Report - web.lehighvalleychamber.org/cwt/external/wcpages/referral.aspx?ReferralType=W&ProfileID=5337&ListingID=4065&CategoryID=74&SubCategoryID=0&url=//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t

Report Overview

Submitted URL
web.lehighvalleychamber.org/cwt/external/wcpages/referral.aspx?ReferralType=W&ProfileID=5337&ListingID=4065&CategoryID=74&SubCategoryID=0&url=//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t
IP
104.18.244.141
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 06:25:32
Access
public
Website Title
AqKxgnrNuv
Final URL
efe.q39r.com/efe/#Xcecilia.rosen@arctic.com
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sanemedia.ca	unknown	2017-08-09	2022-12-03	2023-03-30	932 B	253 B	162.241.120.242
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-25	4.8 kB	617 kB	104.17.3.184
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-25	406 B	90 kB	151.101.2.137
efe.q39r.com	unknown	unknown	No data	No data	1.6 kB	8.2 kB	104.21.17.5

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (50)

	URL	Size	First Seen	Last Seen
	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87a47e6b2c945690	439 kB	2024-04-26	2024-04-26
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87a47e6b2c945690 IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 08:25:38 Last Seen2024-04-26 08:25:40 Times Seen2 Hash f1f4fa80fbecc049acc4e4ce6abd97ba 6e6c9945715ab0bb6ff56f337c4ea495a2f8ab15 5df816b4da1ee5146011dbbd807f5a1a87162d4a8a6febef9261381dd572f7bf Loading...

	challenges.cloudflare.com/turnstile/v0/api.js?render=explicit	42 kB	2024-04-18	2024-04-29
Pretty URL challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 21:08:49 Last Seen2024-04-29 16:17:51 Times Seen2594 Hash f94a2211ce789a95a7c67e8c660d63e8 f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f 926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b Loading...

	unknown	157 B	2024-04-03	2024-05-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 09:40:10 Last Seen2024-05-06 20:47:22 Times Seen559 Hash 54b32f51946bf616b908ed2c3732df68 25af89d89433ea4f3910782c01745ecf7da9db23 caaad3feb4c9100116d4d800ae1aa362af1870023bd6f4ff7efb3d773a7a0a94 Loading...

	unknown	1.1 kB	2024-04-26	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 08:25:38 Last Seen2024-04-26 08:25:38 Times Seen1 Hash 4d8369f3521c67409054c924aff91a65 e0e69302cb06003819c722e384f3250e01a7fd7c 7ccff5f9ffcd8b7b7910e95341d5854be60cea36f8e9758d8bed8233c7264263 Loading...

	unknown	8 B	2023-04-10	2024-05-04
Pretty Introduced by javascriptURL Embedded in HTML false Observations First Seen2023-04-10 23:38:56 Last Seen2024-05-04 15:56:51 Times Seen12499 Hash 69165ebff8690c39998558705627e927 b86888593992fa44c3d1fe1c665367cb214e5416 0de7a49f6d21fbef846aba4bd271502d7ec9489bfbb3fd96f5ff7cf19140875e Loading...

	code.jquery.com/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-05-06
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-06 23:10:55 Times Seen266630 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal	3.5 kB	2024-04-26	2024-04-26
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 08:25:38 Last Seen2024-04-26 08:25:38 Times Seen1 Hash 5f35479144ed787fb52f81a5043f847d 0bd86a48142bcbf46ab15648557052f856217314 d4c3d5db3b47ad109fa54840fa76f9221fe89a75285b29ff97f6b8b8782221c7 Loading...

	efe.q39r.com/efe/#Xcecilia.rosen@arctic.com	6.1 kB	2024-04-26	2024-04-26
Pretty URL efe.q39r.com/efe/#Xcecilia.rosen@arctic.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 08:25:38 Last Seen2024-04-26 08:25:38 Times Seen1 Hash 3c7550f42fae71b2d857bf5372ca5896 93f6a79737d0dc220924f6115665cc0002b2df77 9b27d96b7b08c238892f15fb14784b62f6860b12a3eac5a9e7e7dff8149fd868 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d1bf2f0f8de9c595815e61df2a945e47	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:38 Last Seen2024-04-26 08:25:38 Times Seen1 Hash d1bf2f0f8de9c595815e61df2a945e47 cf92e3d2e0b6d4a7b6b708a115dd3dd19771d0a6 100d2672cbabf5e22db37dec96b029cafe9200098ba4f8570840bcde1900e070 Loading...

	#2 Eval - 10c2ac50a50f86b2558fc22dab9492f9	506 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:38 Last Seen2024-04-26 08:25:38 Times Seen1 Hash 10c2ac50a50f86b2558fc22dab9492f9 890141af4cad1245cad67314d9ce341243653360 5bd394b991ac7c9eec0f517b3b890e21f10fd4c8c3dfb4535c83db8b071d9178 Loading...

	#3 Eval - 732a90963ecbd5b1a2d5f6f2fec959a6	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:38 Last Seen2024-04-26 08:25:38 Times Seen1 Hash 732a90963ecbd5b1a2d5f6f2fec959a6 c6ad2a2eecaebc08cd952653cc63ff45da02ae36 a967d5c2a49e8312841cb39e8a080f58124ede0442bd4ef4c27200d8f0b30ccc Loading...

	#4 Eval - b9c37d3bd5656e0d4722a19abbae09ba	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash b9c37d3bd5656e0d4722a19abbae09ba 53401d0558245f0b90e65e9232945d9f239c928b 285afe531abe2fb2bf9fb748e329c716f3e8862f24ae0852a6f7f364f1332131 Loading...

	#5 Eval - 8f004cb6ab9d8f178789087407c91c34	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 8f004cb6ab9d8f178789087407c91c34 993763a8275e6a8c5aefb61755e189f77558816a b1b25936c51d09c1a9233af26d7bcc0db016d535d969118a4b2f0d7c315e59ec Loading...

	#6 Eval - 7bcce45d59ae0d4c94fe490f38f22afd	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 7bcce45d59ae0d4c94fe490f38f22afd f040734984c1b7602dcdafc5bfb692d80a12449a 3c40ef6bb2b365723050d65b320673a03ca2bf9bb4ab177d2f85317b439df8b7 Loading...

	#7 Eval - 1fa44380be60e77cab297335cb595733	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 1fa44380be60e77cab297335cb595733 dd2a0679e6e1e732290a179ee2deb006146e954e cf0858882114f06e75726a820906ebd832bffa861f8fe7790ac8d1c56ab685ae Loading...

	#8 Eval - cf06d54b4eaee76d97706c644cc12624	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash cf06d54b4eaee76d97706c644cc12624 5b3393e9cb97c8c4227ea570c85665c4c61db27b bc43efc795ed05e0f7905eb63c24da2b6c3189873d47f05a61f6bf935cf4f293 Loading...

	#9 Eval - d0fa70f6e1d8b82f3d8c5bf9b3322be7	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash d0fa70f6e1d8b82f3d8c5bf9b3322be7 276578acbef72bd9dcdf163b56deb2ccc16812cd bdcf6e1693416fbda46830fc7a80b9d6295d227d84b502d5a50d54450ba58f0f Loading...

	#10 Eval - c729f19ec8398f5bc41bd851370800cd	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash c729f19ec8398f5bc41bd851370800cd bae06bf640fe836ef82474797ce2f990edd4d4ba b19780ed53aafa75d1b27b0e5fc1671572a37dd7c7860753d8faac44ef74a626 Loading...

	#11 Eval - 1e3e33e68496af0ef7d2f6b0e8ca532a	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 1e3e33e68496af0ef7d2f6b0e8ca532a 59e35de26ba4218de8a791ce83b32a4e19c9ed4b 5054a9147d0cb2461c3f5ec7fedf88b57caa83d5db1a356e779349be5e593e31 Loading...

	#12 Eval - c8eb1b9186e5bf87f1b809cda6cc86d9	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash c8eb1b9186e5bf87f1b809cda6cc86d9 63e54b14aba0812428be69f2180cb5af98f75188 ba2edb3de1f977a5c604541664d5377e7b162bb5a3153dee904f2557ca5617b5 Loading...

	#13 Eval - 5cc6e4314afaaf00e4f2e41296db7b86	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 5cc6e4314afaaf00e4f2e41296db7b86 1709e31a7a75e6c14dc977b6d5887639d6b4a256 8791353e8d8bf31f2ce83aad1647ab7fcd5ea981bb87c04c0545f48947705207 Loading...

	#14 Eval - ec83ccde7f744646f66a06aca6f2414c	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash ec83ccde7f744646f66a06aca6f2414c dc7a2732d67c960c09e0431f0a2e24a75a5f78e0 e3e0308a29dbf6572348c5d3b32cef4491a7bebbb3f3603d0ecdffba408e1a12 Loading...

	#15 Eval - d42b6713d31b14a3229edda6f234b4d9	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash d42b6713d31b14a3229edda6f234b4d9 bfdcccb61b034529c1fdafaaf81388597f961d39 cb7570a307717c5873931ec05924da1e29b57f767e787e839a7d5e192953057c Loading...

	#16 Eval - a57090e55b6215791c18d9cf607c6975	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash a57090e55b6215791c18d9cf607c6975 189b35e2c7dab076ba2dc9e3d04149954033d660 92fadae831297edbfd3f8f0ee8e52ab7e2a95ffdffb6408da8b3a16a19b64cb8 Loading...

	#17 Eval - 292a048bb35d6a5f119b0be03800dd2c	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 292a048bb35d6a5f119b0be03800dd2c f60bc90599d0915ab87b8d86ac9a7e4042776cfd e585640bd5cba5c26889a4954e557bfdac5f26133ec2bbc821dd20ede5b52710 Loading...

	#18 Eval - 61fa153f2827c887a48a351ae3c6cfd3	8 B	2023-03-07	2024-05-06
Pretty Observations First Seen2023-03-07 01:03:50 Last Seen2024-05-06 20:47:22 Times Seen1276 Hash 61fa153f2827c887a48a351ae3c6cfd3 5fbd02245cf700ea94d638c8d76924ecca52d330 4c44d7c28ec0f6ca3e2624c6af1d3be324576d01ef6f6c2dc0af7e61664b8c2c Loading...

	#19 Eval - a984945861bb6d8ec4ff9615d92fb42c	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash a984945861bb6d8ec4ff9615d92fb42c cb2fc91d5e18debbbf2a83e07e275d7193bbff49 2a57e39e682d3efc5e272d0ced8528d1376ca0b91d738e823163780239043197 Loading...

	#20 Eval - a2441fcccf693fc24d55b58424323a72	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash a2441fcccf693fc24d55b58424323a72 24b67f79a610a6fbd5a4c21e315db6260588abc7 93cdc966dff052f56d7327f669c5c09b21edf1cc5955a9381986d3494ecd7a86 Loading...

	#21 Eval - 602f87e3526d129ffc43efbe035f158d	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 602f87e3526d129ffc43efbe035f158d 60ee63d9edc9675367d0e076627ccfa12e4c81b5 5f1a903f00cb349b802e2f18a82f0692a4da2f062627e8ddfc6923c832cdf794 Loading...

	#22 Eval - fcad859d19776cc4f1ebc6eec8f8d462	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash fcad859d19776cc4f1ebc6eec8f8d462 f84a34edffb0a16ed49c96dbf957a2ee8b009081 d5841bb31219156c7f882563ad75bf1999aa7c17b9af41acafaae8fffe55f63f Loading...

	#23 Eval - 69f50ad20acd6127b30cf0c38bd17b44	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 69f50ad20acd6127b30cf0c38bd17b44 2cce221af2876c098107abfb7959a3fb80b1735b 8ac9e0f0718adf221fae6d299810eafa5252bd1a39bf00a494d3fcf577888d8e Loading...

	#24 Eval - deee5088208bcd3c4057c88259836b5d	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash deee5088208bcd3c4057c88259836b5d 7198dad1780c16320dff1cddc651b31c79a1616b 8280bc585a5cfa896c333201474d88666ac61636f7b706cc7ad5d646c0dbf090 Loading...

	#25 Eval - c474d7eab025e178a9d678c0a5ca65e3	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash c474d7eab025e178a9d678c0a5ca65e3 65853d063722bf52f9c5304bc8585c092846b00b f0bc53b76df69c83dde278cab8c9196707f6e7cca645354b6167b6d3ba85f715 Loading...

	#26 Eval - ca71d61f15afefddaf361b604a010905	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash ca71d61f15afefddaf361b604a010905 b82e6032cf8256475f82f0430ecb54ce8ce60132 a7cdda8ebc9764536388c66d55d0a80ebb6df5644bc9daf1eeb7a8e69ea730da Loading...

	#27 Eval - 3e2253e71782f1c21d57a13aeda0542e	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 3e2253e71782f1c21d57a13aeda0542e 1ddf9b8f4620769a0eea683b005a639d0f7018f6 7e78e3f848c587fcfad741d94e2f213ebc82d0d87710d3af86ff07f361afc7a4 Loading...

	#28 Eval - 422309bffd9fae1d6b6a8b4d20b23e35	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:39 Times Seen1 Hash 422309bffd9fae1d6b6a8b4d20b23e35 83a7889839234efa40ada42ecb022605c65314bb 03245db6bbaf97eea8e1335834f2263f0ce16ecf081c0f9021be00b5d9a1e13c Loading...

	#29 Eval - a7d834b435f7cd38eb30bd4929f94faf	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:39 Last Seen2024-04-26 08:25:40 Times Seen1 Hash a7d834b435f7cd38eb30bd4929f94faf 7add53fcae3e313854ebcb6ed960ff7d5c821270 e52731c1958ab2150ca1637ccb992d188a65332e069c1837400ce6e7652aac49 Loading...

	#30 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-06
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-06 21:55:41 Times Seen351573 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#31 Eval - 8736806594e03a3831ce2c0675ba191c	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash 8736806594e03a3831ce2c0675ba191c a0119bd04d5bdeb45aef52e73534f9b2b63ea5d7 705a86ed0b7dab0fa63ad4ff0041ad308c6fade898169934106c5c80e9bf58f0 Loading...

	#32 Eval - 0abe1408804665c9f1cb976b3b609202	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash 0abe1408804665c9f1cb976b3b609202 75f43041285c6de8b5f2db21763445d2635a5549 130745f8f507c4567b5ae6f260a5c51e5dbfabc913288da028e456125246a7b9 Loading...

	#33 Eval - 05add1b76f102f85fb335fb6ebe58c2c	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash 05add1b76f102f85fb335fb6ebe58c2c fcf7aa97886055db777203c3c48262059c0481a0 22000036093b9179c2de9943da35ea0d7e66eb608c1e3434218dd052873f70f0 Loading...

	#34 Eval - a7ee20ced383bb488888c51d35a7f7f7	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash a7ee20ced383bb488888c51d35a7f7f7 d6a9a62383fbd02c626aab1166447e40502a790c c6061a6cec1ef23ca6ab2cc15b0dcc7c952ecc75ecf7976a2fc6e38fab38ad81 Loading...

	#35 Eval - 4792282539c8485290d4d9db3d83f9f8	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash 4792282539c8485290d4d9db3d83f9f8 556426b2b694298d8787f852968eb537417d42d3 fb4c3da7d5106339958062301cd4084e640d7b74c5b0d8650276b74ef3dee219 Loading...

	#36 Eval - 1cd85799da07a7a5d2e5e1fc283721b4	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash 1cd85799da07a7a5d2e5e1fc283721b4 5d4cab531ec105ee2dcb8e6e65262f6f176201ab 17be2d0a589714bfc12a3df960bf9fcc2a399c4b3817163d08bc459692d32fb7 Loading...

	#37 Eval - a25fbaacaa2657e7bc2b8e637d99c0d7	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash a25fbaacaa2657e7bc2b8e637d99c0d7 0a0c0ee36faf239ceab1745b5274e5152ab2c4f4 a5a394588a69b482d7087a06727e9977b0fc3c6e5ddee64d26fdd4e65d315e5f Loading...

	#38 Eval - c2c8a8b2c4cceb6b689d9453b477e943	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash c2c8a8b2c4cceb6b689d9453b477e943 99958a5f82fbd67a44e62eccace5e372b2858838 409280e25223e9e7835081ec92891de52af8dde9bec7409a1b2acd7ac00f2bea Loading...

	#39 Eval - aa1bdcaee973ccbf300f2ef036bb39b0	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash aa1bdcaee973ccbf300f2ef036bb39b0 5adcd0d12130b79a1cf19de019d2fbdb38388105 ec2ffb644aa6c2d9a590d2a7717bb983bde1e5a1a112fadd22857a3c2a458756 Loading...

	#40 Eval - 43c81e43a6e7d9140033055ff3e04983	62 B	2024-04-18	2024-04-29
Pretty Observations First Seen2024-04-18 21:08:51 Last Seen2024-04-29 16:17:50 Times Seen2736 Hash 43c81e43a6e7d9140033055ff3e04983 b0eca03913678cb38c488c7c79cc4f9d2755ea17 3f7ef931c657c4333a401c40e8b0b8d1ff3b164542af45e14242314c0ec39f34 Loading...

	#41 Eval - f05b9b671115c94644a0d55601812a25	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash f05b9b671115c94644a0d55601812a25 632a8506e0173de092c7e5cceb972e14b6c94126 a674d587a8ae7ba18cc651b6a2eb10867a4f64bbc75c0ef2f6b25ade1130f2c4 Loading...

		Size	First Seen	Last Seen
	#1 Write - f353c5f3a6d9375203a764e844af620c	4.5 kB	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 08:25:40 Last Seen2024-04-26 08:25:40 Times Seen1 Hash f353c5f3a6d9375203a764e844af620c c2be4f7bbe2ff5818c9f0fd0b21c7a5872be459e 14d876f132df074fec72e7388a6022d6fcbe3afdd403e1627c363dc6394940a1 Loading...

HTTP Transactions (12)

	URL	IP	Response	Size
	sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t	162.241.120.242		0 B
URL sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t IP 162.241.120.242:0 ASN #19871 NETWORK-SOLUTIONS-HOSTING File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t//sanemedia.ca/owaow/hurrku/Y2VjaWxpYS5yb3NlbkBhcmN0aWMuY29t HTTP/1.1 Host: sanemedia.ca User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Fri, 26 Apr 2024 06:25:07 GMT Server: Apache refresh: 0;url=https://efe.q39r.com/efe/#Xcecilia.rosen@arctic.com Content-Length: 0 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8`

	challenges.cloudflare.com/turnstile/v0/api.js?render=explicit	104.17.3.184	302 Found	0 B
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://efe.q39r.com/efe/#Xcecilia.rosen@arctic.com Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /turnstile/v0/api.js?render=explicit HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efe.q39r.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Fri, 26 Apr 2024 06:25:08 GMT content-length: 0 access-control-allow-origin: * cross-origin-resource-policy: cross-origin location: /turnstile/v0/b/471dc2adc340/api.js?render=explicit cache-control: max-age=300, public vary: Accept-Encoding server: cloudflare cf-ray: 87a47e69fb605694-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	code.jquery.com/jquery-3.6.0.min.js	151.101.2.137	200 OK	90 kB
URL GET HTTP/2 code.jquery.com/jquery-3.6.0.min.js IP 151.101.2.137:443 ASN #54113 FASTLY Requested by https://efe.q39r.com/efe/#Xcecilia.rosen@arctic.com Certificate IssuerSectigo Limited Subject.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 90 kB (89501 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /jquery-3.6.0.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efe.q39r.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx content-type: application/javascript; charset=utf-8 last-modified: Fri, 18 Oct 1991 12:00:00 GMT etag: "28feccc0-15d9d" cache-control: public, max-age=31536000, stale-while-revalidate=604800 access-control-allow-origin: * via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Fri, 26 Apr 2024 06:25:08 GMT age: 159187 x-served-by: cache-lga21931-LGA, cache-hel1410027-HEL x-cache: HIT, HIT x-cache-hits: 222, 70494 x-timer: S1714112708.225180,VS0,VE0 vary: Accept-Encoding content-length: 89501 X-Firefox-Spdy: h2

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D	104.17.3.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Fri, 26 Apr 2024 06:25:08 GMT content-type: image/png content-length: 61 cache-control: max-age=2629800, public server: cloudflare cf-ray: 87a47e6bcd115690-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal	104.17.3.184	200 OK	26 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://efe.q39r.com/efe/#Xcecilia.rosen@arctic.com Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (41702) Size 26 kB (25594 bytes) Hash eaed5ee46f14e52589f272fb3cd44f5a ff963097a312df9ae7d88e0547f6a84c15771413 a32f53dde27665f88695095802d792e6a30a619674fdb0e4558b6e94aeb17a11 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efe.q39r.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 26 Apr 2024 06:25:08 GMT content-type: text/html; charset=UTF-8 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() cross-origin-embedder-policy: require-corp referrer-policy: same-origin document-policy: js-profiling origin-agent-cluster: ?1 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self' accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA vary: accept-encoding server: cloudflare cf-ray: 87a47e6b2c945690-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87a47e6b2c945690/1714112708750/7aaxbLUHVh8nHBj	104.17.3.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87a47e6b2c945690/1714112708750/7aaxbLUHVh8nHBj IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 82 x 57, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 39b54e0539ad620f4abca31746bdfa1c 45998a3137ad5ffe083175a86871b605cd967639 fd8a3b28feec2f3434867f41714176de77ed80dc3e4fe365ed50f50c86fcb194 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/i/87a47e6b2c945690/1714112708750/7aaxbLUHVh8nHBj HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Fri, 26 Apr 2024 06:25:10 GMT content-type: image/png content-length: 61 server: cloudflare cf-ray: 87a47e759e8f5690-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1972705657:1714109116:sVu2B1j0tzt8rzUE9UQGTNEancL0dQK3Us4bOBtHSPw/87a47e6b2c945690/411ad42b2672092	104.17.3.184	200 OK	105 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1972705657:1714109116:sVu2B1j0tzt8rzUE9UQGTNEancL0dQK3Us4bOBtHSPw/87a47e6b2c945690/411ad42b2672092 IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 105 kB (104824 bytes) Hash 8906810a87e5972566cc1fbec4b1817d d3f289da5f2b6d0021d47b555fde6ace8a440806 99ab2b626332df8cdfac51734fc3d549e71d7f81389881cb37d2a266367c5ade HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1972705657:1714109116:sVu2B1j0tzt8rzUE9UQGTNEancL0dQK3Us4bOBtHSPw/87a47e6b2c945690/411ad42b2672092 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: 411ad42b2672092 Content-Length: 2451 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 26 Apr 2024 06:25:08 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: JJO0Quzt8LkdYtA59RIT8aCugHnU6AUIfxwCqTWt8CA0Tgy0YfvUxoZfmvdcvJP2G5IaFYLR36ECDSDhkWNUMAqXxbioryX4vHtods+ol3ASpO24X7PST+hUFyov3erCFEaGx56NppXzHLqXnTT+CwBQfge0/+VxyoH66zrAuV3piHEHU2igcHQxkUKcf2qEwkeKd2wFwcznjzaInWEKDYQCaThCLTOJN9X4dwRdovDYD+ffs/KPhiLEB4KOAol8YgSv/XXhBbEM3Uz9h3rdNyNBEBpRrPDwfaA8tJ+R+oNTTbM/REzd1KeCfFD3hyiDygpXELmMfsr7XqNUA62E8neIUiXfEVw2Wp1TPpZYIOwheqBwE/mCsEqWVZOzSFTOiAYNwFQEuhmf7PHvNerTVJCaYJqkfUvEcH/CZTuyUALwHG4ET5xgvO5l+fW4KC+6$hwGUADaNbzvgGJKOOZnqGg== vary: accept-encoding server: cloudflare cf-ray: 87a47e6d9eed5690-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	efe.q39r.com/efe/	104.21.17.5	200 OK	6.1 kB
URL User Request GET HTTP/2 efe.q39r.com/efe/ IP 104.21.17.5:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectq39r.com Fingerprint3F:49:5D:73:04:21:21:07:7D:B0:59:35:C9:39:D9:67:05:A5:C3:CC ValidityMon, 15 Apr 2024 15:03:08 GMT - Sun, 14 Jul 2024 15:03:07 GMT File type HTML document, ASCII text, with very long lines (6114), with no line terminators Size 6.1 kB (6114 bytes) Hash 16e42e3d487d32558475c5f2329c744d 4d3170f22b6957bb65d0642156b5bc6b75f28e7b fb481d3d4c2cd67c7754829c4f6d4259965d6f979d4b1dc47e11e359a8e1d125 HTTP Headers `GET /efe/ HTTP/1.1 Host: efe.q39r.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 26 Apr 2024 06:25:08 GMT content-type: text/html; charset=UTF-8 cache-control: no-cache, private cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0pFpSDuBZhOjMXqOpNm%2FZLBa73rB52RetVd%2BPSnoF41xUW7s8DKQGBiWbGG3zn94Z5i37AkvWPb04qhVMTuV214tqSgPtI268ZOzX6YnAT7wWuDqkye8F5jFvf1gDg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400 set-cookie: XSRF-TOKEN=eyJpdiI6ImMzcjFrRUhYMVZSNEdpWXArNWxMckE9PSIsInZhbHVlIjoiZnZ4aGdZcy9oVEZwWGJjQSsyUW9za0ZRa0dnRTY2dlp4S0JReTFxVWxieTNOUmlrYVlyNlZlTitBTnpIeEhuUWtlYzZKS2xibXJPSWl1ZlVzUkprRGF1Z0J2cEFOTm9jdmlJeFBCZDNsSnJHZmFQWlhwMzVKbUVqaDNvTFF1SmwiLCJtYWMiOiJjOTg5MWVjYzBkMjJhNGE4MTQxMTVlNzM5NGIxNmRmZTM3MDU4M2RlNDIwNzg1NDViNGQ1ODU5MjcyNjE5ZTc2IiwidGFnIjoiIn0%3D; expires=Fri, 26-Apr-2024 08:25:07 GMT; Max-Age=7200; path=/; secure; samesite=none laravel_session=eyJpdiI6ImZTNWtBSDE4Y2tYRW1hcThFTHBuekE9PSIsInZhbHVlIjoidDN1K0puakxjMzlTdTl4akt4Q2lhWjQ3V3NXSjdZTVpwS2ExUzQ5TENDWEhtUmZtTFE5bWtlWmhjVUZmVFBTa0lkblVIcDluTzBmbGNqTlUrM21FNk1JekNhUEN0eWcyNFZlVTJKYUZsallLZnFVSU1Hd0ZkL3VFMmI1dU1uRmEiLCJtYWMiOiI5MDM0MTEwZjVmNmM5NTEyNDJiZWZjYjEzZmQyYTU1Y2E0NTBmZDI1N2UwMzk5ZGQyZDg4NWI0MjA5MjUwNzQ4IiwidGFnIjoiIn0%3D; expires=Fri, 26-Apr-2024 08:25:07 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none server: cloudflare cf-ray: 87a47e685d6a56c7-OSL content-encoding: br X-Firefox-Spdy: h2

	challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?render=explicit	104.17.3.184	200 OK	42 kB
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?render=explicit IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://efe.q39r.com/efe/#Xcecilia.rosen@arctic.com Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (42414) Size 42 kB (42415 bytes) Hash f94a2211ce789a95a7c67e8c660d63e8 f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f 926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b HTTP Headers `GET /turnstile/v0/b/471dc2adc340/api.js?render=explicit HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://efe.q39r.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 26 Apr 2024 06:25:08 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * cache-control: max-age=31536000 cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 87a47e6a1b7e5694-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	efe.q39r.com/favicon.ico	104.21.17.5	404 Not Found	0 B
URL GET HTTP/3 efe.q39r.com/favicon.ico IP 104.21.17.5:443 ASN #13335 CLOUDFLARENET Requested by https://efe.q39r.com/efe/#Xcecilia.rosen@arctic.com Certificate IssuerLet's Encrypt Subjectq39r.com Fingerprint3F:49:5D:73:04:21:21:07:7D:B0:59:35:C9:39:D9:67:05:A5:C3:CC ValidityMon, 15 Apr 2024 15:03:08 GMT - Sun, 14 Jul 2024 15:03:07 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /favicon.ico HTTP/1.1 Host: efe.q39r.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efe.q39r.com/efe/ Cookie: XSRF-TOKEN=eyJpdiI6ImMzcjFrRUhYMVZSNEdpWXArNWxMckE9PSIsInZhbHVlIjoiZnZ4aGdZcy9oVEZwWGJjQSsyUW9za0ZRa0dnRTY2dlp4S0JReTFxVWxieTNOUmlrYVlyNlZlTitBTnpIeEhuUWtlYzZKS2xibXJPSWl1ZlVzUkprRGF1Z0J2cEFOTm9jdmlJeFBCZDNsSnJHZmFQWlhwMzVKbUVqaDNvTFF1SmwiLCJtYWMiOiJjOTg5MWVjYzBkMjJhNGE4MTQxMTVlNzM5NGIxNmRmZTM3MDU4M2RlNDIwNzg1NDViNGQ1ODU5MjcyNjE5ZTc2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImZTNWtBSDE4Y2tYRW1hcThFTHBuekE9PSIsInZhbHVlIjoidDN1K0puakxjMzlTdTl4akt4Q2lhWjQ3V3NXSjdZTVpwS2ExUzQ5TENDWEhtUmZtTFE5bWtlWmhjVUZmVFBTa0lkblVIcDluTzBmbGNqTlUrM21FNk1JekNhUEN0eWcyNFZlVTJKYUZsallLZnFVSU1Hd0ZkL3VFMmI1dU1uRmEiLCJtYWMiOiI5MDM0MTEwZjVmNmM5NTEyNDJiZWZjYjEzZmQyYTU1Y2E0NTBmZDI1N2UwMzk5ZGQyZDg4NWI0MjA5MjUwNzQ4IiwidGFnIjoiIn0%3D Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 404 Not Found date: Fri, 26 Apr 2024 06:25:08 GMT content-type: text/html; charset=UTF-8 cache-control: max-age=14400 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RsbOo1xiKJ4zfvo8gNwPRB5MwpwDYTaBnGGnhp9wANx1Shii4tw%2FEq4AbVuAELCeerTJVPbU53%2FWm9eWRei%2FrfGG5%2F%2Bq2ws%2BzGQTEh9o6IDM%2BP%2FA0MVrJj%2BOoIYYZA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT age: 1 server: cloudflare cf-ray: 87a47e6b7c28b4fd-OSL content-encoding: br

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87a47e6b2c945690	104.17.3.184	200 OK	439 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87a47e6b2c945690 IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 439 kB (438823 bytes) Hash f1f4fa80fbecc049acc4e4ce6abd97ba 6e6c9945715ab0bb6ff56f337c4ea495a2f8ab15 5df816b4da1ee5146011dbbd807f5a1a87162d4a8a6febef9261381dd572f7bf HTTP Headers GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87a47e6b2c945690 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Fri, 26 Apr 2024 06:25:08 GMT content-type: application/javascript; charset=UTF-8 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 vary: accept-encoding server: cloudflare cf-ray: 87a47e6bcd135690-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87a47e6b2c945690/1714112708745/6bb4a66721b67c72e809195377a0165436934fa1b7688734731f3c74da293e61/nvwcji7jfBT021E	104.17.3.184	401 Unauthorized	1 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87a47e6b2c945690/1714112708745/6bb4a66721b67c72e809195377a0165436934fa1b7688734731f3c74da293e61/nvwcji7jfBT021E IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type very short file (no magic) Size 1 B (1 bytes) Hash ff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/pat/87a47e6b2c945690/1714112708745/6bb4a66721b67c72e809195377a0165436934fa1b7688734731f3c74da293e61/nvwcji7jfBT021E HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i6n7g/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 401 Unauthorized date: Fri, 26 Apr 2024 06:25:09 GMT content-type: text/plain; charset=UTF-8 content-length: 1 www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20ga7SmZyG2fHLoCRlTd6AWVDaTT6G3aIc0cx88dNopPmEAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIGu0pmchtnxy6AkZU3egFlQ2k0-ht2iHNHMfPHTaKT5hABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20 server: cloudflare cf-ray: 87a47e70d9ee5690-OSL alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (50)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations