45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
172.67.205.15403 Forbidden 3.8 kB URL User Request GET HTTP/1.1 45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
IP 172.67.205.15:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1918), with CRLF, LF line terminators
Hash 1b99340fa49e1249ad1ed73cceea6614
14ca968fba52653f5a18e2b1f2fef3eb127d8a9c
6669dd36cebf76488c259d8cad03ba4e9e1dad92ac8c0dc6203c7e4fd28f9771
Analyzer Verdict Alert fortinet Phishing
GET /941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12 HTTP/1.1
Host: 45ejp.fobidaa.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sat, 27 May 2023 18:27:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MZpfmoMmHMiMwDE23DHTGDEKAzs29uKaSE9UgrE5zZRowykMoRsCnnxTKqOO6P3jChWstuyoc%2FCfLm608EmSmJ8k7a05AHKGI782XEmt15Ix080srI2Wq%2B9VaIjVwb1BjjKf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ce05065fe3c0b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
45ejp.fobidaa.ru/cdn-cgi/images/trace/managed/js/transparent.gif?ray=7ce05065fe3c0b31
104.21.37.66200 OK 42 B URL GET HTTP/1.1 45ejp.fobidaa.ru/cdn-cgi/images/trace/managed/js/transparent.gif?ray=7ce05065fe3c0b31
IP 104.21.37.66:80
Requested by http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/images/trace/managed/js/transparent.gif?ray=7ce05065fe3c0b31 HTTP/1.1
Host: 45ejp.fobidaa.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 27 May 2023 18:27:49 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Thu, 25 May 2023 08:39:03 GMT
ETag: "646f1ea7-2a"
Server: cloudflare
CF-RAY: 7ce05067b90cb517-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Sat, 27 May 2023 20:27:49 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
45ejp.fobidaa.ru/cdn-cgi/challenge-platform/h/b/orchestrate/managed/v1?ray=7ce05065fe3c0b31
104.21.37.66200 OK 54 kB URL GET HTTP/1.1 45ejp.fobidaa.ru/cdn-cgi/challenge-platform/h/b/orchestrate/managed/v1?ray=7ce05065fe3c0b31
IP 104.21.37.66:80
Requested by http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
File type ASCII text, with very long lines (65536), with no line terminators
Hash de8f6c310ca737f2ed90381bb0520759
965e4076397a1a104614c2c9eb5fc2f20e5d39f4
2d1b71669d4e32fef0d4e968e8b9268d287448345d0dc2065cb7c51e20cc4cc1
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/challenge-platform/h/b/orchestrate/managed/v1?ray=7ce05065fe3c0b31 HTTP/1.1
Host: 45ejp.fobidaa.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12?__cf_chl_rt_tk=jn_lVweCNcvE0oHNsfjTq4lmp1VWQSzuDP8P4MkcXXw-1685212068-0-gaNycGzNB1A
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 27 May 2023 18:27:49 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fDXWK0JhEFWaDdoZvlN2lw%2FCE654t3D8aVhFXpjIVEAriKXN%2BoTFV04w7jjl8yhcg5PCIPJPXyFCkVWE5eRM%2Fa%2F3kZGUdGNz71xJOsDfFSa2KKGzYeUoqQdElyw6OZzFqSd5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ce05067bc331bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
45ejp.fobidaa.ru/favicon.ico
104.21.37.66403 Forbidden 3.6 kB URL GET HTTP/1.1 45ejp.fobidaa.ru/favicon.ico
IP 104.21.37.66:80
Requested by http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1833), with CRLF, LF line terminators
Hash e3a75005079031958acc9ea5dcd1ee82
190582fa8e8f662e5d21bf5bf84473e34f51a2cb
c36589ad263276f1a1e5e23b7bf19431579c2c5c3f0232409e2bacc841ba3951
GET /favicon.ico HTTP/1.1
Host: 45ejp.fobidaa.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12?__cf_chl_rt_tk=jn_lVweCNcvE0oHNsfjTq4lmp1VWQSzuDP8P4MkcXXw-1685212068-0-gaNycGzNB1A
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sat, 27 May 2023 18:27:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ukls4QEh8yYppLrOEfnwJSSCQTe6G2a7Jj2mbxLMQa3qaAQL4y%2BnhgE6CMU0%2BiqV%2BEYRae%2FLYxdTrDUEh4s%2Fywr66Nz10tMOZoYTcz9HLZfmJzGQimMiNv6HvoxZehPsIuiA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ce05067ec771bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
45ejp.fobidaa.ru/cdn-cgi/challenge-platform/h/b/flow/ov1/1423955829:1685210918:0tAdkmPmEsxpMtmXNB7flPdO2VJhTFhdhTaM69qBTqw/7ce05065fe3c0b31/a8fba1eca30d2b7
104.21.37.66200 OK 5.6 kB URL POST HTTP/1.1 45ejp.fobidaa.ru/cdn-cgi/challenge-platform/h/b/flow/ov1/1423955829:1685210918:0tAdkmPmEsxpMtmXNB7flPdO2VJhTFhdhTaM69qBTqw/7ce05065fe3c0b31/a8fba1eca30d2b7
IP 104.21.37.66:80
Requested by http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
File type ASCII text, with very long lines (7416), with no line terminators
Hash 494ac5d80b2670aa8a47cd6b713339d3
a17d2b3c62c06533303e42466bc8d22945c02068
b44171e493a96a57f4fa3244e062fc02310acf55ff6c11c5012fe61c303c3d5a
Analyzer Verdict Alert fortinet Phishing
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1423955829:1685210918:0tAdkmPmEsxpMtmXNB7flPdO2VJhTFhdhTaM69qBTqw/7ce05065fe3c0b31/a8fba1eca30d2b7 HTTP/1.1
Host: 45ejp.fobidaa.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
Content-type: application/x-www-form-urlencoded
CF-Challenge: a8fba1eca30d2b7
Content-Length: 1830
Origin: http://45ejp.fobidaa.ru
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 27 May 2023 18:27:49 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: EHj+RxQP5opAZbu5okBcHnIXjNVKKAwLFtDD2ny/GDlS70EPCUdWDKpfFWGZq3BS$NP/z7QPFF9XUEFMvqYpUUw==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0DVStbv9O6%2FAqp6q52wjUFF%2Be9zWI4O4QKPcKxv9BZwoJyQMxDcwYsCYAqkuNgudb%2FhxI6GE2cCL514r2Ku4w7RlgcR5fAywUHR8Z%2FvpYcURXBwHe4ASyfjAzMtm34wi4231"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7ce05068fb27b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7ce0506a08ceb52d
104.18.7.185200 OK 152 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7ce0506a08ceb52d
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 152 kB (151493 bytes)
Hash 8e1a961a40a28745cb4de1bf8828f2bc
f73b64c5f16e7a1685aff9dc7455f9137187deaf
bc423101b53517b29d1481cfe1687a92080af5fd65e4558e0454b575fa8ade04
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7ce0506a08ceb52d HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 27 May 2023 18:27:49 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=0, must-revalidate
server: cloudflare
cf-ray: 7ce0506a899cb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/2080867551:1685210893:cu3OEn83WGsoz-t_P4jufJ9YWw_6vKlCwJXQYxo-1sQ/7ce0506a08ceb52d/d2353741783649b
104.18.7.185200 OK 128 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/2080867551:1685210893:cu3OEn83WGsoz-t_P4jufJ9YWw_6vKlCwJXQYxo-1sQ/7ce0506a08ceb52d/d2353741783649b
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 128 kB (127528 bytes)
Hash 4738d044bc79926cfa1b6870a3a8c483
a958fdf835aaed498c48c307d5c557bcfc7327ae
3d3ec3f52b5ab7a37f26c684bca06423e4fa5b6e04e5d1f45788aa258f6270dc
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/2080867551:1685210893:cu3OEn83WGsoz-t_P4jufJ9YWw_6vKlCwJXQYxo-1sQ/7ce0506a08ceb52d/d2353741783649b HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: d2353741783649b
Content-Length: 2801
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 27 May 2023 18:27:49 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: iqSKV8E2rdAAvzXBkigoA200zTG73D3kIAnIOw3x4KdhSb3XUqjkvWAkoVX22f8fk1N3/xO2ZB91wcyXUdDi3BxRYQR70kScD05zvAlK1qK/evIyLJJmDr3As04S6A2ioeONE1W1uLmr9uBXR9lt3XmdITOJOEF2pt8LHBM8i8/bupKSD4+qxrxspbnk5+iaiQRB0bM34S7sC1cHB70wG2FD1CUlaRCgL2fgUjyFkyYkqRF2mdlQVHXHS+a45ZplB4jyOigYNxnXF/TU+PPQmx7KKABVFjeIPJ3Ned94Dtp7+4UcDPTIHI1IC76bGJSXkpFdlsoLt3Mb12V4Gv8i5Zucbg32at23T416S/189bkJfuHGNzzP77o4frtw7CAs$vA9uDYsUrB1+Qk4lDp2Eqg==
server: cloudflare
cf-ray: 7ce0506bdb8fb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/2080867551:1685210893:cu3OEn83WGsoz-t_P4jufJ9YWw_6vKlCwJXQYxo-1sQ/7ce0506a08ceb52d/d2353741783649b
104.18.7.185200 OK 13 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/2080867551:1685210893:cu3OEn83WGsoz-t_P4jufJ9YWw_6vKlCwJXQYxo-1sQ/7ce0506a08ceb52d/d2353741783649b
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (13216), with no line terminators
Hash 0501c81c14d81c794463e5a33d31f35c
e7981d217df9f3f340dc3f34d505c2925d9b0992
44c7893ba52c51d44fe5d2bf3b68636940782037fb144c86d941c29f66b67784
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/2080867551:1685210893:cu3OEn83WGsoz-t_P4jufJ9YWw_6vKlCwJXQYxo-1sQ/7ce0506a08ceb52d/d2353741783649b HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: d2353741783649b
Content-Length: 18387
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 27 May 2023 18:27:52 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: x81cDJg7UM7r6F6igenlDMJGIKtxQUXoozLQK8u0x9vkruBYWPge+FRQmJ+B2LeD$RACVjFWBVROV+q40GSqMlQ==
server: cloudflare
cf-ray: 7ce0507dcb8db52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
104.18.7.185200 OK 24 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
IP 104.18.7.185:443
Requested by http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10899)
Hash 9f40f7ea06d1f146839786eeafe16c5e
a0f40fc27021150f72a62cd8b02bf8c6592531a5
69f01d56ff843f65af4c5aeb1fd613b74fab07d1b95ed9d2e7399eee38e3f6da
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 27 May 2023 18:27:49 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7ce0506a08ceb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/img/7ce0506a08ceb52d/1685212069743/LxFAbPOp1uNvWDh
104.18.7.185200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/img/7ce0506a08ceb52d/1685212069743/LxFAbPOp1uNvWDh
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type PNG image data, 4 x 83, 8-bit/color RGB, non-interlaced\012- data
Hash bd9af32c30a808b5aae2cb09e11ceb31
49f6242e752702bfbf79e2a3932db1ef812a4bb3
d7eb613fdd3545479e166a6b99c29ae6e73cea05275717f3b14996231deacca7
GET /cdn-cgi/challenge-platform/h/b/img/7ce0506a08ceb52d/1685212069743/LxFAbPOp1uNvWDh HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j8wuu/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 27 May 2023 18:27:51 GMT
content-type: image/png
server: cloudflare
cf-ray: 7ce050795de0b52d-OSL
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/turnstile/v0/b/938e2b5c/api.js?onload=_cf_chl_turnstile_l&render=explicit
104.18.7.185200 OK 16 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/938e2b5c/api.js?onload=_cf_chl_turnstile_l&render=explicit
IP 104.18.7.185:443
Requested by http://45ejp.fobidaa.ru/941ab1b666ec12622c9f790596d0ba4e646539db5ea11log941ab1b666ec12622c9f790596d0ba4e646539db5ea12
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (15748)
Hash 2a1262ba5cd32899831d483322a28dd7
3805876db8773ed5820043e1f39b0b6c049f61b2
2e1e45b1d429b2d703676139932fe97b7ffc7986e6d0221653a7404e4c3032f0
GET /turnstile/v0/b/938e2b5c/api.js?onload=_cf_chl_turnstile_l&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://45ejp.fobidaa.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 27 May 2023 18:27:49 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ce050690baab4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2