rss777.com/asset/download/33.exe
188.114.97.1403 Forbidden 7.7 kB URL User Request GET HTTP/1.1 rss777.com/asset/download/33.exe
IP 188.114.97.1:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2884)
Hash 9bacf23ac9367acddd6b58fa406ec406
229bde42c1b61d6e4cbc49914b25fa1129471142
434dce96305c36c7fe62c5792d9752fe2a6167f9f167588b1d729a8bffee9546
NIDS Severity Alert suricata high ET MALWARE JS/Nemucod requesting EXE payload 2016-02-01
GET /asset/download/33.exe HTTP/1.1
Host: rss777.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Wed, 07 Jun 2023 02:22:36 GMT
content-type: text/html; charset=UTF-8
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ya9Ty%2FHzeK01bOQpqQV5q%2FiGLZlKYqBSKiJsR%2BbgS2rjKq9SNgP8meoq3B6S2hJ7OQELRutWZJaRmnTkS9g3HiLwLBmWOpZwpC%2F2OifWZn%2Fe79A0H%2BZGGaIDB0Ej"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d356da35d1fb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
rss777.com/cdn-cgi/styles/challenges.css
188.114.96.1200 OK 2.6 kB URL GET HTTP/1.1 rss777.com/cdn-cgi/styles/challenges.css
IP 188.114.96.1:80
Requested by http://rss777.com/asset/download/33.exe
File type ASCII text, with very long lines (6600), with no line terminators
Hash 2c78b7f8fa496092bf41d5edd51611e7
8b0b1b276e8194b0a5497db478ec2ea9b4f83c42
2b0bd09c1cc7119d27e45353a59bf6c2721563e1689853ff704057a7439508d2
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: rss777.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://rss777.com/asset/download/33.exe
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 02:22:36 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 30 May 2023 15:20:42 GMT
ETag: W/"6476144a-19c8"
Server: cloudflare
CF-RAY: 7d356da74def069b-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Wed, 07 Jun 2023 04:22:36 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
rss777.com/cdn-cgi/images/trace/managed/js/transparent.gif?ray=7d356da4b89b0b41
188.114.96.1200 OK 42 B URL GET HTTP/1.1 rss777.com/cdn-cgi/images/trace/managed/js/transparent.gif?ray=7d356da4b89b0b41
IP 188.114.96.1:80
Requested by http://rss777.com/asset/download/33.exe
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cdn-cgi/images/trace/managed/js/transparent.gif?ray=7d356da4b89b0b41 HTTP/1.1
Host: rss777.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://rss777.com/asset/download/33.exe
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 02:22:36 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Tue, 30 May 2023 15:20:42 GMT
ETag: "6476144a-2a"
Server: cloudflare
CF-RAY: 7d356da7ce08069b-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Wed, 07 Jun 2023 04:22:36 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
rss777.com/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=7d356da4b89b0b41
188.114.96.1200 OK 59 kB URL GET HTTP/1.1 rss777.com/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=7d356da4b89b0b41
IP 188.114.96.1:80
Requested by http://rss777.com/asset/download/33.exe
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2fa8372e6fcfce7290ba56e3c878b8c2
5a106ce9254f5e608174712016510cf175f6a90b
e82d71184a156dd2fa9c208e79a9bee6ff8d85481022d4147ef65aada3b0f7ab
GET /cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=7d356da4b89b0b41 HTTP/1.1
Host: rss777.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://rss777.com/asset/download/33.exe?__cf_chl_rt_tk=zXtt0.mB6PhHTr.ylSjcBdcur6fQMdDB7uBm6QxN7_0-1686104556-0-gaNycGzNBjs
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 02:22:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LmTDaOmM58tbd6JCePb4RuG6aNKtjM8I3JH2peLGzqVXMqPRqNLFGeAftn40DpgFgTd%2BC8Yb4knw2mnciezIKAiuqo0rdDLTq2D9bOeO%2BoQ%2FT4aGhxfhtnNnYD3i"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7d356da7de0a069b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
rss777.com/cdn-cgi/challenge-platform/h/g/flow/ov1/668230396:1686100907:Bg4HGRQ8CIjkBEdYRWwVTpxfZvh2ghoM54z5uVwmTHI/7d356da4b89b0b41/2934102b099c9e1
188.114.96.1200 OK 5.6 kB URL POST HTTP/1.1 rss777.com/cdn-cgi/challenge-platform/h/g/flow/ov1/668230396:1686100907:Bg4HGRQ8CIjkBEdYRWwVTpxfZvh2ghoM54z5uVwmTHI/7d356da4b89b0b41/2934102b099c9e1
IP 188.114.96.1:80
Requested by http://rss777.com/asset/download/33.exe
File type ASCII text, with very long lines (7416), with no line terminators
Hash 379f9d79d8ba66b7a3dbef45c17ae2bd
caac654e7b8fd6a859b95c13741085bd317bd903
c1848a689e90eea018f087dfeb4627a55e1eeee58a624ef8c39003753af117fc
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/668230396:1686100907:Bg4HGRQ8CIjkBEdYRWwVTpxfZvh2ghoM54z5uVwmTHI/7d356da4b89b0b41/2934102b099c9e1 HTTP/1.1
Host: rss777.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://rss777.com/asset/download/33.exe
Content-type: application/x-www-form-urlencoded
CF-Challenge: 2934102b099c9e1
Content-Length: 1722
Origin: http://rss777.com
DNT: 1
Connection: keep-alive
Cookie: cf_chl_2=2934102b099c9e1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 02:22:37 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: LuWMjFnri7QP6SDtZ/3oNRzAVbx2n8VKG85cv3vDuyCLVG9LeozHHB/MPlLz4Gi5$sr3PPCEbUdo98/0uO/2ntg==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZNMH54uNwsHYTbc%2BViqzxak0vZjIRzaau%2Biof8Y4BBfWG2Zt4EXnIeS3%2FAWa%2Bhl5Mmz%2BYLuC4CxDFRI%2B7I1qwTNVDxtb3V7CcsMaheyaBMP%2B6ApnWnkQI2q176Dw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7d356da94ba90b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
rss777.com/favicon.ico
188.114.96.1200 OK 754 B IP 188.114.96.1:80
Requested by http://rss777.com/asset/download/33.exe
File type PNG image data, 17 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash 911ed8d7b9aabb3a19dc4152ebbb59b3
5116d2f78ab88cde1bb6136d91ef75ba383180df
1994bfc166741e26d623fde5d93abae6522141bc82d6f2f33860f0294a4579a4
GET /favicon.ico HTTP/1.1
Host: rss777.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://rss777.com/asset/download/33.exe
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 02:22:37 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 11 Jan 2020 07:03:36 GMT
ETag: W/"59d0a43e4dc8d51:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=odaz8q5roa1H%2BCeQiJkoBX6OOONyIn3u%2B8wKXQprTfb8IAx%2FQss5CrICeZT%2BCXiRY7yU4IJB%2BjMJyG%2ByhUDc1FFsq%2FgTb3KDlMUhMQHRsrC1uELkMR7V3THXpbuh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d356da80e12069b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
rss777.com/favicon.ico
188.114.96.1200 OK 754 B IP 188.114.96.1:80
Requested by http://rss777.com/asset/download/33.exe
File type PNG image data, 17 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash 911ed8d7b9aabb3a19dc4152ebbb59b3
5116d2f78ab88cde1bb6136d91ef75ba383180df
1994bfc166741e26d623fde5d93abae6522141bc82d6f2f33860f0294a4579a4
GET /favicon.ico HTTP/1.1
Host: rss777.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://rss777.com/asset/download/33.exe
DNT: 1
Connection: keep-alive
Cookie: cf_chl_2=2934102b099c9e1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 02:22:37 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 11 Jan 2020 07:03:36 GMT
ETag: W/"59d0a43e4dc8d51:0"
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6eRRrHgi8CRNLR2fl6SIblPiBUkwU5mZE70zZHHlZz4DVQGvBXqrt1lFMQhpLUMqlKAFeOoVc1G8kIYEn%2BCnR%2BC6Xm4eu4XL%2FBZJkm3tR%2FdRQRQD92d%2Fto6%2FNO5w"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d356da89f8fb50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/800945085:1686100902:4izIxqphnlxCZbqKIlq-iXrjrBJpkNAu8uN1_b32Ahw/7d356da9dc21b52d/cba89da610898e5
104.18.7.185200 OK 184 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/800945085:1686100902:4izIxqphnlxCZbqKIlq-iXrjrBJpkNAu8uN1_b32Ahw/7d356da9dc21b52d/cba89da610898e5
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 184 kB (183728 bytes)
Hash bab70106532ddabfcacb558ee74e9a87
441258ee70727faecb0f7a716257499a438113c1
a8f03f4f5269dbb129cf66001388917ca045de77e18e27121b79ad2dd6dd623f
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/800945085:1686100902:4izIxqphnlxCZbqKIlq-iXrjrBJpkNAu8uN1_b32Ahw/7d356da9dc21b52d/cba89da610898e5 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: cba89da610898e5
Content-Length: 2714
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 02:22:37 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: lzpbgnwDBhQpTOP1spcnoKIPv7GlkwP3pSMKlVuA+/9Mw8g/EZBJkEoRilGq+AqHVE2a0TYQ2SMnNLQslLu0l+uDnigLKecEAfVq7yRHEUPJWSy+ZMXTEU2jMGtn+W7y/XW8Azt4AD9sAkpphIjJmkG7M2LTljln15wb292tpo4YRJmPVFNKyyCiLxvwgzNfZRXT6O6g/6mz7ZJNZq0St/E4DvceabWPI97qbbDaL9xnCD5q4ws+fhiyNYY2Wk/pwbk4ZV2g2MZO8PrccmWThu0CuUCthiCsfPJS/2TQ2EzmqHNECv8V9GJi2reV/rHA3ztTwpi/oZT4jB93gffOt4WPX8xVMMIbHE1lAuZSoWVsta7pet+BZTMEmFmXvhufbiXmSI43PGbboBF0V+8pjA==$IjcmY7BasjHhW2AFmjtpkQ==
server: cloudflare
cf-ray: 7d356dabfd06b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/img/7d356da9dc21b52d/1686104557441/Xqwa_9p3TfIE47q
104.18.7.185200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/img/7d356da9dc21b52d/1686104557441/Xqwa_9p3TfIE47q
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type PNG image data, 35 x 2, 8-bit/color RGB, non-interlaced\012- data
Hash 485327ab03e0d03c42b456293db89a3d
7896c99c055860c8e190cb7bc27088f16a4eab53
cb5b3ae215b4a5547c31ec0770e3756a11569b87f2c939fa0b96f1c96ed9afb6
GET /cdn-cgi/challenge-platform/h/g/img/7d356da9dc21b52d/1686104557441/Xqwa_9p3TfIE47q HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 02:22:38 GMT
content-type: image/png
server: cloudflare
cf-ray: 7d356db14f3fb52d-OSL
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
104.18.7.185200 OK 24 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
IP 104.18.7.185:443
Requested by http://rss777.com/asset/download/33.exe
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10899)
Hash 1f8c2d67a649f62d8ebf2d03bd971d8d
c06d90b588eefed6abf6462eb53b6b5908489b04
3c29fd53e02179c6d2796cd921dc26ba67d9f1f678fdc83aa8253a14d8a90654
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 02:22:37 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7d356da9dc21b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/800945085:1686100902:4izIxqphnlxCZbqKIlq-iXrjrBJpkNAu8uN1_b32Ahw/7d356da9dc21b52d/cba89da610898e5
104.18.7.185200 OK 13 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/800945085:1686100902:4izIxqphnlxCZbqKIlq-iXrjrBJpkNAu8uN1_b32Ahw/7d356da9dc21b52d/cba89da610898e5
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (13216), with no line terminators
Hash 4301535b4b488c95441732c67f4002f0
39c7e4d19f1c5361249c7bfd8b642447818610f1
df2aa558e268cb7b88ce56663b9cb688dc11300866663ce97191224e4d698f50
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/800945085:1686100902:4izIxqphnlxCZbqKIlq-iXrjrBJpkNAu8uN1_b32Ahw/7d356da9dc21b52d/cba89da610898e5 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: cba89da610898e5
Content-Length: 21690
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 02:22:39 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: kk+5WBT8OgRsNmEUsamI7pPw+Yzho+vuDhYOEq3EB22oq0KXiO/Dd0/Yseys/33L$apg9ZERhHrxI1El58CyJQQ==
server: cloudflare
cf-ray: 7d356db75a71b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/turnstile/v0/g/68662470/api.js?onload=_cf_chl_turnstile_l&render=explicit
104.18.7.185200 OK 19 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/g/68662470/api.js?onload=_cf_chl_turnstile_l&render=explicit
IP 104.18.7.185:443
Requested by http://rss777.com/asset/download/33.exe
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (19175)
Hash 21a964474a4841c3e62893476cfec550
af06eb1e31d451fe557b7581e707cd88a3107491
fb479d9c5db685793fd57b4cacb188d2aa9ab40d660d54e1cf35d0f54b390c12
GET /turnstile/v0/g/68662470/api.js?onload=_cf_chl_turnstile_l&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rss777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 02:22:36 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d356da8ddb6b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7d356da9dc21b52d
104.18.7.185200 OK 175 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7d356da9dc21b52d
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 175 kB (174682 bytes)
Hash 80d330f8c6e6bdcfbef8111cabb1727f
a7ff1f946e93a6fcd81880831d0aa0c6fd630804
52f4219f1030db02c9d45b0c43941a60a7b426e181ce9d49b32f15e820290edf
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7d356da9dc21b52d HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/dzpg5/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 02:22:37 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=0, must-revalidate
server: cloudflare
cf-ray: 7d356daa7c59b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400