| r10.o.lencr.org/ |  23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash72e206e9b89445fb2fb4031a6abe6169 a18bebfb86a71685bd817c15e348cfb5ea438c72 856f85441e043130f88668be6cf68110187856f17999bddc4332437d383c79b6
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "856F85441E043130F88668BE6CF68110187856F17999BDDC4332437D383C79B6"
Last-Modified: Mon, 23 Sep 2024 09:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6351
Expires: Mon, 23 Sep 2024 23:20:44 GMT
Date: Mon, 23 Sep 2024 21:34:53 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash45bb723a1174e82d026bc311af3c166e 8cbcbd02f9b502eceff234b965df8e1878431f3a 3b65014c44a993c77cc67c6fe2df7d305bf95495b2f23d72a56fdce16ee11973
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3B65014C44A993C77CC67C6FE2DF7D305BF95495B2F23D72A56FDCE16EE11973"
Last-Modified: Mon, 23 Sep 2024 16:40:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11227
Expires: Tue, 24 Sep 2024 00:42:00 GMT
Date: Mon, 23 Sep 2024 21:34:53 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashcee6f187f86d8f7b2779939286a4bbaa 52ca24c4137cb54a6437894f645919084cb479ee e1738902960c8c11c246196351ee0adbe1f5c5722ba7765dc0a536efff18b85e
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E1738902960C8C11C246196351EE0ADBE1F5C5722BA7765DC0A536EFFF18B85E"
Last-Modified: Mon, 23 Sep 2024 13:26:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12401
Expires: Tue, 24 Sep 2024 01:01:34 GMT
Date: Mon, 23 Sep 2024 21:34:53 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash8ab80371465a057b549a046eb6f97853 0ccf179fc8a2f02fc91bdb73161837daf6f5c08a e8d786bfe63e0db6078c37a721dcd2c244ca27d70e5ecc8d99ccea1755073729
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E8D786BFE63E0DB6078C37A721DCD2C244CA27D70E5ECC8D99CCEA1755073729"
Last-Modified: Sun, 22 Sep 2024 14:38:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9109
Expires: Tue, 24 Sep 2024 00:06:43 GMT
Date: Mon, 23 Sep 2024 21:34:54 GMT
Connection: keep-alive
|
|
| nigasdsht.eliao05.top/cdn-cgi/styles/cf.errors.css |  172.67.200.53 | | 5.0 kB |
URL nigasdsht.eliao05.top/cdn-cgi/styles/cf.errors.css IP172.67.200.53:0
File typegzip compressed data, from Unix Hash718aaf0ef86a42f97f655e1c26e3cebf 40f4f6e39d6cdc2281d69961709dc920fc4260ab 7209a90e0ee1ecd19c1c59990640de53c93186bca91ba44df562a8ad1aa53aed
GET /cdn-cgi/styles/cf.errors.css HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/vdce34evw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:34:54 GMT
content-type: text/css
last-modified: Mon, 16 Sep 2024 09:31:40 GMT
etag: W/"66e7fafc-5df3"
server: cloudflare
cf-ray: 8c7da9566fa656af-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Mon, 23 Sep 2024 23:34:54 GMT
cache-control: max-age=7200, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| r11.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash9b46c3577c9513b260ce14c295639451 500d1a034702255133167cbbb43b8be0e6d7523e 046224cbdaa03b08777500a934c9044b725cf5e2a50d1f80dfe7a31712694ab9
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "046224CBDAA03B08777500A934C9044B725CF5E2A50D1F80DFE7A31712694AB9"
Last-Modified: Mon, 23 Sep 2024 12:40:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11820
Expires: Tue, 24 Sep 2024 00:51:56 GMT
Date: Mon, 23 Sep 2024 21:34:56 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash9b46c3577c9513b260ce14c295639451 500d1a034702255133167cbbb43b8be0e6d7523e 046224cbdaa03b08777500a934c9044b725cf5e2a50d1f80dfe7a31712694ab9
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "046224CBDAA03B08777500A934C9044B725CF5E2A50D1F80DFE7A31712694AB9"
Last-Modified: Mon, 23 Sep 2024 12:40:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11820
Expires: Tue, 24 Sep 2024 00:51:56 GMT
Date: Mon, 23 Sep 2024 21:34:56 GMT
Connection: keep-alive
|
|
| nigasdsht.eliao05.top/favicon.ico | 172.67.200.53 | 404 Not Found | 4.4 kB |
URL GET HTTP/2nigasdsht.eliao05.top/favicon.ico IP172.67.200.53:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /favicon.ico HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/vdce34evw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Mon, 23 Sep 2024 21:34:54 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O683x4GpOWI6vG7htgo0TLhIxCHKl2sbRcu4HqmpMo3hWdQgrfK5vcSQA%2BbPjXGPY7zZTaSfa1htPZdeuz4%2BRgKeaPVjBTAJGQllNOkqq7vaM4SAmLpoXCUvCjIM6R%2FJBiRqjflSB%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8c7da957587c56af-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/cdn-cgi/phish-bypass?atok=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-%2Fvdce34evw%2F | 172.67.200.53 | 301 Moved Permanently | 167 B |
URL User Request GET HTTP/2nigasdsht.eliao05.top/cdn-cgi/phish-bypass?atok=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-%2Fvdce34evw%2F IP172.67.200.53:443
CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET /cdn-cgi/phish-bypass?atok=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-%2Fvdce34evw%2F HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/vdce34evw/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Mon, 23 Sep 2024 21:35:00 GMT
content-type: text/html
content-length: 167
location: https://nigasdsht.eliao05.top/vdce34evw/
set-cookie: __cf_mw_byp=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-/vdce34evw/; Domain=nigasdsht.eliao05.top; Path=/; Max-Age=86400
cache-control: private, no-cache
server: cloudflare
cf-ray: 8c7da97a8a2d56af-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/m1d6a/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ |  104.18.94.41 | | 42 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/m1d6a/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ IP104.18.94.41:0
File typeHTML document, ASCII text, with very long lines (42605) Hash2bf60f7b88614177862478a66b056641 836beb7657bc652e53d03ce3f7e4409217489f44 7e25804ab371084091e3ecf3bdce0cad79f722a435fe1358922b72ff8d3b69f9
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/m1d6a/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:00 GMT
content-type: text/html; charset=UTF-8
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
document-policy: js-profiling
cross-origin-embedder-policy: require-corp
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-opener-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
referrer-policy: same-origin
origin-agent-cluster: ?1
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 8c7da97ebc9db4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8c7da97ebc9db4f1/1727127301308/388527a677ec81013e0de77e348146e704a1642a0151aae758ef82062fbcfd05/fizTT3w9CquLmyG | 104.18.94.41 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8c7da97ebc9db4f1/1727127301308/388527a677ec81013e0de77e348146e704a1642a0151aae758ef82062fbcfd05/fizTT3w9CquLmyG IP104.18.94.41:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/8c7da97ebc9db4f1/1727127301308/388527a677ec81013e0de77e348146e704a1642a0151aae758ef82062fbcfd05/fizTT3w9CquLmyG HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/m1d6a/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 401 Unauthorized
date: Mon, 23 Sep 2024 21:35:01 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gOIUnpnfsgQE-Ded-NIFG5wShZCoBUarnWO-CBi-8_QUAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIDiFJ6Z37IEBPg3nfjSBRucEoWQqAVGq51jvggYvvP0FABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIDiFJ6Z37IEBPg3nfjSBRucEoWQqAVGq51jvggYvvP0FABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAuJroJOc-tyeoeQjFgfJ8GZidY1pYZ3E6vnRPKA0M4VuvYINC4ZmqLOQzac3aJzNuRrxrQ8vCXrvu97kqdHJSuD7c4F3hVN6pS2ay8sAL7u7jJt6lacsQHuSPC9EIde0igAXxPC2mDw7WVmKBnW1L8eX49fv385hVn2lkvVbn6g2RCo-8cr_vCaywLT1Y4m5m_6XjP6Oekt71A2a9NKotkb81Y8DjanuZ8fdTQWt6O8NqyhDobyHRcF9-9o8acjcIRT5cfkSGzFdMpznnIFdDtr33BOQv2usHcnClM6om78iaqVMykh3JylHkrYXv9gOBIy3r8i0wOr_0t9XKtgxipQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8c7da9850b0fb4f1-OSL
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8c7da97ebc9db4f1/1727127301310/ZwdKP-dklPVlfz0 | 104.18.94.41 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8c7da97ebc9db4f1/1727127301310/ZwdKP-dklPVlfz0 IP104.18.94.41:0
File typePNG image data, 88 x 19, 8-bit/color RGB, non-interlaced Hash663d8e23369a482276e6ceb1ab8e01a7 d70fa83d5f43a1581e21e86a2158e1017e54d237 6e4667feaabd07f9a9a244ecd5daf61f91ca70a9eb34e64dcee4468e50f734ae
GET /cdn-cgi/challenge-platform/h/g/i/8c7da97ebc9db4f1/1727127301310/ZwdKP-dklPVlfz0 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/m1d6a/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:02 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8c7da9883df0b4f1-OSL
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/cdn-cgi/challenge-platform/h/g/flow/ov1/1237962321:1727126057:WKab30h_EHf60_dPUbnndtDLZNXJJfbhTxWbh2dkwX4/8c7da97aba7056af/8ff30492785db17 | 172.67.200.53 | | 24 kB |
URL nigasdsht.eliao05.top/cdn-cgi/challenge-platform/h/g/flow/ov1/1237962321:1727126057:WKab30h_EHf60_dPUbnndtDLZNXJJfbhTxWbh2dkwX4/8c7da97aba7056af/8ff30492785db17 IP172.67.200.53:0
File typeASCII text, with very long lines (16752), with no line terminators Hash6825b64f6f7028417056551c8dfc92e4 7e837fac658a743b395bf96d850d6029fece697f 26df5455dcc069ceea3ab0980293d5f7c7ead31821cb5867d8163ea33707ebec
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1237962321:1727126057:WKab30h_EHf60_dPUbnndtDLZNXJJfbhTxWbh2dkwX4/8c7da97aba7056af/8ff30492785db17 HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nigasdsht.eliao05.top/vdce34evw/
Content-type: application/x-www-form-urlencoded
CF-Challenge: 8ff30492785db17
Content-Length: 1847
Origin: https://nigasdsht.eliao05.top
DNT: 1
Connection: keep-alive
Cookie: __cf_mw_byp=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-/vdce34evw/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:00 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 3WWDmQe9OKQUuFf6qCzl1FHUFnt5+xjKa5a0+4ADg6sRrk1tULod8RlPg6W4/ZmYRPmjBYjXMA==$vsxEAm8ToHQ552fZ
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pNRQdMGShU2X%2Frjo9FtRvdcPn2jnOjP1w0LyvyQFbTwNNTyHaUZ4lrnW6tOA2UzyC1j5E9VTzFX8xM0c%2Bjo3wo9QviekyA15m%2F7IXSoduiRpOd4zer85lBp%2FTLp8q5ar61BrptxQmeM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c7da97cdd0956af-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pub-dd84bd4ffd664d4c9953e1886abf9dc7.r2.dev/OfcCokColor.js | 172.66.0.235 | 200 OK | 2.7 kB |
URL GET HTTP/1.1pub-dd84bd4ffd664d4c9953e1886abf9dc7.r2.dev/OfcCokColor.js IP172.66.0.235:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerLet's Encrypt Subject*.r2.dev Fingerprint5C:19:05:54:CB:1D:39:D0:1E:C7:12:0E:9F:91:C4:38:3B:B6:02:A8 ValidityThu, 01 Aug 2024 14:00:11 GMT - Wed, 30 Oct 2024 14:00:10 GMT
File typeJavaScript source, ASCII text, with very long lines (2657), with no line terminators Hash549ce88622ff84a59f11f19ab1a6228b 3dd76e9e144f2443daeffb11ddd237ab71a56cfd 02c0ec9d7674f152ac2a2f14bc45e6b60a0e3ff50d7cc9a980c2586573681a6f
GET /OfcCokColor.js HTTP/1.1
Host: pub-dd84bd4ffd664d4c9953e1886abf9dc7.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 23 Sep 2024 21:35:09 GMT
Content-Type: text/javascript
Content-Length: 2657
Connection: keep-alive
Accept-Ranges: bytes
ETag: "549ce88622ff84a59f11f19ab1a6228b"
Last-Modified: Thu, 05 Sep 2024 14:22:24 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8c7da9b46d99b509-OSL
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash9e237d2c4ad2626cfb5e4b85e294279c 494f8e5e86facfc465c5d547b4ef1cacb6c54d45 e11fe4ed30cca48c28e6208072848617d2ecde5c71c66154a40b5cd23af5f87d
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E11FE4ED30CCA48C28E6208072848617D2ECDE5C71C66154A40B5CD23AF5F87D"
Last-Modified: Mon, 23 Sep 2024 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18361
Expires: Tue, 24 Sep 2024 02:41:11 GMT
Date: Mon, 23 Sep 2024 21:35:10 GMT
Connection: keep-alive
|
|
| 69-164-216-107.ip.linodeusercontent.com/BYTUX/dnuWWlOmEVHwpFEw | 69.164.216.107 | 200 OK | 7.4 kB |
URL GET HTTP/1.169-164-216-107.ip.linodeusercontent.com/BYTUX/dnuWWlOmEVHwpFEw IP69.164.216.107:443 ASN#63949 Akamai Connected Cloud
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerLet's Encrypt Subject69-164-216-107.ip.linodeusercontent.com Fingerprint6C:00:A7:1E:62:BD:80:B0:1B:7D:F4:C0:EA:26:B9:9D:ED:55:A0:DC ValiditySun, 04 Aug 2024 21:55:21 GMT - Sat, 02 Nov 2024 21:55:20 GMT
Hash57f38e96321f39c049def7fe6086f308 3b2edb53438d1caf790296b627322d05c6acf11d 00ccc9bec8a7567a11e493950b2f6163ea38a5b5b57d98336cc09e5beabeed03
GET /BYTUX/dnuWWlOmEVHwpFEw HTTP/1.1
Host: 69-164-216-107.ip.linodeusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nigasdsht.eliao05.top/
Origin: https://nigasdsht.eliao05.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 23 Sep 2024 21:35:10 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"4c63-Oy7bU0ONHK95Apa2JzItBcas8R0"
Content-Encoding: gzip
|
|
| cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js | 104.17.24.14 | 200 OK | 6.2 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP104.17.24.14:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint00:EC:C6:E9:D9:C1:6D:05:88:6E:33:AF:3B:E7:7B:86:81:20:66:CA ValidityWed, 31 Jul 2024 04:16:10 GMT - Tue, 29 Oct 2024 04:16:09 GMT
File typeJavaScript source, ASCII text, with very long lines (19015) Hash70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 364602
expires: Sat, 13 Sep 2025 21:35:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vum8wKQPVq7jo%2FMMB1mMOJFFTqtg2optakiqzof11uZ7CjG3L2QH4DTlx2YeP5DI4Txw0oMHdh%2FoDhULKO4c%2BBq8Lf12PQmMfssw2eFq47u%2FDGgwqAwf4dLpc4yWf42A%2FmWbzFWz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8c7da9bb1c6b569c-OSL
X-Firefox-Spdy: h2
|
|
| o.pki.goog/wr2 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hashfeb07e2ccd1a6c5d52eb93c50730f24b 89b4f6991b57c994760d60fdae929efcc780bebd f49b13d6a42b55879e11bbfc44873ce2f15f38ea404fc78128c63dd538d0bc84
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Sep 2024 21:35:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css | 104.18.11.207 | 200 OK | 26 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css IP104.18.11.207:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjectbootstrapcdn.com Fingerprint95:66:C2:43:CE:55:3C:D7:76:0E:9C:5F:28:8C:E9:AA:DC:AC:A2:59 ValidityFri, 20 Sep 2024 01:25:04 GMT - Thu, 19 Dec 2024 01:25:03 GMT
File typegzip compressed data, from Unix Hash73767147e1fbd4faadfc361340949b57 10518ab72c6a7b6db8fe606b82638f92d13b6cbd 75e018edd828b5386fcdca76b3896c9d1e1a00a8a049822c188bbbc7b4864e1d
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:10 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 10/31/2023 18:48:44
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 6f2d14e9436097e66447b103aa0360de
cdn-cache: HIT
cf-cache-status: HIT
age: 8862841
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8c7da9b95cd40b55-OSL
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.3.1.js | 151.101.2.137 | 200 OK | 80 kB |
URL GET HTTP/2code.jquery.com/jquery-3.3.1.js IP151.101.2.137:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hash6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad
GET /jquery-3.3.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nigasdsht.eliao05.top
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-42587"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 23 Sep 2024 21:35:10 GMT
age: 2906160
x-served-by: cache-lga21980-LGA, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 99, 18418
x-timer: S1727127311.652180,VS0,VE0
vary: Accept-Encoding
content-length: 80268
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.10 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.10:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjectupload.video.google.com FingerprintC6:E8:36:27:AB:3A:34:33:0B:85:2C:D8:6C:0A:74:34:71:6A:F5:62 ValidityMon, 26 Aug 2024 07:12:45 GMT - Mon, 18 Nov 2024 07:12:44 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Sep 2024 12:10:05 GMT
expires: Fri, 19 Sep 2025 12:10:05 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 379505
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/vdce34evw/assets/js/inspector.js | 172.67.200.53 | 200 OK | 978 B |
URL GET HTTP/2nigasdsht.eliao05.top/vdce34evw/assets/js/inspector.js IP172.67.200.53:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
Hash258dd6f7a7f188d79f42b0d9796607a6 6ee3230f9cbda28bb3156fa460079c1ffc23f45e 421fb9afd11864e6d8d5e39992041f663e00277a4874e37c46ef88148fe806fe
GET /vdce34evw/assets/js/inspector.js HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/vdce34evw/
Cookie: __cf_mw_byp=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-/vdce34evw/; cf_clearance=RMCjWd5h9CeU3jD76bHwPiN4EybyVKawrd_jqq322Cs-1727127300-1.2.1.1-ZYq6XJq9enUvp6UfrcczsmjcSsZKPREW7dYufIYZQaIXimBShopOJqbw5Yfb_tnONJa2hojHSgBWF.g8rD79UR7cJmfMV8qE_B5vAVIJSfb2jMs8Szj84UfJdN48y8WoBNZpxbiPmgy9KJRZbB.BFjc_N8ylVPtyf.d5AmDie8zGz7PckLKPW6hOwUcbyPaSoHbBEDZRe.0SfiFxdXMXmanbyfRKYtfrX5TMGsPiroKtqtZOL0CUd_EEz2HVsPOQMNDOR37qzBndTpNF2WJM4TKUL4M7Jv9FjBbhScm4A.R92cg7PCf57oc87LSN6xR3F.qkCs8HS1e_p4B_A_o8zuWR5XkVG3iat_sY00v4tVFfCQWeu_JnsSFg6g_xcbo9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:10 GMT
content-type: application/javascript
last-modified: Tue, 02 Jul 2024 09:00:58 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uBSlHN4tPXmKMQJG2khn9fcEhD6JZHd28yEdQhCkc%2BwQmwDootH9RkqrChJgjsSTndW7h4tx%2BM4S193JRP48PSu05CVNkVCHVCse51dzqZ%2BvN9%2Fv6Rb1ErhV1aQbZWA6ipOsbD%2FEjEI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c7da9b96d8556af-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| o.pki.goog/wr2 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hashfeb07e2ccd1a6c5d52eb93c50730f24b 89b4f6991b57c994760d60fdae929efcc780bebd f49b13d6a42b55879e11bbfc44873ce2f15f38ea404fc78128c63dd538d0bc84
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Sep 2024 21:35:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico | 13.107.246.53 | 200 OK | 17 kB |
URL GET HTTP/2aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico IP13.107.246.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerDigiCert Inc Subjectaadcdn.msauth.net Fingerprint31:E8:49:B0:33:9A:FE:63:C6:32:BF:81:44:B1:A9:85:34:97:83:E5 ValidityTue, 30 Jul 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:11 GMT
content-type: image/x-icon
content-length: 17174
cache-control: public, max-age=604800
last-modified: Fri, 02 Nov 2018 20:25:25 GMT
etag: 0x8D6410152A9D7E1
x-ms-request-id: 0330bea8-801e-003b-4db0-0db95f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240923T213511Z-16cbfcdd465x9nwxvyzq6gxag000000000qg00000000b6xu
x-fd-int-roxy-purgeid: 4554691
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/vdce34evw/assets/js/last.js | 172.67.200.53 | 200 OK | 180 kB |
URL GET HTTP/2nigasdsht.eliao05.top/vdce34evw/assets/js/last.js IP172.67.200.53:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size180 kB (180391 bytes) Hash8092c26eed5c0d619e745a3ee1f962ad 4a9f91f8549c3f093a07f365ea28d8ed4c8c1a24 ed61d5f029a67d5d09981e7a4bf6730d2ad48a3c0dd23b90692ec0de6f20ddc6
GET /vdce34evw/assets/js/last.js HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/vdce34evw/
Cookie: __cf_mw_byp=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-/vdce34evw/; cf_clearance=RMCjWd5h9CeU3jD76bHwPiN4EybyVKawrd_jqq322Cs-1727127300-1.2.1.1-ZYq6XJq9enUvp6UfrcczsmjcSsZKPREW7dYufIYZQaIXimBShopOJqbw5Yfb_tnONJa2hojHSgBWF.g8rD79UR7cJmfMV8qE_B5vAVIJSfb2jMs8Szj84UfJdN48y8WoBNZpxbiPmgy9KJRZbB.BFjc_N8ylVPtyf.d5AmDie8zGz7PckLKPW6hOwUcbyPaSoHbBEDZRe.0SfiFxdXMXmanbyfRKYtfrX5TMGsPiroKtqtZOL0CUd_EEz2HVsPOQMNDOR37qzBndTpNF2WJM4TKUL4M7Jv9FjBbhScm4A.R92cg7PCf57oc87LSN6xR3F.qkCs8HS1e_p4B_A_o8zuWR5XkVG3iat_sY00v4tVFfCQWeu_JnsSFg6g_xcbo9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:11 GMT
content-type: application/javascript
last-modified: Mon, 12 Aug 2024 12:49:11 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MH2ftau5nNQvxoZ8hPsxqr1Lhu40vnvo7Li25ASRIL1VSRTAe5O5mhyq%2F6755B2abc6NY%2B30N%2FZLFtscpoUNBFhUAJuJuLnXH42pmfUUS44v516%2BfPDVZiFDC5kCqjn4dUQ%2FRG7TbMc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c7da9b96d8956af-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/vdce34evw/assets/js/mg.js | 172.67.200.53 | 200 OK | 76 kB |
URL GET HTTP/2nigasdsht.eliao05.top/vdce34evw/assets/js/mg.js IP172.67.200.53:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
File typeJavaScript source, ASCII text, with very long lines (65490), with CRLF line terminators Hash365295347cee5c660b4a5baf87f17e83 67e98f7b74ad9dd9ada936784360e3b262d6fc22 f54fa37ada45b884cccf88532495267bab2d9212225907b48918d088364aeafc
GET /vdce34evw/assets/js/mg.js HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/vdce34evw/
Cookie: __cf_mw_byp=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-/vdce34evw/; cf_clearance=RMCjWd5h9CeU3jD76bHwPiN4EybyVKawrd_jqq322Cs-1727127300-1.2.1.1-ZYq6XJq9enUvp6UfrcczsmjcSsZKPREW7dYufIYZQaIXimBShopOJqbw5Yfb_tnONJa2hojHSgBWF.g8rD79UR7cJmfMV8qE_B5vAVIJSfb2jMs8Szj84UfJdN48y8WoBNZpxbiPmgy9KJRZbB.BFjc_N8ylVPtyf.d5AmDie8zGz7PckLKPW6hOwUcbyPaSoHbBEDZRe.0SfiFxdXMXmanbyfRKYtfrX5TMGsPiroKtqtZOL0CUd_EEz2HVsPOQMNDOR37qzBndTpNF2WJM4TKUL4M7Jv9FjBbhScm4A.R92cg7PCf57oc87LSN6xR3F.qkCs8HS1e_p4B_A_o8zuWR5XkVG3iat_sY00v4tVFfCQWeu_JnsSFg6g_xcbo9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:11 GMT
content-type: application/javascript
last-modified: Sun, 08 Sep 2024 21:25:52 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aFPgagkiPyakvW15Qqt4ZmeSuNl8Ln2MfDkGv1ocDSF%2FxTfFw5NW0HkqLpUdfWBAVxxuQvZIKyn%2BAGbSW7WV3gVhtznyUWX3ATVHto6O1Zpkx5kpOezck9ZasNU7KdqMN%2B%2BVQQGkeR4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c7da9b96d7f56af-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/vdce34evw/ | 172.67.200.53 | 200 OK | 4.4 kB |
URL User Request GET HTTP/2nigasdsht.eliao05.top/vdce34evw/ IP172.67.200.53:443
CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
File typeHTML document, ASCII text, with very long lines (4649), with no line terminators Hash393889d20bf2de2fa1128f13afb053d8 2abfb249632d2bf14c9f73d330e4e0b122397ca5 89f2aa2d31ddd16c5efdece7b4894ae1b5e3cced8e1a8471e9cba114138d480d
GET /vdce34evw/ HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:34:54 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wOxN7FbAPNVud7Yz58Jx5zhu1Q%2Bh893Wm6IbtadvM0C7UkljEdIlGAsV8sK%2BZBci7bIf2bY9UPSOaoSauoK6sFzh7XMSNz37VJdeCmuXSlD4UANvYe628jt9vKF94KXHy2djPDYXiIs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8c7da9549e4356af-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/vdce34evw/ | 172.67.200.53 | 403 Forbidden | 8.8 kB |
URL User Request GET HTTP/2nigasdsht.eliao05.top/vdce34evw/ IP172.67.200.53:443
CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
File typeHTML document, ASCII text, with very long lines (8840), with no line terminators Hash5a03d357a7c8c1cf68f34fe1734261d4 c95bb00176b4e7455d69c1cbc11f32221514ab22 9f74ddc945e19599a16f9640cdf581db8d1ca02f4ab654a29d46e2e69981271a
GET /vdce34evw/ HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nigasdsht.eliao05.top/vdce34evw/
DNT: 1
Connection: keep-alive
Cookie: __cf_mw_byp=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-/vdce34evw/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Mon, 23 Sep 2024 21:35:00 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: e0yopY6E+8MD2ITBB59yQdj4mZ/isPR/ayecKVR5iOtgGhH2uXEMhPvMTyNIGDwKVXXOGA9XsLqk15I3mWO6pfauqNvjV+hsFnVMd4O48vQ=$nNorYm8ZuKvnNBl8eyJJnA==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iS24Dvjyjs%2BGDjEkbxUrlfMZwKzY85LapIt2bVrb45LDrnqA4r4Yf0eN%2FjUbWoGmBX2iJlVeniK36EVV%2FXts3JDb9BbJkppoxWMAyaFNzfDH3BjCdMK7rJnitKrayGruSU2n6bViVE8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8c7da97aba7056af-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Archivo+Narrow&display=swap | 142.250.74.106 | 200 OK | 1.3 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Archivo+Narrow&display=swap IP142.250.74.106:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjectupload.video.google.com FingerprintC6:E8:36:27:AB:3A:34:33:0B:85:2C:D8:6C:0A:74:34:71:6A:F5:62 ValidityMon, 26 Aug 2024 07:12:45 GMT - Mon, 18 Nov 2024 07:12:44 GMT
File typeASCII text, with very long lines (1320), with no line terminators Hashe36325252bfeb23fa9155394b983a4c9 3a239d2a0c431d689f4c90af0be0b93b139b927f bdcdb817ce32418726c3a3f01dc27daa4a4c4b77bb30e5acebda35b2c967f31d
GET /css?family=Archivo+Narrow&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 23 Sep 2024 21:35:10 GMT
date: Mon, 23 Sep 2024 21:35:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/vdce34evw/assets/images/key.svg | 172.67.200.53 | 200 OK | 1.6 kB |
URL GET HTTP/2nigasdsht.eliao05.top/vdce34evw/assets/images/key.svg IP172.67.200.53:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
File typeSVG Scalable Vector Graphics image Hash5f537bdaf0abffdf68cd724aecbff862 8e7374588d8d6e040d895c8f9544a03a2607624a 95c3344a39214720e9ae58b0e03ae17b01bb476ae76e90eb32b5f85b1f3e6e8c
GET /vdce34evw/assets/images/key.svg HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/vdce34evw/
Cookie: __cf_mw_byp=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-/vdce34evw/; cf_clearance=RMCjWd5h9CeU3jD76bHwPiN4EybyVKawrd_jqq322Cs-1727127300-1.2.1.1-ZYq6XJq9enUvp6UfrcczsmjcSsZKPREW7dYufIYZQaIXimBShopOJqbw5Yfb_tnONJa2hojHSgBWF.g8rD79UR7cJmfMV8qE_B5vAVIJSfb2jMs8Szj84UfJdN48y8WoBNZpxbiPmgy9KJRZbB.BFjc_N8ylVPtyf.d5AmDie8zGz7PckLKPW6hOwUcbyPaSoHbBEDZRe.0SfiFxdXMXmanbyfRKYtfrX5TMGsPiroKtqtZOL0CUd_EEz2HVsPOQMNDOR37qzBndTpNF2WJM4TKUL4M7Jv9FjBbhScm4A.R92cg7PCf57oc87LSN6xR3F.qkCs8HS1e_p4B_A_o8zuWR5XkVG3iat_sY00v4tVFfCQWeu_JnsSFg6g_xcbo9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:10 GMT
content-type: image/svg+xml
last-modified: Sat, 04 Sep 2021 02:29:58 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ey6yQqtDpZsiRu4wTbYKj4v33ArNVOqcP%2FytwEPsmyPUeulE7H1clhSvi%2B2loCA7ZIGPwelS%2BMCpe3DmGEx3uWE0X0WfqnGI7Qf7sWYRYK5UjO4HSn696aZ28DiikgpSGvJI%2FJ%2FP1ho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c7da9b94d5c56af-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 49 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjectbootstrapcdn.com Fingerprint95:66:C2:43:CE:55:3C:D7:76:0E:9C:5F:28:8C:E9:AA:DC:AC:A2:59 ValidityFri, 20 Sep 2024 01:25:04 GMT - Thu, 19 Dec 2024 01:25:03 GMT
File typeJavaScript source, ASCII text, with very long lines (48664) Hash14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:10 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/18/2024 12:46:36
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: e3f3bfe1b89f7f16a5a4802a3640b8c7
cdn-cache: HIT
cf-cache-status: HIT
age: 6956336
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8c7da9b96ceb0b55-OSL
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.7.0/css/all.css | 172.67.142.245 | 200 OK | 55 kB |
URL GET HTTP/2use.fontawesome.com/releases/v5.7.0/css/all.css IP172.67.142.245:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjectuse.fontawesome.com Fingerprint1F:CF:A5:6E:0D:27:D7:21:A7:EA:06:61:45:FF:37:40:1C:7D:5B:36 ValidityMon, 09 Sep 2024 23:18:38 GMT - Mon, 09 Dec 2024 00:18:34 GMT
File typeASCII text, with very long lines (54456) Hash251d28bd755f5269a4531df8a81d5664 c0f035b41b23c6e8fab735f618aa3cff0897b4f9 afdc6bf2de981ffd7d370b76f44e7580572f197efbe214b9cfa4005d189d8eae
GET /releases/v5.7.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nigasdsht.eliao05.top
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:10 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"251d28bd755f5269a4531df8a81d5664"
last-modified: Fri, 22 Sep 2023 01:45:47 GMT
vary: Origin, Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BovCM%2FeskkO3noUlHB3aVnwJDEbGYRCTMjd366amJbE%2Fa%2BL9pcKOKiFZ4JJB8lnEZK9zWOQ77mKTBxsMoJqoVlyCzCFAtiyCi%2Fz2zUkP7G%2FyoITHkimTofR6%2BUwLK7YZckOqUClp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c7da9b95ae80b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/vdce34evw/happy.jpg | 172.67.200.53 | 404 Not Found | 315 B |
URL GET HTTP/2nigasdsht.eliao05.top/vdce34evw/happy.jpg IP172.67.200.53:443
Requested byhttps://nigasdsht.eliao05.top/vdce34evw/ CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
File typeHTML document, ASCII text, with very long lines (326), with no line terminators Hash97ef40509b73c101d6815511c3adf98d a4242322497ea630ea72e26ba297a95a2bbe5ccd 322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be
GET /vdce34evw/happy.jpg HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nigasdsht.eliao05.top/vdce34evw/
Cookie: __cf_mw_byp=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-/vdce34evw/; cf_clearance=RMCjWd5h9CeU3jD76bHwPiN4EybyVKawrd_jqq322Cs-1727127300-1.2.1.1-ZYq6XJq9enUvp6UfrcczsmjcSsZKPREW7dYufIYZQaIXimBShopOJqbw5Yfb_tnONJa2hojHSgBWF.g8rD79UR7cJmfMV8qE_B5vAVIJSfb2jMs8Szj84UfJdN48y8WoBNZpxbiPmgy9KJRZbB.BFjc_N8ylVPtyf.d5AmDie8zGz7PckLKPW6hOwUcbyPaSoHbBEDZRe.0SfiFxdXMXmanbyfRKYtfrX5TMGsPiroKtqtZOL0CUd_EEz2HVsPOQMNDOR37qzBndTpNF2WJM4TKUL4M7Jv9FjBbhScm4A.R92cg7PCf57oc87LSN6xR3F.qkCs8HS1e_p4B_A_o8zuWR5XkVG3iat_sY00v4tVFfCQWeu_JnsSFg6g_xcbo9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Mon, 23 Sep 2024 21:35:09 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JmRzkLdE96sfp2PMNv0ciLeYydfWDxqBSiy5YSC4pcm5Hy57xDAHhlNKPCgBcZC%2BImXb3XdRgRF4uq%2BTmyeK6pAI4hz4f7BRK6UTX2K6UKKZdw1JSSUVrKodFGl1MPFyK0gmjYODNZ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8c7da9b1cd9956af-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| nigasdsht.eliao05.top/vdce34evw/ | 172.67.200.53 | 200 OK | 768 B |
URL User Request POST HTTP/2nigasdsht.eliao05.top/vdce34evw/ IP172.67.200.53:443
CertificateIssuerGoogle Trust Services Subjecteliao05.top Fingerprint11:FE:32:8B:E9:29:66:91:99:40:B9:43:C2:D4:EE:D2:3E:8E:AC:94 ValidityThu, 05 Sep 2024 16:12:25 GMT - Wed, 04 Dec 2024 16:12:24 GMT
File typeHTML document, ASCII text, with very long lines (830), with no line terminators Hashfaa458b4b025052e48b545e4456444c5 e85b9bd80ef42d500c88403a7cc23cf1bc5b4b95 439352f5380d0681d29f5ffb4fd2768d6d38517e8d34d85d3b9b490ebc5886ba
POST /vdce34evw/ HTTP/1.1
Host: nigasdsht.eliao05.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nigasdsht.eliao05.top/vdce34evw/?__cf_chl_tk=7mJrD72p3wIszu.rhcQcxjLJiVkQfxG0iSNzw9KySno-1727127300-0.0.1.1-4457
Content-Type: application/x-www-form-urlencoded
Content-Length: 4923
Origin: https://nigasdsht.eliao05.top
DNT: 1
Connection: keep-alive
Cookie: __cf_mw_byp=JwehWashMXNKYmpoG.7SWaRR3m7nCFuKXaSU.TJ6cTE-1727127294-0.0.1.1-/vdce34evw/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Sep 2024 21:35:09 GMT
content-type: text/html; charset=UTF-8
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.eliao05.top; HttpOnly; Secure; SameSite=None
cf_clearance=RMCjWd5h9CeU3jD76bHwPiN4EybyVKawrd_jqq322Cs-1727127300-1.2.1.1-ZYq6XJq9enUvp6UfrcczsmjcSsZKPREW7dYufIYZQaIXimBShopOJqbw5Yfb_tnONJa2hojHSgBWF.g8rD79UR7cJmfMV8qE_B5vAVIJSfb2jMs8Szj84UfJdN48y8WoBNZpxbiPmgy9KJRZbB.BFjc_N8ylVPtyf.d5AmDie8zGz7PckLKPW6hOwUcbyPaSoHbBEDZRe.0SfiFxdXMXmanbyfRKYtfrX5TMGsPiroKtqtZOL0CUd_EEz2HVsPOQMNDOR37qzBndTpNF2WJM4TKUL4M7Jv9FjBbhScm4A.R92cg7PCf57oc87LSN6xR3F.qkCs8HS1e_p4B_A_o8zuWR5XkVG3iat_sY00v4tVFfCQWeu_JnsSFg6g_xcbo9; Path=/; Expires=Tue, 23-Sep-25 21:35:08 GMT; Domain=.eliao05.top; HttpOnly; Secure; SameSite=None; Partitioned
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E39EUD5drFrOjO2sgpP4kFEXDnK0PdBXip7qe%2BeUGoUb1aQ9FFvlBO5lAXBkeH23J%2BDnq7Z7WceFy%2F0BdK82tu31GKLkiaHx0GjcCwf7i5DykfJbLw4qHvftssamp4BnulIoTOqRb34%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8c7da9aebaa056af-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|