Report - zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no

Report Overview

Submitted URL
zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
IP
104.21.75.154
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-19 00:02:52
Access
public
Website Title
Final URL
zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Tags
phishing microsoft outlook
urlquery detections
Phishing - Microsoft Outlook

Detections

urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-18	3.1 kB	225 kB	216.58.211.10
zambezi.top	unknown	2024-02-10	2024-02-11	2024-04-16	7.2 kB	408 kB	172.67.178.108
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-18	28 kB	2.0 MB	104.17.3.184

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (49)

	URL	Size	First Seen	Last Seen
	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal	3.6 kB	2024-04-19	2024-04-19
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash e7406e1e0a0214dd7f1bd00e45ddcd9d 49e9a727efa18e59661d73223abd7f34a1926430 dd97a455c62d04062b3c1c27bedf12581a23e0488e1b84069990b7add14d3dcd Loading...

	zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null	202 B	2023-05-05	2024-05-01
Pretty URL zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null IP 172.67.178.108 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-05 20:07:55 Last Seen2024-05-01 11:06:01 Times Seen498 Hash 8cb487d4459c7a6cd9d6f2d45900c628 d35cc3c00025613a8772575e3daa962b633ea2ec 977d0b37baf294b277f8469a4178563b7b21bd289d9df105b5a37a025bfd4d87 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js	90 kB	2023-03-10	2024-05-02
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js IP 216.58.211.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:24:46 Last Seen2024-05-02 09:54:05 Times Seen17552 Hash cf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a0b5cd4b56be	430 kB	2024-04-19	2024-04-19
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a0b5cd4b56be IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:56 Times Seen2 Hash 2e57f0c0574c8056b5753cd31487e422 afe05eae5496bc40a928cea34faba3de57e72d2d 3555f6c063b56e2c08326c384a9b6f16f2c55dd868f517c7a126334e59779df0 Loading...

	challenges.cloudflare.com/turnstile/v0/api.js	42 kB	2024-04-17	2024-04-19
Pretty URL challenges.cloudflare.com/turnstile/v0/api.js IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 13:23:36 Last Seen2024-04-19 12:29:24 Times Seen644 Hash 374fec8b5e50cd6ab980f3fef21a5aa0 7f474607991a19b6f1b78cc32e0f75b501b60774 8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a Loading...

		Size	First Seen	Last Seen
	#1 Eval - d8ef1df82901a1874086304074147c83	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash d8ef1df82901a1874086304074147c83 a6c3fb66f8c3d06d8881368d7df562e638b68fc6 52e58bb8af0d88ffd6b7c683075aaea93d70ca7c8617df76bbc701e436c1edc7 Loading...

	#2 Eval - 8d00c02d1673629118bbb6c6ab7439c4	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 8d00c02d1673629118bbb6c6ab7439c4 bacf3e48934368960ea40aa669080cf94d0de999 20e0fa79542999720d26bdeb65c27b86291dd2b896d41be5c7f9482ac253b6fb Loading...

	#3 Eval - fcff845e239ac427e043426e62a3e5b0	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash fcff845e239ac427e043426e62a3e5b0 defac03fb82e3087cf9af21f29e916829e1ed0b4 df79f0fdc924527f4a62f8fbbfe7359c61b38fe7eb330451db179a3735b9c1ef Loading...

	#4 Eval - c30becd0f5ddabef6992b2485df546a0	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash c30becd0f5ddabef6992b2485df546a0 62657a08ce90abd7a9d73437dad932d7ead58e52 5b3def9c7fcacbef3bd88bf9cd61b0604fd15b65217f049ee31bc0b5278f2049 Loading...

	#5 Eval - e14f18078bb5d60bfb265ebabcab1c20	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash e14f18078bb5d60bfb265ebabcab1c20 d37a95ee1c3863c6f0823e94586672b07a0cf000 38534358a79c507378ad31080ea00eb51ccbe4be5e61c03f2dd2a1e976d9fa03 Loading...

	#6 Eval - 16549844058e030392449c307cd3b4a1	142 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 16:39:32 Last Seen2024-04-19 12:24:13 Times Seen96 Hash 16549844058e030392449c307cd3b4a1 b095927b508c4960362343d7c00da2b3beea83d9 3a2d31b38b0835d2942cfd57c46d82a3b2e02e84841819a3c01bec45d52de9ca Loading...

	#7 Eval - af328a4f44903ac06fb3d2cfa1be0e36	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash af328a4f44903ac06fb3d2cfa1be0e36 814f47e7f1fe64f262d0c5da6d625ebe88d59bbb a979826919289fa5ec953972271e33cf002dbf63e138b5c58d65ac234fa2a1a8 Loading...

	#8 Eval - e8ad5fea6e099981a71e31a22cf175b7	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash e8ad5fea6e099981a71e31a22cf175b7 6b61aabf5378f28cda138bf53275c3f8490f375c 7edafd6041da14715e44fd7db24d04638498ce92b68e3efbc8a5e2d42faaf40f Loading...

	#9 Eval - c981b6ff7b548d4f16f166b9ee4463e9	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash c981b6ff7b548d4f16f166b9ee4463e9 d58a7072242da25d1d079bd7f18ccdd72f0a3e38 70d6d6aa86c66f76f9716b0f4d4c80178b3e594fcaa794f41f3c8f223206760f Loading...

	#10 Eval - 34bf39a6171b638c5443589eb1ca8cf1	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 34bf39a6171b638c5443589eb1ca8cf1 fa1c6e2467377a4c608887d9254e40e5e52769c5 a5c617800873b36a3fe721dfe6cc0c8f8b1093381cbfd9de8b110716b3bcccc8 Loading...

	#11 Eval - 6dca26cd2acbf584598ef3b093326e51	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 6dca26cd2acbf584598ef3b093326e51 f4c71ea6fd436a832b84f2a6392628171bea4d50 3951dcc67f0b9ddeac8ecd8ea3d7ab1202162700e1b627d909f579ddf358b80d Loading...

	#12 Eval - 6053679f5374f6bbdf0031149d4ccc75	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 6053679f5374f6bbdf0031149d4ccc75 1d6ec65982b6bed70ee5c72cf4cef6d0654dbda6 c2893c1883ab0e5888842ef77100b8e2b1fce247825181679e42d3183b945478 Loading...

	#13 Eval - 5b12c75fdb0f58dc35b7c520fb08d2de	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 5b12c75fdb0f58dc35b7c520fb08d2de fa6f82e653a3eaab76cbf838325163f74b7c45b0 270eb3529a6378b23cb93fde2ce24ec1976e3f93ec24cf8251ba03e76834b933 Loading...

	#14 Eval - 9f8d56157ba0787958dc7ea28333e649	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 9f8d56157ba0787958dc7ea28333e649 3b051df7c6d9eb907b30d5de4931771ac55dee69 190ea54ed45f970c3286441ee203b2858a45e8473a1d2e668b8513e425eda172 Loading...

	#15 Eval - 9f25357be390870083e5955cbcf14074	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 9f25357be390870083e5955cbcf14074 ec9c3683303c922bf4a759d0a6e5e000c1b88bd0 c074f2dfb7e86d1559e6237cf5f84b9c595232f3eb0802442386f0053560ec0a Loading...

	#16 Eval - 9e2d1531b3ade7dd7a1f5c1426ffef90	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 9e2d1531b3ade7dd7a1f5c1426ffef90 902fe48bc895c7b1e3620be5af11ee3d7715aa41 87f32eaa946a1ad9ab0fc52b74cb3e1d240145b9c5095380b9bb4c45c1fbbecf Loading...

	#17 Eval - 46239413baed217a833181c43750302f	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 46239413baed217a833181c43750302f f7f291bb7eb4f92aa77955a9fa00f113d31adde4 4af2dee5cbf4f678c81a082e03113009358876826b545bb293e738112bda4af4 Loading...

	#18 Eval - d7e13207a93760b594de140d4961cff8	161 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 14:30:15 Last Seen2024-04-19 09:43:07 Times Seen102 Hash d7e13207a93760b594de140d4961cff8 b62363a5d48a4d8c812c41c546852919ffd608bb 30a8a2ad53b8f62af74a96fbda1a34d23391bdcf90e9060af04d31a1834cf7de Loading...

	#19 Eval - 9221ae7aacccce011d094b0ccadd4e82	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 9221ae7aacccce011d094b0ccadd4e82 2c6ff77eca5136aefb0fd84999e7429233990a9e 1d54157319e602ce23b0bcf8d1fd7edf4b2ed3641f2685e12f708cbfcfd99239 Loading...

	#20 Eval - 44767dfd581fc50641316cad73153bd7	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 44767dfd581fc50641316cad73153bd7 b19fbf01717169035df0f0a1b10bff2d53a6ffe0 04e7d374a2640b510ca5a988aa1cdde71d4e1b47e6dac1a8afb9d61420c89f03 Loading...

	#21 Eval - 3325b289c04bfe55f4e65894fb548e4b	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 3325b289c04bfe55f4e65894fb548e4b c79cfb0d9f1f70728e5272ada8c2dc8943690a15 9216ee373fe48ff70e917e2e06560c6a3339a22de15583aca4dd4498ced8437c Loading...

	#22 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-02
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-02 09:59:26 Times Seen351086 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#23 Eval - 21b5fbb84806fedca319dbc5f345bb06	548 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 21b5fbb84806fedca319dbc5f345bb06 73453211d88927567c075711726618282bb0a971 ad07440be3d2d3e7902197440e67da138699d7a5c8e0069ae8ba9d7760eded4f Loading...

	#24 Eval - 6f0aa1ca81059581ef039b4decaeee5f	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:54 Last Seen2024-04-19 02:02:54 Times Seen1 Hash 6f0aa1ca81059581ef039b4decaeee5f 275ec837c4b4ca363ba6c54f27af6e058102d886 7bd48841d15d6e4382e74c640cbbe6411b44be3df4919c5d5a434459377cb57c Loading...

	#25 Eval - 8ab369ee6db33e3b26b2ddb89210e7b3	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 8ab369ee6db33e3b26b2ddb89210e7b3 51bd171dbc0f6de3804d63c6d2ec7fc08bebe5b6 6faf2eacf650e2c04d728ce1e9a65b26c5b1435ac9724d5f94c3abf017eaf8f6 Loading...

	#26 Eval - ae79df0a2dd62176a68cdc6272c36c4d	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash ae79df0a2dd62176a68cdc6272c36c4d a8064089ec4f7a1e76c6ce607f18598c9082c331 1cdab99b77a87fa5748248dff5d2ec977e0b8a6b100cd8f30eec14c9e8572023 Loading...

	#27 Eval - 9fba386b83419a08ff1faa8007dd23a1	60 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 14:11:25 Last Seen2024-04-19 12:29:21 Times Seen535 Hash 9fba386b83419a08ff1faa8007dd23a1 c6148c7d249ddcfe37f49e99ac7cb60fe3bd43f2 a197c137af56d7b49dd589ed67e397152047dea7b7a147b0403d07bd1c6d59ee Loading...

	#28 Eval - 640016b61da13c2d6850f62e216f862e	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 640016b61da13c2d6850f62e216f862e fee306d52d4e26e77e5fd45ac6c68f46f2eb497f 633e93d3355a308455e33287e5b02d3840271cde7c2d2be714994b6e335c7b61 Loading...

	#29 Eval - de12853b840b7eacbc095c6793244a18	1.0 kB	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash de12853b840b7eacbc095c6793244a18 1192b8e2ae8a94c532ef489d18ad83ed647dd2a1 ee2cf395aa29cba97279c475fcfdf3256638d27eebbe265dd7752849715e187c Loading...

	#30 Eval - 39b2d4a40269a80849d23c575cc4e920	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 39b2d4a40269a80849d23c575cc4e920 2b35aaf8dd1ce3ad236781f255ec9b26e5cfa7c2 f2cef5bb7d703c3d785b3fbce764f4e99364aea6e3d3f73ea64ebc54346fde50 Loading...

	#31 Eval - 8f33677303bc1e77494f49efb44eac1a	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 8f33677303bc1e77494f49efb44eac1a 98e6c1b87a366e8d380ab7ea12bb2ebf7712fb76 7fff265aa9b223286f5127a2e6e8f0682e66c67f1a790f9d31a46837ef361c81 Loading...

	#32 Eval - d7cba20d4f5e663c073aeb568409590b	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash d7cba20d4f5e663c073aeb568409590b d665dbf7a442520cdf1c4357cd8a09059847ac1d 7379923c3f7a9f480b6a8c0c3efc37fd0aafa1ec0666f94b8a9ed3dc88847eb4 Loading...

	#33 Eval - 59cbedb145d7925b62af3c1ae908e7ee	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 59cbedb145d7925b62af3c1ae908e7ee ba06a72668777038fb4adbc1640764b3529abfda ffe61a5b6216410f70543e754e7b77270ccb07a8dfddfc6d9fa26860ff22339c Loading...

	#34 Eval - 44d6ce76474dbee81e23bf298b3ecf98	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 44d6ce76474dbee81e23bf298b3ecf98 77380cbae3aa02250b488514aa09e5c6cf1dd573 3003c68f4fd01323dfbb753397ea4fc5aafa0ca52afeb785fe17289a4c18e6ee Loading...

	#35 Eval - b7ae3464265373862c2cc0315835a327	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash b7ae3464265373862c2cc0315835a327 672bf25eabac98cbe50dfc7c4be1bb3ef6a43cc4 3ebf95c067cf31845a834ee55f3ce73e20c6c44dcc0c506656d463b876b160f3 Loading...

	#36 Eval - f2a6479ce9c37ebe65f0b05e36464cdc	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash f2a6479ce9c37ebe65f0b05e36464cdc 2118ba47a951ddccdfbf49921801cc5c42f8caae 4261923a287cd648cb9b5e9463246947be9137223e658c70b8527991f5d6da6b Loading...

	#37 Eval - 39162e9774c567063f523570fb8c9f3b	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 39162e9774c567063f523570fb8c9f3b c9772921437e007e38ba82ebfa56dba51add7e14 97ee0a951fcda813c004507b033a2bf28eab842de56a49764245f2413d037d11 Loading...

	#38 Eval - 8dcfa53ca7251535f44f072c1320d332	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 8dcfa53ca7251535f44f072c1320d332 67ec41704850e10fa9e41108cac6f7aa3a65abe0 5713bd439909c7b566535289153462a9110c814adf268735e0f30b034ef36016 Loading...

	#39 Eval - 1fb672bc98f8ee03dad54db9cc1f0d64	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 1fb672bc98f8ee03dad54db9cc1f0d64 1807aaa748ff1634ea9d142c54b83d9a581a9ad7 6a166664676049195d052bcb37e860948b031db0c9bbb4ac03043af9f43ecdb4 Loading...

	#40 Eval - 4830e894d8142e418208f0ba853bfa30	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 4830e894d8142e418208f0ba853bfa30 3d933a8cf039c9664aa2367f751b349f7d6dab35 68e767fb98f4affb8dd868e0f00894c5c6a727b7cbe8d87894d85c37844510e1 Loading...

	#41 Eval - 49e6e5832b73ab4ca652e7390bcb50a8	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 49e6e5832b73ab4ca652e7390bcb50a8 c05ed19a75ce28bbb9ae84820548e734e1fa343a 35ff7cc46a5d6a83782843994382078c406a919c07c5a51cff189007f4beaad5 Loading...

	#42 Eval - 1e6a32b2abb025b10dd64edeca42476c	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash 1e6a32b2abb025b10dd64edeca42476c f0235020b4d5eb054383ebf3610dc1c08480d530 2316a0326196ec96f0a395ff8b77d8e51ef0d28a4118cfd3d6a2ac746974df0c Loading...

	#43 Eval - ef29a3c47ba3c4e8a352195280257a30	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 02:02:55 Last Seen2024-04-19 02:02:55 Times Seen1 Hash ef29a3c47ba3c4e8a352195280257a30 1f7ea5c8c70892e4f0dcfadd46161834848a8be1 069b7ec11599960e759f9baa70c1619e0b69511e5a49bd7b35a760d1ec485b3a Loading...

		Size	First Seen	Last Seen
	#1 Write - 086707e4369f60afedcafb16050a7618	39 B	2023-03-07	2024-05-02
Pretty Observations First Seen2023-03-07 01:03:24 Last Seen2024-05-02 09:59:25 Times Seen44706 Hash 086707e4369f60afedcafb16050a7618 8216b0cc6876cbd44f01c158e7dff3833ceccd41 a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e Loading...

HTTP Transactions (60)

URL IP Response Size

challenges.cloudflare.com/turnstile/v0/api.js

104.17.3.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 19 Apr 2024 00:02:25 GMT
content-length: 0
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
location: /turnstile/v0/g/54ea73d52131/api.js
access-control-allow-origin: *
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a02c7a6156a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.211.10

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:06:59 GMT
expires: Tue, 15 Apr 2025 23:06:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 262526
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zambezi.top/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.178.108

0 B

URL
zambezi.top/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.178.108:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Fri, 19 Apr 2024 00:02:25 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uuMsDhWB%2FqYTkvq%2BFCsF%2B3QTWgKMlN1UbKL84e%2FUIgk9u%2BamY0jjbgQ%2Fq38wlGsDfI6ttXzh2GglW9F3H6fk%2FAflwMNYzs1vlh8%2FypJ1a5onypx7l0pnpgpGu%2BSJZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a02e6eefb529-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3kb7e/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:25 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8768a02f0f7956be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a02e8f4b56be

104.17.3.184

172 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a02e8f4b56be
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
172 kB (171933 bytes)
Hash
2b36849403a27db7ef1db1664e7e206c
658597eba0ae623251402294074fff2a91d34390
f2b21bc3cb109f2a27815859935761a6dadb17b18e61f2d0dfba45ad42bdff28

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a02e8f4b56be HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3kb7e/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 8768a02f0f7b56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a02e8f4b56be/1713484946083/5hmCioumPt61QxQ

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a02e8f4b56be/1713484946083/5hmCioumPt61QxQ
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 74 x 33, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
71e7918997b1181255c3849a50370579
50f38cf0b279addb3f9383bb8cdbf9794ccdab1a
7fef3356b12d1c86ac3f8af70f3ee7a4fa31d6415cf0bd0930302f0841089d40

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/8768a02e8f4b56be/1713484946083/5hmCioumPt61QxQ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3kb7e/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:26 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8768a034d9fa56be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1654168842:1713482911:-wyVAmt7pdcWQAnmS5UBaqVQI7dAcVsHMqmzwPAovss/8768a02e8f4b56be/86ab4706f105613

104.17.3.184

94 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1654168842:1713482911:-wyVAmt7pdcWQAnmS5UBaqVQI7dAcVsHMqmzwPAovss/8768a02e8f4b56be/86ab4706f105613
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
94 kB (94544 bytes)
Hash
d1a7bec0a270a6db48b9b323f6ed583c
28bbbe35bbdb73c8527d42f7af145c4b712aacd7
4ee455a0198470278b491ecab91c408847aa11a9704d73ddba82ede1ceb3f33a

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1654168842:1713482911:-wyVAmt7pdcWQAnmS5UBaqVQI7dAcVsHMqmzwPAovss/8768a02e8f4b56be/86ab4706f105613 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3kb7e/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 86ab4706f105613
Content-Length: 2826
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:26 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: pOT7+buhZZOYJpBHfHuK870u4CGxz3Iuy6e1yuC4GzqsPRlpAY2RYjNNvQjn90e5lkdQVhMYhJj60QPIXMLgbOjKt+XQVlQOw9WzQxnVU9GI6SJlXID1MzJTJ1HOce5hnlr0oUPRK8CB6SM4NItIeL0dbb+ceZ2eaP1zKHfUm1mmw8yQxq9WeREMKOOBgzs/Tx96I+mESU6nA6pykJn37fqtOEvmBVSYS5x2uzM7OROqs9hsGhusdliBrUfQ5fSxQUVHXa+owel1VEfItvuu5sU5OqDuNDTNSDfQBDBOKc1s/9FLzo7HlQ3VOdUqHF+hZkcFtHXXM07IriFZujAvEZdybVnfHSWkSIsp3E2u+zJhTiZRAFm6ZV11gjz3qnyCF3XCAVbxDtH+hpGTdc9++cJk4hENySH2jbB2TMyq/Zj96f28QmmDdmRaF376TFU4K2xmM/uECpkzS1D8ZipxvYt7auhyE54RsZS9KLNV1Sc=$frU1ejCIdRBtN4ebWP/BJA==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a030e85856be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.3.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Fri, 19 Apr 2024 00:02:27 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
location: /turnstile/v0/g/54ea73d52131/api.js
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a03c7cf856be-OSL
alt-svc: h3=":443"; ma=86400

zambezi.top/_newsos_oxy/functions/validate.php

172.67.178.108

31 kB

URL
zambezi.top/_newsos_oxy/functions/validate.php
IP
172.67.178.108:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
31 kB (31192 bytes)
Hash
cd7bc652307ad520366f441f280c3841
6793c65d772047d2f94cae30b74e5e99266731a4
76fac969d2b0e07d21bf7f1c395d0a855abbf6559edb1cc13415db1811ec6187

HTTP Headers

POST /_newsos_oxy/functions/validate.php HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://zambezi.top
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Cookie: cf_clearance=vw21i96QZfq5QML__McaPKQ4l99CrqS2I6s3ah6IRrE-1713484945-1.0.1.1-194OzR5AuOGYHWVcC2Qt2ooowRVhKFRuHi4Gw_ftmHnADiYkI.mCf91mX.9qeMmsC0utPNSVI4Jx0iGSQ7o8Yw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:27 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mtSox684LXL9EP4VrY%2FuKO0gxTI4IqBqhxU6Y4xXSypd7uEqV8A84rPdrrTxjAb5V5IWS6DC%2BZzuuTCmVRzoH%2BKTIUQW2mtEmjKniOhOsTWC%2FGSI4f5FXbrGM7vQGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8768a03a0b22b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/6f51q/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:28 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8768a03d7d4b56be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a03cfd1f56be/1713484948360/_idQIy61D2DONA9

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a03cfd1f56be/1713484948360/_idQIy61D2DONA9
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 32 x 15, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
5dd5db6b983985d5235cfa81f38b74aa
f9677ca5516302517ae435178d1b526dc9569bc9
f409ef2a2256879d4100906be25230ae3dfd6c112900cdae106618aeb0768870

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/8768a03cfd1f56be/1713484948360/_idQIy61D2DONA9 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/6f51q/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:28 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8768a0419ef856be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a03cfd1f56be/1713484948362/c974425a17315114ad54b457c7ef089dd1f775cfebcae3dcb723a9add44a75d1/PS0oZceGt-Vj6_W

104.17.3.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a03cfd1f56be/1713484948362/c974425a17315114ad54b457c7ef089dd1f775cfebcae3dcb723a9add44a75d1/PS0oZceGt-Vj6_W
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/8768a03cfd1f56be/1713484948362/c974425a17315114ad54b457c7ef089dd1f775cfebcae3dcb723a9add44a75d1/PS0oZceGt-Vj6_W HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/6f51q/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Fri, 19 Apr 2024 00:02:29 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gyXRCWhcxURStVLRXx-8IndH3dc_ryuPctyOprdRKddEAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIMl0QloXMVEUrVS0V8fvCJ3R93XP68rj3Lcjqa3USnXRABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8768a045286c56be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1819713464:1713482995:RJJJqbFd45L9LF4fNdLVt02hDv0lhY4aph1PBv7AOhw/8768a03cfd1f56be/d3f48849f7885bd

104.17.3.184

3.3 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1819713464:1713482995:RJJJqbFd45L9LF4fNdLVt02hDv0lhY4aph1PBv7AOhw/8768a03cfd1f56be/d3f48849f7885bd
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3420), with no line terminators
Size
3.3 kB (3266 bytes)
Hash
bba416fba0ea1a8f11e9f5735661e84a
0f8172f1c25ef5a54e365b424858fa2497e8c303
bd807291a69c625d1dcafa0c3aa3e63ef7930db50b627f851b8f03381d25c703

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1819713464:1713482995:RJJJqbFd45L9LF4fNdLVt02hDv0lhY4aph1PBv7AOhw/8768a03cfd1f56be/d3f48849f7885bd HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/6f51q/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: d3f48849f7885bd
Content-Length: 26353
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:30 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: nujTRBqYKLZDnS4AViel7gy2z7JTjLXRPCdUZVmQdKW+cJ9KDAtb/2ywTiqVNMZG3muw99dE3f+RTecruGTvlOb3Rbi8sDT5ektrGLqSgdsA8SgEr+LOX4qZRiguhPtxWFeWmNzvJmKMOaDpVcINuMwXG2mUXymCd1W/vHDsrobHyqRCVFl02qFBSXr/xOa+$VEQ8CowVcvu2Wjp89n2NQQ==
cf-chl-out: kwICbfYNUVlp8cCRTh/tJmG0vESIdXj4viLYbZOFcg+zJCXqf8kIFn7D8fpdDY2jWxvPr9dpMuZBxIN8ZeRC3nBswW01hg+GP6l1lla6QWVFOPMVhLAgapMWshm1OZYu$kF5kD2hm0wKd59u5gcKXeg==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0496a2756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.211.10

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:06:59 GMT
expires: Tue, 15 Apr 2025 23:06:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 262531
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/kxiji/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:30 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8768a04c5b6556be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a04beb3a56be/1713484950763/-rY3ssd76Q7C-2K

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a04beb3a56be/1713484950763/-rY3ssd76Q7C-2K
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 44 x 15, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
733fb16c16b33e8fd225e0d3126bd808
6701f7aa34a69a403838ac2fcbdd478ce30b4d50
207e9ce2bad98272889fd64179996a5eb423cd4560080847a809cb9fd876283b

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/8768a04beb3a56be/1713484950763/-rY3ssd76Q7C-2K HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/kxiji/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:31 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8768a050ed4256be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a04beb3a56be/1713484950766/e4e62b96b852cb9f0b1d7df5ad74a584e6213cd55b03ec2616ed375eb550b28e/7gpbFdrTiLJ8K3c

104.17.3.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a04beb3a56be/1713484950766/e4e62b96b852cb9f0b1d7df5ad74a584e6213cd55b03ec2616ed375eb550b28e/7gpbFdrTiLJ8K3c
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/8768a04beb3a56be/1713484950766/e4e62b96b852cb9f0b1d7df5ad74a584e6213cd55b03ec2616ed375eb550b28e/7gpbFdrTiLJ8K3c HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/kxiji/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Fri, 19 Apr 2024 00:02:31 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g5OYrlrhSy58LHX31rXSlhOYhPNVbA-wmFu03XrVQso4AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIOTmK5a4UsufCx199a10pYTmITzVWwPsJhbtN161ULKOABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8768a0557f3d56be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.3.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Fri, 19 Apr 2024 00:02:32 GMT
content-length: 0
location: /turnstile/v0/g/54ea73d52131/api.js
cache-control: max-age=300, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a059a8f656be-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.211.10

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:06:59 GMT
expires: Tue, 15 Apr 2025 23:06:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 262533
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yt2t2/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:32 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8768a05ae96756be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a05a492b56be/1713484953107/bde05f96018e4d3fef1732b3d613045c5a142c11126722cfed7ea11f5cb7a3f6/ZbzzMy-UjtpFEBT

104.17.3.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a05a492b56be/1713484953107/bde05f96018e4d3fef1732b3d613045c5a142c11126722cfed7ea11f5cb7a3f6/ZbzzMy-UjtpFEBT
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/8768a05a492b56be/1713484953107/bde05f96018e4d3fef1732b3d613045c5a142c11126722cfed7ea11f5cb7a3f6/ZbzzMy-UjtpFEBT HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yt2t2/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Fri, 19 Apr 2024 00:02:33 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gveBflgGOTT_vFzKz1hMEXFoULBESZyLP7X6hH1y3o_YAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIL3gX5YBjk0_7xcys9YTBFxaFCwREmciz-1-oR9ct6P2ABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8768a0604b5f56be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a05a492b56be/1713484953110/eOP44H5q21wbETo

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a05a492b56be/1713484953110/eOP44H5q21wbETo
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 51 x 30, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
109878f27bf23588d8e083cab2ebd399
54943ac9b59cdc60eaf56264305d5877d0e81a59
fe692a3fc09b26a46b90265c57998eea438251ead2e6e05e93d20d58ae0028bc

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/8768a05a492b56be/1713484953110/eOP44H5q21wbETo HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yt2t2/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:34 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8768a0652d5a56be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/89620390:1713482803:9icP6Gj9-l_JFpYRzRzGzF8IrXXy2q_THhmWzaCVkBA/8768a04beb3a56be/a6df934b301173a

104.17.3.184

14 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/89620390:1713482803:9icP6Gj9-l_JFpYRzRzGzF8IrXXy2q_THhmWzaCVkBA/8768a04beb3a56be/a6df934b301173a
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3420), with no line terminators
Size
14 kB (14054 bytes)
Hash
c633a08abddaa03117ecba3d60b65b87
a332d36f709362506819639f32fe617ceb2e65f4
3db7416df389d9bbf9d0a4c52a4daa80950af476ed399d940203516e8f1a5e0d

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/89620390:1713482803:9icP6Gj9-l_JFpYRzRzGzF8IrXXy2q_THhmWzaCVkBA/8768a04beb3a56be/a6df934b301173a HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/kxiji/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: a6df934b301173a
Content-Length: 25881
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:32 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: 7iWPwHxh4Q7UAObj3HKh1eJX6lL0O4EswbDeTkg39BA19sFnGDTOCvWXIZdQiacNDhxJuTWPLedIWccLIxyyoSseKlhyIUWZb2OM/p1XQWR40vlVjs6ChbVk6hG6MLjiFEAkoGVBJXVysRDRDzj6+KJM7gqX1DtGE3LkLgKVZCO/lVUGMTpLFblgja3LGJ8B$DOjczrbpca/qP45NEyjADA==
cf-chl-out: IIHFdP85kcaGaeO6RlADh4/6oAMWl0pzsPM3GEzOyR3lXt5kVCBpE6WawWnJMHGUCx2rkgfMLAnacRnTzG3tPFNH9sHhXRpLkuFU81mzRwgZ20/LpVOxhxs4OaT2dSXV$HNyJmcdAcnC3IlAtuzuuGg==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0577ff556be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a05a492b56be

104.17.3.184

171 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a05a492b56be
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
171 kB (171101 bytes)
Hash
3cb3353b70f137adb54e856b3306eb1e
ce1779d3ef0b1537b454c27cf4e846a872d1c971
be5448cd6b3d1c800fbc28401ab1f13d9c160f7cc5ba1e34e01079d51b454348

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a05a492b56be HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yt2t2/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:32 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 8768a05ae96a56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.211.10

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:06:59 GMT
expires: Tue, 15 Apr 2025 23:06:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 262536
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xzl3n/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:35 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8768a06c281956be-OSL
alt-svc: h3=":443"; ma=86400

zambezi.top/favicon.ico

172.67.178.108

404 Not Found

261 kB

URL GET HTTP/3
zambezi.top/favicon.ico
IP
172.67.178.108:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectzambezi.top
FingerprintB1:91:9F:E2:BD:2F:4B:DC:A2:06:93:8E:BA:84:01:E4:B0:D4:55:9C
ValidityMon, 11 Mar 2024 10:01:02 GMT - Sun, 09 Jun 2024 10:01:01 GMT

File type
HTML document, ASCII text
Size
261 kB (261243 bytes)
Hash
2efefe0fd14045402a105f5c2b87d31c
3d62a7fb6f6138bd797f4701325606927faa763d
4770997cfecb31cb68623b2a8270cecb96dbce0d2f3a49fc350c6d6911e4cc7c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Cookie: cf_clearance=vw21i96QZfq5QML__McaPKQ4l99CrqS2I6s3ah6IRrE-1713484945-1.0.1.1-194OzR5AuOGYHWVcC2Qt2ooowRVhKFRuHi4Gw_ftmHnADiYkI.mCf91mX.9qeMmsC0utPNSVI4Jx0iGSQ7o8Yw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 19 Apr 2024 00:02:32 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1m2zmhNYtLK6wlgsZdX5Y9Q7SY1o%2B3MtyAlgeUabU2TasXzlFGtd53upbZBUexyCfUJCyUsne8krhzkZF%2FyeGJit0gpDlTd%2BytCklJ8LqbnkIrOsM0QNQRCpNlFV6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a05a087eb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/kxiji/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal

104.17.3.184

26 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/kxiji/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
26 kB (25753 bytes)
Hash
4445481c2894608f9fd747a9ecc1a6bc
9763309c6e0559ad89176dd1f89127d945239928
94cb5bcd54011f3ec2731318fbeea2517e16773d08b4a6938c23f517bd48c62b

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/kxiji/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:30 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-opener-policy: same-origin
document-policy: js-profiling
cross-origin-embedder-policy: require-corp
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
origin-agent-cluster: ?1
cross-origin-resource-policy: cross-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 8768a04beb3a56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a06bafe556be/1713484955851/1341a6f201f1eb9f2365444ae934fa3688b1bf4d087d5e02a3061b2c84fafbab/bo-HK1VO53AZzUX

104.17.3.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a06bafe556be/1713484955851/1341a6f201f1eb9f2365444ae934fa3688b1bf4d087d5e02a3061b2c84fafbab/bo-HK1VO53AZzUX
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/8768a06bafe556be/1713484955851/1341a6f201f1eb9f2365444ae934fa3688b1bf4d087d5e02a3061b2c84fafbab/bo-HK1VO53AZzUX HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xzl3n/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Fri, 19 Apr 2024 00:02:36 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gE0Gm8gHx658jZURK6TT6Noixv00IfV4CowYbLIT6-6sAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIBNBpvIB8eufI2VESuk0-jaIsb9NCH1eAqMGGyyE-vurABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8768a0723a2b56be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1654168842:1713482911:-wyVAmt7pdcWQAnmS5UBaqVQI7dAcVsHMqmzwPAovss/8768a02e8f4b56be/86ab4706f105613

104.17.3.184

3.3 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1654168842:1713482911:-wyVAmt7pdcWQAnmS5UBaqVQI7dAcVsHMqmzwPAovss/8768a02e8f4b56be/86ab4706f105613
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3420), with no line terminators
Size
3.3 kB (3268 bytes)
Hash
b8108009d1ed49c29c86317e72f7e12a
e148844b8b54e3527f13f628801630cf4a2052df
e1fd4d97a14d7761163c01841545177360650b84c0f7036f3420fcb2bad5ddd8

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1654168842:1713482911:-wyVAmt7pdcWQAnmS5UBaqVQI7dAcVsHMqmzwPAovss/8768a02e8f4b56be/86ab4706f105613 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3kb7e/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 86ab4706f105613
Content-Length: 26052
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:27 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: X/UA93NwWr14zfOVhO22RM7jL+rI5QOmefQegPjw6KNIbPaluCHN+m+AMt7b++ThYy38g7331+BepRGHbOw43yqLwqmwHbH8N8JiaITrsd9qbiEkBVeSXYyL0rnwb9QC$6JcMQv/AqV5WCIJKGva7ag==
cf-chl-out-s: 1kY4hPzIAKZ5clDUXnTYvU90Y5T1Sefiyr7PprKzRXAMymR6ExFfFHpL4+Jkf6oWSUBM12eyXJ9fYZocqdiuKzmqrO1koaC8UbGLGVfdSGsI2vEzkXnsA7g8rojPlqetOw3Vh4zN7Rp9hF1CewUlSYDUbugY4CxVGXK32tuoyNhkTgYKEYMxn/gb69NiAtIW$tqm5PPGatpL9s83zxmskjQ==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a039ac0556be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.211.10

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:06:59 GMT
expires: Tue, 15 Apr 2025 23:06:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 262538
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yt2t2/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal

104.17.3.184

26 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yt2t2/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
26 kB (25704 bytes)
Hash
85671921d3c27320db12ba78febc2503
56283c15bd8342ec35fd782fcad7312b16222a2b
92374b929a06f2d33eaa344ac6fae0a4d8c7c010afba598f4e14c4b0567f1faf

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yt2t2/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:32 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
document-policy: js-profiling
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-opener-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
vary: accept-encoding
server: cloudflare
cf-ray: 8768a05a492b56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zambezi.top/favicon.ico

172.67.178.108

404 Not Found

289 B

URL GET HTTP/3
zambezi.top/favicon.ico
IP
172.67.178.108:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectzambezi.top
FingerprintB1:91:9F:E2:BD:2F:4B:DC:A2:06:93:8E:BA:84:01:E4:B0:D4:55:9C
ValidityMon, 11 Mar 2024 10:01:02 GMT - Sun, 09 Jun 2024 10:01:01 GMT

File type
HTML document, ASCII text
Size
289 B (289 bytes)
Hash
2efefe0fd14045402a105f5c2b87d31c
3d62a7fb6f6138bd797f4701325606927faa763d
4770997cfecb31cb68623b2a8270cecb96dbce0d2f3a49fc350c6d6911e4cc7c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Cookie: cf_clearance=vw21i96QZfq5QML__McaPKQ4l99CrqS2I6s3ah6IRrE-1713484945-1.0.1.1-194OzR5AuOGYHWVcC2Qt2ooowRVhKFRuHi4Gw_ftmHnADiYkI.mCf91mX.9qeMmsC0utPNSVI4Jx0iGSQ7o8Yw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 19 Apr 2024 00:02:35 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 10
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3tuBaXqSgNoGdDMYLXfrycblhDoTsDohIPJHIE2Uq3DU1nrNekJr9bS89gUrXajuw9reRuAd61aIm%2BqapkMCmNexEWLurw5DIITJwSr2mg5GUP%2BwItLojKRkmm%2FjnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a06b8fafb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a079fce256be/1713484958168/1b134e6973e2b4ad8e662a214f78cfa58a0ce1cb0b15de6b28695a973fd2fdcb/RkQnHa43gFgibAf

104.17.3.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8768a079fce256be/1713484958168/1b134e6973e2b4ad8e662a214f78cfa58a0ce1cb0b15de6b28695a973fd2fdcb/RkQnHa43gFgibAf
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/8768a079fce256be/1713484958168/1b134e6973e2b4ad8e662a214f78cfa58a0ce1cb0b15de6b28695a973fd2fdcb/RkQnHa43gFgibAf HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/etcl9/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Fri, 19 Apr 2024 00:02:39 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gGxNOaXPitK2OZiohT3jPpYoM4csLFd5rKGlalz_S_csAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIBsTTmlz4rStjmYqIU94z6WKDOHLCxXeayhpWpc_0v3LABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8768a08448e556be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.3.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Fri, 19 Apr 2024 00:02:40 GMT
content-length: 0
location: /turnstile/v0/g/54ea73d52131/api.js
cache-control: max-age=300, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a0889a4956be-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.211.10

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:06:59 GMT
expires: Tue, 15 Apr 2025 23:06:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 262541
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1679367662:1713482851:9UWecryL8Q9YHHKPL--Gn7VmN2POUwusMV1aHw_Sw0k/8768a06bafe556be/cdd4f7690a2c17f

104.17.3.184

3.3 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1679367662:1713482851:9UWecryL8Q9YHHKPL--Gn7VmN2POUwusMV1aHw_Sw0k/8768a06bafe556be/cdd4f7690a2c17f
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3420), with no line terminators
Size
3.3 kB (3330 bytes)
Hash
7ac7e92975a19e3f4126056712e4d615
a2c69eb9c729452c94a5a443745e7c50dfbe8c3e
24daac3b7582d288e040016dd1d343bb15a66dd14e7ef3635eccc1948ef258dd

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1679367662:1713482851:9UWecryL8Q9YHHKPL--Gn7VmN2POUwusMV1aHw_Sw0k/8768a06bafe556be/cdd4f7690a2c17f HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xzl3n/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: cdd4f7690a2c17f
Content-Length: 26062
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:37 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: DgHdqJm+u3h2EWj7sk6oUOil1Ol+q4V/TOc9kKvkQ+M/+gCHHt/TofjsQBg09trMudpk4ZbJK/1DN1lxXkl7hrWcuLyDZwWOigeZQWm7Y0xI6kJ4ij4yMDVIYRPQhk3Mw7Asl+uJ17MbpYFwGtAzGQoVP0+eHjNvfLwVZAahutflMphdFklq1Juzvt6/+9tK$0voUozGQF5LzuJs/FNJG5w==
cf-chl-out: VPn88p0e0/dtVTpq2f7ucipGeXTj4y3yLjG+yxWbO7aJ9u8DAEXq2n1dr1wsSn5LhLl99/SSB2ttrTcPmMcAilesibNRiDdQZZEFN9cvX3/jN7q18y02J23nWG2HhwY+$v/SHhVEuApsxyg4tvcm9PQ==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0777beb56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js

104.17.3.184

200 OK

14 kB

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42414)
Size
14 kB (14271 bytes)
Hash
374fec8b5e50cd6ab980f3fef21a5aa0
7f474607991a19b6f1b78cc32e0f75b501b60774
8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a

HTTP Headers

GET /turnstile/v0/g/54ea73d52131/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zambezi.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a088ba5756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zambezi.top/_newsos_oxy/functions/validate.php

172.67.178.108

26 kB

URL
zambezi.top/_newsos_oxy/functions/validate.php
IP
172.67.178.108:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
26 kB (25654 bytes)
Hash
4509e310c4e6cef56abf1cda10275bd8
e5f42ba023c572bc5b96f60485638a2d634bcafe
e9742b122fce77cb757263667f151956857002c0a36377d48937d9580a008396

HTTP Headers

POST /_newsos_oxy/functions/validate.php HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://zambezi.top
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Cookie: cf_clearance=vw21i96QZfq5QML__McaPKQ4l99CrqS2I6s3ah6IRrE-1713484945-1.0.1.1-194OzR5AuOGYHWVcC2Qt2ooowRVhKFRuHi4Gw_ftmHnADiYkI.mCf91mX.9qeMmsC0utPNSVI4Jx0iGSQ7o8Yw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:37 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WCXoRX8X4p4Gt26Q4Ylog9oxQH7SYlbV%2FSkzOcQrtFosG1kNf5%2FReGs9jsuMRB9V%2BR9tK04XoVXA7ofBdGuPH9At62dFj6UYW9PjYcqDYwHHVSHxSkogi1%2BV0lsNMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8768a077bc2cb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1987835823:1713483000:St6CGjHXdKkjJ14qZyWt4jmDzTriK--JcKqmgZKrMt8/8768a0891a7956be/bdfd19fec620798

104.17.3.184

94 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1987835823:1713483000:St6CGjHXdKkjJ14qZyWt4jmDzTriK--JcKqmgZKrMt8/8768a0891a7956be/bdfd19fec620798
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
94 kB (93903 bytes)
Hash
fa2b8d7aadb6b8abf4a069a6ea461c64
cdf45f601a4891e8a3b2b201e17c8ba632859d1c
3c09c51b8cef1ecba1abb4f78e2603c91a0e2ca81dd6bcdf59fbefb54e28eebd

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1987835823:1713483000:St6CGjHXdKkjJ14qZyWt4jmDzTriK--JcKqmgZKrMt8/8768a0891a7956be/bdfd19fec620798 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/6cmwz/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: bdfd19fec620798
Content-Length: 2799
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:40 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: O7gdaj9va510PdS4OhvXESFkW5lqFVsnrsil0ANZQP8hR7FGnhCVdCTqQw/eHm1G7ogqQxV9tka68wFQRVWIApLR++jdogmHOv0u4cn/wljafoi0FOstXyBjZuoQ5or1R5seKfLT0DRK6Ud25OGoQGQK9BZDlKl1CX4kIKPUSDMVF/xchQgvCyDUv6SlKy1vWWt/xzDFLJy6cpAtqU8BgeNthBSH+5EM2E/jr7cMqk0aevxmp4joP/LFdaqoYOOXiLixSjMpq5F5lRFCJ6mwyB8sHjRQ2Fi0ipBHVw9qQLtdBnrXbTx53LtxIiubaQCdX2nQdUmmtyXcMDV+JwnZEthvhdverpMLwgzOyLU3KEQOtJrxB/QMVsvl+E8xxCk+jnRhl8dI58W4PH9qNHD5n1ezI62i9/JKurXQS4SlzZaW9vxwvSo5q/sqjbLXIuht$O1nMeJ7u6aeCkShD/6oEBQ==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a08b5b3f56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a04beb3a56be

104.17.3.184

226 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a04beb3a56be
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
226 kB (226533 bytes)
Hash
5d7c5e35a85b2e6baeb267e4ab52266f
ec257dc16a437415a998e36020d04c58d47698b5
6f5e958b5955bf0db022d47add7a4492f30760c229a0681c454aea56bcb159aa

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a04beb3a56be HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/kxiji/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 8768a04c6b6656be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/mobkq/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:42 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8768a096e82256be-OSL
alt-svc: h3=":443"; ma=86400

zambezi.top/_newsos_oxy/functions/validate.php

172.67.178.108

26 kB

URL
zambezi.top/_newsos_oxy/functions/validate.php
IP
172.67.178.108:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
26 kB (25751 bytes)
Hash
70e83c04fcff9a45b3a2cf09f9f74efb
cfa48debbac2ffaf2e6be0a67e7a2ee6cb864df0
440faa79b5dbc856f3f7915f5b8e5aaea00ef96202bdb89be287b0a23989d99d

HTTP Headers

POST /_newsos_oxy/functions/validate.php HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://zambezi.top
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Cookie: cf_clearance=vw21i96QZfq5QML__McaPKQ4l99CrqS2I6s3ah6IRrE-1713484945-1.0.1.1-194OzR5AuOGYHWVcC2Qt2ooowRVhKFRuHi4Gw_ftmHnADiYkI.mCf91mX.9qeMmsC0utPNSVI4Jx0iGSQ7o8Yw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:39 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=baIxkPbuhgjsQFGvEPLYe1QegI0SVx1yr2KAz0eKOnjfvm1r7KAR1H0pbcJwWFv94L%2FtgafFBx5UsSQHwnkBw7MaIsbw4pYRvo5yxBAuRWCS7mQynhO0jy5nHupLeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8768a086ebf8b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/mobkq/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal

104.17.3.184

112 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/mobkq/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
112 kB (112189 bytes)
Hash
46af1c102b9fe4c27fcc637cc87330ef
65826a5818c302c46124b4509e153eda195faf8b
4ae754b5cd9c1439e7ef34f6ee58eaa18367d5a29258812a6b1fe0fe7ed923c8

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/mobkq/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:42 GMT
content-type: text/html; charset=UTF-8
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-embedder-policy: require-corp
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-opener-policy: same-origin
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
document-policy: js-profiling
referrer-policy: same-origin
origin-agent-cluster: ?1
cross-origin-resource-policy: cross-origin
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0965f7056be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/79515390:1713482708:juoYYDloMxEmMHWRMt6YdZuSXUiP-Wh77dslKeDbzt8/8768a0965f7056be/19fa722638cc1b1

104.17.3.184

3.3 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/79515390:1713482708:juoYYDloMxEmMHWRMt6YdZuSXUiP-Wh77dslKeDbzt8/8768a0965f7056be/19fa722638cc1b1
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3420), with no line terminators
Size
3.3 kB (3263 bytes)
Hash
d350d3c3d1a3c2c913fc7ad8a59789f8
435546756cfaa5b9d99f6211d7880904d18dc120
6af357fe6f7d07e7a82ab5fe6049723c152c6209bf9335b76d5c070035c475e2

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/79515390:1713482708:juoYYDloMxEmMHWRMt6YdZuSXUiP-Wh77dslKeDbzt8/8768a0965f7056be/19fa722638cc1b1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/mobkq/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 19fa722638cc1b1
Content-Length: 25605
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:44 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: ttQYI3ApjCebP4pOjTakSdD2+R/nHVLiNGU9BNAmO033iTcgqISjoq1fDjneg2PdXmWDDktLG2l7ciKsVmZxOTwZd8qdbAquT5zfe8jpSzLHazfuzKo4giOAKqEY0IC+$PfReDwOGjAv7UOUTs5W0bA==
cf-chl-out-s: nKn4CM2hpghxuK4OCCXKHUNAyGrtQ5xn6dVKUc/fhXR0/z976Ny20Y2LU7iZgkgFcqFjcmBv10RUPMwRcWs7HyCzIeQ+VAF6RBK/PDSM2C2f/uqHgU8LDHz+8rxnfZjwgwCl9/I+yzpxHX/SHE3fGPd30/Lmtg05Z/hJPVSCkcOc8qJr8oY9rwPgCqhViQjc$qkfQduAiRSi64I4malry6Q==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0a34e3456be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

216.58.211.10

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:06:59 GMT
expires: Tue, 15 Apr 2025 23:06:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 262545
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5ikbt/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:44 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8768a0a66f4556be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1326693067:1713482940:g51frvKJEN3xFZGeJLDOdoAklcNXrtucUj4VqcHD7-4/8768a05a492b56be/d692de1157cfec9

104.17.3.184

171 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1326693067:1713482940:g51frvKJEN3xFZGeJLDOdoAklcNXrtucUj4VqcHD7-4/8768a05a492b56be/d692de1157cfec9
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3420), with no line terminators
Size
171 kB (171059 bytes)
Hash
7dff9483b41d059e7b825d0f698c0816
ba5e515b548686034e5bbbf224fa7a473114afd5
a7c2ce11e7dc8fd6684a5c6f10d720823e59ee42973e0e8d609119c663777cd1

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1326693067:1713482940:g51frvKJEN3xFZGeJLDOdoAklcNXrtucUj4VqcHD7-4/8768a05a492b56be/d692de1157cfec9 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/yt2t2/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: d692de1157cfec9
Content-Length: 26425
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:34 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: 9c85bPxztdWwIPkvEnnnOrMdkG8tjKnVEhXdQGeWgVBwbcl3UylKdXYI29ZAE81ierR6+G4l8i9zs+oUpBAa+jXy7hUGJP/M/kYOk268i1mVxauAg/Z2trRWsKzlaYP/$RR/4ocJwsA7lhPlLJs7CIA==
cf-chl-out-s: zH8tLmCQ/tNewHrTG8730NSWSxWc7kksP1N2eTV/kdvV7bVHm7tP6Yw5Onhra/2uMBqL2bVPfG1Vkl6zmL/zIRtJvEnnRZdnYtc87TvBa1cba5AE5h/wL/jmabClWlDQbpi5crsecIuiulDOoH/ri3tMNUliJ6lGp70Q17aqZTo7zsogd+2Rdc7T4YaHfTxl$kWczenD3cdKwqYHlNvM3bg==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0681e8f56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js

104.17.3.184

200 OK

15 kB

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42414)
Size
15 kB (14561 bytes)
Hash
374fec8b5e50cd6ab980f3fef21a5aa0
7f474607991a19b6f1b78cc32e0f75b501b60774
8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a

HTTP Headers

GET /turnstile/v0/g/54ea73d52131/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zambezi.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:30 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a04b9b1b56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zambezi.top/favicon.ico

172.67.178.108

404 Not Found

228 B

URL GET HTTP/3
zambezi.top/favicon.ico
IP
172.67.178.108:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectzambezi.top
FingerprintB1:91:9F:E2:BD:2F:4B:DC:A2:06:93:8E:BA:84:01:E4:B0:D4:55:9C
ValidityMon, 11 Mar 2024 10:01:02 GMT - Sun, 09 Jun 2024 10:01:01 GMT

File type
HTML document, ASCII text
Size
228 B (228 bytes)
Hash
2efefe0fd14045402a105f5c2b87d31c
3d62a7fb6f6138bd797f4701325606927faa763d
4770997cfecb31cb68623b2a8270cecb96dbce0d2f3a49fc350c6d6911e4cc7c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Cookie: cf_clearance=vw21i96QZfq5QML__McaPKQ4l99CrqS2I6s3ah6IRrE-1713484945-1.0.1.1-194OzR5AuOGYHWVcC2Qt2ooowRVhKFRuHi4Gw_ftmHnADiYkI.mCf91mX.9qeMmsC0utPNSVI4Jx0iGSQ7o8Yw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 19 Apr 2024 00:02:42 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 17
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a3AAkcxYFroHmCtyggDQJ3ASj4IZxtyUdibWlKiVMmqUvYHxWIJEZixlV69FUPKR9BpgTnUYxmP%2BGDsuVYh208EE9Yhgedkk%2FT1XcViK1difoSo4Jobz7%2BJ0ri%2BjAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a0963a83b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zambezi.top/_newsos_oxy/functions/validate.php

172.67.178.108

32 kB

URL
zambezi.top/_newsos_oxy/functions/validate.php
IP
172.67.178.108:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
32 kB (31613 bytes)
Hash
6c60a0611bea615d14f6fc3abd16c7ad
24821501814637ca68db035b3eee55a995e704de
1d9a6eef099916e4cc267e38eb0626b25f80d3a1b7e9aacf6e2d60de8e208d88

HTTP Headers

POST /_newsos_oxy/functions/validate.php HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://zambezi.top
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Cookie: cf_clearance=vw21i96QZfq5QML__McaPKQ4l99CrqS2I6s3ah6IRrE-1713484945-1.0.1.1-194OzR5AuOGYHWVcC2Qt2ooowRVhKFRuHi4Gw_ftmHnADiYkI.mCf91mX.9qeMmsC0utPNSVI4Jx0iGSQ7o8Yw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:30 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YDrjQY2rgWceEAZcJkNyOGr4xUT9x0FKKy7CFqCMDqA2we3tRlHmp54M%2BUQ%2B0%2FxlUXsxo79N6c%2FvtBT5%2Bbjk3443iS2oWjgTopfnJOIlEWmQ71q7nzw2VPoxK6BzjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8768a049c8f4b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js

104.17.3.184

200 OK

101 kB

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42414)
Size
101 kB (101420 bytes)
Hash
374fec8b5e50cd6ab980f3fef21a5aa0
7f474607991a19b6f1b78cc32e0f75b501b60774
8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a

HTTP Headers

GET /turnstile/v0/g/54ea73d52131/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zambezi.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:44 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a0a58f0a56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js

104.17.3.184

200 OK

101 kB

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42414)
Size
101 kB (101176 bytes)
Hash
374fec8b5e50cd6ab980f3fef21a5aa0
7f474607991a19b6f1b78cc32e0f75b501b60774
8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a

HTTP Headers

GET /turnstile/v0/g/54ea73d52131/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zambezi.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:47 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a0b54d2256be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a0b5cd4b56be/1713484967727/1nfjYw6zL3ruZN7

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8768a0b5cd4b56be/1713484967727/1nfjYw6zL3ruZN7
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 87 x 34, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
3ca382d0a3f047d144724e0eb5a3ae78
c100a5d327f8aeb2b73a19b8e910e9cea4e97960
c5675cabb3235f19508bbc5e46141c080303970a2a0456f4e8c95f6282e601f1

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/8768a0b5cd4b56be/1713484967727/1nfjYw6zL3ruZN7 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:49 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8768a0c0697356be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.3.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Fri, 19 Apr 2024 00:02:49 GMT
content-length: 0
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
access-control-allow-origin: *
location: /turnstile/v0/g/54ea73d52131/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a0c39abd56be-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1987835823:1713483000:St6CGjHXdKkjJ14qZyWt4jmDzTriK--JcKqmgZKrMt8/8768a0891a7956be/bdfd19fec620798

104.17.3.184

34 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1987835823:1713483000:St6CGjHXdKkjJ14qZyWt4jmDzTriK--JcKqmgZKrMt8/8768a0891a7956be/bdfd19fec620798
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3420), with no line terminators
Size
34 kB (34457 bytes)
Hash
bfcfb6ba6da661e1da15fa126eca4479
7308c37b947d1726f8a8cb93fa8b454ade69052f
0547b145ce28cb2ca9bd4b3bf6d9fc46a7574d4256ca292223b7cb94d73c8737

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1987835823:1713483000:St6CGjHXdKkjJ14qZyWt4jmDzTriK--JcKqmgZKrMt8/8768a0891a7956be/bdfd19fec620798 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/6cmwz/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: bdfd19fec620798
Content-Length: 25823
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:41 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: WvUt5j7cFqgrVf3JwZiuTJtQV9YhFHHS+nDpzyDSIDTbjW+kzvjW9/2W93Kgiw310tnLii30Ukb9QQqKH7dYb4cULEyQqwqu8+JKZ2MQ5m3MY/VSdFRQ7/7lsYf4YqM3$AN14oJwV6Y/lqaQAlDwUxw==
cf-chl-out-s: HqAqPE1I5SO/OQvehKSvaMBRzXHXjeIlicPqfGuYbMGezJETHvhInYFYNzVu8eqH1s1B2rIm9t9bFc/b7y2TitO99Xe2Fqh9K+rIn5EUdoQuROVm2cKe6ouDpquXJ8mmBKWFmKSguBGXHSr2ZSzJV9gmQ+rR6YwDjit+Ddr7kwF0SUP+NaxyFvnS8olmpz3N$feHfK3FZH42GgbyJYFkSOQ==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0934e7456be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null

172.67.178.108

200 OK

27 kB

URL User Request GET HTTP/3
zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
IP
172.67.178.108:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectzambezi.top
FingerprintB1:91:9F:E2:BD:2F:4B:DC:A2:06:93:8E:BA:84:01:E4:B0:D4:55:9C
ValidityMon, 11 Mar 2024 10:01:02 GMT - Sun, 09 Jun 2024 10:01:01 GMT

File type
HTML document, ASCII text, with very long lines (2053), with no line terminators
Size
27 kB (26891 bytes)
Hash
6ea6575fe525831472fce9efe9659611
5532455967f37caf27b047ad7d153c5dae6b6175
939c6d9d55dd4044cacfd9f54b45587f48b404d5ec701f339d2833946e266f60

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:02:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1LJ5RIQR40ss8ThLK9VoEeMisoppogxCnF5T%2F8%2BSOIZp52gWlx0p6FLwTSe5RBbiaa5rjnb%2BVFLYftKUKGzhjFJmILe8FUfZ3QoNfl%2F88CnMpmGCAYWSZUgGMpewqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8768a0293addb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal

104.17.3.184

200 OK

80 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=session&no_redrct=no_redrct&pcnt=3&no_psplash=null&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
80 kB (80068 bytes)
Hash
06d1e64c3fc136b4590cea99a755891f
ee2d28dea0ddee17572f2907ba2e66c0aebd4bd1
e41910e7144d67ad6de36bbdc0d7c4ea7d3ecaf88a936407be68163bf5f2b48f

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:47 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
origin-agent-cluster: ?1
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
cross-origin-opener-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
cross-origin-embedder-policy: require-corp
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0b5cd4b56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1193673282:1713482935:seJ7Tm07zj7f-kaUE06fXQz-b6hA58DazNWu8jazV4o/8768a0b5cd4b56be/46b55c7a57af7e4

0.0.0.0

92 kB

URL POST
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1193673282:1713482935:seJ7Tm07zj7f-kaUE06fXQz-b6hA58DazNWu8jazV4o/8768a0b5cd4b56be/46b55c7a57af7e4
IP
0.0.0.0:0
ASN
#0

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
92 kB (91472 bytes)
Hash
b8899dc27e5a99592e24956915f85ec8
2822bbc5ccdb93f1e449ebaebbeb79a4c839615f
cd25256ed7b95a07704b22d4e3d45a40ac0df7f2886f8a14a87c8d9b5fc8a237

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1193673282:1713482935:seJ7Tm07zj7f-kaUE06fXQz-b6hA58DazNWu8jazV4o/8768a0b5cd4b56be/46b55c7a57af7e4 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 46b55c7a57af7e4
Content-Length: 2828
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:47 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: LzG9LJWGEo2bFKc8LcXd0RSk633lIfLrL6Gv2s/QaCGm9RBO6w0cbT7yIRbc/GDvBfNNW2OqeXgebP73I9dvBQhyKwJOhjBUizrRMuwBJf8oR2Jq+v5RxpFK6wPbp1qwJoFf6R7FxuXmW/xTDZDBblP2cGqij23+NYK3/xZNDxMyBEhouo1hEkCsvOcCcD8dh/NC1+vFieFyXxBckgH4kNhfqAbfKZjyAJH0yLiB/qMh/ht0JLunRLm1YOUNBwqc/eNiY0DNA0bG3WpzLvJl2SsNMEpmfRwdUdUXNdZdmbUJKSEXLSUMHZssvMeVGH9nNQzkQ+XH+9YUu56C4V7Hyd2O+zFxwS0Vf0jbknVEkC08/x5DVmop4rKpzA8OHm7T$rAakYTurllfCTQ7gbwbd2w==
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0b82e4156be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a0b5cd4b56be

104.17.3.184

200 OK

430 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a0b5cd4b56be
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
430 kB (429544 bytes)
Hash
2e57f0c0574c8056b5753cd31487e422
afe05eae5496bc40a928cea34faba3de57e72d2d
3555f6c063b56e2c08326c384a9b6f16f2c55dd868f517c7a126334e59779df0

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8768a0b5cd4b56be HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/d1e47/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 00:02:47 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 8768a0b65da156be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (49)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations