iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
403 Forbidden 3.3 kB URL User Request GET HTTP/1.1 iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5031), with no line terminators
Hash b4db953ed7d55860f9ea7933ae891bca
c9f0cdbbd66fba017b4cb2e511b1349cb167a803
2790616bb5e6a9dc5db47a5f30213df17fd5ff2211e21112c4b41686a249f3a9
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET /?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ== HTTP/1.1
Host: iqlww.hfxcz.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 06 Dec 2023 14:04:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8DPQKRztnD4ky38DjQj6TrP4y796uPMUjCzKWefe%2BRw6jv3oSLWrFfpFz4OQcwJOFfqrJbD3kc9kQdTs3e1YVwP7F4wmWW%2FZimWRB8VJwvJvGew%2Fbwb41K7KbQ6V0%2FV%2FAP4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 831514b53c5056ca-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
iqlww.hfxcz.top/cdn-cgi/styles/challenges.css
200 OK 2.6 kB URL GET HTTP/1.1 iqlww.hfxcz.top/cdn-cgi/styles/challenges.css
IP
Requested by http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
File type ASCII text, with very long lines (6600), with no line terminators
Hash 2c78b7f8fa496092bf41d5edd51611e7
8b0b1b276e8194b0a5497db478ec2ea9b4f83c42
2b0bd09c1cc7119d27e45353a59bf6c2721563e1689853ff704057a7439508d2
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: iqlww.hfxcz.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 14:04:56 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 01 Dec 2023 15:04:24 GMT
ETag: W/"6569f5f8-19c8"
Server: cloudflare
CF-RAY: 831514b77e640b69-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Wed, 06 Dec 2023 16:04:56 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
iqlww.hfxcz.top/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=831514b53c5056ca
200 OK 56 kB URL GET HTTP/1.1 iqlww.hfxcz.top/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=831514b53c5056ca
IP
Requested by http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
File type ASCII text, with very long lines (65536), with no line terminators
Hash 22d6756dce5bb2ab3a63f3fe9fa28a6c
dbbe327b6dbeb5145396501b76f4fca1f4dce479
4e5491bb6ae5183bc6565476ef28e092c2a6b0d343290b1aeeb3d140d5b80c78
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=831514b53c5056ca HTTP/1.1
Host: iqlww.hfxcz.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==&__cf_chl_rt_tk=I85KaBJWMKwqUh8Gdsg8LjGSe2DSTpe.vOZ_fqV58rI-1701871496-0-gaNycGzNBmU
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 14:04:56 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eo1P%2FTz29vudkaD9oKnKvflLmGtr%2BQ%2FSTDZ%2BG5iF3rVT2UKpwB%2BUIRqupXFZQhn17SQU6Z62LzOHzNOI162jRA4UHV31sWvXxnAIeBPl5zGYaq0q0nG2d9vo1ry1QUmFDeI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 831514b7eed10b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
iqlww.hfxcz.top/favicon.ico
403 Forbidden 3.2 kB URL GET HTTP/1.1 iqlww.hfxcz.top/favicon.ico
IP
Requested by http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4795), with no line terminators
Hash b1dc36f615ee0d09f20ab5f94a84b605
81fe2c690d837e0345938ecdbbd14f5be2e42a15
8146ebf9b2d0706afad59680c79259ed4bd0d8642f1df9c66ae41683b369e517
GET /favicon.ico HTTP/1.1
Host: iqlww.hfxcz.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 06 Dec 2023 14:04:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U39sodu0U3inee68ZEPkuKS6DY6eEE%2BNcuX7Q9%2BOE5McPlnv1Yrk5fOHur9Oh7xtK%2ByMBT0aaBKLrWWnfb6YEwE76ymUFexpp0YicIp4wBdx0doMZU%2FxvxysW%2BBsTtXcJhQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 831514b81efb0b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
iqlww.hfxcz.top/favicon.ico
403 Forbidden 3.2 kB URL GET HTTP/1.1 iqlww.hfxcz.top/favicon.ico
IP
Requested by http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4795), with no line terminators
Hash cb875f18e3908977e44068a8afc45142
3d13884a2f249986b3d7d5e073425b6246b42e0a
260acd052292645ab750d45fae6923ea43af94c3eb6bfa91bae3680d233e4ed0
GET /favicon.ico HTTP/1.1
Host: iqlww.hfxcz.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 06 Dec 2023 14:04:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l4mAFenzjJ2CW67IYxhLi4m5KuK6pldj%2Bb1kYg8pXbx%2BpvndDXVvmv%2FDLgm9dsICoXHiPi18ZhGejRArKZPaDw8tF2cbzxdUEzAVuv4pw93ktbsUPSTgtnr5idMj9y0UYms%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 831514b8fee00b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
iqlww.hfxcz.top/cdn-cgi/challenge-platform/h/b/flow/ov1/664787031:1701868967:jgquG6l7AOkwEP3GUVXS9REPyP7p8BNr6hcDvOLaRfo/831514b53c5056ca/56aab589317181c
200 OK 9.6 kB URL POST HTTP/1.1 iqlww.hfxcz.top/cdn-cgi/challenge-platform/h/b/flow/ov1/664787031:1701868967:jgquG6l7AOkwEP3GUVXS9REPyP7p8BNr6hcDvOLaRfo/831514b53c5056ca/56aab589317181c
IP
Requested by http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
File type ASCII text, with very long lines (12712), with no line terminators
Hash 0cb8fac37b564291a5065d51680348f8
54e050a60324643516a296177b8a481b56a3347a
5df095ce154c61b3b4520ef8b89dc9d50dd243297f5b7e66670cbda4bc77a68f
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/664787031:1701868967:jgquG6l7AOkwEP3GUVXS9REPyP7p8BNr6hcDvOLaRfo/831514b53c5056ca/56aab589317181c HTTP/1.1
Host: iqlww.hfxcz.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
Content-type: application/x-www-form-urlencoded
CF-Challenge: 56aab589317181c
Content-Length: 1914
Origin: http://iqlww.hfxcz.top
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 14:04:57 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: BoO0y0sRNqgJIc+boU0uzTI7s80ciZaCT1MfqVmJwOmjl3pHh1/97nNPM1SAP3Ys$h32bBbvuEdxTFb/CV7y+Jg==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BmPLbsK7EveOT4pB13wuAgYM%2FSfgbJD4xIVFy5xbGdTgpu3Eh%2Fdf5lLKZmucksMRzvBsiTXvsilOdX3G%2BVDXj0EPhjY8I483DTddHc5heu7d6npQNTAMPqmoUi6XJo4w%2FCg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 831514baad7d0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
challenges.cloudflare.com/turnstile/v0/b/56d3063b/api.js?onload=CUdK8&render=explicit
200 OK 34 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/56d3063b/api.js?onload=CUdK8&render=explicit
IP
Requested by http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (33875)
Hash 8c90f391245a994ae95e644a587c8626
7bfc99336571d0ccfe38f9e1d18cb26b4adfc316
acbe221d9bb71e85d0a3b52a7a9d44ee4669ab664186b32d0c737a2be62681e7
GET /turnstile/v0/b/56d3063b/api.js?onload=CUdK8&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://iqlww.hfxcz.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:04:57 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 831514b93962568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/831514bb7c6d7127/1701871497889/qYw5N2D0p4FktfZ
200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/831514bb7c6d7127/1701871497889/qYw5N2D0p4FktfZ
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type PNG image data, 67 x 38, 8-bit/color RGB, non-interlaced\012- data
Hash 48b31bae67bf97652dfdcbac6e58227e
0b754abf1ac75bd090af6cf98b6013944eff888c
2bc052806fb403f59e1ae835081b0dbdc88a93be5fa6dc66a5b6e2956b7bbdd2
GET /cdn-cgi/challenge-platform/h/b/i/831514bb7c6d7127/1701871497889/qYw5N2D0p4FktfZ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 06 Dec 2023 14:04:59 GMT
content-type: image/png
server: cloudflare
cf-ray: 831514c86c297127-OSL
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/18519434:1701869118:atDztHIzAUqsC9iB0d08dH815E06_mtIch_o7feso60/831514bb7c6d7127/b12f3c68f0509fa
200 OK 18 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/18519434:1701869118:atDztHIzAUqsC9iB0d08dH815E06_mtIch_o7feso60/831514bb7c6d7127/b12f3c68f0509fa
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (17836), with no line terminators
Hash db881e1aebb0a3fe36f37a77552a2f9a
a93a97da847399e561201dc3ca87a076c4782819
1534285b04a42dee875779cf36cd5b260c203abda6f1246dacaf0b9783239a6a
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/18519434:1701869118:atDztHIzAUqsC9iB0d08dH815E06_mtIch_o7feso60/831514bb7c6d7127/b12f3c68f0509fa HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: b12f3c68f0509fa
Content-Length: 25374
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 06 Dec 2023 14:05:01 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: SjhA2p7fVGCIrnTT9dwAUPQwPsWHKqwRtDtG47F9V/oMlcDRXrXfoFBSMpOaOS/U$PTUquNFTVs6mmV8kcaDdww==
server: cloudflare
cf-ray: 831514d3e9c77127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=831514bb7c6d7127
200 OK 178 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=831514bb7c6d7127
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 178 kB (177986 bytes)
Hash 2dba7c8e26b68254ab1e843791c5f1ca
2c0d652e5e04a8f4af4f8bd04dd68ba6615c5eb1
4a04e691158ed1eabb8732efafd55778760ecdc8e07e853080efcd40894a00cc
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=831514bb7c6d7127 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 06 Dec 2023 14:04:57 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 831514bc2d2b7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
200 OK 73 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
IP
Requested by http://iqlww.hfxcz.top/?itf=sdjqhucGVkcm8uZmFyaWFAc2FmZXR5am9nZ2VyLmNvbQ==
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (40091)
Hash f7929dc722d91ebb063ea8cc0bcea6bd
5dfc3838d5a1451730dd361da543b62e3453c584
59628c824cfd138ccdb26ac2f3a4e964f0be3a3d3b863edc77e56d436046e638
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 06 Dec 2023 14:04:57 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 831514bb7c6d7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/ew4g0I%2FZYomJh1e75pupA0WLfHDXy%2FQKEyLTEDfnNN8%3D
200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/ew4g0I%2FZYomJh1e75pupA0WLfHDXy%2FQKEyLTEDfnNN8%3D
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced\012- data
Hash 9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/ew4g0I%2FZYomJh1e75pupA0WLfHDXy%2FQKEyLTEDfnNN8%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 06 Dec 2023 14:04:57 GMT
content-type: image/png
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 831514bc1d2a7127-OSL
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/18519434:1701869118:atDztHIzAUqsC9iB0d08dH815E06_mtIch_o7feso60/831514bb7c6d7127/b12f3c68f0509fa
200 OK 115 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/18519434:1701869118:atDztHIzAUqsC9iB0d08dH815E06_mtIch_o7feso60/831514bb7c6d7127/b12f3c68f0509fa
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 115 kB (114668 bytes)
Hash 09d3bad14a65e3c26f6adca1c82dae58
867e37788fe80ee5f17d582a66b163d7f2307629
3ac49b304b0151f84f95672cfc01bda38f895fd68bb0180fc16cd05e257464d9
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/18519434:1701869118:atDztHIzAUqsC9iB0d08dH815E06_mtIch_o7feso60/831514bb7c6d7127/b12f3c68f0509fa HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/l4g8i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: b12f3c68f0509fa
Content-Length: 3197
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 06 Dec 2023 14:04:57 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: tH2x3h8iXSnOrd7wTpvgp3c+bimCNWXVhTL1m9DIZi5nGv5pNNUJQdpu7YeGTIovDPSi/eLbOyJ8XvI9KZE64nClWYKsS3lxUtKLRrBLW7F0bk83GMaVsBM8A/OoZQgGSJasFqB7Ikd6NTyMUH1/YXIpXaQnwRs5N5U1FMvA8hwATGGfin2+yQjXjLJEOTPhMLPB7lmsy6zCdIau1WVLIwgErBOGrnE3F3ntixNbDEdCdFVvFOfgtB7AT+wjBU9VrvYSWuD7iO2v1VyEekR6jv8TtEG9ur9sUC8WG6qELg7BhRqy4q1NuCekDdlS5yhl2xarbHqKgawsKloUF5N6fsmO/FZ42oK+lbZQnHTXx4VLit6zZihMboT6FwtU9XrqrGubSn5fE0Rzm5d+jYtABtm3+Q9eVRVhG7wn0xKWcIEiBWZ8VFrqeTej4BbnGSGtsRiQgjIiVDV0HeAuyGK32Q==$jtFtJlulkOLlPt9mPDPTqQ==
server: cloudflare
cf-ray: 831514bdbebc7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
188.114.97.1
104.17.3.184