| tracker.club-os.com/campaign/click?msgId=f8ea317d963149a518aa35e03e5541f797badf3c&target=splendidanimations.com/@/Hfotusa/MZhqp20839MZhqp20839MZhqp/bWVzcGlub3phQGhmb3R1c2Eub3Jn | 54.166.130.75 | | 0 B |
URL tracker.club-os.com/campaign/click?msgId=f8ea317d963149a518aa35e03e5541f797badf3c&target=splendidanimations.com/@/Hfotusa/MZhqp20839MZhqp20839MZhqp/bWVzcGlub3phQGhmb3R1c2Eub3Jn IP54.166.130.75:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /campaign/click?msgId=f8ea317d963149a518aa35e03e5541f797badf3c&target=splendidanimations.com/@/Hfotusa/MZhqp20839MZhqp20839MZhqp/bWVzcGlub3phQGhmb3R1c2Eub3Jn HTTP/1.1
Host: tracker.club-os.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 303 See Other
date: Wed, 17 Apr 2024 21:16:41 GMT
content-length: 0
location: http://splendidanimations.com/@/Hfotusa/MZhqp20839MZhqp20839MZhqp/bWVzcGlub3phQGhmb3R1c2Eub3Jn
server: Apache/2.4.57 () OpenSSL/1.0.2k-fips
X-Firefox-Spdy: h2
|
|
| splendidanimations.com/@/Hfotusa/MZhqp20839MZhqp20839MZhqp/bWVzcGlub3phQGhmb3R1c2Eub3Jn | 192.185.104.70 | | 0 B |
URL splendidanimations.com/@/Hfotusa/MZhqp20839MZhqp20839MZhqp/bWVzcGlub3phQGhmb3R1c2Eub3Jn IP192.185.104.70:0 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /@/Hfotusa/MZhqp20839MZhqp20839MZhqp/bWVzcGlub3phQGhmb3R1c2Eub3Jn HTTP/1.1
Host: splendidanimations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 21:16:42 GMT
Server: Apache
refresh: 0;url=https://faccln.com/Tmespinoza@hfotusa.org
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
|
|
| faccln.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875f7012195cb527 | 172.67.152.51 | | 114 kB |
URL faccln.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875f7012195cb527 IP172.67.152.51:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size114 kB (114170 bytes) Hashaf8178873735d6a6b5af3c0218c8707a 3da1950f4c551691dd592fb321a6e6f4a74499dd 7a044187d4463a012e60ed8c610b5eaf1539ac43bb5b96fb5ff1ca1d47bf8a83
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875f7012195cb527 HTTP/1.1
Host: faccln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://faccln.com/Tmespinoza@hfotusa.org?__cf_chl_rt_tk=r8xoMNFmKvMEjVBWPD_7MZp5Zu6g8K9S9QAIvZ3Lx24-1713388603-0.0.1.1-1621
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:16:43 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cNj8DeK%2FfEHZwSTxBbpIYdxOoOctOAo0Et661%2FeDZgVC4HQmh5o3OUeSFTMzqKoKWcQhv38D%2B0E7A5NClCQ2d1EReELtgse3fFDcMleLMQgcMXIHrGIMuONYLhdV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875f7012d92856c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | 200 OK | 564 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash80a0a2bf4d69377f99b126ce7213ac9d 1f2aa13b16289f234c09c2e068f77b9d273b4c6f 2964526e1accd3c2b53f02c953afcb6ff6efcaa8fa82fa4a6c65a61d465716c6
GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/k2i1w/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:16:43 GMT
content-type: image/png
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 875f7015feb87127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| faccln.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875f7042096856c4 | 172.67.152.51 | | 116 kB |
URL faccln.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875f7042096856c4 IP172.67.152.51:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size116 kB (116385 bytes) Hashecd43a35bee91da261598642d8371424 6255b3ec5985290dfb39fb5d9c54d1b3f9a5aaaf f358cdde225cc77a3959f62a369648bf2e2a3c4c2ef76735be03ad9fa83f5295
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875f7042096856c4 HTTP/1.1
Host: faccln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://faccln.com/Tmespinoza@hfotusa.org?__cf_chl_rt_tk=n3.S1H0nhTrCqfIgrQ81lP1toT.oy5hBl1ddL1sM_Yg-1713388610-0.0.1.1-1621
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:16:50 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ghvJoxdRY7sBzIcSSHiARfF2A7OKXPCTujFzJk8H8qWi%2FFDbkBp0Hf3Ew1g1vQIMDi%2FThVl8So9dascsp3M2o94x5sO8%2BGikmShc3ZAG2MXrlYjt%2BxIz6hasU4Wj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875f704259cf56c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| faccln.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1433875495:1713384690:jhLuJq1mBA_sHOJI-ODPG6b27QzOqW3Fug2OMcQR1FI/875f7012195cb527/543ecb7883434db | 172.67.152.51 | | 9.3 kB |
URL faccln.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1433875495:1713384690:jhLuJq1mBA_sHOJI-ODPG6b27QzOqW3Fug2OMcQR1FI/875f7012195cb527/543ecb7883434db IP172.67.152.51:0
File typeASCII text, with very long lines (2332), with no line terminators Hash16b097495816439dac782ff186f30fb5 b59844f50b79e783c1377da293ecac9a803a169b 5e940fe29896b428b78c15cbd200e4f7bb13f850958c921c362bb2e3bb41bc20
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1433875495:1713384690:jhLuJq1mBA_sHOJI-ODPG6b27QzOqW3Fug2OMcQR1FI/875f7012195cb527/543ecb7883434db HTTP/1.1
Host: faccln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://faccln.com/Tmespinoza@hfotusa.org
Content-type: application/x-www-form-urlencoded
CF-Challenge: 543ecb7883434db
Content-Length: 2567
Origin: https://faccln.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:16:48 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: Jl05yOTuCE00T9aaCfCzcxEHOqe2L36/oohUs+5HO3N8zq40JZSCK7Yzhm5L8GjLbkimIy/syXURxgG47PSzHKuNvHoyvuyAL8Urht+C0PA=$HP5FLI+W2H4gHiF6Byxvkg==
cf-chl-out-s: GN1b24Wb2gvt3bxqcamxsXH/1isv2CR6WTekezPycQ3rSY1sPpGOKPtRHBB2K2FmD6wjhILTiz9RAh8BMsJYg4K9PlFVuc+TgwBFc+8/x0I=$eANmEdQgdZHxAbs14vumiQ==
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4lLFYV2PrAB0zXJwxPFlhJtdD5OZ6IZ2%2BOYDi%2FH%2FrmoP7ESVZcUhSSCLobP2AyrVeJfztH6zDoQLsfQKHAoPm3x05lDpagZiO9v6ErRFodsT%2B0FyjuacAfGsXuyh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875f70353af356c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| faccln.com/Tmespinoza@hfotusa.org | 172.67.152.51 | 403 Forbidden | 16 kB |
URL User Request GET HTTP/3faccln.com/Tmespinoza@hfotusa.org IP172.67.152.51:443
CertificateIssuerGoogle Trust Services LLC Subjectfaccln.com FingerprintC0:AB:E5:80:76:10:C4:5F:B2:BE:A6:7A:CB:68:CB:2C:60:E7:19:26 ValidityWed, 17 Apr 2024 16:19:44 GMT - Tue, 16 Jul 2024 16:19:43 GMT
File typeHTML document, ASCII text, with very long lines (15866), with no line terminators Hash030316dd749422fa960885dc4818cec3 74dcaa20719d53d05f112675b14d1e772baf03a5 e9552656efc3e0e68ccdb144a68422c32422d2508c272c673b806c64a1939675
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /Tmespinoza@hfotusa.org HTTP/1.1
Host: faccln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 17 Apr 2024 21:17:00 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: Gf18f2Fa023OGFNbv+qdQlMyq/sTosOy7rvM/cElsCvoQjtxT6VhHxiCnLOMrLaE2SwWJkoeBDIPwbEcNI0vbQJRxyVbVhBH658e1cMauXV7aacXQQMueg4qeJXb1m/ThrT1Ll0JcyfW0PRUVZfTMA==$DEAdo7NPFGu0dXjlTIVJpw==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MEQSM9hWdVeB8dqE%2Bq1OnMjDrF6TJyWdSECxmEhFqaQj4EOrZCZXHgsgcniZwilFargq2K4HDpX48GC6GZwvO%2FZMiNlKK%2BCz23ZoANBiEiH0ImhZaaDpemUW61V%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875f707b584556c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/875f707df89a7127/1713388620852/5a7ec4f469e4bff2f18a226adcf037134375c72d945a585823e2df57068e30e8/ybII8mqHDTwNQcc | 104.17.2.184 | 401 Unauthorized | 1 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/875f707df89a7127/1713388620852/5a7ec4f469e4bff2f18a226adcf037134375c72d945a585823e2df57068e30e8/ybII8mqHDTwNQcc IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/875f707df89a7127/1713388620852/5a7ec4f469e4bff2f18a226adcf037134375c72d945a585823e2df57068e30e8/ybII8mqHDTwNQcc HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 401 Unauthorized
date: Wed, 17 Apr 2024 21:17:01 GMT
content-type: text/plain; charset=UTF-8
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gWn7E9Gnkv_LxiiJq3PA3E0N1xy2UWlhYI-LfVwaOMOgAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIFp-xPRp5L_y8YoiatzwNxNDdcctlFpYWCPi31cGjjDoABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 875f708459cc7127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/480071020:1713385020:sUDZ5fw39mStJto-lDYzbDNZsSCLeTZZ3mhmfQ_F7cs/875f707df89a7127/09ecc3ef2d17ae2 | 104.17.2.184 | 200 OK | 23 kB |
URL POST HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/480071020:1713385020:sUDZ5fw39mStJto-lDYzbDNZsSCLeTZZ3mhmfQ_F7cs/875f707df89a7127/09ecc3ef2d17ae2 IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (22572), with no line terminators Hash19ba443ccf970a9a271c2e855982df22 3c342fc240e21a76adaa4a40fdc0c8278dfac5a7 76dbbae415ec195ead0221fc8f4d5fd382efe327ae1c0b5e3b1649a99e4f37d1
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/480071020:1713385020:sUDZ5fw39mStJto-lDYzbDNZsSCLeTZZ3mhmfQ_F7cs/875f707df89a7127/09ecc3ef2d17ae2 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 09ecc3ef2d17ae2
Content-Length: 26110
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:17:02 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: fVWzfjVeEcZI8X6LElB3oPP0UQtSbJSrxjX2ldu2VKQIegN6EIhn2QQgGH8xFm13$r07PDdbiWZWTLompyUzClg==
server: cloudflare
cf-ray: 875f7089d8987127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit | 104.17.2.184 | 200 OK | 42 kB |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit IP104.17.2.184:443
Requested byhttps://faccln.com/Tmespinoza@hfotusa.org CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42414) Hash374fec8b5e50cd6ab980f3fef21a5aa0 7f474607991a19b6f1b78cc32e0f75b501b60774 8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a
GET /turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://faccln.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:17:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 875f707c5e2c7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| faccln.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1419918912:1713384768:OSKCibD9WmR_2pQYKBRoBMIx29aWindE7Rbgf7c4xQo/875f707b584556c4/2872ecc4890ede5 | 172.67.152.51 | 200 OK | 16 kB |
URL POST HTTP/3faccln.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1419918912:1713384768:OSKCibD9WmR_2pQYKBRoBMIx29aWindE7Rbgf7c4xQo/875f707b584556c4/2872ecc4890ede5 IP172.67.152.51:443
Requested byhttps://faccln.com/Tmespinoza@hfotusa.org CertificateIssuerGoogle Trust Services LLC Subjectfaccln.com FingerprintC0:AB:E5:80:76:10:C4:5F:B2:BE:A6:7A:CB:68:CB:2C:60:E7:19:26 ValidityWed, 17 Apr 2024 16:19:44 GMT - Tue, 16 Jul 2024 16:19:43 GMT
File typeASCII text, with very long lines (16032), with no line terminators Hash84edc1fdd1c0e31c00f33cf4f20015e7 3e65aea4be610db9d75030723538c7cc7840a2d0 d569ffea18cdcdb5847fbde8ba1de35b7ae60ad2f612942b3dab2119f56da3b7
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1419918912:1713384768:OSKCibD9WmR_2pQYKBRoBMIx29aWindE7Rbgf7c4xQo/875f707b584556c4/2872ecc4890ede5 HTTP/1.1
Host: faccln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://faccln.com/Tmespinoza@hfotusa.org
Content-type: application/x-www-form-urlencoded
CF-Challenge: 2872ecc4890ede5
Content-Length: 1910
Origin: https://faccln.com
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:17:00 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: dpWOwPiFNG0WFsGBJ0LCpiXIYpOG91OHk/KMMdaHL81yZcdNLEoKtPraDnAG+P2c$IVTzqKnnEhEza/Glk6NYzQ==
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bjoXt3oOfzzuJI84texkS%2B6DApuhX9dtOSF608uh7iuU7YHJ%2BDuXhljLfop%2BBeskr7WPAMut8WgevHpEzPIB7tQSNyi9UtLFBuePynp0kyTqr%2BDJFqfCT4ThZH5w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875f707d2a2d56c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal | 104.17.2.184 | 200 OK | 80 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal IP104.17.2.184:443
Requested byhttps://faccln.com/Tmespinoza@hfotusa.org CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hash7f921dc94e8981125ae23ae9ed2d96a1 170dea934c1a64a645d74b5b91d8d2e26d69df04 1c63715cedc01870df060050afdc6c33208733d84d84a3d7a82749ebb66443ed
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:17:00 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 875f707df89a7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| faccln.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875f707b584556c4 | 172.67.152.51 | 200 OK | 397 kB |
URL GET HTTP/3faccln.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875f707b584556c4 IP172.67.152.51:443
Requested byhttps://faccln.com/Tmespinoza@hfotusa.org CertificateIssuerGoogle Trust Services LLC Subjectfaccln.com FingerprintC0:AB:E5:80:76:10:C4:5F:B2:BE:A6:7A:CB:68:CB:2C:60:E7:19:26 ValidityWed, 17 Apr 2024 16:19:44 GMT - Tue, 16 Jul 2024 16:19:43 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size397 kB (396997 bytes) Hash1d9c91d6f0bdd75aa052b4c265199243 c4df9f8e146dbcb8d2f1bbb6fef737af698277e6 a56caae14ea00f956374ea3c73334408f04cfc485753c74444dd2fdafee9d0a8
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875f707b584556c4 HTTP/1.1
Host: faccln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://faccln.com/Tmespinoza@hfotusa.org?__cf_chl_rt_tk=bkI.rWSD.DowMWN9jnkcizHE8j.oy0SaccIFOlm5h4I-1713388620-0.0.1.1-1621
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:17:00 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PtEWhA7FJxXMV3PoFeTi312w%2FdMe3XSyC%2BtNRyDSUVjoXuujVeZr1Ofp7vdaVhPcFwmZQN6CYdqDKuNXy6pWswQVoBGL8xi45TazPXUrlEYu0P9oSkaQYpgHKOuh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875f707bb8d756c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=875f707df89a7127 | 104.17.2.184 | 200 OK | 436 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=875f707df89a7127 IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size436 kB (435772 bytes) Hash5c85b04190f4cb4f049368964f625f98 1f4b4495536448c33fcc5b33ce01e100ed689cb4 1150ec31f002bf62cee879f88dcbbd4f3ee98b85a66c5b59a0cc3af1169b7c30
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=875f707df89a7127 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:17:00 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 875f707e79697127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/875f707df89a7127/1713388620848/RuvkwDCTVgxn0o3 | 104.17.2.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/875f707df89a7127/1713388620848/RuvkwDCTVgxn0o3 IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 94 x 13, 8-bit/color RGB, non-interlaced Hash8e7f6a1acfe84a07139a92ee676b228f 7c7f471d7489ca4d898b9787d6673dfe90677968 c275969ab0b6de5964d6b608bb0710a8303f3db7ee9e4d571c6b9fe44ad07863
GET /cdn-cgi/challenge-platform/h/g/i/875f707df89a7127/1713388620848/RuvkwDCTVgxn0o3 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:17:01 GMT
content-type: image/png
server: cloudflare
cf-ray: 875f7083d9107127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/480071020:1713385020:sUDZ5fw39mStJto-lDYzbDNZsSCLeTZZ3mhmfQ_F7cs/875f707df89a7127/09ecc3ef2d17ae2 | 104.17.2.184 | 200 OK | 91 kB |
URL POST HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/480071020:1713385020:sUDZ5fw39mStJto-lDYzbDNZsSCLeTZZ3mhmfQ_F7cs/875f707df89a7127/09ecc3ef2d17ae2 IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashc02e0eacbb63e9d3d3f0fe0459a7414e f6e2c5d3132e154a2504387a788feca0ab84c92a 61aae096588caf1015ce43b92e35ec3ce6909209eba80375941efe18c4ac30e2
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/480071020:1713385020:sUDZ5fw39mStJto-lDYzbDNZsSCLeTZZ3mhmfQ_F7cs/875f707df89a7127/09ecc3ef2d17ae2 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/y8wds/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 09ecc3ef2d17ae2
Content-Length: 3354
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 21:17:00 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: wfws4i5kILGVB+BvinBqqvCQoZNVqaOT3mPyEflDqGY4Hi0B8obDxj56DMk48H6MSNWP6bM5Ew6k+wTW00y0qEQqypC2pS9DAELVTYofh8Q2ZMmAE17lm8nosbXk5jXCpEPGNAVzeggAIBbFYm7aLIslb9Aq7fmaERjtqOXYQLfiZudBpC2C0h3gP0a8dcbDDGYOREgxSqlY99GOyJsZkSmKSsnuEN37Qor4/toJ/ISBkpF3Pu2fB2+u/QTsmy5N6zS6BqLyWBKGBUwtps7VqYN6xtJYRci+9Hd78ekn1W4posE9if7CWsAWrN+ENLkMQdYooALqQ9xNirrEIOhRMUQJTXCzWl9E5aAt67iPOKzPSjWaqJM0JQLq6+nXj8Yy$8kkwoyAM64O+N10JQ1lfiw==
server: cloudflare
cf-ray: 875f70802bde7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| faccln.com/favicon.ico | 172.67.152.51 | 403 Forbidden | 16 kB |
IP172.67.152.51:443
Requested byhttps://faccln.com/Tmespinoza@hfotusa.org CertificateIssuerGoogle Trust Services LLC Subjectfaccln.com FingerprintC0:AB:E5:80:76:10:C4:5F:B2:BE:A6:7A:CB:68:CB:2C:60:E7:19:26 ValidityWed, 17 Apr 2024 16:19:44 GMT - Tue, 16 Jul 2024 16:19:43 GMT
File typeHTML document, ASCII text, with very long lines (15838), with no line terminators Hashc871eee6d606705329417de405c6bfb5 305277693b552a6e80e23d68dc7fec32c4da0101 33760b7bb431a1ed0c0026adad03af7e52fa19b354663a931e5dbc6dba2b4a9b
GET /favicon.ico HTTP/1.1
Host: faccln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://faccln.com/Tmespinoza@hfotusa.org?__cf_chl_rt_tk=bkI.rWSD.DowMWN9jnkcizHE8j.oy0SaccIFOlm5h4I-1713388620-0.0.1.1-1621
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 17 Apr 2024 21:17:00 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: UvlttGiDoX0yVMEobiPBRGgo8Z9yWOLsJ0BD3owwVjCfmRQDbc0iLsAO9VXbr2gKsqxRjASsUo4PndG1EZQyFlJVdmcg+wvehe+by4br+22B5IW5B4gDWvHKONas8mIdwS0ukfvaO+w6Xk4MdLLm4w==$VKMG6enGwzUKvuLcIRcqbQ==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fo5B4idP8GwLZdZW%2BvyCBPn7LjU5rFUKuXtgsOPqWynTOGztGkZ14%2BY05Wj1JBF5Ix%2BQatIU1LWJKN6lZ7KWFNOb2WmaBPw%2BbNNIyShQHj2WV0qx3TxWFDBPJiz8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875f707bf91656c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| faccln.com/favicon.ico | 172.67.152.51 | 403 Forbidden | 16 kB |
IP172.67.152.51:443
Requested byhttps://faccln.com/Tmespinoza@hfotusa.org CertificateIssuerGoogle Trust Services LLC Subjectfaccln.com FingerprintC0:AB:E5:80:76:10:C4:5F:B2:BE:A6:7A:CB:68:CB:2C:60:E7:19:26 ValidityWed, 17 Apr 2024 16:19:44 GMT - Tue, 16 Jul 2024 16:19:43 GMT
File typeHTML document, ASCII text, with very long lines (15753), with no line terminators Hashe793226c5fbe2ea2a856352a1d4cad84 ba89515516ce7a519d8405451a68343045f47401 e8533a20ccd49ab7767909804e618027dde2784d2321b57f72eb7f9be0de9fd2
GET /favicon.ico HTTP/1.1
Host: faccln.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://faccln.com/Tmespinoza@hfotusa.org
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 17 Apr 2024 21:17:00 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: rVSuYCLPrY7uNqETlxnBZ3cH/qLiQWgZ3YHLPUOv0LZ9ILiKhoJHsxRYg/QMg+8t0wkkpoVaogP4h+2vjDcSJN3mf5V5KiqWcD9bk4B8qSPyZU55Tnsec+M8oZ0F2vN6xoArFUFIUW8aHz9Dlcy0OA==$z3K0fVdhQH/N6HVC24FQrg==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ts7jmYVhPSKNTb0SmpcXb4yFptERKAT%2BmoMl6gY%2B3MF7VkaIcISQbfb%2BU7%2BmFobZXX9bvfNZyyeB1iHx0i2NhbpAjqaCSTJr0cOzLqTKcORXWxHVfjcz69mqGXFD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875f707c495e56c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|