denverradio.net/console/asdf/ZGltaXRyaS5rYXJkYW1hbmlkaXNAYXJkYWdoZ3JvdXAuY29t
0 B URL denverradio.net/console/asdf/ZGltaXRyaS5rYXJkYW1hbmlkaXNAYXJkYWdoZ3JvdXAuY29t
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /console/asdf/ZGltaXRyaS5rYXJkYW1hbmlkaXNAYXJkYWdoZ3JvdXAuY29t HTTP/1.1
Host: denverradio.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
refresh: 0;url=https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev?qrc=dimitri.kardamanidis@ardaghgroup.com
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 29 Aug 2023 16:57:04 GMT
server: Apache
X-Firefox-Spdy: h2
01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/?qrc=dimitri.kardamanidis@ardaghgroup.com
302 Found 0 B URL User Request POST HTTP/3 01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/?qrc=dimitri.kardamanidis@ardaghgroup.com
IP
Certificate IssuerGoogle Trust Services LLC
Subjectc1a9ed330cc99af178dfc013.workers.dev
FingerprintC2:D5:CD:F4:16:0A:AE:98:BB:66:45:78:A1:88:03:36:21:46:FE:D2
ValidityMon, 14 Aug 2023 22:55:41 GMT - Sun, 12 Nov 2023 22:55:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /?qrc=dimitri.kardamanidis@ardaghgroup.com HTTP/1.1
Host: 01aed1c7.c1a9ed330cc99af178dfc013.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 603
Origin: https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/?qrc=dimitri.kardamanidis@ardaghgroup.com
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Tue, 29 Aug 2023 16:57:09 GMT
content-length: 0
location: https://sultaniselbiseleri.com?sign=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL3N1bHRhbmlzZWxiaXNlbGVyaS5jb20iLCJkb21haW4iOiJzdWx0YW5pc2VsYmlzZWxlcmkuY29tIiwia2V5IjoiM0FRSjE2VnU0Vk52IiwicXJjIjoiZGltaXRyaS5rYXJkYW1hbmlkaXNAYXJkYWdoZ3JvdXAuY29tIiwiaWF0IjoxNjkzMzI4MjI5LCJleHAiOjE2OTMzMjgzNDl9.zF6-8GltOgHXnbrOZz2iOyU-qrUXff8d6YaKk4x8z0k
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tJGJFddu7TCUotYwfDE6hMeEQIMCYZQ6U%2BNqNUKVh6hV3QVD%2B04Sz8NoQQjxdC7UrlycH0ZHuEo8R4EyADZhLDx%2FwGvlARBRvQXkoM6y6D1Kjg3CasvcBm2s%2ByBUli4NyC81zRT4j0tvRxnaPHpb%2FG3P5wycgfnH0%2FxjDVgkeMM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fe654d81c64b523-OSL
alt-svc: h3=":443"; ma=86400
sultaniselbiseleri.com/?sign=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL3N1bHRhbmlzZWxiaXNlbGVyaS5jb20iLCJkb21haW4iOiJzdWx0YW5pc2VsYmlzZWxlcmkuY29tIiwia2V5IjoiM0FRSjE2VnU0Vk52IiwicXJjIjoiZGltaXRyaS5rYXJkYW1hbmlkaXNAYXJkYWdoZ3JvdXAuY29tIiwiaWF0IjoxNjkzMzI4MjI5LCJleHAiOjE2OTMzMjgzNDl9.zF6-8GltOgHXnbrOZz2iOyU-qrUXff8d6YaKk4x8z0k
302 Found 0 B URL User Request GET HTTP/1.1 sultaniselbiseleri.com/?sign=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL3N1bHRhbmlzZWxiaXNlbGVyaS5jb20iLCJkb21haW4iOiJzdWx0YW5pc2VsYmlzZWxlcmkuY29tIiwia2V5IjoiM0FRSjE2VnU0Vk52IiwicXJjIjoiZGltaXRyaS5rYXJkYW1hbmlkaXNAYXJkYWdoZ3JvdXAuY29tIiwiaWF0IjoxNjkzMzI4MjI5LCJleHAiOjE2OTMzMjgzNDl9.zF6-8GltOgHXnbrOZz2iOyU-qrUXff8d6YaKk4x8z0k
IP
ASN #43624 Pq Hosting S.r.l.
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?sign=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL3N1bHRhbmlzZWxiaXNlbGVyaS5jb20iLCJkb21haW4iOiJzdWx0YW5pc2VsYmlzZWxlcmkuY29tIiwia2V5IjoiM0FRSjE2VnU0Vk52IiwicXJjIjoiZGltaXRyaS5rYXJkYW1hbmlkaXNAYXJkYWdoZ3JvdXAuY29tIiwiaWF0IjoxNjkzMzI4MjI5LCJleHAiOjE2OTMzMjgzNDl9.zF6-8GltOgHXnbrOZz2iOyU-qrUXff8d6YaKk4x8z0k HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Set-Cookie: qPdM=3AQJ16Vu4VNv; path=/; samesite=none; secure; httponly
qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; path=/; samesite=none; secure; httponly
location: /__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Date: Tue, 29 Aug 2023 16:57:10 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked
sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
200 OK 37 kB URL User Request GET HTTP/1.1 sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
IP
ASN #43624 Pq Hosting S.r.l.
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (28991), with CRLF, LF line terminators
Hash 4a1740a05c40bd04647299e82e7009ce
107b0ff3b427717b4626fbe6bd5f8a5578de7d85
540fbfb20256df69badaa6e531ef654cd5a2413141b6a3cd84e97046cafe6b3b
GET /__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains
Link: <https://aadcdn.msauth.net>; rel=preconnect; crossorigin, <https://aadcdn.msauth.net>; rel=dns-prefetch, <https://aadcdn.msftauth.net>; rel=dns-prefetch
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: dc09648a-ff12-47ce-b201-09cf151fe600
x-ms-ests-server: 2.1.16150.3 - NEULR1 ProdSlices
x-ms-clitelem: 1,0,0,,
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; expires=Thu, 28-Sep-2023 16:57:10 GMT; path=/; secure; HttpOnly; SameSite=None
esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; domain=sultaniselbiseleri.com; path=/; secure; HttpOnly; SameSite=None
fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; expires=Thu, 28-Sep-2023 16:57:11 GMT; path=/; secure; HttpOnly; SameSite=None
x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
Date: Tue, 29 Aug 2023 16:57:10 GMT
Connection: close
content-length: 44666
Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; form-action * data: blob: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: filesystem: ; frame-ancestors 'self' * http://* https://* file://* about: javascript: data: blob: filesystem: ; object-src * data: blob: filesystem: 'unsafe-inline' 'unsafe-eval'; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline';
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
200 OK 696 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
IP
Requested by https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/?qrc=dimitri.kardamanidis@ardaghgroup.com
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11051)
Size 696 kB (696396 bytes)
Hash da1382d99859c853e29e423c52ab6940
c2e120ad42fdf2374eb27a7dcd8c600d3f07e96d
392f8ee5273dd891302ab95a5b40f9397e33a4787d9803b12d1d85654db01a86
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 29 Aug 2023 16:57:05 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7fe654beaa32b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
200 OK 17 kB URL GET HTTP/1.1 sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Hash 12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /aadcdn.msauth.net/~/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Aug 2023 16:57:13 GMT
Content-Type: image/x-icon
Content-Length: 17174
Connection: close
Cache-Control: public, max-age=31536000
Last-Modified: Sun, 18 Oct 2020 03:02:03 GMT
ETag: 0x8D8731230C851A6
x-ms-request-id: 0892807a-601e-0051-22ac-d47f42000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: *
x-azure-ref: 20230829T165713Z-2qr2bt9ebd60929adada9v7ex000000000w0000000012vsr
X-Cache: TCP_HIT
Accept-Ranges: bytes
sultaniselbiseleri.com/aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_vts8ra1it9l0lgwizaxzhg2.js
200 OK 16 kB URL GET HTTP/1.1 sultaniselbiseleri.com/aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_vts8ra1it9l0lgwizaxzhg2.js
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type Unicode text, UTF-8 text, with very long lines (32058), with CRLF, LF line terminators
Hash da50cc60d892d3af3356795fd4538165
cad1dd6df3476e0431fc837e4ca9e4e46bd16333
ef670abfe9c1cf9018e84e3252e94b934e9b4173aa2d216f08db55736bb03f30
GET /aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_vts8ra1it9l0lgwizaxzhg2.js HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Aug 2023 16:57:11 GMT
Content-Type: application/x-javascript
content-length: 49972
Connection: close
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Last-Modified: Thu, 13 Jul 2023 00:28:45 GMT
ETag: 0x8DB83381EAF7708
x-ms-request-id: 167a777f-601e-0005-099d-d7b079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: *
x-azure-ref: 20230829T165711Z-7y3hxatpkt0utcd4st30tkc5ds0000000190000000001b0x
X-Cache: TCP_HIT
Accept-Ranges: bytes
Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; form-action * data: blob: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: filesystem: ; frame-ancestors 'self' * http://* https://* file://* about: javascript: data: blob: filesystem: ; object-src * data: blob: filesystem: 'unsafe-inline' 'unsafe-eval'; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline';
sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif
200 OK 3.6 kB URL GET HTTP/1.1 sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type GIF image data, version 89a, 352 x 3\012- data
Hash b540a8e518037192e32c4fe58bf2dbab
3047c1db97b86f6981e0ad2f96af40cdf43511af
8737d721808655f37b333f08a90185699e7e8b9bdaaa15cdb63c8448b426f95d
GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; brcap=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Aug 2023 16:57:14 GMT
Content-Type: image/gif
Content-Length: 3620
Connection: close
Cache-Control: public, max-age=31536000
Last-Modified: Fri, 17 Jan 2020 19:28:38 GMT
ETag: 0x8D79B8373B17F89
x-ms-request-id: aa2ad0e9-401e-0017-174d-d7565f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: *
x-azure-ref: 20230829T165714Z-2qr2bt9ebd60929adada9v7ex000000000v000000001vqs8
X-Cache: TCP_HIT
Accept-Ranges: bytes
login.live.com/Me.htm?v=3
200 OK 1.1 kB URL GET HTTP/1.1 login.live.com/Me.htm?v=3
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerDigiCert Inc
Subjectlogin.live.com
Fingerprint2F:2A:1D:C4:84:83:6B:36:13:1C:9E:F8:36:96:78:10:4E:0B:27:53
ValiditySun, 02 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (2345), with CRLF line terminators
Hash e86ef8b6111e5fb1d1665bcdc90888c9
994bf7651cb967cd9053056af2d69acb74db7f29
3410242720de50b090d07a23aee2dad879b31d36f2615732962ec4cfa8a9d458
GET /Me.htm?v=3 HTTP/1.1
Host: login.live.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=315360000
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Fri, 26 Aug 2033 16:57:14 GMT
Vary: Accept-Encoding
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Referrer-Policy: strict-origin-when-cross-origin
x-ms-route-info: C105_BL2
x-ms-request-id: fe36f1f3-af0d-4bd2-9a69-d807cede68a2
PPServer: PPV: 30 H: BL02PF18B8A52AA V: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Set-Cookie: uaid=aed72af331b443f8bd7cdf4e42130842; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
MSPRequ=id=N<=1693328234&co=1; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
Date: Tue, 29 Aug 2023 16:57:14 GMT
Content-Length: 1132
autologon.microsoftazuread-sso.com/ardaghgroup.com/winauth/iframe?client-request-id=47ec1c81-6423-444a-8841-e4543b3c9769&isAdalRequest=False
200 OK 7.2 kB URL GET HTTP/1.1 autologon.microsoftazuread-sso.com/ardaghgroup.com/winauth/iframe?client-request-id=47ec1c81-6423-444a-8841-e4543b3c9769&isAdalRequest=False
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerDigiCert Inc
Subjectautologon.microsoftazuread-sso.com
FingerprintA4:47:95:24:9C:12:27:E6:38:A6:C9:E9:4E:2E:B7:0E:EF:15:28:F1
ValiditySun, 02 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2807), with CRLF, LF line terminators
Hash fe2d8bc8a54db21dded5e2a2f038e831
2ecee19eb1261c9d11ba36c38e84faf7f59bed33
1b82d21219649c252f433887504ad2ef4325b7118ccb0786beba7cdd72d1be9d
GET /ardaghgroup.com/winauth/iframe?client-request-id=47ec1c81-6423-444a-8841-e4543b3c9769&isAdalRequest=False HTTP/1.1
Host: autologon.microsoftazuread-sso.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Link: <https://aadcdn.msauth.net>; rel=preconnect; crossorigin, <https://aadcdn.msauth.net>; rel=dns-prefetch, <https://aadcdn.msftauth.net>; rel=dns-prefetch
X-DNS-Prefetch-Control: on
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: 16047d9e-843d-4fa6-aa2a-40ea4b9d6a00
x-ms-ests-server: 2.1.16150.3 - SCUS ProdSlices
Referrer-Policy: strict-origin-when-cross-origin
X-XSS-Protection: 0
Set-Cookie: fpc=Am9M7t1izhpKrBU6Fm8355A; expires=Thu, 28-Sep-2023 16:57:14 GMT; path=/; secure; HttpOnly; SameSite=None
esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPaa1Wtq7U97z-XAdb2r46Lj-WSIQ2f_8Cw_Uuy9KVzvVarz5KKU-m2x_f9X21HArinx6O8guvG3Sz9ACXODYZh1Mb4RTGdG8P7FxZnsyT-6sEQscvZTmOPwUNjkd2JCJyiuIchNk6fyD9FJXEZFszapehSB-No-ILmh8k17rMZXIgAA; domain=.autologon.microsoftazuread-sso.com; path=/; secure; HttpOnly; SameSite=None
x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
Date: Tue, 29 Aug 2023 16:57:14 GMT
Content-Length: 7219
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/7fe654beaa32b50f/1693328225462/4b87a96bf370e52a2231473000e3ab3f3980f5f6d138368bd07d695d614e35b8/h1vj2zQme9CmeTJ
401 Unauthorized 38 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/7fe654beaa32b50f/1693328225462/4b87a96bf370e52a2231473000e3ab3f3980f5f6d138368bd07d695d614e35b8/h1vj2zQme9CmeTJ
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hash 60ba33038580c37e24368037785870d3
f4ee54f19a295840da70a83ee65164ecf3773a71
212117bf7f5b7c321a1750b1d2f4af766c7dfd82d9c99da3461af0c7193ed257
GET /cdn-cgi/challenge-platform/h/b/pat/7fe654beaa32b50f/1693328225462/4b87a96bf370e52a2231473000e3ab3f3980f5f6d138368bd07d695d614e35b8/h1vj2zQme9CmeTJ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Tue, 29 Aug 2023 16:57:08 GMT
content-type: text/plain; charset=UTF-8
www-authenticate: PrivateToken challenge=AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gS4epa_Nw5SoiMUcwAOOrPzmA9fbRODaL0H1pXWFONbgAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAubOcoOBrr9fuRmfOIN88oLf5DWJ-Kf7SYvYKOhTPRuwObMOSsgyqAb4skMUBqCVN88HoYR_nt0QPDKWwJVyKA3tbmhfZZlvT3jJGSfrj8rHSJRKXSPiNk6AxZ_SD2IA8l5Ed7cRzNo_O44VBMwo-o3i0QYT5xzi4g8kPnGg4nwiaceoVk8g4PUUTAZOX4pKFjG4zIzVX2IkGtTyHm2gvoPIGEFugVWNUVfQyMRbnST7_5m9NW_gScfWf4--1U5EpIo9Oz-y1BsW5LDhCZ3AfRmB3y7O4aofDW6FM2G_90xj4h_pxLY4Zy2IyKUrLoq_rc9y55HnliRYkuN3KoEoynwIDAQAB, max-age=20
server: cloudflare
cf-ray: 7fe654d2bbb6b50f-OSL
alt-svc: h3=":443"; ma=86400
sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
200 OK 1.4 kB URL GET HTTP/1.1 sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Hash ee5c8d9fb6248c938fd0dc19370e90bd
d01a22720918b781338b5bbf9202b241a5f99ee4
04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a
GET /aadcdn.msauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; brcap=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Aug 2023 16:57:14 GMT
Content-Type: image/svg+xml
Content-Length: 1435
Connection: close
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Last-Modified: Fri, 17 Jan 2020 19:28:38 GMT
ETag: 0x8D79B8373CB2849
x-ms-request-id: b7fcd54c-f01e-0014-55a7-d72b59000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: *
x-azure-ref: 20230829T165714Z-btkeya77g93595fvp11znuk2x000000000zg000000000frb
X-Cache: TCP_HIT
Accept-Ranges: bytes
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/7fe654beaa32b50f/1693328225463/7iIDd3T4D9Ur8eL
200 OK 40 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/7fe654beaa32b50f/1693328225463/7iIDd3T4D9Ur8eL
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type PNG image data, 93 x 40, 8-bit/color RGB, non-interlaced\012- data
Hash 3e077005570815af11f0b1b202591c35
eeaf2a93ac92b1e30c39549b7840bc2058dea240
fc149a5340a8719223d58e534a76b0a51912d7479d2b6ab015afeaa23c2199be
GET /cdn-cgi/challenge-platform/h/b/i/7fe654beaa32b50f/1693328225463/7iIDd3T4D9Ur8eL HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 29 Aug 2023 16:57:08 GMT
content-type: image/png
server: cloudflare
cf-ray: 7fe654d64954b50f-OSL
alt-svc: h3=":443"; ma=86400
aadcdn.msauth.net/ests/2.1/content/cdnbundles/dsso.iframe.min_ola-etxskuesqyfim_hgua2.js
200 OK 4.4 kB URL GET HTTP/2 aadcdn.msauth.net/ests/2.1/content/cdnbundles/dsso.iframe.min_ola-etxskuesqyfim_hgua2.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://autologon.microsoftazuread-sso.com/ardaghgroup.com/winauth/iframe?client-request-id=47ec1c81-6423-444a-8841-e4543b3c9769&isAdalRequest=False
Certificate IssuerDigiCert Inc
Subjectaadcdn.msauth.net
Fingerprint44:5F:75:46:1C:BE:AF:E4:F2:BF:F3:04:1D:0B:56:0F:EE:DA:A0:96
ValiditySat, 29 Jul 2023 00:00:00 GMT - Mon, 29 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (512)
Hash a0b03e1135d291412ca987c833f1c6b8
a109a65725eace4b02491e41810983d7edd835b3
1efb19fc32cd366f1169412e329d220a5d289ccff71f88284f8e810c60b4076b
GET /ests/2.1/content/cdnbundles/dsso.iframe.min_ola-etxskuesqyfim_hgua2.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://autologon.microsoftazuread-sso.com/
Origin: https://autologon.microsoftazuread-sso.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 4443
content-type: application/x-javascript
content-encoding: gzip
content-md5: cBuCMRolouOOxo7fU2fYKA==
last-modified: Thu, 22 Oct 2020 20:43:21 GMT
etag: 0x8D876CB1D444A03
x-cache: TCP_HIT
x-ms-request-id: 712595aa-101e-0062-143b-d02355000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0HIveZAAAAAD3CmtN0aSSTb9sxPK9SAOpQU1TMDRFREdFMTgxNwAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0ayPuZAAAAAB0k/pETBpjQYutbSGLWo12U1ZHMjBFREdFMDYwOQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Tue, 29 Aug 2023 16:57:14 GMT
X-Firefox-Spdy: h2
sultaniselbiseleri.com/common/instrumentation/dssostatus
200 OK 265 B URL POST HTTP/1.1 sultaniselbiseleri.com/common/instrumentation/dssostatus
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash c8c68d9cda90b0b53e389157a3f95294
1168cf9035de17e033fde9b5158d88fb0de3975f
122a941bd06d063c294313e3e4ec8253d71490fbd93c62c06c2e35b9cbf9b196
POST /common/instrumentation/dssostatus HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
hpgid: 1104
hpgact: 1800
canary: PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPo68wkJ-AbI-k7WSTjL-slXGzxt5DyU1lhAgMFiijVOe-6PGf2lTkPT3gqd14FPczEVkNRtxUlHcDpTZz_kw9b_0decjMa7deJ2KNEv0UAd_oqM4HURf1UoQr-3HXxcXAsf6AD89UXcPh4aahH_7E7SX-y0nRMCfUHIVqiqx7RBB51_4jMIvbyU7w_S3cnuUMFQ57HWdDhf0gJmUkchi1cyAA
client-request-id: 47ec1c81-6423-444a-8841-e4543b3c9769
hpgrequestid: dc09648a-ff12-47ce-b201-09cf151fe600
Content-type: application/json; charset=utf-8
Content-Length: 192
Origin: https://sultaniselbiseleri.com
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; brcap=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Strict-Transport-Security: max-age=31536000; includeSubDomains
Access-Control-Allow-Origin: https://autologon.microsoftazuread-sso.com/
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, OPTIONS
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
client-request-id: 47ec1c81-6423-444a-8841-e4543b3c9769
x-ms-request-id: ff11957d-2613-414e-9b2f-d301840f6900
x-ms-ests-server: 2.1.16150.3 - NEULR1 ProdSlices
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; expires=Thu, 28-Sep-2023 16:57:15 GMT; path=/; secure; HttpOnly; SameSite=None
x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
Date: Tue, 29 Aug 2023 16:57:15 GMT
Connection: close
content-length: 265
Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; form-action * data: blob: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: filesystem: ; frame-ancestors 'self' * http://* https://* file://* about: javascript: data: blob: filesystem: ; object-src * data: blob: filesystem: 'unsafe-inline' 'unsafe-eval'; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline';
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/9DKbiDfWH6ZjHxgSNTG3KHa3ucVmP6rj9MHN3bQn2+U=
200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/9DKbiDfWH6ZjHxgSNTG3KHa3ucVmP6rj9MHN3bQn2+U=
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced\012- data
Hash 9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/9DKbiDfWH6ZjHxgSNTG3KHa3ucVmP6rj9MHN3bQn2+U= HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 29 Aug 2023 16:57:05 GMT
content-type: image/png
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 7fe654bf7ba0b50f-OSL
alt-svc: h3=":443"; ma=86400
sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_80e93b9a4cb13643afca.js
200 OK 110 kB URL GET HTTP/1.1 sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_80e93b9a4cb13643afca.js
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type ASCII text, with very long lines (32960)
Size 110 kB (109863 bytes)
Hash 46c21d0acecbd2212374b27c7d1b078a
5861965e506acaaa7d10e5b9c31e99d254b85560
5f5fbee72883732799d75f6c08679ed8a6e769ae4f3afdcd3721103a481afa80
GET /aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_80e93b9a4cb13643afca.js HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Aug 2023 16:57:13 GMT
Content-Type: application/x-javascript
content-length: 109863
Connection: close
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Last-Modified: Thu, 26 Jan 2023 00:32:54 GMT
ETag: 0x8DAFF34DD9DC630
x-ms-request-id: 75f8ab9d-801e-0027-55a6-d7774e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: *
x-azure-ref: 20230829T165713Z-qhrfrcp8pd6nz13md2mrt5cqr4000000015g000000004q49
X-Cache: TCP_HIT
Accept-Ranges: bytes
Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; form-action * data: blob: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: filesystem: ; frame-ancestors 'self' * http://* https://* file://* about: javascript: data: blob: filesystem: ; object-src * data: blob: filesystem: 'unsafe-inline' 'unsafe-eval'; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline';
sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif
0 B URL GET sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif
IP
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; brcap=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback
302 Found 30 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback
IP
Requested by https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/?qrc=dimitri.kardamanidis@ardaghgroup.com
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 29 Aug 2023 16:57:04 GMT
location: /turnstile/v0/b/be88c2a1/api.js?onload=onloadTurnstileCallback
access-control-allow-origin: *
vary: accept-encoding
cache-control: max-age=300, public
server: cloudflare
cf-ray: 7fe654bdb9a7b4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/favicon.ico
200 OK 3.3 kB URL GET HTTP/3 01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/favicon.ico
IP
Requested by https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/?qrc=dimitri.kardamanidis@ardaghgroup.com
Certificate IssuerGoogle Trust Services LLC
Subjectc1a9ed330cc99af178dfc013.workers.dev
FingerprintC2:D5:CD:F4:16:0A:AE:98:BB:66:45:78:A1:88:03:36:21:46:FE:D2
ValidityMon, 14 Aug 2023 22:55:41 GMT - Sun, 12 Nov 2023 22:55:40 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3271), with no line terminators
Hash 36e673173b87831a717faa166d56a1f2
09d60ac4973f11946e69d2f1681613a8248130fa
9222a7f93e292e23f4af514fc87e7dac4ad8f67009ca6a52a018cd6ec10a7360
GET /favicon.ico HTTP/1.1
Host: 01aed1c7.c1a9ed330cc99af178dfc013.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/?qrc=dimitri.kardamanidis@ardaghgroup.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 29 Aug 2023 16:57:05 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QIJCf7HMRrFyLpEP%2BovgWWMvVLEUU0LfJzUjLJMwRcRpq3WyeAdsmA3NZnSCqqJ2gwrfYanWunFQENQ07aOBGRmguru6B9zjvCuUji6LBahVkvgmspgtjCTIYVBlQF7LvW8pwvmgyWKxssvtu2g0kXKtRFHEMevuNqVLMGI7dTs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fe654be7de1b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/turnstile/v0/b/be88c2a1/api.js?onload=onloadTurnstileCallback
200 OK 30 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/be88c2a1/api.js?onload=onloadTurnstileCallback
IP
Requested by https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/?qrc=dimitri.kardamanidis@ardaghgroup.com
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (29684)
Hash 321c4f06ddad5749830573a903803db5
a3564508f8fbcb4e97e6af2c96bc09ded76b273c
92cefd873feda547496b569ec49cc16ea82c1c28959c46bc8b096b57afe04be7
GET /turnstile/v0/b/be88c2a1/api.js?onload=onloadTurnstileCallback HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://01aed1c7.c1a9ed330cc99af178dfc013.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 29 Aug 2023 16:57:04 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fe654bdd9dfb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
aadcdn.msauth.net/ests/2.1/content/cdnbundles/jquery.3.5.min_dc940oomzau4rsu8qesnvg2.js
200 OK 120 kB URL GET HTTP/2 aadcdn.msauth.net/ests/2.1/content/cdnbundles/jquery.3.5.min_dc940oomzau4rsu8qesnvg2.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://autologon.microsoftazuread-sso.com/ardaghgroup.com/winauth/iframe?client-request-id=47ec1c81-6423-444a-8841-e4543b3c9769&isAdalRequest=False
Certificate IssuerDigiCert Inc
Subjectaadcdn.msauth.net
Fingerprint44:5F:75:46:1C:BE:AF:E4:F2:BF:F3:04:1D:0B:56:0F:EE:DA:A0:96
ValiditySat, 29 Jul 2023 00:00:00 GMT - Mon, 29 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65450), with CRLF line terminators
Size 120 kB (119648 bytes)
Hash 75cf78d0e38c65a538ad253ca9e48dbe
bf0452e4a42a9af3b69d5d8c3a3a0433f14921b6
df2aa8537c1992c94846a0ffffaa9031d430d9d0210b9e396ec059aff62627e0
GET /ests/2.1/content/cdnbundles/jquery.3.5.min_dc940oomzau4rsu8qesnvg2.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://autologon.microsoftazuread-sso.com/
Origin: https://autologon.microsoftazuread-sso.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 40454
content-type: application/x-javascript
content-encoding: gzip
content-md5: HWW92uTq7vx3y5z+zFZbXQ==
last-modified: Fri, 26 Feb 2021 06:12:05 GMT
etag: 0x8D8DA1D70FBDD97
x-cache: TCP_HIT
x-ms-request-id: 7b9a1582-401e-0083-6967-d71d20000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0g87oZAAAAAARfm6fAB/aSq20VmvqtAq7QU1TMDRFREdFMTgyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0ayPuZAAAAACN1k6GEW81RIWBrOTbEf+aU1ZHMjBFREdFMDYwOQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Tue, 29 Aug 2023 16:57:14 GMT
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7fe654beaa32b50f
200 OK 175 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7fe654beaa32b50f
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 175 kB (175395 bytes)
Hash 74abfa3570c9d1a6ac684f700828c6f5
7823baee2600b58a8164f891c6ff529e9e52d342
9f3d6a43f8dbbaf0d70069a049ff1008fb20bdadbf1081d52a62fa65b0af263f
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7fe654beaa32b50f HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 29 Aug 2023 16:57:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 7fe654bf7ba4b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_ae573f441ee1cf781ec7.js
200 OK 16 kB URL GET HTTP/1.1 sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_ae573f441ee1cf781ec7.js
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type ASCII text, with very long lines (14775)
Hash 3c6f74f17a1047c4cbb93cd6e456a2bc
4ecbaced5ca7ec33f4c247750f57c3ca31b94be6
2db2f2ea915f4423171358be6337a68b5b3ed82c63bf3d02433ad4a5046c566a
GET /aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_ae573f441ee1cf781ec7.js HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; brcap=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Aug 2023 16:57:14 GMT
Content-Type: application/x-javascript
content-length: 15748
Connection: close
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Last-Modified: Thu, 26 Jan 2023 00:32:55 GMT
ETag: 0x8DAFF34DE08B462
x-ms-request-id: 0fea7c70-101e-001a-1351-d78944000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: *
x-azure-ref: 20230829T165714Z-sks9mxm9e919fa18xyhht2bvcw000000012000000001e0gg
X-Cache: TCP_HIT
Accept-Ranges: bytes
Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; form-action * data: blob: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: filesystem: ; frame-ancestors 'self' * http://* https://* file://* about: javascript: data: blob: filesystem: ; object-src * data: blob: filesystem: 'unsafe-inline' 'unsafe-eval'; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline';
sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
200 OK 1.9 kB URL GET HTTP/1.1 sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1982), with no line terminators
Hash 4b5c228b4faba433d06ec569ed855b2d
a7d3882b93e332460e7c59510a6a811ef011983f
eb19d76cd1fad39abf0f2778991883a5cf9ff560117ce8f7c64124e71471b4ed
GET /aadcdn.msauth.net/~/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; brcap=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Aug 2023 16:57:14 GMT
Content-Type: image/svg+xml
Content-Length: 673
Connection: close
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Last-Modified: Wed, 12 Feb 2020 22:01:30 GMT
ETag: 0x8D7B0071D86E386
x-ms-request-id: 466128f5-201e-0001-446b-d71c71000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: *
x-azure-ref: 20230829T165714Z-btkeya77g93595fvp11znuk2x000000000zg000000000fra
X-Cache: TCP_HIT
Accept-Ranges: bytes
sultaniselbiseleri.com/aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/converged.v2.login.min_xs4q-enqjizb-pd0ha63sw2.css
200 OK 111 kB URL GET HTTP/1.1 sultaniselbiseleri.com/aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/converged.v2.login.min_xs4q-enqjizb-pd0ha63sw2.css
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
File type ASCII text, with very long lines (61177)
Size 111 kB (111100 bytes)
Hash 5d2e2af849ea8c8cdbf8f77485aeb74b
e0239b7b40602a5c45680992e08bfbe780d937ad
09bcfd473f343f606206e638d6aa7c7436ab54f40fca8f3ea2247fc068147ffe
GET /aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/converged.v2.login.min_xs4q-enqjizb-pd0ha63sw2.css HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Aug 2023 16:57:11 GMT
Content-Type: text/css
Content-Length: 20105
Connection: close
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Last-Modified: Wed, 17 May 2023 19:54:03 GMT
ETag: 0x8DB5710770A6D5D
x-ms-request-id: e43790f8-001e-007b-3ca9-d4e064000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: *
x-azure-ref: 20230829T165711Z-80r859sx2h2z12a8y68fu8k81s00000001200000000062fa
X-Cache: TCP_HIT
Accept-Ranges: bytes
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1015936954:1693325273:Ot2HuVMXNnYgpUbsARxYs7ViuqLmx6CvJnApi_MX8xQ/7fe654beaa32b50f/551780df673e389
200 OK 86 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1015936954:1693325273:Ot2HuVMXNnYgpUbsARxYs7ViuqLmx6CvJnApi_MX8xQ/7fe654beaa32b50f/551780df673e389
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash e3640bab77a38fe26322c7bfac54e745
a57399b37c7835e55088e02bb5bb73e8ca7e48c8
a99c74f94f3500e8f1ddee6d2bd191bb9554c66f5be57abe485765856e0dc72c
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1015936954:1693325273:Ot2HuVMXNnYgpUbsARxYs7ViuqLmx6CvJnApi_MX8xQ/7fe654beaa32b50f/551780df673e389 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 551780df673e389
Content-Length: 2398
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 29 Aug 2023 16:57:05 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: s72h6FryHREIdszL/xiuYlJvCji4qlZj/h819zm8RFvUW+dt31SJHdjKas96naCu3tmV91iAdqcHgV9wfqs53i9oqxi2nS08XzIJLJ37HvRPRkmRkCJpOfdWoVi3JpiJDIkbU+WQ8YhcxRnpp/kTptbqwlKT4/kYRSo4M3JkgljiEdMY8iRLlKcooEsd5VoS4hk/aS80NAsIiPn1I0LH1KDvVpHnBhuGAPy21rGOGI8WATGfahpaPE9x1RGLNO6n75uxewXa9MgA8EubHsgtJi/3ukwswPuHLkkgAOcEBlhMJG7w/LD/82bNxHSW2e3+bQIC7NQJPOZ7Z+MYq1R4IsfiZb/TmsYGdGMmscha1NMVFZQncojQVcch7OJennOqhzz2kVZDayRiNk7vVqsy0flZfKANgMSUcjkXdaoTqhPWB5pPrdRhWMcJjgRET2Z0xU/mOa7eKprHUvd/ACD8VLT1L3sdBZWW7c9GtByjRroAGCT3b3Y465QAundUoOg2$mgp/N/5Xf3PpnAwVaqbrAQ==
server: cloudflare
cf-ray: 7fe654c10e64b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1015936954:1693325273:Ot2HuVMXNnYgpUbsARxYs7ViuqLmx6CvJnApi_MX8xQ/7fe654beaa32b50f/551780df673e389
200 OK 3.5 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1015936954:1693325273:Ot2HuVMXNnYgpUbsARxYs7ViuqLmx6CvJnApi_MX8xQ/7fe654beaa32b50f/551780df673e389
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (3468), with no line terminators
Hash 044c4e5b566896bb501b8776de32bfc4
3c5ce89e603f8c6de69f5e73008f53c5a96e5dee
bc918a823348c32d14ac17064e54b3df1d0988be55e76c41d66e054175deedaa
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1015936954:1693325273:Ot2HuVMXNnYgpUbsARxYs7ViuqLmx6CvJnApi_MX8xQ/7fe654beaa32b50f/551780df673e389 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/obyq7/0x4AAAAAAAJLRWBJPe2FmpMh/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 551780df673e389
Content-Length: 24831
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 29 Aug 2023 16:57:09 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: bpYDJWAy0eF/U8jQK1u4QNAT+cvSwgFGFGm4AIzuieL0d+2GMBhtyGQ83ljHXSmKs+BhgSe85rRSA9wZeFX3DVNCBpMBkZo1vqiZckbPDOLEpfAxTCrmBPp6CWCMzWQG$5JzO9CJaev+5YVK1gm7B+Q==
cf-chl-out-s: TPi5Kwh+BwBqZHrDIWUBy1ZHigv7dkwM7a+mBYUVMgFZ9IdZbq5UwLivCYDc54gsjLz1yRsq3J2xVXXxJSRS+6nxN3OyUVHq3N098UGMIK6VR5oXDgzthZHrbFrBVE8XS8HRN0YRy3KjC+QSMCmXVy8tYOC7Wna6vh8QWoDsbbvyoFbUnkAOwLXrbpQWl6RqHZ6Mfg1555+eRuWBYd1IVMDrDb4a2Y4+qkcT6ifKhIz/SGLLG9Jd+mDokXtQiFq6l273ZRU4KUqKyu8f/9IqBA==$c4ooSzLC+dQoEpbBz9JVhA==
server: cloudflare
cf-ray: 7fe654d75b70b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/js/ConvergedLogin_PCore_2W3IEdsiCwViwvv0RWyRLg2.js
200 OK 689 kB URL GET HTTP/1.1 sultaniselbiseleri.com/aadcdn.msauth.net/~/shared/1.0/content/js/ConvergedLogin_PCore_2W3IEdsiCwViwvv0RWyRLg2.js
IP
ASN #43624 Pq Hosting S.r.l.
Requested by https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
Certificate IssuerLet's Encrypt
Subjectsultaniselbiseleri.com
Fingerprint1C:53:CC:F6:B0:23:06:95:8E:14:EA:4B:5D:BA:75:50:3F:BD:74:FA
ValidityWed, 23 Aug 2023 21:27:37 GMT - Tue, 21 Nov 2023 21:27:36 GMT
Size 689 kB (689016 bytes)
Hash 3b72e939a304ce05f0ceab4a0ac39dd9
b2cfd3cb1bd0ee53c795e040063d0f55f544d939
cc58721894324d6f6f53b7fe4cb0d08f923aa75e52506c0a58d29e4390b7cedd
GET /aadcdn.msauth.net/~/shared/1.0/content/js/ConvergedLogin_PCore_2W3IEdsiCwViwvv0RWyRLg2.js HTTP/1.1
Host: sultaniselbiseleri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sultaniselbiseleri.com/__//eqooqp/qcwvj2/x2.0/cwvjqtkbg?enkgpv_kf=4765445d-32e6-49d0-83g6-1f93765276ec&tgfktgev_wtk=jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hncpfkpix2&tgurqpug_varg=eqfg%20kf_vqmgp&ueqrg=qrgpkf%20rtqhkng%20jvvru%3C%2H%2Hyyy.qhhkeg.eqo%2Hx2%2HQhhkegJqog.Cnn&tgurqpug_oqfg=hqto_rquv&pqpeg=637929903776466681.A2A4AlPlQYKvPYTnOk00PYToNYGaPIGvPIOzO2TjPljoOoA1PVK3AoO5QVOvQYGaPk00AYLlNVi5BFCvAoAaOliyQYHlOYWz&wk_nqecngu=gp-WU&omv=gp-WU&uvcvg=I-XnsevaZLqScbPfu6RYpY7IJD_LTOPESPKueoPo49a8yaDo0kqCdRJbDG3lbRNIEam2zNMQCsdLvyVNVNFWspCLHwP5Uk8CHlDZMafbjd6z4GKk3_P0qHa9xXPJADlYDaFR66v5o5Tc01hUKi5E_UkoKs8q1prnbGla9Aj5bbLO6ATkGK82KM6RbZaa32JC_42rdz0FxBy525JrewXiOC1XYRBkEMHna3LGpORVj7Nfhqq6y-4zLmWjmayBnR-YwnorQ3rtTugIAMDKXXrnLy&z-enkgpv-UMW=KF_PGVUVCPFCTF2_0&z-enkgpv-xgt=6.12.1.0&ste=fkokvtk.mctfcocpkfku%40ctfcijitqwr.eqo
DNT: 1
Connection: keep-alive
Cookie: qPdM=3AQJ16Vu4VNv; qPdM.sig=NbXV3T4lvUIqzcZMQuvp9K6wsew; buid=0.AXoAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAAtyolDObpQQ5VtlI4uGjEPJtshcj-EQ4ggWRxRr6M0Aci87gbWA1qUKq_7l6cIoOWWJ_qT-Jbecfl7l3Kw4vhY9BZzzK9eGS995NhR66mmbDFk-GksF7mjYc5CKohk8U0gAA; esctx=PAQABAAEAAAAtyolDObpQQ5VtlI4uGjEPvETM2CePpfJjUM0VC54x8VW7912Vi8aroyETyBrnbMiQ-dKNgsxVwoJrG_7i9ElfuVUabBG8rlGdWLTQDrJvTFmd49qIxPr66zzCudIpBN-xNtMAtzUKr2KfaatQAdrsv2T-h7q5_GBYmgWkCRdD7VF4h_ykF3igvqYkdhCw_z6qbC6wdQ-WeFO9z7QGDs8GMFm_2BW9_gay7kS3_i_lcZSajRv2HxQx5U4p93VnqN8gAA; fpc=AjbsKmrlOehEjzs2U4Fyb9a8Ae7AAQAAAGYagNwOAAAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 689016
Content-Type: application/x-javascript
Date: Tue, 29 Aug 2023 16:57:11 GMT
Connection: keep-alive
Keep-Alive: timeout=5
192.185.184.241
104.21.65.248
45.150.67.156
20.190.177.146
20.190.181.6
0.0.0.0