ad-delivery.net/px.gif?ch=2
172.67.69.19200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=2
IP 172.67.69.19:443
Requested by https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:7E:C3:56:0A:04:84:BD:24:32:3D:C3:8E:66:52:26:37:E8:90:D3
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://protect4.botcaptcha-verify.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:39:58 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPp0wgCF-V8nWRRFweDLkLlZ59B9_HaB5uMb_BoI2XEvFDluZgJZMS-L6RsjtVqwyDwhSyI
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 23 Nov 2023 04:40:57 GMT
cache-control: public, max-age=86400
age: 1079484
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bzpGuADqvehS7ox%2FE9Yj%2Fq3h6ZGCV73tynu9VWAidLJto1GwVvGOgZKvBdCCPRYMwFxaVzi6MPfP94BQriqPrbQRMW4TSxw53H9z%2BcmDeLTI8HkFX42X81TkUBWu75721g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d6287e99f56be-OSL
X-Firefox-Spdy: h2
protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
188.114.97.1200 OK 6.0 kB URL User Request GET HTTP/2 protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
IP 188.114.97.1:443
Certificate IssuerGoogle Trust Services LLC
Subjectbotcaptcha-verify.online
Fingerprint52:BC:97:39:63:90:9D:D6:53:F1:BC:05:B9:89:E6:65:64:A3:D3:22
ValidityWed, 08 Nov 2023 12:37:10 GMT - Tue, 06 Feb 2024 12:37:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 9bc5f68860b87e8e1914e91690d23ddf
4335b505c363069ab3fbfdd6870eba3ef140e198
328b3ed489fa55f3ebe2b20e88a16293234191968f334762d6f68b5ddf6acf94
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0= HTTP/1.1
Host: protect4.botcaptcha-verify.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:39:57 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=0
last-modified: Tue, 28 Nov 2023 20:27:29 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4MAG4s8IgEO%2B%2BXTawoEn1dMzP%2F%2FJ0HNJmgE30e8H8HtrIuIKqxJxz6hQA11gOo8XR1lnIwQceibGd4wvnmVWMFC%2FsW1nj3WYwJDXGZ6bTHMm31XcxgP3%2BiC2zewU57Jd4SSS9u9foINNco5IHzDXG5Tnbas%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830d62844b775699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/animation.css
143.204.55.121200 OK 722 B URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.10.09-09.27/v2/animation.css
IP 143.204.55.121:443
Requested by https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 520016f3fad41f77bb889758ac030aaf
48ca24438fbec42628371ec9320c6730a887f3e8
c8c900ec5cbe9ef18bea37051bc2bf2aa9846c2ce787d248f2451575e2a372fd
GET /assets/cbjs-2023.10.09-09.27/v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://protect4.botcaptcha-verify.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 722
last-modified: Tue, 10 Oct 2023 04:38:56 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: foyXDctj67AQ38AQugjXyXC8alSOBAgn
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Tue, 05 Dec 2023 15:36:04 GMT
cache-control: max-age=300,public
etag: "520016f3fad41f77bb889758ac030aaf"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zvjh3V1k38uCb12Q6LgX8KDAtDTqJ9iDekYzTw-7DL8ciDbitTkO7g==
age: 251
X-Firefox-Spdy: h2
protect4.botcaptcha-verify.online/public/img/logo.png
188.114.97.1200 OK 15 kB URL GET HTTP/3 protect4.botcaptcha-verify.online/public/img/logo.png
IP 188.114.97.1:443
Requested by https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Certificate IssuerGoogle Trust Services LLC
Subjectbotcaptcha-verify.online
Fingerprint52:BC:97:39:63:90:9D:D6:53:F1:BC:05:B9:89:E6:65:64:A3:D3:22
ValidityWed, 08 Nov 2023 12:37:10 GMT - Tue, 06 Feb 2024 12:37:09 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 09c754ad1c663c4478489bb1648e439b
39c52cf6ace0dff4bf06457a7bd856534f314319
6227e69f1c3711825b5166ddcbd07539e556ce7068917ad7701a5af5b4814f33
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /public/img/logo.png HTTP/1.1
Host: protect4.botcaptcha-verify.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:39:58 GMT
content-type: image/png
content-length: 14910
access-control-allow-origin: *
cache-control: public, max-age=14400
last-modified: Sat, 14 Oct 2023 11:15:41 GMT
etag: W/"3a3e-18b2de62b48"
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wP2OP6zINx4TzIZeypk1FblOTfLEkj5njbq9gOhwNSZnRVFm%2F320JHP55DFgERKbEzPcJkqik%2FSnwFFO5AIhIT8X%2F3Y4wQs%2FZfPuqIgxW6k1UhqpC%2FBTet2PW%2Fvk365ci0txBfrnm6Yo8MzKrroKBxPUuiw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d62879ca7712e-OSL
alt-svc: h3=":443"; ma=86400
cdn.discordapp.com/icons/956436019383775312/a_381662218862fbd8cf953e736da4a3d5.gif?size=128
162.159.133.233200 OK 118 kB URL GET HTTP/2 cdn.discordapp.com/icons/956436019383775312/a_381662218862fbd8cf953e736da4a3d5.gif?size=128
IP 162.159.133.233:443
Requested by https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Certificate IssuerCloudflare, Inc.
Subjectdiscordapp.com
Fingerprint97:8B:EE:AD:1E:BF:A1:69:E7:94:29:F7:55:7A:29:64:19:C7:81:39
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File type GIF image data, version 89a, 96 x 96\012- data
Size 118 kB (117544 bytes)
Hash 823a8b672544326fe2303e48a513d861
202a41fef559b0d59dd735b894362a9859ba1b5f
05bab69856e80696a13167406c05074c529b69ca0b990db53af620ffd113c7af
GET /icons/956436019383775312/a_381662218862fbd8cf953e736da4a3d5.gif?size=128 HTTP/1.1
Host: cdn.discordapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://protect4.botcaptcha-verify.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:39:58 GMT
content-type: image/gif
content-length: 117544
expires: Wed, 04 Dec 2024 15:39:58 GMT
last-modified: Tue, 05 Dec 2023 14:55:23 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1389
accept-ranges: bytes
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8U%2BWxhrlS4LVsyqqT8iLAGuonqOjctS%2FhqXoJxNt2qJKXf8PgKzuktkU89BhKIQhPy97TDWjx%2BjNE7iMla%2FYsP4kzVpdbJfa%2FYVp9sgHH%2BgGgE%2BQwMtt8MaKy8pS2svOhM%2BLyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: __cf_bm=LT9zTKUUZHELjFSYie0BQZ34QDtM2tzfBheCw5V1a2Y-1701790798-0-AV0pXbejjTbHHZN/qnnRbTu52CvplK8HHI5J2JgO65RJxAZELhGQRebzNz+AMDx95TRtdfueMj2jixG+f1O8zgI=; path=/; expires=Tue, 05-Dec-23 16:09:58 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
_cfuvid=t0.Gor0Smlt8YQ6i9HRc32tTh5W02DSDWCw0GRj4Yl8-1701790798336-0-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 830d62898b4956c4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
protect4.botcaptcha-verify.online/public/img/logo.png
188.114.97.1200 OK 15 kB URL GET HTTP/3 protect4.botcaptcha-verify.online/public/img/logo.png
IP 188.114.97.1:443
Requested by https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Certificate IssuerGoogle Trust Services LLC
Subjectbotcaptcha-verify.online
Fingerprint52:BC:97:39:63:90:9D:D6:53:F1:BC:05:B9:89:E6:65:64:A3:D3:22
ValidityWed, 08 Nov 2023 12:37:10 GMT - Tue, 06 Feb 2024 12:37:09 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 09c754ad1c663c4478489bb1648e439b
39c52cf6ace0dff4bf06457a7bd856534f314319
6227e69f1c3711825b5166ddcbd07539e556ce7068917ad7701a5af5b4814f33
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /public/img/logo.png HTTP/1.1
Host: protect4.botcaptcha-verify.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:39:58 GMT
content-type: image/png
content-length: 14910
access-control-allow-origin: *
cache-control: public, max-age=14400
last-modified: Sat, 14 Oct 2023 11:15:41 GMT
etag: W/"3a3e-18b2de62b48"
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aeNgUBeKiVjjvmi9mloCObAF%2B24O3VEtBeKSZafG0YNOTiOZKMyxVEH2WzswtuOqMl85Dy67BNypPMIZ42nS%2BmDSrXnp6Z7xCUdJa0f7KI1594PooeepYNkj1FMSwgh2IpEKdaUGdMpE4gHN2HPr0F6VB3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d628a8fbb712e-OSL
alt-svc: h3=":443"; ma=86400
protect4.botcaptcha-verify.online/public/css/css1.css
188.114.97.1200 OK 775 B URL GET HTTP/3 protect4.botcaptcha-verify.online/public/css/css1.css
IP 188.114.97.1:443
Requested by https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Certificate IssuerGoogle Trust Services LLC
Subjectbotcaptcha-verify.online
Fingerprint52:BC:97:39:63:90:9D:D6:53:F1:BC:05:B9:89:E6:65:64:A3:D3:22
ValidityWed, 08 Nov 2023 12:37:10 GMT - Tue, 06 Feb 2024 12:37:09 GMT
File type ASCII text, with very long lines (833), with no line terminators
Hash b1b970e2b2e73aa928925516f52ae5f2
119b52471f6f7185cddc88154e7c95b029285d55
70caa43d804ad724cd1a20e4a81a55dd321d8f1c2a537f47a9d45706e8226018
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /public/css/css1.css HTTP/1.1
Host: protect4.botcaptcha-verify.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:39:58 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=14400
last-modified: Sat, 14 Oct 2023 11:16:22 GMT
etag: W/"307-18b2de6cb70"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ydp1ZwOhMjkLY4R5kTklXRR34jrrIWAjgohKWuahFm9f%2Fg1%2F6elgfhl%2FI9mvj5zxP8LViIFnNDPZ2L%2Fneh8VLJk7Nax7erqwfeWfhufAS67B6MXJCZ%2BdT%2Fr2zwr8ZigLd5fDd9xjwcwOTE2uDV3MZYOdf5Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d62879ca1712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
protect4.botcaptcha-verify.online/public/js/adcf9ed6.js
188.114.97.1200 OK 968 B URL GET HTTP/3 protect4.botcaptcha-verify.online/public/js/adcf9ed6.js
IP 188.114.97.1:443
Requested by https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Certificate IssuerGoogle Trust Services LLC
Subjectbotcaptcha-verify.online
Fingerprint52:BC:97:39:63:90:9D:D6:53:F1:BC:05:B9:89:E6:65:64:A3:D3:22
ValidityWed, 08 Nov 2023 12:37:10 GMT - Tue, 06 Feb 2024 12:37:09 GMT
File type ASCII text, with very long lines (1034), with no line terminators
Hash a5b15446344cb7705b65db541ba2ce8d
3ebfe877253e8abad043fd347718792752d2338f
a8bfe1e58f814dbd44e90bc97e67f1de29e4b7c39ba564ad3cde9ff1a59660ec
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /public/js/adcf9ed6.js HTTP/1.1
Host: protect4.botcaptcha-verify.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:39:58 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=14400
last-modified: Sat, 14 Oct 2023 13:22:41 GMT
etag: W/"3c8-18b2e5a70e8"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zcGEAL7jjnrGhQpetUJfRt3vP5JZVFFCwB0IBikuIzuUkBSbszyja9BJmMisUSMJXHaD91GSyGCfPxcHZZlgSHtpIVl19A16G%2FA6xSEN4A%2BWSrgUV3ynKXYruCphK3pbNxfU4exWouWXdFMtYIzCNotNnOs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d62879ca6712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ad-delivery.net/px.gif?ch=1&e=0.7088262389751865
172.67.69.19200 OK 43 B URL GET HTTP/2 ad-delivery.net/px.gif?ch=1&e=0.7088262389751865
IP 172.67.69.19:443
Requested by https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:7E:C3:56:0A:04:84:BD:24:32:3D:C3:8E:66:52:26:37:E8:90:D3
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.7088262389751865 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://protect4.botcaptcha-verify.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:39:58 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPp0wgCF-V8nWRRFweDLkLlZ59B9_HaB5uMb_BoI2XEvFDluZgJZMS-L6RsjtVqwyDwhSyI
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 23 Nov 2023 04:40:57 GMT
cache-control: public, max-age=86400
age: 1079484
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KCfdg%2BhizEKPeTcfP7Iyv93GBEABlL4rQadOVcMkvjYPIM3onuQXI%2B13nMvTtBOxnNjMn2EPbVmAnSbvUS%2BxTp7ibS7C5owDg%2FrnSQg6Uqrvi0%2BfOXCvzL3LSfghHgorcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d6287e9a056be-OSL
X-Firefox-Spdy: h2
protect4.botcaptcha-verify.online/public/css/css2.css
188.114.97.1200 OK 56 kB URL GET HTTP/3 protect4.botcaptcha-verify.online/public/css/css2.css
IP 188.114.97.1:443
Requested by https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Certificate IssuerGoogle Trust Services LLC
Subjectbotcaptcha-verify.online
Fingerprint52:BC:97:39:63:90:9D:D6:53:F1:BC:05:B9:89:E6:65:64:A3:D3:22
ValidityWed, 08 Nov 2023 12:37:10 GMT - Tue, 06 Feb 2024 12:37:09 GMT
File type ASCII text, with very long lines (11029), with CRLF line terminators
Hash 6dc1ae326a7d470f2cc8d1f4790fcd4c
68514999effb3d6c3a4127aeb0a3b616058f83f3
771e7c1cbc2175cbff3f975636b57d860fb14825f7759960113f279ec89a5aa3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /public/css/css2.css HTTP/1.1
Host: protect4.botcaptcha-verify.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://protect4.botcaptcha-verify.online/verify?id=956436019383775312&data=eyJjbGllbnRJZCI6IjU2ODA3ODQ1MzQ2ODAzNzE1MCIsImV4cGlyZXMiOjE3MDE3OTEyMDEzNzMsIm5hbWUiOiIlRjAlOUYlOEQlOTElMjBOU0ZXJTIwJTJCMTglMjAlMkYlMjBURUVOIiwibWVtYmVycyI6MjkyLCJpY29uIjoiaHR0cHM6Ly9jZG4uZGlzY29yZGFwcC5jb20vaWNvbnMvOTU2NDM2MDE5MzgzNzc1MzEyL2FfMzgxNjYyMjE4ODYyZmJkOGNmOTUzZTczNmRhNGEzZDUuZ2lmP3NpemU9MTI4In0=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:39:58 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=14400
last-modified: Sat, 14 Oct 2023 11:16:32 GMT
etag: W/"da51-18b2de6f280"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5jysg27oPCnnn6SgKGIiTadsvwF0DQl%2BRnNkIvuzihtVf8pcjADZsrYW8ToQaZ7hsbyDdhFHQzcnSZq0OZLQfg%2F7Znol%2B7GXS3JHn%2BmSqjkqRbIqPU2adSd6oO%2Bb3Tjl8FUZBDtXvzub7fVVdM6zIJbFvtA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d62879ca2712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400