cspanburg.dslgroupinc.com/cspanburg/Y3NwYW5idXJnQG5iY29hdGluZ3MuY29t
302 Found 0 B URL User Request GET HTTP/2 cspanburg.dslgroupinc.com/cspanburg/Y3NwYW5idXJnQG5iY29hdGluZ3MuY29t
IP
ASN #46606 UNIFIEDLAYER-AS-1
Certificate IssuerLet's Encrypt
Subjectwww.dslgroupinc.ahplindia.com
Fingerprint85:2F:19:EF:3D:B1:3A:8D:34:60:13:31:07:22:A4:FF:45:9A:24:EC
ValidityTue, 30 May 2023 10:32:07 GMT - Mon, 28 Aug 2023 10:32:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /cspanburg/Y3NwYW5idXJnQG5iY29hdGluZ3MuY29t HTTP/1.1
Host: cspanburg.dslgroupinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
content-length: 0
content-type: text/html; charset=UTF-8
date: Thu, 01 Jun 2023 17:58:14 GMT
server: Apache
X-Firefox-Spdy: h2
yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
403 Forbidden 3.6 kB URL User Request GET HTTP/2 yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
IP
Certificate IssuerLet's Encrypt
Subjectsweetlabds.com
FingerprintF1:3E:14:1A:9B:FD:76:CB:36:DF:5C:8E:37:65:97:98:23:33:5D:BE
ValidityThu, 18 May 2023 11:46:47 GMT - Wed, 16 Aug 2023 11:46:46 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1747), with CRLF, LF line terminators
Hash 95c241b95fce5490d02f65f24593085f
0b39e9b4c3a61713b49d88e75125a5ceeb8e7854
5513879275dfa63c4c842085e6d6a18b79ef413f00809e3ffec1d862d273f996
GET /Mcspanburg@nbcoatings.com HTTP/1.1
Host: yxgksf.sweetlabds.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Thu, 01 Jun 2023 17:58:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=juar3Cdi%2FmEBpZGR3nIExKDLvbKlB%2BJO6bvbq4uQcBj5sZ7UPfe02hJHGSM4Xz9AmVEswtSoVQ8rpoOJA0HHoBmLedO8w2vhf4htadwdecnz%2FLNaA1bBdn80Gyk51iMvdwmBeBkeIBQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d0957f7f9d3b529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
yxgksf.sweetlabds.com/cdn-cgi/images/trace/managed/js/transparent.gif?ray=7d0957f7f9d3b529
200 OK 42 B URL GET HTTP/1.1 yxgksf.sweetlabds.com/cdn-cgi/images/trace/managed/js/transparent.gif?ray=7d0957f7f9d3b529
IP
Requested by http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cdn-cgi/images/trace/managed/js/transparent.gif?ray=7d0957f7f9d3b529 HTTP/1.1
Host: yxgksf.sweetlabds.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 17:58:15 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Tue, 30 May 2023 15:20:42 GMT
ETag: "6476144a-2a"
Server: cloudflare
CF-RAY: 7d0957f9698bb518-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Thu, 01 Jun 2023 19:58:15 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
yxgksf.sweetlabds.com/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=7d0957f7f9d3b529
200 OK 60 kB URL GET HTTP/1.1 yxgksf.sweetlabds.com/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=7d0957f7f9d3b529
IP
Requested by http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
File type ASCII text, with very long lines (65536), with no line terminators
Hash fecf5d8295549bd4dd6c05ba9f32835f
e8e0f62c5f61ad38df84528c28970eeb6c64ed55
13cc488807fada49a7e7f432c97e876757f7257b5d0a02049636e388d6c919a4
GET /cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=7d0957f7f9d3b529 HTTP/1.1
Host: yxgksf.sweetlabds.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com?__cf_chl_rt_tk=S1vR9aIGReElPhkDBxe5_YY9u_Akqh4QlzFa78Sq.Z0-1685642295-0-gaNycGzNBqU
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 17:58:15 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qVDiuVBKxTS2mZxq2LaajPw849e27PWl9BcTd%2BseCF%2B6P3Y05u7ZNDJvze1xmjLSoaZRGiYCP28Yrhd2r4TnAxTEjrsh%2FYztz6hBJ7esypQPfKSOSyOB7n0h0phw%2FedwRpHjHOiqjOY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7d0957f968e5b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
yxgksf.sweetlabds.com/favicon.ico
403 Forbidden 3.6 kB URL GET HTTP/1.1 yxgksf.sweetlabds.com/favicon.ico
IP
Requested by http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1811), with CRLF, LF line terminators
Hash f9dd6c7ee1b517c0258d088bdc9a9f02
e89bb9d9e5d7457952ee58470ab24e9d6913b72d
2880d5b8aeabcee88cab526f5365b3c9e06974a42dfbc62b4388027e86a008ec
GET /favicon.ico HTTP/1.1
Host: yxgksf.sweetlabds.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com?__cf_chl_rt_tk=S1vR9aIGReElPhkDBxe5_YY9u_Akqh4QlzFa78Sq.Z0-1685642295-0-gaNycGzNBqU
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Thu, 01 Jun 2023 17:58:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lZvvLAbmg26uRab2UlxSrtMrsXKOId0LQ1En2I%2FmVTK2H%2FcCj1quDGrfQBINaeb5wNjvZ0%2BDon2p7iUmClCfsaOy4vr2A5pnuFGzjqKDGbbjdvq6PlJZe4VuaOqix0zGYJ870qNrisQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d0957f99928b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
challenges.cloudflare.com/turnstile/v0/g/68662470/api.js?onload=_cf_chl_turnstile_l&render=explicit
200 OK 12 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/g/68662470/api.js?onload=_cf_chl_turnstile_l&render=explicit
IP
Requested by http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (19175)
Hash 21a964474a4841c3e62893476cfec550
af06eb1e31d451fe557b7581e707cd88a3107491
fb479d9c5db685793fd57b4cacb188d2aa9ab40d660d54e1cf35d0f54b390c12
GET /turnstile/v0/g/68662470/api.js?onload=_cf_chl_turnstile_l&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://yxgksf.sweetlabds.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 17:58:15 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0957fa09c0b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
yxgksf.sweetlabds.com/cdn-cgi/challenge-platform/h/g/flow/ov1/108001715:1685639446:zWdt7IBiB0skr_aHvS4tyuOsUuGbt6zeRqk42zBI1y0/7d0957f7f9d3b529/2834fb81f1dd96f
200 OK 7.5 kB URL POST HTTP/1.1 yxgksf.sweetlabds.com/cdn-cgi/challenge-platform/h/g/flow/ov1/108001715:1685639446:zWdt7IBiB0skr_aHvS4tyuOsUuGbt6zeRqk42zBI1y0/7d0957f7f9d3b529/2834fb81f1dd96f
IP
Requested by http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
File type ASCII text, with very long lines (7456), with no line terminators
Hash 105935135c448dc86e6a2e00f8b9dcbc
0b28004eb30c3dbbd50822aff0f80f1972ea9f8b
c5343b4ac00d8e44369c641bd319680ef0b08e810004507ac0ad8ce88aede965
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/108001715:1685639446:zWdt7IBiB0skr_aHvS4tyuOsUuGbt6zeRqk42zBI1y0/7d0957f7f9d3b529/2834fb81f1dd96f HTTP/1.1
Host: yxgksf.sweetlabds.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
Content-type: application/x-www-form-urlencoded
CF-Challenge: 2834fb81f1dd96f
Content-Length: 1782
Origin: http://yxgksf.sweetlabds.com
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 17:58:15 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: pxlKcG2eXsE9tqK40DX7pl79+P/BTgQu34FOvLDeMUJqojXInl0q2DtegqVqyaEk$EWZr9spvlwbqeXqjGB3K8g==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=37YfiJHf9JG2j0HNTHALydnDEGAiyLQrd69cXdti%2BaRq2MzCyzgCcaFYuYFLaX%2BCWeb0O5msd7X4cJNEOSu33UvsL2UIP90x64Ky8muUJHhMvXj23WSHdemFKwhKzmjjMOb0yoze7Ds%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7d0957faac31b518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
200 OK 24 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
IP
Requested by http://yxgksf.sweetlabds.com/Mcspanburg@nbcoatings.com
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10899)
Hash 653e1cbece5b3aaac12036fc3ad35014
f6b349127c9fa43cb4adb5b120856bc7e04a2fd3
cf7bfd040182e778700ed14a0a9f3bb8b8bc48f99fe04e692446fbc96569d47b
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 01 Jun 2023 17:58:15 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7d0957fafd1ab4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1188021443:1685639208:YDwi4nMN7XAuX7sgjPCYxu4cBZz8RIgaZFrObvnhbQ8/7d0957fafd1ab4eb/7185a30a38b2aed
200 OK 13 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1188021443:1685639208:YDwi4nMN7XAuX7sgjPCYxu4cBZz8RIgaZFrObvnhbQ8/7d0957fafd1ab4eb/7185a30a38b2aed
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (13232), with no line terminators
Hash c5032a474253016f7249c9ca213b903d
389801888053d9c18d91e55199f38c20d3f64764
cf00d23b98db00c7eccb83bddc36b5023955b32153f906673bf96b2694cd699f
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1188021443:1685639208:YDwi4nMN7XAuX7sgjPCYxu4cBZz8RIgaZFrObvnhbQ8/7d0957fafd1ab4eb/7185a30a38b2aed HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 7185a30a38b2aed
Content-Length: 22530
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 01 Jun 2023 17:58:18 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 8IdJm8yb6pgbUknvO6GtZ6lbCxrb4rWiF61wpnvNYbsON4RCOk5x/nfj55udyPel$GdVh048UdLnBnO3vlC3nmg==
server: cloudflare
cf-ray: 7d09580e1d83b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7d0957fafd1ab4eb
200 OK 189 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7d0957fafd1ab4eb
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 189 kB (188714 bytes)
Hash 55aeb4542eb60f422319a95d39f05eb9
9fb72ce23adf865e1b46a3d5e9c81cba38ed955c
3367d1eaefcc17f68a2ada272bd324b8c76f2606a0b71897dd903dc3b5b8df96
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7d0957fafd1ab4eb HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 01 Jun 2023 17:58:15 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=0, must-revalidate
server: cloudflare
cf-ray: 7d0957fbae27b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1188021443:1685639208:YDwi4nMN7XAuX7sgjPCYxu4cBZz8RIgaZFrObvnhbQ8/7d0957fafd1ab4eb/7185a30a38b2aed
200 OK 193 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1188021443:1685639208:YDwi4nMN7XAuX7sgjPCYxu4cBZz8RIgaZFrObvnhbQ8/7d0957fafd1ab4eb/7185a30a38b2aed
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 193 kB (192952 bytes)
Hash d15c449adc71e7d663b6a0baeb4bb234
eab0dd97f518477ad1d54bb1c1f1b2d3be8d13ce
06ad9193a5bd8e68c5e22f1f47fed332814df0c59978272269556b628fae4975
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1188021443:1685639208:YDwi4nMN7XAuX7sgjPCYxu4cBZz8RIgaZFrObvnhbQ8/7d0957fafd1ab4eb/7185a30a38b2aed HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 7185a30a38b2aed
Content-Length: 2790
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 01 Jun 2023 17:58:15 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: OEJuhhsp/4X+qVaXfZ3pAx6QEGrF/swvUUpKFjJdFPhoZAfgpplWLcoq+FdGc9/S9T4vZRHxgqSsFitlgNJ/jtaU3//XJ/nDCPzvINhIEdJcdnbyi94PmeWAVRJ8hPpSLOxU5eug/KTktnY7iYRUDJNmd/qJDlrJstulonsBSJ8Xy04YsX7QsnlJ4LPMkk4wA6VugJiiqO6SLk1iaWnDx0t5cidMe6nBDoj4uDwze4+jhIFMEdJ1ZUT7Sw6NWizbTXJaMenAGSm0ivLoaMCEa6EejrXqcPRWlGehvUhnF3xl44FfCsOhFEIuXMuWs/DTWDa0WeA0yVnKRFv4jT/6f3+NcrxHf6t4KLTeCq273VcUXkX26/uo4WuUHqgrAyc3/lFVxLqIdhfAOXqTTMJ4tHVeND5yzJ31DnBS8dyqyctsruitTpexfYAM6kdaXEcpJvxX6x/76VoZjjN6k6eTUA==$l3D8IEPvAXnORCHbW5Qk2w==
server: cloudflare
cf-ray: 7d0957fd08dab4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/img/7d0957fafd1ab4eb/1685642295875/8J6XzUjAyw4UwC3
200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/img/7d0957fafd1ab4eb/1685642295875/8J6XzUjAyw4UwC3
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type PNG image data, 13 x 96, 8-bit/color RGB, non-interlaced\012- data
Hash b5e5c3921c274299bc9efa16eef121da
e3d202c4ed9e23da2ab59cf172993eba301c0b79
8984fcddaa11253d516c0811a99ad20ee79398be5300ba8c75bca96f3e2eb02a
GET /cdn-cgi/challenge-platform/h/g/img/7d0957fafd1ab4eb/1685642295875/8J6XzUjAyw4UwC3 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jdwqf/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 01 Jun 2023 17:58:18 GMT
content-type: image/png
server: cloudflare
cf-ray: 7d09580a8f8fb4eb-OSL
alt-svc: h3=":443"; ma=86400
192.185.100.11
188.114.97.1
104.18.7.185