Report - avdefs.bromium-online.com/ctc2-win-64-cl_104

Report Overview

Visited public
2024-10-29 14:55:52
Tags
URL
avdefs.bromium-online.com/ctc2-win-64-cl_104
Finishing URL
avdefs.bromium-online.com/ctc2-win-64-cl_104
IP / ASN
104.18.39.161
#13335 CLOUDFLARENET
Title
Attention Required! | Cloudflare

Detections

urlquery

0

Network Intrusion Detection

0

Threat Detection Systems

0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
avdefs.bromium-online.com	29400	2012-01-20	2021-05-11	2024-10-25	3.0 kB	40 kB	104.18.39.161

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	avdefs.bromium-online.com/ctc2-win-64-cl_104	ScriptElement	0 B	0001-01-01	2025-06-03
Pretty URL avdefs.bromium-online.com/ctc2-win-64-cl_104 IP 104.18.39.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-03 18:15 Times Seen4838396 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	avdefs.bromium-online.com/ctc2-win-64-cl_104	ScriptElement	393 B	2023-04-05	2025-03-02
Pretty URL avdefs.bromium-online.com/ctc2-win-64-cl_104 IP 104.18.39.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 04:39 Last Seen2025-03-02 06:13 Times Seen143291 Hash 34ad0a116707d3b794129a6720af92d7 424de9dbb8bc774e2a2d4ade100d90f5ac0ecbf4 d011a9449a990f2086894be870adc6fbb53595dc593b410a83e45e40bfbc7262 Loading...

	avdefs.bromium-online.com/ctc2-win-64-cl_104	ScriptElement	0 B	0001-01-01	2025-06-03
Pretty URL avdefs.bromium-online.com/ctc2-win-64-cl_104 IP 104.18.39.161 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-03 18:15 Times Seen4838396 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (6)

	URL	IP	Response	Size
	avdefs.bromium-online.com/cdn-cgi/images/browser-bar.png?1376755637	104.18.39.161	200 OK	715 B
URL GET HTTP/2 avdefs.bromium-online.com/cdn-cgi/images/browser-bar.png?1376755637 IP 104.18.39.161:443 ASN #13335 CLOUDFLARENET Requested by https://avdefs.bromium-online.com/ctc2-win-64-cl_104 Certificate IssuerLet's Encrypt Subjectbromium-online.com FingerprintF8:C7:9F:BE:AD:27:9C:41:71:44:B7:8E:65:19:3B:82:AE:AF:CF:80 ValidityTue, 10 Sep 2024 09:15:09 GMT - Mon, 09 Dec 2024 09:15:08 GMT File type PNG image data, 960 x 53, 8-bit colormap, non-interlaced Size 715 B (715 bytes) Hash 226dcb8f6144bdaafdfbd8f2f354be64 3785cc5b3bf52f8e398177b0ff1020b24aa86b8c 8c873472f4925d5d47521db4d52532d2983e9cb1bde8b43143a6cc6db56c35db HTTP Headers `GET /cdn-cgi/images/browser-bar.png?1376755637 HTTP/1.1 Host: avdefs.bromium-online.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://avdefs.bromium-online.com/cdn-cgi/styles/cf.errors.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Tue, 29 Oct 2024 14:55:29 GMT content-type: image/png content-length: 715 last-modified: Fri, 25 Oct 2024 16:48:04 GMT etag: "671bcbc4-2cb" server: cloudflare cf-ray: 8da401bebdaab505-OSL x-frame-options: DENY x-content-type-options: nosniff vary: Accept-Encoding expires: Tue, 29 Oct 2024 16:55:29 GMT cache-control: max-age=7200, public accept-ranges: bytes X-Firefox-Spdy: h2`

	avdefs.bromium-online.com/cdn-cgi/images/cf-no-screenshot-error.png	104.18.39.161	200 OK	3.2 kB
URL GET HTTP/2 avdefs.bromium-online.com/cdn-cgi/images/cf-no-screenshot-error.png IP 104.18.39.161:443 ASN #13335 CLOUDFLARENET Requested by https://avdefs.bromium-online.com/ctc2-win-64-cl_104 Certificate IssuerLet's Encrypt Subjectbromium-online.com FingerprintF8:C7:9F:BE:AD:27:9C:41:71:44:B7:8E:65:19:3B:82:AE:AF:CF:80 ValidityTue, 10 Sep 2024 09:15:09 GMT - Mon, 09 Dec 2024 09:15:08 GMT File type PNG image data, 178 x 175, 8-bit colormap, non-interlaced Size 3.2 kB (3213 bytes) Hash 0d768cbc261841d3affc933b9ac3130e aff136a4c761e1df1ada7e5d9a6ed0ebea74a4b7 1c53772285052e52bb7c12ad46a85a55747ed7bf66963fe1993fcef91ff5b0d0 HTTP Headers `GET /cdn-cgi/images/cf-no-screenshot-error.png HTTP/1.1 Host: avdefs.bromium-online.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://avdefs.bromium-online.com/cdn-cgi/styles/cf.errors.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Tue, 29 Oct 2024 14:55:29 GMT content-type: image/png content-length: 3213 last-modified: Fri, 25 Oct 2024 16:48:04 GMT etag: "671bcbc4-c8d" server: cloudflare cf-ray: 8da401bebdadb505-OSL x-frame-options: DENY x-content-type-options: nosniff vary: Accept-Encoding expires: Tue, 29 Oct 2024 16:55:29 GMT cache-control: max-age=7200, public accept-ranges: bytes X-Firefox-Spdy: h2`

	avdefs.bromium-online.com/ctc2-win-64-cl_104	104.18.39.161	403 Forbidden	4.5 kB
URL User Request GET HTTP/2 avdefs.bromium-online.com/ctc2-win-64-cl_104 IP 104.18.39.161:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectbromium-online.com FingerprintF8:C7:9F:BE:AD:27:9C:41:71:44:B7:8E:65:19:3B:82:AE:AF:CF:80 ValidityTue, 10 Sep 2024 09:15:09 GMT - Mon, 09 Dec 2024 09:15:08 GMT File type HTML document, ASCII text, with very long lines (4755), with no line terminators Size 4.5 kB (4520 bytes) Hash c6a7ac143ea5cc439f64cab36ca891b3 339ff23dee34b5ad2c1a86d67ac98fba5f558d50 4a1dee2c3386e483915e424d26b6ba9763a9addbd841c8277984704e631ac435 HTTP Headers `GET /ctc2-win-64-cl_104 HTTP/1.1 Host: avdefs.bromium-online.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 403 Forbidden date: Tue, 29 Oct 2024 14:55:28 GMT content-type: text/html; charset=UTF-8 x-frame-options: SAMEORIGIN referrer-policy: same-origin cache-control: max-age=15 expires: Tue, 29 Oct 2024 14:55:43 GMT vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 8da401bb7824b505-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	avdefs.bromium-online.com/ctc2-win-64-cl_104	104.18.39.161	403 Forbidden	4.5 kB
URL User Request GET HTTP/2 avdefs.bromium-online.com/ctc2-win-64-cl_104 IP 104.18.39.161:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectbromium-online.com FingerprintF8:C7:9F:BE:AD:27:9C:41:71:44:B7:8E:65:19:3B:82:AE:AF:CF:80 ValidityTue, 10 Sep 2024 09:15:09 GMT - Mon, 09 Dec 2024 09:15:08 GMT File type HTML document, ASCII text, with very long lines (4755), with no line terminators Size 4.5 kB (4520 bytes) Hash e764f0ebffe948905d8a61bbcf392e16 dee1e8cd92754bb63d8bd1a5b53b6841358c2af1 71e0aa92b8b9b6683fbf369557c55067a57c305f53e0458d8f31c091bb6570e4 HTTP Headers `GET /ctc2-win-64-cl_104 HTTP/1.1 Host: avdefs.bromium-online.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 403 Forbidden date: Tue, 29 Oct 2024 14:55:28 GMT content-type: text/html; charset=UTF-8 x-frame-options: SAMEORIGIN referrer-policy: same-origin cache-control: max-age=15 expires: Tue, 29 Oct 2024 14:55:43 GMT vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 8da401bc9a8ab505-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	avdefs.bromium-online.com/cdn-cgi/styles/cf.errors.css	104.18.39.161	200 OK	24 kB
URL GET HTTP/2 avdefs.bromium-online.com/cdn-cgi/styles/cf.errors.css IP 104.18.39.161:443 ASN #13335 CLOUDFLARENET Requested by https://avdefs.bromium-online.com/ctc2-win-64-cl_104 Certificate IssuerLet's Encrypt Subjectbromium-online.com FingerprintF8:C7:9F:BE:AD:27:9C:41:71:44:B7:8E:65:19:3B:82:AE:AF:CF:80 ValidityTue, 10 Sep 2024 09:15:09 GMT - Mon, 09 Dec 2024 09:15:08 GMT File type ASCII text, with very long lines (24050) Size 24 kB (24051 bytes) Hash 5e8c69a459a691b5d1b9be442332c87d f24dd1ad7c9080575d92a9a9a2c42620725ef836 84e3c77025ace5af143972b4a40fc834dcdfd4e449d4b36a57e62326f16b3091 HTTP Headers `GET /cdn-cgi/styles/cf.errors.css HTTP/1.1 Host: avdefs.bromium-online.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://avdefs.bromium-online.com/ctc2-win-64-cl_104 DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Tue, 29 Oct 2024 14:55:29 GMT content-type: text/css last-modified: Fri, 25 Oct 2024 16:48:04 GMT etag: W/"671bcbc4-5df3" server: cloudflare cf-ray: 8da401be5d2bb505-OSL x-frame-options: DENY x-content-type-options: nosniff vary: Accept-Encoding expires: Tue, 29 Oct 2024 16:55:29 GMT cache-control: max-age=7200, public content-encoding: gzip X-Firefox-Spdy: h2`

	avdefs.bromium-online.com/favicon.ico	104.18.39.161	404 Not Found	564 B
URL GET HTTP/2 avdefs.bromium-online.com/favicon.ico IP 104.18.39.161:443 ASN #13335 CLOUDFLARENET Requested by https://avdefs.bromium-online.com/ctc2-win-64-cl_104 Certificate IssuerLet's Encrypt Subjectbromium-online.com FingerprintF8:C7:9F:BE:AD:27:9C:41:71:44:B7:8E:65:19:3B:82:AE:AF:CF:80 ValidityTue, 10 Sep 2024 09:15:09 GMT - Mon, 09 Dec 2024 09:15:08 GMT File type HTML document, ASCII text, with very long lines (590), with no line terminators Size 564 B (564 bytes) Hash c34bd477b540aad7475a7154c092e3c0 23169b7c1476247e2e71c057f08a24113ba85410 fcbfbe5282d4842395d26af9cfeb7bac0ac667baa13fc6e3208542e183b91d77 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: avdefs.bromium-online.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://avdefs.bromium-online.com/ctc2-win-64-cl_104 DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 404 Not Found date: Tue, 29 Oct 2024 14:55:29 GMT content-type: text/html cf-cache-status: HIT age: 28 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff set-cookie: _cfuvid=YB9zsqZWV56Y1Eq5E7ldzKU1ZPPVA6pglYIvzgwQ5ck-1730213729084-0.0.1.1-604800000; path=/; domain=.bromium-online.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 8da401bead93b505-OSL content-encoding: gzip X-Firefox-Spdy: h2`