www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
188.114.96.1403 Forbidden 3.7 kB URL User Request GET HTTP/1.1 www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
IP 188.114.96.1:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1796)
Hash c4c960a8d9c631e1abc1761f96d70cf4
6f314ed0290c73206b76f0f2da8fdaed1062431c
aac797c7090af90666eb83cd5af00cb5455bb8c7ebd3d8801dd4e7110aeb1968
Analyzer Verdict Alert fortinet Spam
GET /salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD HTTP/1.1
Host: www.masicvair.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sun, 28 May 2023 14:00:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
cf-chl-bypass: 1
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RdiVg7D6DA0BEaJYiiJ%2Fv%2F7gI0YHksw%2BQyXm6vcWTl6lkUwOm1y8mkqZ5gIFrDCgBDPA7USjUzugEDbodaOXpb9VPXfZrLRH6b%2F1OG%2BFkD%2BrY8P8Obai5mpKxdIKDEfGfuMkQmx6"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ce7069568aeb518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.masicvair.click/cdn-cgi/styles/challenges.css
188.114.97.1200 OK 2.6 kB URL GET HTTP/1.1 www.masicvair.click/cdn-cgi/styles/challenges.css
IP 188.114.97.1:80
Requested by http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
File type ASCII text, with very long lines (6600), with no line terminators
Hash 2c78b7f8fa496092bf41d5edd51611e7
8b0b1b276e8194b0a5497db478ec2ea9b4f83c42
2b0bd09c1cc7119d27e45353a59bf6c2721563e1689853ff704057a7439508d2
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: www.masicvair.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 28 May 2023 14:00:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 25 May 2023 08:39:03 GMT
ETag: W/"646f1ea7-19c8"
Server: cloudflare
CF-RAY: 7ce706961f20b4f4-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Sun, 28 May 2023 16:00:45 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
www.masicvair.click/cdn-cgi/images/trace/captcha/js/transparent.gif?ray=7ce7069568aeb518
188.114.97.1200 OK 42 B URL GET HTTP/1.1 www.masicvair.click/cdn-cgi/images/trace/captcha/js/transparent.gif?ray=7ce7069568aeb518
IP 188.114.97.1:80
Requested by http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Analyzer Verdict Alert fortinet Spam
GET /cdn-cgi/images/trace/captcha/js/transparent.gif?ray=7ce7069568aeb518 HTTP/1.1
Host: www.masicvair.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 28 May 2023 14:00:45 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Thu, 25 May 2023 08:39:03 GMT
ETag: "646f1ea7-2a"
Server: cloudflare
CF-RAY: 7ce706968f9db4f4-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Sun, 28 May 2023 16:00:45 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
www.masicvair.click/cdn-cgi/challenge-platform/h/b/orchestrate/captcha/v1?ray=7ce7069568aeb518
188.114.97.1200 OK 56 kB URL GET HTTP/1.1 www.masicvair.click/cdn-cgi/challenge-platform/h/b/orchestrate/captcha/v1?ray=7ce7069568aeb518
IP 188.114.97.1:80
Requested by http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
File type ASCII text, with very long lines (65536), with no line terminators
Hash bfacf82de0a5f491125fb0453dbb03f3
65a7191096608e93b99a1dca98e558b52173bdb4
cb1be91c242966aff009663e6de03ea91629bc5e60b8463ee6bda1188f70459b
Analyzer Verdict Alert fortinet Spam
GET /cdn-cgi/challenge-platform/h/b/orchestrate/captcha/v1?ray=7ce7069568aeb518 HTTP/1.1
Host: www.masicvair.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD?__cf_chl_rt_tk=rexygeoOxxbLsaV81XBbQIPIliP_Z3QuA_FyJfmYidc-1685282445-0-gaNycGzNBtA
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 28 May 2023 14:00:45 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=39fpWgxy%2FYKBh8f6i589BSTCUkZPvuVsDqopbpe1HFmpwMENbSt%2F6Cpyz%2BaO%2FVasT81JRHadJbaRnoNZIcLpP%2FS4JrzAiOrY5my2QueBj3JC5SrBypRTTnaCqFQqhkEp6Uk2py5A"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ce706968fa1b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.masicvair.click/favicon.ico
188.114.97.1403 Forbidden 3.5 kB URL GET HTTP/1.1 www.masicvair.click/favicon.ico
IP 188.114.97.1:80
Requested by http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1625)
Hash ec4023001fce478e9647a1a11e2514df
40e90fe7b025b0f3977c343032f07d0c0c97ea6a
a0976ec0d0fb776afb270665a0dba646d5834ca181ee61758a845d58b7d6ff26
GET /favicon.ico HTTP/1.1
Host: www.masicvair.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sun, 28 May 2023 14:00:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
cf-chl-bypass: 1
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fqxvw5HNFM1vZ5cetQmrj49RthzqWK%2Bn7TQkCcOf0bAYd4Y7QqGMXS%2B0Mn15L9Pd44OhKr%2BENlxgdIDGElWugXyEvVqVSuTGuf7HmRnGxFoGt%2FjoLtfzPFsK3G3BWUK9qKBHXo%2FY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ce70696bfe9b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.masicvair.click/favicon.ico
188.114.97.1403 Forbidden 3.5 kB URL GET HTTP/1.1 www.masicvair.click/favicon.ico
IP 188.114.97.1:80
Requested by http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1668)
Hash af1db7f9768403d9435636262852644c
50aee5b5d205dfc06dc33c7f957474b4140a8978
419c15abbc85a437f399da6709394e4ee2738314734ed4db5c89437a3bd34c7b
GET /favicon.ico HTTP/1.1
Host: www.masicvair.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
DNT: 1
Connection: keep-alive
Cookie: cf_chl_2=68317f2ecf505d6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sun, 28 May 2023 14:00:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
cf-chl-bypass: 1
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ox%2FBNyTfcD%2FjAw3rhjyjTx89x6hOWbeerNVglJNX501Cue4U7mUii0KFw1c1kQe8%2FZT6wtM9gXaQIbuApXeadFtrh1M4Z%2BEj3hN6H1NM14qdwj20Q%2FoPH%2BxrzyL46q3PzRutBPVp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ce706970d7a0b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.masicvair.click/cdn-cgi/challenge-platform/h/b/flow/ov1/1300481220:1685279346:OINMoK2xj8hSKBRLGfD9brl1Eu7_n8iHztRI1sSIaK4/7ce7069568aeb518/68317f2ecf505d6
188.114.97.1200 OK 5.6 kB URL POST HTTP/1.1 www.masicvair.click/cdn-cgi/challenge-platform/h/b/flow/ov1/1300481220:1685279346:OINMoK2xj8hSKBRLGfD9brl1Eu7_n8iHztRI1sSIaK4/7ce7069568aeb518/68317f2ecf505d6
IP 188.114.97.1:80
Requested by http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
File type ASCII text, with very long lines (7436), with no line terminators
Hash a5b9e1688273249232bbba1aa0eec898
a7054388b2311d1f9e486a8b0338e8b56d75fcfd
2f909bcabcdde1611ebe97abf0586a92acc53c1f4b124a1afc78a37386c6e2c6
Analyzer Verdict Alert fortinet Spam
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1300481220:1685279346:OINMoK2xj8hSKBRLGfD9brl1Eu7_n8iHztRI1sSIaK4/7ce7069568aeb518/68317f2ecf505d6 HTTP/1.1
Host: www.masicvair.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
Content-type: application/x-www-form-urlencoded
CF-Challenge: 68317f2ecf505d6
Content-Length: 1938
Origin: http://www.masicvair.click
DNT: 1
Connection: keep-alive
Cookie: cf_chl_2=68317f2ecf505d6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 28 May 2023 14:00:46 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: 3IfhuRKajsjw7kHHDNhCN4C6fVmeOhDlvEihu4LfXy8SR+YM3yZ1qqfpis7nc3Hg$DllWl3/BE+Y2oYZqlMNZvA==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uryvdbar5xlbQe6wUIJw3eXR9XV7DeZW7KeTXaAnESySvgmQeWFtlVMjKdRDuvSonFN%2FfN5xCqwQBTYuzUdcc5ck4KMblGizJz3wjzD9NnpIgyw3e8SYH%2FDw1703J5Ow02nu4g3H"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ce70697be160b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/60728154:1685279251:ZGx_ly1sfWPNIt8naGcwL17MxFNd_nyVXTa1bhmsmOI/7ce70697f8221c16/e1f734f8fa9e93c
104.18.6.185200 OK 13 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/60728154:1685279251:ZGx_ly1sfWPNIt8naGcwL17MxFNd_nyVXTa1bhmsmOI/7ce70697f8221c16/e1f734f8fa9e93c
IP 104.18.6.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (13216), with no line terminators
Hash 4061ce69e80a9fabf46f2fa2951fd931
a94c6537b63857e3306f25db01420a4c92fa8143
b87b1e742766b1d14522da30369f0b4242a2654b11f92edcf3f45fe4d38075ff
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/60728154:1685279251:ZGx_ly1sfWPNIt8naGcwL17MxFNd_nyVXTa1bhmsmOI/7ce70697f8221c16/e1f734f8fa9e93c HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: e1f734f8fa9e93c
Content-Length: 17440
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 14:00:49 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: JG4CXlsMNT1Wos4tLEdOPAwQCLUj956O7yO/QDYXbHK3Z6oz6xDZdNZIH9Fyrw5h$dSqrxYRua5vBnHaW/gs8Mw==
server: cloudflare
cf-ray: 7ce706afef981c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
104.18.6.185200 OK 24 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
IP 104.18.6.185:443
Requested by http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10899)
Hash 435eec094b016ae354e89251084512a9
b5c8f61371d60fa7d4c17ca304f494ea9a75039b
f6464e54c20226cc8b240ce5deaefd6bc29002907c9ba01827529fff369ea82b
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 14:00:46 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7ce70697f8221c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/turnstile/v0/b/938e2b5c/api.js?onload=_cf_chl_turnstile_l&render=explicit
104.18.6.185200 OK 16 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/938e2b5c/api.js?onload=_cf_chl_turnstile_l&render=explicit
IP 104.18.6.185:443
Requested by http://www.masicvair.click/salvager-unifying/1b64M2395ayJ8511V555dR14fbX34JwwaIGxIvf6IwxsrYsvIwxtvsH4GxwEGsi10aQ2QSddoWe5oU1o06eqTNwD
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (15748)
Hash 2a1262ba5cd32899831d483322a28dd7
3805876db8773ed5820043e1f39b0b6c049f61b2
2e1e45b1d429b2d703676139932fe97b7ffc7986e6d0221653a7404e4c3032f0
GET /turnstile/v0/b/938e2b5c/api.js?onload=_cf_chl_turnstile_l&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.masicvair.click
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 28 May 2023 14:00:45 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce706973f77b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/60728154:1685279251:ZGx_ly1sfWPNIt8naGcwL17MxFNd_nyVXTa1bhmsmOI/7ce70697f8221c16/e1f734f8fa9e93c
104.18.6.185200 OK 77 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/60728154:1685279251:ZGx_ly1sfWPNIt8naGcwL17MxFNd_nyVXTa1bhmsmOI/7ce70697f8221c16/e1f734f8fa9e93c
IP 104.18.6.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash e54f961f2c0a27ef89f5450d9e401c1e
70fca79156e8991680f585bb9b43a7f29389dac7
e85eca57bc2122c9f29959f2305ff42bc1b16a99446e730d49148e778300015e
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/60728154:1685279251:ZGx_ly1sfWPNIt8naGcwL17MxFNd_nyVXTa1bhmsmOI/7ce70697f8221c16/e1f734f8fa9e93c HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: e1f734f8fa9e93c
Content-Length: 2896
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 14:00:46 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: +kN6YUCUnmfpS73iuzlRV/e84Es04Nkgu0apjdX5j7upBv6G/40xXcX14Q84TSJhOW5YNLyB9MPf64yjMNH3x9FTEMiIAC1GyeB9JFs3ED+x/J5vGMNGYLNq79s3PlwAuJEA0Wts+iY3EUyBY9M4bBeuGERaYaWY6GM8ekSUGb4Rtp7BO5oQzILTpktglx+C0NA8ewc6DcMlQwu6xJ9LCJzEfaapckFLHTeAVwPvThU5GsHfPU7EeUIwdxH0YpXnuG2vjZHHiCVIYCLZRY+NAwSa1kgwcN/CwMqzwAjahNF7Iebxcwur3yJNaBCOCYUgi5sn2O5lzI056ySTRymVGWXNGQYx9e9uFto3V+0+5t4=$/PgTKSFV7a+QkglDWeO99A==
server: cloudflare
cf-ray: 7ce70699999b1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/img/7ce70697f8221c16/1685282446345/Pl6QQbx7DHtSGyf
104.18.6.185200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/img/7ce70697f8221c16/1685282446345/Pl6QQbx7DHtSGyf
IP 104.18.6.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type PNG image data, 28 x 83, 8-bit/color RGB, non-interlaced\012- data
Hash cf4433811b72a7063610b184e3b09c94
2981fc592acfc035bab79dc06219fd2322e5e028
88227972a36bc93d6834bf775329e612b0e331732fbcc0da4452275bd8150651
GET /cdn-cgi/challenge-platform/h/b/img/7ce70697f8221c16/1685282446345/Pl6QQbx7DHtSGyf HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 14:00:46 GMT
content-type: image/png
server: cloudflare
cf-ray: 7ce7069a2a171c16-OSL
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7ce70697f8221c16
104.18.6.185200 OK 163 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7ce70697f8221c16
IP 104.18.6.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 163 kB (162944 bytes)
Hash e3b47daf53fb07c6a8cd1e1bfc3ff470
48d57fc88e51f153dd24237e0ffa3a230b154b27
687e295e750ebb04a9573d49221afedea255729cacbb2101cc2cb7350849e110
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7ce70697f8221c16 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/hj53y/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 28 May 2023 14:00:46 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=0, must-revalidate
server: cloudflare
cf-ray: 7ce7069868781c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400