tap-rt-prod1-t.campaign.adobe.com/r/?id=h9ecb88b%2Cc1e96b3%2C69fe0fb&p1=4.asarpro.ir/?ro=Zi5taWVyQHJoZWFncm91cC5jb20=
52.213.115.2302 Found 17 B URL User Request GET HTTP/1.1 tap-rt-prod1-t.campaign.adobe.com/r/?id=h9ecb88b%2Cc1e96b3%2C69fe0fb&p1=4.asarpro.ir/?ro=Zi5taWVyQHJoZWFncm91cC5jb20=
IP 52.213.115.2:443
Certificate IssuerDigiCert Inc
Subject*.campaign.adobe.com
Fingerprint02:73:C5:AC:F2:AB:07:CE:20:42:35:C2:82:E4:6B:9E:AD:45:E8:DE
ValidityWed, 20 Jul 2022 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash edf537e37d4549950774190c58f93b76
4e2078632eccec8993f151be9338bbcb88ce6f58
afff9c63cfeacd26e5d4000edf576f1386d6729dca783eb45004f484a73a3514
GET /r/?id=h9ecb88b%2Cc1e96b3%2C69fe0fb&p1=4.asarpro.ir/?ro=Zi5taWVyQHJoZWFncm91cC5jb20= HTTP/1.1
Host: tap-rt-prod1-t.campaign.adobe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Content-Type: text/plain; charset=utf-8
Date: Wed, 31 May 2023 15:42:56 GMT
Location: https://4.asarpro.ir/?ro=Zi5taWVyQHJoZWFncm91cC5jb20=
P3P: CP="CAO DSP COR CURa DEVa TAIa OUR BUS IND UNI COM NAV"
Server: Apache
Set-Cookie: AMCV_A7672BA85ECD64E10A495FF4%40AdobeOrg=MCMID%7C55702287085029294071935386755490381823; Domain=adobe.com; Path=/; Expires=Mon, 24-Jun-2024 15:42:56 GMT
nlid=9ecb88b|c1e96b3; Domain=adobe.com; Path=/
nllastdelid=c1e96b3; Domain=adobe.com; Path=/; Expires=Mon, 24-Jun-2024 15:42:56 GMT
X-Robots-Tag: noindex
Content-Length: 17
Connection: keep-alive
4.asarpro.ir/?ro=Zi5taWVyQHJoZWFncm91cC5jb20=
5.135.243.203200 OK 308 B URL User Request GET HTTP/2 4.asarpro.ir/?ro=Zi5taWVyQHJoZWFncm91cC5jb20=
IP 5.135.243.203:443
Certificate IssuerLet's Encrypt
Subject*.asarpro.ir
Fingerprint9E:07:F0:35:D7:00:5F:AF:B5:60:D7:25:25:B2:77:D4:34:22:02:43
ValidityTue, 04 Apr 2023 06:09:24 GMT - Mon, 03 Jul 2023 06:09:23 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e731666d3e297340c1baafd38bdb1086
12f3eb04821214e5dfbcc2b057ee7143c7183fe9
f09d520eddf6d7a00874a1ed8389d691703ba9f06b385777873f6ff4a1985c87
GET /?ro=Zi5taWVyQHJoZWFncm91cC5jb20= HTTP/1.1
Host: 4.asarpro.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 308
content-encoding: br
vary: Accept-Encoding
date: Wed, 31 May 2023 15:42:57 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
n7ubtcvwdp645413cc3bd17.tkdref.ru/cdn-cgi/styles/challenges.css
104.21.18.37 2.7 kB URL n7ubtcvwdp645413cc3bd17.tkdref.ru/cdn-cgi/styles/challenges.css
IP 104.21.18.37:0
File type gzip compressed data, from Unix\012- data
Hash 9816e313faf220ea079ca8d18a8adcbd
e6e12142b69fa0de2595aaf68d6fa46dca8c98b4
a24a05de7d3fe5e71f73eb37ce9f566d60b6398226e7dbc13b917bbc25fa0ba9
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/MZi5taWVyQHJoZWFncm91cC5jb20
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 31 May 2023 15:42:57 GMT
content-type: text/css
last-modified: Thu, 25 May 2023 08:39:03 GMT
etag: W/"646f1ea7-19c8"
server: cloudflare
cf-ray: 7d0054698ebd0b45-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Wed, 31 May 2023 17:42:57 GMT
cache-control: max-age=7200, public
content-encoding: gzip
aadcdn.msauthimages.net/c1c6b6c8-zvamrrcwkxj8cfiebksa67zss6f68opaxvygd6n2vcu/logintenantbranding/0/bannerlogo?ts=637232516931439779
152.199.23.72200 OK 5.8 kB URL GET HTTP/2 aadcdn.msauthimages.net/c1c6b6c8-zvamrrcwkxj8cfiebksa67zss6f68opaxvygd6n2vcu/logintenantbranding/0/bannerlogo?ts=637232516931439779
IP 152.199.23.72:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerMicrosoft Corporation
Subjectaadcdn.msauthimages.net
Fingerprint6B:EB:AC:06:FC:06:82:11:17:1C:6B:72:7D:B5:95:2D:CF:E7:A3:5D
ValidityWed, 08 Mar 2023 11:16:34 GMT - Sat, 02 Mar 2024 11:16:34 GMT
File type PNG image data, 280 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash a1ff470deefc478e7c9eb0a4d8f5568e
bb51978d587b572fad9a9a2916feafb55cb56808
aad570da487b2860b5c960ff836e8919ec3c23715c5093f2353a0165cfeee231
GET /c1c6b6c8-zvamrrcwkxj8cfiebksa67zss6f68opaxvygd6n2vcu/logintenantbranding/0/bannerlogo?ts=637232516931439779 HTTP/1.1
Host: aadcdn.msauthimages.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=86400
content-md5: of9HDe78R458nrCk2PVWjg==
content-type: image/*
date: Wed, 31 May 2023 15:43:02 GMT
etag: 0x8D7E799132F4EE1
last-modified: Thu, 23 Apr 2020 15:14:53 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
vary: Origin
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: b77b4905-901e-006c-03d6-9387e1000000
x-ms-version: 2009-09-19
content-length: 5758
X-Firefox-Spdy: h2
aadcdn.msauthimages.net/c1c6b6c8-zvamrrcwkxj8cfiebksa67zss6f68opaxvygd6n2vcu/logintenantbranding/0/illustration?ts=637232511155692249
152.199.23.72200 OK 163 kB URL GET HTTP/2 aadcdn.msauthimages.net/c1c6b6c8-zvamrrcwkxj8cfiebksa67zss6f68opaxvygd6n2vcu/logintenantbranding/0/illustration?ts=637232511155692249
IP 152.199.23.72:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerMicrosoft Corporation
Subjectaadcdn.msauthimages.net
Fingerprint6B:EB:AC:06:FC:06:82:11:17:1C:6B:72:7D:B5:95:2D:CF:E7:A3:5D
ValidityWed, 08 Mar 2023 11:16:34 GMT - Sat, 02 Mar 2024 11:16:34 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 163 kB (163022 bytes)
Hash 04bfb25c98a980d7032c764b03c801db
6ccc6d72122f883cac99b32445f23bf79151bc18
c8f8a5a7360db3898ae56a5ea307f1b6d091dcb295c0b1aa4e5bc71722b31942
GET /c1c6b6c8-zvamrrcwkxj8cfiebksa67zss6f68opaxvygd6n2vcu/logintenantbranding/0/illustration?ts=637232511155692249 HTTP/1.1
Host: aadcdn.msauthimages.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=86400
content-md5: BL+yXJipgNcDLHZLA8gB2w==
content-type: image/*
date: Wed, 31 May 2023 15:43:01 GMT
etag: 0x8D7E797BB122E62
last-modified: Thu, 23 Apr 2020 15:05:16 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
vary: Origin
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: aaf03741-e01e-000e-37d6-93c039000000
x-ms-version: 2009-09-19
content-length: 163022
X-Firefox-Spdy: h2
n7ubtcvwdp645413cc3bd17.tkdref.ru/jm/f6bee1150304a34e767866c655b62dae64776b0353f2e
104.21.18.37200 OK 6.1 kB URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/jm/f6bee1150304a34e767866c655b62dae64776b0353f2e
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type ASCII text, with very long lines (6175), with no line terminators
Hash 0b3cd9bfcbe6444742df90b00f63efc3
0c978b0541c9659215908034b6299f78135c935c
2065edfabc7924bff8e65b4b4ade30bb341d70ab350518bfbad98e1d4f35266f
GET /jm/f6bee1150304a34e767866c655b62dae64776b0353f2e HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 07 Jun 2023 15:42:59 GMT
last-modified: Wed, 31 May 2023 12:51:25 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BhjAVIK351%2BW7bm4OXo37ePYUuA47hOt2ZRC2Q9LBq7NbB792WbckLr84YPOezveY3SCJbcRHiMGoVD2HDdhpFz%2BALlQsU513reOQOjFoIzUoUKeOkmcl6sm3aVgEKikdo63xKEf%2FQvSsiip6XAMPtIyO54%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d00547f1f270b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
n7ubtcvwdp645413cc3bd17.tkdref.ru/api-as1f?email=f.mier@rheagroup.com&data=logo
104.21.18.37200 OK 168 B URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/api-as1f?email=f.mier@rheagroup.com&data=logo
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 0540ac8fea8b87120b62254cf89640ab
ea5e91ca9c41e07a683462d2fcc34f79e2f2475c
89c370fadd78512e2df1858128efc9f8bc25be3d93a72ab70460c2d278899f8b
GET /api-as1f?email=f.mier@rheagroup.com&data=logo HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k6kjdCIpjTPkPfE3oDVn1Vg3Pukj90pQNqvkAnjnY7wONojAmkLu4C8hEhWOTycohqGbnJEWyWBCq2F93LmDNmKTX30klQdDsiF%2BxCvw42oCW50DmOeiPySeBzD3ZbUMoYVt%2FCsDkFfFXpL0kkCZ9HY%2FUIY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d00548129030b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
n7ubtcvwdp645413cc3bd17.tkdref.ru/api-as1f?email=f.mier@rheagroup.com&data=background
104.21.18.37200 OK 176 B URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/api-as1f?email=f.mier@rheagroup.com&data=background
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash a580e96c7e6cbade911ef226752ec3d1
9b5cfbd9c2cd1cc96ab1695a03c247a7d83d351d
745d7a21683781ddb3134160e1e328c139046a7f6b58f69e2973f5f94a551bdc
GET /api-as1f?email=f.mier@rheagroup.com&data=background HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:02 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AGWQd5d1tXTS%2Bdyd0Q9aIORRdC%2FWq4AJWyukn7QJF%2Bf5C0%2FnA0D0BQi0r9Nr8mB8FCO1t2kDXdgw0n0NxZ5U3zvNgmfeZEJdF8zXekaWQILdTvjtisqkqtZlfYXr8r5iovI9BEIKeOJle9ihculpJcdhxvo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d005481390a0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
n7ubtcvwdp645413cc3bd17.tkdref.ru/MZi5taWVyQHJoZWFncm91cC5jb20
104.21.18.37403 Forbidden 7.8 kB URL User Request GET HTTP/2 n7ubtcvwdp645413cc3bd17.tkdref.ru/MZi5taWVyQHJoZWFncm91cC5jb20
IP 104.21.18.37:443
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7935), with no line terminators
Hash 537357eeb95aba9e2e70d8ffd431b04b
1ca2a6091714f8f49ae0884ce647ae5e3a333ba5
badeb6306a33c8f165c773cac3a2c9653df6680e9331b2b8a3c8c84ace39d578
GET /MZi5taWVyQHJoZWFncm91cC5jb20 HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4.asarpro.ir/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Wed, 31 May 2023 15:42:57 GMT
content-type: text/html; charset=UTF-8
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BB%2Fbo%2F6XKBhvLLHN8nzuv0CeovfGsDBojTNjSSO9heN6unAnbpVjFG0RDEWKqveEocQf2TM5bGyjgOIkpBMy9jixVozvOf59t6dUfzQ3GGFBVjd3T%2F9GWVw9MtB84DSwLipYZZn2RqubKMXHEks2hW2uc70%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d005468af8db500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
n7ubtcvwdp645413cc3bd17.tkdref.ru/boot/f6bee1150304a34e767866c655b62dae64776b0353f28
104.21.18.37200 OK 51 kB URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/boot/f6bee1150304a34e767866c655b62dae64776b0353f28
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type ASCII text, with very long lines (50758)
Hash 67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /boot/f6bee1150304a34e767866c655b62dae64776b0353f28 HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 07 Jun 2023 15:42:59 GMT
last-modified: Wed, 31 May 2023 12:51:25 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RNHcWzV1WIy6OPaU1LWvbv9hH1Ty0vtENZseNt7j8dMNO0UWLTPx7wLKg%2F4dLGqHBtlFfT9cV5spt0d3io4i8KoTUqdUwmQ5nLtYOx0ceGHC32RZyrymMyyJ6PDBYzEnB6blLUa7XrjNsovcPtdtlOIAmDY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d00547f1f290b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/axios@1.4.0/dist/axios.min.js
104.16.123.175200 OK 32 kB URL GET HTTP/2 unpkg.com/axios@1.4.0/dist/axios.min.js
IP 104.16.123.175:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (31803)
Hash 6470a918ba1fd4b8d0882df0269ddb82
97814fdab64aa7d1b30f082f9eb272d4b1ce18a2
fd4ce12a87594281afcee9c73a40fe7acc282bcc9e764fbb3afa1481a96a091e
GET /axios@1.4.0/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"7c62-l4FP2rZKp9GzDwgvnrJy1LHOGKI"
via: 1.1 fly.io
fly-request-id: 01GZP8TZEXW4PFCT61FHX2WRTS-fra
cf-cache-status: HIT
age: 2246873
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d00547f897fb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
104.21.18.37200 OK 24 kB URL User Request GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
IP 104.21.18.37:443
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (22448)
Hash 2f0993edd877a2d957a0b874a4c075a7
ff4059d21eef30e85514956f8c0a2d0d1dcbfa56
42f732486a3fb0e8a8585dffc05f811ed4cd53ea72ebc77e362bbc2dce5f75fa
GET /beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175 HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/MZi5taWVyQHJoZWFncm91cC5jb20?__cf_chl_tk=mxP_gZJjIoeuU_zdXgBQ9m8hZ3TDsiJM6bsb5b1h_wE-1685547777-0-gaNycGzNDBA
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:00 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KRetgteg5MHoa%2FQo1esBxLeAnkaRg6Lzt%2BohY5Tpez7rp9QoFMq4Xnxz9ByxMlm7PjqiD22m9oO2yh2C%2FX0fnPPPnhWfzy9WALacsW9QRUrj6ojBLRj9nRXdmYzgMxU6p0ahWxQvl1Mb%2B9hxcKl006a433Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d00547dcde00b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
n7ubtcvwdp645413cc3bd17.tkdref.ru/jq/f6bee1150304a34e767866c655b62dae64776b0353f25
104.21.18.37200 OK 86 kB URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/jq/f6bee1150304a34e767866c655b62dae64776b0353f25
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /jq/f6bee1150304a34e767866c655b62dae64776b0353f25 HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 07 Jun 2023 15:42:59 GMT
last-modified: Wed, 31 May 2023 12:51:25 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yJ%2FH6sTdCQ9r8RXRlHTQ50NVWxOg53RXxvC5LxqNkzX%2B6yWvftAg2kmESEEW79cc1FGKkhOobw88jhi8ywKLJtl7IfLABQiVt0XWQbdvGF%2Bg4JOwuZfqZC25klYRh98siwAIrwVo1jXNSjRszlOpMkg5qBo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d00547f1f2a0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
n7ubtcvwdp645413cc3bd17.tkdref.ru/o/f6bee1150304a34e767866c655b62dae64776b03c0c46
104.21.18.37200 OK 3.7 kB URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/o/f6bee1150304a34e767866c655b62dae64776b03c0c46
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3695), with no line terminators
Hash d633a913e6f3b1f45774b9874dfc85e0
5ba1344048578062c93cfddfdf8458477eaca476
c1fbfbd9a81fc4d9c9539a65bdfb4c6738926b8d4681b0346706196413e92714
GET /o/f6bee1150304a34e767866c655b62dae64776b03c0c46 HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Wed, 07 Jun 2023 15:42:59 GMT
last-modified: Wed, 31 May 2023 12:51:25 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BfXGKLcgCASim2bIlW2sdbpcJYLQjavowL%2BlJx5OFNsRraJZ8XwHie5eoMImAsgvI0YkCm8vSRuuNLRLvNnhziPbXc0htvRXLyq1zSipcpEnjKh5kLw%2BK3CEOsQ4k70JJs1VGz%2Bm%2FMWPwPCt0HSIivvmpJA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d00548118fa0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
n7ubtcvwdp645413cc3bd17.tkdref.ru/ic/f6bee1150304a34e767866c655b62dae64776b03c0c1f
104.21.18.37200 OK 17 kB URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/ic/f6bee1150304a34e767866c655b62dae64776b03c0c1f
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Hash 12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /ic/f6bee1150304a34e767866c655b62dae64776b03c0c1f HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: image/x-icon
cache-control: public, max-age=604800
expires: Wed, 07 Jun 2023 15:43:00 GMT
last-modified: Wed, 31 May 2023 12:51:25 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pPBCYy2%2FtJBIeJHspcx%2F3Yf0f0FkhdET09CPDj1WQjkALbjCPPHrmqOVvRNzxT6t36uuXR0D7dR4WjHKJxK9S7O%2F%2B4ez%2BXItFH9h0N%2BxFjKJ9j47jtgwDCPBCVDiREEvoyMoI%2B2usBytoh13qjMJN55iols%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d005483ab4e0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/axios/dist/axios.min.js
104.16.123.175302 Found 32 kB URL GET HTTP/2 unpkg.com/axios/dist/axios.min.js
IP 104.16.123.175:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /axios/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 31 May 2023 15:43:01 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /axios@1.4.0/dist/axios.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01H1S79YX96747ARFXC2S6R0RT-arn
cf-cache-status: HIT
age: 332
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d00547f591cb523-OSL
X-Firefox-Spdy: h2
n7ubtcvwdp645413cc3bd17.tkdref.ru/favicon.ico
0.0.0.0 0 B URL GET n7ubtcvwdp645413cc3bd17.tkdref.ru/favicon.ico
IP 0.0.0.0:0
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
n7ubtcvwdp645413cc3bd17.tkdref.ru/e/f6bee1150304a34e767866c655b62dae64776b03c0c4d
104.21.18.37200 OK 513 B URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/e/f6bee1150304a34e767866c655b62dae64776b03c0c4d
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (529), with no line terminators
Hash adc405f5fd089662209870ca5d2106f7
3a8b776df84bf251afc6ddd802cc5bbeddfb0e36
e7bacc97751689afaae192e103fe9851664365c57c7d783560860ad456db7e49
GET /e/f6bee1150304a34e767866c655b62dae64776b03c0c4d HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Wed, 07 Jun 2023 15:42:59 GMT
last-modified: Wed, 31 May 2023 12:51:25 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KhpqH%2F1w2BTjEw9qwUS38vgMKHIcfPR7H09mm3F1OUNQk5x9WmRT1lyFdHHoPwKx189Gp3rn%2FKuFF5TDFBCU4nQN0yCgjx5DYph4C1UEJW7h74FpP7QBD7CeBx%2BpHmNzx0mRXXZusQ305CRdMF4vccRkKjk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d00548129000b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
n7ubtcvwdp645413cc3bd17.tkdref.ru/MZi5taWVyQHJoZWFncm91cC5jb20
104.21.18.37302 Found 24 kB URL User Request POST HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/MZi5taWVyQHJoZWFncm91cC5jb20
IP 104.21.18.37:443
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /MZi5taWVyQHJoZWFncm91cC5jb20 HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/MZi5taWVyQHJoZWFncm91cC5jb20?__cf_chl_tk=mxP_gZJjIoeuU_zdXgBQ9m8hZ3TDsiJM6bsb5b1h_wE-1685547777-0-gaNycGzNDBA
Content-Type: application/x-www-form-urlencoded
Content-Length: 3254
Origin: https://n7ubtcvwdp645413cc3bd17.tkdref.ru
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 31 May 2023 15:43:00 GMT
content-type: text/html; charset=UTF-8
location: ./beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
set-cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; path=/; expires=Thu, 30-May-24 15:42:59 GMT; domain=.tkdref.ru; HttpOnly; Secure; SameSite=None
PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9WhlFp%2FI5m7tOYUvjW82omv0X8IEyEbcJI%2Bk0OzWs0jZQ9xWXSmKIEHr%2BBAuBupzXxbq9jxq27s%2B%2BT4SlP84qEmmtJmPCX0ssszSJueEqhZb0M6w72QVGiraDBvhGCS5otqrwnFSb%2F5OWL4hb6qR9%2FAVvHw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d005478f9120b45-OSL
alt-svc: h3=":443"; ma=86400
n7ubtcvwdp645413cc3bd17.tkdref.ru/2
104.21.18.37200 OK 38 kB URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/2
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2 HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oyGVT78n5eMwgYHyfnhPiATCYmFsT16%2FKcfjTAJcswtiFg24QmYE8JZcKCqkdI1Tgq22QPMLsQwbp2NQyqH758x56utT4y73aTkzc5nDzMzYqPcH6J8Fljw8t%2FCfclzS%2B550uZrrUfk9rn1wQQUZd05JYjo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d005480987b0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
n7ubtcvwdp645413cc3bd17.tkdref.ru/APP-WJW7AW/f6bee1150304a34e767866c655b62dae64776b03c0c24
104.21.18.37200 OK 105 kB URL GET HTTP/3 n7ubtcvwdp645413cc3bd17.tkdref.ru/APP-WJW7AW/f6bee1150304a34e767866c655b62dae64776b03c0c24
IP 104.21.18.37:443
Requested by https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Certificate IssuerLet's Encrypt
Subjecttkdref.ru
Fingerprint88:CA:2E:BD:1D:C3:DC:F6:AE:8B:B9:66:29:E8:1D:0B:1D:CD:4B:E0
ValiditySun, 14 May 2023 20:55:10 GMT - Sat, 12 Aug 2023 20:55:09 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 105 kB (105369 bytes)
Hash 8e6b0f88563f9c33f78bce65cf287df7
ef7765cd2a7d64ed27dd7344702597aff6f8c397
a7057bebfff43e7281ca31da00d40bd88c8d02d1576b9c45891dd56a3853269a
GET /APP-WJW7AW/f6bee1150304a34e767866c655b62dae64776b03c0c24 HTTP/1.1
Host: n7ubtcvwdp645413cc3bd17.tkdref.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n7ubtcvwdp645413cc3bd17.tkdref.ru/beebb091955c06fa68b3eb8afc0bae5164776b0347172PASbeebb091955c06fa68b3eb8afc0bae5164776b0347175
Cookie: cf_clearance=k35qJn..jF87NYNDITrzcAhqEatGJca9whPsOAit8Ec-1685547777-0-160; PHPSESSID=07e40feae70a5f9f282ed735d9b1e9b0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 31 May 2023 15:43:01 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 07 Jun 2023 15:42:59 GMT
last-modified: Wed, 31 May 2023 12:51:25 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B5WfjrCduBLJQMuZeIl7lpKZ0S7y4w7cnkiOQ%2BQ1i5t0bEP%2FP3c%2F1o0lSoCYO7egMe7CARoSuON4PQmg%2FMsCr3E%2F3k8lYGqPz9th%2BQs473ygRtgo9DYf4bWJtiymgaA%2BJNVHgYUx5BwMBvTSZbdKey2Lkfk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d005481391f0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400