| www.google.com.hk/url?q=KWUZMS42J831JSWOSF4KEIP36T3IE7YuQiApLjODz3yh4nNeW8uuQi&rct=XS%25RANDOM4%25wDnNeW8yycT&sa=t&esrc=nNeW8F%25RANDOM3%EF%BF%BDxys8Em2FL&source=&cd=tS6T8%25RANDOM3%25Tiw9XH&cad=XpPkDfJX%25RANDOM4%25VS0Y&ved=xjnktlqryYWwZIBRrgvK&uact=&url=amp/asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0 |  142.250.74.67 | 302 Found | 319 B |
URL www.google.com.hk/url?q=KWUZMS42J831JSWOSF4KEIP36T3IE7YuQiApLjODz3yh4nNeW8uuQi&rct=XS%25RANDOM4%25wDnNeW8yycT&sa=t&esrc=nNeW8F%25RANDOM3%EF%BF%BDxys8Em2FL&source=&cd=tS6T8%25RANDOM3%25Tiw9XH&cad=XpPkDfJX%25RANDOM4%25VS0Y&ved=xjnktlqryYWwZIBRrgvK&uact=&url=amp/asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0 IP142.250.74.67:0
File typeHTML document, ASCII text, with CRLF, LF line terminators Hashfba525972f63f2e432c9c9f2463bf95d deaca277b250f4e124a8e96e80924ab948090b20 e95a701b3ee0356b2fdfb9c9513d28d6dd026f56832b266118224783a3e99db1
GET /url?q=KWUZMS42J831JSWOSF4KEIP36T3IE7YuQiApLjODz3yh4nNeW8uuQi&rct=XS%25RANDOM4%25wDnNeW8yycT&sa=t&esrc=nNeW8F%25RANDOM3%EF%BF%BDxys8Em2FL&source=&cd=tS6T8%25RANDOM3%25Tiw9XH&cad=XpPkDfJX%25RANDOM4%25VS0Y&ved=xjnktlqryYWwZIBRrgvK&uact=&url=amp/asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0 HTTP/1.1
Host: www.google.com.hk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://www.google.com.hk/amp/asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0
cache-control: private
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-MBuQSg-6NyqGzflpn1zJhA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Wed, 11 Dec 2024 20:58:12 GMT
server: gws
content-length: 319
x-xss-protection: 0
set-cookie: __Secure-ENID=24.SE=T9twj0Lye8b3y2g7eqlVN1E2fCgaUShA6hGFVrhFVKfLYehdL78oqVGbZ24P10Pr5lXYYsGappixtW4jrN14b2OeHmvG_4PCd-hhs8Yb3-9bEZXJahPA_mCS3xQcIvo_nCRgbt6maVc5E_pTtndRdXfDKPUyzaBUu1Tr0JipNTYARJUlblQ-z6OACceJYkFXl3J2tL1QjAjEDzld9gNksq5GVpz7MeRqxfD4XaM; expires=Sun, 11-Jan-2026 13:16:30 GMT; path=/; domain=.google.com.hk; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com.hk/amp/asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0 | 142.250.74.67 | 302 Found | 296 B |
URL www.google.com.hk/amp/asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0 IP142.250.74.67:0
File typeHTML document, ASCII text, with CRLF, LF line terminators Hashc16da2fc75a130c03da4616d3a90ebcb 68928a9c66db78d4a63fcea9181231d9c8a0c5a0 7b0bd34fe240bc5b945d450ba8cdf6d0025c45f9cea60303387b6d29d0e6eab4
GET /amp/asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0 HTTP/1.1
Host: www.google.com.hk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; __Secure-ENID=24.SE=T9twj0Lye8b3y2g7eqlVN1E2fCgaUShA6hGFVrhFVKfLYehdL78oqVGbZ24P10Pr5lXYYsGappixtW4jrN14b2OeHmvG_4PCd-hhs8Yb3-9bEZXJahPA_mCS3xQcIvo_nCRgbt6maVc5E_pTtndRdXfDKPUyzaBUu1Tr0JipNTYARJUlblQ-z6OACceJYkFXl3J2tL1QjAjEDzld9gNksq5GVpz7MeRqxfD4XaM
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: http://asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0
cache-control: private
x-robots-tag: noindex
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-GKcf3y_2puRVzY10CX2xkw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]}
date: Wed, 11 Dec 2024 20:58:13 GMT
server: gws
content-length: 296
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0 |  185.221.216.117 | 200 OK | 0 B |
URL asubiad.online/grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0 IP185.221.216.117:0 ASN#393960 HOST4GEEKS-LLC
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /grieksm/eadde189eb60a690d8ba45bfc9536ecce14d589f/d3J1c3NvbUBzbHVycG1haWwubmV0 HTTP/1.1
Host: asubiad.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 11 Dec 2024 20:58:14 GMT
Server: Apache
Refresh: 0; url=https://hA.rionvent.ru/uB3yTphR/#d3J1c3NvbUBzbHVycG1haWwubmV0
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| challenges.cloudflare.com/turnstile/v0/api.js?render=explicit |  104.18.95.41 | 302 Found | 0 B |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP104.18.95.41:443
Requested byhttps://ha.rionvent.ru/uB3yTphR/#d3J1c3NvbUBzbHVycG1haWwubmV0 CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ha.rionvent.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 11 Dec 2024 20:58:15 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/g/f9063374b04d/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f0864440fa1b523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js | 104.17.25.14 | 200 OK | 14 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js IP104.17.25.14:443
Requested byhttps://ha.rionvent.ru/uB3yTphR/#d3J1c3NvbUBzbHVycG1haWwubmV0 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02 ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT
File typeJavaScript source, ASCII text, with very long lines (48316), with no line terminators Hash2ca03ad87885ab983541092b87adb299 1a17f60bf776a8c468a185c1e8e985c41a50dc27 8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762
GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ha.rionvent.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 20:58:15 GMT
content-type: application/javascript; charset=utf-8
content-length: 13972
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61182885-3694"
last-modified: Sat, 14 Aug 2021 20:33:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1236496
expires: Mon, 01 Dec 2025 20:58:15 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4mk44oVNeRvRfZ91F6AnSJ94z7ixVk231fAWEqjFQkPbLlEfUbMk97GEVzyL5lr2xMvC6jkiZC3QKAEu2RRmBFn2b5ica8u3RR%2FFXB%2B4gnt7nw55UAHfE4eqa0ajxu3GormO6UtT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f0864441a90b524-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.0.min.js | 151.101.194.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.0.min.js IP151.101.194.137:443
Requested byhttps://ha.rionvent.ru/uB3yTphR/#d3J1c3NvbUBzbHVycG1haWwubmV0 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ha.rionvent.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 11 Dec 2024 20:58:15 GMT
age: 2473985
x-served-by: cache-lga21931-LGA, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 71, 817645
x-timer: S1733950695.148197,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/6d12s/0x4AAAAAAAfEBeInnh5kzxE1/auto/fbE/normal/auto/ | 104.18.95.41 | 200 OK | 6.6 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/6d12s/0x4AAAAAAAfEBeInnh5kzxE1/auto/fbE/normal/auto/ IP104.18.95.41:443
Requested byhttps://ha.rionvent.ru/uB3yTphR/#d3J1c3NvbUBzbHVycG1haWwubmV0 CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeHTML document, ASCII text, with very long lines (22073) Hash8bb22717c97ef5d694362a4aa4e98953 95f722762388d0b08ab4387c719012b0396294d1 50578ac21532c491f2ea5ef2faaa9c5938cc1b172ed801861baa64b364918252
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/6d12s/0x4AAAAAAAfEBeInnh5kzxE1/auto/fbE/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ha.rionvent.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 11 Dec 2024 20:58:15 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f0864455fb95690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| ha.rionvent.ru/favicon.ico | 172.67.155.22 | 404 Not Found | 60 kB |
URL GET HTTP/3ha.rionvent.ru/favicon.ico IP172.67.155.22:443
Requested byhttps://ha.rionvent.ru/uB3yTphR/#d3J1c3NvbUBzbHVycG1haWwubmV0 CertificateIssuerGoogle Trust Services Subjectrionvent.ru Fingerprint5F:5A:40:7D:97:E7:81:B4:BC:76:07:86:F6:5B:B1:D8:30:13:97:E6 ValiditySat, 09 Nov 2024 11:40:49 GMT - Fri, 07 Feb 2025 11:40:48 GMT
Hashd684530699b18368451d305665fd41cc fe008ed2f71ab4a360fb0d7e796014eb36a69d3c 53b4535f68cb5b0c88b6d10d5d5cadcfff292f93cffe30470a35de16b2a93049
GET /favicon.ico HTTP/1.1
Host: ha.rionvent.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ha.rionvent.ru/uB3yTphR/
Cookie: XSRF-TOKEN=eyJpdiI6IllOaS9pZ0hCOVorSVU0bGMwT2M5Q0E9PSIsInZhbHVlIjoiWmZMYnZtVDdOMnR1TThGWXcvMzBSc09NQXZsZ2k3YUpwcWw2ODJnNlVVZFQ3azFmQjJMTkZycHk5QjhrRC9yQ3RPUkZuNWdtZ21qTjhUa0VxV0tJU1pGTGJrQy9NMG96VzU1UFdQYzQwZVkrdFVvYUoyM1ptL3NYOXFSUnVEYWgiLCJtYWMiOiI2MDMyMDU1Yjk4OWU1YmNlMTI4MjlmMmUyODEzZDViYjA1ZGY4OWVhYTliODAzZGI2ZDgzM2I0MjY3ODRkMTAyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImpuMHQ1cnliT0ppdmMxc2lwOTFlZkE9PSIsInZhbHVlIjoibkNmYXdmdFhFcnJxQStmOXk2bXNuYm9DODRtNEozVENEVDhyanBFNnczdERwN1BkRHhyK1RScXdES2tRTnRGc3JNM1JTZUUzVFl1M3dBMVNKQUc5UVlXQTZJMWorbnc2ZTVscENIZmx6Z3pCejlPY2VvTDA5a0NsWVFhbTRYbGgiLCJtYWMiOiJjODA2YjU4NGYxYmM0MDBkMGY4ODM5MWIxY2RkZDk4MWI2YmM0Njg3ZDUzMTNmNWExMTk4OWQxYmJiYTVhNDQzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 11 Dec 2024 20:58:15 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kZ1kHf1Oe%2BAuxvCa%2FFEw4edt4k1ilstOL8w9zQQn%2B%2Fez5wUw8oO1vLh9JcSqaAPxR1MzAJ7zkuaGmGOMulSPTD76p3B0nfH0DGE12ZpUKvL8CK3gxdEgcDaCzPxslQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 3148
priority: u=6,i=?0
server: cloudflare
cf-ray: 8f086445887ab509-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=1389&min_rtt=1371&rtt_var=416&sent=5&recv=8&lost=0&retrans=0&sent_bytes=2824&recv_bytes=2082&delivery_rate=2717741&cwnd=252&unsent_bytes=0&cid=07e6a469d1737228&ts=339&x=0", cfL4;desc="?proto=QUIC&rtt=3406&min_rtt=2400&rtt_var=1618&sent=12&recv=8&lost=0&retrans=0&sent_bytes=4093&recv_bytes=1788&delivery_rate=247476&cwnd=12000&unsent_bytes=0&cid=73c33c3dff52d3ac&ts=386&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| challenges.cloudflare.com/turnstile/v0/g/f9063374b04d/api.js | 104.18.95.41 | 200 OK | 48 kB |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/g/f9063374b04d/api.js IP104.18.95.41:443
Requested byhttps://ha.rionvent.ru/uB3yTphR/#d3J1c3NvbUBzbHVycG1haWwubmV0 CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeJavaScript source, ASCII text, with very long lines (47691) Hashb0b3774e70e752266b4cf190e6d95053 03823d33d8c374dd69b66f1d75a5fc93d29967e1 a9f0787e39291d7bcb873d0d514f1d2c8db0256fd741c2abc4d46a809254e141
GET /turnstile/v0/g/f9063374b04d/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ha.rionvent.ru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 20:58:15 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 03 Dec 2024 18:31:41 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f0864444800b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1 | 104.18.95.41 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1 IP104.18.95.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/6d12s/0x4AAAAAAAfEBeInnh5kzxE1/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/6d12s/0x4AAAAAAAfEBeInnh5kzxE1/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 11 Dec 2024 20:58:15 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f086445c8655690-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8f0864455fb95690&lang=auto | 104.18.95.41 | 200 OK | 122 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8f0864455fb95690&lang=auto IP104.18.95.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/6d12s/0x4AAAAAAAfEBeInnh5kzxE1/auto/fbE/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com FingerprintC1:16:CA:AE:53:D5:B8:63:59:BB:EB:73:AB:F0:98:7E:EE:7F:E3:EB ValiditySun, 03 Nov 2024 16:27:50 GMT - Sat, 01 Feb 2025 17:27:46 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size122 kB (121962 bytes) Hashf52648ba81bf9d56479072f96cb59e1a f29263966ac425a92f020955ca188c529008d983 08fe982767b0607974a86440df044984e5c278ca1fc03c306e833b470c9d4233
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8f0864455fb95690&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/6d12s/0x4AAAAAAAfEBeInnh5kzxE1/auto/fbE/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 11 Dec 2024 20:58:15 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=2,i=?0
server: cloudflare
cf-ray: 8f086445c86a5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| | 172.67.155.22 | 200 OK | 20 kB |
URL User Request GET HTTP/2IP172.67.155.22:443
CertificateIssuerGoogle Trust Services Subjectrionvent.ru Fingerprint5F:5A:40:7D:97:E7:81:B4:BC:76:07:86:F6:5B:B1:D8:30:13:97:E6 ValiditySat, 09 Nov 2024 11:40:49 GMT - Fri, 07 Feb 2025 11:40:48 GMT
File typeHTML document, ASCII text, with very long lines (7485), with CRLF line terminators Hash2b8c42f8e846ac464fb20bfa676d2394 079bb4fe882726228aaecf212ab1ed5c6c5effb0 b35bd7ef94bccfbaf88d174aafe78eb3887725ee8a0e77c569461307b39fcfbf
GET /uB3yTphR/ HTTP/1.1
Host: ha.rionvent.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Dec 2024 20:58:14 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kMXID96TeHUOdhe8%2FNfQQOSR3w8ojuZyENrskdzVOzOluXas1AUBTfvPqiV5UYG44FUs8Fc0WAEtK3dLzzC1oN97PuqGxiKiuP6EvKsSroerDcsG4kZ5PWhWprqrnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6IllOaS9pZ0hCOVorSVU0bGMwT2M5Q0E9PSIsInZhbHVlIjoiWmZMYnZtVDdOMnR1TThGWXcvMzBSc09NQXZsZ2k3YUpwcWw2ODJnNlVVZFQ3azFmQjJMTkZycHk5QjhrRC9yQ3RPUkZuNWdtZ21qTjhUa0VxV0tJU1pGTGJrQy9NMG96VzU1UFdQYzQwZVkrdFVvYUoyM1ptL3NYOXFSUnVEYWgiLCJtYWMiOiI2MDMyMDU1Yjk4OWU1YmNlMTI4MjlmMmUyODEzZDViYjA1ZGY4OWVhYTliODAzZGI2ZDgzM2I0MjY3ODRkMTAyIiwidGFnIjoiIn0%3D; expires=Wed, 11-Dec-2024 22:58:14 GMT; Max-Age=7200; path=/; secure; samesite=none
laravel_session=eyJpdiI6ImpuMHQ1cnliT0ppdmMxc2lwOTFlZkE9PSIsInZhbHVlIjoibkNmYXdmdFhFcnJxQStmOXk2bXNuYm9DODRtNEozVENEVDhyanBFNnczdERwN1BkRHhyK1RScXdES2tRTnRGc3JNM1JTZUUzVFl1M3dBMVNKQUc5UVlXQTZJMWorbnc2ZTVscENIZmx6Z3pCejlPY2VvTDA5a0NsWVFhbTRYbGgiLCJtYWMiOiJjODA2YjU4NGYxYmM0MDBkMGY4ODM5MWIxY2RkZDk4MWI2YmM0Njg3ZDUzMTNmNWExMTk4OWQxYmJiYTVhNDQzIiwidGFnIjoiIn0%3D; expires=Wed, 11-Dec-2024 22:58:14 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none
server: cloudflare
cf-ray: 8f08643f68130b06-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=1409&min_rtt=1393&rtt_var=401&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2825&recv_bytes=1383&delivery_rate=2878291&cwnd=252&unsent_bytes=0&cid=97a7e05ab0e84e74&ts=361&x=0", cfL4;desc="?proto=TCP&rtt=5656&min_rtt=536&rtt_var=10267&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3274&recv_bytes=1250&delivery_rate=6232424&cwnd=254&unsent_bytes=0&cid=29b93e8590fffc16&ts=621&x=0"
X-Firefox-Spdy: h2
|
|
0.0.0.0