| www.google.com.eg/url?sa==rafqigacjrkrnnioqkowziyxaiusnluqeulymwebekupzxoc&rct=zolesnudazazmzgsjvwdvqzilxazcumsnbozxtjbwldgyqzgdzrrmmqlnmokqbxpnmciglrj&sa=t&url=amp/chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= |  142.250.74.99 | 302 Found | 308 B |
URL www.google.com.eg/url?sa==rafqigacjrkrnnioqkowziyxaiusnluqeulymwebekupzxoc&rct=zolesnudazazmzgsjvwdvqzilxazcumsnbozxtjbwldgyqzgdzrrmmqlnmokqbxpnmciglrj&sa=t&url=amp/chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= IP142.250.74.99:0
File typeHTML document, ASCII text, with CRLF, LF line terminators Hashab01d122a4fd1c59926bf1c0e3b3bd21 641f3a9dc772c9662efd876374c7c6e0660bedc9 a80b7135c118478b08ff1696fede7d4b3856a2f8b5c2bf07c983b844c53cdbf8
GET /url?sa==rafqigacjrkrnnioqkowziyxaiusnluqeulymwebekupzxoc&rct=zolesnudazazmzgsjvwdvqzilxazcumsnbozxtjbwldgyqzgdzrrmmqlnmokqbxpnmciglrj&sa=t&url=amp/chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= HTTP/1.1
Host: www.google.com.eg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://www.google.com.eg/amp/chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ=
cache-control: private
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-G3o_7ASnxhNpZCZgrtzIsg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Sat, 14 Dec 2024 15:24:33 GMT
server: gws
content-length: 308
x-xss-protection: 0
set-cookie: __Secure-ENID=24.SE=ieAdBj6_rycsrDsu8WRdqOywwgwewvvelqT8LIucCKLaOkEfW2xwgkyX2LElCIZcyxKjshKSmEsBFC4xKM59ig7wzCa5hDcRzzVgekdQOPM6wAPsBpA98wMZ4XMR6xAAnPELnO6i2-Ceq041JJu_d0kBuRfFpU5D3AvtAC-bi3OwQmoBPq0YQfDvbGXqbZyJk_zhr9dA8T7997vafItdHrlgdt75TvqQsUXyoCLg; expires=Wed, 14-Jan-2026 07:42:51 GMT; path=/; domain=.google.com.eg; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com.eg/amp/chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= | 142.250.74.99 | 302 Found | 285 B |
URL www.google.com.eg/amp/chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= IP142.250.74.99:0
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0dafc6eeca5daaa73a7583bf34d52596 f263cf8ba5dca46c9a7fceabc0e765d40ac41c86 66c2af3427304039cdc85ef5062f65336359a02f18c21fdd2959e0a468519b3d
GET /amp/chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= HTTP/1.1
Host: www.google.com.eg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; __Secure-ENID=24.SE=ieAdBj6_rycsrDsu8WRdqOywwgwewvvelqT8LIucCKLaOkEfW2xwgkyX2LElCIZcyxKjshKSmEsBFC4xKM59ig7wzCa5hDcRzzVgekdQOPM6wAPsBpA98wMZ4XMR6xAAnPELnO6i2-Ceq041JJu_d0kBuRfFpU5D3AvtAC-bi3OwQmoBPq0YQfDvbGXqbZyJk_zhr9dA8T7997vafItdHrlgdt75TvqQsUXyoCLg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: http://chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ=
cache-control: private
x-robots-tag: noindex
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-InZMswQKlbiDhDqp_yuQkA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]}
date: Sat, 14 Dec 2024 15:24:33 GMT
server: gws
content-length: 285
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= |  95.217.148.220 | 200 OK | 0 B |
URL chemsolve.com.pk/kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= IP95.217.148.220:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kiki/ki/mGyCAgGMRgfzeeSJvQbe4qr0mKx/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= HTTP/1.1
Host: chemsolve.com.pk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Dec 2024 15:24:34 GMT
Server: Apache
refresh: 0;url=https://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| GET challenges.cloudflare.com/turnstile/v0/api.js?render=explicit |  104.18.94.41 | 302 Found | 0 B |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP104.18.94.41:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 14 Dec 2024 15:24:35 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/g/f9063374b04d/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f1f33a188d40b69-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js | 104.17.25.14 | 200 OK | 14 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js IP104.17.25.14:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02 ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT
File typeJavaScript source, ASCII text, with very long lines (48316), with no line terminators Hash2ca03ad87885ab983541092b87adb299 1a17f60bf776a8c468a185c1e8e985c41a50dc27 8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762
GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: application/javascript; charset=utf-8
content-length: 13972
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61182885-3694"
last-modified: Sat, 14 Aug 2021 20:33:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 229766
expires: Thu, 04 Dec 2025 15:24:35 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rvvze5dTRfDkshzy52cbAw9npQdL7i%2Fnx3OOQg%2FCTcWDzDVrsNUxtEplCP6Tjg503JGkF1fMKc87yMk2efogYvP9wOHrNn43ReMHqSC7WyJ8C2L%2BaYZfHGHJIW4pU2xyUX8417%2Fe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f33a19b690b49-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET code.jquery.com/jquery-3.6.0.min.js | 151.101.194.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.0.min.js IP151.101.194.137:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 14 Dec 2024 15:24:35 GMT
age: 2713166
x-served-by: cache-lga21931-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 71, 543386
x-timer: S1734189876.523304,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
|
|
| GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1 | 104.18.94.41 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1 IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xnxvn/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xnxvn/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f1f33a3bad05689-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET 84c6.insibulac.ru/favicon.ico | 104.21.18.200 | 404 Not Found | 507 B |
URL GET HTTP/384c6.insibulac.ru/favicon.ico IP104.21.18.200:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectinsibulac.ru Fingerprint7C:3C:55:8A:A0:28:C3:ED:79:96:B8:9A:30:54:F6:99:9E:DD:71:5D ValidityMon, 09 Dec 2024 20:52:15 GMT - Sun, 09 Mar 2025 20:52:14 GMT
Hash46dff230f161bad8c6d39749a466967c e7e0b6046e69cb4b21d2c5172d077859df9dae11 782206f45d43f7199899164dafe4473b5e986e0fcc7309c9c56a226fca8881c5
GET /favicon.ico HTTP/1.1
Host: 84c6.insibulac.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/zZu4l/
Cookie: XSRF-TOKEN=eyJpdiI6ImFSS0F5QnpJeE52M0Vad2F0cFQxVVE9PSIsInZhbHVlIjoiZ28rV2NjR3FERml3cE13VDJNZTFOK2pZaHFrb3QxYkNxZ0t2YWVuN1lydEw1RkFiWCtjYzA2M01WbmUvd2ZRYStadzhnMnNkYnpYbStkaStPSG1NQUVmVUpnS2VsaEZ1eVZVTUpRYlJaWXpRNStKbEFyT0pKdHlROE1LTmpjQjYiLCJtYWMiOiI0M2Q1MjhlYmIyYTM2MWNhNmFmMjVkYmNkZDdjNWMxYjhmNDc2NTZmYmQ4ZTAxMDgyYTE1MjU3YzU4MGVhZTk2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iml1aWEvWGg2RlVEY3c2WTV0cUI1L0E9PSIsInZhbHVlIjoiUDV4NVpFMldTTnVLOUd6d2wxSTNCelQ1dWh0dzJWTVBqUUtjM0ZEb08reUFLUVZuWmlDNnpUeC80aXlNNkdPMmJpaWE5VlBEVFREODFnZzBXSXlCaTN3QXJIMVJyYWI2RWI4d3BENEVFRGtieHZsczg4bkxLZ0JSWFZ5cDdZRE0iLCJtYWMiOiIwYmRlODMwYzk0NTMzN2M2OWZjYWE5MjcwODBjMzIwMGUzOGE4MWEzY2FkMmFmODdmNjIyNmMwMTIwNDYyZDVmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=14400
age: 60
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YDVs%2F0Y%2FLx%2FytZg0nups9bdFu%2F2wJS6A%2FFC1fdg0rSF%2BNXH9MpBKHhcEKuqSVczfq3vhkmL8%2BXENdmnHlz0Nsmq%2BMghxqelU%2FmJK2Wzdf98k70IKa9mQoXLz6pQNaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
priority: u=6,i=?0
server: cloudflare
cf-ray: 8f1f33a309be5689-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=3496&min_rtt=1350&rtt_var=1918&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2825&recv_bytes=2087&delivery_rate=2109629&cwnd=251&unsent_bytes=0&cid=10b0096baaf8d39e&ts=22&x=0", cfL4;desc="?proto=QUIC&rtt=3763&min_rtt=3166&rtt_var=1613&sent=13&recv=8&lost=0&retrans=0&sent_bytes=4155&recv_bytes=1789&delivery_rate=187568&cwnd=12000&unsent_bytes=0&cid=38d68b9d9b3e3414&ts=436&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| 84c6.insibulac.ru/zZu4l/ | 104.21.18.200 | 200 OK | 11 kB |
IP104.21.18.200:0
CertificateIssuerGoogle Trust Services Subjectinsibulac.ru Fingerprint7C:3C:55:8A:A0:28:C3:ED:79:96:B8:9A:30:54:F6:99:9E:DD:71:5D ValidityMon, 09 Dec 2024 20:52:15 GMT - Sun, 09 Mar 2025 20:52:14 GMT
File typeHTML document, ASCII text, with very long lines (7465), with CRLF line terminators Hashb994925b5606dd2fe88e45b3d67ccfce 63337ea778e1258101a95b862faae9b5ad1decb9 c8764384f097a4e8fc4eec5c4d0402a23787c519f0d3d3e1c95580961eb87b61
GET /zZu4l/ HTTP/1.1
Host: 84c6.insibulac.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vfQl5TQpRdMz5SYnNMtLdVv8QuAqsnL4%2Bl035yLABupc9C8YUXbhGQoMIa9G9r2qpantXT4IrkoBx0D0oLJBobgOFG%2FzKhTk8KLihSjfGNtxP7Jf5yvS%2Bw6ACk8X7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6ImFSS0F5QnpJeE52M0Vad2F0cFQxVVE9PSIsInZhbHVlIjoiZ28rV2NjR3FERml3cE13VDJNZTFOK2pZaHFrb3QxYkNxZ0t2YWVuN1lydEw1RkFiWCtjYzA2M01WbmUvd2ZRYStadzhnMnNkYnpYbStkaStPSG1NQUVmVUpnS2VsaEZ1eVZVTUpRYlJaWXpRNStKbEFyT0pKdHlROE1LTmpjQjYiLCJtYWMiOiI0M2Q1MjhlYmIyYTM2MWNhNmFmMjVkYmNkZDdjNWMxYjhmNDc2NTZmYmQ4ZTAxMDgyYTE1MjU3YzU4MGVhZTk2IiwidGFnIjoiIn0%3D; expires=Sat, 14-Dec-2024 17:24:35 GMT; Max-Age=7200; path=/; secure; samesite=none
laravel_session=eyJpdiI6Iml1aWEvWGg2RlVEY3c2WTV0cUI1L0E9PSIsInZhbHVlIjoiUDV4NVpFMldTTnVLOUd6d2wxSTNCelQ1dWh0dzJWTVBqUUtjM0ZEb08reUFLUVZuWmlDNnpUeC80aXlNNkdPMmJpaWE5VlBEVFREODFnZzBXSXlCaTN3QXJIMVJyYWI2RWI4d3BENEVFRGtieHZsczg4bkxLZ0JSWFZ5cDdZRE0iLCJtYWMiOiIwYmRlODMwYzk0NTMzN2M2OWZjYWE5MjcwODBjMzIwMGUzOGE4MWEzY2FkMmFmODdmNjIyNmMwMTIwNDYyZDVmIiwidGFnIjoiIn0%3D; expires=Sat, 14-Dec-2024 17:24:35 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none
server: cloudflare
cf-ray: 8f1f339b3de3712e-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=2103&min_rtt=1151&rtt_var=1112&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2826&recv_bytes=1387&delivery_rate=2474370&cwnd=251&unsent_bytes=0&cid=5cea2a486abd76b9&ts=429&x=0", cfL4;desc="?proto=TCP&rtt=7251&min_rtt=4157&rtt_var=4163&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3180&recv_bytes=1123&delivery_rate=985928&cwnd=253&unsent_bytes=0&cid=3c7e529651dc229d&ts=843&x=0"
X-Firefox-Spdy: h2
|
|
| GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8f1f33a2f9a75689&lang=auto | 104.18.94.41 | 200 OK | 125 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8f1f33a2f9a75689&lang=auto IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xnxvn/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size125 kB (124593 bytes) Hash53d64acb2d9fa079362a4e00f16b7c0a 546e451de55026b22d28e4710505c339229a833c 8f270b76ce66298f61197f03b0c1c990b7982a58ee08e17aa096535554645a91
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8f1f33a2f9a75689&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xnxvn/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=2,i=?0
server: cloudflare
cf-ray: 8f1f33a3bad85689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| GET 84c6.insibulac.ru/zZu4l/ | 104.21.18.200 | 200 OK | 20 kB |
URL User Request GET HTTP/2IP104.21.18.200:443
CertificateIssuerGoogle Trust Services Subjectinsibulac.ru Fingerprint7C:3C:55:8A:A0:28:C3:ED:79:96:B8:9A:30:54:F6:99:9E:DD:71:5D ValidityMon, 09 Dec 2024 20:52:15 GMT - Sun, 09 Mar 2025 20:52:14 GMT
File typeHTML document, ASCII text, with very long lines (7465), with CRLF line terminators Hashb994925b5606dd2fe88e45b3d67ccfce 63337ea778e1258101a95b862faae9b5ad1decb9 c8764384f097a4e8fc4eec5c4d0402a23787c519f0d3d3e1c95580961eb87b61
GET /zZu4l/ HTTP/1.1
Host: 84c6.insibulac.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vfQl5TQpRdMz5SYnNMtLdVv8QuAqsnL4%2Bl035yLABupc9C8YUXbhGQoMIa9G9r2qpantXT4IrkoBx0D0oLJBobgOFG%2FzKhTk8KLihSjfGNtxP7Jf5yvS%2Bw6ACk8X7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6ImFSS0F5QnpJeE52M0Vad2F0cFQxVVE9PSIsInZhbHVlIjoiZ28rV2NjR3FERml3cE13VDJNZTFOK2pZaHFrb3QxYkNxZ0t2YWVuN1lydEw1RkFiWCtjYzA2M01WbmUvd2ZRYStadzhnMnNkYnpYbStkaStPSG1NQUVmVUpnS2VsaEZ1eVZVTUpRYlJaWXpRNStKbEFyT0pKdHlROE1LTmpjQjYiLCJtYWMiOiI0M2Q1MjhlYmIyYTM2MWNhNmFmMjVkYmNkZDdjNWMxYjhmNDc2NTZmYmQ4ZTAxMDgyYTE1MjU3YzU4MGVhZTk2IiwidGFnIjoiIn0%3D; expires=Sat, 14-Dec-2024 17:24:35 GMT; Max-Age=7200; path=/; secure; samesite=none
laravel_session=eyJpdiI6Iml1aWEvWGg2RlVEY3c2WTV0cUI1L0E9PSIsInZhbHVlIjoiUDV4NVpFMldTTnVLOUd6d2wxSTNCelQ1dWh0dzJWTVBqUUtjM0ZEb08reUFLUVZuWmlDNnpUeC80aXlNNkdPMmJpaWE5VlBEVFREODFnZzBXSXlCaTN3QXJIMVJyYWI2RWI4d3BENEVFRGtieHZsczg4bkxLZ0JSWFZ5cDdZRE0iLCJtYWMiOiIwYmRlODMwYzk0NTMzN2M2OWZjYWE5MjcwODBjMzIwMGUzOGE4MWEzY2FkMmFmODdmNjIyNmMwMTIwNDYyZDVmIiwidGFnIjoiIn0%3D; expires=Sat, 14-Dec-2024 17:24:35 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none
server: cloudflare
cf-ray: 8f1f339b3de3712e-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=2103&min_rtt=1151&rtt_var=1112&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2826&recv_bytes=1387&delivery_rate=2474370&cwnd=251&unsent_bytes=0&cid=5cea2a486abd76b9&ts=429&x=0", cfL4;desc="?proto=TCP&rtt=7251&min_rtt=4157&rtt_var=4163&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3180&recv_bytes=1123&delivery_rate=985928&cwnd=253&unsent_bytes=0&cid=3c7e529651dc229d&ts=843&x=0"
X-Firefox-Spdy: h2
|
|
| GET challenges.cloudflare.com/turnstile/v0/g/f9063374b04d/api.js | 104.18.94.41 | 200 OK | 48 kB |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/g/f9063374b04d/api.js IP104.18.94.41:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeJavaScript source, ASCII text, with very long lines (47691) Hashb0b3774e70e752266b4cf190e6d95053 03823d33d8c374dd69b66f1d75a5fc93d29967e1 a9f0787e39291d7bcb873d0d514f1d2c8db0256fd741c2abc4d46a809254e141
GET /turnstile/v0/g/f9063374b04d/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://84c6.insibulac.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 03 Dec 2024 18:31:41 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f1f33a1a8fd0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xnxvn/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ | 104.18.94.41 | 200 OK | 26 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xnxvn/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ IP104.18.94.41:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeHTML document, ASCII text, with very long lines (22073) Hashabf2bf338bab608c797048041d8c7844 6eaf21a11722ab3cbeedc876a5523ee0546876a7 73be10a8df38fed948276af0163291f9c82cd7b2fffc55c45a451a8088f9897e
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xnxvn/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f1f33a2f9a75689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
0.0.0.0