Report - plaintediousidowsko.shop/PsMA

Report Overview

Submitted URL
plaintediousidowsko.shop/PsMA
IP
172.67.213.139
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-08 23:39:15
Access
public
Website Title
Just a moment...
Final URL
plaintediousidowsko.shop/PsMA
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
40

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
plaintediousidowsko.shop	unknown	unknown	No data	No data	4.9 kB	314 kB	104.21.53.146
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-05-08	6.5 kB	786 kB	104.17.2.184

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed
2024-05-08	medium	plaintediousidowsko.shop	Sinkholed

ThreatFox

No alerts detected

JavaScript (74)

	URL	Size	First Seen	Last Seen
	plaintediousidowsko.shop/PsMA	4.6 kB	2024-05-09	2024-05-09
Pretty URL plaintediousidowsko.shop/PsMA IP 104.21.53.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash e7530f8248778b82c76ed2355b2ed763 e090fffadd5967a1a3256028acb21b645398d211 0fd47d9e6461d2c8e7b6f438f5786544b47653e8b1e92b185e4a4e9fa43ec6d3 Loading...

	plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880d495d5c3ab511	394 kB	2024-05-09	2024-05-09
Pretty URL plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880d495d5c3ab511 IP 172.67.213.139 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:24 Times Seen2 Hash a0a9372517ea07dea122115628525f37 1d4182d357d939b7f97998925636f17c31e8a7b5 037c16287432ba11836a0c664b816b365f5dcbb941c07d033ce1de4daa2ef18d Loading...

	challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js?onload=Ialy2&render=explicit	43 kB	2024-05-03	2024-05-09
Pretty URL challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js?onload=Ialy2&render=explicit IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 14:37:28 Last Seen2024-05-09 16:04:48 Times Seen753 Hash a5b92920e25651d2058f4982a108347b caeeadd68d38fdb681c52006c68880abc2e8a1a6 49a5abedf03eb8ad9a66eca7c5ccb8e59a440e06958e1e7b71d078f494178dc5 Loading...

		Size	First Seen	Last Seen
	#1 Eval - bf45a18c7c1589318de0343875d3b282	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash bf45a18c7c1589318de0343875d3b282 29160f47df69f60e615401f18a4e1c5f8639b892 52ee78315548dd7ae2bd8bbf51c1d02ede8b1acbe6b856f9978f0d6206e5104d Loading...

	#2 Eval - f6c25255ba4c7d87ff114595a6e4dfe2	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash f6c25255ba4c7d87ff114595a6e4dfe2 62edba78501bbff4fb26c5e24250b7745e19a132 7b6eb329a7aefbc5bc90e23ecfe79453f5951a33b72363ec6a729c9766e59c99 Loading...

	#3 Eval - bd63e77e0b7b61ab2997f6dddc55363d	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash bd63e77e0b7b61ab2997f6dddc55363d b240d5680c25fd0e04ca5f222da24086e7a6f96d 7974de3b7bb42fba73e4e2f3dacea0e3d4d8933a739a4df112fdb380c7718b43 Loading...

	#4 Eval - 650d53b4af59ed5ea6702b27d286cd39	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 650d53b4af59ed5ea6702b27d286cd39 381d5ab922fe9d101354219d4731b188c00a5808 4b8e58b5538d967a28b9309f0ae6a22abc134f5ee2118917977e2091e55b5a39 Loading...

	#5 Eval - 62e0c9f57001532c682d6e689b0f21b2	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 62e0c9f57001532c682d6e689b0f21b2 ad5b260aa0cc31a0f2095bddf61cdb1ee8f6de75 7498756239a68909cfc06057d04667d2f2704d85a6e54a11c52c23f184772fbe Loading...

	#6 Eval - 9203f06084d15f796c39c37e52a5d851	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 9203f06084d15f796c39c37e52a5d851 286c28705d24806de4ba8440e32b54dbada1cdc9 14dc142dcc62b10737c768a8d01c49156fe49d4d994c94398427f7ae67f69f08 Loading...

	#7 Eval - 79309066753f072b4bb375e03e9ab2d7	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 79309066753f072b4bb375e03e9ab2d7 d546a5d354566f8a16f606a85ff33be7a8a59d78 d9b372faf81f89b9f5b06c22b9ee9c64bcdb7eab988448fa31cfd659202c1064 Loading...

	#8 Eval - b91356ba00af2cb76602fba17abe03f5	2.8 kB	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash b91356ba00af2cb76602fba17abe03f5 36eb333437a3d4fa2d7112acacfd378b478a6cbb e0acbbe95b860bd190bfc3b959989682ed557bb9c67870e150e04398a87f5236 Loading...

	#9 Eval - cf0789fe6a399878ca2dcb44c83524c1	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash cf0789fe6a399878ca2dcb44c83524c1 6ba3405d898ea506decba999983d1d2324ffb6b7 f238bbe88ae745d9f9f0eefd069f42d895dca82459bf3054c6f9dad9f272aa8e Loading...

	#10 Eval - a6462da0696df07df27c430ff7d827cf	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash a6462da0696df07df27c430ff7d827cf 5eddba1fbee6be0f482fbd14a7d5cb0b9a8ca8ae 683cba3a152ab8e8154441a70ee43dadddfd7493fbecc23213a401c72b96337c Loading...

	#11 Eval - 44ce9c2b5dbdc0f28d7037c070550b74	62 B	2024-05-03	2024-05-09
Pretty Observations First Seen2024-05-03 14:37:29 Last Seen2024-05-09 15:26:38 Times Seen386 Hash 44ce9c2b5dbdc0f28d7037c070550b74 a9d8ff605c113bef81e606ea0bb2d8b0d65bd13e b87899b17160a1ab0138f3ff2eacc0c7c9107f22f6ab3ad6e9d9973b98deb26d Loading...

	#12 Eval - 84f28fa036a5a85e2d9127c2d254efc2	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 84f28fa036a5a85e2d9127c2d254efc2 30d915b9352dc11627a2cb7810b262e9058373ce c7f17bdb086af281bd42186aa96312a201e1c38b50f92000e22a37ac59c419d9 Loading...

	#13 Eval - d8c16ea4f2f12a275456cf266b38f4c2	2.8 kB	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash d8c16ea4f2f12a275456cf266b38f4c2 507bc38865b4eb0d1dc2a98add1538e2a0185e21 b9c2940ba67e7015096a38d27ca3418361548147c58013ff313e8273bd85d2ec Loading...

	#14 Eval - f5bb8dfe5f8af610d1c0b9743098d639	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash f5bb8dfe5f8af610d1c0b9743098d639 6b8bcfbba045117742ba7798b36c76f108690d73 1903b4fb8ec8746b792386bd2402ac7a492bf7866d9a7d1d8910791bd4097f1a Loading...

	#15 Eval - 097cd8e6e435d942dc0d746ca7d2bd5f	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 097cd8e6e435d942dc0d746ca7d2bd5f 03d5f035effebb09829b8dac903cad082d83b5bb d8db34c368a54f7cb70679d17636f93784e8aabcb73776f28e4ca46afb0d9960 Loading...

	#16 Eval - 6e8387741bf947868cf908b1cb65075e	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 6e8387741bf947868cf908b1cb65075e 86ef9078518e83c18f41bf4d3a9da3ca604dacb5 963c37eda21e18d6c9b5dfdcedb085e88da22215efeb9383c391a98c01379089 Loading...

	#17 Eval - 8acc165dfd9e7222b5fc170662d62ea0	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 8acc165dfd9e7222b5fc170662d62ea0 1b8093b2c7192549f53ec917650ec579f91eed32 82c110463a6363a7e7655bb053edbc877b44729e7629fcadd81316c331c1b660 Loading...

	#18 Eval - 4025f9c63bd4441b93a6081639f831a2	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 4025f9c63bd4441b93a6081639f831a2 dfdae74e31e841271a739bbd6d62aa7476f6e6a3 ba294510364c260118c2510b09b901085be1fe28bd4c6bde2faed3685ffac763 Loading...

	#19 Eval - c30006dfebddb216057d4289435427ca	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash c30006dfebddb216057d4289435427ca f35c1ca9f06f7e4816615f6e3463c83d0cb4320d b3aa2e0bc984d37a6e97a53ef0add0c932f9b49631e6e55523dc1fb58385ba87 Loading...

	#20 Eval - d5f0357be107a2062ee1f853e099b2e6	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash d5f0357be107a2062ee1f853e099b2e6 1039f2aad0330d1de6d3595e9a90baeda988ca12 763d166d2db650e65c91dfee2fe1b67360b18ed98f66a02911eb143a8bf95575 Loading...

	#21 Eval - 002b8ae02bdd559cf8448d0975b90722	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 002b8ae02bdd559cf8448d0975b90722 aab21155232966d83d6661f55c11b7ac5f254578 d928656fc92e200bd6f07e8dbb572479dd0b157845a208a2a31877948e250f01 Loading...

	#22 Eval - b98ad9a6b1cc0a15d79725d2a3b8d762	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash b98ad9a6b1cc0a15d79725d2a3b8d762 3dc2a481b107fe2e05f82b409f911237d43a2298 96b88c6ff41ea46c91364f918d15c050d4a7f64e808b241802cca2fe3a729785 Loading...

	#23 Eval - 032c2d1217cb17298eef873ed4d2de1e	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 032c2d1217cb17298eef873ed4d2de1e ce713d61eef0e749c40288fdb163404f40006e74 889d77ae59b6c27043b7dc2c27a64abdcf767295919860219ef9a21279843cbc Loading...

	#24 Eval - 581a3e018f34f92e8387b4a3a608cf85	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 581a3e018f34f92e8387b4a3a608cf85 20cfa6c5e724874229d7faa43e12fe3c8f5ad208 c16c7aaf98fba566a73b62a65c76279c6fc8dd78aa0e9abae1553369eb411b91 Loading...

	#25 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-20
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-20 00:17:32 Times Seen353139 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#26 Eval - 25410c4e8230625f222c3a96ce3ac9e9	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 25410c4e8230625f222c3a96ce3ac9e9 3a4cd0cc009440684bcc72d7513b31a5b4924fba ba2291b25d1781dc04681efedf99727a3b1afc502a8db528b5e9b1683778882a Loading...

	#27 Eval - 1854681f56af8c3e6cee285c7abd30a3	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 1854681f56af8c3e6cee285c7abd30a3 cdbe08708b0744e94f16f267495572dcec84458f 6e1d044d52e46ff1192d25eed1020d8da18013512bde71eba079f80c269f4122 Loading...

	#28 Eval - 6d160927b905b8e32b38ab9aedb12968	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 6d160927b905b8e32b38ab9aedb12968 692f170f06266ebf8ca8063c23a7e973dc52c2f3 da45bfbd39dffcca14c4e729e7b69b31e418094f28e31428f45cdcf1b274bbc3 Loading...

	#29 Eval - ba9764312f6379a74788b3107ed029fc	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash ba9764312f6379a74788b3107ed029fc 8e1440c5dfb7503f31b19a8e6e543c5cca5668a0 7570263d9e8d9a87835107e815581b8d7ecbad0dd54a5c54f6c09f9380b14651 Loading...

	#30 Eval - b2bb6dc105389245097773275bb7dcba	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash b2bb6dc105389245097773275bb7dcba e1923644d4e034289132e466d928b40d65aa1310 b9ca7308c8cfe28a4598a99393d07fcf3557e57f6b2cf18ec22b3b45e362bb5c Loading...

	#31 Eval - d2a2b4896f9418203f31de6501882d19	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash d2a2b4896f9418203f31de6501882d19 e93240946915da57a357b2dcf7b8cae6d59c559a 46c3e32e140a5e981a50b090bf096a1c14f8e6c40d597964464115c17a213a68 Loading...

	#32 Eval - 41f9e0c5c7651420e985a8cdbe79fd4f	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash 41f9e0c5c7651420e985a8cdbe79fd4f df4c2270a85c226c597a0e70a06e4c9c511f9399 e93b9b12266b0b9aa32f7ea1dca9bf70390323479e7f92203226ebe960011a61 Loading...

	#33 Eval - b85ecd2b5b502bff686545295bee84ad	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:22 Times Seen1 Hash b85ecd2b5b502bff686545295bee84ad c6155568e6d45cb94e538fcce24741c9a093775d 669c6953028aa360c698c1a203c9b95624f2cd1ef13e56e7af7c71bb36a14a90 Loading...

	#34 Eval - b5fe3729616176edec64583ee903c4a4	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:22 Last Seen2024-05-09 01:39:23 Times Seen1 Hash b5fe3729616176edec64583ee903c4a4 dfe5a4113e33d58d104b0dc3ed4a457f59845997 34c288133200d9dcc479adb96c0e08f048e33b679b618e33814e27e316117fbf Loading...

	#35 Eval - 73e0fe756b30a431f30393ef810f962a	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 73e0fe756b30a431f30393ef810f962a 857543bebccd4708d74a220fa5e5f81efaea130b 78c404edd02fd727fdbe4c5b7f633074e2687aca5bcb3078dc17203f3f993a8f Loading...

	#36 Eval - 32f6b13693b5b4cf19a7ccf60a9c1e6b	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 32f6b13693b5b4cf19a7ccf60a9c1e6b 81468305c0b4d077d8f4f4d11fb194ff5dba7523 afcf8a0dc69c1b6ed9cd456833c14d4ae227604583a8c92c9f2fbf5ee3351bb4 Loading...

	#37 Eval - d8a736584da706c29d2d985397607f71	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash d8a736584da706c29d2d985397607f71 12d3dafd2d9a12bee8750acb7bcf8d739a878a3f 674ce36153cef5b64f52dbf96c6b350a1acc715fe3d512e304ecc8d6e2759690 Loading...

	#38 Eval - 052973e885f68a0e7340c53aa3bf3340	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 052973e885f68a0e7340c53aa3bf3340 bb6b804cce29c0530b5a0e085263cd5d0bd237e6 d3e00573fa521a39bca54be56ed1a9a2fe658841d4922720f8d0237b7fcdb177 Loading...

	#39 Eval - bf6f37282d7a0413325928649c9abada	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash bf6f37282d7a0413325928649c9abada e86f195b498140828fdd0319880cb9a7f51bb49f 8450cd158b195ded64ffaa12dc1a2ecaf59103d4bf8b92456a650a12f9cc1652 Loading...

	#40 Eval - 023f4476278c5d1361396a7ce34277e3	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 023f4476278c5d1361396a7ce34277e3 5437b2d021fc338b24ab8c6095fde84656455c79 6bae5648cb2cf607206ff5a8025c26c2504e6e1d690aaeed6105cbdaa6dff727 Loading...

	#41 Eval - 63b8b861cb6a51e55c38570d5d649961	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 63b8b861cb6a51e55c38570d5d649961 0e7f6397facbca9ff0adf07a424b76dfa8132fd3 52439fde490ceaca7a4c838ed77a39fea06a12ab90bcca8742e8efb8422d0b32 Loading...

	#42 Eval - c840672fcfc810231baf919cbfd5de0b	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash c840672fcfc810231baf919cbfd5de0b ecdad22c27d1b2272724d123f4d3f933d1dd4484 3c18943165bf8fe38d5e2d0ab890ca3fd7759b9fe61b0808ed7a3f5f5fc26d44 Loading...

	#43 Eval - c90b334bed03e0cf8f44fe2a36613d9d	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash c90b334bed03e0cf8f44fe2a36613d9d 776d72cbf0db6fdd02e15dcf42b493494f9dece3 ca24bcfe77ea3ed88b10d850d95f4519e3355b2e1d4efb472d28dc6a401cc7d0 Loading...

	#44 Eval - 0eb76b7b2bd8d3ba96b3f5a9b9bae39e	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 0eb76b7b2bd8d3ba96b3f5a9b9bae39e d2d75994490065f0aeaa8cfb20ce9ccb094c7cab 290ebd0162eb341e6e06537a1bbbfcb0d33ca9a224e942f1a694636a721783f7 Loading...

	#45 Eval - b73e51553a194628bd8acd64fd98df3f	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash b73e51553a194628bd8acd64fd98df3f 1bcc2a7794813a7716ef9f9c6cc639d44a1901c6 34e608710bf1285561f7defd6ec34e85b53f485cad20e92ea259ed3829a2d545 Loading...

	#46 Eval - f68ff6a3f0c500dd6c2643525ae7d2a1	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash f68ff6a3f0c500dd6c2643525ae7d2a1 7138c99f6331ab432d20d16a7ebeedeb5687ba7f 1d29f8e98f803f230aad410af25076a012f485c3629fb472121699041c25c317 Loading...

	#47 Eval - eee2a1b4f34e3479cd97b5ce356a6082	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash eee2a1b4f34e3479cd97b5ce356a6082 45dc7a5a53edc247ce55f9ebe766ff009a24bc59 1b5adf4b74b23bffd0b7c4c75953a249df0d0db67fa784eaa7a0e50cd1bac0f3 Loading...

	#48 Eval - dce98adf7c0e263dcbb877b6026863de	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash dce98adf7c0e263dcbb877b6026863de a025d7a3e220143460343514ea8d3b5e6366b8d9 7666b0f3d486bface1aeee4c7362f5f28a34a6820aa7ae71cd12e0c5534b2728 Loading...

	#49 Eval - 115726fb04df292328d83eb622042945	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 115726fb04df292328d83eb622042945 544c891f3299decc8683ae670b7d50a725756556 513ab43acc73827d61b3cbdf17d984451bcfe16ec96c2dfc9a296ac995efa9db Loading...

	#50 Eval - 7955c1bbd120e964a297ffc974025328	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 7955c1bbd120e964a297ffc974025328 7dc4cca00fe4e6d912351cc503822ea667226829 f247cae1474f9de6b022cc112b000c0e932a75c672309eb2e0afa8b8f4b19519 Loading...

	#51 Eval - 42c9f130e44e27d39f2bb13596904604	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 42c9f130e44e27d39f2bb13596904604 d126d8edd1a6abf8972bd3203791a656668777a2 3ba66ed5443a71ac3d08acab8d533e6438d6c20ad57ce2842383104f02abc39b Loading...

	#52 Eval - 99c39ec7e960feab915f41d35a011249	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 99c39ec7e960feab915f41d35a011249 d418507db06cc491633cfd9cb8f374020c923a1a 26906d97c3909f25bf2966f650a0035091b43c7e37011d65378fd94beba35e6d Loading...

	#53 Eval - 780af16e5745ee141dc2a17fce16fe5f	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 780af16e5745ee141dc2a17fce16fe5f fbf160b065a625c943e15855dd425bd3f6babfa2 ba1204ce64dc39b80970e6ea5c859ea08472b398250db16f2454132f115a41be Loading...

	#54 Eval - cebd81adc88c6c3c0c339d2d311b6695	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash cebd81adc88c6c3c0c339d2d311b6695 41b775508eaac9db184a7f7e8c95c31dc45c402b 2f6a9fb68f30b76af94321508494de8198eaa6a8b4235a9ed203273ddfb92854 Loading...

	#55 Eval - fc6ca10e7320ca2db417ecd513c272a0	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash fc6ca10e7320ca2db417ecd513c272a0 29b88b54215d26c25fd078f865aac1ff5ee746b6 680f98f497aff1242a586e4090a84875f4eabadc4a31c0bfcf9cf33c6ea001ca Loading...

	#56 Eval - 72daff497e4ac6beda3b983aa8f00452	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 72daff497e4ac6beda3b983aa8f00452 50f8f6881508186e58583aba2586d2ac881a7677 e148554fe577a550f6a5295923a522996de3141b0e287bee8e013bd3e1d9a3e7 Loading...

	#57 Eval - 23a5fbdf766dadd559dd32108487e1b9	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 23a5fbdf766dadd559dd32108487e1b9 4c76022ab1afe1db62b707a064ee129a4a1b2923 7335d56d5b671d271df967aa860db60f241ecf12fd03e91e3c5560cf78e9edad Loading...

	#58 Eval - 461dd3c896c07dba8e53a223f4545625	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 461dd3c896c07dba8e53a223f4545625 f5975ed152ee4c4429c0b0ff13a74625c0404835 51b4c52c84f6989dce7084c9756b31e8267bff4df1565cb59cd49cec3065d22d Loading...

	#59 Eval - 240678289af5980bf70d7d402647d654	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 240678289af5980bf70d7d402647d654 c1cf7c0ff1868c32a87710e244c1fd51c0f790b1 e3431f9d76ffed0cf64cfbbac44e3a52e61deee94e7efddc4278a5de3542ad92 Loading...

	#60 Eval - 56831a47110adfa37ab11c4632e269b5	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 56831a47110adfa37ab11c4632e269b5 6fe5ca96425d36f68f66965b43ffd6e2ec8704a4 c7c1a7bf0575c3d26dfb2d0d18069de9bc35c637681be1d481d4b19962f7118e Loading...

	#61 Eval - 57981dbd1ab074d55a18752f7aabc70a	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 57981dbd1ab074d55a18752f7aabc70a 230a116eded32d4ecd864599b859f337a5cf3c20 ebbf09cb802816c34e99376acff779fe6fbbe8169577029b712c40a3a2496740 Loading...

	#62 Eval - 285dff29030824bc29044144e7ac7c8e	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 285dff29030824bc29044144e7ac7c8e 2b541c24968ff07544ed84d2d04c68dac05de1d5 8857518c575cef1c434a18a55b0bd231e84ff7437f2c52bd4da7b7ff2c21065f Loading...

	#63 Eval - 8ad5c0736c1df98ad6ae189147847915	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 8ad5c0736c1df98ad6ae189147847915 adf9a0b21b4bcb5042c8c7cb03b0889637350fff 3f47a5fc3e4a86e5bdc0c5ea788bba259fe50a5a42b2b611b9cae7f8b5ebcd39 Loading...

	#64 Eval - 85ace876161a2c5e7af3dd1c40a0fd95	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 85ace876161a2c5e7af3dd1c40a0fd95 4f7f42f36cb390b6cc7fd41c825c3068a74b93e0 c5173bbdd43a6380c7e09d5d0b6050bc5b35226043ee16ae193eef1e61d7e28c Loading...

	#65 Eval - 47e4581a8e09de58f550909d6f96ac28	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 47e4581a8e09de58f550909d6f96ac28 d1a7609ac0cc7ff4c07c842c8e9ed94e02b4dd51 ca214f194dc5d7e421ba106337d7505abb77fbeafccdb77b942d14f7fc371706 Loading...

	#66 Eval - a6fb1bcf251d1da3e490f88098ff277d	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash a6fb1bcf251d1da3e490f88098ff277d f896630a467af581a7a8c22264f21d4e54e9fa09 e56f8d8add71ed40c62e1d9f68540272deccecc162a18345df822060cdcec1da Loading...

	#67 Eval - ae334ac075e1fa2d070fac2d44c5f623	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash ae334ac075e1fa2d070fac2d44c5f623 48ffda58c4fa30106eea6293f0d03a4a45b52a9f c253c695157b882f6acf61df4d37c6e3050d2f46ba6c78335eb031489566bd39 Loading...

	#68 Eval - dced85767fad99db24459ef991538675	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash dced85767fad99db24459ef991538675 687c6062441acd53a703571e10629efca82822f4 e87817fd80b1c91fadd4c9f77ce623bf7ccfbf7a8f283a5ef95673490fd996fa Loading...

	#69 Eval - 29ac4ff027d23fc6c3edc5cce5a9ab0b	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:23 Last Seen2024-05-09 01:39:23 Times Seen1 Hash 29ac4ff027d23fc6c3edc5cce5a9ab0b d4b7f61579b5a74944a1ef0b4f8993a17a8da26a 1442e107922c217484c04f38f7928d842b1e151b581b6dde40311d9d7479c1a9 Loading...

	#70 Eval - 61177dbaeec81ea5481f591ca8042da3	28 B	2024-05-09	2024-05-09
Pretty Observations First Seen2024-05-09 01:39:24 Last Seen2024-05-09 01:39:24 Times Seen1 Hash 61177dbaeec81ea5481f591ca8042da3 18f9f1dc9945432896a9a1f5e0d020ecb90342c9 f77cc6610556a118d7c9624ed7486d9d12f66311979e571e6745ebd5a388e8a4 Loading...

		Size	First Seen	Last Seen
	#1 Write - 086707e4369f60afedcafb16050a7618	39 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:03:24 Last Seen2024-05-19 23:51:49 Times Seen44829 Hash 086707e4369f60afedcafb16050a7618 8216b0cc6876cbd44f01c158e7dff3833ceccd41 a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e Loading...

HTTP Transactions (20)

URL IP Response Size

plaintediousidowsko.shop/PsMA

104.21.53.146

403 Forbidden

5.8 kB

URL User Request GET HTTP/1.1
plaintediousidowsko.shop/PsMA
IP
104.21.53.146:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (14167), with no line terminators
Size
5.8 kB (5808 bytes)
Hash
2217d0eb9fc5ea971936f101aa11437a
2711e6c6945a6fe6109a9fc0163d3289cf949c1c
191505318d8e582f2993db3557a9a030ca8f8a23473e35ab6e7a4980c97a11c4

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /PsMA HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 23:38:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: tVZu18i4x+QUau2XGpoDJrkDbwvMJhR44qdcz8G/SrPE5xC1c+jf1YVNlIesSw/Z2b0pykMk5rUWJVe8q1AhKDovfxn7Ai2q2/AZcnm42HDQPuBC4fg+BbgwZR79pRDfsIBsJWJI7EgYKhrsT3l2+A==$8kCENuk9ZKOHxJWHZ+bWhQ==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g7E8G0G7hBWxGUhlk9z81ohMq%2B%2F3uyEqrKNC2I47TVgyF6Aiisk1NwKQSkYjZtXNMoURyKa6WfaCcmole2pqx%2FIjd5%2BdlPpEfEMMIhaorDp4OIlOxaUjn%2F73S50aCtxa1hHY2sUpmDFhzmg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880d4916ce37b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880d4916ce37b517

172.67.213.139

115 kB

URL
plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880d4916ce37b517
IP
172.67.213.139:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
115 kB (114640 bytes)
Hash
e59b726f2e00256ccee5085b38b50a85
3fb7d733acc183a9a4c01ffba9c6810aa99f404a
5aa04070818f5e442b0df7eb53f4ff2bb6fbee88ad51d9f4f893a9016c88d2b2

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880d4916ce37b517 HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://plaintediousidowsko.shop/PsMA?__cf_chl_rt_tk=4sH5TrCHi_Eun2_dJId672JVKysST_BM3xGrS5RnirA-1715211528-0.0.1.1-1301
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 23:38:49 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9zmnxrMIu%2FOmnl4VzzwHpb%2Fy32cBS0qOWB%2FlJU6FWSoBpF5cTLlXeIRBJjFp13qKmwZOwJeFgZhbwn5oQhPjq7eGgR0%2FPOG0ujzRQUbjCeUuAc3FozCONF0C2bDkXahzu%2Bm8JxYQAeCybhk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880d49189bb80afe-OSL
alt-svc: h2=":443"; ma=60

plaintediousidowsko.shop/favicon.ico

172.67.213.139

403 Forbidden

5.8 kB

URL GET HTTP/1.1
plaintediousidowsko.shop/favicon.ico
IP
172.67.213.139:80
ASN
#13335 CLOUDFLARENET

Requested by
http://plaintediousidowsko.shop/PsMA

File type
HTML document, ASCII text, with very long lines (14199), with no line terminators
Size
5.8 kB (5817 bytes)
Hash
ee6ca8cbb8d57234432ec6418165e771
ce874f82e11173ffda7fa795bdd43fa29071c1b0
6cdc05df003668fc5f35d91514c86ad27fd72c7f5b3c42c8f16ab96f9bea6e0f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://plaintediousidowsko.shop/PsMA
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 23:38:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: WMKCCR/ec4l2c7O/xxi74lbOF4Y87M0gkO6hOloDnxLJH0vhd7cEtD+FOxK9jeLj9x8XQfPEGgOOPuVpGiKJ4KiE9R/Jva4Yz+1MrpX1kRNa1OWYch6hUOzKSog9hi/d22T4UweRNYAr5+Uovh2G0Q==$WCBU2Gn4nq2ikR7oBTcDSg==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EaUW5gJyPZr99TblcwCI13x8vQdZHE%2BNBNnCxFxVwDcMHTT%2F7SlUiivL2czX%2BYAyN4AHf4RS8FfJUqHrETRk2TxUyLq8G7MyEBc4VbVmv9FLA7NQIEC6cNd3Az49bpV%2BTvjCvPPbmI4PKuk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880d491999b25684-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/412322525:1715207488:TruX7LEywbzgv3skFKxGjZu7PiBQ9krXdYyZjbL9C2U/880d4916ce37b517/d5ba1781572115f

172.67.213.139

12 kB

URL
plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/412322525:1715207488:TruX7LEywbzgv3skFKxGjZu7PiBQ9krXdYyZjbL9C2U/880d4916ce37b517/d5ba1781572115f
IP
172.67.213.139:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (16364), with no line terminators
Size
12 kB (12450 bytes)
Hash
36af6dd64cde3bc78f1fc7981d1801a5
0d256226cb49026eaca94fe0070567dcdd451219
cb106bd502cf3de486e9fa469868108c105e61aa2f423c686abc23e1a7333ce2

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/412322525:1715207488:TruX7LEywbzgv3skFKxGjZu7PiBQ9krXdYyZjbL9C2U/880d4916ce37b517/d5ba1781572115f HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://plaintediousidowsko.shop/PsMA
Content-type: application/x-www-form-urlencoded
CF-Challenge: d5ba1781572115f
Content-Length: 1868
Origin: http://plaintediousidowsko.shop
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 23:38:49 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: or2/U6QipAgU1r5Yk5EbiJ+FDmDRzFQhUSWYcughxyWFd03fpyaIxh5fvTQt1LEl$AjTl7GeGIbkLn2eAdfqv/Q==
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hAiX4WxZmf%2FVrzmzaAut%2FO8kaHyBlh883UtFWnC1r9P9TWveKabuMqk2COYAMsR0tOr8HatBOLRmnM805G2jK4V6eSiIpWSWdB7EDmzdgBN81ZLDWMYk4XY4kAI48AgSfqqTJYPK3jk7Co0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880d491a4e28b511-OSL
alt-svc: h2=":443"; ma=60

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/f90rq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal

104.17.2.184

26 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/f90rq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (41702)
Size
26 kB (25645 bytes)
Hash
70e054349148620cb69de398c4f98059
54569a3a9e454c4ef55b484770cc086f0ca7196c
c02b1e60038daa78a973ae86595d3cd14fe13454490828568df24fc911e90328

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/f90rq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:38:49 GMT
content-type: text/html; charset=UTF-8
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-resource-policy: cross-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
document-policy: js-profiling
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-opener-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 880d491b39110b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

plaintediousidowsko.shop/favicon.ico

172.67.213.139

403 Forbidden

24 kB

URL GET HTTP/1.1
plaintediousidowsko.shop/favicon.ico
IP
172.67.213.139:80
ASN
#13335 CLOUDFLARENET

Requested by
http://plaintediousidowsko.shop/PsMA

File type
data
Size
24 kB (24016 bytes)
Hash
1616fc3ae77e05ffed673035d6d079b2
fc75b0363b7f1c954c1f61655079974162668bbc
0049950d59eded223e1cd8256682d20788718f06384c1af5cb049f96075b5771

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://plaintediousidowsko.shop/PsMA?__cf_chl_rt_tk=4sH5TrCHi_Eun2_dJId672JVKysST_BM3xGrS5RnirA-1715211528-0.0.1.1-1301
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 23:38:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: 4IvhnCV9wsFPkhs4w2kADVYQRnFACR2LVYWptJv3FRlR32YW0p/dwgwGMszlnNEsMSuSjRM1j5d68rm0FTxMvc6m2UsqGXrmr/tMH3qo2tOWrK7/GCXucJRbGRRO/Q2rI6fCQ9XUXvQmCdlm3YC5WA==$0TOV2o9rulINvH2emUYAOg==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eqZSV6XaN9r424bNfWfu8xx4tMXHY53W8%2B737ZThbQlz6omUgZve1Q6bowsO6ZLDEZZxKm24QpZwGBQ0BZcUKpOPN8ITroasq18S7Y6D%2BWy9ls5O432Q88YIHghhsif3k96HpecoRViDOpM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880d4918ec0b0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/880d491b39110b49/1715211529930/VRz3lH8xSdcXUKz

104.17.2.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/880d491b39110b49/1715211529930/VRz3lH8xSdcXUKz
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 42 x 33, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
24449f34506093e9725e69021a528e45
e4557ec3de0fc0d7e9704e803e93fb968bbcc032
b5d5a2facdac5c224e18aa25da4e977c135e77b37e91fd5906e097c6e25e6fd3

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/i/880d491b39110b49/1715211529930/VRz3lH8xSdcXUKz HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/f90rq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:38:51 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 880d4926be2e0b49-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/689607155:1715207449:aSZcVj1vhL2U9YSXy_FAUg-UoSe4DObURxmHcLhhwTE/880d491b39110b49/554674cd3483850

104.17.2.184

122 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/689607155:1715207449:aSZcVj1vhL2U9YSXy_FAUg-UoSe4DObURxmHcLhhwTE/880d491b39110b49/554674cd3483850
IP
104.17.2.184:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
122 kB (122155 bytes)
Hash
00288d645cb1af4be1f317d740a0a6ff
d6b02ecae4f8c3616f1c36e17ca096765a7617cf
d43cca82acef11814cc27b2309838ed04883afb677e08d61828fea40bf86d86e

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/689607155:1715207449:aSZcVj1vhL2U9YSXy_FAUg-UoSe4DObURxmHcLhhwTE/880d491b39110b49/554674cd3483850 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/f90rq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 554674cd3483850
Content-Length: 3567
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:38:49 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: bfayj2uClvjZsqY8dq69dc0yxTYuX76nOLa5ur3IcguDJQ+dp88Q4/3Vnse0ss2kRXrkvtBn4CkwJBAdZw1k88/HueUaP5E4vFCyGdITnPcjtUnIkl3JtMqLeXYHvvgQvhza47s5uLC/ZTR2xPbWntu/PXRI7UcpyZAIGPqed9K77BAbPl+q+1q5ILpGzSztsNDY57SkhYMJSgTGu8CJKzcuay3HF/4hA2gMYwV50OdUWKzTAeQg+O7vyy2EY8OJ/CD8dDMWirrvmKVo4sfsjjzwARniv/Bzuv+pqHOfLBVaH8vmuHXbnIiek8XgvgeKMXLcMvtYonQgHjHhUY6zc7+gaqDCLMIXgEYYJOY64rD5K8i0tfByvBJ6fazHUWPV3yRokeMckrxXr6MUVJErtgfrHq3vSGj5T0NbGPv8zRzGb+zpRHo/KrQ8dZKpYsZgI+98He+wkI1gE3JvNJAqbw==$vQfEVoSVYZGjUQAaI/c9zw==
vary: accept-encoding
server: cloudflare
cf-ray: 880d491dfa2b0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

plaintediousidowsko.shop/PsMA

172.67.213.139

403 Forbidden

5.8 kB

URL User Request GET HTTP/1.1
plaintediousidowsko.shop/PsMA
IP
172.67.213.139:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (14188), with no line terminators
Size
5.8 kB (5821 bytes)
Hash
0a021c03b1ce4a83317ce25c8ea2c634
8bfce464f10493fea49ba1d47aa7c1970a380795
17cc105e16f7bcd3738663dcecf810200866c5574ff0fcd0a2f14d6e64b43d87

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /PsMA HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_i=1
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 23:39:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: aAD2Z2HvkKK5zpLmU1hU7zfpZ4prxSmAV0NoiMw1h73bwdfnbZzQX6reNrtBKpgpXCjXTdyZBqDYoB247+SQvUBByiBMNTooKpeZTpLKLX+ygaaLj/suNLwHEp1kUttzZ4gjCeANpVeZVZZGZAvfBA==$PtVx/O6err4SI9NVfgiUfw==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H3JlLqzCjNVDoJynigkNWX%2Bpxd9mohypH93X2XBKnC2gtlfngeoMUjikt1PRcKZ8zXwOfkBZKrp%2BcgRt2e2ctGdovxpMsmO21Bn%2FbeQW8kuwUv1pRAt13x3NlijiqULX3knYmBgyzKP67oI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880d495d5c3ab511-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880d495d5c3ab511

172.67.213.139

200 OK

113 kB

URL GET HTTP/1.1
plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880d495d5c3ab511
IP
172.67.213.139:80
ASN
#13335 CLOUDFLARENET

Requested by
http://plaintediousidowsko.shop/PsMA

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
113 kB (112648 bytes)
Hash
a0a9372517ea07dea122115628525f37
1d4182d357d939b7f97998925636f17c31e8a7b5
037c16287432ba11836a0c664b816b365f5dcbb941c07d033ce1de4daa2ef18d

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=880d495d5c3ab511 HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://plaintediousidowsko.shop/PsMA?__cf_chl_rt_tk=ZCVMS7mRi00PJm9SUKofLIjAt7.NowZ3P5CQh3gGy0Y-1715211540-0.0.1.1-1301
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_i=1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 23:39:00 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RP9IVczwp%2BYifEVq2aStHLFiUkEXh3atVPt7PTj78mS8snPn3mT%2BtLovhr%2BO0lVqOmye%2F%2FepHerA%2BVplEHo3YhoknTS%2BHZosFRkpz9ck9usDYyiXsCUiJzFf0WxLLUB%2B8CbNYOg%2BGbKyWxs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880d495dcc707129-OSL
alt-svc: h2=":443"; ma=60

plaintediousidowsko.shop/favicon.ico

172.67.213.139

403 Forbidden

5.8 kB

URL GET HTTP/1.1
plaintediousidowsko.shop/favicon.ico
IP
172.67.213.139:80
ASN
#13335 CLOUDFLARENET

Requested by
http://plaintediousidowsko.shop/PsMA

File type
HTML document, ASCII text, with very long lines (14221), with no line terminators
Size
5.8 kB (5832 bytes)
Hash
c1e4d72cb79a6fd88d1efb7502690438
d20167cbd72b1cea6b65ac8e456bb2040803ae7c
c7812c4d8b15d476b4fe75da6716e7283e9283af54c23aaaa6376abcc4b03f53

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://plaintediousidowsko.shop/PsMA
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_i=1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 23:39:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: EvYmo4Ql+eeBjBHn8bquNj/x/qqMaPC1VkQPFTZVIXZje7GZoF1BsMFy7mHNc/dJiiIzvToZC67x1NI2uMV9M36z1zgTUPvmDBIUtGtwEPkUwoHktNK42eMndGgUbO1Hn7S+4aXXRMDj+37lZBgKVQ==$9gNPurHLC3Ah0yCHd22zog==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6b5l1bk0k2WOg7IhMICFAJ6eD6D8eQETqOI1H2UFn%2FekGhm4WlEzyw26ep3%2BOe461FzOUFw8nmUfFSzGc6Wokrs107%2BRkY%2BXwf%2FAPN4nooT2qTvtHVphlUYQGVtKq0xgoM66wkzUjD3MAyQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880d495e7d75712b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/394508631:1715207400:mFUozL5UYQQr0J7xIszO59QB2Crp4rbuXhepAq_yv5A/880d495d5c3ab511/74f367e0b5e8388

172.67.213.139

200 OK

12 kB

URL POST HTTP/1.1
plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/394508631:1715207400:mFUozL5UYQQr0J7xIszO59QB2Crp4rbuXhepAq_yv5A/880d495d5c3ab511/74f367e0b5e8388
IP
172.67.213.139:80
ASN
#13335 CLOUDFLARENET

Requested by
http://plaintediousidowsko.shop/PsMA

File type
ASCII text, with very long lines (16352), with no line terminators
Size
12 kB (12430 bytes)
Hash
ed423bd2506614e41d2b4ed25324fe68
729cf9fcd838b42f824f4f836e22f9fbe981711e
f760aacd04e75502f2be7a5c28c2f86b523387912da7e1502cefefbbb49f0cee

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/394508631:1715207400:mFUozL5UYQQr0J7xIszO59QB2Crp4rbuXhepAq_yv5A/880d495d5c3ab511/74f367e0b5e8388 HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://plaintediousidowsko.shop/PsMA
Content-type: application/x-www-form-urlencoded
CF-Challenge: 74f367e0b5e8388
Content-Length: 1859
Origin: http://plaintediousidowsko.shop
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_i=1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 23:39:00 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: 10Dbm1jFoLV35kslV+8zgFzqrzESDFmtmyPHzH8zc8ZQF1CpdPLdhNPr9muLT5ig$PaxBffwJqZvk6PwvaBHhdw==
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QVRGK8DwDANTZWyq%2BhC2EK%2BpVrKRJW04F0pGlMl71GE%2BC9uwpWMNd7v0tWAo98JUTc8R58WouHFTmRkLoNCPcp8bMB3st6YYL951Z3A460QxSOJfBuIVJd1AGYFME%2BKPmN4vtE8u3UH72zw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880d495f2d005690-OSL
alt-svc: h2=":443"; ma=60

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal

104.17.2.184

200 OK

26 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
http://plaintediousidowsko.shop/PsMA
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (41702)
Size
26 kB (25612 bytes)
Hash
37b203912a1fec06f8b015591dfe4250
d77460821ded3c65167e133eb01866f8cb09a924
e9913ec2ef6ec8701e889c5d000befd38cb18a6d5899e6e2bcce5b496b5dc061

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:39:00 GMT
content-type: text/html; charset=UTF-8
document-policy: js-profiling
cross-origin-embedder-policy: require-corp
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 880d4960091a0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/880d4960091a0b49/1715211540979/TdJbGdSWMgzgs_y

104.17.2.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/880d4960091a0b49/1715211540979/TdJbGdSWMgzgs_y
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 3 x 58, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
6d8912fd0bad439b36c1691e649408c9
fca2930b2313b6a5a0c653125beaced2fe34b615
f232e2d031cf547443dd056cf443b384f673872b66c9317db0a3b9ea57d06aff

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/i/880d4960091a0b49/1715211540979/TdJbGdSWMgzgs_y HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:39:03 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 880d4975a9520b49-OSL
alt-svc: h3=":443"; ma=86400

plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/394508631:1715207400:mFUozL5UYQQr0J7xIszO59QB2Crp4rbuXhepAq_yv5A/880d495d5c3ab511/74f367e0b5e8388

172.67.213.139

200 OK

1.8 kB

URL POST HTTP/1.1
plaintediousidowsko.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/394508631:1715207400:mFUozL5UYQQr0J7xIszO59QB2Crp4rbuXhepAq_yv5A/880d495d5c3ab511/74f367e0b5e8388
IP
172.67.213.139:80
ASN
#13335 CLOUDFLARENET

Requested by
http://plaintediousidowsko.shop/PsMA

File type
ASCII text, with very long lines (2328), with no line terminators
Size
1.8 kB (1798 bytes)
Hash
8d97e87c1dfdacbdf87f01cefed981e0
54c54df63974f67541fa8f31c771cd5695d9bffe
19972cd98b2973252a9f8ac1e7881edca91b9f23792d7ba1640b5f1e6715bd33

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/394508631:1715207400:mFUozL5UYQQr0J7xIszO59QB2Crp4rbuXhepAq_yv5A/880d495d5c3ab511/74f367e0b5e8388 HTTP/1.1
Host: plaintediousidowsko.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://plaintediousidowsko.shop/PsMA
Content-type: application/x-www-form-urlencoded
CF-Challenge: 74f367e0b5e8388
Content-Length: 2529
Origin: http://plaintediousidowsko.shop
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_i=1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 23:39:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-out: 8X21HVoE67F75fAzGRXQD+TY5AGKCZ7gZm38mPwx+NfCG5kNkz3BPJuGrFNg2QpS1GjLrktiEgl2maplxp5HDfQXa0BbH4DwbzODYZV+fU0=$tCkvRCZEYhRj0ipOpGVphA==
cf-chl-out-s: f65lRWEwRsDj2O7tpvMi3A==$hBurZYfstCN7udbNz400Qw==
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DRSFjEZVPpxKTDV8xseqMLRCkUd0IxJA55%2FLyJDgwG61VJ4EPVnH0IjDHhtCNhLjkjFUtm6hIfoprOoMUS2aQ8dQ52niUBslxRxbeoQVNAyTkGutDOmY5in2WSxQ%2F9PeI5ZJzbCyUmyEoPo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880d49ab6c7b5690-OSL
alt-svc: h2=":443"; ma=60

challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js?onload=Ialy2&render=explicit

104.17.2.184

200 OK

43 kB

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js?onload=Ialy2&render=explicit
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
http://plaintediousidowsko.shop/PsMA
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42565)
Size
43 kB (42566 bytes)
Hash
a5b92920e25651d2058f4982a108347b
caeeadd68d38fdb681c52006c68880abc2e8a1a6
49a5abedf03eb8ad9a66eca7c5ccb8e59a440e06958e1e7b71d078f494178dc5

HTTP Headers

GET /turnstile/v0/b/ce7818f50e39/api.js?onload=Ialy2&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://plaintediousidowsko.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:39:00 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=604800, public
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
vary: Accept-Encoding
server: cloudflare
cf-ray: 880d495e78a90b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/959342513:1715207414:8uJUUwi04p3RxNzFIQKKxyiU6BRJjFQV0Rla_yDKTtM/880d4960091a0b49/60960e75fda06f7

104.17.2.184

200 OK

113 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/959342513:1715207414:8uJUUwi04p3RxNzFIQKKxyiU6BRJjFQV0Rla_yDKTtM/880d4960091a0b49/60960e75fda06f7
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
Motorola S-Record; binary data in text format
Size
113 kB (112920 bytes)
Hash
b32cc8e704b2648d0a6f52139561e41b
242dd572ee98b560667706d109e55b74d31fc590
5ec44b7d221aca9adf277e3ab6f92eca8d971717f7ed01c3eaad5122edc9b84c

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/959342513:1715207414:8uJUUwi04p3RxNzFIQKKxyiU6BRJjFQV0Rla_yDKTtM/880d4960091a0b49/60960e75fda06f7 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 60960e75fda06f7
Content-Length: 3573
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:39:01 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: yXl8ewqNjLShS1aGqZFFv6NN+x8ctOUQMpPnCSvgTxxhKkA3YAPxZCm0veiFHCQ6lQ1XRGRfXLeEAedysMUHFdfsaLRIHy4W/vN81cIGAST+PflBYPzUweCRLZ0Uuwr8+snobaQ9Zk13HmL45dO1oUmToLJLA+HnDtn60VmDLvYBL/j+373jRdPsuFVSyL+pZVdJOQjlCjZ+agtqqe9I9Up4pufPhhrxKJQSrZj02OrwK0CMJRTm8qZqJhW/aITrZ7gIC4FAzUKGQto0D+KxW+OzRGh/TZL3R2ld0y+9f4JRsfU6Rpmkx0AhiyLa2B9NsVwTR7lnyNPNAbeSVJQ0UhfNOC6KHLWwao1pqlLLlN8QIGhGGb+C3VNZGp6r3u7xJUZAD98j4x5LYHHPLZn4ukE0MRkDjYgHTmvZNXUFOA34gj31Ozl3waid+imV7aXK$Yki1PCKhPgoPdid7v0W1ZA==
vary: accept-encoding
server: cloudflare
cf-ray: 880d49630a0e0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=880d4960091a0b49

104.17.2.184

200 OK

428 kB

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=880d4960091a0b49
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
428 kB (428438 bytes)
Hash
7e4ed83b90b982abb1cd84bc6fc1978c
5a990272973b91ce1ad0819a0d1b61173d98e9a4
bc688b449e541308ebe5801aa484c668703a072a9c2f6f961e38d03c77f5508f

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=880d4960091a0b49 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:39:00 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 880d4961097a0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/959342513:1715207414:8uJUUwi04p3RxNzFIQKKxyiU6BRJjFQV0Rla_yDKTtM/880d4960091a0b49/60960e75fda06f7

104.17.2.184

200 OK

22 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/959342513:1715207414:8uJUUwi04p3RxNzFIQKKxyiU6BRJjFQV0Rla_yDKTtM/880d4960091a0b49/60960e75fda06f7
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
Motorola S-Record; binary data in text format
Size
22 kB (22288 bytes)
Hash
faaeb3d494bb02eda51bc6ba96928b51
e68408dec5d25aee4f6cf6ffaea1254d67c9756e
b81d0732b672a4e4b05c58e952dcac9d733593cd3a09cd738cf512afd02bf2f8

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/959342513:1715207414:8uJUUwi04p3RxNzFIQKKxyiU6BRJjFQV0Rla_yDKTtM/880d4960091a0b49/60960e75fda06f7 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 60960e75fda06f7
Content-Length: 28114
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:39:06 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: T6XVOoa/jqf1N3iva1XBJ7LKqy3/ytSxuRA6JlKgfYHWCACXpPon50q10tk//luZ$hWGXrGDYUyIakASBNwPQXg==
vary: accept-encoding
server: cloudflare
cf-ray: 880d49831f6d0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.2.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.2.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/8odi9/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:39:00 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 880d4960f9780b49-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (74)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations