81.28.6.115 12 kB IP 81.28.6.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2480), with CRLF, LF line terminators
Hash 0f0c2753fb68d11c0fa1394a11443ffe
9f752843cba137b1ccd4b0ac9c4c0b0477133ca0
ccde19463d1caa75c09eff4cedc58e99707e49bf0c6d385d740867409168d851
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (33a8fa9ad625ce57f45069e762a186f9)
Set-Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
81.28.6.115200 OK 18 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
IP 81.28.6.115:80
File type Unicode text, UTF-8 text, with very long lines (2240)
Hash 21dee8678cb9281fd783f7f3f48fff37
15e64971ebf115dfe5f47e03d268aaaba95127e5
09f4e88e537bcf09d8f49e5b5693cc0ee3ce4c416a12bb3a414051a468c6cfa6
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/css/style.min.css?1676278275122493 HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Mon, 13 Feb 2023 08:51:15 GMT
ETag: "1de7d-5f490f32046c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18182
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Content-Type: text/css
cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js
104.17.24.14200 OK 6.7 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js
IP 104.17.24.14:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (23122)
Hash 93c1dd8416ac2af1850652d5b620a142
6a76e4c7db479053350580469aa010febfdcacd0
17a879e50c3ab3078afaded288e257fb66e94806b76ff7e796b54226f9848f50
GET /ajax/libs/jquery-validate/1.17.0/jquery.validate.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 May 2023 22:14:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 6677
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-5add"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 10282413
expires: Tue, 14 May 2024 22:14:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=joeqRoUAL5YiBYg3MmXTbxGD4Q5uBHiH9%2Bzxrfo8RSU8qKWcm3mBj5mUCaDVEyIWYX%2FYgbEE0AIGCHjKvldA%2FlS7VSItQi6zsyoOMcUBcjD9dbEcxkMmVeeG5dMn1mC%2Fg5OEO6AZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd12255f9160b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
104.17.24.14200 OK 6.6 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
IP 104.17.24.14:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (20831)
Hash 56456db9d72a4b380ed3cb63095e6022
6dbce88aee15b42f29083df7a07513cf3b486ba0
66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2
GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 May 2023 22:14:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4330945
expires: Tue, 14 May 2024 22:14:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vv9zpedbYtocDKeiUBuVpwjZzHDNAjDtq2s96pGmudzzWBTgfGpT4pZAvm5t6Nxb7e8JsNUmUqpxHkqv8hiRCdclemx3seRtL6FB%2BNJhKN9UlOBZEZkYwVljyLxHo8K%2FKU3VfT%2BF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd12255f9180b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
81.28.6.115/local/templates/viewapp/styles.css?16776642424389
81.28.6.115200 OK 1.2 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/styles.css?16776642424389
IP 81.28.6.115:80
File type ASCII text, with very long lines (820)
Hash 4ea0e01d7332b3475bdb1f717f9a2217
d47c36799c3eff154da27f15c25b12bc5a88e0a2
801d8c35ee9ce276731a82e68dfcbf7c02f9822f597b8c638850dc7aef236b71
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/styles.css?16776642424389 HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Wed, 01 Mar 2023 09:50:42 GMT
ETag: "1125-5f5d3a5326080-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1200
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: text/css
81.28.6.115/local/templates/viewapp/assets/js/app.js?167628210216386
81.28.6.115200 OK 3.2 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/js/app.js?167628210216386
IP 81.28.6.115:80
Hash 88a2e282ec7a759a20c371c5d645e060
d623648488bcec70732e60fcccd76d92bfd8a89e
d321129c81313de84c2adce0eb7249acbdec86158c584787bf523186a2cb1ca1
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/js/app.js?167628210216386 HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Mon, 13 Feb 2023 09:55:02 GMT
ETag: "4002-5f491d73ba980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3219
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: text/javascript
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 2a2f84f23f13b9719a1ef5b836b4d9e6
a68eea2c7e85a3744074dfda347131ac04f60820
4896b8c48281cfa9ee3fbb5f3f8be5ec0233f458eece4dd7118bc03bee88148e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 22:14:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jquery.com/jquery-3.5.1.min.js
69.16.175.10200 OK 31 kB URL GET HTTP/2 code.jquery.com/jquery-3.5.1.min.js
IP 69.16.175.10:443
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65451)
Hash dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 May 2023 22:14:55 GMT
content-encoding: gzip
content-length: 30879
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d84"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685052895.dop220.sk1.t,1685052895.cds203.sk1.hn,1685052895.cds208.sk1.c
X-Firefox-Spdy: h2
81.28.6.115/local/templates/viewapp/assets/js/vendor.js?1670704577348286
81.28.6.115200 OK 61 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/js/vendor.js?1670704577348286
IP 81.28.6.115:80
File type ASCII text, with CRLF line terminators
Hash 3fc29f96ab79af7f4689f81f3ca8c2bc
40f78939769f3837dd4e3ebe87d36eb7cabddcc5
e11987a1dbfb8c2da02bbb3401894bf7f0647517aa0510a32d27ab46c93535dc
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/js/vendor.js?1670704577348286 HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "5507e-5ef7f38e245c7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 61174
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: text/javascript
81.28.6.115/upload/iblock/1a4/tq2ffisp91a8hfvx7t87u1ufkc1hllhd/ctrl%20logo.png
81.28.6.115200 OK 5.1 kB URL GET HTTP/1.1 81.28.6.115/upload/iblock/1a4/tq2ffisp91a8hfvx7t87u1ufkc1hllhd/ctrl%20logo.png
IP 81.28.6.115:80
File type PNG image data, 768 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f41e48beb44bae4401f9155bc1981dd
16392ade76fc5f07891f039fbad4c414c3f5fa9f
8bfaec4c3572c6c07b72650b2e1c8ec16b893c2833aabfe1cb338447583cbf77
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/1a4/tq2ffisp91a8hfvx7t87u1ufkc1hllhd/ctrl%20logo.png HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:12 GMT
ETag: "1412-5ef7f388aafc8"
Accept-Ranges: bytes
Content-Length: 5138
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/png
81.28.6.115/upload/iblock/3dc/cmhxnebku1aya8nuuoh7bup6dx0v3d35.svg
81.28.6.115200 OK 2.0 kB URL GET HTTP/1.1 81.28.6.115/upload/iblock/3dc/cmhxnebku1aya8nuuoh7bup6dx0v3d35.svg
IP 81.28.6.115:80
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1875), with CRLF line terminators
Hash b373739309992712207a5bd808704c0a
6804d669749d4a545a5024b1b662d901d15c2d98
5707596e637abc2ce1e042da02ed06f45c40794b7a4614cac81156ccb039e348
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/3dc/cmhxnebku1aya8nuuoh7bup6dx0v3d35.svg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "7ef-5ef7f38da1804"
Accept-Ranges: bytes
Content-Length: 2031
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
81.28.6.115/upload/iblock/b0d/lb692mwgc5w9nhw3wou2mx7uzmq73224.svg
81.28.6.115200 OK 1.3 kB URL GET HTTP/1.1 81.28.6.115/upload/iblock/b0d/lb692mwgc5w9nhw3wou2mx7uzmq73224.svg
IP 81.28.6.115:80
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1168), with CRLF line terminators
Hash ba596edac5da5d6df872a7ae6b825310
1673e020fce3f752296a73a6dc2b6fa5632949b8
df86e960e7dcdf6f616eeac2b68ba3bc00def9838f2692649bb34a7468d86964
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/b0d/lb692mwgc5w9nhw3wou2mx7uzmq73224.svg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "52c-5ef7f38df6766"
Accept-Ranges: bytes
Content-Length: 1324
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
www.google.com/recaptcha/api.js?hl=en&render=explicit
142.250.74.132200 OK 558 B URL GET HTTP/2 www.google.com/recaptcha/api.js?hl=en&render=explicit
IP 142.250.74.132:443
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT
File type ASCII text, with very long lines (852), with no line terminators
Hash ff47daf65bb1e3112c61ccf6b6576060
d09742d7056c2cd410b3703ae71fcf59b23c3e53
6e3a8cd754e8a6c30d9f9d6f90589dc9e84e7038f1fc2809494b2255d399ed3a
GET /recaptcha/api.js?hl=en&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Thu, 25 May 2023 22:14:55 GMT
date: Thu, 25 May 2023 22:14:55 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 558
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js
104.17.24.14200 OK 1.3 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js
IP 104.17.24.14:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (4266)
Hash 50ac9adc7d65a32fd2f895ffcec02b29
03ced87dc7dcb66e14ef8c8a16a5b0d09d047a88
35ecbd48276f3dec75c9f9c8f9f638ad2aeb5b74c387a731cefade25466e9ffb
GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Referer: http://81.28.6.115/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 22:14:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 1296
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-113c"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 9090124
expires: Tue, 14 May 2024 22:14:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iG4OsMx79Qaeq%2BGlo2elSBe9W8muZ%2BApq0U3RZNk3En2T%2F%2BZa77WzwwNTnfM%2BsCVCHZ7bU1SCyjwpGnJMWP2bLW%2BfXWsNdkilSspcsmM3Bc%2F0Jdj9TRY%2BqQLyZsX3mF28CO9%2FNlv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd122581843fac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
104.17.24.14200 OK 2.1 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
IP 104.17.24.14:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (4890)
Hash 2a58139bca6dd26694155d0a01c47438
3323fe0cd5de0ce631c9ddfd7caab32578c6ba01
ecf4a6176a23634e19ed80b01b9c30bc7f9b754c55d4f3c220e46fbd3607a3b3
GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Referer: http://81.28.6.115/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 22:14:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 2090
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-139e"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 756585
expires: Tue, 14 May 2024 22:14:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zue8g4oIa4AWSrDaHKyU%2Brvks8ibRNmRS1NBfdwDgA%2FmJT4hc2J1REdUF2xCcfSV7gKPllRQQxOWkTfAWhlU53I9ZvKPIVaVe16lPbSYKKGEDb7AbqrCNOH2Za%2BnnMv9Y4EeNIxf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd122581844fac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ece678e436a0e84e708cc83cef564a4d
386d2687ff7259e118e091d44570cb22ed45b8fd
1279089948be927657846ae616a126038e553137ac42d070d9c2fc3b2b8a3252
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 22:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bitrix.info/ba.js
63.34.156.181200 OK 3.0 kB IP 63.34.156.181:80
File type ASCII text, with very long lines (6659), with no line terminators
Hash 1704091e9eb2522effa5baa97cee26a0
5a4ee9ebe22e0e6c35de6ca6b7f8cbeea40c71d4
897c58672b375fd206d4df4ccd71a3fa3e29f739f4db5251b94895ad015f9710
GET /ba.js HTTP/1.1
Host: bitrix.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.10.1
Last-Modified: Wed, 19 May 2021 09:38:44 GMT
ETag: W/"60a4dca4-1a03"
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: bx_user_id=fc39cf2b2dbbaf0d96f6e94b8b0e1d60; expires=Sun, 22-May-33 22:14:56 GMT; path=/; domain=bitrix.info; SameSite=None; Secure
Access-Control-Allow-Origin: *
Expires: Sat, 27 May 2023 22:14:56 GMT
Cache-Control: max-age=172800
Strict-Transport-Security: max-age=63072000
Content-Encoding: gzip
81.28.6.115/upload/iblock/974/p1hgrhq3djgz117i0ugiz21nmvt28lw8/cat%20logo.png
81.28.6.115200 OK 9.8 kB URL GET HTTP/1.1 81.28.6.115/upload/iblock/974/p1hgrhq3djgz117i0ugiz21nmvt28lw8/cat%20logo.png
IP 81.28.6.115:80
File type PNG image data, 768 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash e07b5e3ba858215f21e0d22915701253
6264af4c7d3816a59de2cfb1e1f2e46208a4c792
eb0882484062e473123a9f873d09079fc19c158e7ca4de1f8de9dd87a086f68b
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/974/p1hgrhq3djgz117i0ugiz21nmvt28lw8/cat%20logo.png HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:11 GMT
ETag: "2660-5ef7f38875467"
Accept-Ranges: bytes
Content-Length: 9824
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Content-Type: image/png
81.28.6.115/ajax/application_menu_ajax_form.php
81.28.6.115200 OK 1.9 kB URL GET HTTP/1.1 81.28.6.115/ajax/application_menu_ajax_form.php
IP 81.28.6.115:80
File type HTML document text\012- HTML document, ASCII text, with very long lines (302), with CRLF line terminators
Hash 6f286dab67e613570d969836645e29af
c90a9cb9f80b3595a76aba477439100c8a116f74
b820965fcab5bda46ddc351fa574fb6801128e2a2344f134798c2ce1e3503bb9
Analyzer Verdict Alert quad9 Sinkholed
GET /ajax/application_menu_ajax_form.php HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (33a8fa9ad625ce57f45069e762a186f9)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1944
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
bitrix.info/bx_stat
63.34.156.181406 Not Acceptable 10 B IP 63.34.156.181:80
File type JSON data\012- , ASCII text, with no line terminators
Hash 190f0ca90ef9d8f401ed505b8e377411
12ad51bbdfcc081a984bbff898a0d47cc29a61dc
bb54369234516c2f2469a9989fce0f73145879defec57a2b276b5b1e0bf92336
POST /bx_stat HTTP/1.1
Host: bitrix.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 255
Origin: http://81.28.6.115
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 406 Not Acceptable
Date: Thu, 25 May 2023 22:14:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.10.1
Access-Control-Allow-Origin: http://81.28.6.115
81.28.6.115/ajax/application_bottom_ajax_form.php
81.28.6.115200 OK 2.0 kB URL GET HTTP/1.1 81.28.6.115/ajax/application_bottom_ajax_form.php
IP 81.28.6.115:80
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a3bfac43a73fee26331bda620fb338e4
9ca136e0ddb64b17bdbde359e720849cf0a53d6c
93c2f56ab9f0661028ebb115a64ef41c861442fe6936e40033d0f6f17e4ac353
Analyzer Verdict Alert quad9 Sinkholed
GET /ajax/application_bottom_ajax_form.php HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (33a8fa9ad625ce57f45069e762a186f9)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1956
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
81.28.6.115/upload/iblock/968/3q4g9iqy3jglmzcitoihaij985veoybv.jpg
81.28.6.115200 OK 4.9 MB URL GET HTTP/1.1 81.28.6.115/upload/iblock/968/3q4g9iqy3jglmzcitoihaij985veoybv.jpg
IP 81.28.6.115:80
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 4025x4096, components 3\012- data
Size 4.9 MB (4869414 bytes)
Hash 65767cdbef9bd846b7328222a59babc9
6f91ee0e1c5ca537d1db60c836f9aec443f93898
eb04d60cdd65116e5c8ec40ca1d1e06ee0ae8816757788bab3c40ec5afcae728
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/968/3q4g9iqy3jglmzcitoihaij985veoybv.jpg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:16 GMT
ETag: "4a4d26-5ef7f38c95ebe"
Accept-Ranges: bytes
Content-Length: 4869414
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
81.28.6.115/local/templates/viewapp/assets/fonts/PT-Serif_Bold.woff
81.28.6.115200 OK 84 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/fonts/PT-Serif_Bold.woff
IP 81.28.6.115:80
File type Web Open Font Format, TrueType, length 83836, version 1.2\012- data
Hash 06d594aaa7f11550d4bf404507e748ed
8873a8acedec3ffb6c24960d51931941b30068cc
113f7f810e2760170025f908a58ea3b89b85e514f6f8fae070b78a59deeb1f7c
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/fonts/PT-Serif_Bold.woff HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "1477c-5ef7f38e2e207"
Accept-Ranges: bytes
Content-Length: 83836
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: font/woff
81.28.6.115/local/templates/viewapp/assets/fonts/PT-Root-UI_Bold.woff
81.28.6.115200 OK 80 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/fonts/PT-Root-UI_Bold.woff
IP 81.28.6.115:80
File type Web Open Font Format, TrueType, length 79540, version 2.1\012- data
Hash 6ea0c813aa8b026c52fe6e4dcb29af21
79e7c70fef7c6b86947a42ec8ea380346002a1b1
83fdc96e1383c8ac52bdbbe81c0f0615920c5bf77aef544a2ceef37fb3ca0950
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/fonts/PT-Root-UI_Bold.woff HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "136b4-5ef7f38e2f1a7"
Accept-Ranges: bytes
Content-Length: 79540
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Content-Type: font/woff
81.28.6.115/upload/iblock/8db/xbcsybueeq4v92fv9z5a91ukwh7oupeq.jpg
81.28.6.115200 OK 8.6 MB URL GET HTTP/1.1 81.28.6.115/upload/iblock/8db/xbcsybueeq4v92fv9z5a91ukwh7oupeq.jpg
IP 81.28.6.115:80
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 4096x2626, components 3\012- data
Size 8.6 MB (8603861 bytes)
Hash d67b602b6573b8e83e5b3b5c71a326d9
e36490cca03cfffcf2155f05e5e641b3f3808488
649d08b6f026919a8643b7d9b5c6d7849641d9b506a93900d540434d605400ad
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/8db/xbcsybueeq4v92fv9z5a91ukwh7oupeq.jpg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:11 GMT
ETag: "8348d5-5ef7f3884b486"
Accept-Ranges: bytes
Content-Length: 8603861
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
81.28.6.115/local/templates/viewapp/assets/fonts/PT-Root-UI_Regular.woff
81.28.6.115200 OK 79 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/fonts/PT-Root-UI_Regular.woff
IP 81.28.6.115:80
File type Web Open Font Format, TrueType, length 79268, version 2.1\012- data
Hash 4f3d7e5980522ac6eddbe418fd3d0e21
df6980a100671ce7932993cb1196257cadeafd4a
f589d18b3911c0b1f3051cce92084f221be907907c9ad884c84b86f9a0a65e34
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/fonts/PT-Root-UI_Regular.woff HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "135a4-5ef7f38e2e207"
Accept-Ranges: bytes
Content-Length: 79268
Keep-Alive: timeout=10, max=96
Connection: Keep-Alive
Content-Type: font/woff
81.28.6.115/local/templates/viewapp/assets/fonts/PT-Root-UI_Medium.woff
81.28.6.115200 OK 80 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/fonts/PT-Root-UI_Medium.woff
IP 81.28.6.115:80
File type Web Open Font Format, TrueType, length 79652, version 2.1\012- data
Hash 47830b37516f95d2d865a3c0065850af
d2b3ccfadc608e3819e2447bf8c9f9b17cae9e6b
1f1bf351328e92756cd813b9e2ec3eb04442c59aba805b94e4156bb4062394ff
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/fonts/PT-Root-UI_Medium.woff HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "13724-5ef7f38e2e207"
Accept-Ranges: bytes
Content-Length: 79652
Keep-Alive: timeout=10, max=96
Connection: Keep-Alive
Content-Type: font/woff
81.28.6.115/local/templates/viewapp/assets/images/cases/case.png
81.28.6.115200 OK 2.5 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/images/cases/case.png
IP 81.28.6.115:80
File type PNG image data, 320 x 220, 8-bit/color RGBA, non-interlaced\012- data
Hash e9c689dfb3206fb550cde198295e6cb7
74c8060830e2756ce71705c5b60a33d874483820
0be7d4d9a480d3fcde90fe2ea4ab10f6c8e2c3dafd0549b14e42a57d0921027d
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/images/cases/case.png HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:19 GMT
ETag: "9f5-5ef7f390137b1"
Accept-Ranges: bytes
Content-Length: 2549
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Content-Type: image/png
81.28.6.115/local/templates/viewapp/assets/images/cases/camera.png
81.28.6.115200 OK 6.2 kB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/images/cases/camera.png
IP 81.28.6.115:80
File type PNG image data, 320 x 220, 8-bit/color RGBA, non-interlaced\012- data
Hash 90039fccdf1fe184b13862acae362034
5e5b5a6bcf5618d403581325509af5a8821f5d9e
277e95a3f4dbe622215098991cb37d9488cb66a74625e2d0cbbc51c19099c15b
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/images/cases/camera.png HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:19 GMT
ETag: "1841-5ef7f3903e732"
Accept-Ranges: bytes
Content-Length: 6209
Keep-Alive: timeout=10, max=95
Connection: Keep-Alive
Content-Type: image/png
81.28.6.115/local/templates/viewapp/assets/images/cases/mark.png
81.28.6.115200 OK 268 B URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/images/cases/mark.png
IP 81.28.6.115:80
File type PNG image data, 14 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash d211a2455072d65b258be6b8a7ffad20
36aed81562a99b78d3ae8e5e5d4b12a92fbdea43
79323543b8e5e93acc627a14479efae6f254effee6e03531002314c12ad77ad8
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/images/cases/mark.png HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:20 GMT
ETag: "10c-5ef7f39085bd4"
Accept-Ranges: bytes
Content-Length: 268
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/png
81.28.6.115/local/templates/viewapp/assets/images/cases/crossIco.png
81.28.6.115200 OK 263 B URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/images/cases/crossIco.png
IP 81.28.6.115:80
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 14bf31473e7b127896cb92b87045edc0
1cdada1c8a4f000735cccc3cc810e891808334d5
d1647da123cdfcb9f5f910fc860ff914824e4738341058fb898a42a1538e3f87
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/images/cases/crossIco.png HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:20 GMT
ETag: "107-5ef7f39059cb3"
Accept-Ranges: bytes
Content-Length: 263
Keep-Alive: timeout=10, max=95
Connection: Keep-Alive
Content-Type: image/png
81.28.6.115/upload/iblock/48d/bp7scxow39siwsmjga3lo7dh4vdecd65.svg
81.28.6.115200 OK 2.1 kB URL GET HTTP/1.1 81.28.6.115/upload/iblock/48d/bp7scxow39siwsmjga3lo7dh4vdecd65.svg
IP 81.28.6.115:80
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1982)
Hash b856816f81eea4986baa312c99e9366c
18ed8b01334b50ab97bcbb5ba0bf0b9734d585ea
f030dbddad7008a993c7ab78d00353a9db1e7af1116c72dad20929fb265b9e0d
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/48d/bp7scxow39siwsmjga3lo7dh4vdecd65.svg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:12 GMT
ETag: "856-5ef7f388f91ca"
Accept-Ranges: bytes
Content-Length: 2134
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
81.28.6.115/upload/iblock/2dc/o0zsh6pjgtlff5s9nou3vscqzthfga13.svg
81.28.6.115200 OK 2.3 kB URL GET HTTP/1.1 81.28.6.115/upload/iblock/2dc/o0zsh6pjgtlff5s9nou3vscqzthfga13.svg
IP 81.28.6.115:80
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2190), with CRLF line terminators
Hash 2ef374524806f115d9dedf5a010d1fdf
ff08fc548ee171aa886eaa2705870f310228c0ca
cfb8c81298fa0e513dd379e7fa7eb0421cd1c1be486339106a68ed4b8e2360b6
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/2dc/o0zsh6pjgtlff5s9nou3vscqzthfga13.svg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:11 GMT
ETag: "92a-5ef7f387e7ac4"
Accept-Ranges: bytes
Content-Length: 2346
Keep-Alive: timeout=10, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
81.28.6.115/upload/iblock/1fc/egz2wx0alv1zjdok5mgiu0lkkszvuemm.jpg
81.28.6.115200 OK 1.6 MB URL GET HTTP/1.1 81.28.6.115/upload/iblock/1fc/egz2wx0alv1zjdok5mgiu0lkkszvuemm.jpg
IP 81.28.6.115:80
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2464x2464, components 3\012- data
Size 1.6 MB (1577927 bytes)
Hash f36f6cc8fa0539858e8eb30694437ffa
700ae0e55a4f0f47355ac80c094b733dddc371c1
d44fb1ae60dc7999114b56385bf05b1c6988dab27f2ec4f47b6412d64ccbf26d
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/1fc/egz2wx0alv1zjdok5mgiu0lkkszvuemm.jpg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:14 GMT
ETag: "1813c7-5ef7f38b2b9d6"
Accept-Ranges: bytes
Content-Length: 1577927
Keep-Alive: timeout=10, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
81.28.6.115/upload/iblock/bdd/i8j63dqcfkquxai0ket3wytdyw5z9k2r/bsgv%20logo.png
81.28.6.115200 OK 31 kB URL GET HTTP/1.1 81.28.6.115/upload/iblock/bdd/i8j63dqcfkquxai0ket3wytdyw5z9k2r/bsgv%20logo.png
IP 81.28.6.115:80
File type PNG image data, 768 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash e6e830f3d9ffcb7ba862eeefd9c6c198
47a81cc3a0c482d4d42e2bc4c84c34f6ce50cc2d
b43f19303886e5c79f5990a90fbd4ea3ec106a6b6beae6eb6208e64e2c63ed26
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/bdd/i8j63dqcfkquxai0ket3wytdyw5z9k2r/bsgv%20logo.png HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:57 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "77e6-5ef7f38da1804"
Accept-Ranges: bytes
Content-Length: 30694
Keep-Alive: timeout=10, max=93
Connection: Keep-Alive
Content-Type: image/png
81.28.6.115/upload/iblock/75c/0aek3fcqr61drrh1ug6sy46y3zlo1veg/siemens%20logo.png
81.28.6.115200 OK 6.7 kB URL GET HTTP/1.1 81.28.6.115/upload/iblock/75c/0aek3fcqr61drrh1ug6sy46y3zlo1veg/siemens%20logo.png
IP 81.28.6.115:80
File type PNG image data, 768 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash d23b3f583a5e2f207b864e0c0e7c46e6
74d8eafb8db0c8ad53086959a1f9e657074b209c
9047c8cf01710a3df36d1df115bf10dad9a5dee9517f16c4d97133ed9152fc54
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/75c/0aek3fcqr61drrh1ug6sy46y3zlo1veg/siemens%20logo.png HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:57 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:11 GMT
ETag: "1a0f-5ef7f3888bbc7"
Accept-Ranges: bytes
Content-Length: 6671
Keep-Alive: timeout=10, max=92
Connection: Keep-Alive
Content-Type: image/png
81.28.6.115/upload/iblock/744/e74rvugef2rzggo4c558jz1201qufiyx.jpg
81.28.6.115200 OK 1.5 MB URL GET HTTP/1.1 81.28.6.115/upload/iblock/744/e74rvugef2rzggo4c558jz1201qufiyx.jpg
IP 81.28.6.115:80
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2464x2464, components 3\012- data
Size 1.5 MB (1455088 bytes)
Hash 716767b2687b662dff1bf1400a51952a
2c85d17333864af15081f4db13f8f943a56bfa0d
175f84b73323dab8e44047e9cc37efa8953333f7077f5465227d6d4e11af92fe
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/744/e74rvugef2rzggo4c558jz1201qufiyx.jpg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:14 GMT
ETag: "1633f0-5ef7f38af00b5"
Accept-Ranges: bytes
Content-Length: 1455088
Keep-Alive: timeout=10, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
81.28.6.115/local/templates/viewapp/assets/images/main/formMainBg.png
81.28.6.115200 OK 1.3 MB URL GET HTTP/1.1 81.28.6.115/local/templates/viewapp/assets/images/main/formMainBg.png
IP 81.28.6.115:80
File type PNG image data, 1280 x 724, 8-bit/color RGBA, non-interlaced\012- data
Size 1.3 MB (1250983 bytes)
Hash 24b9b7263eb4ace152ab61334d31549f
22fa62793d06e72b8ac8022e58420fea7540967f
d4dfd5bf61fca5552e881a3f2af94238052ec91ce93e175b75dee19c85cecf78
Analyzer Verdict Alert quad9 Sinkholed
GET /local/templates/viewapp/assets/images/main/formMainBg.png HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/local/templates/viewapp/assets/css/style.min.css?1676278275122493
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:57 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:18 GMT
ETag: "1316a7-5ef7f38eb8cca"
Accept-Ranges: bytes
Content-Length: 1250983
Keep-Alive: timeout=10, max=91
Connection: Keep-Alive
Content-Type: image/png
81.28.6.115/favicon.ico
81.28.6.115200 OK 1.2 kB IP 81.28.6.115:80
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash ff30ae965ecf84c93a23ba2c71f28d88
beb96d873d653e833d5923fbee580ac00acaf376
1f3bdfdc68d6c0f9105b2cacfb78fb1ea62e75fb26def776507b2f284b847c3e
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:57 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:37:42 GMT
ETag: "47e-5ef7f3df3c3ca"
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=10, max=95
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash abec0b27117032d4b87c029a25e2ce98
4c80c24717da4be72fd100343c5e92c1724ccd74
bc6bffd934c5172ab19ec9a41808b5543016f109670947e16c7ba285a295f606
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 22:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__en.js
142.250.74.35200 OK 167 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=8d5r3zoxyini
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (554)
Size 167 kB (166637 bytes)
Hash 213e1a6e418f3df36f2ec077314ef525
7a553e545a48271f3afec47b3ed5f3518cfdd7b4
ad5008998005064af73229fb144d5f8e789641f8a846e2064ec18788a37e9e2d
GET /recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://81.28.6.115
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166637
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 03:17:52 GMT
expires: Fri, 24 May 2024 03:17:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 May 2023 04:00:52 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 68225
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash abec0b27117032d4b87c029a25e2ce98
4c80c24717da4be72fd100343c5e92c1724ccd74
bc6bffd934c5172ab19ec9a41808b5543016f109670947e16c7ba285a295f606
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 22:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=vipxa74m68c1
142.250.74.132200 OK 1.1 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=vipxa74m68c1
IP 142.250.74.132:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (309)
Hash 5e58d86562bb741073a13ad831655216
8d05ee3cc29d635180ce31a35696f8dfc10ff8e7
10bf7101f44c922f8bf6f48fd62b721910a9fd17828cf28dabc8a11edc7c256e
GET /recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=vipxa74m68c1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-security-policy: script-src 'nonce-5FzW_zBi4_CkCSYsXGVOvg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-type: text/html; charset=utf-8
content-encoding: gzip
date: Thu, 25 May 2023 22:14:57 GMT
expires: Thu, 25 May 2023 22:14:57 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1085
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=vipxa74m68c1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 10:23:44 GMT
expires: Wed, 22 May 2024 10:23:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 May 2023 04:00:52 GMT
content-type: text/css
vary: Accept-Encoding
age: 215474
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__en.js
142.250.74.35200 OK 167 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=8d5r3zoxyini
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (554)
Size 167 kB (166637 bytes)
Hash 213e1a6e418f3df36f2ec077314ef525
7a553e545a48271f3afec47b3ed5f3518cfdd7b4
ad5008998005064af73229fb144d5f8e789641f8a846e2064ec18788a37e9e2d
GET /recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166637
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 03:17:52 GMT
expires: Fri, 24 May 2024 03:17:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 May 2023 04:00:52 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 68226
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=8d5r3zoxyini
142.250.74.132200 OK 1.1 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=8d5r3zoxyini
IP 142.250.74.132:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (309)
Hash d257f2dd0b8dcc1c523c394c0ef85da1
e44df736c5f1e41d9234d7f20adb95176e7244c2
4e693e70995d931cf8852632b1a1296ad2cf1904f825c789c10a1e84c340e689
GET /recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=8d5r3zoxyini HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-security-policy: script-src 'nonce-S7-YSVOBtaU537aZeZ79gQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-type: text/html; charset=utf-8
content-encoding: gzip
date: Thu, 25 May 2023 22:14:58 GMT
expires: Thu, 25 May 2023 22:14:58 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1085
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=vipxa74m68c1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 10:23:44 GMT
expires: Wed, 22 May 2024 10:23:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 May 2023 04:00:52 GMT
content-type: text/css
vary: Accept-Encoding
age: 215474
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__en.js
142.250.74.35200 OK 167 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=8d5r3zoxyini
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (554)
Size 167 kB (166637 bytes)
Hash 213e1a6e418f3df36f2ec077314ef525
7a553e545a48271f3afec47b3ed5f3518cfdd7b4
ad5008998005064af73229fb144d5f8e789641f8a846e2064ec18788a37e9e2d
GET /recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166637
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 03:17:52 GMT
expires: Fri, 24 May 2024 03:17:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 May 2023 04:00:52 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 68226
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.35200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=vipxa74m68c1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:48:58 GMT
expires: Mon, 29 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 260760
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=8d5r3zoxyini
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 189806
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=8d5r3zoxyini
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 189806
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.35200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LccO4QjAAAAAHGQx-Pnc3VJf-nPlNEretzIPCaJ&co=aHR0cDovLzgxLjI4LjYuMTE1Ojgw&hl=en&v=FFtxPnbuZxq6kkeHkQJR2MNQ&size=invisible&cb=vipxa74m68c1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:48:58 GMT
expires: Mon, 29 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 260760
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
81.28.6.115/upload/iblock/181/7zsi4ratoowxlr1ve5c9z96u5296zw3b.jpg
81.28.6.115200 OK 1.5 MB URL GET HTTP/1.1 81.28.6.115/upload/iblock/181/7zsi4ratoowxlr1ve5c9z96u5296zw3b.jpg
IP 81.28.6.115:80
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2464x2464, components 3\012- data
Size 1.5 MB (1525083 bytes)
Hash 65e6daa259bd581e9a0c1d234e4908d5
1b8368b150a21c666528628a871a97a9ea9583e4
46956c83a7bb2999f78750090469f367349256648d80473f345ce618947a30b7
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/181/7zsi4ratoowxlr1ve5c9z96u5296zw3b.jpg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:56 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "17455b-5ef7f38dbcd84"
Accept-Ranges: bytes
Content-Length: 1525083
Keep-Alive: timeout=10, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
81.28.6.115/upload/iblock/40e/62u2eih1ak1y9yhzv72q6l9ubre3xrya.jpg
81.28.6.115200 OK 3.0 MB URL GET HTTP/1.1 81.28.6.115/upload/iblock/40e/62u2eih1ak1y9yhzv72q6l9ubre3xrya.jpg
IP 81.28.6.115:80
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2464x2464, components 3\012- data
Size 3.0 MB (2976478 bytes)
Hash 4e7cdec94527bb128b16e29c1a416355
3c273b69a51b261c5e503127403df156360e4c33
c674b171fb9c07fed55d33eddf2ee108af5f82d54233c8a1279282f7ac298b94
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/40e/62u2eih1ak1y9yhzv72q6l9ubre3xrya.jpg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:17 GMT
ETag: "2d6ade-5ef7f38dc7965"
Accept-Ranges: bytes
Content-Length: 2976478
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
81.28.6.115/upload/iblock/142/mxdps6le7223wniduaz2x0rwdm1kyli2.jpg
0.0.0.0 0 B URL GET 81.28.6.115/upload/iblock/142/mxdps6le7223wniduaz2x0rwdm1kyli2.jpg
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/142/mxdps6le7223wniduaz2x0rwdm1kyli2.jpg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:11 GMT
ETag: "6f17d5-5ef7f387e7ac4"
Accept-Ranges: bytes
Content-Length: 7280597
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
81.28.6.115/upload/iblock/4a8/ps1py1qr2im6nlju2do4goq2lh35s3yi.jpg
0.0.0.0 0 B URL GET 81.28.6.115/upload/iblock/4a8/ps1py1qr2im6nlju2do4goq2lh35s3yi.jpg
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/iblock/4a8/ps1py1qr2im6nlju2do4goq2lh35s3yi.jpg HTTP/1.1
Host: 81.28.6.115
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://81.28.6.115/
Cookie: PHPSESSID=f3xNnwMIE4FMgVIBT2ixClblfrz9jog6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 22:14:55 GMT
Server: Apache/2.4.54 (Ubuntu)
Last-Modified: Sat, 10 Dec 2022 20:36:12 GMT
ETag: "4ef73e-5ef7f388a1388"
Accept-Ranges: bytes
Content-Length: 5175102
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Content-Type: image/jpeg