Report - splendidanimations.com/@/Volvo/IBeGb40887IBeGb40887IBeGb/Z2VydC5hbmRlcnNzb25Adm9sdm8uY29t

Report Overview

Submitted URL
splendidanimations.com/@/Volvo/IBeGb40887IBeGb40887IBeGb/Z2VydC5hbmRlcnNzb25Adm9sdm8uY29t
IP
192.185.104.70
ASN
#19871 NETWORK-SOLUTIONS-HOSTING
Submitted
2024-04-19 06:56:01
Access
public
Website Title
Just a moment...
Final URL
btrnsaws.com/Tgert.andersson@volvo.com
Tags
phishing microsoft outlook
urlquery detections
Phishing - Microsoft Outlook

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
splendidanimations.com	unknown	2019-06-12	2019-06-12	2024-04-18	543 B	210 B	192.185.104.70
btrnsaws.com	unknown	unknown	No data	No data	3.0 kB	583 kB	104.21.79.39
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-18	9.3 kB	759 kB	104.17.2.184

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-15	medium	splendidanimations.com/@/Volvo/IBeGb40887IBeGb40887IBeGb/Z2VydC5hbmRlcnNzb25Adm9sdm8uY29t	Office365

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (76)

	URL	Size	First Seen	Last Seen
	btrnsaws.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=876afde059af56a8	390 kB	2024-04-19	2024-04-19
Pretty URL btrnsaws.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=876afde059af56a8 IP 104.21.79.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 08:56:07 Last Seen2024-04-19 08:56:10 Times Seen2 Hash 8c4588f1a47594d02f850f95c4a34a20 93c908ecf370351e7d0e04691e5bd7929d48ed8a e0dabe33590f307a1f7bbfbeb5264ed14ace41fd1af96ffdfc598ac8b71b35dc Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal	3.5 kB	2024-04-19	2024-04-19
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 08:56:07 Last Seen2024-04-19 08:56:07 Times Seen1 Hash f8b52b14f6cbed211ff6b472f68bd0c7 45b0ddeef2eaaefbe1d1424cb15f7b1c575e271a 26f3bbf4f9a5526ec4244ddc224baa4875d42097fd8436d1a60fc27cca455bc5 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=876afde2da20b50c	435 kB	2024-04-19	2024-04-19
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=876afde2da20b50c IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 08:56:07 Last Seen2024-04-19 08:56:10 Times Seen2 Hash e24073db31e1f9862b78bc50f28f10f3 cd7fb8739cc0fc4df562145d966c47de6e8f60c5 d27006b280ecf3c2ad85231fb8b554b04ba850497c44ab790f5703bb34152bff Loading...

	challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit	42 kB	2024-04-17	2024-04-19
Pretty URL challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 13:23:36 Last Seen2024-04-19 12:29:24 Times Seen644 Hash 374fec8b5e50cd6ab980f3fef21a5aa0 7f474607991a19b6f1b78cc32e0f75b501b60774 8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a Loading...

	btrnsaws.com/Tgert.andersson@volvo.com	6.0 kB	2024-04-19	2024-04-19
Pretty URL btrnsaws.com/Tgert.andersson@volvo.com IP 104.21.79.39 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 08:56:07 Last Seen2024-04-19 08:56:08 Times Seen1 Hash e549b5854d0176812ce371738b75f16d eda6a4cdeceba06840321d5f459bfe59b0c6f83b 899a29e1538e2978c25e1c752429ac474d59f185a20ca82377e9b2ed7bc08787 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 99d79a6dbf75951adfff3bd826800c27	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 99d79a6dbf75951adfff3bd826800c27 fc2fa57460a421f454f94085ff1a182eca2b9df2 b33cbf55c911cd435aceaa09a85fd1d214e26472f1491d1dda6a33898781b462 Loading...

	#2 Eval - f7d7c4ffc81e4872d8141faf52f85586	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash f7d7c4ffc81e4872d8141faf52f85586 ac30d021f5f6f34faea8207147990c1475ebc600 ab6d59b8d2cd8656928ca2fdb557ea911793f065c0a0c78b9f20bd3799e9c878 Loading...

	#3 Eval - 858d5d6647c6e530972ea2456642f1cf	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 858d5d6647c6e530972ea2456642f1cf d4fcbcb51d9c953bafd9220702287b190384094a 9a6626db7042631a2557ce692f528a8bef8ca53959f608abf4ef6294594deb1a Loading...

	#4 Eval - 99bc11e6cf5c18e467459a6ef2eefd7c	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 99bc11e6cf5c18e467459a6ef2eefd7c 5cbeba5985a9f21e9504044b3b07fa1c0bbf861e ed59319fa23c74013b9071620d996789ba846e5293521bc3062366207acd3079 Loading...

	#5 Eval - aaee4ed84705fac57d1cfdf181ec3d77	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash aaee4ed84705fac57d1cfdf181ec3d77 21057a2a8860b5a58ef573ec4f9ef2159312f8b7 a3b7dbaf70264b31df1178b81bdbae9b8c7aa40ebf4b49c28df0090be195a8ee Loading...

	#6 Eval - 29626eba3e2e32317332d08ad9e54f29	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 29626eba3e2e32317332d08ad9e54f29 920cd2e462cee9c543ad5bd8c9877dee03a0eb00 0e6af37faafb4ff3f66e5ad953ec454db5c0d52d94db2979088c6a54d00d5efb Loading...

	#7 Eval - 25f8e177c9090fe92adb0a292df5bf51	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 25f8e177c9090fe92adb0a292df5bf51 92806cefd66a2af0da905599591be322d0ff6e80 6b21a9fa23e54075f87667423e6631f95290aa48beca752ea46daf8db1ad7f97 Loading...

	#8 Eval - 275481f716687230dbb3be9e08d8c4a8	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 275481f716687230dbb3be9e08d8c4a8 16a4c997fd2c911e82b1321ed67a1b5951b05f8b 3047f34bb701025c406dea12ac7a60a3bd6de3c0f5e997419d560bf560a7af6b Loading...

	#9 Eval - 5e535f670a200263ef318d54215f1b70	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 5e535f670a200263ef318d54215f1b70 3aa29d165541136f546b4661ed0de209166941df fcec14c06eccebd9c667de58b9e70687726cb3e5b41829811a6e7001d291efd8 Loading...

	#10 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-02
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-02 05:05:01 Times Seen351069 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#11 Eval - 4ad2f6b8e94009954eb070eb1631eb53	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 4ad2f6b8e94009954eb070eb1631eb53 7e3bcd0303ce131eb0fbfc42cf0b1e8c64b7f320 9de612ff8925432d57ebb86b9c89251403c2dc6eafedfbcffd52409a1c8e3798 Loading...

	#12 Eval - 5867b8ee9a8ec6aea049a7e72771e145	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 5867b8ee9a8ec6aea049a7e72771e145 13b0b4397f26ef80bd83467b52b0b130695c1de3 bc8e717fa106876c2c3fe10de3631b3989ba322ebc34df74fed8661674dceda8 Loading...

	#13 Eval - 4a022bf5af1b7678399fb8e246972453	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 4a022bf5af1b7678399fb8e246972453 b02851e0b13e654b71b3bdc37f4692102487acce eaf6fd6e929bafe941c08a11afb5d936296acc53c427bc5a58b9e20e701cda62 Loading...

	#14 Eval - 770c193dd923b1ba76eb2425d59df857	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 770c193dd923b1ba76eb2425d59df857 89029daf7c5ea47c9258746c3c4483c676179f9d bdd14292bfe30c8e64eb0a52365e22e0dacbcfdbb083a822323ce0f309ab5eca Loading...

	#15 Eval - ac2cce2b71ffe988314ca70da60dc05c	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash ac2cce2b71ffe988314ca70da60dc05c 7af94bbf30379d643313071158d03177b4f7cfb9 7b2d3cc1c6a973dcf08ee27008ef5b42fd524eb2da20e69f4f816f00d8b191eb Loading...

	#16 Eval - 1661c8f19ae70ce452731bb7b4ceb009	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 1661c8f19ae70ce452731bb7b4ceb009 c1ab07cd7aa279d3476a7d05ccf7b3b85cadcef7 37ef52697b5f4dad55fa217d25a97d1e65d92b449f0a522d0d1b0336ae35329f Loading...

	#17 Eval - 558390ab54fdec5455288d7681a5cbbc	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 558390ab54fdec5455288d7681a5cbbc da569e78a4426987ce7f2893cf0b1226fe761e36 36ef89ebe3cd6200cdd8dc99300281ee09b9bb293e6d480a4e8c83b57b6d7e42 Loading...

	#18 Eval - 168e124b3b5e46ce0ced5a33a654b688	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 168e124b3b5e46ce0ced5a33a654b688 ccbb70ed857248d0b1ab040efb14a30dbb1f7438 09b7e321e9b6008cddc44da8d3d6913e1f7902c1794c870c3e89be2a0b1b7b54 Loading...

	#19 Eval - 406b3ccf24ca8e86657ec121153469c9	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 406b3ccf24ca8e86657ec121153469c9 a8f2c2c29ef992a4a1945b70e091fab5b39fe214 6d88485b1ce6927d3a17dc8e265615226f191a134a155350273e286fdb2ce537 Loading...

	#20 Eval - cd3429d52144faa3802991e9312233d8	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash cd3429d52144faa3802991e9312233d8 cceef44d21d0e86ab02897757ada9670300bf643 ad5b79ae0f282630e34f94d432039b6b6a3d152fecfc2493dbdf5eb1c273e71e Loading...

	#21 Eval - 720d5d2e46d6ba206da1c25173d9ff3b	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 720d5d2e46d6ba206da1c25173d9ff3b 5a1a8080c808f8580eaec28fd63e4e9a3d43a1a5 ae2e7dde08abf5088acf51b052ff493be09d61f75a2c0d41d62a58477bd19c9b Loading...

	#22 Eval - 5af3213d466457ddcb942f39ac365f7d	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 5af3213d466457ddcb942f39ac365f7d 6b4f6f76df17aadd3ccfe88b820ecca4b4e1eba2 4b917345ffb6e7c4f4436a11302bfd6b79405512cd12b7ea858382d00d9055ad Loading...

	#23 Eval - 8adb1a0aabba4642dd5d82fcd15bf5eb	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 8adb1a0aabba4642dd5d82fcd15bf5eb 141303babd43d9a752e24e1da4f80bba691a4d23 fc53009bdaf1eaa8658d7235a9d39be9c6dba50c9f4c216ad93dab7d910ce25e Loading...

	#24 Eval - 6a10f4a5b4d214d5c30e3d8559b2cef5	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:08 Times Seen1 Hash 6a10f4a5b4d214d5c30e3d8559b2cef5 b01455c84de9daf4370cd8ecb7b513f5f3ed1cc3 2d72d644c1916507a931bc5062fa785e1f002ea2e7ae1600dca52dc069b6ad7a Loading...

	#25 Eval - e0565a5f44f5c85890df489a02821105	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:08 Last Seen2024-04-19 08:56:09 Times Seen1 Hash e0565a5f44f5c85890df489a02821105 1ce475707c6972318f09458052e56c7b3e1bbd23 ccdb494d601b645216fbd5cc8e9dcfb0c091aa1060774a52e0f6900b0e231563 Loading...

	#26 Eval - afefc5baa8e05c69901e641ffae26124	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash afefc5baa8e05c69901e641ffae26124 42d591b309d7ad4aba1dc5eb453750a4b7b38ffd a5c868d138b0da6c46494184d34f2110e17553c83d2ebddfe805c875a63c9d71 Loading...

	#27 Eval - 26650a803aae3da1cab65d2923ace344	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 26650a803aae3da1cab65d2923ace344 c1e4acafdea1bd3acff9b49d9f18cbd6bfc4a4f8 89975e018013135b15842f277336ab0036bfc5e6ba224b0b6a1b5d2adfdd3a77 Loading...

	#28 Eval - 702d8969366c52b320bdac32f572fdef	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 702d8969366c52b320bdac32f572fdef d600b53fe06c8fd2764a1f38d739a2bb903f47c3 b3ce4ddcbdb81d2e5933039af41c0fd5835c35241b6fb37fcfde8202eaa54737 Loading...

	#29 Eval - 5c98abf8b05818071afe7de4b109b7b0	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 5c98abf8b05818071afe7de4b109b7b0 a423e83e762303e7f1bae61fbdea2d6f1c1470c3 2f09584758c06bd7813bd1aa1b8683cb7eebc0a9cede7c9d0a9767472b2266e2 Loading...

	#30 Eval - bcae3796ccbd5ed65c69659e9d2e1f24	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash bcae3796ccbd5ed65c69659e9d2e1f24 68229064c215aa5159c58e0db6946c46fdddc275 3148bf08405300285e78fe71d87491d2894e249b91c4dd4b3d0bdeceede62101 Loading...

	#31 Eval - eb5920d931aeca7dad344a81c9f558ae	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash eb5920d931aeca7dad344a81c9f558ae f48ae8dde72bae5861c159e6735b8715d8201d3d 098a106e101f3df603a53d13f0cbb2602d7260d78744e154d6f9c9a6fc20525e Loading...

	#32 Eval - 969805d8e8c938901dc8dc4c35ecad96	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 969805d8e8c938901dc8dc4c35ecad96 69c3cada2dfb731024e18f82913cf4f21b912324 1cc30fdbd9c26bcf5806c2c960c25bd40a00db0a6ca6e907c322c2cf0fe84a79 Loading...

	#33 Eval - 708f3f18bd0c0d0e752432a9bc0993ad	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 708f3f18bd0c0d0e752432a9bc0993ad 7779f3c6d8b724b74caae6bb8e7ad20e1f8f9676 6fa5d9f4f9e82b224d9524a3ceb1610bcc4eec862771388a28a26293bb2d274b Loading...

	#34 Eval - 8488b26d8e60afc7712315b4d2da4ac2	1.0 kB	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 8488b26d8e60afc7712315b4d2da4ac2 2874bc78027ed15fe43305016300f89868e7ca8b 76216631e531721c40bb791d8a8d025a57d0e9f88fe77ff19e3f7eee35576269 Loading...

	#35 Eval - abf3d95be2c446700a76efec6e1073c8	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash abf3d95be2c446700a76efec6e1073c8 04c00ae97e28807914dd5b3b6361ccb4afb22032 1eb0e75f1e9693f49ad2c62de64749931d9d1de36ce7c209bf01d35270ddd58c Loading...

	#36 Eval - b0e93ba50700b6e2a585824cf294fe0d	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash b0e93ba50700b6e2a585824cf294fe0d 0e8b6aad55937862c23c4b964e2b36b15fdfeb10 044184a8aa9e9ee84fa9e09f41f13421f9b7f6ed90bfe5eccf09feed8074fa21 Loading...

	#37 Eval - 2ba9ff17148e0aeb545f937e7ef5fc40	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 2ba9ff17148e0aeb545f937e7ef5fc40 db72b28943104171c361fb9d06c65673bf599d36 1834375d70235bf11f6eed8a38b7381a33bbde9e738c6e3a43327a595540eead Loading...

	#38 Eval - 78350eb08f85ebe26784fd10374ac299	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 78350eb08f85ebe26784fd10374ac299 d1b942eadc58a7f6d123af856780f0de4f6f2cbf 0afec2d5d678d457c3888f6b324b938e9f42693c9aadbe1cada1c77e35a5b200 Loading...

	#39 Eval - e760d942e7320948f03dc490246092a9	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash e760d942e7320948f03dc490246092a9 34673d9f2fd9c6e8eb1579e8d2d220bfc2f4e1a7 b199f044fd605a2b69d5756d816d351d92ebeabcf55c9b395cc4507b947a271d Loading...

	#40 Eval - 317da79e09b8be41eee8f7c8ea37fd45	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 317da79e09b8be41eee8f7c8ea37fd45 d7247c3da0a8c4759c198952133ca37f6d27f94e eba09c01aa0ed164dc93353cda6a529619b9f1386a00f46a7a72cbb1d42f97da Loading...

	#41 Eval - 77eabb50122c7f6cc13bf5e1bad753a3	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 77eabb50122c7f6cc13bf5e1bad753a3 fc599e2a537eed9099e2ee1d453e9c5e4a79814f 1a0fc0d38c5f2db7d0a949043c88fe49f800765e23383f18da8441e123333e6a Loading...

	#42 Eval - 38b11c8a4e913af836e5618c169f3cfd	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 38b11c8a4e913af836e5618c169f3cfd df61fddf01f7db7a14b6dc9feb6f1b3960b4076f 4b32951815d1ac480df9b8a8a2e0da67fd0431885cdd80dad71df215c11867be Loading...

	#43 Eval - dceffd98eda5ed69359a1e1210c061ad	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash dceffd98eda5ed69359a1e1210c061ad 07fa4296f2c0849fd79bb10fc4f3c08a9bd8b873 473f7444d03ef51b8538c0545b66921fe517bf4eb6aba00904cc219b90a324bc Loading...

	#44 Eval - 6b9114a5ee7a81b8521e08e1c3ea777b	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 6b9114a5ee7a81b8521e08e1c3ea777b c6f587e6803401aa572ba1470bc1b41e0ab7adfc 8cf93fba933b454238db93dae8fef93381da396414bf467e7f3f219399296b63 Loading...

	#45 Eval - fdccb6b75774e43ebb06246f0b8d051a	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash fdccb6b75774e43ebb06246f0b8d051a dd9518f47ac836f8d35c63f3b0d7c12fcdcccbe2 e7f9595bbe648f629a52ac247669b333b4639bb9ac963f1eddd5acb239f7048a Loading...

	#46 Eval - 506111e353f59514a24bc9694d535eba	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 506111e353f59514a24bc9694d535eba b7c6fe06b6e383f28323fefabfb1d8db612ec573 489a25f5a6fd4e30b61ab236c6150f62685ae3d2016b6c80bc901b34edc9f9b1 Loading...

	#47 Eval - b206b1107ee985cad08b8fccc2c33215	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash b206b1107ee985cad08b8fccc2c33215 b15187449c1abb40552049504a3f27e0af0b2d16 f124e5244c1d78b63c2e2c98755baccc974005009eed3a9592bc62c388c32728 Loading...

	#48 Eval - af93f9484aac150d2513ff8852a316b1	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash af93f9484aac150d2513ff8852a316b1 f2730d6cb087fd2f8f4481502f5ba7134ce38c2c a659fc5d7488cebdaf8637906f2f4f909760134be240676ee9d9a7fa59d02de3 Loading...

	#49 Eval - 95d1968cd669576ce28f0bb6a7e55834	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 95d1968cd669576ce28f0bb6a7e55834 ff11cf76012bcd8c36bd2ed237a52680c9f81293 e2f7846f0c68efba14269d9c6ed880999122a39607d956b99e432cb1a512d2e1 Loading...

	#50 Eval - dd0d9bd2132e4ff0438c11afeb94e295	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash dd0d9bd2132e4ff0438c11afeb94e295 4bd75fbda09142a884e4492fa8550250c46ff397 3be0ea5e6ffddc09ccba00dff8e7b8fd52ada6ba9adaa23151457998a13097f8 Loading...

	#51 Eval - 3a79bdbc4bdc1c53cbf7e4abe07ffe33	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 3a79bdbc4bdc1c53cbf7e4abe07ffe33 9810cff96be86ec07fa7c24861c8d4360c214923 a9d52071a66ce18f44c6226f43ed06ce4756c64214d2f1682967fe7027c1327c Loading...

	#52 Eval - 29e802ef067cfcf7ddb30e39688943eb	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 29e802ef067cfcf7ddb30e39688943eb 2396316b995750d6105b0bf1d755786e1bc98533 1a032254b375bcca7130cd9b91e593d595889c8a7b192caf1b1519dfe9adb141 Loading...

	#53 Eval - 732183c39c1812cf7cb736923d508f79	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:09 Last Seen2024-04-19 08:56:09 Times Seen1 Hash 732183c39c1812cf7cb736923d508f79 e6b613c29a3457a36f35fc18c726f110ac38581b 9265c21bc4fbd59240a8332c7e95ab2c7c581fa55ac91a7c21e2f13be902886a Loading...

	#54 Eval - 6ef0401ca9e481b58b369e3a4814b876	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash 6ef0401ca9e481b58b369e3a4814b876 1f69c6efca6ca8ec9f21628c1c94f5f9e827faa4 a23dc90e79a9c39c5fd08f0a5ece36e27a84962493cea9615e5a6f73a9348c5d Loading...

	#55 Eval - 5f0e001254dfb8e45e22e6f6b41c9d7a	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash 5f0e001254dfb8e45e22e6f6b41c9d7a c0e7b10aec8172191ecd55eeee0a521feb2369a6 adbc9d59a3a39fd7bbd19a5b86a78dbfcd5fc8922e149494035f9568887ac40f Loading...

	#56 Eval - faddfccb932fc35ff79f8b1a9911112a	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash faddfccb932fc35ff79f8b1a9911112a c74599f7db569095616d38de507c9b6f0e13b6b1 8885aa3b90bb1c6b27f2bbb8a8efa3063ce16c673c70b1ad1ca3bf1a6530becb Loading...

	#57 Eval - d7e13207a93760b594de140d4961cff8	161 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 14:30:15 Last Seen2024-04-19 09:43:07 Times Seen102 Hash d7e13207a93760b594de140d4961cff8 b62363a5d48a4d8c812c41c546852919ffd608bb 30a8a2ad53b8f62af74a96fbda1a34d23391bdcf90e9060af04d31a1834cf7de Loading...

	#58 Eval - e87401838f647c65902273f7a8df252d	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash e87401838f647c65902273f7a8df252d f83f73bce3af38fe95abb3d37ae933b8dae15d63 b8c2d6d4b5739aee6976f8d5e83605e3e9e5d43f5a64299d5cfe10a7f679cb50 Loading...

	#59 Eval - 276e8e3d498d567ac8df9f916ee237b4	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash 276e8e3d498d567ac8df9f916ee237b4 905e2bc5b69802cd3e9a2aff41143c50ae7da3d0 399d1055363b056e2ccba1bf4d5652ca6d286ec95275d515634447759f67cc2c Loading...

	#60 Eval - eefc84a0bba7fd702b0b63fcd9f61a13	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash eefc84a0bba7fd702b0b63fcd9f61a13 a9fdc87e4946ab1b77a69d61a8a4f7c3fbce8e4c c42a4bd521d605c8c45067d59a87025dc21167a6b5a757c178fdcbedbe010a48 Loading...

	#61 Eval - 5c18a21959ea925af19347f727be2d00	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash 5c18a21959ea925af19347f727be2d00 9a3d5bab4074e241ddcefc8a50449364e2590fb9 17b0f83736fff61c049ce19cdf85c6fc8071d139e5bb586315fa6f86d26ac025 Loading...

	#62 Eval - 518785a89636adbc41a0935aa74e37c7	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash 518785a89636adbc41a0935aa74e37c7 523cb17c58bbebb738daa095e7855e7cdac145ed ec80ec1bc3085080267120117d2d853711d4b69da6a45aaba71fb7e420e6d858 Loading...

	#63 Eval - d2701e9c4ed591f2182b49b7db0ac7c5	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash d2701e9c4ed591f2182b49b7db0ac7c5 620ccc4b044a614b7d7b190c560ddece6f4109c1 3b85e15a19a209f61aa985393c0ea24bc7ed42dcc0eaa4191cb4b841cc615776 Loading...

	#64 Eval - 776ad256d39260c404832542ffd225d3	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash 776ad256d39260c404832542ffd225d3 fe201e005e5669f786e820333fb61c2229b28fac 137a17dd19a8d7f60872cb30fc6c7d13aa43f774da53eceeba821f5e050d4a4c Loading...

	#65 Eval - bd20fa5f455054f4254324719f224ace	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash bd20fa5f455054f4254324719f224ace e0436ac75f10b9b7103045dfa2a6f5328a1921ea 83a0871d49f5c3f6a423713cf809ec9b09b2065d43099267d45551ef05cc23f2 Loading...

	#66 Eval - a38a833c65e3b6d88703604301a740f2	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash a38a833c65e3b6d88703604301a740f2 bb0a044db2e1b1e17720390229bb00da5e9a7e10 39553b4d813aee93886978f37b59ec1f2f748fea11a22eb75ffa0de85bd902af Loading...

	#67 Eval - 9fba386b83419a08ff1faa8007dd23a1	60 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 14:11:25 Last Seen2024-04-19 12:29:21 Times Seen535 Hash 9fba386b83419a08ff1faa8007dd23a1 c6148c7d249ddcfe37f49e99ac7cb60fe3bd43f2 a197c137af56d7b49dd589ed67e397152047dea7b7a147b0403d07bd1c6d59ee Loading...

	#68 Eval - 79d0f748ff0722e1f1c8c0711c3ab986	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash 79d0f748ff0722e1f1c8c0711c3ab986 0caa2da6a35fe4513a980b4f234b7b507c9e8d0e a9fe411d77fbea06bb07d52f08e2dd86e05efe4d3ad62b61782009047097943c Loading...

	#69 Eval - a17efaac5c27b535068d31b2679a73d6	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash a17efaac5c27b535068d31b2679a73d6 e6859f3ff60fa59737df04a3834d4e5e2df780ab e85b8197f165c907c0c1018213536cf5f2b297dee301aa2df5fd7e38773c428a Loading...

	#70 Eval - 6271fac9382d13647726a11b7944b70b	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 08:56:10 Last Seen2024-04-19 08:56:10 Times Seen1 Hash 6271fac9382d13647726a11b7944b70b ada1135127cc789ae093e18beafc35063f14b9ea 4431f1753685202fb00bc9c51437b24513fc6ccdb1a8eb92d1ab6aed122376c6 Loading...

		Size	First Seen	Last Seen
	#1 Write - 086707e4369f60afedcafb16050a7618	39 B	2023-03-07	2024-05-02
Pretty Observations First Seen2023-03-07 01:03:24 Last Seen2024-05-02 05:01:49 Times Seen44704 Hash 086707e4369f60afedcafb16050a7618 8216b0cc6876cbd44f01c158e7dff3833ceccd41 a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e Loading...

HTTP Transactions (20)

URL IP Response Size

splendidanimations.com/@/Volvo/IBeGb40887IBeGb40887IBeGb/Z2VydC5hbmRlcnNzb25Adm9sdm8uY29t

192.185.104.70

0 B

URL
splendidanimations.com/@/Volvo/IBeGb40887IBeGb40887IBeGb/Z2VydC5hbmRlcnNzb25Adm9sdm8uY29t
IP
192.185.104.70:0
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook
OpenPhish	phishing	Office365

HTTP Headers

GET /@/Volvo/IBeGb40887IBeGb40887IBeGb/Z2VydC5hbmRlcnNzb25Adm9sdm8uY29t HTTP/1.1
Host: splendidanimations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
refresh: 0;url=https://btrnsaws.com/Tgert.andersson@volvo.com
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 19 Apr 2024 06:55:35 GMT
server: Apache
X-Firefox-Spdy: h2

btrnsaws.com/Tgert.andersson@volvo.com

104.21.79.39

403 Forbidden

7.3 kB

URL User Request GET HTTP/3
btrnsaws.com/Tgert.andersson@volvo.com
IP
104.21.79.39:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectbtrnsaws.com
Fingerprint41:B3:3B:44:0C:39:72:59:0E:47:5E:24:C9:14:47:6D:0E:4D:7E:71
ValidityWed, 17 Apr 2024 16:19:24 GMT - Tue, 16 Jul 2024 16:19:23 GMT

File type
HTML document, ASCII text, with very long lines (16397), with no line terminators
Size
7.3 kB (7254 bytes)
Hash
18a4bc38f3f9cbe92e7261a0ea99a760
267d9150e254c476e46ed656b636ad0bdb4b38dd
858b1ea9085b2339ca997de366fa70c0eb9c9555b662a948dc0bdc94ed7e202f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /Tgert.andersson@volvo.com HTTP/1.1
Host: btrnsaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Fri, 19 Apr 2024 06:55:35 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: qyFjyKRkvr9FiXZP+gMp1LdI3FR97kLJOK7EuWw6IV//Zxn8ic1NtKJYLSw789GjXo3CSbkDdB8Qgs5fxK22ybQOwZgqef3kRckEsiPaL1n6jyUmE/mbHEVPrJ7550r7cnul+wPXD+6mjB3t9yRBdg==$qyW9xB68OnZOIoX1JDe5iw==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0EEtn2DDP6bYmbCDPWD%2FEaC4JGTCowInj19eO%2F0vlYhZunWkTeuM%2Bi8kQ%2BMc5bQJyJE%2Bm8vAotGGjox8yFrQ%2FE%2FGlvybRJqa9LKuSQOj5PUmcjeYEYVFqAIJypKEBFU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876afd67588b568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

btrnsaws.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1888447641:1713507867:nn4fHJaMC7cEF7StTVux41Ve9xzGoyPGF-oLZvaGuZs/876afd67588b568d/5391acebd630668

104.21.79.39

16 kB

URL
btrnsaws.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1888447641:1713507867:nn4fHJaMC7cEF7StTVux41Ve9xzGoyPGF-oLZvaGuZs/876afd67588b568d/5391acebd630668
IP
104.21.79.39:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectbtrnsaws.com
Fingerprint41:B3:3B:44:0C:39:72:59:0E:47:5E:24:C9:14:47:6D:0E:4D:7E:71
ValidityWed, 17 Apr 2024 16:19:24 GMT - Tue, 16 Jul 2024 16:19:23 GMT

File type
ASCII text, with very long lines (16024), with no line terminators
Size
16 kB (15780 bytes)
Hash
685d20cf1df096b260700015ef10cbef
deaba50e509fa436d6533ef4297c809177a8460c
5637f8adca86e80f8013771e826206962f16f4181754fb403276644208945f97

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1888447641:1713507867:nn4fHJaMC7cEF7StTVux41Ve9xzGoyPGF-oLZvaGuZs/876afd67588b568d/5391acebd630668 HTTP/1.1
Host: btrnsaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btrnsaws.com/Tgert.andersson@volvo.com
Content-type: application/x-www-form-urlencoded
CF-Challenge: 5391acebd630668
Content-Length: 1943
Origin: https://btrnsaws.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:35 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 6vwcBKJlYi9hfEobqYZ5Gn+q+h+qdu6YXZGeoH+a+mg62Dg1kX27NPuT//YE2kN1$xjnrwV0rnVrIhOuTMX0PMA==
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pVLZEJlvuHrTxrngAt%2FJLbJxczVMwrHF2s139LngohkmVYUeHvCAC5QGUmMeIBsHdnnTEvcF4gJYLVC%2Fv%2FIxNy7325nADit4H0IwuHNWnUFuvyxwGAb1Ls1V3PuQeJg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876afd69bb1056a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit

104.17.2.184

200 OK

49 kB

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btrnsaws.com/Tgert.andersson@volvo.com
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42414)
Size
49 kB (49113 bytes)
Hash
374fec8b5e50cd6ab980f3fef21a5aa0
7f474607991a19b6f1b78cc32e0f75b501b60774
8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a

HTTP Headers

GET /turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://btrnsaws.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 06:55:35 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 876afd69183ab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876afd6a6c69b50c/1713509736500/7ac33e2b986724a43205bf5183b7bc26b65f87dc9d6f1ba5c8d7a8a1d1701698/HB4SALSm2d8ff6c

104.17.2.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876afd6a6c69b50c/1713509736500/7ac33e2b986724a43205bf5183b7bc26b65f87dc9d6f1ba5c8d7a8a1d1701698/HB4SALSm2d8ff6c
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/876afd6a6c69b50c/1713509736500/7ac33e2b986724a43205bf5183b7bc26b65f87dc9d6f1ba5c8d7a8a1d1701698/HB4SALSm2d8ff6c HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tt8mx/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Fri, 19 Apr 2024 06:55:37 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gesM-K5hnJKQyBb9Rg7e8JrZfh9ydbxulyNeoodFwFpgAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIHrDPiuYZySkMgW_UYO3vCa2X4fcnW8bpcjXqKHRcBaYABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 876afd745d18b50c-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876afd6a6c69b50c/1713509736501/oYftZEmWcc6K16l

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876afd6a6c69b50c/1713509736501/oYftZEmWcc6K16l
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 97 x 24, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
f044ba2134276d3918a71fc66d2e963c
c38ee60e5dbfc91aa89f811a3a0e568ac9e38ee8
a1317599e63af164c16aee42e485845149c2d2ec5d9c7c4c6cd5f8a737836979

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/876afd6a6c69b50c/1713509736501/oYftZEmWcc6K16l HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tt8mx/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:37 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 876afd747d41b50c-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1273953557:1713508130:Aj2d621y2Aqdk0_nuwTs7TSNz7F4TvfswsMWB8dpdqc/876afd6a6c69b50c/d5b43cd85d66b1b

104.17.2.184

27 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1273953557:1713508130:Aj2d621y2Aqdk0_nuwTs7TSNz7F4TvfswsMWB8dpdqc/876afd6a6c69b50c/d5b43cd85d66b1b
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (960), with no line terminators
Size
27 kB (26626 bytes)
Hash
bba95d7e8633aa60ba738d8a853f4130
ec318cd279e60e094b92d9b7c5e67c7c56b97380
d908061d55618aa0f4037545c8bd9ca367c3023aa4f75c5463b1c13363bdc46a

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1273953557:1713508130:Aj2d621y2Aqdk0_nuwTs7TSNz7F4TvfswsMWB8dpdqc/876afd6a6c69b50c/d5b43cd85d66b1b HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tt8mx/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: d5b43cd85d66b1b
Content-Length: 38055
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:42 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: xRPn8IgGynzedjxhJjR8ZaTjCMHU/C82QCpxQhF46ws9IQMCPUhSZekUD9iyCP6gpLfXWdC04bpsr77fkGzXXV53/8kP3Gg+qlcR09v7MLw2w9yjm59jZ8JS8cgQeYWOEOJDsBQcwjevrb7n2n5pSg==$4G2hPp1J6NRnQ5+MWuGzYA==
cf-chl-out: ChAYzVOzToPAem+0TsGycQ56dzhkxdI7GSamG325usEC3oGgwT6GxGmTfijZQh/zv75IcVKg/MMs7FMWxYeqlMk5nqDQO+ZENz5I4UQfNNM=$WotkD+YCPHbpalFe57qtkw==
vary: accept-encoding
server: cloudflare
cf-ray: 876afd92fa4db50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876afda2f933b50c/1713509745556/4a1b26f2bc4e3576ec96536964dfea9414758760a06e37054a77cf04f8d902e6/qsxttxoA2wMP1VC

104.17.2.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876afda2f933b50c/1713509745556/4a1b26f2bc4e3576ec96536964dfea9414758760a06e37054a77cf04f8d902e6/qsxttxoA2wMP1VC
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/876afda2f933b50c/1713509745556/4a1b26f2bc4e3576ec96536964dfea9414758760a06e37054a77cf04f8d902e6/qsxttxoA2wMP1VC HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ac5gi/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Fri, 19 Apr 2024 06:55:46 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gShsm8rxONXbsllNpZN_qlBR1h2CgbjcFSnfPBPjZAuYAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIEobJvK8TjV27JZTaWTf6pQUdYdgoG43BUp3zwT42QLmABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 876afdad3a35b50c-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876afda2f933b50c/1713509745557/QnBT0nGUWIEGTWu

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876afda2f933b50c/1713509745557/QnBT0nGUWIEGTWu
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 88 x 35, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
7513d4f091a41dfbcbbfe184a16bf2b9
67000db17d7199ed8a50429f703532a676ed1752
ae63c029bc218464fe89fc8b2eafb95ed2be4a760cb9084eb989f9ba5075aa0d

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/876afda2f933b50c/1713509745557/QnBT0nGUWIEGTWu HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ac5gi/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:47 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 876afdaf9c1fb50c-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/40418224:1713508106:enYkdLjRjnV-YLMPA53aQYr8qrnzlJwj6hrjWCzDwPs/876afda2f933b50c/5e7861e014951a6

104.17.2.184

28 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/40418224:1713508106:enYkdLjRjnV-YLMPA53aQYr8qrnzlJwj6hrjWCzDwPs/876afda2f933b50c/5e7861e014951a6
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (22544), with no line terminators
Size
28 kB (28511 bytes)
Hash
040624d8f97e7dd59a714fb52b0961f6
4341239bec722d31c1295e9b93d6913e2a6f5ea2
893d56574b9d9969ad7660bf6df5137c5295999368c524acc688106f43e90d84

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/40418224:1713508106:enYkdLjRjnV-YLMPA53aQYr8qrnzlJwj6hrjWCzDwPs/876afda2f933b50c/5e7861e014951a6 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ac5gi/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 5e7861e014951a6
Content-Length: 26620
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:47 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: Fi/YL3WdCvsj8Q5XOXc/1ic6gKD5xaiwZN/nUqeXUounHks4ZrojXlQ0JikdLQ0d$922VziDH103hlXHrj4IM8g==
vary: accept-encoding
server: cloudflare
cf-ray: 876afdb0dd29b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.2.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:55 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 876afde37a7db50c-OSL
alt-svc: h3=":443"; ma=86400

btrnsaws.com/favicon.ico

104.21.79.39

403 Forbidden

148 kB

URL GET HTTP/3
btrnsaws.com/favicon.ico
IP
104.21.79.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btrnsaws.com/Tgert.andersson@volvo.com
Certificate
IssuerGoogle Trust Services LLC
Subjectbtrnsaws.com
Fingerprint41:B3:3B:44:0C:39:72:59:0E:47:5E:24:C9:14:47:6D:0E:4D:7E:71
ValidityWed, 17 Apr 2024 16:19:24 GMT - Tue, 16 Jul 2024 16:19:23 GMT

File type
HTML document, ASCII text, with very long lines (15844), with no line terminators
Size
148 kB (148307 bytes)
Hash
cff980676690d0d3f76c32b30c5d24b4
4d996e690aa6cbb99c3ece708c23c4020684e9bc
3efa7b0baf86b8a6ec5312a9e6a96d9124705bf0e1c9f441322b8f917fb57b4d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: btrnsaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btrnsaws.com/Tgert.andersson@volvo.com?__cf_chl_rt_tk=350qav4tFLMw2Ufh0etFeqyLMtFaxVpxqMK9Y1zuM8Q-1713509744-0.0.1.1-1621
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
date: Fri, 19 Apr 2024 06:55:44 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: pcRSXQdmcWVkQMtVm0xQ48QiBV0HCL0/fwxwKvCEgZDC62OfrJXDlq/ilp2wUpzSwNYKMalxV7UFBz0QuV7bB9pmDhTJY05wTT52n05Fw0xn25dVE+mGwxZmERB4VmvJWt5QMcXVHSHKvCYodq/zgw==$o6syRZvkroBsuJi9jmJtrQ==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0kL7KUpYee5kdm8NTFGHp%2BPCIrHvRfAMIPY8qDz71VwDNZhGlknmMol%2BSntQFwXAWPDeB4HzRtjpQxLntep5YxcsUL7cUqXtXrBSPR3NIcMgu3GhFIX7F4mUAW47MQo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876afda11b1356a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876afde2da20b50c/1713509755725/yS27_VgIezazxL9

104.17.2.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/876afde2da20b50c/1713509755725/yS27_VgIezazxL9
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 9 x 12, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
5b8bc4f9d786ce335b110fa52c7ef3ab
f06b32f7c2b4887a1fa2066f6193cbee7cf4bdaa
f88ce6c64708019183fe3b87772e488b3ee84c86ad2a3defbea61efbe7006716

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/876afde2da20b50c/1713509755725/yS27_VgIezazxL9 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:56 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 876afde89f87b50c-OSL
alt-svc: h3=":443"; ma=86400

btrnsaws.com/cdn-cgi/challenge-platform/h/g/flow/ov1/218017769:1713507934:688vrvZqeY0uYWdXeK0nOk4uYp7eHfPxVeOHUGOY6ZY/876afde059af56a8/38014c88ff270bb

104.21.79.39

200 OK

16 kB

URL POST HTTP/3
btrnsaws.com/cdn-cgi/challenge-platform/h/g/flow/ov1/218017769:1713507934:688vrvZqeY0uYWdXeK0nOk4uYp7eHfPxVeOHUGOY6ZY/876afde059af56a8/38014c88ff270bb
IP
104.21.79.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btrnsaws.com/Tgert.andersson@volvo.com
Certificate
IssuerGoogle Trust Services LLC
Subjectbtrnsaws.com
Fingerprint41:B3:3B:44:0C:39:72:59:0E:47:5E:24:C9:14:47:6D:0E:4D:7E:71
ValidityWed, 17 Apr 2024 16:19:24 GMT - Tue, 16 Jul 2024 16:19:23 GMT

File type
ASCII text, with very long lines (16024), with no line terminators
Size
16 kB (16024 bytes)
Hash
bfb3521b1e727b4d0813fae051da0e78
a136fe12e75284a87c073dbdac4f2af9e3b0ffcf
c02a20e3b8242d6c8eda76161949268064e4c6e87f00f48793c03a3281005350

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/218017769:1713507934:688vrvZqeY0uYWdXeK0nOk4uYp7eHfPxVeOHUGOY6ZY/876afde059af56a8/38014c88ff270bb HTTP/1.1
Host: btrnsaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btrnsaws.com/Tgert.andersson@volvo.com
Content-type: application/x-www-form-urlencoded
CF-Challenge: 38014c88ff270bb
Content-Length: 1909
Origin: https://btrnsaws.com
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:55 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: kJWurb+5P/xsUC+2U3P3F0q+P6C7XJZK4PuDMusWpMldBlh1lqhpg439ouPI+w5R$eiaT4iZCxFvFXiJc9jeYxw==
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0eEG4rCaE%2Frg7yAwe5rIcwmAUncIw22b%2B1sMGdqJjh2U1E9nEJEJghUdasKyg9Tomuly5Rkb1uvtcJ9u4LOFQaPkOM8%2BEWLpph04MvH6n12ZJQtnzGptfRJQQruxjHU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876afde22b4b56a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876afde2da20b50c/1713509755724/440fcbc29053ec42926047ca27263f001175f50085423b54d8a92d63b1434acf/ewN2OxQC_kmqTWy

104.17.2.184

401 Unauthorized

1 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/876afde2da20b50c/1713509755724/440fcbc29053ec42926047ca27263f001175f50085423b54d8a92d63b1434acf/ewN2OxQC_kmqTWy
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/876afde2da20b50c/1713509755724/440fcbc29053ec42926047ca27263f001175f50085423b54d8a92d63b1434acf/ewN2OxQC_kmqTWy HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 401 Unauthorized
date: Fri, 19 Apr 2024 06:55:56 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gRA_LwpBT7EKSYEfKJyY_ABF19QCFQjtU2KktY7FDSs8AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIEQPy8KQU-xCkmBHyicmPwARdfUAhUI7VNipLWOxQ0rPABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 876afde87f65b50c-OSL
alt-svc: h3=":443"; ma=86400

btrnsaws.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=876afde059af56a8

104.21.79.39

200 OK

390 kB

URL GET HTTP/3
btrnsaws.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=876afde059af56a8
IP
104.21.79.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btrnsaws.com/Tgert.andersson@volvo.com
Certificate
IssuerGoogle Trust Services LLC
Subjectbtrnsaws.com
Fingerprint41:B3:3B:44:0C:39:72:59:0E:47:5E:24:C9:14:47:6D:0E:4D:7E:71
ValidityWed, 17 Apr 2024 16:19:24 GMT - Tue, 16 Jul 2024 16:19:23 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
390 kB (389976 bytes)
Hash
8c4588f1a47594d02f850f95c4a34a20
93c908ecf370351e7d0e04691e5bd7929d48ed8a
e0dabe33590f307a1f7bbfbeb5264ed14ace41fd1af96ffdfc598ac8b71b35dc

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=876afde059af56a8 HTTP/1.1
Host: btrnsaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btrnsaws.com/Tgert.andersson@volvo.com?__cf_chl_rt_tk=N_QbS.36ar.OrzETRae17rKMheGBwRY1L.T73DoeLqo-1713509754-0.0.1.1-1621
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:55 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4auE4Bd2vMg70A%2BGHpAbONwFt%2FV2sC3OO4SvHzPPMZvIABM7UhHt4JgP1vzjx7ZHRFDVaau4TaUIu3UFyw3GfFZjn7xiIn9nJT8lPuSS4fRAxhtQWC8yASQQlMzFnG4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876afde0b9f956a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal

104.17.2.184

200 OK

80 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btrnsaws.com/Tgert.andersson@volvo.com
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
80 kB (79952 bytes)
Hash
25091e20b063799af0f177e1041cd87e
d2269ecda1fd142d3c39d3d05da4bf788f1903d5
87ad85614bc0049eae4c6645fea5e9ad5ddbaa1f5f0bbd9c696aad45bf637913

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:55 GMT
content-type: text/html; charset=UTF-8
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
document-policy: js-profiling
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 876afde2da20b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=876afde2da20b50c

104.17.2.184

200 OK

435 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=876afde2da20b50c
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
435 kB (435245 bytes)
Hash
e24073db31e1f9862b78bc50f28f10f3
cd7fb8739cc0fc4df562145d966c47de6e8f60c5
d27006b280ecf3c2ad85231fb8b554b04ba850497c44ab790f5703bb34152bff

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=876afde2da20b50c HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:55 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 876afde37a7eb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1833484319:1713508095:eS4Fmv-jv6jEjR_CAvFhIvzS4Vo5TjeVsFBRlOQZWdk/876afde2da20b50c/9afdf219ba48730

104.17.2.184

200 OK

22 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1833484319:1713508095:eS4Fmv-jv6jEjR_CAvFhIvzS4Vo5TjeVsFBRlOQZWdk/876afde2da20b50c/9afdf219ba48730
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (22540), with no line terminators
Size
22 kB (22540 bytes)
Hash
323539ca958144995275c98ac505b476
fba08c8d34ada275aaa34ccaadcc64eca19ca653
f7da32d08e6d325cad0b5aebac27453309af604d66c4f87261cc8de084018e22

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1833484319:1713508095:eS4Fmv-jv6jEjR_CAvFhIvzS4Vo5TjeVsFBRlOQZWdk/876afde2da20b50c/9afdf219ba48730 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 9afdf219ba48730
Content-Length: 27151
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:57 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 1dC5kIwE0LAtDsUptQQAGCCNcRTpcTgrijzPkIgsF5nuxWeT5VnqoIaZNeKJA7s+$VRJCUYSainKrC14fGgE+HA==
vary: accept-encoding
server: cloudflare
cf-ray: 876afded3b51b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1833484319:1713508095:eS4Fmv-jv6jEjR_CAvFhIvzS4Vo5TjeVsFBRlOQZWdk/876afde2da20b50c/9afdf219ba48730

104.17.2.184

200 OK

107 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1833484319:1713508095:eS4Fmv-jv6jEjR_CAvFhIvzS4Vo5TjeVsFBRlOQZWdk/876afde2da20b50c/9afdf219ba48730
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
107 kB (107248 bytes)
Hash
a08b88fb99bafd57c3c7bbfc42a8c959
fabc8ff315eef9f7bf66c71c4017e7fc30c14d09
07141c9f81166d6e0255633b21561fb64c517388f6a9140f7ed325eb5f932e58

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1833484319:1713508095:eS4Fmv-jv6jEjR_CAvFhIvzS4Vo5TjeVsFBRlOQZWdk/876afde2da20b50c/9afdf219ba48730 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/48tcv/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 9afdf219ba48730
Content-Length: 3354
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 06:55:55 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 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$4HUS6aSXmamgqIBGQ8/RVg==
vary: accept-encoding
server: cloudflare
cf-ray: 876afde52c14b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (76)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations