| www.google.com.eg/url?sa==rafqigacjrkrnnioqkowziyxaiusnluqeulymwebekupzxoc&rct=zolesnudazazmzgsjvwdvqzilxazcumsnbozxtjbwldgyqzgdzrrmmqlnmokqbxpnmciglrj&sa=t&url=amp/chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= |  142.250.74.99 | 302 Found | 308 B |
URL www.google.com.eg/url?sa==rafqigacjrkrnnioqkowziyxaiusnluqeulymwebekupzxoc&rct=zolesnudazazmzgsjvwdvqzilxazcumsnbozxtjbwldgyqzgdzrrmmqlnmokqbxpnmciglrj&sa=t&url=amp/chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= IP142.250.74.99:0
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash757f0d030bacbf989a95ba7b623c7d4a 55f1a75316ce1695dbdc4e0537569c45717af3ce 078ff9017962543a7a1d617bbd56dbc65ccc44339a627cacf9c68ca95e0fe9c2
GET /url?sa==rafqigacjrkrnnioqkowziyxaiusnluqeulymwebekupzxoc&rct=zolesnudazazmzgsjvwdvqzilxazcumsnbozxtjbwldgyqzgdzrrmmqlnmokqbxpnmciglrj&sa=t&url=amp/chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= HTTP/1.1
Host: www.google.com.eg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://www.google.com.eg/amp/chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ=
cache-control: private
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-f3VihObZOMFQaVwx8eWcCw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Sat, 14 Dec 2024 15:24:33 GMT
server: gws
content-length: 308
x-xss-protection: 0
set-cookie: __Secure-ENID=24.SE=A7W3go-U4pd9yDd31m2jRY0z0zEn_pPOMq3LgZKx73LsEDmvxvMCwbofqVlA1WKEJJ4weE8pd52bye9w0lOPuPazSC9__IErbSiS8DYyEJQCM5RsdK0OYhskVYp8In5Z3wzIbXfcBCiQl0nCzk3_bFwa4OPjbMV1CEn0qImE_EmvkveuH0zOChE9IrynlOu2ei8PWtnFnkfoYwQ78W7yMjsxUYt-_Txz_FVKa1E; expires=Wed, 14-Jan-2026 07:42:51 GMT; path=/; domain=.google.com.eg; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com.eg/amp/chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= | 142.250.74.99 | 302 Found | 285 B |
URL www.google.com.eg/amp/chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= IP142.250.74.99:0
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash833208a24d5d9ccc3d87e887cfee5e58 9b7a641faa85e3dd2284c72008c6b622562cd3aa 4aef1e219a05342fa8c0159b8273cb2bc59a784b8288527327780d7267081a31
GET /amp/chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= HTTP/1.1
Host: www.google.com.eg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; __Secure-ENID=24.SE=A7W3go-U4pd9yDd31m2jRY0z0zEn_pPOMq3LgZKx73LsEDmvxvMCwbofqVlA1WKEJJ4weE8pd52bye9w0lOPuPazSC9__IErbSiS8DYyEJQCM5RsdK0OYhskVYp8In5Z3wzIbXfcBCiQl0nCzk3_bFwa4OPjbMV1CEn0qImE_EmvkveuH0zOChE9IrynlOu2ei8PWtnFnkfoYwQ78W7yMjsxUYt-_Txz_FVKa1E
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: http://chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ=
cache-control: private
x-robots-tag: noindex
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-hRkXSHZPOUbH64BdnYuM-A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]}
date: Sat, 14 Dec 2024 15:24:33 GMT
server: gws
content-length: 285
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= |  95.217.148.220 | 200 OK | 0 B |
URL chemsolve.com.pk/kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= IP95.217.148.220:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kiki/ki/FS5erNRntep61wYnsEfJPQQMS7K/YnNtaXRoQHNsdXJwbWFpbC5uZXQ= HTTP/1.1
Host: chemsolve.com.pk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Dec 2024 15:24:33 GMT
Server: Apache
refresh: 0;url=https://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| challenges.cloudflare.com/turnstile/v0/api.js?render=explicit |  104.18.94.41 | 302 Found | 0 B |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP104.18.94.41:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 14 Dec 2024 15:24:34 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/g/f9063374b04d/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f1f339c6a4e1c02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js | 104.17.24.14 | 200 OK | 14 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js IP104.17.24.14:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02 ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT
File typeJavaScript source, ASCII text, with very long lines (48316), with no line terminators Hash2ca03ad87885ab983541092b87adb299 1a17f60bf776a8c468a185c1e8e985c41a50dc27 8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762
GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:24:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 13972
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61182885-3694"
last-modified: Sat, 14 Aug 2021 20:33:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 229765
expires: Thu, 04 Dec 2025 15:24:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tc3jNvPZWQxdgDT61pZVdt9DKH%2FOgzxEdmpIIIe7RltnqCpOHVAIVTmZY3%2BOmCwUWUGkViUgSlFZA0gGdv7Jea1NRHvexoaKmVcmrg4k%2FRRrbqoe%2BcDvxjBSrSUG5iQ2wmnYcpe9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f339c7f1e56ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.0.min.js | 151.101.66.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.0.min.js IP151.101.66.137:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 14 Dec 2024 15:24:34 GMT
age: 2713165
x-served-by: cache-lga21931-LGA, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 71, 228127
x-timer: S1734189875.684772,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/koixl/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ | 104.18.94.41 | 200 OK | 6.6 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/koixl/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ IP104.18.94.41:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeHTML document, ASCII text, with very long lines (22073) Hash3515e4b02903cea75c7f46452c7dd9cd 93b74074e7e690425ee84f63169b752d82df348e ccad67ab02b74b6c80346a2402ca941325d5afe61e2c0e629280240ccb338ac9
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/koixl/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:24:34 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f1f339dda19568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/turnstile/v0/g/f9063374b04d/api.js | 104.18.94.41 | 200 OK | 48 kB |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/g/f9063374b04d/api.js IP104.18.94.41:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeJavaScript source, ASCII text, with very long lines (47691) Hashb0b3774e70e752266b4cf190e6d95053 03823d33d8c374dd69b66f1d75a5fc93d29967e1 a9f0787e39291d7bcb873d0d514f1d2c8db0256fd741c2abc4d46a809254e141
GET /turnstile/v0/g/f9063374b04d/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://84c6.insibulac.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:24:34 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 03 Dec 2024 18:31:41 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
priority: u=2,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f1f339d194d568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| 84c6.insibulac.ru/favicon.ico | 172.67.183.81 | 404 Not Found | 0 B |
URL GET HTTP/384c6.insibulac.ru/favicon.ico IP172.67.183.81:443
Requested byhttps://84c6.insibulac.ru/zZu4l/#Dbsmith@slurpmail.net CertificateIssuerGoogle Trust Services Subjectinsibulac.ru Fingerprint7C:3C:55:8A:A0:28:C3:ED:79:96:B8:9A:30:54:F6:99:9E:DD:71:5D ValidityMon, 09 Dec 2024 20:52:15 GMT - Sun, 09 Mar 2025 20:52:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: 84c6.insibulac.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://84c6.insibulac.ru/zZu4l/
Cookie: XSRF-TOKEN=eyJpdiI6IkNZZEE2aWJvNXBzZWc1aURPalArNmc9PSIsInZhbHVlIjoiNFNUUHMvN0pGRFVIaVJLWG9RWHhzc25DaVE3cTR3UVVyeVBPZU1vWjUzZy9kdkZzVHRJNzM3Z29PVmE0aDEya1RxbWVqQ0pFQVBWczRFVVluNzM0Y2NGY1lHNlVIaWJhOTRCYndtSGlQSGpXMjVpU1lpV1dWeWNWbVVMTFl0blIiLCJtYWMiOiIzZjBlZDBhMzE5YmM0MjNkYjc4OTNiNTU0YTZkYzQwZmE3MzgwYWNhZjYwMzBkYjkzMDUyMWRkNDFkNzQzNDdhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitibFZyRkg2V0RRc0dWS3JTcGlyWlE9PSIsInZhbHVlIjoiRnQ2UkVHYStWNHZSOENEV05LWGpTMWRzWVdteHJ0OGY1TzZHTDN0MThxd254VWRvS2NUQWhtcjBURUFDN1ZGUFZzZGY3RHpjMTVHQ3JpTFRyZVZ0K2xFSlozckxGc05UUXNqOVArbDJaQzRFNUlPK1Z4U2RLZ2M3Y1cxUlVQRW0iLCJtYWMiOiI3NzRjYmZlYjhlNjA1NTE0MWIwZmRhOGE3ZTdhMzAzMTY3YWU3NWNhMzkyN2M4NzAxMGEzMmE5MWMwZmI1MDU4IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 14 Dec 2024 15:24:34 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=14400
age: 59
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YDVs%2F0Y%2FLx%2FytZg0nups9bdFu%2F2wJS6A%2FFC1fdg0rSF%2BNXH9MpBKHhcEKuqSVczfq3vhkmL8%2BXENdmnHlz0Nsmq%2BMghxqelU%2FmJK2Wzdf98k70IKa9mQoXLz6pQNaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
priority: u=6,i=?0
server: cloudflare
cf-ray: 8f1f339dfcf2569d-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=3496&min_rtt=1350&rtt_var=1918&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2825&recv_bytes=2087&delivery_rate=2109629&cwnd=251&unsent_bytes=0&cid=10b0096baaf8d39e&ts=22&x=0", cfL4;desc="?proto=QUIC&rtt=5785&min_rtt=4416&rtt_var=2634&sent=11&recv=6&lost=0&retrans=0&sent_bytes=4048&recv_bytes=1693&delivery_rate=134501&cwnd=12000&unsent_bytes=0&cid=b2acbec7fe7fd5be&ts=458&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8f1f339dda19568b&lang=auto | 104.18.94.41 | 200 OK | 117 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8f1f339dda19568b&lang=auto IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/koixl/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size117 kB (116695 bytes) Hash4cc9b33452f071dc0c20d8e0cb17e64b ae9f181e0d7f121b2c2b34524816e91ad0717e16 9465d62360f5e4f4de6821752b9e6843b073a4f0fe9a98abf83bfb09f59a030f
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8f1f339dda19568b&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/koixl/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=2,i=?0
server: cloudflare
cf-ray: 8f1f339eebe4568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| | 172.67.183.81 | 200 OK | 20 kB |
URL User Request GET HTTP/2IP172.67.183.81:443
CertificateIssuerGoogle Trust Services Subjectinsibulac.ru Fingerprint7C:3C:55:8A:A0:28:C3:ED:79:96:B8:9A:30:54:F6:99:9E:DD:71:5D ValidityMon, 09 Dec 2024 20:52:15 GMT - Sun, 09 Mar 2025 20:52:14 GMT
File typeHTML document, ASCII text, with very long lines (7489), with CRLF line terminators Hash9632f5aa2ebe44337d2a4b0c4299a887 097ba05be35986c78eef8f8a18f9552a8f63e9b5 48d7faf84c1f8b553f992318cd9917bb68512f8434e8d22269394f00823fb118
GET /zZu4l/ HTTP/1.1
Host: 84c6.insibulac.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:24:34 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J1GEEr19o2mWOVGXJ0pi%2BDvfc5MLUnpf%2BUQXBICvNiYIXYhMpQg1X%2BLwVDDlCpGrt1NfPUJ77xf5O3QpkAcpH35m3NTCJo73hqWPDSTfq%2Bi0%2F8zpNV5gTe1yhxX44g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6IkNZZEE2aWJvNXBzZWc1aURPalArNmc9PSIsInZhbHVlIjoiNFNUUHMvN0pGRFVIaVJLWG9RWHhzc25DaVE3cTR3UVVyeVBPZU1vWjUzZy9kdkZzVHRJNzM3Z29PVmE0aDEya1RxbWVqQ0pFQVBWczRFVVluNzM0Y2NGY1lHNlVIaWJhOTRCYndtSGlQSGpXMjVpU1lpV1dWeWNWbVVMTFl0blIiLCJtYWMiOiIzZjBlZDBhMzE5YmM0MjNkYjc4OTNiNTU0YTZkYzQwZmE3MzgwYWNhZjYwMzBkYjkzMDUyMWRkNDFkNzQzNDdhIiwidGFnIjoiIn0%3D; expires=Sat, 14-Dec-2024 17:24:34 GMT; Max-Age=7200; path=/; secure; samesite=none
laravel_session=eyJpdiI6IitibFZyRkg2V0RRc0dWS3JTcGlyWlE9PSIsInZhbHVlIjoiRnQ2UkVHYStWNHZSOENEV05LWGpTMWRzWVdteHJ0OGY1TzZHTDN0MThxd254VWRvS2NUQWhtcjBURUFDN1ZGUFZzZGY3RHpjMTVHQ3JpTFRyZVZ0K2xFSlozckxGc05UUXNqOVArbDJaQzRFNUlPK1Z4U2RLZ2M3Y1cxUlVQRW0iLCJtYWMiOiI3NzRjYmZlYjhlNjA1NTE0MWIwZmRhOGE3ZTdhMzAzMTY3YWU3NWNhMzkyN2M4NzAxMGEzMmE5MWMwZmI1MDU4IiwidGFnIjoiIn0%3D; expires=Sat, 14-Dec-2024 17:24:34 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none
server: cloudflare
cf-ray: 8f1f33965c8c56c6-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=1179&min_rtt=1169&rtt_var=446&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2826&recv_bytes=1387&delivery_rate=2436270&cwnd=251&unsent_bytes=0&cid=a4d59bcdc73670c6&ts=427&x=0", cfL4;desc="?proto=TCP&rtt=9826&min_rtt=2719&rtt_var=12297&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3201&recv_bytes=1123&delivery_rate=1577342&cwnd=254&unsent_bytes=0&cid=bc6acc123ffd58c2&ts=796&x=0"
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1 | 104.18.94.41 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1 IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/koixl/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/koixl/0x4AAAAAAA12N__cIt5I7H_a/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:24:35 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f1f339eebdf568b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
0.0.0.0