Report - ubs.sabsecurities.co.uk/cm9iZXJ0LmxldnlAdWJzLmNvbQ==

Report Overview

Visited public
2023-08-25 23:48:43
Tags
URL
ubs.sabsecurities.co.uk/cm9iZXJ0LmxldnlAdWJzLmNvbQ==
Finishing URL
helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce
IP / ASN
176.74.19.164
#41000 Freethought Internet Limited
Title
helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20 07:02:03	2023-08-25 05:10:53	1.3 kB	21 kB	104.17.3.184
unpkg.com	11693	2016-01-06	2016-01-08 00:26:01	2023-08-25 05:28:11	838 B	65 kB	104.16.125.175
ubs.sabsecurities.co.uk	unknown	2010-02-08	2023-08-24 22:23:56	2023-08-25 17:44:26	508 B	320 B	176.74.19.164
helpdesk-esupport.com	unknown	2023-08-21	2023-08-21 22:18:19	2023-08-25 05:21:23	11 kB	195 kB	172.67.180.167

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-08-25 23:48:26	low	104.21.43.153	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
2023-08-25 23:48:26	low	104.21.43.153	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
2023-08-25 23:48:26	low	104.21.43.153	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce IP 104.21.43.153 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 18:45 Times Seen4656606 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	Function	34 B	2023-04-11	2025-05-11
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16 Last Seen2025-05-11 18:42 Times Seen67037 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	unpkg.com/axios/dist/axios.min.js	ScriptElement	32 kB	2023-04-28	2025-05-05
Pretty URL unpkg.com/axios/dist/axios.min.js IP 104.16.125.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-28 01:15 Last Seen2025-05-05 18:48 Times Seen2658 Hash 6470a918ba1fd4b8d0882df0269ddb82 97814fdab64aa7d1b30f082f9eb272d4b1ce18a2 fd4ce12a87594281afcee9c73a40fe7acc282bcc9e764fbb3afa1481a96a091e Loading...

		Size	First Seen	Last Seen
	#1 Eval - 7ef493ad68fb0d9b2c195a12fb26e4ae	1.9 kB	2024-08-21 08:03	2024-08-21 08:03
Pretty Observations First Seen2024-08-21 08:03 Last Seen2024-08-21 08:03 Times Seen2 Hash 7ef493ad68fb0d9b2c195a12fb26e4ae 523fc65dd08c9b6321826764596b970b32c8f890 66e7408a20c3582b01629f0fe9fc571c43ed5e5aa51d6acd4ebb5e7560533f52 Loading...

	#2 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07 01:03	2025-05-11 18:43
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 18:43 Times Seen369107 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#3 Eval - 509c499ca5fc0afe98e5894b1c76cc12	567 B	2024-08-21 08:03	2024-08-21 08:03
Pretty Observations First Seen2024-08-21 08:03 Last Seen2024-08-21 08:03 Times Seen1 Hash 509c499ca5fc0afe98e5894b1c76cc12 bfd26115b4c68da2535c60d3c4fa9a2a793b80da f380252f721c874208d5b941bbf758e09294ce7705a2396cd9aa0848a6fca6c7 Loading...

	#4 Eval - c65db8df416d37bb78361c8a69e8546e	2.0 kB	2024-08-21 08:03	2024-08-21 08:03
Pretty Observations First Seen2024-08-21 08:03 Last Seen2024-08-21 08:03 Times Seen1 Hash c65db8df416d37bb78361c8a69e8546e c5ae2a38ac3c2133cfa6f9cd5f1809f18350eddb 22fffff7bfa155117593dde7a5adb554e13a3f41b2ea9fdd241e6ca991095e7e Loading...

		Size	First Seen	Last Seen
	#1 Write - bf6d8993bd45b3f22f12b81da47f8bc6	3.6 kB	2023-08-16 12:05	2024-08-21 08:36
Pretty Observations First Seen2023-08-16 12:05 Last Seen2024-08-21 08:36 Times Seen2609 Hash bf6d8993bd45b3f22f12b81da47f8bc6 93010ad068ab338fdb8a4c489d7d0715911e6278 bc4d17d30d824e3e9b6592bacbe1461cb4716098f887f635fb265a278a80bec5 Loading...

HTTP Transactions (24)

	URL	IP	Response	Size
	ubs.sabsecurities.co.uk/cm9iZXJ0LmxldnlAdWJzLmNvbQ==	176.74.19.164		0 B
URL ubs.sabsecurities.co.uk/cm9iZXJ0LmxldnlAdWJzLmNvbQ== IP 176.74.19.164:0 ASN #41000 Freethought Internet Limited File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /cm9iZXJ0LmxldnlAdWJzLmNvbQ== HTTP/1.1 Host: ubs.sabsecurities.co.uk User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found x-powered-by: PHP/7.4.33 location: https://helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d content-length: 0 content-type: text/html; charset=UTF-8 date: Fri, 25 Aug 2023 23:48:26 GMT server: Apache X-Firefox-Spdy: h2`

	helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d	172.67.180.167		8.4 kB
URL helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d IP 172.67.180.167:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7243), with no line terminators Size 8.4 kB (8391 bytes) Hash 9933d98272a9c9943be31dc0bd976b8c 75acf14bf36c845bd87712edbe7844e5f17374dc 6c737f28cd2474a5781b6c7b0413c3cf2f43f0d9ace5787c61f7adb84649bee0 HTTP Headers GET /Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 403 Forbidden date: Fri, 25 Aug 2023 23:48:27 GMT content-type: text/html; charset=UTF-8 cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin x-frame-options: SAMEORIGIN cf-mitigated: challenge cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 expires: Thu, 01 Jan 1970 00:00:01 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F5kqQ654Z5Xh4PzinxtlOlZo5RexyPaE1Rgwo0tSvLYPVjvIiULmgaHYJSvK1JIMMgD%2FduZeHApATdRG84%2B7R9rn8mhwbTPIc62FAXdOsdLOh%2FKiCRaYtlIrf3xFbVFM9XFVgIaZuew%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7fc7b9d8af08b4eb-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	helpdesk-esupport.com/cdn-cgi/styles/challenges.css	104.21.43.153		2.6 kB
URL helpdesk-esupport.com/cdn-cgi/styles/challenges.css IP 104.21.43.153:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (6600), with no line terminators Size 2.6 kB (2624 bytes) Hash 2c78b7f8fa496092bf41d5edd51611e7 8b0b1b276e8194b0a5497db478ec2ea9b4f83c42 2b0bd09c1cc7119d27e45353a59bf6c2721563e1689853ff704057a7439508d2 HTTP Headers `GET /cdn-cgi/styles/challenges.css HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 25 Aug 2023 23:48:28 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Wed, 23 Aug 2023 13:09:20 GMT ETag: W/"64e60500-19c8" Server: cloudflare CF-RAY: 7fc7b9db393a0b4d-OSL X-Frame-Options: DENY X-Content-Type-Options: nosniff Vary: Accept-Encoding Expires: Sat, 26 Aug 2023 01:48:28 GMT Cache-Control: max-age=7200, public Content-Encoding: gzip`

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=7fc7b9da0d44b517	104.21.43.153		55 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=7fc7b9da0d44b517 IP 104.21.43.153:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65536), with no line terminators Size 55 kB (54802 bytes) Hash 68d53e7141262dee8ea853fcaa5973dc 6b4383f44362f1d3a7e4327328c10e5a6ffd35cb daab34747daee37564dc02e6b71336fd04798d0fa3a8e625edc08e5c13cbf5b7 HTTP Headers GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=7fc7b9da0d44b517 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d?__cf_chl_rt_tk=Z6sAkE5EKRfFPKqWdeAhUEDzBZKf5h4qz.k5cQ0OgP0-1693007307-0-gaNycGzNB9A DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Fri, 25 Aug 2023 23:48:28 GMT Content-Type: application/javascript; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V%2BKUa83VpQLZRed0xEv33BsTsVSOOe%2FHRIrjF%2BMh%2FnHLs30%2B5NIC3Op8PpLpoZ7nVWLZy%2B4kBjjaoFgICagrMcKC5ir%2B7sVj2L3fkAMOShwkUNGGaMilNiUshoL2u6TMyGtH%2FMAG5NM%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fc7b9db79680b4d-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/favicon.ico	104.21.43.153	403 Forbidden	3.3 kB
URL GET HTTP/1.1 helpdesk-esupport.com/favicon.ico IP 104.21.43.153:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators Size 3.3 kB (3306 bytes) Hash 98cccbe552cb9fb0b63baff1cbbae9e6 5ef8db1e6464dbef34beb2be95a8e685fa95cc8f ea6da85e8bd68fc48989a901bba2de168703491b6fa66630b46e8c24d9b2b19d HTTP Headers `GET /favicon.ico HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Fri, 25 Aug 2023 23:48:28 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lgdy7M4U9jdoYWBbtB89Ux17iH27UwK6yCYdIEhvnbrU3qGyQgV1xKi2Kf%2FBcn2pN%2BDSeTRDxawwD4zYiW0qJL5fZe1uTUsGKSn%2Fs63CF2DBtVfnbPdjWCXPiKwxc1lU2RS2oeeE%2FPU%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fc7b9dba9980b4d-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/favicon.ico	104.21.43.153	403 Forbidden	3.3 kB
URL GET HTTP/1.1 helpdesk-esupport.com/favicon.ico IP 104.21.43.153:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators Size 3.3 kB (3306 bytes) Hash 93a2106aa1b718132f683761a3b87bb2 94bc63099c089775cd49c3929fac65e01154197c 7aecf36b99c9677942979f977c61bf8be9bddf5c589357df6b791111e542e33a HTTP Headers `GET /favicon.ico HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Fri, 25 Aug 2023 23:48:28 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2FofbfzoN4VORLjhL%2BvBqHXmjqj89k7waM%2FyKHQMCMfiHYRLAGm2GZBKzOKRrw6PP%2FJS%2BxXNqD8%2BGlAPKHZB%2FPkcuL1TdOnW1EM77ZCgm6yK52jnELtbD1uOPvkoqpIItkktgqMelkg%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fc7b9dbea75b4f1-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1791813297:1693005854:2zIxC9tI7QMyB3wzVmaYMtl6cfWi_Bn6wMpy8Evowrc/7fc7b9da0d44b517/f42907b61cd9af1	104.21.43.153		7.4 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1791813297:1693005854:2zIxC9tI7QMyB3wzVmaYMtl6cfWi_Bn6wMpy8Evowrc/7fc7b9da0d44b517/f42907b61cd9af1 IP 104.21.43.153:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (9832), with no line terminators Size 7.4 kB (7443 bytes) Hash b127254808c1a08c1f4f3c3dc80fc2c9 f04108ac5f1bd6dd681cffebb391de0598a37cf4 53fe662c985c6b71d87cf87051480f587f3da8ebce825cb7a5cb9adfab047f18 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1791813297:1693005854:2zIxC9tI7QMyB3wzVmaYMtl6cfWi_Bn6wMpy8Evowrc/7fc7b9da0d44b517/f42907b61cd9af1 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d Content-type: application/x-www-form-urlencoded CF-Challenge: f42907b61cd9af1 Content-Length: 1928 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Fri, 25 Aug 2023 23:48:28 GMT Content-Type: text/plain; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive cf-chl-gen: CDYpj6HlVTG3z1jjmGf5yvGUefprT8NZen2M0LrV30V6acZNPu7hFPjpwCnXXmrz$frAnjbi3kYYpetNuLIm30A== Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2E9Ce79JeHEcEmUKmzDwoxD5D6rmbEFx2yUYGRII1MIImW7ke%2Fo947NYkl9KHx936bhSQrraIkw77go00ivfk81vXXgrJnrmVucQyl%2BTrWmivQPwKn1cUGMRFiK91QzXl4xNQCmfRug%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fc7b9dca9210b02-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1791813297:1693005854:2zIxC9tI7QMyB3wzVmaYMtl6cfWi_Bn6wMpy8Evowrc/7fc7b9da0d44b517/f42907b61cd9af1	104.21.43.153		2.4 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1791813297:1693005854:2zIxC9tI7QMyB3wzVmaYMtl6cfWi_Bn6wMpy8Evowrc/7fc7b9da0d44b517/f42907b61cd9af1 IP 104.21.43.153:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (3176), with no line terminators Size 2.4 kB (2438 bytes) Hash 279fa6bde720807073ae5d12ba358e6f 0b285bd86e50d99a3f037102b87152beb16af594 9f330df6b093d76f2f73de868276330ad47c7962854063278c03afe37b67fe9c HTTP Headers POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1791813297:1693005854:2zIxC9tI7QMyB3wzVmaYMtl6cfWi_Bn6wMpy8Evowrc/7fc7b9da0d44b517/f42907b61cd9af1 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d Content-type: application/x-www-form-urlencoded CF-Challenge: f42907b61cd9af1 Content-Length: 3076 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Fri, 25 Aug 2023 23:48:31 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive set-cookie: cf_chl_rc_m=;Expires=Thu, 24 Aug 2023 23:48:31 GMT;SameSite=Strict cf-chl-out: U1qRWvxn/JpWd+nKUNOPqYZknzArXMnDUG1nrJVyBpJtoZZhnEKSVXPbsvtbe5jLQ4WQKctC1JNLu9K61kB2zw==$SYKQj8o7uzqA6GgxoOuvCA== cf-chl-out-s: NWiQ8rCaYJm0AVLZHPf5gqF4xwFbWhe/2DGXJi6xaj4h9ot2s23PfREr3FdxM8EDWy9ZUZ2N/qsYofqfU2zfwrEYaQtXxuvbFxE1FFsQmNNw8FvWStC5+IWmGhL+Y82t0jt+Sa2EDhFovNMr+Fvo13vWRcEHV78nBU4XH2nkYvY=$4h33nIDcMFw5G8CfBy/55g== Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PVWZsz9guLTUANEjd3FrbixD1z7X%2FFFGVvVvgKkyvVRPdEFqLsZR6RYL%2BhPejmIYo9cIp3BCQc8%2FNUiH%2BdRtlagBVjhS0MvbYOyGIkfMFhn7u%2FwTIFNtOZF8fLtp2rJOqtsK%2FSqvH8k%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fc7b9ee4b760b02-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d	104.21.43.153		0 B
URL helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d IP 104.21.43.153:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/Mcm9iZXJ0LmxldnlAdWJzLmNvbQ==&session=d6075ab3ff375a888b52506fa2c2758dd6075ab3ff375a888b52506fa2c2758d?__cf_chl_tk=Z6sAkE5EKRfFPKqWdeAhUEDzBZKf5h4qz.k5cQ0OgP0-1693007307-0-gaNycGzNB9A Content-Type: application/x-www-form-urlencoded Content-Length: 2166 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Date: Fri, 25 Aug 2023 23:48:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: cf_clearance=xgp6hEurV6vfntcGLW1OKk.49jv4ZC65LWSub8ohRPU-1693007307-0-1-32b3bbaf.6b0d8b6b.3eb1b0e5-160.0.0; path=/; expires=Sat, 24-Aug-24 23:48:31 GMT; domain=.helpdesk-esupport.com; HttpOnly; SameSite=None PHPSESSID=4e065db165babaeadd52454a9f98fc0f; path=/ expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache location: ./beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce x-turbo-charged-by: LiteSpeed CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OUgx6C5JOOngNhoczJSOxMb2eSTD2BJtJGeiyNhNS%2BqTQQiVBZ6at%2FctT6jMKV6uH5Dhh4Ek2ZIFLiSCgt2PUiNII9crPf22p4HE93EOcJ%2F353aB9AAuIebjXwUSshij3Ul5d2rYXRs%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fc7b9f1edda0b02-OSL alt-svc: h2=":443"; ma=60

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/721266610:1693006078:p2n2oB5s4jm7zT_UHYTI13SAYhbJMkKQCOI75yuZMFk/7fc7b9dd18c61c16/f485bdb15def8bb	104.17.3.184		6.4 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/721266610:1693006078:p2n2oB5s4jm7zT_UHYTI13SAYhbJMkKQCOI75yuZMFk/7fc7b9dd18c61c16/f485bdb15def8bb IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (3576), with no line terminators Size 6.4 kB (6421 bytes) Hash 0f494f4c016a020f3eae1882414bfef4 662cafa8af8aa137073f9570ed09e23c31b893c5 b3d021420cdb24470f2e9f84ffdf570d2a3c0c69dd980fe8d5932065e08a4314 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/flow/ov1/721266610:1693006078:p2n2oB5s4jm7zT_UHYTI13SAYhbJMkKQCOI75yuZMFk/7fc7b9dd18c61c16/f485bdb15def8bb HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/cr7l8/0x4AAAAAAADnPIDROrmt1Wwj/light/normal Content-type: application/x-www-form-urlencoded CF-Challenge: f485bdb15def8bb Content-Length: 24826 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 25 Aug 2023 23:48:31 GMT content-type: text/html; charset=UTF-8 cf-chl-out: gwS/vZq09KSZjqHSqkP1LVMeTa+tnJf/PJWrNw1b5VVzp6p86aqlEgVy1Q4mZ6rQAvureTbJ5U9DXdEZnlo9m7Fi1MZepKWAv5R5zcinNIEMeNHB19FqCK9cFUBSms3N$qN6YkZl3FM5rRIZrD6x++g== cf-chl-out-s: Lqb4Hq4R/S5asT+FOwqFx2TDAj9KSqr8Ey5ujAinekgAI2v4PqpBludt+3dNaflCUAj5S0IHyHnq1jH0AtcPc7gwhmblt6PDyamq0pmP48kHkQBC18SSNaMtuECPhw2EgbWtXnCodYEwkRI2IZbZx30s6SySlw0xnuO8CrKFTatj5uY525+kqCiRS2gKJQ9P$sEgXfLa9/MTsqBzwjxpgAg== server: cloudflare cf-ray: 7fc7b9edcada1c16-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	helpdesk-esupport.com/cdn-cgi/styles/challenges.css	104.21.43.153		2.6 kB
URL helpdesk-esupport.com/cdn-cgi/styles/challenges.css IP 104.21.43.153:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (6600), with no line terminators Size 2.6 kB (2624 bytes) Hash 2c78b7f8fa496092bf41d5edd51611e7 8b0b1b276e8194b0a5497db478ec2ea9b4f83c42 2b0bd09c1cc7119d27e45353a59bf6c2721563e1689853ff704057a7439508d2 HTTP Headers `GET /cdn-cgi/styles/challenges.css HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce DNT: 1 Connection: keep-alive Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 25 Aug 2023 23:48:32 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Wed, 23 Aug 2023 13:09:20 GMT ETag: W/"64e60500-19c8" Server: cloudflare CF-RAY: 7fc7b9f7afa4b4ed-OSL X-Frame-Options: DENY X-Content-Type-Options: nosniff Vary: Accept-Encoding Expires: Sat, 26 Aug 2023 01:48:32 GMT Cache-Control: max-age=7200, public Content-Encoding: gzip`

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=7fc7b9f768d40b02	104.21.43.153		56 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=7fc7b9f768d40b02 IP 104.21.43.153:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65536), with no line terminators Size 56 kB (56365 bytes) Hash 244fda91548870e6b148c1439d1557c9 8c08b53a8805f29b9fb107107e4fd90ca22bcdf2 d577537960e6c3d76b2d58267c42c6ee0b89083fff613bfdb19e5aea63eb6428 HTTP Headers GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=7fc7b9f768d40b02 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce?__cf_chl_rt_tk=XwNcabCF8fAbdMoWEdk1vFib7h86OrGkPOIBzeVN3YU-1693007312-0-gaNycGzNCLs DNT: 1 Connection: keep-alive Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Fri, 25 Aug 2023 23:48:32 GMT Content-Type: application/javascript; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cjii8yjMd7sran4LtlStgXOXVJX9UNIFPeExvepOC5Aeu560yG1sEwL7LQUKmbwZN4%2F89QRlNEGpOF0Pg4YeJkYkZEU1MyFvoTI3a3Zwt42mmnfWpgVdgN6DVY0bxFgxTR1XtAIKi7A%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fc7b9f7cfbbb4ed-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/favicon.ico	104.21.43.153	403 Forbidden	3.3 kB
URL GET HTTP/1.1 helpdesk-esupport.com/favicon.ico IP 104.21.43.153:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4947), with no line terminators Size 3.3 kB (3325 bytes) Hash 178f1fa67d08ac63d1dbbbe13f2b3668 55bc1abf4a0b05b268275457e7999359748c4d04 ddea7673c2773a09361cef0d5c176f59f805c9228315768004869fc32766ab29 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce DNT: 1 Connection: keep-alive Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Fri, 25 Aug 2023 23:48:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=coN5coj0WjOnxBBEuf1Z1ZNN%2FS%2FztgKMgbwx6UP5bdSziek%2FEiQ4irparBiaUKKJ7XywdRsAJw0uipZHZNyA6jTyMELi5zB9F2XrqKKX60WXkrQW4kGvkd1Mylzu%2Fz44yb9%2F2s31JLM%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fc7b9f7dfc9b4ed-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/favicon.ico	104.21.43.153	403 Forbidden	3.3 kB
URL GET HTTP/1.1 helpdesk-esupport.com/favicon.ico IP 104.21.43.153:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4947), with no line terminators Size 3.3 kB (3320 bytes) Hash 043829acebed3f9b06f92349e272d6e3 d82c8ef584d0e0e813675061cf5ce75a976475f4 2285b6e64c2342ca1735e2422f8cfdc8b6b1377c58211df6e90dc9ecbefbe2ab HTTP Headers `GET /favicon.ico HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce DNT: 1 Connection: keep-alive Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Fri, 25 Aug 2023 23:48:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6G9ZeMU32pEkCSsyVaUZKxsVoKCuRgL4AoDI10ZSRpW99u7dLGZMM%2FfeeT4j6IPjkcCcRztJwh3C5vpRaxbZ9GNycxCH5D6rCCermZyKUqO%2FoadAqLDxjX%2FikDgRXwhLBNXbGFid%2Blo%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fc7b9f838c7b509-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2117476273:1693005961:C9MP8QjbAYJj983Rw3gQrhisehFpjmWi133Xy2f-hPs/7fc7b9f768d40b02/c7cc9606d266a5c	104.21.43.153		7.4 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2117476273:1693005961:C9MP8QjbAYJj983Rw3gQrhisehFpjmWi133Xy2f-hPs/7fc7b9f768d40b02/c7cc9606d266a5c IP 104.21.43.153:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (9824), with no line terminators Size 7.4 kB (7430 bytes) Hash 69977ebcba637c48adb6e19f53c29d6d 07a5031230a96053c9d76b47fca2033dbc281368 a33f8c435dd59aab9134a84966c1d7587695c88afbda83d02cf7e1cc1f849a7c HTTP Headers POST /cdn-cgi/challenge-platform/h/g/flow/ov1/2117476273:1693005961:C9MP8QjbAYJj983Rw3gQrhisehFpjmWi133Xy2f-hPs/7fc7b9f768d40b02/c7cc9606d266a5c HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce Content-type: application/x-www-form-urlencoded CF-Challenge: c7cc9606d266a5c Content-Length: 1860 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Fri, 25 Aug 2023 23:48:32 GMT Content-Type: text/plain; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive cf-chl-gen: E5uan/xQ6PXqPifPcJwDgj8L0XeXs9H7Ow16N8l2cXXHolS8vAK+dRPHcIYva8R9$L49GCJs/uH0CJHMBznTrjw== Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9zWt2nihA6SLAAgQ7Y2N%2BDPgma7P2CqYbUtqE781kgZh9QiFSVm5TRCRfRV2RE6UGqC5gEgPVRa6M%2FruAiDbWK0E11Mrj2wLfwr880LZMlf9H07yyDpNUow11C1lwDf8FqYe%2FRMENpA%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fc7b9f8ee86b511-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2117476273:1693005961:C9MP8QjbAYJj983Rw3gQrhisehFpjmWi133Xy2f-hPs/7fc7b9f768d40b02/c7cc9606d266a5c	104.21.43.153		2.4 kB
URL helpdesk-esupport.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2117476273:1693005961:C9MP8QjbAYJj983Rw3gQrhisehFpjmWi133Xy2f-hPs/7fc7b9f768d40b02/c7cc9606d266a5c IP 104.21.43.153:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (3176), with no line terminators Size 2.4 kB (2436 bytes) Hash 627f6a07dc073dcaeb17e9474f95d73a 284917778b79fef6cb63699544379ca0abb30124 f71b291bdd38c36deb844cae07ae5dacaacaf9fa154edcb1a3554e46efe65625 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/flow/ov1/2117476273:1693005961:C9MP8QjbAYJj983Rw3gQrhisehFpjmWi133Xy2f-hPs/7fc7b9f768d40b02/c7cc9606d266a5c HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce Content-type: application/x-www-form-urlencoded CF-Challenge: c7cc9606d266a5c Content-Length: 3009 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Fri, 25 Aug 2023 23:48:35 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive set-cookie: cf_chl_rc_m=;Expires=Thu, 24 Aug 2023 23:48:35 GMT;SameSite=Strict cf-chl-out: QhvHggGi23S1bpL5peCr0ll35lF5Vbd56GkZvlvvJDGcysqomnmCJFSppfvaPWLY8Nt4wUBAejJpFBqm2rhMFA==$r7vKYRjpeBdMavmxz6sHww== cf-chl-out-s: J0wb0zz4UptD0OVD5378i75oSAclPGwdHrts0Db9prWK/27ezajFdIqnJn8ozLBj5b+pbg/u/m1PJdLNxgPEJuIwafv+bEEc2I82V7h03o51e7fPUNOFkXFydsPlgRjJ6Ud+QyXFue5ammsvLdpPhcAmXD+ENeRkziwP22qIJ+8=$oq1rWcSxmnsePRsfbTHQlg== Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XG8e0t3EKfRhghNuZrIshIZzZ%2FE0pp6BS9dIhuQ9xRGtcf5Ej6Rze7B%2FyZiVkwf%2Bc%2FCSrblv22BQrrVfE1tv2r%2FQjPEGNnVAY1H5eM5iGL2%2F77iOsKP94Fseer%2BiZScZSZS0uYmArRI%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fc7ba081f9bb511-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce	104.21.43.153	200 OK	2.4 kB
URL User Request POST HTTP/1.1 helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce IP 104.21.43.153:80 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6150) Size 2.4 kB (2395 bytes) Hash 307ef423979c53fee073d2046271a4c2 1529cbc3230f320fb058e3ffaea7ff35590e9c4c 5bc90392c8e5f2ae2a06b815ca0c3954253f9c60bb172ae10534d3f8f280d7d4 HTTP Headers POST /beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce?__cf_chl_tk=XwNcabCF8fAbdMoWEdk1vFib7h86OrGkPOIBzeVN3YU-1693007312-0-gaNycGzNCLs Content-Type: application/x-www-form-urlencoded Content-Length: 2401 Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Fri, 25 Aug 2023 23:48:35 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: cf_clearance=V2Q7wGOlc2qr8OoRVkZSnHSuz4D0VCyV1hbWoN6kvWg-1693007312-0-1-32b3bbaf.6b0d8b6b.3eb1b0e5-160.0.0; path=/; expires=Sat, 24-Aug-24 23:48:35 GMT; domain=.helpdesk-esupport.com; HttpOnly; SameSite=None expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache vary: Accept-Encoding x-turbo-charged-by: LiteSpeed CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nUCA1LM1r8Ny8grsju0wyqvqmc3PMyC7PmxW73gX%2Fpe4ZCIK2cozSbRBIwFGVA6AKepqv84ygiVICEFq5bu3MMmDnTkN8r2GMUlsN2Gy04E4cgeEMoG6wPQfmrOIhCa1AvFU%2FLADzMw%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7fc7ba0908cab511-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/jq/6697396992a70a5e3d0605c056a642d464e93dd35f8d3	104.21.43.153	403 Forbidden	3.5 kB
URL GET HTTP/1.1 helpdesk-esupport.com/jq/6697396992a70a5e3d0605c056a642d464e93dd35f8d3 IP 104.21.43.153:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5194), with no line terminators Size 3.5 kB (3464 bytes) Hash a87f5a89998b55973b750e0a599e5329 0234be179faa8bb8d905567e021b492c834959a3 e9eabb6dbbe69605a2d0ec3bc026cb6477e8d87812bd89962becd3dda33827d4 HTTP Headers GET /jq/6697396992a70a5e3d0605c056a642d464e93dd35f8d3 HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache HTTP/1.1 403 Forbidden Date: Fri, 25 Aug 2023 23:48:35 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hKeygXkoE4Ts0AQd1lm3ogwzM6P6oKNj1ECKQrHx0xW4czuqjB1%2B09p7R5G1vwfUOPmAb8ZyHndUA3RJ9Ce3U37ZBFdqI%2BZLvSNz2lb3ZT6SiBrcIIVevzRUcIDjRKa2atJME8OF8D8%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fc7ba098941b511-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	challenges.cloudflare.com/turnstile/v0/g/313d8a27/api.js?onload=URXdVe4&render=explicit	104.17.3.184		14 kB
URL challenges.cloudflare.com/turnstile/v0/g/313d8a27/api.js?onload=URXdVe4&render=explicit IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (29469) Size 14 kB (13721 bytes) Hash edbcde7402e6acb63167572645982f3f 1e2d65ed3606a7946422b3977ff79affe34fc16d 1ae488283b6cebf52b5bd97cd3dbe44e84ab7e87234525258a07e59a1904c2ed HTTP Headers `GET /turnstile/v0/g/313d8a27/api.js?onload=URXdVe4&render=explicit HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://helpdesk-esupport.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/3 200 OK date: Fri, 25 Aug 2023 23:48:32 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * cache-control: max-age=31536000 vary: Accept-Encoding server: cloudflare cf-ray: 7fc7b9f83a791c16-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	helpdesk-esupport.com/jm/6697396992a70a5e3d0605c056a642d464e93dd35f8db	104.21.43.153	403 Forbidden	3.5 kB
URL GET HTTP/1.1 helpdesk-esupport.com/jm/6697396992a70a5e3d0605c056a642d464e93dd35f8db IP 104.21.43.153:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5193), with no line terminators Size 3.5 kB (3456 bytes) Hash 9ba99090f6e1a7494f6363ccb553c471 d967bbf7dd3e8e9d94842045afaf88acbb69758a 659db9bf7ee6b64731de18695b4580df4715bed5a93d9e1e378da14305611d86 HTTP Headers GET /jm/6697396992a70a5e3d0605c056a642d464e93dd35f8db HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache HTTP/1.1 403 Forbidden Date: Fri, 25 Aug 2023 23:48:35 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MmTLo9BaoAfhKlS6URpgWCIg3GSGe7o1LAzBGZo5nxAPBLMInnF3xspHW5NRJPC7tlzO6iHPYNqouJ%2BkxmTOE4oYno30PerDPUpUJ%2FaCVoKKp6suS1AyuuP1o36oJSVg1UZHclW%2B9Pg%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fc7ba0989140b61-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	helpdesk-esupport.com/favicon.ico	104.21.43.153	403 Forbidden	3.3 kB
URL GET HTTP/1.1 helpdesk-esupport.com/favicon.ico IP 104.21.43.153:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4947), with no line terminators Size 3.3 kB (3323 bytes) Hash 6c98345301f865cd240f9e9d099ab601 d6d09dc512253d262adcfd36fa813d0d410d4176 1d07592a621ab6ba94658819a78b66a1ba2788a6cb84bf4de26b2038c2d4b3a1 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 403 Forbidden Date: Fri, 25 Aug 2023 23:48:36 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I8O0oBfBsOBYIBPcKFqqX%2FizUUu7BCv3fU86s2q7Kwi1QCdEZnjJXcWMCvsXTOFLCuGluWF%2FaDl6GzzlLzeU4FGiKmPko9jxU0xN%2B5AygTMm%2BV%2BXHO%2B5hfs46CKQGeflDMrHjuOIw%2Fs%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fc7ba0e99b1b4eb-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

	unpkg.com/axios@1.4.0/dist/axios.min.js	104.16.125.175	200 OK	32 kB
URL GET HTTP/2 unpkg.com/axios@1.4.0/dist/axios.min.js IP 104.16.125.175:443 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type ASCII text, with very long lines (31803) Size 32 kB (31842 bytes) Hash 6470a918ba1fd4b8d0882df0269ddb82 97814fdab64aa7d1b30f082f9eb272d4b1ce18a2 fd4ce12a87594281afcee9c73a40fe7acc282bcc9e764fbb3afa1481a96a091e HTTP Headers `GET /axios@1.4.0/dist/axios.min.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://helpdesk-esupport.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 25 Aug 2023 23:48:35 GMT content-type: application/javascript; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"7c62-l4FP2rZKp9GzDwgvnrJy1LHOGKI" via: 1.1 fly.io fly-request-id: 01GZP8TZEXW4PFCT61FHX2WRTS-fra cf-cache-status: HIT age: 9706407 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7fc7ba09ee480b3d-OSL content-encoding: br X-Firefox-Spdy: h2

	unpkg.com/axios/dist/axios.min.js	104.16.125.175	302 Found	32 kB
URL GET HTTP/2 unpkg.com/axios/dist/axios.min.js IP 104.16.125.175:443 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type Size 32 kB (31842 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /axios/dist/axios.min.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://helpdesk-esupport.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found date: Fri, 25 Aug 2023 23:48:35 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /axios@1.4.0/dist/axios.min.js vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01H8QHE57ADN52RFK0DKGM67PH-fra cf-cache-status: HIT age: 159 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7fc7ba09ce350b3d-OSL X-Firefox-Spdy: h2

	helpdesk-esupport.com/boot/6697396992a70a5e3d0605c056a642d464e93dd35f8da	104.21.43.153	403 Forbidden	5.2 kB
URL GET HTTP/1.1 helpdesk-esupport.com/boot/6697396992a70a5e3d0605c056a642d464e93dd35f8da IP 104.21.43.153:80 ASN #13335 CLOUDFLARENET Requested by http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5278), with no line terminators Size 5.2 kB (5224 bytes) Hash 5853f74fd990944549246a0d2fcfd614 2ff2ed12b24a721e11f4caeecf3160294dcb5e85 79762dc811c5aedf2549ce436c491b86a96fb188403939ebb92aa5899a631f89 HTTP Headers GET /boot/6697396992a70a5e3d0605c056a642d464e93dd35f8da HTTP/1.1 Host: helpdesk-esupport.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://helpdesk-esupport.com/beebb091955c06fa68b3eb8afc0bae5164e93dd080bccPASbeebb091955c06fa68b3eb8afc0bae5164e93dd080bce Cookie: PHPSESSID=4e065db165babaeadd52454a9f98fc0f Pragma: no-cache Cache-Control: no-cache HTTP/1.1 403 Forbidden Date: Fri, 25 Aug 2023 23:48:35 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cross-Origin-Embedder-Policy: require-corp Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Origin-Agent-Cluster: ?1 Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN cf-mitigated: challenge Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yDoTUO5qA8fm0O3WmsenBgstlz3YGDFYyj5jZAiXMIoCCRthKgoutptqYU4faqjILqpPMKZl4tie5A2OzYh4OLQ%2BwCxmPYY2l7C19fbHAoYlq9hfRT%2Boiqbn4aARN0k93P%2BioKpQi7Y%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7fc7ba098dfd0b3d-OSL Content-Encoding: gzip alt-svc: h2=":443"; ma=60

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (24)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP