bodydnyc.com/youoh/timed/ththhtt/fnnfnf/gfcuhq/bWlrZS5sZXdpc0B2ZWxvY2lzLmNvbQ==
0 B URL bodydnyc.com/youoh/timed/ththhtt/fnnfnf/gfcuhq/bWlrZS5sZXdpc0B2ZWxvY2lzLmNvbQ==
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /youoh/timed/ththhtt/fnnfnf/gfcuhq/bWlrZS5sZXdpc0B2ZWxvY2lzLmNvbQ== HTTP/1.1
Host: bodydnyc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:31:55 GMT
Server: Apache
refresh: 0;url=https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
beletheric.vielitord.ru/myscr502161.js
200 OK 39 kB URL GET HTTP/3 beletheric.vielitord.ru/myscr502161.js
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
Hash 55ee86e67dc390ead7726c4bb3d47c65
8d3a724a2646b05aaadd200e6f4792e514d22935
fac30c13f6a0751b1d95cfc24f423d9c2b9adecdef5aa6fe500352849580a0ef
GET /myscr502161.js HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:58 GMT
content-type: application/javascript
last-modified: Tue, 17 Oct 2023 16:00:56 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 367
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YxNABboInpcl44dq10w1v7S6TfFQsI5WjfznqChXuOaY3vej0qbE50hHWqZ4r6SBXhr4lF9j8btrgnz810ZPIJOYBt%2B5OtNRSk1wJNPkG44I9UUKwqsESf4ZcaSno1wprFoD9JtmZvamyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 817b4ee44bcf5684-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-bold.woff2
200 OK 28 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-bold.woff2
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type Web Open Font Format (Version 2), TrueType, length 28000, version 1.66\012- data
Hash a4bca6c95fed0d0c5cc46cf07710dcec
73b56e33b82b42921db8702a33efd0f2b2ec9794
5a51d246af54d903f67f07f2bd820ce77736f8d08c5f1602db07469d96dbf77f
GET /web5/assets/fonts/GDSherpa-bold.woff2 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beletheric.vielitord.ru/z92b48tbr2
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:59 GMT
content-type: font/woff2
content-length: 28000
last-modified: Fri, 25 Aug 2023 04:00:16 GMT
etag: "6d60-603b761e42cdb"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DXVMtIg9IUa26b3sMQqx1CFSMrTzrZweBGQZ0dIJ63Ecv1lg2ajdkeTtGylPKJ0xt%2BgNuZaC0ibP6i4Ld28eSb2Qnm1ZY586%2Fx2si%2FVf9dN0x9z0z8XPdCBEpmJg4Fc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4eeb3ad55684-OSL
beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-bold.woff
200 OK 36 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-bold.woff
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type Web Open Font Format, TrueType, length 35970, version 1.0\012- data
Hash 496b7bbde91c7dc7cf9bbabbb3921da8
2bd3c406a715ab52dad84c803c55bf4a6e66a924
ae40a04f95df12b0c364f26ab691dc0c391d394a28bcdb4aeacfaca325d0a798
GET /web5/assets/fonts/GDSherpa-bold.woff HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beletheric.vielitord.ru/z92b48tbr2
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:59 GMT
content-type: font/woff
content-length: 35970
last-modified: Fri, 25 Aug 2023 04:00:22 GMT
etag: "8c82-603b7623b006b"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fyr%2FAdua%2BrsI9PPwQ6IdY%2Bc5KyVTZie4sSwliidWY4w6OIj%2BZ78yFqywK1lsjXBa5EDSA9c%2FK33FgyhgJ%2BmQiBMS0yxPya3ttqWQT4Etgl1zDEcqdK3oNgmJkIeftLE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4eeb4ae85684-OSL
beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-regular.woff2
200 OK 29 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-regular.woff2
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type Web Open Font Format (Version 2), TrueType, length 28584, version 1.66\012- data
Hash 17081510f3a6f2f619ec8c6f244523c7
87f34b2a1532c50f2a424c345d03fe028db35635
2c7292014e2ef00374aeb63691d9f23159a010455784ee0b274ba7db2bcca956
GET /web5/assets/fonts/GDSherpa-regular.woff2 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beletheric.vielitord.ru/z92b48tbr2
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:59 GMT
content-type: font/woff2
content-length: 28584
last-modified: Fri, 25 Aug 2023 04:00:25 GMT
etag: "6fa8-603b76269b664"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B%2F5chdYRogqd%2BMrhFgLLQsda4zc9Gzr%2B10Z85CoCczutoiit%2BW6TKN6lL8EOjJJ2HtuRgB8D8fct%2BM1p2k46oTc5hD6HjS6JynpCfF0bNRXIcm1F%2BMX%2Fhe%2FJN5IbDow%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4eeb4af55684-OSL
beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-regular.woff
200 OK 37 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-regular.woff
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type Web Open Font Format, TrueType, length 36696, version 1.0\012- data
Hash a69e9ab8afdd7486ec0749c551051ff2
c34e6aa327b536fb48d1fe03577a47c7ee2231b8
fd78a1913db912221b8ead1e62fad47d1ff0a9fa6cd88d3b128a721ad91d2faf
GET /web5/assets/fonts/GDSherpa-regular.woff HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beletheric.vielitord.ru/z92b48tbr2
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:59 GMT
content-type: font/woff
content-length: 36696
last-modified: Fri, 25 Aug 2023 04:00:28 GMT
etag: "8f58-603b762947b93"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7YMMbVJwc98VgTkV9wMaFZ5rnNe8hcllg5iuEkL9UHGIg8xNe%2FCghGYIvv4GOfxbfkkFyry25dh96hJvG8Joc%2Bux4GmSJmmAIercCMGwxa38IUTzyR90GMrwOVNc928%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4eeb4afe5684-OSL
beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-vf.woff2
200 OK 44 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-vf.woff2
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type Web Open Font Format (Version 2), TrueType, length 43596, version 1.0\012- data
Hash 2a05e9e5572abc320b2b7ea38a70dcc1
d5fa2a856d5632c2469e42436159375117ef3c35
3efcb941aaddaf4aea08dab3fb97d3e904aa1b83264e64b4d5bda53bc7c798ec
GET /web5/assets/fonts/GDSherpa-vf.woff2 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beletheric.vielitord.ru/z92b48tbr2
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:59 GMT
content-type: font/woff2
content-length: 43596
last-modified: Fri, 25 Aug 2023 04:00:36 GMT
etag: "aa4c-603b7631474f7"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2Fam14NxMTKfcKb0hv%2B%2FEsrL6L8E912nx%2BPNuTrIPpzNQfztv32t4hIH0jLYwlF2pMA9hi%2FtqlzzNC8owJ3K9NhQ%2BQsQTabZAtCOvFALHWla4eK58QgCdoNymEkScWA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4eeb5b315684-OSL
beletheric.vielitord.ru/z92b48tbr2
93 kB URL beletheric.vielitord.ru/z92b48tbr2
IP
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type HTML document text\012- HTML document, ASCII text
Hash deeb3aeb2706196231dfa54f92ac5899
b638b5216b46b0e742a02c1038793f9dae5aa792
b706a36063d48c2f6c9b2076f46f26dc48513cd85e9e6c8e1ec528a25aeef4aa
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /z92b48tbr2 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:31:58 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2fLWC8RK1RlD3KKb2Gi%2BcvJF09CoO1UGkcwVbEcQsUR1L5P8ntqWN6CzaK9IIfHcOdIeV7h%2BaRpTTtE80RVrpAjbWwDqdVVPtqYEzmr3qO2IIWnIUmTRZCTQacxEPlG1qGTxA%2B8B%2F3IVuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 817b4ee15ce0569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
beletheric.vielitord.ru/web5/assets/css/pages-okta.css?cb=1697574719896
200 OK 0 B URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/css/pages-okta.css?cb=1697574719896
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web5/assets/css/pages-okta.css?cb=1697574719896 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:00 GMT
content-type: text/css
content-length: 0
last-modified: Thu, 24 Aug 2023 12:07:13 GMT
etag: "0-603aa11867866"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B9LwCVmVQKthbxFnhPRXBd9DzPGhI%2FS7w%2Bme8i%2B8dg58EYmbj2evDnRYDwGRmn6Tw%2F%2FqFxB9%2Fl9new%2BGfGfSimTE9W24os9SHLMJHICI2qYNIsySSUyPf63uGOBDar0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4eeb3acf5684-OSL
beletheric.vielitord.ru/web5/assets/key.png
200 OK 727 B URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/key.png
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 839cb0f55c3d2d5c2f740bda95cb2878
93f6fa3a2da8b7184d4b5c5f2065872793370c2e
40ecb8832f6a9a8aaa0cc6e1287e867a4fca38433d091d86c6cab1f28fbab652
GET /web5/assets/key.png HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IkpsdlZtYVUva25ibnVNUXoxL3JSU0E9PSIsInZhbHVlIjoiSldlcU15N3k3dUxlYjk4akVnUDBIUk45MGZXenMvRXFpaWlZaTNhODVlR0ZPRHMwbEN1SFpXN2QwZEwxSXUrb0JzemllWHY5OFpYeWtqMytJYWZ3eVRYT0VsWDh4Q1N5Skw2R2hLZnZYcUlaRDhTRmREdWtqVGN0MHdMTlJiYkIiLCJtYWMiOiJkYWEzY2I3ZjM2YjQ3NGVhOGM4MDljODEwZTRhNmI3MGJjODc4OWYzMmMzZTE1YTI5Mzg0Mzg0MzY1ZGYyNTAyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IllXbGxpVUJjK0E2Y1M4amxvaENiSWc9PSIsInZhbHVlIjoiS09wWTNIVzVxeHFGd0kxcERvNTh4UHlwTUFMTXZCa2dvSmpjQkJlVjAyU2lKOUpaeHV6T0RmcHYrVW5XcTJuQUlFTHlhWTMyWEVyZ09ubVE0UWpQUkw2RmZuSmFlSk1rUXdhSGd4QS91ZG90SDE4QTg5TWtibldCS0dOME5yam4iLCJtYWMiOiI3YTk0NWE4MGZmMjI0MTYzMzJlZTkyY2M5OWJmZDBiZDRjNWY1MDMwMjY4NTIxNjE4MWJhOWZjOTIwNTgxNWUzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:05 GMT
content-type: image/png
content-length: 727
last-modified: Sun, 19 Mar 2023 15:20:17 GMT
etag: "2d7-5f7425905ae40"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P1mIqHQEQSu9Xkq2E0fzIM3rXy1Co2weJYI7uhquaOOZ6yvUe2XGNg0KUt1uHeu7Sfj%2F94Qf5upPayFH%2BUKRdArqvFbqN44MeZZe81kTDSmTsOVYvTfocVP3Wisour8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 365
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4f11ce875684-OSL
beletheric.vielitord.ru/web5/assets/back.png
200 OK 231 B URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/back.png
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 547988bac5584b4608466d761e16f370
c11bb71049702528402a31027f200184910a7e23
70e32b2db3f079bb0295a85a0db15ed9e5926294dd947938d6cfa595f5ab18b4
GET /web5/assets/back.png HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IkpsdlZtYVUva25ibnVNUXoxL3JSU0E9PSIsInZhbHVlIjoiSldlcU15N3k3dUxlYjk4akVnUDBIUk45MGZXenMvRXFpaWlZaTNhODVlR0ZPRHMwbEN1SFpXN2QwZEwxSXUrb0JzemllWHY5OFpYeWtqMytJYWZ3eVRYT0VsWDh4Q1N5Skw2R2hLZnZYcUlaRDhTRmREdWtqVGN0MHdMTlJiYkIiLCJtYWMiOiJkYWEzY2I3ZjM2YjQ3NGVhOGM4MDljODEwZTRhNmI3MGJjODc4OWYzMmMzZTE1YTI5Mzg0Mzg0MzY1ZGYyNTAyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IllXbGxpVUJjK0E2Y1M4amxvaENiSWc9PSIsInZhbHVlIjoiS09wWTNIVzVxeHFGd0kxcERvNTh4UHlwTUFMTXZCa2dvSmpjQkJlVjAyU2lKOUpaeHV6T0RmcHYrVW5XcTJuQUlFTHlhWTMyWEVyZ09ubVE0UWpQUkw2RmZuSmFlSk1rUXdhSGd4QS91ZG90SDE4QTg5TWtibldCS0dOME5yam4iLCJtYWMiOiI3YTk0NWE4MGZmMjI0MTYzMzJlZTkyY2M5OWJmZDBiZDRjNWY1MDMwMjY4NTIxNjE4MWJhOWZjOTIwNTgxNWUzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:05 GMT
content-type: image/png
content-length: 231
last-modified: Sun, 19 Mar 2023 15:20:17 GMT
etag: "e7-5f7425905ae40"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AguCcEIQYymVLfpmSGOLcTIoeTOfbYWfnp2h1jtRGJuY2jiZVDSskdtZ9TvJLBIN1hli0O1aj4ha78hSnJq4PnupqVQvoiahsaGtxTFrHKq1PhlR3QRqJLVWZt6ztZo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 365
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4f11ce835684-OSL
beletheric.vielitord.ru/web5/assets/godaddy-left.png
200 OK 30 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/godaddy-left.png
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type PNG image data, 506 x 303, 8-bit/color RGBA, non-interlaced\012- data
Hash 210433a8774859368f3a7b86d125a2a7
408bacddc39f12cad285579c102fe4a629862d88
9c6addfc339ce1c1d262290ab4cc2de8d38d4b54b11a8e85afd44fbb0acc2561
GET /web5/assets/godaddy-left.png HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IkpsdlZtYVUva25ibnVNUXoxL3JSU0E9PSIsInZhbHVlIjoiSldlcU15N3k3dUxlYjk4akVnUDBIUk45MGZXenMvRXFpaWlZaTNhODVlR0ZPRHMwbEN1SFpXN2QwZEwxSXUrb0JzemllWHY5OFpYeWtqMytJYWZ3eVRYT0VsWDh4Q1N5Skw2R2hLZnZYcUlaRDhTRmREdWtqVGN0MHdMTlJiYkIiLCJtYWMiOiJkYWEzY2I3ZjM2YjQ3NGVhOGM4MDljODEwZTRhNmI3MGJjODc4OWYzMmMzZTE1YTI5Mzg0Mzg0MzY1ZGYyNTAyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IllXbGxpVUJjK0E2Y1M4amxvaENiSWc9PSIsInZhbHVlIjoiS09wWTNIVzVxeHFGd0kxcERvNTh4UHlwTUFMTXZCa2dvSmpjQkJlVjAyU2lKOUpaeHV6T0RmcHYrVW5XcTJuQUlFTHlhWTMyWEVyZ09ubVE0UWpQUkw2RmZuSmFlSk1rUXdhSGd4QS91ZG90SDE4QTg5TWtibldCS0dOME5yam4iLCJtYWMiOiI3YTk0NWE4MGZmMjI0MTYzMzJlZTkyY2M5OWJmZDBiZDRjNWY1MDMwMjY4NTIxNjE4MWJhOWZjOTIwNTgxNWUzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:05 GMT
content-type: image/png
content-length: 29796
last-modified: Thu, 24 Aug 2023 14:10:07 GMT
etag: "7464-603abc9079d32"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NlHDUKndSUpJrdj71DWZz2NlIYzHtJhPGOIbakkt3JQRXlxiFKrUZmVDHRnjPcClNa8bQJH8Ug2rjDxV8vdp725pZrMUW2bVeKDQjqD1Xq3Rk25YMf2YnSQ3MdU2ooE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 365
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4f11de9b5684-OSL
beletheric.vielitord.ru/web5/assets/godaddy-logo.png
200 OK 50 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/godaddy-logo.png
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type PNG image data, 2160 x 443, 8-bit/color RGBA, non-interlaced\012- data
Hash db783743cd246ff4d77f4a3694285989
b9466716904457641b7831868b47162d8d378d41
5913b1ec0fc58ab2bec576804b9e9b566a584ea3d21a1bf74a7b40051a447fdc
GET /web5/assets/godaddy-logo.png HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IkpsdlZtYVUva25ibnVNUXoxL3JSU0E9PSIsInZhbHVlIjoiSldlcU15N3k3dUxlYjk4akVnUDBIUk45MGZXenMvRXFpaWlZaTNhODVlR0ZPRHMwbEN1SFpXN2QwZEwxSXUrb0JzemllWHY5OFpYeWtqMytJYWZ3eVRYT0VsWDh4Q1N5Skw2R2hLZnZYcUlaRDhTRmREdWtqVGN0MHdMTlJiYkIiLCJtYWMiOiJkYWEzY2I3ZjM2YjQ3NGVhOGM4MDljODEwZTRhNmI3MGJjODc4OWYzMmMzZTE1YTI5Mzg0Mzg0MzY1ZGYyNTAyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IllXbGxpVUJjK0E2Y1M4amxvaENiSWc9PSIsInZhbHVlIjoiS09wWTNIVzVxeHFGd0kxcERvNTh4UHlwTUFMTXZCa2dvSmpjQkJlVjAyU2lKOUpaeHV6T0RmcHYrVW5XcTJuQUlFTHlhWTMyWEVyZ09ubVE0UWpQUkw2RmZuSmFlSk1rUXdhSGd4QS91ZG90SDE4QTg5TWtibldCS0dOME5yam4iLCJtYWMiOiI3YTk0NWE4MGZmMjI0MTYzMzJlZTkyY2M5OWJmZDBiZDRjNWY1MDMwMjY4NTIxNjE4MWJhOWZjOTIwNTgxNWUzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:05 GMT
content-type: image/png
content-length: 49602
last-modified: Thu, 24 Aug 2023 13:40:53 GMT
etag: "c1c2-603ab607e0f57"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q%2BlinZMQBwLN8QHq%2Bw2Xady2yXR%2F5fyYEYA1trwyQ%2FsUUcGX5bIZ4cbIcwjbUuFBF4vlS8vzY1HC4Nc%2Bd3TTILJBmNMoD64Y58VN%2BDNloX7xrbt6%2FKr5r%2FLov2jCmkU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 365
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4f11de965684-OSL
beletheric.vielitord.ru/web5/assets/godaddy-microsoftlogo.png
200 OK 71 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/godaddy-microsoftlogo.png
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type PNG image data, 2446 x 899, 8-bit/color RGBA, non-interlaced\012- data
Hash f70ff06d19498d80b130ec78176fd3ff
9d8a3b74c5164ff7ae2c7930b6d7b14707b404fc
df6dbab5251e56b405e48aaf57d3cd4188f073ffba71131fa6cd26e6742923ae
GET /web5/assets/godaddy-microsoftlogo.png HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IkpsdlZtYVUva25ibnVNUXoxL3JSU0E9PSIsInZhbHVlIjoiSldlcU15N3k3dUxlYjk4akVnUDBIUk45MGZXenMvRXFpaWlZaTNhODVlR0ZPRHMwbEN1SFpXN2QwZEwxSXUrb0JzemllWHY5OFpYeWtqMytJYWZ3eVRYT0VsWDh4Q1N5Skw2R2hLZnZYcUlaRDhTRmREdWtqVGN0MHdMTlJiYkIiLCJtYWMiOiJkYWEzY2I3ZjM2YjQ3NGVhOGM4MDljODEwZTRhNmI3MGJjODc4OWYzMmMzZTE1YTI5Mzg0Mzg0MzY1ZGYyNTAyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IllXbGxpVUJjK0E2Y1M4amxvaENiSWc9PSIsInZhbHVlIjoiS09wWTNIVzVxeHFGd0kxcERvNTh4UHlwTUFMTXZCa2dvSmpjQkJlVjAyU2lKOUpaeHV6T0RmcHYrVW5XcTJuQUlFTHlhWTMyWEVyZ09ubVE0UWpQUkw2RmZuSmFlSk1rUXdhSGd4QS91ZG90SDE4QTg5TWtibldCS0dOME5yam4iLCJtYWMiOiI3YTk0NWE4MGZmMjI0MTYzMzJlZTkyY2M5OWJmZDBiZDRjNWY1MDMwMjY4NTIxNjE4MWJhOWZjOTIwNTgxNWUzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:05 GMT
content-type: image/png
content-length: 70712
last-modified: Thu, 24 Aug 2023 12:58:17 GMT
etag: "11438-603aac821e121"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pcnDdilmIXI%2BerKSNMiX%2FH0v9hjF%2BxyQWE3yZqQxr4HG8QKnl3fC4h0mww7KBi%2B5TtydDpmgTOKn4nbtkvcRpSgFTd6pQtFXHAx4oebRiX4gv0qrHyyBn%2BUqkpBK%2F9U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 365
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4f11de9d5684-OSL
beletheric.vielitord.ru/web5/assets/officelogo.png
200 OK 1.4 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/officelogo.png
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type PNG image data, 108 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 333ee830e5ab72c41dd9126a27b4d878
12d8d66ebb3076f3d6069e133c3212f97c8774e1
8702292cbc365e9f0488143e2b309b85efe09c61fd2e0a2e21c53735a309313c
GET /web5/assets/officelogo.png HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/web5/assets/pages/xuu5u9xr2k.css?cb=1697574719896
Cookie: XSRF-TOKEN=eyJpdiI6IkpsdlZtYVUva25ibnVNUXoxL3JSU0E9PSIsInZhbHVlIjoiSldlcU15N3k3dUxlYjk4akVnUDBIUk45MGZXenMvRXFpaWlZaTNhODVlR0ZPRHMwbEN1SFpXN2QwZEwxSXUrb0JzemllWHY5OFpYeWtqMytJYWZ3eVRYT0VsWDh4Q1N5Skw2R2hLZnZYcUlaRDhTRmREdWtqVGN0MHdMTlJiYkIiLCJtYWMiOiJkYWEzY2I3ZjM2YjQ3NGVhOGM4MDljODEwZTRhNmI3MGJjODc4OWYzMmMzZTE1YTI5Mzg0Mzg0MzY1ZGYyNTAyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IllXbGxpVUJjK0E2Y1M4amxvaENiSWc9PSIsInZhbHVlIjoiS09wWTNIVzVxeHFGd0kxcERvNTh4UHlwTUFMTXZCa2dvSmpjQkJlVjAyU2lKOUpaeHV6T0RmcHYrVW5XcTJuQUlFTHlhWTMyWEVyZ09ubVE0UWpQUkw2RmZuSmFlSk1rUXdhSGd4QS91ZG90SDE4QTg5TWtibldCS0dOME5yam4iLCJtYWMiOiI3YTk0NWE4MGZmMjI0MTYzMzJlZTkyY2M5OWJmZDBiZDRjNWY1MDMwMjY4NTIxNjE4MWJhOWZjOTIwNTgxNWUzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:05 GMT
content-type: image/png
content-length: 1400
last-modified: Sun, 19 Mar 2023 15:20:17 GMT
etag: "578-5f7425905ae40"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0EJ%2BNPuwoLRToK%2B6jlmLgjiTdo%2BdBa%2F9PlnJ8yHp0wIQ7zRBbu12xK5cpuE9s1fVIsoSHOR8i9Bqr0pbHrCs3W2fLo%2FYaIq7H9EHkfz9mp2VYn773vyTN0lDEAs05HU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 365
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4f11eec25684-OSL
beletheric.vielitord.ru/web5/assets/css/pages-godaddy.css?cb=1697574719896
200 OK 7.0 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/css/pages-godaddy.css?cb=1697574719896
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type ASCII text, with very long lines (1437), with CRLF line terminators
Hash 5d181d45aa6d6baf9ec77842e4ebf8c0
3c17bd216b8266dca79dcdbc93a2f050da61b460
c9ef1f74fd35256e923bd7bda8be00712b5764bef47dc9a1bd1b4d1b270d6ddb
GET /web5/assets/css/pages-godaddy.css?cb=1697574719896 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:00 GMT
content-type: text/css
last-modified: Mon, 16 Oct 2023 23:11:45 GMT
etag: W/"954d-607dd87afc16b"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=INZ4Mb9TtoNB5ZK01no3HnRnZKVh5K%2BnJ28Cfb8w%2Ba6VTRCYLGO4STI%2F62l3cm8xTGyhTb8bO%2Bqj7apGnXoGN%2FvMmknnS6IE9pZNX3K66fW6tTtFh0oyhrb1Pnl%2FU2M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 817b4eeb3acc5684-OSL
content-encoding: br
beletheric.vielitord.ru/web5/info
200 OK 8.1 kB URL POST HTTP/3 beletheric.vielitord.ru/web5/info
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (309), with CRLF line terminators
Hash 8b2870696f8c759dd0481bdf9b7b3ee6
1f7845786aaf870841ac9e6a8c23b69c09d681e4
37346bca4665cc8a0427d25ed31fc4191d7c520de2369871122e78a39bdcb287
POST /web5/info HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 27
Origin: https://beletheric.vielitord.ru
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IkNIeERZM0VsWHg0ZE1sYWpYa1hLMFE9PSIsInZhbHVlIjoiTThvVlNSYXM2QXhhWXFMTTJOT2ZIYkI0SXBDRzBXWXo0eitqb0ZvL2ZHMS9GTFhnbXRSMnNzU3ovRk5qK01WWEhPaGsxbWptWXloSjlKTWRGNkF2RGs0T3RJZW5QcE5ML1VwMnJCUFAzb1NNMEszc2wxYmxGWCt3akg5UEJPU0QiLCJtYWMiOiI2NTg5YjBmNGM4MTExOTBiNjRmYzIyOWVlNTE5NDdhYTljYzJjOTMxZDEyYjUxYzgxMTU5NmNlMDhjYzVhOTk4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImlMZGFpSHFHQVQ5K3lFZWppQzVLRXc9PSIsInZhbHVlIjoid2cvMkJRMVByVkxWNWRBQWJmQ1FUN3ZKVXNTdlNRSGp0ZXBGM01kUFNBTVpMaE4vRkc1cGlLcXBKRy8zaEVKc215bS9lOTZqOGNpdGQrQ2hCVWFUbUhMM3NURUZlL3QyZTllaTFsOXlPQjQ1QUR6UXJTdnhsWFpsZFZkWktoQW8iLCJtYWMiOiI3NGU4NDllNTkzZWUyYzkxYzA5NjhlNzc2YWI2ZDA0Y2Y5ODY2NWQ5NjM1MDZmNjU5ZWNhYTg0MGVhMjdkMTRkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:05 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.1.10
cache-control: no-cache, private
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nH9ci2GWBUhhvtP1ab92TNMV8ZXL9cC%2BBEoV2C61D2BOBYUC%2BDJuA1js%2F%2FzMqrMQAtlGyDCBZyPnIzN6dUeXdeXW07knrSe%2BfRxQzWv4VDI%2BQLMZS3%2B3WXUQhg9KyoQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6IkpsdlZtYVUva25ibnVNUXoxL3JSU0E9PSIsInZhbHVlIjoiSldlcU15N3k3dUxlYjk4akVnUDBIUk45MGZXenMvRXFpaWlZaTNhODVlR0ZPRHMwbEN1SFpXN2QwZEwxSXUrb0JzemllWHY5OFpYeWtqMytJYWZ3eVRYT0VsWDh4Q1N5Skw2R2hLZnZYcUlaRDhTRmREdWtqVGN0MHdMTlJiYkIiLCJtYWMiOiJkYWEzY2I3ZjM2YjQ3NGVhOGM4MDljODEwZTRhNmI3MGJjODc4OWYzMmMzZTE1YTI5Mzg0Mzg0MzY1ZGYyNTAyIiwidGFnIjoiIn0%3D; expires=Tue, 17-Oct-2023 22:32:04 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IllXbGxpVUJjK0E2Y1M4amxvaENiSWc9PSIsInZhbHVlIjoiS09wWTNIVzVxeHFGd0kxcERvNTh4UHlwTUFMTXZCa2dvSmpjQkJlVjAyU2lKOUpaeHV6T0RmcHYrVW5XcTJuQUlFTHlhWTMyWEVyZ09ubVE0UWpQUkw2RmZuSmFlSk1rUXdhSGd4QS91ZG90SDE4QTg5TWtibldCS0dOME5yam4iLCJtYWMiOiI3YTk0NWE4MGZmMjI0MTYzMzJlZTkyY2M5OWJmZDBiZDRjNWY1MDMwMjY4NTIxNjE4MWJhOWZjOTIwNTgxNWUzIiwidGFnIjoiIn0%3D; expires=Tue, 17-Oct-2023 22:32:04 GMT; Max-Age=7200; path=/; httponly; samesite=lax
server: cloudflare
cf-ray: 817b4f0a7d825684-OSL
content-encoding: br
aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg
200 OK 190 B URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash 40eb39126300b56bf66c20ee75b54093
83678d94097257eb474713dec49e8094f49d2e2a
765709425a5b9209e875dccf2217d3161429d2d48159fc1df7b253b77c1574f4
GET /shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 11968958
cache-control: public, max-age=31536000
content-md5: rp+/fadJKxLUo+jgFmYTeQ==
content-type: image/svg+xml
date: Tue, 17 Oct 2023 20:32:05 GMT
etag: 0x8DB5C3F4721247A
last-modified: Wed, 24 May 2023 10:11:44 GMT
server: ECAcc (ska/F697)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: cf4cbdca-101e-0042-0c5d-942f4a000000
x-ms-version: 2009-09-19
content-length: 190
X-Firefox-Spdy: h2
logincdn.msauth.net/shared/1.0/content/images/picker_verify_email_958962caa7cf6b75cd412e9e3b687b22.svg
200 OK 212 B URL GET HTTP/2 logincdn.msauth.net/shared/1.0/content/images/picker_verify_email_958962caa7cf6b75cd412e9e3b687b22.svg
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerMicrosoft Corporation
Subjectidentitycdn.msauth.net
Fingerprint7E:49:E0:7F:53:0A:55:E1:C7:51:9E:26:2E:16:15:30:F1:F6:FB:0A
ValidityThu, 10 Aug 2023 19:09:28 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash 59759b80e24a89c8cd029b14700e646d
651b1921c99e143d3c242de3faacfb9ad51dbb53
b02b5df3ecd59d6cd90c60878683477532cbfc24660028657f290bdc7bc774b5
GET /shared/1.0/content/images/picker_verify_email_958962caa7cf6b75cd412e9e3b687b22.svg HTTP/1.1
Host: logincdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 11410151
cache-control: public, max-age=31536000
content-md5: pFQUXilUkzYtIbvSwGgVBQ==
content-type: image/svg+xml
date: Tue, 17 Oct 2023 20:32:05 GMT
etag: 0x8DB5C409F549E50
last-modified: Wed, 24 May 2023 10:21:22 GMT
server: ECAcc (ska/F7AD)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: e6e3cc87-601e-0079-1c72-993a7c000000
x-ms-version: 2009-09-19
content-length: 212
X-Firefox-Spdy: h2
aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg
200 OK 673 B URL GET HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msauth.net
Fingerprint44:5F:75:46:1C:BE:AF:E4:F2:BF:F3:04:1D:0B:56:0F:EE:DA:A0:96
ValiditySat, 29 Jul 2023 00:00:00 GMT - Mon, 29 Jul 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators
Hash bc3d32a696895f78c19df6c717586a5d
9191cb156a30a3ed79c44c0a16c95159e8ff689d
0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68
GET /shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 673
content-type: image/svg+xml
content-encoding: gzip
content-md5: DhdidjYrlCeaRJJRG/y9mA==
last-modified: Wed, 24 May 2023 10:11:46 GMT
etag: 0x8DB5C3F47E260FD
x-cache: TCP_HIT
x-ms-request-id: 1aa32f50-d01e-0006-6e24-fdcd7f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0SEktZQAAAAD/yIqRk5FhSZm4jWF7LoFvQU1TMDRFREdFMTgxNAAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0Re8uZQAAAAC+UMt9UFnnT4saXpa78rhfU1ZHMjBFREdFMDYxMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Tue, 17 Oct 2023 20:32:05 GMT
X-Firefox-Spdy: h2
adfs.heart.org/adfs/portal/logo/logo.png
200 OK 6.4 kB URL GET HTTP/1.1 adfs.heart.org/adfs/portal/logo/logo.png
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerSectigo Limited
Subjectadfs.heart.org
Fingerprint11:D1:74:EB:5A:DF:CB:58:DE:8A:EE:06:70:FD:78:6D:A5:F4:22:58
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type PNG image data, 260 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash d3f69be16baf7acef2e7f4dd03729866
e11aa0084b93253a24dd3ed57ddde66d27c84d2b
3a5eeea11e1041db96b81498ab69c050dd045d9e56c69e19bd98430ba752165f
GET /adfs/portal/logo/logo.png HTTP/1.1
Host: adfs.heart.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 6428
Content-Type: image/png
Expires: Thu, 16 Nov 2023 21:32:05 GMT
ETag: 3A5EEEA11E1041DB96B81498AB69C050DD045D9E56C69E19BD98430BA752165F
Server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age = 31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:;
Date: Tue, 17 Oct 2023 20:32:05 GMT
ocsp.r2m02.amazontrust.com/
471 B URL ocsp.r2m02.amazontrust.com/
IP
Hash 122713a46c95f8bb4dec5675c8bc6370
931a76230505a44e6aa1f7daf3793e4402a3418f
ee9a270ddf93a16b524dcd910d1ba5854596dfd2aa44d8fd71a4f36eefbe151c
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 17 Oct 2023 20:32:08 GMT
Last-Modified: Tue, 17 Oct 2023 19:15:22 GMT
Server: ECAcc (amb/6AE8)
X-Cache: Miss from cloudfront
Via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6aN9bNhuPccqr-lGoPSZ6mXCe8OOiV17GkGqQi61HGtD6Pa4BGy81Q==
Age: 4606
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/817b4ef0abfb56b1/1697574720488/644ds2V_WnpufAe
2.7 kB URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/817b4ef0abfb56b1/1697574720488/644ds2V_WnpufAe
IP
File type PNG image data, 64 x 83, 8-bit/color RGB, non-interlaced\012- data
Hash 2b9d552f55291c1678377e78688060eb
bb1e5b886e8185061b6705f3ae27d28036388e7a
f33e266f6e577652b498ae8d6be076b74f225e861e351abcc393b61b94d495f5
GET /cdn-cgi/challenge-platform/h/b/i/817b4ef0abfb56b1/1697574720488/644ds2V_WnpufAe HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/b3jum/0x4AAAAAAALyeQKgF3mXy98S/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:02 GMT
content-type: image/png
server: cloudflare
cf-ray: 817b4efdb9a856b1-OSL
alt-svc: h3=":443"; ma=86400
aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg
200 OK 7.4 kB URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7438), with no line terminators
Hash bca9b46fee32162356ba5b4783e614dc
cc09ee862df9bf86e545f9dfdf2fbd4facfa71f5
fb48e7087def752683bc9a9fe4035acf2419cebbe8b17a16e5c81699a06f6fec
GET /shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 11975422
cache-control: public, max-age=31536000
content-md5: nTculR1Fom7eLci0F6rk+A==
content-type: image/svg+xml
date: Tue, 17 Oct 2023 20:32:05 GMT
etag: 0x8DB5C3F4ADC079A
last-modified: Wed, 24 May 2023 10:11:51 GMT
server: ECAcc (ska/F7B6)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 9d35d246-701e-009b-604e-944da7000000
x-ms-version: 2009-09-19
content-length: 2407
X-Firefox-Spdy: h2
beletheric.vielitord.ru/web5/assets/css/pages.min.css?cb=1697574719896
200 OK 17 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/css/pages.min.css?cb=1697574719896
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type ASCII text, with very long lines (17002), with no line terminators
Hash 68dd1bcccde5656be56122a5370bbb98
18d1618561916e13668295570a157c32acd9e1f5
bd5a242e3cd9e703a92c7d2667e8f78a3ba2c97cbd04237665782034e4760ed3
GET /web5/assets/css/pages.min.css?cb=1697574719896 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:00 GMT
content-type: text/css
last-modified: Thu, 21 Sep 2023 16:09:25 GMT
etag: W/"426a-605e0b73dd2ad"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kxLUqtLaULAuUGI8AH9jmOqJ0mxTnIqjPRkh9GNyWI737yg4yqMSgPIAm%2BXo7%2B5DOFt1O8h05Osow5hJCcwuKFXWr6HwxPt%2FuTvKIDBRpNCgPNPhiwlvuIeItNaAP0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 817b4eeb3ac95684-OSL
content-encoding: br
challenges.cloudflare.com/turnstile/v0/api.js?render=explicit
302 Found 34 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js?render=explicit
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 17 Oct 2023 20:31:58 GMT
location: /turnstile/v0/b/7ff8d35b/api.js?render=explicit
access-control-allow-origin: *
cache-control: max-age=300, public
vary: accept-encoding
server: cloudflare
cf-ray: 817b4ee4cae40b51-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg
200 OK 2.9 kB URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2923), with no line terminators
Hash e924de0d471df54b6280f3dc8b187cb8
857f03226070b502a9e06b4249710ec10be4c9e9
24ce135a31ce83ac3d62471fcc0e1a82ce6f1533c993ee59ca4e110d5f2fae33
GET /shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 11406617
cache-control: public, max-age=31536000
content-md5: XHrPYKKsqlxUvysuxtSE2A==
content-type: image/svg+xml
date: Tue, 17 Oct 2023 20:32:05 GMT
etag: 0x8DB5C3F4A98E9BB
last-modified: Wed, 24 May 2023 10:11:50 GMT
server: ECAcc (ska/F6F3)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 3afb7c4b-e01e-0039-1e7a-99c6de000000
x-ms-version: 2009-09-19
content-length: 1173
X-Firefox-Spdy: h2
httpbin.org/ip
200 OK 31 B IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerAmazon
Subjecthttpbin.org
Fingerprint14:0C:C7:A8:EC:FA:7F:9C:9D:D2:B8:7E:C9:B8:93:3A:A1:11:F6:01
ValidityThu, 21 Sep 2023 00:00:00 GMT - Fri, 18 Oct 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash b90b7b460267d7067015fd46f3cd1a1e
3c164e9136c246dffb5fb4ef3927dda99d880121
885fd87e71d0651d917c1483aaf061a95e9c52371afb3970abf85c50caa8dfbf
GET /ip HTTP/1.1
Host: httpbin.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://beletheric.vielitord.ru
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:32:08 GMT
content-type: application/json
content-length: 31
server: gunicorn/19.9.0
access-control-allow-origin: https://beletheric.vielitord.ru
access-control-allow-credentials: true
X-Firefox-Spdy: h2
beletheric.vielitord.ru/web5/assets/cloudfavicon.ico
200 OK 34 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/cloudfavicon.ico
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Hash 88415acda09a4cbd9d87543c3ba78180
2dec4705e9ab399efdc6eef36e079aa31d1df8d9
20cccc47c1bac9d2ef36b6a1c58af58c5c169ad5ca084080f0392b86f949641c
GET /web5/assets/cloudfavicon.ico HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:58 GMT
content-type: image/x-icon
last-modified: Wed, 16 Aug 2023 15:22:46 GMT
etag: W/"86be-6030bde212b57"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QMNlO4ZIZ%2B64Qi9GSTGYZ8oUFo1vvEcq5tytK0FkXAYy6eercvHtP5jth8errsnjEYs6%2FvdqhxxutRvlsKEC0dzH1Q%2FA8azmC%2F9w9Xb%2FCCXTBODxkDfL09u0Hq%2BPL40%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 366
server: cloudflare
cf-ray: 817b4ee6ce305684-OSL
content-encoding: br
beletheric.vielitord.ru/web5/assets/pages/xuu5u9xr2k.css?cb=1697574719896
200 OK 1.3 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/pages/xuu5u9xr2k.css?cb=1697574719896
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type ASCII text, with very long lines (1320), with no line terminators
Hash 90c612b7de0cf7eb12bb988e4e6500ee
45c9d81217ba6dff8c6fbc24dcc58659d1c3afa0
a7fc9fb9f6cdfecfc6108e9caa814c072ac461c69ce21f4cce51d0de06f8d41b
GET /web5/assets/pages/xuu5u9xr2k.css?cb=1697574719896 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:00 GMT
content-type: text/css
last-modified: Tue, 17 Oct 2023 15:38:55 GMT
etag: W/"4fd-607eb5210b790"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cJ53FET4MQH9a9le%2Fc2TgPUNUHM1rPJ4UQkDfqV6HLkaJ1Lu%2FtPLkoy9yV0%2FfIHJ0ExsbPJks1LZ1uG9%2FFggl62ZXUMtB5n%2B8LVys7Z5YgDhv9qDFLNUwrmnEZQOK6I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 817b4eeb3ac75684-OSL
content-encoding: br
beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-vf2.woff2
200 OK 93 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/fonts/GDSherpa-vf2.woff2
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type Web Open Font Format (Version 2), TrueType, length 93276, version 1.0\012- data
Hash bcd7983ea5aa57c55f6758b4977983cb
ef3a009e205229e07fb0ec8569e669b11c378ef1
6528a0bf9a836a53dfd8536e1786ba6831c9d1faa74967126fddf5b2081b858c
GET /web5/assets/fonts/GDSherpa-vf2.woff2 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beletheric.vielitord.ru/z92b48tbr2
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:59 GMT
content-type: font/woff2
content-length: 93276
last-modified: Fri, 25 Aug 2023 04:00:32 GMT
etag: "16c5c-603b762dd727e"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FvJK%2BrhpTIpMAOB9UnzNrQ7KRvzEa%2FlH928gl7%2BO39AvTRhrmDZY9r7XlxPG0WrYkypsqv6QiW7SWO98fR%2FMSDRdjcxESCO6T3XhJt5oADAVaw1saf5ID8soJmw%2F%2FLg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
server: cloudflare
cf-ray: 817b4eeb7b515684-OSL
beletheric.vielitord.ru/z92b48tbr2
200 OK 107 B URL User Request GET HTTP/2 beletheric.vielitord.ru/z92b48tbr2
IP
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash fc265451aa90d5b34d0147f276c8074e
fd986bc3bc40953b4b8fab8361becb3419cead25
a242e61bf6592edeb2efcab8b871141e8868144396df87fb554c50fb99e92898
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /z92b48tbr2 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:31:58 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2fLWC8RK1RlD3KKb2Gi%2BcvJF09CoO1UGkcwVbEcQsUR1L5P8ntqWN6CzaK9IIfHcOdIeV7h%2BaRpTTtE80RVrpAjbWwDqdVVPtqYEzmr3qO2IIWnIUmTRZCTQacxEPlG1qGTxA%2B8B%2F3IVuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 817b4ee15ce0569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
beletheric.vielitord.ru/web5/call
0 B URL POST beletheric.vielitord.ru/web5/call
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /web5/call HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 107
Origin: https://beletheric.vielitord.ru
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IlluWUNCNUdHMjFSREYxcXNGa2hiQUE9PSIsInZhbHVlIjoidjI3N1Rwb1E1cjNoWDVqMGs2Q0JVMFloYWhTUG41cEMrZ3JZalFLTVNDTmxwOXc4WTQzYmw4b2VhYy8yYll0UExITU80RjFuUmFTWS9YVFdtQVhmVHlJZ3M2b0dFWktSS1FraGFibVJ2aVNiSlFnV1dNandYcDNVRC9oSWpuRkQiLCJtYWMiOiI3ODg0ZTAwNWM1ZjAyZDI0YTRlNDRlOTZhNDZiYTAzYjM0MWIzZGQ0MmVkMzJiZDVkZWJiMDI3NTMwNWJlMDVjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iis4TEd4UFgxT2JZQUlBK3I5RDdldEE9PSIsInZhbHVlIjoia3lJNENHNFlvNFZGU0cyaFV6Z3AwTXZSNFdxbG1neDNCZ1ppdXNXYlh6VE5PNThDU3paa0lLY3F5ZUVoT2ZLQmtkU2k5TGpSU2d2UHBFWmY2VWRCanpuSnU0aGw0MkUvTmFkS2Z1K3ZLSGU4QWtqbEFNU3doNmo3NDBNYnRoTFEiLCJtYWMiOiJmMjMwYWJkYzM3NzRjYjk4ZDQzMGVkZmQyYTY5YWVmMjM5YTc4NDcyOTc4MmRkMmZmOTY5MWZjNTRmZTlkYWI2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
beletheric.vielitord.ru/web5/assets/js/pages-head-web.min.js?cb=1697574719896
200 OK 9.9 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/js/pages-head-web.min.js?cb=1697574719896
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type ASCII text, with very long lines (9951), with no line terminators
Hash 2692213b1e8a48f2a0ef0e803666c269
e35b6539454bc178d8ef1f3a7c60a051d123ba93
f34ad8a7113853157e2408d8a1b35e15daa6c5f49d9621e327339ed683e1a496
GET /web5/assets/js/pages-head-web.min.js?cb=1697574719896 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:00 GMT
content-type: application/javascript
last-modified: Sat, 14 Oct 2023 12:29:26 GMT
etag: W/"26b4-607ac52d9994f"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1aRe%2FQJ2qIVMFP5wwjvP6BU%2B%2BrUXhAmcn3CnjeJkEUMRHDe1W9vhJnF1MPbOFZZ%2BSXf7kGBDsk1R0cpa9iy4AQcV2a986ldbCI6FXJH89NT06A0IhGNqNOsAEJ8jmKg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 817b4eeb3ad35684-OSL
content-encoding: br
beletheric.vielitord.ru/web5/check
200 OK 0 B URL POST HTTP/3 beletheric.vielitord.ru/web5/check
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /web5/check HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 19
Origin: https://beletheric.vielitord.ru
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IkNIeERZM0VsWHg0ZE1sYWpYa1hLMFE9PSIsInZhbHVlIjoiTThvVlNSYXM2QXhhWXFMTTJOT2ZIYkI0SXBDRzBXWXo0eitqb0ZvL2ZHMS9GTFhnbXRSMnNzU3ovRk5qK01WWEhPaGsxbWptWXloSjlKTWRGNkF2RGs0T3RJZW5QcE5ML1VwMnJCUFAzb1NNMEszc2wxYmxGWCt3akg5UEJPU0QiLCJtYWMiOiI2NTg5YjBmNGM4MTExOTBiNjRmYzIyOWVlNTE5NDdhYTljYzJjOTMxZDEyYjUxYzgxMTU5NmNlMDhjYzVhOTk4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImlMZGFpSHFHQVQ5K3lFZWppQzVLRXc9PSIsInZhbHVlIjoid2cvMkJRMVByVkxWNWRBQWJmQ1FUN3ZKVXNTdlNRSGp0ZXBGM01kUFNBTVpMaE4vRkc1cGlLcXBKRy8zaEVKc215bS9lOTZqOGNpdGQrQ2hCVWFUbUhMM3NURUZlL3QyZTllaTFsOXlPQjQ1QUR6UXJTdnhsWFpsZFZkWktoQW8iLCJtYWMiOiI3NGU4NDllNTkzZWUyYzkxYzA5NjhlNzc2YWI2ZDA0Y2Y5ODY2NWQ5NjM1MDZmNjU5ZWNhYTg0MGVhMjdkMTRkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:05 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.1.10
cache-control: no-cache, private
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cYldoiE9TF860nUe6Y8u32EI8zOqN%2BXhqylGm1cPzuCTZckB1aJXOvQmB%2FqFv2cWZY4KkN8umMHWMa6kfay9IGgAm3XH4U4bsVXKx0Y6m6fyw6LsNT4lqpoKWcOkJ1M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6IllOcWZUVk5GVVRUU0hjOHNzYjlwRFE9PSIsInZhbHVlIjoiMjA3WUdaanJONmhwa2hZQnhiTzVwMlZQaG9hTDhPZHZ2U2JzSDRISEVDc1FIVkRmYTBFRW82UC9UYmdmaFZJNHE1NFVEWVhuYVd4RE9mTDRvNDNJSTRVQ2N0T2xaT2hJMmtneXA5VVh0UmI5Q0NBaUlnVktHRDdBVnA5aUtkWXkiLCJtYWMiOiJmYTM3ZTA0OTJlMGRmN2ZlNmJhMjhhY2U2Njc4OGRmNGQwZDliYWUxNTNlYjg4NzRiMGU1NGJiNzg1Yzg1NGFjIiwidGFnIjoiIn0%3D; expires=Tue, 17-Oct-2023 22:32:05 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6InVmQmRJOWFnY0NlV28vc3hjR2szS3c9PSIsInZhbHVlIjoib1BWbzZ4dEZBVHBWais5bmpObE1sQ1ZmS0Q4b0Izd2ZvK0lPNEpBMGlvVmNMWmpuRWdGRkZ3b1dGVHUrZUJSdjB6YlBWTzZGSjllcW9hKzBOSC8rNXFoeFRGMVhPYnQ0YndGSE1DeEFHRnluWnpWdVFlZERhV09icTc4ZTlHRVYiLCJtYWMiOiIyZmRlNjc3MzE4NDE4ODAwZDI3ZGE0YjFmZjFkZjI2M2YxMmVjZjViZWZmYjdkYTZmMGUwOGZjMDQ0ZDg2ZDBjIiwidGFnIjoiIn0%3D; expires=Tue, 17-Oct-2023 22:32:05 GMT; Max-Age=7200; path=/; httponly; samesite=lax
server: cloudflare
cf-ray: 817b4f0a7d7b5684-OSL
content-encoding: br
beletheric.vielitord.ru/web5/assets/cloudfavicon.ico
200 OK 34 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/cloudfavicon.ico
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Hash 88415acda09a4cbd9d87543c3ba78180
2dec4705e9ab399efdc6eef36e079aa31d1df8d9
20cccc47c1bac9d2ef36b6a1c58af58c5c169ad5ca084080f0392b86f949641c
GET /web5/assets/cloudfavicon.ico HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:59 GMT
content-type: image/x-icon
last-modified: Wed, 16 Aug 2023 15:22:46 GMT
etag: W/"86be-6030bde212b57"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QMNlO4ZIZ%2B64Qi9GSTGYZ8oUFo1vvEcq5tytK0FkXAYy6eercvHtP5jth8errsnjEYs6%2FvdqhxxutRvlsKEC0dzH1Q%2FA8azmC%2F9w9Xb%2FCCXTBODxkDfL09u0Hq%2BPL40%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 367
server: cloudflare
cf-ray: 817b4eeeef835684-OSL
content-encoding: br
beletheric.vielitord.ru/web5/validatecaptcha
200 OK 20 B URL POST HTTP/3 beletheric.vielitord.ru/web5/validatecaptcha
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 0b35866f4a3aa4d34ce5dda2d14c2cd8
d2b80911f09c3106fdf0df9920f983945d644083
493851374626d927bfe1c7d084fa977a0e636c03f163fda258ab6b638edc2f0d
POST /web5/validatecaptcha HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 566
Origin: https://beletheric.vielitord.ru
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:04 GMT
content-type: application/json
x-powered-by: PHP/8.1.10
cache-control: no-cache, private
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CgGRCx7evBw24ECHoYda3GSwaFDknyZdlU%2BGF4WIcOUsHOAx4jCwsZdyuxlNt%2BvrTgUkDuBS7h%2BNP%2B%2F7lm059Gs6LBZ3dXHY3temEB%2ByIoEairtnlljYYsaPdLWXljA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6IkNIeERZM0VsWHg0ZE1sYWpYa1hLMFE9PSIsInZhbHVlIjoiTThvVlNSYXM2QXhhWXFMTTJOT2ZIYkI0SXBDRzBXWXo0eitqb0ZvL2ZHMS9GTFhnbXRSMnNzU3ovRk5qK01WWEhPaGsxbWptWXloSjlKTWRGNkF2RGs0T3RJZW5QcE5ML1VwMnJCUFAzb1NNMEszc2wxYmxGWCt3akg5UEJPU0QiLCJtYWMiOiI2NTg5YjBmNGM4MTExOTBiNjRmYzIyOWVlNTE5NDdhYTljYzJjOTMxZDEyYjUxYzgxMTU5NmNlMDhjYzVhOTk4IiwidGFnIjoiIn0%3D; expires=Tue, 17-Oct-2023 22:32:03 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6ImlMZGFpSHFHQVQ5K3lFZWppQzVLRXc9PSIsInZhbHVlIjoid2cvMkJRMVByVkxWNWRBQWJmQ1FUN3ZKVXNTdlNRSGp0ZXBGM01kUFNBTVpMaE4vRkc1cGlLcXBKRy8zaEVKc215bS9lOTZqOGNpdGQrQ2hCVWFUbUhMM3NURUZlL3QyZTllaTFsOXlPQjQ1QUR6UXJTdnhsWFpsZFZkWktoQW8iLCJtYWMiOiI3NGU4NDllNTkzZWUyYzkxYzA5NjhlNzc2YWI2ZDA0Y2Y5ODY2NWQ5NjM1MDZmNjU5ZWNhYTg0MGVhMjdkMTRkIiwidGFnIjoiIn0%3D; expires=Tue, 17-Oct-2023 22:32:03 GMT; Max-Age=7200; path=/; httponly; samesite=lax
server: cloudflare
cf-ray: 817b4effd8855684-OSL
content-encoding: br
beletheric.vielitord.ru/web5/assets/js/pages.js?cb=1697574719896
200 OK 81 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/js/pages.js?cb=1697574719896
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web5/assets/js/pages.js?cb=1697574719896 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IkpsdlZtYVUva25ibnVNUXoxL3JSU0E9PSIsInZhbHVlIjoiSldlcU15N3k3dUxlYjk4akVnUDBIUk45MGZXenMvRXFpaWlZaTNhODVlR0ZPRHMwbEN1SFpXN2QwZEwxSXUrb0JzemllWHY5OFpYeWtqMytJYWZ3eVRYT0VsWDh4Q1N5Skw2R2hLZnZYcUlaRDhTRmREdWtqVGN0MHdMTlJiYkIiLCJtYWMiOiJkYWEzY2I3ZjM2YjQ3NGVhOGM4MDljODEwZTRhNmI3MGJjODc4OWYzMmMzZTE1YTI5Mzg0Mzg0MzY1ZGYyNTAyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IllXbGxpVUJjK0E2Y1M4amxvaENiSWc9PSIsInZhbHVlIjoiS09wWTNIVzVxeHFGd0kxcERvNTh4UHlwTUFMTXZCa2dvSmpjQkJlVjAyU2lKOUpaeHV6T0RmcHYrVW5XcTJuQUlFTHlhWTMyWEVyZ09ubVE0UWpQUkw2RmZuSmFlSk1rUXdhSGd4QS91ZG90SDE4QTg5TWtibldCS0dOME5yam4iLCJtYWMiOiI3YTk0NWE4MGZmMjI0MTYzMzJlZTkyY2M5OWJmZDBiZDRjNWY1MDMwMjY4NTIxNjE4MWJhOWZjOTIwNTgxNWUzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:06 GMT
content-type: application/javascript
last-modified: Mon, 25 Sep 2023 20:22:34 GMT
etag: W/"13b82-60634b7f30722"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cKIWVWWe2GkElce8vIPHC8B4d869631hvxqmZDKI%2BhIVm%2B6agIOs3Yg4QmmVZmA%2F5KnzKv7p3L%2BYJ%2BV5IEaxP58mgkO%2BSSjdHXMUrdkhrWsVVgfV4dt0YvWsh5%2BrdXg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 817b4f11dea85684-OSL
content-encoding: br
challenges.cloudflare.com/turnstile/v0/b/7ff8d35b/api.js?render=explicit
200 OK 34 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/7ff8d35b/api.js?render=explicit
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (34169)
Hash a65b6a0168a66b4f0db4dd65c60d8e3a
fe403c2a8c9ce0f11185940892ad3479c3355c93
7e0b26f08c9a0d0a70e887541e8165472579233b92950835dd2bdde9963d1b8a
GET /turnstile/v0/b/7ff8d35b/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beletheric.vielitord.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:31:58 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 817b4ee4eaf20b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
beletheric.vielitord.ru/web5/assets/microsoftfavicon.ico
200 OK 17 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/microsoftfavicon.ico
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Hash 12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /web5/assets/microsoftfavicon.ico HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Cookie: XSRF-TOKEN=eyJpdiI6IllOcWZUVk5GVVRUU0hjOHNzYjlwRFE9PSIsInZhbHVlIjoiMjA3WUdaanJONmhwa2hZQnhiTzVwMlZQaG9hTDhPZHZ2U2JzSDRISEVDc1FIVkRmYTBFRW82UC9UYmdmaFZJNHE1NFVEWVhuYVd4RE9mTDRvNDNJSTRVQ2N0T2xaT2hJMmtneXA5VVh0UmI5Q0NBaUlnVktHRDdBVnA5aUtkWXkiLCJtYWMiOiJmYTM3ZTA0OTJlMGRmN2ZlNmJhMjhhY2U2Njc4OGRmNGQwZDliYWUxNTNlYjg4NzRiMGU1NGJiNzg1Yzg1NGFjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InVmQmRJOWFnY0NlV28vc3hjR2szS3c9PSIsInZhbHVlIjoib1BWbzZ4dEZBVHBWais5bmpObE1sQ1ZmS0Q4b0Izd2ZvK0lPNEpBMGlvVmNMWmpuRWdGRkZ3b1dGVHUrZUJSdjB6YlBWTzZGSjllcW9hKzBOSC8rNXFoeFRGMVhPYnQ0YndGSE1DeEFHRnluWnpWdVFlZERhV09icTc4ZTlHRVYiLCJtYWMiOiIyZmRlNjc3MzE4NDE4ODAwZDI3ZGE0YjFmZjFkZjI2M2YxMmVjZjViZWZmYjdkYTZmMGUwOGZjMDQ0ZDg2ZDBjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:05 GMT
content-type: image/x-icon
last-modified: Sun, 19 Mar 2023 15:20:17 GMT
etag: W/"4316-5f7425905ae40"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
age: 364
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=erVeEjfxPA1Yy4JjQNz78NHmNoBgAAztR32uwEiqi1DQ%2B3jtLxtvHbNwCum8Qoco9bK6Nskpsam5GYMrFqrfwGBgEs8sX8uVuMYTMT%2FvZ6LqM9dSZ4xVOMk97sk2Xag%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
server: cloudflare
cf-ray: 817b4f14c9645684-OSL
content-encoding: br
code.jquery.com/jquery-3.6.0.min.js
200 OK 90 kB URL GET HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 17 Oct 2023 20:31:58 GMT
age: 2336618
x-served-by: cache-lga21931-LGA, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 632849
x-timer: S1697574718.236596,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
beletheric.vielitord.ru/web5/assets/js/pages-head-top-web.min.js?cb=1697574719046
200 OK 2.2 kB URL GET HTTP/3 beletheric.vielitord.ru/web5/assets/js/pages-head-top-web.min.js?cb=1697574719046
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerGoogle Trust Services LLC
Subjectvielitord.ru
FingerprintDC:E5:7E:52:20:B4:6D:59:C4:2A:82:AE:A1:3B:FC:1E:0E:E1:13:23
ValidityTue, 17 Oct 2023 08:25:50 GMT - Mon, 15 Jan 2024 08:25:49 GMT
File type ASCII text, with very long lines (2377), with no line terminators
Hash 34cf50c72e6c47c9e84404874112f660
181e1a160d2e1b4fa9b8272639afa29ecd3a2530
a3e8c9bf99f1ca73558cbfaeffff38c6f7bb56f3ef6293dc526d73bd7fce413f
GET /web5/assets/js/pages-head-top-web.min.js?cb=1697574719046 HTTP/1.1
Host: beletheric.vielitord.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/z92b48tbr2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:31:59 GMT
content-type: application/javascript
last-modified: Mon, 16 Oct 2023 23:11:45 GMT
etag: W/"8a1-607dd87b03be2"
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=clwblQEllNg%2BX06WDIkqibyPKO0UlxFJpCjXOvTtCnIj8PC7aRPrHb%2ByCZbKwIsimDEVrnYheAztyH6aC7IwyOJfJrXKjCAX0Pk70WQfk9yOaoBV0%2BgcwyEOnkrJtqE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 817b4ee5dd6a5684-OSL
content-encoding: br
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/b3jum/0x4AAAAAAALyeQKgF3mXy98S/auto/normal
200 OK 72 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/b3jum/0x4AAAAAAALyeQKgF3mXy98S/auto/normal
IP
Requested by https://beletheric.vielitord.ru/z92b48tbr2#mike.lewis@velocis.com
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (39843)
Hash b3ca47dc94671b845a5f296aa85d948e
980764a7e6a615ddc6013f31bf2e3bbb3d6ee372
3aed7675c2929d482ef329734a0ba9d657ff2398f3024038bca4d497dc9213ff
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/b3jum/0x4AAAAAAALyeQKgF3mXy98S/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beletheric.vielitord.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:32:00 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 817b4ef0abfb56b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
162.241.120.242
104.21.52.70