Report - kpdqe.cc

Report Overview

Visited public
2024-08-09 23:48:36
Tags
URL
kpdqe.cc
Finishing URL
kpdqe.cc/
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Title
Paradise

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Sent	Received	IP
r10.o.lencr.org	unknown	2.6 kB	7.1 kB	23.36.77.32
kpdqe.cc	unknown	3.8 kB	37 kB	188.114.96.1
challenges.cloudflare.com	unknown	2.8 kB	7.8 kB	104.18.94.41
fonts.googleapis.com	8877	554 B	15 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (28)

		Size	First Seen	Last Seen
	#1 Eval - 5f20bbdf340c6dbe2162d64156520641	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 5f20bbdf340c6dbe2162d64156520641 92b4e884f84ff6abd58923b38cbccb4979379e7d db6d63c16ae6c2b3324c79796ed14442d408c64fc6152821047a267c05c5695c Loading...

	#2 Eval - 74ad16c50b13da57092ce770dae6ac49	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 74ad16c50b13da57092ce770dae6ac49 ca5cc7d98b047ce0f2834c71f6650a90dc1f9983 747780d1d91595f9ba4caeac34ed43080abde3d8cbe45f35bda8b7de0b1d01fb Loading...

	#3 Eval - f2d013834cefe89a9a45386f8b337a3a	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash f2d013834cefe89a9a45386f8b337a3a a0dcea6bd495f17481cbed5b8835348810516222 31ff3bbac6cc510a81fcd87b1727f180172ae7fbdb6521a2431fd700c1a78d69 Loading...

	#4 Eval - 915416204a0aee24823e9984d1e4f5bf	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 915416204a0aee24823e9984d1e4f5bf fa8bb40bc6d0c866c8108b5beac1669b530ca7ee 59e3942275fbe6eb7ce51523ebde1d2404fc6b149acbd7d942022522d3941bd5 Loading...

	#5 Eval - 1bdeb4def94390deb3126f96d4732cd5	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 1bdeb4def94390deb3126f96d4732cd5 6c9c028065707137e92532ab964b991a7106a386 93c6816c860f442fdb6aa829836f68bcad17275dd7665973ad5b0bb000e56a3c Loading...

	#6 Eval - c50ed1db5e7215997d6773c3dcda744d	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash c50ed1db5e7215997d6773c3dcda744d 21c6be6dc1d04f1326b27429113dc08b75ed454c e218652445a48e5b48b04764ff3d8f2418577fba1d7b4b8423060274500593d4 Loading...

	#7 Eval - 98cce90fe9f97bbb6898a4bfde3beb64	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 98cce90fe9f97bbb6898a4bfde3beb64 369ea1cdd24ecbc4b42347222b13956dc4f7e969 656b61c86f9fba1473210eb18efae7c926c01c1ac56614da9e88f7935ed6cf06 Loading...

	#8 Eval - 009107947dddd1ae0c1e178436ddefea	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 009107947dddd1ae0c1e178436ddefea eab5de1da5e9f8b7333886109423b183cfc577ce 78eeaf6fdb27b2487752f56ca0475dd36746d50094fe1d564b7daf055fb40f7b Loading...

	#9 Eval - 8e8ef6fa62899f7b085c2d28902b1fa3	60 B	2024-08-06 11:25	2024-08-19 14:25
Pretty Observations First Seen2024-08-06 11:25 Last Seen2024-08-19 14:25 Times Seen1359 Hash 8e8ef6fa62899f7b085c2d28902b1fa3 49e4dc7d23b6471726e5800a71f4e3308cbd9d81 af0e64d1a40d19491ff0ac43aa39287c0bd703da36909fc44e45920b132d5e38 Loading...

	#10 Eval - e52c6bdde4ae3be288c6b5fa6a7f5f32	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash e52c6bdde4ae3be288c6b5fa6a7f5f32 fdd8bbbf98f5565c0024c9a6c2095ad6da3ee551 af75db9d1c9d2daeaca96371b9bb1def80535da97e88cb807edcbff62ecfaedb Loading...

	#11 Eval - a3d5b1c5c14907f7589bea14f83e8631	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash a3d5b1c5c14907f7589bea14f83e8631 57e5f4fc83b1cf065230972579fd13817e839d93 d5fba9c0a9da197c84ee4345044b7b8ae6c75e55a5408646758308f23536cda2 Loading...

	#12 Eval - eae41eed8264a1e60fb23f9b0e1c7a05	2.8 kB	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash eae41eed8264a1e60fb23f9b0e1c7a05 0ff4a468a17eee2e906efe17fe2c4a1bdbe4f110 7eff79600c1e2d3d597113d62f81deb1732c64b420c9fdb68569ca21e76e206e Loading...

	#13 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07 01:03	2025-05-09 04:40
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 04:40 Times Seen368721 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#14 Eval - 9ada63d92dcfecf432b29f2acc0bc58a	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 9ada63d92dcfecf432b29f2acc0bc58a 75764ba20344b5d6b5a958456e31a93a5070ec47 d734bed903447dbcc2b2b2b5dbc406ff50512e7365ab4b824360ceda370a9c24 Loading...

	#15 Eval - 88bbc7371d1fe6d5ba8380b428d6a1d6	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 88bbc7371d1fe6d5ba8380b428d6a1d6 49a0b548888e68e68d0693d9ff443740a62dc8fe ab6d42255ca21d7c0c6d3ef23626bdafbcb4b9cad0e28086dbe88865eb69cb84 Loading...

	#16 Eval - 6b2edd1566c95279771663ef54c9e39c	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 6b2edd1566c95279771663ef54c9e39c fbe35fd284825fefeed926687c78964a3f9b6b96 4f4e62872404d03d48213de98781759b94c5918ee06dea7916f5155105b59fb7 Loading...

	#17 Eval - 8f9e92e1c5b015ea408367f6cd5db6a4	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 8f9e92e1c5b015ea408367f6cd5db6a4 5e3cf50935c68131dbeebf2abe08b2a6d123d781 406aa8e13339afdb3e39ffb44816bc8dd7e4a29fd8b519ee7806845f4d5785d6 Loading...

	#18 Eval - 15a9de2dca93280c32b4b1eaf8fd3973	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 15a9de2dca93280c32b4b1eaf8fd3973 ea960b12eb5967315bfb3a7114e2a9233d238004 e787ecd8b94a6a4a42f282345e302cfeaaf8c35abdc5b13905f86305308588a0 Loading...

	#19 Eval - 27ab4f7d4e031a42b26a9e8bef57de59	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 27ab4f7d4e031a42b26a9e8bef57de59 ffd61cbbba16378f2585d825a58ded67b332c8d4 f1cff1426b6610e46d5c63de0feee3158b399ccdd2a74fa613a18a5b2d466a18 Loading...

	#20 Eval - e77b9a1f26c98a7610e33135f23be5f1	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash e77b9a1f26c98a7610e33135f23be5f1 97ffbe21b3862ec88ed80cc3eb65d2890f4b1ae9 8027e40106a8ed1cdc872be888a8304bc7abbacc5ca90560a3147187e406f5f6 Loading...

	#21 Eval - 951553b7d01c159148bcec8ae4c3113c	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 951553b7d01c159148bcec8ae4c3113c 2c7faed674891307b80fcb2502b8b44a8d5eb887 7606d4f92d7954faa1cb4cc0d5b6c9cf987c9dab938b7cb7190a3f1a2eca4a00 Loading...

	#22 Eval - 56aef30da02bcb7f25cfa3bf30d0c74c	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 56aef30da02bcb7f25cfa3bf30d0c74c d07df7a0a14c915ee09051f397fa2cab566c88d1 701fc4048fd3f78e0be999447a60546c996429d6404733aec00a18ef2c546697 Loading...

	#23 Eval - 640fe466a665804168e173b6abcf7468	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 640fe466a665804168e173b6abcf7468 517ebb73f02af7e0aaa803491a79ad5b171ea84a 4037fed71c99e76dbd78a6a92f2b3c40b2cd9a09a0e198d1aadff2dc117ab737 Loading...

	#24 Eval - 999fa4f4a1751a8a0e3c3feb6661a3e3	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 999fa4f4a1751a8a0e3c3feb6661a3e3 b4cbd3ab73ff7d66cfc00bef0b225ba2103160ac 2020c09c3bf640086343b8c53a481433f3c4d7fa90ca5cf123872cf649512437 Loading...

	#25 Eval - 01bbf5279d8c5b930ab756bde098fa76	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 01bbf5279d8c5b930ab756bde098fa76 32fd79d26b520f1ef53d8ca02200626928ed5f59 80e8dd35dd40b2c718e781dbe04d2ed36f1c6a30e6938f052dbddca71bcc11d4 Loading...

	#26 Eval - 2fba0e01f3d86874a43d315af001871c	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 2fba0e01f3d86874a43d315af001871c c8da8f99ec2d44cb79532a25cec09b9e65ae02cf edcd129bea8976aa49276c5c90efe70173f39e74bf87bdb0a8e048c35499be49 Loading...

	#27 Eval - a7c401044d29f46f37a002e515a34383	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash a7c401044d29f46f37a002e515a34383 cb09053a32bc02033fd9e68e116254061a3c8c15 3312b805489f30c7c27aa725d9d64daa2a9740c1049f84ff63833ff35cc6b6ac Loading...

	#28 Eval - 91dcc3e8374fd25ebead39703a1db35f	28 B	2024-08-19 14:00	2024-08-19 14:00
Pretty Observations First Seen2024-08-19 14:00 Last Seen2024-08-19 14:00 Times Seen1 Hash 91dcc3e8374fd25ebead39703a1db35f 74a22eb8e0c408038e2409212ffe7c3da8443179 32a287fbae4ad581400cd4de021ff0e815bd3bb0e3d0aa9571fef9e7c412ff75 Loading...

HTTP Transactions (20)

	URL	IP	Response	Size
	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 5ba4a4d5001d3c1bb220558ffadb6288 35124980489553fa524dee96738aa3214321eb4f b4615115fb27e0022749b39770207b4428a6dcacb53544c8f811f55ef9eb288f HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "B4615115FB27E0022749B39770207B4428A6DCACB53544C8F811F55EF9EB288F" Last-Modified: Thu, 08 Aug 2024 18:56:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2262 Expires: Sat, 10 Aug 2024 00:25:52 GMT Date: Fri, 09 Aug 2024 23:48:10 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash b278ebaf27c527785e85180da86b54f9 ee87bf3d735648b0734efe705977f9b86155fcbd f53b9b17675ce2f387b3fcff02c39ecc355e1fd81756731257c59ea22115c519 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "F53B9B17675CE2F387B3FCFF02C39ECC355E1FD81756731257C59EA22115C519" Last-Modified: Thu, 08 Aug 2024 18:58:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21281 Expires: Sat, 10 Aug 2024 05:42:51 GMT Date: Fri, 09 Aug 2024 23:48:10 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 5f8acb1f8a25eb19fc33302dc7bf3c26 93ad5ef9e7119c1064e966ea3ab2cade2438d5aa 277c320d7ff9556a6375e996308ba8d893601e14430af41b82904952d477f836 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "277C320D7FF9556A6375E996308BA8D893601E14430AF41B82904952D477F836" Last-Modified: Thu, 08 Aug 2024 18:26:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15077 Expires: Sat, 10 Aug 2024 03:59:27 GMT Date: Fri, 09 Aug 2024 23:48:10 GMT Connection: keep-alive`

	kpdqe.cc/	188.114.96.1	403 Forbidden	167 B
URL User Request GET HTTP/3 kpdqe.cc/ IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjectkpdqe.cc Fingerprint1D:B9:DD:2A:82:E9:54:B3:84:0C:69:7F:E6:14:04:36:F8:0F:85:2E ValidityMon, 29 Jul 2024 17:48:05 GMT - Sun, 27 Oct 2024 17:48:04 GMT File type HTML document, ASCII text, with CRLF line terminators Size 167 B (167 bytes) Hash 0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f HTTP Headers `GET / HTTP/1.1 Host: kpdqe.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 301 Moved Permanently Date: Fri, 09 Aug 2024 23:48:11 GMT Content-Type: text/html Content-Length: 167 Connection: keep-alive Cache-Control: max-age=3600 Expires: Sat, 10 Aug 2024 00:48:11 GMT Location: https://kpdqe.cc/ Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J6nyDSmMMjgyGhwt5QaTtq5EKuW95kzDVmC3%2FDxh2kT%2BoRlB1KFddBsT9RxlCQQRx6UOCUcM5U8elU2KCZKCwQFmG%2BnZLptQy9TsLMffsH%2FAp34xymwn7uF%2FLw%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 8b0ba2b12ec2b4fd-OSL alt-svc: h2=":443"; ma=60

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash e1cd74cbd513bcac7faf7147dd0e9db3 5c83e98e78beec3020f4942369d9c2365a7de76f dd403ef6d8531526826d75c9ceda54beea36b5c8b8a281297331818ac6336b23 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "DD403EF6D8531526826D75C9CEDA54BEEA36B5C8B8A281297331818AC6336B23" Last-Modified: Thu, 08 Aug 2024 18:27:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16031 Expires: Sat, 10 Aug 2024 04:15:22 GMT Date: Fri, 09 Aug 2024 23:48:11 GMT Connection: keep-alive`

	kpdqe.cc/	188.114.97.1	403 Forbidden	6.7 kB
URL User Request GET HTTP/3 kpdqe.cc/ IP 188.114.97.1:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjectkpdqe.cc Fingerprint1D:B9:DD:2A:82:E9:54:B3:84:0C:69:7F:E6:14:04:36:F8:0F:85:2E ValidityMon, 29 Jul 2024 17:48:05 GMT - Sun, 27 Oct 2024 17:48:04 GMT File type HTML document, ASCII text, with very long lines (15621), with no line terminators Size 6.7 kB (6749 bytes) Hash b744756e1aba945e63a79ac8e8372755 60e38467acff89bc4a4e98cdee48240e9f180e85 d7a1adbd2f11dd75fc501ad3f211221a0b70dbc023b66d93475046f32070173c HTTP Headers `GET / HTTP/1.1 Host: kpdqe.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 403 Forbidden date: Fri, 09 Aug 2024 23:48:10 GMT content-type: text/html; charset=UTF-8 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin x-content-options: nosniff x-frame-options: SAMEORIGIN cf-mitigated: challenge cf-chl-out: C1g3NxM82DuYtrDYLQ6z4DXTYrruIhEi3k7QIFl5E+61oTz+nONcTSOvb6ZzVWExeKazKjGcWYNLHoYMi7ALZseUAL9oqBSBwKFOVPh3oOk=$5w4qAXTycXTiMCONIkgPzA== cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 expires: Thu, 01 Jan 1970 00:00:01 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FDeQfLzVive5iivC4eiGmaomnoqr4uSVU3N4Srd7Uv6%2BZIFx7N5P6vylJFC14rVxaS9vVbGacyxWNMBt9p%2BMNEee9C%2BskzG0Nm2BDmIhSdb9E4aBaZ1P12mjzw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8b0ba2b008dd5693-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D	104.18.94.41		61 B
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP 104.18.94.41:0 ASN #13335 CLOUDFLARENET File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84 HTTP Headers GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/fxr0z/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Fri, 09 Aug 2024 23:48:11 GMT content-type: image/png content-length: 61 cache-control: max-age=2629800, public server: cloudflare cf-ray: 8b0ba2b5cabe56be-OSL alt-svc: h3=":443"; ma=86400`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 4cbc9626c73be7d5dcbbe058e55aad0b 528901752567f5c63aaf2b16986a78317b103bcd 9860b5df8ec5968b5115bd6d6a842912b43bc5418cb2baa4a4c1303800f3e571 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "9860B5DF8EC5968B5115BD6D6A842912B43BC5418CB2BAA4A4C1303800F3E571" Last-Modified: Thu, 08 Aug 2024 18:27:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14548 Expires: Sat, 10 Aug 2024 03:50:40 GMT Date: Fri, 09 Aug 2024 23:48:12 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 4cbc9626c73be7d5dcbbe058e55aad0b 528901752567f5c63aaf2b16986a78317b103bcd 9860b5df8ec5968b5115bd6d6a842912b43bc5418cb2baa4a4c1303800f3e571 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "9860B5DF8EC5968B5115BD6D6A842912B43BC5418CB2BAA4A4C1303800F3E571" Last-Modified: Thu, 08 Aug 2024 18:27:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14548 Expires: Sat, 10 Aug 2024 03:50:40 GMT Date: Fri, 09 Aug 2024 23:48:12 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 4cbc9626c73be7d5dcbbe058e55aad0b 528901752567f5c63aaf2b16986a78317b103bcd 9860b5df8ec5968b5115bd6d6a842912b43bc5418cb2baa4a4c1303800f3e571 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "9860B5DF8EC5968B5115BD6D6A842912B43BC5418CB2BAA4A4C1303800F3E571" Last-Modified: Thu, 08 Aug 2024 18:27:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14548 Expires: Sat, 10 Aug 2024 03:50:40 GMT Date: Fri, 09 Aug 2024 23:48:12 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 4cbc9626c73be7d5dcbbe058e55aad0b 528901752567f5c63aaf2b16986a78317b103bcd 9860b5df8ec5968b5115bd6d6a842912b43bc5418cb2baa4a4c1303800f3e571 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "9860B5DF8EC5968B5115BD6D6A842912B43BC5418CB2BAA4A4C1303800F3E571" Last-Modified: Thu, 08 Aug 2024 18:27:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14548 Expires: Sat, 10 Aug 2024 03:50:40 GMT Date: Fri, 09 Aug 2024 23:48:12 GMT Connection: keep-alive`

	kpdqe.cc/favicon.ico	188.114.97.1	200 OK	10 kB
URL GET HTTP/3 kpdqe.cc/favicon.ico IP 188.114.97.1:443 ASN #13335 CLOUDFLARENET Requested by https://kpdqe.cc/ Certificate IssuerGoogle Trust Services Subjectkpdqe.cc Fingerprint1D:B9:DD:2A:82:E9:54:B3:84:0C:69:7F:E6:14:04:36:F8:0F:85:2E ValidityMon, 29 Jul 2024 17:48:05 GMT - Sun, 27 Oct 2024 17:48:04 GMT File type HTML document, ASCII text, with very long lines (1265), with no line terminators Size 10 kB (10328 bytes) Hash f3e617bb7314aa4be1202dcff535ff36 d3aff0986075e568b4cedeed2d34a309ba9618a0 ae757a1b47e2e1ad20a4375447fd679014ab919c9dc361354db0fcffb0c39f01 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: kpdqe.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://kpdqe.cc/?__cf_chl_rt_tk=lQxOSAbMOR6BiCkuI3SjgQ9vDwweEhejbPaclLcq7So-1723247291-0.0.1.1-3690 DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 09 Aug 2024 23:48:11 GMT content-type: text/html; charset=UTF-8 x-powered-by: Express cache-control: public, max-age=14400 last-modified: Fri, 09 Aug 2024 21:37:04 GMT cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kE1SCbIbQbICm76DsZajy0j2jRw9DrhRxSXTxdDf8hFm6y00SSiG2EyfvixK6t8w7WthpvUHtzCIvveUo8prUxUEf0DQ96kuaHux9lUhwd5aE4Yyl8kGyIjfeg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8b0ba2b2fb4fb4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8b0ba2b53a7356be/1723247292103/8f8469894c71a61d5d28eb58006aa76122ee0edad1dca0fe72f9f33a7c050041/_6K0MGnZ74u_ldf	104.18.94.41		1 B
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8b0ba2b53a7356be/1723247292103/8f8469894c71a61d5d28eb58006aa76122ee0edad1dca0fe72f9f33a7c050041/_6K0MGnZ74u_ldf IP 104.18.94.41:0 ASN #13335 CLOUDFLARENET File type very short file (no magic) Size 1 B (1 bytes) Hash ff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5 HTTP Headers GET /cdn-cgi/challenge-platform/h/g/pat/8b0ba2b53a7356be/1723247292103/8f8469894c71a61d5d28eb58006aa76122ee0edad1dca0fe72f9f33a7c050041/_6K0MGnZ74u_ldf HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/fxr0z/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 401 Unauthorized date: Fri, 09 Aug 2024 23:48:12 GMT content-type: text/plain; charset=UTF-8 content-length: 1 www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gj4RpiUxxph1dKOtYAGqnYSLuDtrR3KD-cvnzOnwFAEEAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAtTXey34K5wdb1NpmqXxM9NzODeGP_NpDwUTYJ5rA3eyaHctHwttNnxjI5mH4dI_o70gJZF0shnxeuMSrME8L9_COS2jII4RL9GogUGsxRs5qBdmsd2N9G4lg-M2d2EpRkWK9FSCEi0vLer0jsB8eS0W-W3t1ZNIygfygG2K0xhfyMH37d7Ca5h4GpPV1zj2hgCGD1XbrLtk7d7l38BkKR4ULloCp2qJCkg6FXC2fKLXfZRYeeAJPkLrljo41kVkYM-G9nrxIHKsUQ8kIVQyPnhDWbeZqnoyMsWiu67YRcs3P5dS9-OIW04f1Ar8ZTcUyJ8kTwP6PM3vUdsrVpby8jQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tII-EaYlMcaYdXSjrWABqp2Ei7g7a0dyg_nL58zp8BQBBABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAu2FlB5ktDoeROxA-CL3BCDo3MeeTuCmxb24sUOtLSedclIaHLU1EAC4D5nGqr-aczjp9M9qFQYJBi6e07hOPSMkAX__GsSGSwArapiA8zNHer8YXwzMZmO0fvD-C6G93rpdMQCFAFQNOl0LwZWgntZa3JqfFO7HQWCO6qmOSju2VD4xvdLtNsn248ypVfQG_EyYKqi0MdbWu-eGJvAAYS-LrZKn2uSrKCltLs8hk2TTJ5btxvC7zFmcn0c7zCEZMham2aMVPUo5rI08ZQhGBYzKjc1VS7PIbmPz0nsaal3-Saa-3afBQyM-8Bwq1FuIGA9MG2lS1ZZ5iDL8LZB9SmwIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tII-EaYlMcaYdXSjrWABqp2Ei7g7a0dyg_nL58zp8BQBBABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAj3aKE3IQZKxrwhP2RNsMWYqLXI8QXFhRupd9uNWzU8gu_JF_dI6YsaHdYHHn80foDV62bwNGz5IYcRfev1qam5Z0OC_DbCZjjJ8mWSQDNsnDtdZqHM82YF6j8Vl6UW7_03LWsPENx7ugdyqyJKLR0DI0bbP23ly1VI-JJf6jCBmbrLIsLDEWqrEE7aNIVakpmpp9B17hOUH-kgEed2jw-KTqhyvwnQJTkFUJ8rNyJ9J1ryyoqeKce9Ybl7LLaanLNZJf3yHtbguBuZJuljPOArUjuZ8psUEcVhm1hsseZ2BzlgECW7X80svcm9_sMZxFM6R0-gU1wXyrd9kMUUnXhwIDAQAB", max-age=20 server: cloudflare cf-ray: 8b0ba2bc1e3a56be-OSL alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8b0ba2b53a7356be/1723247292105/0C8MbWkL3BFvhNh	104.18.94.41		61 B
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8b0ba2b53a7356be/1723247292105/0C8MbWkL3BFvhNh IP 104.18.94.41:0 ASN #13335 CLOUDFLARENET File type PNG image data, 19 x 50, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 0085d423ef465f49f0c2a83063d91b41 60974e77347fdd8c7f9aa4220f4017f68b140feb 9ba2cbe8ba6ed6a2c5a29353303e5f27986aba912cbe25b187d1c88f0c363f2e HTTP Headers GET /cdn-cgi/challenge-platform/h/g/i/8b0ba2b53a7356be/1723247292105/0C8MbWkL3BFvhNh HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/fxr0z/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Fri, 09 Aug 2024 23:48:13 GMT content-type: image/png content-length: 61 server: cloudflare cf-ray: 8b0ba2c2198d56be-OSL alt-svc: h3=":443"; ma=86400`

	kpdqe.cc/	188.114.97.1	403 Forbidden	5.8 kB
URL User Request GET HTTP/3 kpdqe.cc/ IP 188.114.97.1:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjectkpdqe.cc Fingerprint1D:B9:DD:2A:82:E9:54:B3:84:0C:69:7F:E6:14:04:36:F8:0F:85:2E ValidityMon, 29 Jul 2024 17:48:05 GMT - Sun, 27 Oct 2024 17:48:04 GMT File type HTML document, ASCII text, with very long lines (1265), with no line terminators Size 5.8 kB (5800 bytes) Hash f3e617bb7314aa4be1202dcff535ff36 d3aff0986075e568b4cedeed2d34a309ba9618a0 ae757a1b47e2e1ad20a4375447fd679014ab919c9dc361354db0fcffb0c39f01 HTTP Headers POST / HTTP/1.1 Host: kpdqe.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://kpdqe.cc/?__cf_chl_tk=lQxOSAbMOR6BiCkuI3SjgQ9vDwweEhejbPaclLcq7So-1723247291-0.0.1.1-3690 Content-Type: application/x-www-form-urlencoded Content-Length: 4227 Origin: https://kpdqe.cc DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Sec-Fetch-User: ?1 Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 09 Aug 2024 23:48:19 GMT content-type: text/html; charset=UTF-8 set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.kpdqe.cc; HttpOnly; Secure; SameSite=None cf_clearance=ccDpXe._fQN_lTS5.BAS_APZD_gAA6EMmviNhMRQPf0-1723247291-1.0.1.1-XPGh1MOZDj1D1FXliTNermMstLTV44PFSLwZoh2bf_j5vuR4fH2KwiP75Kme0ftCLVj_.fwVtyT.TDl8p20oTw; Path=/; Expires=Sat, 09-Aug-25 23:48:18 GMT; Domain=.kpdqe.cc; HttpOnly; Secure; SameSite=None; Partitioned x-powered-by: Express cache-control: public, max-age=0 last-modified: Fri, 09 Aug 2024 21:37:04 GMT cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PMrm5SeG9NFE0BkCDPrLLPxDx2TEsYaREU95lLwY3v0bZRtrpYAkoP5DwE1ec0UpH9KR8qFqr%2FHdq%2BS4WqEev8LCw0uqjVZ09oKmB%2FXsIBXCQztQUldJ23eiwA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 8b0ba2e23b58b4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	kpdqe.cc/static/css/main.ba71f814.css	188.114.97.1	200 OK	3.5 kB
URL GET HTTP/3 kpdqe.cc/static/css/main.ba71f814.css IP 188.114.97.1:443 ASN #13335 CLOUDFLARENET Requested by https://kpdqe.cc/ Certificate IssuerGoogle Trust Services Subjectkpdqe.cc Fingerprint1D:B9:DD:2A:82:E9:54:B3:84:0C:69:7F:E6:14:04:36:F8:0F:85:2E ValidityMon, 29 Jul 2024 17:48:05 GMT - Sun, 27 Oct 2024 17:48:04 GMT File type ASCII text, with very long lines (11806), with no line terminators Size 3.5 kB (3505 bytes) Hash 89379d45139a79efb544bb5c39bae55d f63b5bce6d3651c8c1af41245887df82055a3919 2cc6aa31b95b34499945c62bb326da2b8e30a03d5c685ba2ad1b04cdec4cba0a HTTP Headers GET /static/css/main.ba71f814.css HTTP/1.1 Host: kpdqe.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kpdqe.cc/ Cookie: cf_clearance=ccDpXe._fQN_lTS5.BAS_APZD_gAA6EMmviNhMRQPf0-1723247291-1.0.1.1-XPGh1MOZDj1D1FXliTNermMstLTV44PFSLwZoh2bf_j5vuR4fH2KwiP75Kme0ftCLVj_.fwVtyT.TDl8p20oTw Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 09 Aug 2024 23:48:20 GMT content-type: text/css; charset=UTF-8 x-powered-by: Express cache-control: public, max-age=14400 last-modified: Fri, 09 Aug 2024 21:37:00 GMT etag: W/"2e1e-1913912d2c2" cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DX%2FOcyFy3lfglsYBAjLFNuFrVH12PvW8aCJmZXmBTppwP%2BIhLLJ3hMokHH%2BoxeJh9llHFzZo9BgK9aomzpVm1xS5IhxPnvZ12MJ4YU4zU0mAzUTayekpgW26AQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8b0ba2e4acc1b4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/53260110:1723245912:vZk2-gSSRyrSI6LJMLmuIgIIug5JvfWNL04_Hirq9LI/8b0ba2b53a7356be/e2fe5dda2e04f70	104.18.94.41		3.8 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/53260110:1723245912:vZk2-gSSRyrSI6LJMLmuIgIIug5JvfWNL04_Hirq9LI/8b0ba2b53a7356be/e2fe5dda2e04f70 IP 104.18.94.41:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (3496), with no line terminators Size 3.8 kB (3831 bytes) Hash af53fdd41e0508936021c8a9af3cb193 0590f3a5bddae24fabd1749acb0621d0f09e3a6b 5707a02b1d3addfd9a6946752f8d47eec84c8ce5831901da98a2ef0c7ebd81a9 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/flow/ov1/53260110:1723245912:vZk2-gSSRyrSI6LJMLmuIgIIug5JvfWNL04_Hirq9LI/8b0ba2b53a7356be/e2fe5dda2e04f70 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/fxr0z/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ Content-type: application/x-www-form-urlencoded CF-Challenge: e2fe5dda2e04f70 Content-Length: 40414 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 09 Aug 2024 23:48:18 GMT content-type: text/html; charset=UTF-8 cf-chl-out: ybvva8YsPAIT2NR9GRNL0a1npoceo5kKDi98zbg8eFSMLYgYDsivO3qs1UyOnT5F+9QG+Ftax18CJRXs0QJGj8wxvZEbqZhk5zdvyK0TBKmAHr41/6DAbADdUTeTq3yOxSd5S+4yFgSYzFddaXGdRpNA433Acao5XnjRZaKgZNpZU9DyeoA24PUaKihgvT3dP44WV1I1zmYB1oxYD6M3$Jo5ASzSipyoCZdFL cf-chl-out-s: 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$0UJqHB8XQAC6yXOP server: cloudflare cf-ray: 8b0ba2e0bce356be-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	kpdqe.cc/favicon.ico	188.114.97.1	200 OK	4.3 kB
URL GET HTTP/3 kpdqe.cc/favicon.ico IP 188.114.97.1:443 ASN #13335 CLOUDFLARENET Requested by https://kpdqe.cc/ Certificate IssuerGoogle Trust Services Subjectkpdqe.cc Fingerprint1D:B9:DD:2A:82:E9:54:B3:84:0C:69:7F:E6:14:04:36:F8:0F:85:2E ValidityMon, 29 Jul 2024 17:48:05 GMT - Sun, 27 Oct 2024 17:48:04 GMT File type HTML document, ASCII text, with very long lines (1265), with no line terminators Size 4.3 kB (4322 bytes) Hash f3e617bb7314aa4be1202dcff535ff36 d3aff0986075e568b4cedeed2d34a309ba9618a0 ae757a1b47e2e1ad20a4375447fd679014ab919c9dc361354db0fcffb0c39f01 HTTP Headers GET /favicon.ico HTTP/1.1 Host: kpdqe.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kpdqe.cc/ Cookie: cf_clearance=ccDpXe._fQN_lTS5.BAS_APZD_gAA6EMmviNhMRQPf0-1723247291-1.0.1.1-XPGh1MOZDj1D1FXliTNermMstLTV44PFSLwZoh2bf_j5vuR4fH2KwiP75Kme0ftCLVj_.fwVtyT.TDl8p20oTw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 09 Aug 2024 23:48:21 GMT content-type: text/html; charset=UTF-8 x-powered-by: Express cache-control: public, max-age=14400 last-modified: Fri, 09 Aug 2024 21:37:04 GMT cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cEyd4yWXGuU4uUkLEDc9YaEo%2Bso0DiNeJNekXEk9jjsX78b3%2BZyJSP2o1SMW873PHH1rcCLJk6Vv%2FIabk0dyM3Qt25gsZnkCotTcnKhaxI6i0qCpI9rrCC4vAQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8b0ba2f20d7ab4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	kpdqe.cc/static/js/main.ba10cb5a.js	0.0.0.0		0 B
URL GET kpdqe.cc/static/js/main.ba10cb5a.js IP 0.0.0.0:0 ASN #0 Requested by https://kpdqe.cc/ Certificate IssuerGoogle Trust Services Subjectkpdqe.cc Fingerprint1D:B9:DD:2A:82:E9:54:B3:84:0C:69:7F:E6:14:04:36:F8:0F:85:2E ValidityMon, 29 Jul 2024 17:48:05 GMT - Sun, 27 Oct 2024 17:48:04 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /static/js/main.ba10cb5a.js HTTP/1.1 Host: kpdqe.cc User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kpdqe.cc/ Cookie: cf_clearance=ccDpXe._fQN_lTS5.BAS_APZD_gAA6EMmviNhMRQPf0-1723247291-1.0.1.1-XPGh1MOZDj1D1FXliTNermMstLTV44PFSLwZoh2bf_j5vuR4fH2KwiP75Kme0ftCLVj_.fwVtyT.TDl8p20oTw Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache

	fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap	142.250.74.106	200 OK	14 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://kpdqe.cc/ Certificate IssuerGoogle Trust Services Subjectupload.video.google.com FingerprintC4:3F:12:39:D2:EC:4C:2C:1C:0A:A6:18:8E:2A:97:2C:D8:C2:7E:AF ValidityTue, 30 Jul 2024 12:49:45 GMT - Tue, 22 Oct 2024 12:49:44 GMT File type ASCII text Size 14 kB (14226 bytes) Hash dce36a48bcf330832152e582d29373b8 cd44276b28cf6be734f61e45644ed6ea0ad08e6e 3f6e8efb65dff0486271d787d60be7d84387c203bebd36159794e6e2c28c31f3 HTTP Headers GET /css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kpdqe.cc/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 09 Aug 2024 23:48:20 GMT date: Fri, 09 Aug 2024 23:48:20 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (28)

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (20)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN