dG9tLnJ1c3NlbGxAaW50cmFkaWVtLmNvbQ==?rr_mailid_proxy=test_tracking_id\r\nx-amzn-requestid: f61afdc4-ab0f-4466-abcc-0b6eb55bb0a2\r\nx-amz-apigw-id: PK4ePEr0joEEqPg=\r\ncache-control: no-cache, no-store, must-revalidate\r\nx-amzn-trace-id: Root=1-65676df4-5d2bf68662753f813303e054;Sampled=0;lineage=a0613a6b:0\r\npragma: no-cache\r\nx-node: m9p-up-gc69\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T19:31:03.603551Z","times_seen":13300818,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"kertazs.info/new/css/vmnnlc////dG9tLnJ1c3NlbGxAaW50cmFkaWVtLmNvbQ==?rr_mailid_proxy=test_tracking_id","fqdn":"kertazs.info","domain":"kertazs.info","tld":"info"},"ip":{"addr":"91.209.70.135","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-29T16:59:36.963772115Z","timestamp":1701277176963,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /new/css/vmnnlc////dG9tLnJ1c3NlbGxAaW50cmFkaWVtLmNvbQ==?rr_mailid_proxy=test_tracking_id HTTP/1.1\r\nHost: kertazs.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 29 Nov 2023 16:59:32 GMT\r\nServer: Apache\r\nrefresh: 0;url=https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T19:31:03.603551Z","times_seen":13300818,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/764o/myscr189528.js","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:37.707Z","timestamp":1701277177707,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /764o/myscr189528.js HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:33 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 29 Nov 2023 14:23:04 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 4738\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=PzrICyJJXmnree4OGdaXXY1YHZ%2Fl7rtan8ivIHg9WVbHmS0vw%2Fm%2Bsvlneuq%2B%2BuaCwzCbFptWXv1%2FhGyjVM4kJ89gvRWWcLZh4I56VNU29YjAsNSfPupmDYkCibwEFtQgnzaMgSmq\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 82dc66de0e6c56c3-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":38551,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"01073bf4d54cdb88cef1e3a5e2a161b0","sha1":"b4b3d656c93b658cc0e248fef8ab737aaae6042f","sha256":"ea374b87d6a44955db37b7858115c46f8096ead88394cb6fed03121463fe9cc3","sha512":"0ab1ad89240f988cfba96b3fd7af894566edeec44c923e8e63d6ef4163a911f9d9d4481c3a311f206bcedb4095d16c585f6dea322210e3b079cdc836873ab6db","ssdeep":"384:b3r5u9kUNplu0Ny8ilpfRVC0QBLKiPpGFi2S4gAhfYPAWwOaYYS4genJWW32F5IP:b75uC4lhVKS8q4gAmYeGtlVL","tlshash":"7ec2c9181e04efb0927f4b8385919a881934eb9bfbc4ec5d80979ad3f729366c6d7c44","first_seen":"2023-11-29T16:40:59Z","last_seen":"2023-12-06T03:13:39Z","times_seen":313,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/fonts/GDSherpa-bold.woff","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.650Z","timestamp":1701277178650,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/fonts/GDSherpa-bold.woff HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:34 GMT\r\ncontent-type: font/woff\r\ncontent-length: 35970\r\nlast-modified: Thu, 24 Aug 2023 14:00:22 GMT\r\netag: \"8c82-603aba6250980\"\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=kHIu%2FMzzRvBJ135Cgl8kH13x4j3Y5CE4qbwaMCHPTSSgMIMVN%2F2IY9FaFxsE8HO0qnlIR9VVqNyxdZjdOhaPBGzJqBxtgcSfoYPBnFkCvLHZj%2FPNmvDAtAOgVCCv\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4737\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-ray: 82dc66e3ee5656c3-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35970,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 35970, version 1.0\\012- data","md5":"496b7bbde91c7dc7cf9bbabbb3921da8","sha1":"2bd3c406a715ab52dad84c803c55bf4a6e66a924","sha256":"ae40a04f95df12b0c364f26ab691dc0c391d394a28bcdb4aeacfaca325d0a798","sha512":"e02b40fea8f77292b379d7d792d9142b32dfcb887655a2d1781441227dd968589bfc5c00691b92e824f7edb47d11eba325ade67ad08a4af31a3b0ddf4bb8b967","ssdeep":"768:GJiLCleIZlcBvahjeheOQKskmCp9sE9gBkGgvU+7aAXDqWOtU:GJo9IgMKsQzJ9gBkZbuAXDqWV","tlshash":"a4f2d09831594c2aacbd58232b71d9df21e38f61ba42029ba193e4cd9c4714dbb1e47f","first_seen":"2023-05-09T17:48:02Z","last_seen":"2026-04-03T14:38:11.334972Z","times_seen":90449,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/fonts/GDSherpa-regular.woff2","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.651Z","timestamp":1701277178651,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/fonts/GDSherpa-regular.woff2 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:34 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 28584\r\nlast-modified: Thu, 24 Aug 2023 14:00:24 GMT\r\netag: \"6fa8-603aba6438e00\"\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nage: 4737\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=SkXLotd%2F%2B8NsmwKt2JnC38UThP0yRAmBhkxlEi%2F0adhrAJs8rshA9lhKyrKySVuLcx9znTEMSUCioCvs5wixn%2FgxhsorSxUvC6mBsk4GVV2F%2F3gwGSlIb1vUYUte\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-ray: 82dc66e3ee5856c3-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28584,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28584, version 1.66\\012- data","md5":"17081510f3a6f2f619ec8c6f244523c7","sha1":"87f34b2a1532c50f2a424c345d03fe028db35635","sha256":"2c7292014e2ef00374aeb63691d9f23159a010455784ee0b274ba7db2bcca956","sha512":"e27976f77797ad93160af35714d733fd9e729a9981d8a6f555807981d08d8175e02692aa5ea6e59cebd33895f5f6a3575692565fdd75667630dab158627a1005","ssdeep":"768:8n53CNftp4NM/2qxGvtAG9fvpWYSTvlj6OIqrd1xUseRc:85SNfQS2ntfxvpWYSTcfMERc","tlshash":"b4d2e0ed44d2c62988f7638902690111f27898ffe52d7db3c19da0b27245d7ea3a8b09","first_seen":"2023-04-09T18:51:15Z","last_seen":"2026-04-03T19:28:00.387078Z","times_seen":100332,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/fonts/GDSherpa-bold.woff2","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.649Z","timestamp":1701277178649,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/fonts/GDSherpa-bold.woff2 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:34 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 28000\r\nlast-modified: Thu, 24 Aug 2023 14:00:16 GMT\r\netag: \"6d60-603aba5c97c00\"\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=jlJTxHyDVJZCnhFt%2BbeGLcguWqHMdbODms9vhBRH0PpWSTU%2FZPrlWvxqHHZVo5xdUVnQXbGnwjyUKrQ56m6IA01EOAR%2BaGRqoJ6erEDWiL5%2Ft%2Fco9tkUS9k%2BrdkI\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4737\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-ray: 82dc66e3ee5356c3-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28000,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28000, version 1.66\\012- data","md5":"a4bca6c95fed0d0c5cc46cf07710dcec","sha1":"73b56e33b82b42921db8702a33efd0f2b2ec9794","sha256":"5a51d246af54d903f67f07f2bd820ce77736f8d08c5f1602db07469d96dbf77f","sha512":"60a058b20fcb4f63d02e89225a49226ccd7758c21d9162d1b2f4b53bba951b1c51d3d74c562029f417d97f1fca93f25fdd2bc0501f215e3c1ef076810b54dd06","ssdeep":"768:NDT1rKvlJOE1AgLlnGj8H58AJUcl5I17ML7FfNHubNIphqb:NDtKvyAhjHeACcl21YL7KNW+","tlshash":"cfc2f1878fd02879a72dfeb80252903197d00de93fea42318d99b70fe683987515e272","first_seen":"2023-04-09T13:59:19Z","last_seen":"2026-04-03T17:57:44.813184Z","times_seen":94555,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/fonts/GDSherpa-regular.woff","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.652Z","timestamp":1701277178652,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/fonts/GDSherpa-regular.woff HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:34 GMT\r\ncontent-type: font/woff\r\ncontent-length: 36696\r\nlast-modified: Thu, 24 Aug 2023 14:00:28 GMT\r\netag: \"8f58-603aba6809700\"\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=%2BhvOclz4jaIlyPp5Mse%2Fq7rMWp3kp6VJSzBx7Do8cBCxe%2BQet9OBXO3%2BZzfAy0TgDzQdfybczJLbJJRC2GJz2mB79GMQSTi0qPXFjpLhUO%2FCrEWks%2B%2BodNkSUh7h\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4737\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-ray: 82dc66e3ee5956c3-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36696,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 36696, version 1.0\\012- data","md5":"a69e9ab8afdd7486ec0749c551051ff2","sha1":"c34e6aa327b536fb48d1fe03577a47c7ee2231b8","sha256":"fd78a1913db912221b8ead1e62fad47d1ff0a9fa6cd88d3b128a721ad91d2faf","sha512":"9a0e4297282542b8813f9cc85b2ccb09663ce281f64503f9a5284631881da9aacf7649553bf1423d941f01b97e6bc3ba50ab13e55e4b7b61c5aa0a4adf4d390f","ssdeep":"768:lvJo4KciQZYjebVq19lKPtHAQ/l4rj2bqkiHShpeSUOR4OqWOgaU:lhH3rVq1PKP432tSSh4SUORHqWcU","tlshash":"31f2f15d76443e8cf06a245836ad2dd6a423171247138f8709de72bbd14f120f65aaff","first_seen":"2023-05-09T17:48:02Z","last_seen":"2026-04-03T14:38:11.342242Z","times_seen":90380,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/fonts/GDSherpa-vf.woff2","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.654Z","timestamp":1701277178654,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/fonts/GDSherpa-vf.woff2 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:34 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 43596\r\nlast-modified: Thu, 24 Aug 2023 14:00:36 GMT\r\netag: \"aa4c-603aba6faa900\"\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=8D4dAceQRHTJkTrZdBXOkox15TlZzo8ZRzZkrvVAPKviyP3xREkZsMeTaeYpcOo1IyYIZVt13fid0DTEdkzfh1G8MZwPe4rRo8U7GM6c%2FNz3ciVU91MqXJ%2B39HB2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4736\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-ray: 82dc66e3ee5b56c3-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43596,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43596, version 1.0\\012- data","md5":"2a05e9e5572abc320b2b7ea38a70dcc1","sha1":"d5fa2a856d5632c2469e42436159375117ef3c35","sha256":"3efcb941aaddaf4aea08dab3fb97d3e904aa1b83264e64b4d5bda53bc7c798ec","sha512":"785ab5585b8a9ed762d70578bf13a6a69342441e679698fd946e3616ef5688485f099f3dc472975ef5d9248afaad6da6779813b88aa1db60abe2cc065f47eb5f","ssdeep":"768:b0nfc/3Osy1fo0tBBFF/GGXfN2ZHKTBUwL+BR49qCow3Z3HuvJ5+xXtTgXHk6/:b0fU3OdhFF/xNOoZc49ow3Z3HO+xX1mf","tlshash":"e2130258592578a9eb43bd49f00c6e64c296b3d8f5832b62334a04f0bff651620fe797","first_seen":"2023-04-18T03:10:28Z","last_seen":"2026-04-03T14:38:11.33698Z","times_seen":91843,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/fonts/GDSherpa-vf2.woff2","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.655Z","timestamp":1701277178655,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/fonts/GDSherpa-vf2.woff2 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:34 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 93276\r\nlast-modified: Thu, 24 Aug 2023 14:00:32 GMT\r\netag: \"16c5c-603aba6bda000\"\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=8AI8aWX190%2BD1JydHys0VApYP%2BZnrwW6Uj1vKzDzTSl4SO5mC5AWBODYyBVk0wdD6HdWZh7qxjt0j7yadywZgY6Yn5PtA%2B1thS%2BfZO01f5eyF1tORyqNrvcLeE6E\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4736\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-ray: 82dc66e3ee5c56c3-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":93276,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 93276, version 1.0\\012- data","md5":"bcd7983ea5aa57c55f6758b4977983cb","sha1":"ef3a009e205229e07fb0ec8569e669b11c378ef1","sha256":"6528a0bf9a836a53dfd8536e1786ba6831c9d1faa74967126fddf5b2081b858c","sha512":"e868a2702ca3b99e1abbcbd40b1c90b42a9d26086a434f1cbae79dfc072216f2f990fec6265a801bc4f96db0431e8f0b99eb0129b2ee7505b3fdfd9bb9bafe90","ssdeep":"1536:Dy7KSLv+MMqDeeIgDFSxpuQP7ObnKSWBO61LlRzSSAT6YmkSzOu7Be0OB53jIH4I:Dy7JD+net+puI7ObKHVhTSSlYmk4OuWa","tlshash":"d293029c71ec79c19e00616e94c92535f89fdab0f049d3fa9a4ed85b927c369e343b10","first_seen":"2023-05-01T02:20:29Z","last_seen":"2026-04-03T14:38:11.338063Z","times_seen":91677,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/css/pages-okta.css?cb=1701277178624","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.643Z","timestamp":1701277178643,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/css/pages-okta.css?cb=1701277178624 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:35 GMT\r\ncontent-type: text/css\r\ncontent-length: 0\r\nlast-modified: Wed, 08 Nov 2023 20:47:39 GMT\r\netag: \"0-609aa32aa0b88\"\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=F4d%2FRqugoqr6Mq38BIWWNsIhO31zGy%2Bmm6wh8c4tPG%2FtykUkKJ5azgcjEuQmWe5c%2F4rMAabHE6Hk6mzgNy63EVsh%2FhAhbEl%2FlZsYbMlBC501SNLSKlTF4ZqsH2Aq\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: MISS\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-ray: 82dc66e3de4256c3-OSL\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/css","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T19:31:03.603551Z","times_seen":13300818,"resource_available":true,"data":null}},"time_used":738,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":738,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:39.423Z","timestamp":1701277179423,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:35 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\ncontent-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: cross-origin\r\ndocument-policy: js-profiling\r\norigin-agent-cluster: ?1\r\npermissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()\r\nreferrer-policy: same-origin\r\nserver: cloudflare\r\ncf-ray: 82dc66e8be470b55-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":72918,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (40091)","md5":"258481417adc386f2437d182c817e486","sha1":"4995774f1cecfc855dbb15170529ff9fb7376610","sha256":"cdb114d57d95ff2ca24340a9837dbfbea0c1d73c16efa31973eb77aaff208ade","sha512":"f52ca82319d9e6ea4e25f5b3c07a86248f85cfc0dfa01cf78fcd230e51d49e2ed09658e4f0c877a3010885e9f340b3c856505dae4c6d60d9e64a45beac07c454","ssdeep":"1536:naTfc9IJbBeceIedkeO5gwyc99Kh0afdU6/jPNXhzNmU77JuI15fJRjDbY1GvIj8:ofoTV/Pws9/j1hd77Jv5fJRjDbYMvIj8","tlshash":"7563f6d98ebc7d29ab029a29b0ce51e3732d53471541e598b8dca190cfec04e26f1f79","first_seen":"2023-11-29T17:59:51Z","last_seen":"2023-11-29T17:59:51Z","times_seen":1,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":18,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=82dc66e8be470b55","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal","date":"2023-11-29T16:59:39.516Z","timestamp":1701277179516,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=82dc66e8be470b55 HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:35 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nserver: cloudflare\r\ncf-ray: 82dc66e95f180b55-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":180008,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"0222d547e16fbce6af1eb7593911cff5","sha1":"b11742bcfcbd408b2292ef611c6b1a0c9aeecbff","sha256":"5aaec2d832d74278721fe0e0aff50140c12fe4f688cbb7f8927ddb364d4e9433","sha512":"dc7f3c9c0adc1cc23e780638193612047b292eb618920a68871cae30adc3e6002f4d24e94241b19fd3b2426bd521988e3eb7c75c1691b44ef7e5eeab64f2a24d","ssdeep":"3072:kphzf+AgCGiB8huJwUA/7+zJgzM4EWYnafM:Glf+ANfsf/7GaMZJ","tlshash":"e80471cc7b81bc59053379787027321670af3e456c3c19daea01b5d42af631a92d7aee","first_seen":"2023-11-29T17:40:55Z","last_seen":"2023-11-29T18:45:21Z","times_seen":8,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.socket.io/4.6.0/socket.io.min.js","fqdn":"cdn.socket.io","domain":"socket.io","tld":"io"},"ip":{"addr":"143.204.55.115","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.637Z","timestamp":1701277178637,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.socket.io","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Sun, 22 Oct 2023 00:00:00 GMT","end":"Sun, 17 Nov 2024 23:59:59 GMT"},"fingerprint":{"sha1":"BB:7D:4E:26:70:F6:06:2A:12:E9:92:A8:F1:9F:CD:82:0B:BF:48:ED","sha256":"C6:1C:9F:99:92:94:22:B4:CA:16:AD:70:73:8C:CF:16:98:BB:6F:5E:9B:8A:EE:32:C3:D5:13:F3:CF:69:F4:51"}}},"request":{"raw":"GET /4.6.0/socket.io.min.js HTTP/1.1\r\nHost: cdn.socket.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=31536000, immutable\r\ncontent-disposition: inline; filename=\"socket.io.min.js\"\r\ncontent-encoding: gzip\r\ndate: Fri, 27 Oct 2023 10:49:06 GMT\r\netag: W/\"80f5b8c6a9eeac15de93e5a112036a06\"\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: fra1::bqgb5-1698403746025-0e8d119dc2bf\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: homKwQk7egWmf4MoxuGZ6Ci9OVOXBCGXYwkVGIcS2-meZedMZICG1w==\r\nage: 3262896\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":45806,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (45667)","md5":"80f5b8c6a9eeac15de93e5a112036a06","sha1":"f7174635137d37581b11937fc90e9cb325077bce","sha256":"0401de33701f1cad16ecf952899d23990b6437d0a5b7335524edf6bdfb932542","sha512":"b976a5f02202439d94c6817d037c813fa1945c6bb93762284d97ff61718c5b833402f372562034663a467fdbaa46990de24cb1e356392340e64d034e4ba1b4e4","ssdeep":"384:1ZS0CCnasl8gRR/PoPez+iCMN0Fkiw2Jh4RWdRGhAjbp2ChPL8cYRGv5MRUK6np9:/CCnVl7tUkBxkdRGOfDiY5C5MAn5GY2","tlshash":"1423a488f2a1b06187e37165443f110ba27a746964c9c18cf639d9f19eb8ece7123f79","first_seen":"2023-04-05T03:09:50Z","last_seen":"2026-04-03T09:57:49.448884Z","times_seen":39623,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":17,"dns":15,"connect":1,"send":0,"wait":2,"receive":0,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/css/pages-godaddy.css?cb=1701277178624","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.642Z","timestamp":1701277178642,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/css/pages-godaddy.css?cb=1701277178624 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:35 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 08 Nov 2023 20:47:39 GMT\r\netag: W/\"954d-609aa32a9dca8-gzip\"\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=p%2FzuYdwIhKB1R1rhX8aK3yvJcuG1ytVIa5l0XxiVerg%2FqtpoGeaMTBWb2b4OxqYAxXjKcAG0hn9zHlxRMFgAPDddsu7hvLwY%2FuvRjncl9F0A%2BkuhlEFDlI8i3Nea\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: MISS\r\nserver: cloudflare\r\ncf-ray: 82dc66e3de3b56c3-OSL\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":38221,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1437), with CRLF line terminators","md5":"0a40b289b9ecb589387f31cbd2807033","sha1":"dbb02f7d438a952b55cab142749c648cd6417af5","sha256":"c17e32e67edc46c2720b01a4a716996809ad8335c875f6980319a1440de6c245","sha512":"faca0a6d1d4202a89b79c81baba0317438d140917e29eead72cc3a0b3e9b4e096ab3b2989bb3c16cf2d8747ff487170afd0b67d88cc251d72c9f4933476e0362","ssdeep":"192:XoogIexLQ5WKTCFBwCIZtJ8FtX2+UBRkfeWcrScuH9Ye3YdersR8Q5oqWjfHogxp:QDKAaZtJs5odwHhx5P6mqjDggJkLLn","tlshash":"c403cf86155062385f36277bf3bb00aceb6d827356961664b4bcb444cff86e410e1eaf","first_seen":"2023-11-09T15:46:52Z","last_seen":"2024-08-20T20:16:30.359257Z","times_seen":23017,"resource_available":false,"data":null}},"time_used":747,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":747,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1440178794:1701275286:2g_KcFrj83q3IJ_FT15GfeCJeu4U4pMZSjQsR46ghws/82dc66e8be470b55/32a07e7fc37a2c0","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal","date":"2023-11-29T16:59:39.722Z","timestamp":1701277179722,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1440178794:1701275286:2g_KcFrj83q3IJ_FT15GfeCJeu4U4pMZSjQsR46ghws/82dc66e8be470b55/32a07e7fc37a2c0 HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal\r\nContent-type: application/x-www-form-urlencoded\r\nCF-Challenge: 32a07e7fc37a2c0\r\nContent-Length: 2350\r\nOrigin: https://challenges.cloudflare.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:35 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: EbOh6FhqJQYn4L+8Xz6sbRfKVWoCckaiG8zt/+io4ZsFC/IzaxF02YxkM9VDV0hUSyCQ7e6VBmMiYWsYtLKTOhgf4+skC+XkxvLFsctxJrnTZqWRVRidacXiyJekJJfUCi2JBMCzBTmzT7t9O/d6XOuZDur8158IgJ4wDn+yLuEwGEKxWxTlRSrq1RFWkvzwi0uNoZYQs8J2NR8xyX4KafpleRF/7IrNwJRYKZJofnpRFqNyQYaALOdwAAJuuPgDWU2UNv9qOJsp+/YSfe3ZcqUyHlWVEPxp7llRv5+COG5OjyuNTTbyebTKCFxzZNappj8AQtZl0SvuuYFuvR7kgAyJExaiESsfWyfGBbk+Y4o=$9xzMP7cc4MWw4KieGHdftw==\r\nserver: cloudflare\r\ncf-ray: 82dc66ea98f30b55-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":83184,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d8ef35b23a7ad6246a45dade4624c44a","sha1":"09f1234bbb6f9152babfa6762deeb9c28e4b97b3","sha256":"6be7404175cda68d8dfc96e2cc356192d1e32e351a523f1496067195ebe5071b","sha512":"88648649cbd6f76e985ee64d63d1aed6ea1b30a80089507ced41dbc7dc565cdbf0cdda3facaf1b7dd3753f3be736e33d86b281f3e757fe51d16695a54a4da259","ssdeep":"1536:gm+lal9fb5LGXKWpMnQ7/2IBDibOIZ3oEMzz0a4WPiH3lL2d+S:gmJl5b5CXKOMnQb2iDU3YzfPi1L24S","tlshash":"c38302a37c6a4676895ce1b305b04bb72b8b03ce48656662dece18df211edd4733072e","first_seen":"2023-11-29T17:59:51Z","last_seen":"2023-11-29T17:59:51Z","times_seen":1,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":53,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1440178794:1701275286:2g_KcFrj83q3IJ_FT15GfeCJeu4U4pMZSjQsR46ghws/82dc66e8be470b55/32a07e7fc37a2c0","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal","date":"2023-11-29T16:59:41.229Z","timestamp":1701277181229,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1440178794:1701275286:2g_KcFrj83q3IJ_FT15GfeCJeu4U4pMZSjQsR46ghws/82dc66e8be470b55/32a07e7fc37a2c0 HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal\r\nContent-type: application/x-www-form-urlencoded\r\nCF-Challenge: 32a07e7fc37a2c0\r\nContent-Length: 24628\r\nOrigin: https://challenges.cloudflare.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:36 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: WEIyBjRCcJwNv8FDnxZhXDcUpor2fXZutHLI0fqxN8zjNGO4Bd3o168Hibm8OtZS$W9h4wv/jONAuDooxX7fCag==\r\nserver: cloudflare\r\ncf-ray: 82dc66f40a3a0b55-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17760,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (17760), with no line terminators","md5":"89469a3ca33901f18cc0a191430c73d4","sha1":"dd360f5934f19421e4d1fbf97b4586fba4322724","sha256":"a9e155b53fdcf699d2b4c36eba2475a93671da0eee342a7962dd6b7ca1f695dd","sha512":"3911145eb9697595994ab3872b796984297bc06a00c9a691a6f7f268201ecd3db397b529fd4ae18f27c2032f893a0c02603e1e65c14ad7def59424a0fa9de04f","ssdeep":"384:KMAQ2s6CMEASaHPrkAj6mMRHJZf88FxC7Ni6PCEy7C1U0:tA06NEASaHYAumYDtfC7rfU0","tlshash":"ac82e1a55f9cbbf47e84a545753126f1a7816faf4d27eb146734230ea430e81a470ccb","first_seen":"2023-11-29T17:59:51Z","last_seen":"2023-11-29T17:59:51Z","times_seen":1,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/api.js?render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:37.737Z","timestamp":1701277177737,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /turnstile/v0/api.js?render=explicit HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Wed, 29 Nov 2023 16:59:33 GMT\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=300, public\r\nlocation: /turnstile/v0/g/9914b343/api.js?render=explicit\r\nserver: cloudflare\r\ncf-ray: 82dc66de4efb1c16-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":34254,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T19:31:03.603551Z","times_seen":13300818,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":17,"dns":1,"connect":1,"send":0,"wait":10,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/cloudfavicon.ico","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:39.403Z","timestamp":1701277179403,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/cloudfavicon.ico HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:35 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\nlast-modified: Wed, 16 Aug 2023 01:22:46 GMT\r\netag: W/\"86be-6030022068580\"\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nage: 4739\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=cNrBpJc6KNyPbyWGS6ZCJVFHaCDqj3svI5KjEonJ9%2BRSYJ%2BzaYlyZN32E%2BryYAhC0AXkJy7Sz39lBgVbtgsSToO3Bwdt8smHKk7CbYWpwno%2BFVaeuZnBfxXeFCZE\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\ncf-ray: 82dc66e89d1256c3-OSL\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":34494,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\\012- data","md5":"88415acda09a4cbd9d87543c3ba78180","sha1":"2dec4705e9ab399efdc6eef36e079aa31d1df8d9","sha256":"20cccc47c1bac9d2ef36b6a1c58af58c5c169ad5ca084080f0392b86f949641c","sha512":"77d0d7e0c85a1cad6a22372f2d3904c0842628ce7f1adac9a2a0cbf3b566ce8148527b0e7ede2bb068f5d005917b3f95c2a25d031d0d4d7a6a5a117cefa83b24","ssdeep":"96:4KOr5hOo0Qhk2fAewTq/iwa2R7Qz8pz4DopTPGFsbN:qbl626uRg8pvF","tlshash":"e3f2e7886a03cca8b5877be0cd3795fd031f6c2ad86418df216b7d49bb79f12a055e12","first_seen":"2023-05-08T14:11:31Z","last_seen":"2026-03-23T01:13:31.606707Z","times_seen":39976,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/pages/6z28.css?cb=1701277178624","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.632Z","timestamp":1701277178632,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/pages/6z28.css?cb=1701277178624 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:34 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 29 Nov 2023 14:33:52 GMT\r\netag: W/\"461-60b4b6c91be14-gzip\"\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=4s8LUIurmgRzSij3040N%2FknbDXOt%2FHqTuId4dxzjfSMd6x2n9rIkMOh7G1Vg55M4%2FMRDJHHzCdfmPG1dmMDEmehfCrHjwfnkjbu%2FU%2B33D4%2FiuXkfT2CDFPIyyZLf\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: MISS\r\nserver: cloudflare\r\ncf-ray: 82dc66e3ce2b56c3-OSL\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1121,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1164), with no line terminators","md5":"65e0573b1d7b11f8cb2870e600055a80","sha1":"a391668d136753e7f4d81e51f6d12cc1c61237dd","sha256":"0f1934383ad7770ce8d632d793ac71875e1d1c23a3323495f6d1514df584e469","sha512":"91e7e4449b74dbf314f7b4ef6a79e92d16c7581c6f0341ee1afe26e90a7514049241cb7ba5c589722a2b886f654199a7e990542cbd4a395ab2c18d36ac63aeeb","ssdeep":"","tlshash":"4d210f69e6966cbf751b9fa92bf52784132db040c0258b3c3b3e71b3638909490773a6","first_seen":"2023-11-15T16:13:39Z","last_seen":"2024-08-20T19:27:49.092752Z","times_seen":12465,"resource_available":false,"data":null}},"time_used":572,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":572,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/js/pages-head-web.min.js?cb=1701277178624","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.644Z","timestamp":1701277178644,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/js/pages-head-web.min.js?cb=1701277178624 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:35 GMT\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 23 Nov 2023 21:57:28 GMT\r\netag: W/\"24eb-60ad8ebfd52c3-gzip\"\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=s21YYLiQNBybUpDHtDe91Kpjb6wNdcoqYXvR8%2FAgP8kdn9a%2FFgAN0FnI2AvcDs6ED%2F%2F7m1hmA0vBIVxJapf%2FQLJutZ76Sozkc%2BQpRZoYp3P1RBHm5vB5mn91NHrj\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: MISS\r\nserver: cloudflare\r\ncf-ray: 82dc66e3de4556c3-OSL\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":9451,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (9493), with no line terminators","md5":"452d55de561fffc8c0c96f698dbdf9a8","sha1":"c2ea086b0040d100bf614cec061acd05d1537041","sha256":"20c2e9dc4f093d70b78f5fb33c764d1d8afe53383de06a8a680b14dd07d613f4","sha512":"ada9efb7b93b5ade7d762a131b650dab2ff5a41b90a346f508452d598fbd106e4d1f4ae841b1e6de414b6cfb45fbf1e11730428c111b2ef1e7a1daa16809f3c1","ssdeep":"","tlshash":"c7200000000000000c300000000000000000000000000c000003000000000000000000","first_seen":"2023-11-23T23:16:43Z","last_seen":"2023-12-06T20:13:12Z","times_seen":3066,"resource_available":false,"data":null}},"time_used":759,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":759,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/82dc66e8be470b55/1701277175476/56f7f6a4808791203499b6082ce11f074def38a293b6a7fc92ee8b15aea179a6/5yK2ZC21QhLlO1-","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal","date":"2023-11-29T16:59:41.043Z","timestamp":1701277181043,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/pat/82dc66e8be470b55/1701277175476/56f7f6a4808791203499b6082ce11f074def38a293b6a7fc92ee8b15aea179a6/5yK2ZC21QhLlO1- HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 401 Unauthorized\r\ndate: Wed, 29 Nov 2023 16:59:36 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\nwww-authenticate: PrivateToken challenge=AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gVvf2pICHkSA0mbYILOEfB03vOKKTtqf8ku6LFa6heaYAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApsOXvs4inomvHEEJWeAmbewj10vTdOMUJh5YooYpzkcTFx8O1fGckZDmN__WSsDanz_dK-uZ_ETYKIumajyX7F3zXM4AXeZC2iYL_e3-Pi1TmaGIMJZdPWVVC9cf8AFwX7fRkcgCHxky-BRBi2T8ry--e2NK119BZC3f1t7LwQTVpP1LL3UYxZNFWJTGISYzuWNO5NvmWgGr2V4bint7BqWVsBG5VguykSCXBQX0WyMxge5W5z-tspRPjpXtc35sgdq737t6ATIZ2BVH0nyYaECjgMbN-BY6w9Y_jz03Ce0StP3YSZijpo1lfW2_lIX3SvsNX-SYCOkZ-9685ZUBSQIDAQAB, max-age=20, PrivateToken challenge=AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIFb39qSAh5EgNJm2CCzhHwdN7ziik7an_JLuixWuoXmmABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAyAcIyqXWj0XAym0z5V844rFA0WOzLVwj0uCwmVj6zC4qOH40oBiGHrMNMBnDyk95jvnBAuHeEs855e7nA4l4DPJ4jUWKZbua8BxGAzjn74A1BV81a52F1zvBPUm-VEJXPAPXQehXphSv51uR7HKtfcM5oaS33TGDSy-6xv0r84xjMuTBvwPgXGehxpi1MCGGE5yWkzKN5Zzllk7m6Nkiv6learV-Uz7tzaoPbdZkBk1bFXxm2q07jWavoBZ-JEuEJyjQ00PSTz2Zjpbct6AlR3eCS9sbmXtb5XxSs7JMsvoa8uojD7a5m2SEJIwaf8xKL6wtxkaPonUfvsLj4JoJZQIDAQAB, max-age=20\r\nserver: cloudflare\r\ncf-ray: 82dc66f2d9370b55-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"401","status_text":"Unauthorized","fingerprints":null,"data":{"size":1,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"very short file (no magic)","md5":"ff44570aca8241914870afbc310cdb85","sha1":"58668e7669fd564d99db5d581fcdb6a5618440b5","sha256":"6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5","sha512":"3c266c0035de59eab2a0dd31b3dcb4a9dd157b310289e5db9ab4f8c2fddb7433466d48f25da7ad735a1cb8f2935aa612ad1f62f0efcece3933ba9979082e2304","ssdeep":"","tlshash":"c700000000000003c00000300000003000000000000000000003000000000000000000","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T19:31:32.888184Z","times_seen":399567,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/764o/","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-11-29T16:59:37.209Z","timestamp":1701277177209,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /764o/ HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:33 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=%2BO9yapjXzezYFezX2nO0dEFCyQRAlStKOoKtprsMPOIf379VRX49FcNK0ilVP460vCpdCSDdvJtYkZUwuNR%2FWHsH%2BBvEpUz8WW%2Bz%2BKiCG9RquA7f9rNyt5DUtZkq2R%2FBOkRfbn8%2B\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 82dc66db2e1156bb-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":108,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document, ASCII text, with no line terminators","md5":"96f9607b6f588761bb042e953cc9a331","sha1":"c781adf1e01594d9847ff44caacdbae939166d53","sha256":"46c4c8f8e0cd5a2872ec32414b4ab16a390c63ca65e7fbea5760d0a44773d517","sha512":"2c2d3a6940a01409c2ce7ee5d34e89e9b89cf75abdb490481c90474285acbafe6e3855858960b36bcf144715d42a99f7cb808bafa51bf6e3b8114af1109be99b","ssdeep":"","tlshash":"cfb092ab0ca0c09cae082dc82af9e56c940ba4ba5b40e909a1d5503042153e80c12ae0","first_seen":"2023-11-29T16:40:59Z","last_seen":"2023-12-06T03:13:39Z","times_seen":311,"resource_available":false,"data":null}},"time_used":433,"timings":{"blocked":39,"dns":31,"connect":1,"send":0,"wait":352,"receive":0,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:37.735Z","timestamp":1701277177735,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Jul 2023 00:00:00 GMT","end":"Sun, 14 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"D2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D","sha256":"B1:CA:3A:23:BA:70:1D:18:3F:EC:99:D7:BE:6D:B2:FD:66:5F:5C:A7:7D:7F:C1:FC:16:D1:FD:89:4B:CC:15:34"}}},"request":{"raw":"GET /jquery-3.6.0.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-15d9d\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Wed, 29 Nov 2023 16:59:33 GMT\r\nage: 674556\r\nx-served-by: cache-lga21931-LGA, cache-bma1668-BMA\r\nx-cache: HIT, HIT\r\nx-cache-hits: 14, 13898\r\nx-timer: S1701277174.506243,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30875\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89501,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-03T19:30:55.929495Z","times_seen":444585,"resource_available":true,"data":null}},"time_used":79,"timings":{"blocked":33,"dns":8,"connect":8,"send":0,"wait":8,"receive":4,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/g/9914b343/api.js?render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:37.770Z","timestamp":1701277177770,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /turnstile/v0/g/9914b343/api.js?render=explicit HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iswjukwfxi.mbhaj.ru/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:33 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31536000\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 82dc66de6f171c16-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":34254,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (34253)","md5":"6142a5f5c66e2c1be52ee9506a565962","sha1":"c3b39e8352efd1e0619b6dd62af8b2a917622868","sha256":"51cd12da61a7401c73472b2ac77067adfa30e9fc0545b4b7c240e9154e011fc7","sha512":"3de194e4c8f32703cfee9e2a48230d21301e28a39beefb36dcb2b8df26b962b3a508e7fd8fe55aca2f619293e293cdf64459bf5d91526cbceda770396765d5e2","ssdeep":"768:3YpyCIUTKuBT1ytljuXeMDKLFn76p+B5nLZ73akHgMO4B4oq0HVi:30nKuBT1Yj7MDCKp","tlshash":"9ff229993187343187ee41e0207b67877339ba3ae58cc840d85bc97539bcd8ad137ba9","first_seen":"2023-11-07T13:44:12Z","last_seen":"2023-11-30T20:53:42Z","times_seen":32842,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/css/pages.min.css?cb=1701277178624","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:38.641Z","timestamp":1701277178641,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/css/pages.min.css?cb=1701277178624 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:35 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 08 Nov 2023 20:47:39 GMT\r\netag: W/\"4276-609aa32a97ee8-gzip\"\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=3LCD8EhhpqfnaswXpVJ7SKpUnTL4gcIMzNkTyeGm2iTFjZ1NSJpKVuV2xSiCQDg4whY%2BJGFsWB24ppAxROLxBrgl7g5tD%2FPJ7FhIaHDu2Vc576VVo9YYQAaY9eb%2B\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: MISS\r\nserver: cloudflare\r\ncf-ray: 82dc66e3de3856c3-OSL\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17014,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (17014), with no line terminators","md5":"4d38e2ffc538c11f0dca9cb2ad6ca08a","sha1":"400ca5c484a88f9a91a1d1439e5f51a621ad3eaa","sha256":"6b14e6f4239ef85c9180a099263a041df2b82bd65a245e72cca365cbd5e88fa8","sha512":"2c1c64502508146e23f45c2d398db7a2283fdf0ee7f3757565e648a2e08cbbfbde2c32dd3ee4c764ea0c8162f0eabc4e456e2338f4e36aaf7a8e1afdaa4ff74b","ssdeep":"192:S3PiHSaXZfdY8xbXUfCkDAm0vHXIYECacgAx8K1MbJK2EKPMq/vHID/gPnqBvMmU:mtaVdY8xbXn54YE80tk0Sgfn","tlshash":"6672aaa1a2103229e177c13721d2fac922355652f57b5eb9bc7671f4cf891c32b3354a","first_seen":"2023-11-01T19:35:47Z","last_seen":"2024-08-20T21:28:38.768471Z","times_seen":25049,"resource_available":false,"data":null}},"time_used":742,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":742,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/ew4g0I%2FZYomJh1e75pupA0WLfHDXy%2FQKEyLTEDfnNN8%3D","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal","date":"2023-11-29T16:59:39.514Z","timestamp":1701277179514,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/cmg/1/ew4g0I%2FZYomJh1e75pupA0WLfHDXy%2FQKEyLTEDfnNN8%3D HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:35 GMT\r\ncontent-type: image/png\r\ncache-control: max-age=2629800, public\r\nserver: cloudflare\r\ncf-ray: 82dc66e94f110b55-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":61,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced\\012- data","md5":"9246cca8fc3c00f50035f28e9f6b7f7d","sha1":"3aa538440f70873b574f40cd793060f53ec17a5d","sha256":"c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84","sha512":"a2098304d541df4c71cde98e4c4a8fb1746d7eb9677ceba4b19ff522efdd981e484224479fd882809196b854dbc5b129962dba76198d34aaecf7318bd3736c6b","ssdeep":"","tlshash":"a5a002e763957d7bd94b133756651151f8324514171305458805d475161736c81c4a82","first_seen":"2023-08-25T15:09:14Z","last_seen":"2025-05-14T12:12:43.698394Z","times_seen":189286,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/js/pages-head-top-web.min.js?cb=1701277177856","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:37.859Z","timestamp":1701277177859,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/js/pages-head-top-web.min.js?cb=1701277177856 HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:34 GMT\r\ncontent-type: text/javascript\r\nlast-modified: Wed, 08 Nov 2023 20:47:39 GMT\r\netag: W/\"95a-609aa32abefe8-gzip\"\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Q2B0JaSm4KfrNFspyPBlWdumLGc0ociNFPj64CW4ziM6nVm%2B%2B%2FC1fd6hPcmIGnRWwFnEPPc451TPxjMYsVICE7NafzrU1lTxvUjWqIph8DRyq25kLiUAIzQiZzll\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: MISS\r\nserver: cloudflare\r\ncf-ray: 82dc66deff5256c3-OSL\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2394,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (2572), with no line terminators","md5":"a13f24f7e2724fadbc39006e1870ca01","sha1":"0b5d3c1b968c1593843eb8ab17e6aa33fc4bbcf7","sha256":"44a6575b2e25e86a0fb04ad4da9afbbfdc7f4ef286338918511558e4e7bf36fa","sha512":"ef17da3c3ce78d24de393e1d2232f600274a2aa743305c6148b848a98d340eb7c8b70969806a4ca5255418b5f25b1b2648a6056d9a0a574e229eaec69cc45137","ssdeep":"","tlshash":"db51ca093055ba184d6e764ab071aa7cbdc5733b2511a420c0dfacacc0f6fd62869fb7","first_seen":"2023-11-09T15:46:52Z","last_seen":"2023-12-01T17:29:16Z","times_seen":3476,"resource_available":false,"data":null}},"time_used":761,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":761,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iswjukwfxi.mbhaj.ru/web6/assets/cloudfavicon.ico","fqdn":"iswjukwfxi.mbhaj.ru","domain":"mbhaj.ru","tld":"ru"},"ip":{"addr":"104.21.90.110","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iswjukwfxi.mbhaj.ru/764o/#tom.russell@intradiem.com","date":"2023-11-29T16:59:37.998Z","timestamp":1701277177998,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbhaj.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 28 Nov 2023 16:31:49 GMT","end":"Mon, 26 Feb 2024 16:31:48 GMT"},"fingerprint":{"sha1":"E6:30:5C:5E:E7:D2:DF:26:71:13:76:4A:7C:2D:6D:D2:09:89:A1:54","sha256":"45:F7:D7:D4:6C:70:35:76:20:C5:8D:B6:2E:05:D6:3A:4D:A0:6E:70:A7:73:D7:CB:DE:E4:9D:26:36:CE:F9:49"}}},"request":{"raw":"GET /web6/assets/cloudfavicon.ico HTTP/1.1\r\nHost: iswjukwfxi.mbhaj.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iswjukwfxi.mbhaj.ru/764o/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:33 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\nlast-modified: Wed, 16 Aug 2023 01:22:46 GMT\r\netag: W/\"86be-6030022068580\"\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'none'\r\ncache-control: max-age=14400\r\nage: 4737\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=cNrBpJc6KNyPbyWGS6ZCJVFHaCDqj3svI5KjEonJ9%2BRSYJ%2BzaYlyZN32E%2BryYAhC0AXkJy7Sz39lBgVbtgsSToO3Bwdt8smHKk7CbYWpwno%2BFVaeuZnBfxXeFCZE\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\ncf-ray: 82dc66dfd86256c3-OSL\r\ncontent-encoding: br\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":34494,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\\012- data","md5":"88415acda09a4cbd9d87543c3ba78180","sha1":"2dec4705e9ab399efdc6eef36e079aa31d1df8d9","sha256":"20cccc47c1bac9d2ef36b6a1c58af58c5c169ad5ca084080f0392b86f949641c","sha512":"77d0d7e0c85a1cad6a22372f2d3904c0842628ce7f1adac9a2a0cbf3b566ce8148527b0e7ede2bb068f5d005917b3f95c2a25d031d0d4d7a6a5a117cefa83b24","ssdeep":"96:4KOr5hOo0Qhk2fAewTq/iwa2R7Qz8pz4DopTPGFsbN:qbl626uRg8pvF","tlshash":"e3f2e7886a03cca8b5877be0cd3795fd031f6c2ad86418df216b7d49bb79f12a055e12","first_seen":"2023-05-08T14:11:31Z","last_seen":"2026-03-23T01:13:31.606707Z","times_seen":39976,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/82dc66e8be470b55/1701277175476/c9uoCPKnFcJfxTh","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.2.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal","date":"2023-11-29T16:59:41.013Z","timestamp":1701277181013,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/i/82dc66e8be470b55/1701277175476/c9uoCPKnFcJfxTh HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2k9bb/0x4AAAAAAAN2OhG9ATtp2opE/auto/normal\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Nov 2023 16:59:36 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\ncf-ray: 82dc66f2a8d50b55-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":61,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 75 x 90, 8-bit/color RGB, non-interlaced\\012- data","md5":"d4de7a59d402236d9697acb8401edf9f","sha1":"7c9fdfdbc091036ea84af77dc0bfd0ebfffaf4d6","sha256":"165b50ebec15a8654c32a904ab7f309c2a3c3885ae0e72e06b5fc75de0f1f8f6","sha512":"946bb3c152ebdb0e4c2206e7fd0ce3ada4456080b058a375c442270148d4199ffe2547c975127f7611459e55a9f348c7f77282a65bb19bec9741f0180d5282fb","ssdeep":"","tlshash":"4aa002e767d06e38ca4603375a251151e9730594032105059c16c9256b1666c80e4a63","first_seen":"2023-05-17T11:51:51Z","last_seen":"2025-04-20T22:24:15.788592Z","times_seen":79,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}