| | 104.21.69.68 | 403 Forbidden | 4.1 kB |
URL User Request GET HTTP/2IP104.21.69.68:443
CertificateIssuerLet's Encrypt Subjectcpclsn.com FingerprintB5:8E:5B:B4:ED:DA:A2:EE:FC:7B:F4:F8:AB:53:11:7A:46:1C:F0:2C ValidityWed, 10 Apr 2024 18:50:10 GMT - Tue, 09 Jul 2024 18:50:09 GMT
File typeHTML document, ASCII text, with very long lines (1125) Hashdae4692b8299759e06228b89d4729598 da19377b838abb16c800061ff5bad9ba0c2a88ce 616962adb06e86ab2115f4a2d6939ff82c18f469aaf4e8a5ceae01e3b73c062a
GET / HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sat, 04 May 2024 22:27:36 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Sat, 04 May 2024 22:27:51 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2Q%2F4zRkMcVy9PJXr3vI5%2Bkb5phrHsSNJ%2F0mMY1xjnm8b0HvtAh5g%2BkXs4gbllPEBJMN0OxWqJ%2BNHGGaBPwrKx1zkNma3rHPtowkYg48vIJljAcI86o%2BrpG5iDqhio%2BiyUEg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebeb4a3bd3b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| auth.cpclsn.com/cdn-cgi/styles/cf.errors.css | 172.67.206.8 | 200 OK | 4.5 kB |
URL GET HTTP/1.1auth.cpclsn.com/cdn-cgi/styles/cf.errors.css IP172.67.206.8:80
File typeASCII text, with very long lines (24050) Hash5e8c69a459a691b5d1b9be442332c87d f24dd1ad7c9080575d92a9a9a2c42620725ef836 84e3c77025ace5af143972b4a40fc834dcdfd4e449d4b36a57e62326f16b3091
GET /cdn-cgi/styles/cf.errors.css HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://auth.cpclsn.com/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:27:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 30 Apr 2024 15:20:25 GMT
ETag: W/"66310c39-5df3"
Server: cloudflare
CF-RAY: 87ebeb4c4cf956ca-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Sun, 05 May 2024 00:27:37 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
|
|
| auth.cpclsn.com/cdn-cgi/images/browser-bar.png?1376755637 | 172.67.206.8 | 200 OK | 715 B |
URL GET HTTP/1.1auth.cpclsn.com/cdn-cgi/images/browser-bar.png?1376755637 IP172.67.206.8:80
File typePNG image data, 960 x 53, 8-bit colormap, non-interlaced Hash226dcb8f6144bdaafdfbd8f2f354be64 3785cc5b3bf52f8e398177b0ff1020b24aa86b8c 8c873472f4925d5d47521db4d52532d2983e9cb1bde8b43143a6cc6db56c35db
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Sinkholed / Blocked |
GET /cdn-cgi/images/browser-bar.png?1376755637 HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://auth.cpclsn.com/cdn-cgi/styles/cf.errors.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:27:37 GMT
Content-Type: image/png
Content-Length: 715
Connection: keep-alive
Last-Modified: Tue, 30 Apr 2024 15:20:25 GMT
ETag: "66310c39-2cb"
Server: cloudflare
CF-RAY: 87ebeb4c9d5c56ca-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Sun, 05 May 2024 00:27:37 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| auth.cpclsn.com/cdn-cgi/images/cf-no-screenshot-error.png | 104.21.69.68 | 200 OK | 3.2 kB |
URL GET HTTP/1.1auth.cpclsn.com/cdn-cgi/images/cf-no-screenshot-error.png IP104.21.69.68:80
File typePNG image data, 178 x 175, 8-bit colormap, non-interlaced Hash0d768cbc261841d3affc933b9ac3130e aff136a4c761e1df1ada7e5d9a6ed0ebea74a4b7 1c53772285052e52bb7c12ad46a85a55747ed7bf66963fe1993fcef91ff5b0d0
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Sinkholed / Blocked |
GET /cdn-cgi/images/cf-no-screenshot-error.png HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://auth.cpclsn.com/cdn-cgi/styles/cf.errors.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:27:37 GMT
Content-Type: image/png
Content-Length: 3213
Connection: keep-alive
Last-Modified: Tue, 30 Apr 2024 15:20:25 GMT
ETag: "66310c39-c8d"
Server: cloudflare
CF-RAY: 87ebeb4c9c481c16-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Sun, 05 May 2024 00:27:37 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| auth.cpclsn.com/favicon.ico | 104.21.69.68 | 403 Forbidden | 1.7 kB |
URL GET HTTP/1.1auth.cpclsn.com/favicon.ico IP104.21.69.68:80
File typeHTML document, ASCII text, with very long lines (394) Hashc98578ecc5fc4cd19f5ed154eac1f7ac 0f11056de90c80d3d8c7d8c23dbfc0ccc84f65c5 9ae2f88a9d9ab177467dd0751d54f61c871b2af5792e12d2dee887ad7bd9038b
GET /favicon.ico HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://auth.cpclsn.com/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sat, 04 May 2024 22:27:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: max-age=15
Expires: Sat, 04 May 2024 22:27:52 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ck1LXcv35%2FmHctYvX3ofZBCtGDselNxuJPT3NJ6xUppAaKyM6Uk8pjouPWHVKQLtuFLK1poFfNPMRdsnWt%2B4Yxtnik775pUI79P03FkGuzbxGxuOCAAQu%2B%2Bv5tHO4nMsWjM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87ebeb4ccc661c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| auth.cpclsn.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.206.8 | 302 Moved Temporarily | 143 B |
URL GET HTTP/1.1auth.cpclsn.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.206.8:80
File typeHTML document, ASCII text, with CRLF line terminators Hashcb7b8f439b04c00f4a2d78160ddfee8d 9aa44b5d68f6359f10de0dcd24ea3e12548d9bd4 12755429beb15d5eb57eafa45b8dba326343dd099bf0552038694c3856e8860e
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Sat, 04 May 2024 22:27:37 GMT
Content-Type: text/html
Content-Length: 143
Connection: keep-alive
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Location: https://auth.cpclsn.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qNfMqgWUz%2FKUsOwtTPCh%2FuO%2B8CnE%2BD4frZdeuTwYjdTvOsSenu5kGcwGNSsaBcKc9JZcUyBE6zPOhxZlKN7H8ymzCyict4HAlnpmVT5HDGpcGTgnQYYbhHK9k8RqjcDEnCc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87ebeb4cdd8c56ca-OSL
alt-svc: h2=":443"; ma=60
|
|
| auth.cpclsn.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.206.8 | 302 Moved Temporarily | 0 B |
URL GET HTTP/1.1auth.cpclsn.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.206.8:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 04 May 2024 22:27:37 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NztJbAhGdvz1vNDeGMlbhvZMRlzW1nRIhyQKrcuV0jinZ4xpjcTGhRCRZUOJGmYy3GuUnvQ%2BRWvKaWpV0he2YTb07xlZGhqAxWpCKYrRLuqsBXiqE1SoLyfGj2hq%2BUA9P%2FM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebeb4d2856b4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| auth.cpclsn.com/cdn-cgi/challenge-platform/h/g/jsd/r/87ebeb4b7c3e56ca | 104.21.69.68 | 302 Moved Temporarily | 143 B |
URL POST HTTP/1.1auth.cpclsn.com/cdn-cgi/challenge-platform/h/g/jsd/r/87ebeb4b7c3e56ca IP104.21.69.68:80
File typeHTML document, ASCII text, with CRLF line terminators Hashcb7b8f439b04c00f4a2d78160ddfee8d 9aa44b5d68f6359f10de0dcd24ea3e12548d9bd4 12755429beb15d5eb57eafa45b8dba326343dd099bf0552038694c3856e8860e
POST /cdn-cgi/challenge-platform/h/g/jsd/r/87ebeb4b7c3e56ca HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 11568
Origin: http://auth.cpclsn.com
DNT: 1
Connection: keep-alive
Referer: http://auth.cpclsn.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Sat, 04 May 2024 22:27:37 GMT
Content-Type: text/html
Content-Length: 143
Connection: keep-alive
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Location: https://auth.cpclsn.com/cdn-cgi/challenge-platform/h/g/jsd/r/87ebeb4b7c3e56ca
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KzB2T%2BORSeWtGExCfA%2BCXg3W21zv%2BfpW8SJi2SqC6OKNg9KYfso5DPekJGAChucjtE9VaSr7C71tpQ1GMel%2F%2FuP4tDUnuuMzQz9RGf05T8Hu1jkc9%2B26KG8Dhu2uNRkeITw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87ebeb4e2cfe1c16-OSL
alt-svc: h2=":443"; ma=60
|
|
| auth.cpclsn.com/cdn-cgi/challenge-platform/h/g/jsd/r/87ebeb4b7c3e56ca | 172.67.206.8 | 302 Moved Temporarily | 7 B |
URL POST HTTP/1.1auth.cpclsn.com/cdn-cgi/challenge-platform/h/g/jsd/r/87ebeb4b7c3e56ca IP172.67.206.8:80
File typeASCII text, with no line terminators Hashfedb2d84cafe20862cb4399751a8a7e3 81f344a7686a80b4c5293e8fdc0b0160c82c06a8 f1234d75178d892a133a410355a5a990cf75d2f33eba25d575943d4df632f3a4
OPTIONS /cdn-cgi/challenge-platform/h/g/jsd/r/87ebeb4b7c3e56ca HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Referer: http://auth.cpclsn.com/
Origin: http://auth.cpclsn.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 400 Bad Request
date: Sat, 04 May 2024 22:27:37 GMT
content-type: application/json
content-length: 7
cf-chl-out: SSIK3tlseVtDYwqhtSa7Tg==$g3wuw8fzTVIHfyIB55ASZg==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R9z9iIgdZZYqBZnsUY4yvLaeLxLeQ93wOBx0B6%2BnN54R0CW8VI1AmHTE2B1KZGaxdcTx7xmQ0IDoD3n2vtSFSyu%2FILb2vpfwYn8tBlIIusNoZBJB7K76byvxmMWGinhNKXA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebeb4e5805b4ee-OSL
alt-svc: h3=":443"; ma=86400
|
|
| auth.cpclsn.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js | 172.67.206.8 | 200 OK | 7.9 kB |
URL GET HTTP/2auth.cpclsn.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js IP172.67.206.8:443
CertificateIssuerLet's Encrypt Subjectcpclsn.com FingerprintB5:8E:5B:B4:ED:DA:A2:EE:FC:7B:F4:F8:AB:53:11:7A:46:1C:F0:2C ValidityWed, 10 Apr 2024 18:50:10 GMT - Tue, 09 Jul 2024 18:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (7915), with no line terminators Hash1285521dc8add1e4b3652acdbc4acf00 d087238dcfd7c5d04cc59401029324ce6405cb9b c7eb89abbf6629c70710e727c7b1f5af069968edf72f620abd635cbc5dbd1049
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: auth.cpclsn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:27:37 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
cache-control: max-age=14400, public
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D3cKs2RswabDJvB6CQLc2SqBfvNPKYh4OvkNkOd8Wv5mFKhT2ga1DxVfRpbQspfDXKsGEqdtlyVsljEtTufNzFXq%2B%2FVShOuhnWpAbkRZ6rUL0cknx0tSH4CE6fTVMgFkEeI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebeb4d486cb4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|