Report - web.lehighvalleychamber.org/cwt/external/wcpages/referral.aspx?ReferralType=W&ProfileID=5337&ListingID=4065&CategoryID=74&SubCategoryID=0&url=//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t

Report Overview

Submitted URL
web.lehighvalleychamber.org/cwt/external/wcpages/referral.aspx?ReferralType=W&ProfileID=5337&ListingID=4065&CategoryID=74&SubCategoryID=0&url=//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t
IP
104.18.245.141
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-25 12:58:49
Access
public
Website Title
wIMlCFBeEg
Final URL
efe.q39r.com/efe/#Xmgouta@trustre.com
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
efe.q39r.com	unknown	unknown	No data	No data	1.6 kB	8.2 kB	104.21.17.5
sanemedia.ca	unknown	2017-08-09	2022-12-03	2023-03-30	660 B	247 B	162.241.120.242
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-25	6.4 kB	453 kB	104.17.2.184
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-25	406 B	90 kB	151.101.66.137
web.lehighvalleychamber.org	unknown	2000-09-28	2015-03-13	2020-04-15	804 B	1.0 kB	104.18.245.141

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (52)

	URL	Size	First Seen	Last Seen
	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal	3.5 kB	2024-04-25	2024-04-25
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 14:58:55 Last Seen2024-04-25 14:58:55 Times Seen1 Hash 6f67caad4719402f9a4431b4850f1cd9 7e559386fa9ffb3809433611f800d0a575614410 878553268b3226981a82d59fdd5b0aad4f84ada69eb9adc26a51606e57b92ec0 Loading...

	efe.q39r.com/efe/#Xmgouta@trustre.com	6.0 kB	2024-04-25	2024-04-25
Pretty URL efe.q39r.com/efe/#Xmgouta@trustre.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 14:58:55 Last Seen2024-04-25 14:58:55 Times Seen1 Hash 3347646a5e8d1d8345e534a6948b4cc8 e64d2137a80b2388a8121c88822598bb5bcced9e 519e2ad7b2f0395777fa477ad6583c86aeeb5b4f5367d6835572d9629b4d4e00 Loading...

	code.jquery.com/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-05-04
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-04 23:32:51 Times Seen265841 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=879e81247d280b06	436 kB	2024-04-25	2024-04-25
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=879e81247d280b06 IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 14:57:58 Last Seen2024-04-25 14:58:57 Times Seen4 Hash a4c0a44787a2fd7f29c15b53b7f527a6 efc38c1f96088f4897bbb9bd2421b20154cc9702 557069c67a5adf9b557386332151c4fb440bc44393d1f832e5cc466224c157e2 Loading...

	unknown	1.1 kB	2024-04-25	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 14:58:55 Last Seen2024-04-25 14:58:55 Times Seen1 Hash 227ad019e47d6e31418a4df376196e3e 9f14dbef4ea5e8f757ef84c49b2c708cac291c6d 05191b20267d843a67f4be18c126e6553812a85ebf7be5ba5391abca38536a33 Loading...

	challenges.cloudflare.com/turnstile/v0/api.js?render=explicit	42 kB	2024-04-18	2024-04-29
Pretty URL challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP 104.17.2.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 21:08:49 Last Seen2024-04-29 16:17:51 Times Seen2594 Hash f94a2211ce789a95a7c67e8c660d63e8 f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f 926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b Loading...

	unknown	157 B	2024-04-03	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 09:40:10 Last Seen2024-05-04 10:48:48 Times Seen551 Hash 54b32f51946bf616b908ed2c3732df68 25af89d89433ea4f3910782c01745ecf7da9db23 caaad3feb4c9100116d4d800ae1aa362af1870023bd6f4ff7efb3d773a7a0a94 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 8fbda0a2561e95870db1cfaf0db47ddc	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:55 Last Seen2024-04-25 14:58:55 Times Seen1 Hash 8fbda0a2561e95870db1cfaf0db47ddc e8e10d8ec3c9bc125b5d6f2a45080d0658408813 8f8c92fd283fb8ebf5dd4c8cf18a290f9db79b80a0737d253ab0419e1e3603da Loading...

	#2 Eval - afaf9a909b54f3344217ead7ea8e2188	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:55 Last Seen2024-04-25 14:58:55 Times Seen1 Hash afaf9a909b54f3344217ead7ea8e2188 4c314a13e6360eceef24ee5ce8780e67468645a0 8e87f672f50af8a8e606948c538736a239f2a879fb6483c305bd7ed2b83e023e Loading...

	#3 Eval - 89cfbacb4f2942a10e1e2c055ba936de	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:55 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 89cfbacb4f2942a10e1e2c055ba936de b5a2aa86349cc6bd059f7e1cfeeb41ec96c163f9 faaf7da55706fa4bf6278db72e29c114d559f02e29ff3b4b1753e9b735248fee Loading...

	#4 Eval - 93f4452c299c705c6de88ff2345b855d	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 93f4452c299c705c6de88ff2345b855d 0c4ad063a965859fce54843d2bb4d1dfc4c5bb5d 0aed7fb8a78d7b5a50d74474163a87ecda9f40fe4967ddaa9a52289cd6ac679a Loading...

	#5 Eval - ba44939f360430287329a2bc3b70457f	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash ba44939f360430287329a2bc3b70457f 0eabb867836df50859c060899f9245083d03976e b5b9e14fdfe35cf4e3bb3d54b532d88240a8bf4126a67f0706971f32ad5da07d Loading...

	#6 Eval - 59b68b63fdd73e2e18cc757b245e2fe9	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 59b68b63fdd73e2e18cc757b245e2fe9 7855035ccda7c9429c74d8642ba1a50919067a54 3afeabad3b00c8fbf1a7a0747c273ddb62be029c4b2e3409b60ca588267c49d5 Loading...

	#7 Eval - 4a231433192c2278e3485aa776a8ae5f	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 4a231433192c2278e3485aa776a8ae5f 5cb35b6cdbd0198bf06e2bab1cb08dc59ec516b4 419123c4e9da6906d158678b339611930425f98537133192fdf1ae468bd141ec Loading...

	#8 Eval - edb0439eef7f596d3fc104cd977432b9	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash edb0439eef7f596d3fc104cd977432b9 f5a824514c42e9a66e0651a776861d25e8befc63 973b6c71609cf583ff965d357bbd1d893eb912ba7f02bd090d853f8df72a4bc4 Loading...

	#9 Eval - ce42cb1bce13e47b5acf2516e33c6d40	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash ce42cb1bce13e47b5acf2516e33c6d40 20e23bdcd40b3dca86d37e9057d9c0ffb71278fb ff1738f14c88e06a018e6afd892e7a75a95420d4e1b09e2572c978c3f269b306 Loading...

	#10 Eval - 51957d087048e177dacc8021b596c56b	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 51957d087048e177dacc8021b596c56b d966bff96cc48dc1cd88453738e6e4ee0d03f03d bf6cdcd5be44b1dc483a563b5ec136dfe4f928ab9eae67381197075aa23f52f0 Loading...

	#11 Eval - fc5af4fa5045512d6b906d6efbfcf1a5	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash fc5af4fa5045512d6b906d6efbfcf1a5 1708429f7c73fff8336dce95507a4e7b3d5f0460 e89a6536d8f931f6da9de886013fda89f767c4bd0ec5fea7298438731fc5eb0c Loading...

	#12 Eval - 607614724731005d1a074c010f817c57	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 607614724731005d1a074c010f817c57 dfe34582718362af11f7a20c3351ae4119641441 872143105dbf3f4e064496bc42e54088d581979967f1482e9375e63c1c0716a4 Loading...

	#13 Eval - 919624dd7ace237daf92f1ce411ff655	1.1 kB	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 15:28:42 Times Seen2 Hash 919624dd7ace237daf92f1ce411ff655 4e820f399e40fac5dabe5970f89cf71095584f65 a4919256f931eb784debe30b441f6b3dcc568776f1addb9ae676979a4b9c6eb1 Loading...

	#14 Eval - b2d1533d4a4a6a4f38df5178246fd529	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash b2d1533d4a4a6a4f38df5178246fd529 1dd9d700641f5d5687489ceecc6bf4e3c349cfd0 30ec5663d33445eca5cac854b9b93d29f44966c3e0dccdcdaaa3d31c2ac1f442 Loading...

	#15 Eval - 7616ba088a0abdd180d59b4cebb767e0	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 7616ba088a0abdd180d59b4cebb767e0 d4a4d7806d86f5d09ca30da56ac8d8fd3a76a8d3 47f36f972220ce59ff674b40f10cd4502fb284d38fd22a9074c786ae5203533e Loading...

	#16 Eval - b880100d99adaf8836dfcbcccae609b0	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash b880100d99adaf8836dfcbcccae609b0 76fdaef3c6ee5a4bc1c19e67a8d64724ed055612 dcd404e58f63bf4e9821cd7eee09a4e1e67a8c261a5aa4814591946429943e42 Loading...

	#17 Eval - d31a80e767e81a4c25528178e0570103	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash d31a80e767e81a4c25528178e0570103 23bd96b31e05057475af8f8bcd8168181d90eb2a 1f95384673e046cde1fafe06f89e8245d0329d9957935a9e98b95d9f8caf0e97 Loading...

	#18 Eval - 2b5b743aef78d24e9979bb35ba37cde0	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 2b5b743aef78d24e9979bb35ba37cde0 9d97419350bd286772bcd70b45e75d798fbc31d2 607b8d288798e92754b0728cbd23d9805a112fe2f9a07fac91553fa81f63a1fb Loading...

	#19 Eval - 99b81eb95c2fb9443b50ffedf4037cad	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 99b81eb95c2fb9443b50ffedf4037cad c52b081811d03107e9115e5e156bd92760f16a2a 9e36ccbd5f349a6c9577a76a8ab0e49cb0348b7b403b2a6b197e07f6b3f3cde7 Loading...

	#20 Eval - 6cb112ca186dd94cd3af3a0a8470cf3c	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 6cb112ca186dd94cd3af3a0a8470cf3c da9b095e34e10331a7b66f8c43c200f0dfb39432 67646ee911982286f5ef69ee981de96a20128ba28c27eb5b55626812c9fd622e Loading...

	#21 Eval - e9a3dc7c326b353e9f3715dc1843ee5e	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash e9a3dc7c326b353e9f3715dc1843ee5e caeae1d8a5d9d48ece680614542ddbc580abc5c9 2d20c419eea6f83a1637ba00760277dfce2a562680ddce0b113f2d405d844268 Loading...

	#22 Eval - ab8756bd7c607b63104632e45770d0e1	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash ab8756bd7c607b63104632e45770d0e1 3370aa62cd48c74fb95c5cb02668704b9818724a b3dd1f1ee4a5d083bf7c530e77bb99ad5112819f052642ab94a88e3520928fe9 Loading...

	#23 Eval - 03337d657f82406227d2a66a43eaf08b	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 03337d657f82406227d2a66a43eaf08b d981c0db7b0268ce2b606fd636f923ff6caedc67 a0af175489b6a7064240e07ec4cac51c36bbd192183f5c74966dfcd3fdb8a37f Loading...

	#24 Eval - 80a3dc8d92981b817f4ace55b5940dd8	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 80a3dc8d92981b817f4ace55b5940dd8 861f91edb0b8c70845861a90d4b7d999bfe2a7c6 b8d32cd9692d742db35b58799ade4c9f269b0a97bbba7265ebc3afdedfa6c4dc Loading...

	#25 Eval - 7be4a6a2e315e47edc52ce388f6a554b	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 7be4a6a2e315e47edc52ce388f6a554b a65c40cc36f12d46e6e8df32f0ea5d147d8ef92b 3928bcae9e0e0e597908a864660fd91a8594c94ee02c1807d3055085d18c6b3a Loading...

	#26 Eval - 5feb8ab781ce797a101799beb8940e3e	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 5feb8ab781ce797a101799beb8940e3e 67d860dc8a5755e1509289f36d64e68d8fb50b8f 5aa47d6b5094eeed5e88f11b40f34dfd200bbe640874c72e613e39eb059aff4a Loading...

	#27 Eval - bcbfe82a54395a3bec3495b4179cd225	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash bcbfe82a54395a3bec3495b4179cd225 cf13eeb73a878457d82c76121712f05cf3810726 82960b747b53e3463bd0a596b70709d306f2ea6f32fe98a4e0a879326e300ada Loading...

	#28 Eval - ee2dda6e9214dc5c00856ea9564a3866	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash ee2dda6e9214dc5c00856ea9564a3866 8c0e60dff3575d4092075e9a967a4ae27c20d19b 42ff3064eda9a45ac08f60c91e58e13f31e7069c20ee8285bf7956f231ae944c Loading...

	#29 Eval - 61fa153f2827c887a48a351ae3c6cfd3	8 B	2023-03-07	2024-05-04
Pretty Observations First Seen2023-03-07 01:03:50 Last Seen2024-05-04 21:25:42 Times Seen1268 Hash 61fa153f2827c887a48a351ae3c6cfd3 5fbd02245cf700ea94d638c8d76924ecca52d330 4c44d7c28ec0f6ca3e2624c6af1d3be324576d01ef6f6c2dc0af7e61664b8c2c Loading...

	#30 Eval - b87a1a865a96f0aa2bd9b4ad98c0eae0	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash b87a1a865a96f0aa2bd9b4ad98c0eae0 dbd1f3b3bb31fa33e797860307fea826243574de da2900afd1bafd377892b3de4fe2a8b3a945233172837dd62ce94c4316237c4d Loading...

	#31 Eval - 0148c71d735044dd4ccd807324e9678c	608 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 0148c71d735044dd4ccd807324e9678c 63b81a0d2ac8edf5f950ab000c9ab633c1e3f9fd 31d0d905647e68de4ba17aae5752da0520a0960a9a779b07926d919db5e84dba Loading...

	#32 Eval - 43c81e43a6e7d9140033055ff3e04983	62 B	2024-04-18	2024-04-29
Pretty Observations First Seen2024-04-18 21:08:51 Last Seen2024-04-29 16:17:50 Times Seen2736 Hash 43c81e43a6e7d9140033055ff3e04983 b0eca03913678cb38c488c7c79cc4f9d2755ea17 3f7ef931c657c4333a401c40e8b0b8d1ff3b164542af45e14242314c0ec39f34 Loading...

	#33 Eval - e7d229aa8fd4ef9a8edcfb0e4ee434b4	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash e7d229aa8fd4ef9a8edcfb0e4ee434b4 da7f2e9a448220ddc3c590fbc60b144c33bbc4f8 5d5dffc1934c12c87ce60fd5a340bcb3f88a0393c03567bf914e3c3c173eef9f Loading...

	#34 Eval - fdc2ad3da2c2324a49ccf7e981ef42b9	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash fdc2ad3da2c2324a49ccf7e981ef42b9 7ab5c0c61da76e7afa5c2c8abe852252acbed578 2ba448e0dd76795c08bb7ef660e1650d4924ac198e03c73347685ac2b48f72b9 Loading...

	#35 Eval - 279053eae4e99eebad3cd2a9d9beab43	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 279053eae4e99eebad3cd2a9d9beab43 5b9bf2880e0d3c40066037d05a8b531962b97b25 97414315f1eca75ad7a4dbfc4db075daf1916e05c159c058ed6d000981ec3c2d Loading...

	#36 Eval - 4778e6c790158406d9c46912145210a0	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 4778e6c790158406d9c46912145210a0 3e61d0623a1c72663c40ace47381f9d8f4f1c27b bd9847504d085db704ae636f1dfc847d0ea0d15b2f9e6e0e5c199535bbabb29b Loading...

	#37 Eval - 62022263d43267bafcd9a8041e843062	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 62022263d43267bafcd9a8041e843062 6a4c48272be2d2f6979447278c4959bc82983c9a 73f58e4b063055f0e392688efd38b29eddc6e2853eeb8fa603e4c4fd6392e7d8 Loading...

	#38 Eval - f2f05ddd57c52094af24263de6b19a9f	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash f2f05ddd57c52094af24263de6b19a9f 4beae502e62e535d4b50b9794647276de7a5257a f3304091914cf0683e5b691d4883db270551de2439f7efc10dc32f4b9ac44c6b Loading...

	#39 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-04
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-04 20:57:38 Times Seen351491 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#40 Eval - d80870fcbee58a477de05be9b76d33ce	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash d80870fcbee58a477de05be9b76d33ce baa1405c57f225606d1e10991067c806c4cf874a 03cdd236a6253335f4135c771fe6aa9147c3821e1661b04004f5dcac8d323277 Loading...

	#41 Eval - 4d54ce267c3a4f4289a1ef0d1de4fc7e	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 4d54ce267c3a4f4289a1ef0d1de4fc7e 39a77e5677a1538835c6a67828dc70f2ca52e91b f67a8c3c1a657f535262f30eb247490c576d26dd5e2465e9380c7084731db2ca Loading...

	#42 Eval - 4cc6b243325a24c19dae0eeac2393221	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 4cc6b243325a24c19dae0eeac2393221 7ae2e38efe48fd2fb8c7cafbe0932a9597f97297 1ee190a5fe5f0552d08799ebab3c10c9e3aeced736382d65eb978fbe330f6863 Loading...

	#43 Eval - 992995e490f7e50a36afbe38261dd301	28 B	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash 992995e490f7e50a36afbe38261dd301 acf9ee4904a33b69b982293519fcc48e0151f9c6 93bb3cf5f19278d8b1098be79116016d5a74299895dd1358dd30c2b0b5b34a1b Loading...

		Size	First Seen	Last Seen
	#1 Write - f92e1c8f73c65bb592fbfca91fa05db7	4.5 kB	2024-04-25	2024-04-25
Pretty Observations First Seen2024-04-25 14:58:56 Last Seen2024-04-25 14:58:56 Times Seen1 Hash f92e1c8f73c65bb592fbfca91fa05db7 b60177671d491b14f28961c3876abb74e2f63956 eea2ea6dbacc3a23256a173c3eddd7ed5ed51102e212f1e0da17939099b2a337 Loading...

	#2 Write - 086707e4369f60afedcafb16050a7618	39 B	2023-03-07	2024-05-04
Pretty Observations First Seen2023-03-07 01:03:24 Last Seen2024-05-04 20:57:39 Times Seen44750 Hash 086707e4369f60afedcafb16050a7618 8216b0cc6876cbd44f01c158e7dff3833ceccd41 a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e Loading...

HTTP Transactions (15)

	URL	IP	Response	Size
	sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t	162.241.120.242		0 B
URL sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t IP 162.241.120.242:0 ASN #19871 NETWORK-SOLUTIONS-HOSTING File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t HTTP/1.1 Host: sanemedia.ca User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 25 Apr 2024 12:58:23 GMT Server: Apache refresh: 0;url=https://efe.q39r.com/efe/#Xmgouta@trustre.com Content-Length: 0 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8`

	challenges.cloudflare.com/turnstile/v0/api.js?render=explicit	104.17.2.184	302 Found	0 B
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://efe.q39r.com/efe/#Xmgouta@trustre.com Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /turnstile/v0/api.js?render=explicit HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efe.q39r.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Thu, 25 Apr 2024 12:58:25 GMT content-length: 0 cache-control: max-age=300, public access-control-allow-origin: * location: /turnstile/v0/b/471dc2adc340/api.js?render=explicit cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 879e81235c0156b4-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	code.jquery.com/jquery-3.6.0.min.js	151.101.66.137	200 OK	90 kB
URL GET HTTP/2 code.jquery.com/jquery-3.6.0.min.js IP 151.101.66.137:443 ASN #54113 FASTLY Requested by https://efe.q39r.com/efe/#Xmgouta@trustre.com Certificate IssuerSectigo Limited Subject.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 90 kB (89501 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /jquery-3.6.0.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efe.q39r.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx content-type: application/javascript; charset=utf-8 last-modified: Fri, 18 Oct 1991 12:00:00 GMT etag: "28feccc0-15d9d" cache-control: public, max-age=31536000, stale-while-revalidate=604800 access-control-allow-origin: * via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 25 Apr 2024 12:58:25 GMT age: 96385 x-served-by: cache-lga21931-LGA, cache-hel1410022-HEL x-cache: HIT, HIT x-cache-hits: 222, 30397 x-timer: S1714049905.240242,VS0,VE0 vary: Accept-Encoding content-length: 89501 X-Firefox-Spdy: h2

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D	104.17.2.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Thu, 25 Apr 2024 12:58:25 GMT content-type: image/png content-length: 61 cache-control: max-age=2629800, public server: cloudflare cf-ray: 879e8124fd610b06-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=879e81247d280b06	104.17.2.184	200 OK	173 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=879e81247d280b06 IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 173 kB (173072 bytes) Hash a4c0a44787a2fd7f29c15b53b7f527a6 efc38c1f96088f4897bbb9bd2421b20154cc9702 557069c67a5adf9b557386332151c4fb440bc44393d1f832e5cc466224c157e2 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=879e81247d280b06 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Thu, 25 Apr 2024 12:58:25 GMT content-type: application/javascript; charset=UTF-8 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 vary: accept-encoding server: cloudflare cf-ray: 879e8124fd620b06-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	web.lehighvalleychamber.org/cwt/external/wcpages/referral.aspx?ReferralType=W&ProfileID=5337&ListingID=4065&CategoryID=74&SubCategoryID=0&url=//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t	104.18.245.141		386 B
URL web.lehighvalleychamber.org/cwt/external/wcpages/referral.aspx?ReferralType=W&ProfileID=5337&ListingID=4065&CategoryID=74&SubCategoryID=0&url=//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t IP 104.18.245.141:0 ASN #13335 CLOUDFLARENET File type data Size 386 B (386 bytes) Hash 9d31b57826a0cb94b19c4f7519c3af6b 52599040c08d27b965b86039d2ae585974ec9d77 78a80092cd90987383a5666a6ffe3a622398daddfcb1c309d8e04595a328cb86 HTTP Headers GET /cwt/external/wcpages/referral.aspx?ReferralType=W&ProfileID=5337&ListingID=4065&CategoryID=74&SubCategoryID=0&url=//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t HTTP/1.1 Host: web.lehighvalleychamber.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found date: Thu, 25 Apr 2024 12:58:24 GMT content-type: text/html; charset=utf-8 cache-control: private location: //sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t//sanemedia.ca/owaow/iekieg/bWdvdXRhQHRydXN0cmUuY29t x-aspnet-version: 4.0.30319 set-cookie: ASP.NET_SessionId=; path=/; secure; HttpOnly x-powered-by: ASP.NET x-frame-options: sameorigin cf-cache-status: DYNAMIC strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 879e81195ade5684-OSL X-Firefox-Spdy: h2

	efe.q39r.com/efe/	104.21.17.5	200 OK	6.1 kB
URL User Request GET HTTP/2 efe.q39r.com/efe/ IP 104.21.17.5:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectq39r.com Fingerprint3F:49:5D:73:04:21:21:07:7D:B0:59:35:C9:39:D9:67:05:A5:C3:CC ValidityMon, 15 Apr 2024 15:03:08 GMT - Sun, 14 Jul 2024 15:03:07 GMT File type HTML document, ASCII text, with very long lines (6050), with no line terminators Size 6.1 kB (6050 bytes) Hash bc8930d1a1ca3dd7759a8fd6640936d7 0264a0e26732c7062220cd698b6e2c561f9053c0 d2ca6609df8d6f7a25e6815f479a226e9e0469e0618676d34fb087b07b45c1b6 HTTP Headers `GET /efe/ HTTP/1.1 Host: efe.q39r.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 25 Apr 2024 12:58:25 GMT content-type: text/html; charset=UTF-8 cache-control: no-cache, private cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LieGs%2FEclNm7qELbeeXUJ4Zwo3EHFFZmzwC3NrVSUl%2FIQw21SU%2FWbEi5CPDzpf51AzxeFUdQAK4aQMzXtmVaot00ybMGw1gT8FVbArdPioXsrj7ISjlPNshs5cwqEw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400 set-cookie: XSRF-TOKEN=eyJpdiI6IkdSdTUwdElJckRXbnY5S2pHZGF1WkE9PSIsInZhbHVlIjoiMzFUelQrS2hSUlIzQWUzdWtjWXkwd2E4enJMWElrQ3JpWkNlUEx2Uk9ESmcwamx2ZWJCeUltYXAzdVRvd3lFVHM3MERVOHpQQVIxaXYvY2N2OTFMVU1uSUhqY1FDR1VsMG5VV1Y1OEcvMy80RG5FNThNWHFNS3d6ZGVEL1lUN0UiLCJtYWMiOiI4YjM1MmFlZDUwODYwZmYwNmU3NjQ0NTA1ZTkyM2MyZTZiMjUwM2NlYWRlNzllY2RiODA1Y2VlOWM1MmZiOWM0IiwidGFnIjoiIn0%3D; expires=Thu, 25-Apr-2024 14:58:25 GMT; Max-Age=7200; path=/; secure; samesite=none laravel_session=eyJpdiI6Ik4zcFZvNk5EaGJDOThyUWxoOW9WeGc9PSIsInZhbHVlIjoiZEplSXAyVEpjS3pvT1FMYmZCWEdteGVITUZaMGRyZmNWM0R4Nm81TjZ0R3cwc0oyak8zSUo1VUxhUHFPM1drUTZ5WXhyOUJOUkRORzhPdlllRkRCVWdkTHdJbXplKzVrcVgzdnpCT3pwSU5DQ0VtWWZOQlpvT0h4SnBWbytBbnYiLCJtYWMiOiJhYWQwNTIyNThmNDEzODU2ZGY2MGFlY2MzZDhhNGRmNDY2MWQ3Y2ZkMGExMzMwMmIzYzNkMTE5NmRhNGQ1MTc3IiwidGFnIjoiIn0%3D; expires=Thu, 25-Apr-2024 14:58:25 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none server: cloudflare cf-ray: 879e8121588a56af-OSL content-encoding: br X-Firefox-Spdy: h2

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal	104.17.2.184	200 OK	80 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://efe.q39r.com/efe/#Xmgouta@trustre.com Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (41702) Size 80 kB (79950 bytes) Hash 418f9491677ef4a0b4f05ba7849d0161 675b682557b2aabf4af26cf70050b8ef797093e1 b2295fd80d0e33a07fe6219f55d8020f3c539089aae87ff5271afd9a31cdd52d HTTP Headers GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efe.q39r.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 25 Apr 2024 12:58:25 GMT content-type: text/html; charset=UTF-8 cross-origin-opener-policy: same-origin cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-resource-policy: cross-origin document-policy: js-profiling origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self' vary: accept-encoding server: cloudflare cf-ray: 879e81247d280b06-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1253410725:1714047840:Nx7RDa59MMTmQZaaeUtS_WvGDuwG4itNbJFaNrz6K2g/879e81247d280b06/987197cc960a618	104.17.2.184	200 OK	3.4 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1253410725:1714047840:Nx7RDa59MMTmQZaaeUtS_WvGDuwG4itNbJFaNrz6K2g/879e81247d280b06/987197cc960a618 IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (3352), with no line terminators Size 3.4 kB (3352 bytes) Hash 727d6a84405d300dd4f2b5f2a5f5fc68 f9910fe44fbfa801fc5078a4d8de2c2b615d7217 dacbeb73ebd8701afd8781d70081fd1df8f98426efab1c3dd310d3fff427cf2d HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1253410725:1714047840:Nx7RDa59MMTmQZaaeUtS_WvGDuwG4itNbJFaNrz6K2g/879e81247d280b06/987197cc960a618 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: 987197cc960a618 Content-Length: 35748 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 25 Apr 2024 12:58:30 GMT content-type: text/html; charset=UTF-8 cf-chl-out: BVBEmlI9TxocnsXMl4cZ3kSG2fcikoc32Mxsww9ULMTedgT4CeL5FgwTcIarWLeh/XaLFnluBR9gBqsll5myfOSsYEby0gNS/BhlCHXzRnKb8JuANzstGjKh8DgiRDXz$ST16epO7rTgnbv0eqA5AzA== cf-chl-out-s: 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$w9q78KmN7xLAAuzw6fiY8Q== vary: accept-encoding server: cloudflare cf-ray: 879e8146280c0b06-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/879e81247d280b06/1714049905726/2beeed09f4bf387b548e0e4f825b9dfdbdade580f307d8270663ebe526fb6f5e/arOHY8MRN0hvSI3	104.17.2.184	401 Unauthorized	1 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/879e81247d280b06/1714049905726/2beeed09f4bf387b548e0e4f825b9dfdbdade580f307d8270663ebe526fb6f5e/arOHY8MRN0hvSI3 IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type very short file (no magic) Size 1 B (1 bytes) Hash ff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/pat/879e81247d280b06/1714049905726/2beeed09f4bf387b548e0e4f825b9dfdbdade580f307d8270663ebe526fb6f5e/arOHY8MRN0hvSI3 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 401 Unauthorized date: Thu, 25 Apr 2024 12:58:26 GMT content-type: text/plain; charset=UTF-8 content-length: 1 www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gK-7tCfS_OHtUjg5Pglud_b2t5YDzB9gnBmPr5Sb7b14AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tICvu7Qn0vzh7VI4OT4Jbnf29reWA8wfYJwZj6-Um-29eABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20 server: cloudflare cf-ray: 879e81297fd80b06-OSL alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?render=explicit	104.17.2.184	200 OK	42 kB
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?render=explicit IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://efe.q39r.com/efe/#Xmgouta@trustre.com Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (42414) Size 42 kB (42415 bytes) Hash f94a2211ce789a95a7c67e8c660d63e8 f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f 926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b HTTP Headers `GET /turnstile/v0/b/471dc2adc340/api.js?render=explicit HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://efe.q39r.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Thu, 25 Apr 2024 12:58:25 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * cache-control: max-age=31536000 cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 879e81237c2a56b4-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1253410725:1714047840:Nx7RDa59MMTmQZaaeUtS_WvGDuwG4itNbJFaNrz6K2g/879e81247d280b06/987197cc960a618	104.17.2.184	200 OK	125 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1253410725:1714047840:Nx7RDa59MMTmQZaaeUtS_WvGDuwG4itNbJFaNrz6K2g/879e81247d280b06/987197cc960a618 IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 125 kB (125196 bytes) Hash 2c3f7571eedca946b13a2aa8b7fab4de f9cfeef8fcb5dbd9244912c399b31bd80f55ee9e 0257582cf81b2fd086cabfd71f06d13092c1ba34e52e43bb29748bf7eba8e6f2 HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1253410725:1714047840:Nx7RDa59MMTmQZaaeUtS_WvGDuwG4itNbJFaNrz6K2g/879e81247d280b06/987197cc960a618 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: 987197cc960a618 Content-Length: 2447 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 25 Apr 2024 12:58:25 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: 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$WMsAy6Uqsm6E7iM1jJw5cw== vary: accept-encoding server: cloudflare cf-ray: 879e8126be470b06-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/879e81247d280b06/1714049905734/EXg5VHbPsqj8wTm	104.17.2.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/879e81247d280b06/1714049905734/EXg5VHbPsqj8wTm IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 5 x 84, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash c2f311f28af9a708bd3159c4edd50302 34e58185daeb896c380c78dbd08073a7c20afafa edcbf5d73d9cf6d6703676f56ee447d8dacaa6879359806722d2b132869a47f5 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/i/879e81247d280b06/1714049905734/EXg5VHbPsqj8wTm HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Thu, 25 Apr 2024 12:58:27 GMT content-type: image/png content-length: 61 server: cloudflare cf-ray: 879e812f1aff0b06-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1253410725:1714047840:Nx7RDa59MMTmQZaaeUtS_WvGDuwG4itNbJFaNrz6K2g/879e81247d280b06/987197cc960a618	104.17.2.184	200 OK	23 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1253410725:1714047840:Nx7RDa59MMTmQZaaeUtS_WvGDuwG4itNbJFaNrz6K2g/879e81247d280b06/987197cc960a618 IP 104.17.2.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (22552), with no line terminators Size 23 kB (22552 bytes) Hash 92f0ffbbd473cc44b950134ae76ec723 c559897384171105c91d997ae0c88445e9780c2b 76bd6d877d8bcdf9bebfb4cff79be40b3fb3ea7e270be75d2e26688d5cf2b9b1 HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1253410725:1714047840:Nx7RDa59MMTmQZaaeUtS_WvGDuwG4itNbJFaNrz6K2g/879e81247d280b06/987197cc960a618 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zaduh/0x4AAAAAAAYIhGTHgfwrnf2u/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: 987197cc960a618 Content-Length: 25664 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Thu, 25 Apr 2024 12:58:27 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: mTpNoTOJBN9OsxKamAiyhQiV+DiRe0ppeAGkLmUccHaKr30pi1dVS6rpfh/Bpf/x$Hyz2fgj/jyQTZJymzBLs+A== vary: accept-encoding server: cloudflare cf-ray: 879e812feb610b06-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	efe.q39r.com/favicon.ico	104.21.17.5	404 Not Found	0 B
URL GET HTTP/3 efe.q39r.com/favicon.ico IP 104.21.17.5:443 ASN #13335 CLOUDFLARENET Requested by https://efe.q39r.com/efe/#Xmgouta@trustre.com Certificate IssuerLet's Encrypt Subjectq39r.com Fingerprint3F:49:5D:73:04:21:21:07:7D:B0:59:35:C9:39:D9:67:05:A5:C3:CC ValidityMon, 15 Apr 2024 15:03:08 GMT - Sun, 14 Jul 2024 15:03:07 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /favicon.ico HTTP/1.1 Host: efe.q39r.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://efe.q39r.com/efe/ Cookie: XSRF-TOKEN=eyJpdiI6IkdSdTUwdElJckRXbnY5S2pHZGF1WkE9PSIsInZhbHVlIjoiMzFUelQrS2hSUlIzQWUzdWtjWXkwd2E4enJMWElrQ3JpWkNlUEx2Uk9ESmcwamx2ZWJCeUltYXAzdVRvd3lFVHM3MERVOHpQQVIxaXYvY2N2OTFMVU1uSUhqY1FDR1VsMG5VV1Y1OEcvMy80RG5FNThNWHFNS3d6ZGVEL1lUN0UiLCJtYWMiOiI4YjM1MmFlZDUwODYwZmYwNmU3NjQ0NTA1ZTkyM2MyZTZiMjUwM2NlYWRlNzllY2RiODA1Y2VlOWM1MmZiOWM0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik4zcFZvNk5EaGJDOThyUWxoOW9WeGc9PSIsInZhbHVlIjoiZEplSXAyVEpjS3pvT1FMYmZCWEdteGVITUZaMGRyZmNWM0R4Nm81TjZ0R3cwc0oyak8zSUo1VUxhUHFPM1drUTZ5WXhyOUJOUkRORzhPdlllRkRCVWdkTHdJbXplKzVrcVgzdnpCT3pwSU5DQ0VtWWZOQlpvT0h4SnBWbytBbnYiLCJtYWMiOiJhYWQwNTIyNThmNDEzODU2ZGY2MGFlY2MzZDhhNGRmNDY2MWQ3Y2ZkMGExMzMwMmIzYzNkMTE5NmRhNGQ1MTc3IiwidGFnIjoiIn0%3D Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 404 Not Found date: Thu, 25 Apr 2024 12:58:25 GMT content-type: text/html; charset=UTF-8 cache-control: max-age=14400 age: 9908 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QD%2Fxp81QSbr%2F%2FeLlRgp6irayPmGk7PUm08%2FjjytlearY0gc7RjMMY07rDZDG6CJZ5%2Fxhq0Qe9u2OmhX%2Fl2qh4idwFQ%2FqpzJNHqREemr6eWAyB2JgTMxg7eiKl0eGdA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT server: cloudflare cf-ray: 879e81248ee5b529-OSL content-encoding: br

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (52)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations