Report - csapps.pacificpower.net/

Report Overview

Submitted URL
csapps.pacificpower.net/
IP
131.219.5.135
ASN
#23255 PACIFICORP
Submitted
2024-05-03 21:39:21
Access
public
Website Title
Sign in
Final URL
csapps.pacificpower.net/idm/login
Tags
salesforce phishing
urlquery detections
Phishing - Salesforce

Detections

urlquery
22
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
c.oracleinfinity.io	9503	2017-03-24	2018-03-20	2024-04-30	970 B	17 kB	95.101.10.145
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-03	1.1 kB	99 kB	104.17.24.14
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-02	1.8 kB	8.0 kB	142.250.74.138
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-02	888 B	177 kB	142.250.74.168
cobrowse.pacificpower.net	unknown	1999-06-16	2020-08-10	2023-10-28	614 B	147 kB	131.219.5.108
pacwebappssaprd.blob.core.windows.net	947162	unknown	No data	No data	489 B	10 kB	20.150.34.36
ajax.aspnetcdn.com	693	2010-10-12	2012-05-24	2024-05-02	463 B	20 kB	152.199.19.160
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-03	2.7 kB	121 kB	142.250.74.99
csapps.pacificpower.net	unknown	1999-06-16	2022-05-18	2023-11-07	17 kB	682 kB	131.219.5.135
www.pacificpower.net	693399	1999-06-16	2014-03-16	2023-10-31	6.2 kB	36 kB	131.219.5.137
ocsp.entrust.net	1208	1997-07-28	2014-01-10	2024-05-03	984 B	5.9 kB	184.24.45.171
login.csapps.pacificpower.net	unknown	1999-06-16	2023-09-17	2023-09-17	4.3 kB	154 kB	13.107.246.53
d.oracleinfinity.io	75530	2017-03-24	2021-10-18	2024-04-30	929 B	37 kB	95.101.10.145

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	csapps.pacificpower.net/idm/main.5bda6ce81cef47323b0e.js	1.9 MB	2024-05-03	2024-05-03
Pretty URL csapps.pacificpower.net/idm/main.5bda6ce81cef47323b0e.js IP 131.219.5.135 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 6895dc4e830952f641eb56ec600118df b497679572b62db6126463c0000126168c5788fe 452aea746984dfc82aa712c0ce2ddb266e64cb82b3bdbbd6598d67c149a50535 Loading...

	d.oracleinfinity.io/infy/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production/analytics.js	62 kB	2024-05-03	2024-05-03
Pretty URL d.oracleinfinity.io/infy/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production/analytics.js IP 95.101.10.145 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash e06182bfc490f32e7c35c65fdf485cac 51897a41f9c9ac1de22bf5abf6d3ab0d7a58006e 645818f6858ea8ed7ed4950bb212097f7ce71672fdfb5e7cd98655b2c5f39538 Loading...

	login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp	2.7 kB	2024-05-03	2024-05-03
Pretty URL login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp IP 13.107.246.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:30 Times Seen1 Hash 5a87cc2d3faf7d29594d2be30b6c9a52 ab2dc7372db1328ba4d0e1dc9770cc64c6cb140b ee44e77e2e4942a738094f43ba6bfe7fa7ace5bd6b6dfa409d8cbaf5c6d41291 Loading...

	csapps.pacificpower.net/idm/17.cce3c5308cc3c8ac2259.js	54 kB	2024-05-03	2024-05-03
Pretty URL csapps.pacificpower.net/idm/17.cce3c5308cc3c8ac2259.js IP 131.219.5.135 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash e720150176bea149884deb3bd46bec34 7c0b5f00c2e3e186ec4aa64c29ce1faa98b4647f 03f1e6d5f32681fd675b49a36a1b7b08787bca4ccfd5b3f4a38e74b7e4b4863c Loading...

	www.googletagmanager.com/gtag/js?id=G-C327BVDGZW&l=dataLayer&cx=c	299 kB	2024-05-03	2024-05-03
Pretty URL www.googletagmanager.com/gtag/js?id=G-C327BVDGZW&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 2f31b4c07a77a9f4b16005b064a7bf10 52e48155ea3586f0312c08914f015bb0351a011b 6a7793ff83297963a4dbbd60bded8fd631f85f4b6e69d9d0048a3bd6bd2f0db1 Loading...

	login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp	195 B	2024-05-03	2024-05-03
Pretty URL login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp IP 13.107.246.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:30 Times Seen1 Hash 7c0ab805f8cd9c982009dbc3411af62a d33f14d52bd270cb0a2b37ff7cd78145563b493e 5401c60b35eafc1699859ed38f473a5ab46c3505844afea79101db5c78b1cd96 Loading...

	csapps.pacificpower.net/idm/runtime.997803ee3c0202cb7b5b.js	3.9 kB	2024-05-03	2024-05-03
Pretty URL csapps.pacificpower.net/idm/runtime.997803ee3c0202cb7b5b.js IP 131.219.5.135 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 6116831257f6d36d69a926fb7059203c 6488f2274a5264ce9a0b1108c13eb2c2ee3b256b b9065fea4bf4f1cddab3e8007ff6de10b8d1e9d3b31c56bcd37c840ab0da7e1d Loading...

	unknown	2.9 kB	2024-05-03	2024-05-03
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:30 Times Seen1 Hash ea922f5ce100c6cda3b2ef45e7c94af7 24d4a18b27fd2489e4d4831b57ce6e3bba3d4afe d202d06b57ab4245edb9f56c9d74d3d0d1d540db6427a91fb21213d1f9260d9a Loading...

	www.googletagmanager.com/gtm.js?id=GTM-P4MW4G	216 kB	2024-05-03	2024-05-03
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-P4MW4G IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 07015557a90e4fac8b665f468c4ec792 71ad5014a3236c1ed8b0a6c815e257f5370b0ba2 55e28b3698e0ccfd5f2fa27fea00bfe2a31c091df6af5ce7584db667e6ca0417 Loading...

	d.oracleinfinity.io/infy/acs/common/js/1.3.46/common.js	51 kB	2023-05-10	2024-05-03
Pretty URL d.oracleinfinity.io/infy/acs/common/js/1.3.46/common.js IP 95.101.10.145 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 12:33:17 Last Seen2024-05-03 23:39:31 Times Seen49 Hash eec92ff0d8dbc2a62e116af667acce39 ea70a2abeaca5c64d905c8880cf284110ad4e91f 5233b8e628617f99719b3b7ae193f9b5e5b5897c181d06f578a82f140c38dfda Loading...

	login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp	146 kB	2023-03-26	2024-05-17
Pretty URL login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp IP 13.107.246.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 01:36:03 Last Seen2024-05-17 19:09:18 Times Seen9 Hash fcd5319b7b92b04906fe070b78a8a331 9f3e5b3b0cec3d76b19d17163475246798d01297 f8cb1bab21850fd3ce6f38b5033fa237dd974c15802fac28adabedee16144f5a Loading...

	csapps.pacificpower.net/idm/31.ec65ef79a667ca5c0802.js	118 kB	2024-05-03	2024-05-03
Pretty URL csapps.pacificpower.net/idm/31.ec65ef79a667ca5c0802.js IP 131.219.5.135 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 5da80b611f747171ab06f3f8f7b9e519 b4ecbe192de6d43ffbd17bd7b6a927c695afa7d6 bd73a8043dd5fb2f91d1f5c512e609eacee13ec0f458d47968e655e02aed0177 Loading...

	csapps.pacificpower.net/idm/41.b22c966d3c79ca8405e2.js	690 kB	2024-05-03	2024-05-03
Pretty URL csapps.pacificpower.net/idm/41.b22c966d3c79ca8405e2.js IP 131.219.5.135 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 9cfc010144c08a815562299a08f93980 95fc2f9163558054456063726fdd639ffbf5c86d c23735b2dc9ca3fd26164ef2f1ff5dcb395546cf75ad2bc35c0cd7fd57099335 Loading...

	unknown	384 B	2024-05-03	2024-05-03
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:30 Times Seen1 Hash 833a305bcb9824e8b73fb706e63861cd b25c8ac91ef25e6649e60ee0441c148bcb01030a 11c85c97a5db870dd1d3e1bf5dd2a594b4d4fd7dcdb7d141e84cf4566f51e406 Loading...

	csapps.pacificpower.net/idm/3.a2499bf8ce1c842a923b.js	15 kB	2024-05-03	2024-05-03
Pretty URL csapps.pacificpower.net/idm/3.a2499bf8ce1c842a923b.js IP 131.219.5.135 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 31e32aa5f92a2675aa05a7fc938e95a6 7cee6821d6e4072920307b9fd9766db216e7dc0a 6680f3c47994b7e7cab0863592190b3de7351b53cd2d2e6a1c6ea562b18dca26 Loading...

	c.oracleinfinity.io/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/odc.js?_ora.config=analytics:production	46 kB	2024-05-03	2024-05-03
Pretty URL c.oracleinfinity.io/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/odc.js?_ora.config=analytics:production IP 95.101.10.145 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:30 Times Seen1 Hash 43023e5373910439c7672391d21875c5 b0c365b97e80129960c008493fd66e38c89050f7 d720bb867cc5ffc34580c853489fb35c96c7cd8e64175b1ffb49fd013117a7bd Loading...

	login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp	157 B	2023-03-10	2024-05-17
Pretty URL login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp IP 13.107.246.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:38:16 Last Seen2024-05-17 19:09:18 Times Seen98 Hash 962b28e9f8133cc633b34f157319a734 b1e076e2501f602eacd091354c44dfd9df7eaa33 323f8b86e5da480dd2f2ea9b757ce8d6fbe9601b80a8ea2f191c43aca3495919 Loading...

	cobrowse.pacificpower.net/cobrowse/js/gcb.min.js	448 kB	2024-05-03	2024-05-03
Pretty URL cobrowse.pacificpower.net/cobrowse/js/gcb.min.js IP 131.219.5.108 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:30 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 04bc780cb5832925fff566250bfeefa9 2304ee99ce555c5c1c5f251eb336e23d01561ccc 89b8048ebb5809105d57f0948aaef23e4cc5d137c3a057525e2daf9b09f1e53a Loading...

	csapps.pacificpower.net/idm/polyfills.ed5ef6e9e626e253441f.js	179 kB	2024-05-03	2024-05-03
Pretty URL csapps.pacificpower.net/idm/polyfills.ed5ef6e9e626e253441f.js IP 131.219.5.135 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:31 Last Seen2024-05-03 23:39:31 Times Seen2 Hash d40077d3c4f5655994ced73bf45706ab 1dee6c92761b9ee0166c02c5fb15ada90610a34f ea464cba12e40f35747033552d15b8703ce5801e6921d9efeb79104bb3c77302 Loading...

	csapps.pacificpower.net/idm/scripts.992c011ef1b3d870750c.js	314 B	2024-05-03	2024-05-03
Pretty URL csapps.pacificpower.net/idm/scripts.992c011ef1b3d870750c.js IP 131.219.5.135 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:31 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 529268264a1b64b1b1ee7df70d3c362d 2ea80dd8d84eb26e8967899a0e3d18f5271232b8 d9caffbd7a243a2da779bb34d082e07edea0eda6fae317efe5c5262eb5b2007e Loading...

	c.oracleinfinity.io/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production.js	6.5 kB	2024-05-03	2024-05-03
Pretty URL c.oracleinfinity.io/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production.js IP 95.101.10.145 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:31 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 0849737c0a9f98a5866c54f105b57009 4fc4bdc08296a853fb9e7b358ee1b411a80813f0 1ce97781c193d2a23e69144b0c1de268ef8ea38eaa82eace622d3747afc7e127 Loading...

	unknown	2.6 kB	2024-05-03	2024-05-03
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:31 Last Seen2024-05-03 23:39:31 Times Seen1 Hash d7946d78b45549c023ca3496f937ceb6 b00fb8c8f61919634873b982d9d13fc39d17df9c e1868c53f88737fae53ca290d27b12c167e71bde919fb693824c2c8a6d804b8f Loading...

	csapps.pacificpower.net/idm/common.161b81b2a2613b2bd7c8.js	58 kB	2024-05-03	2024-05-03
Pretty URL csapps.pacificpower.net/idm/common.161b81b2a2613b2bd7c8.js IP 131.219.5.135 ASN #23255 PACIFICORP Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 23:39:31 Last Seen2024-05-03 23:39:31 Times Seen2 Hash 5f6602a0a639c81af5a4e9c532d9b81f fe3e9411de19d8ce8c8e442787c5c8722e268ea9 c673aa40d47ccce3c0b000178c1506f79cc78033c61f8cad5ba7209d0f1074ab Loading...

		Size	First Seen	Last Seen
	#1 Eval - debf255cd2c353f5802daac7ae40bdce	236 B	2024-05-03	2024-05-03
Pretty Observations First Seen2024-05-03 23:39:31 Last Seen2024-05-03 23:39:31 Times Seen1 Hash debf255cd2c353f5802daac7ae40bdce 53c3d7d0f3c5df281ac7ce9997c4337554cbb52a 8b3058cb05d0382c09431d122625c8d758b08a656a48b7c13ed8f99a68ee4a9f Loading...

	#2 Eval - 1878f42470ea59b5e4b43312a8fe7d7d	77 B	2024-05-03	2024-05-03
Pretty Observations First Seen2024-05-03 23:39:31 Last Seen2024-05-03 23:39:31 Times Seen1 Hash 1878f42470ea59b5e4b43312a8fe7d7d ce42995caf27ea694ecb68f24ed74e5ba3e9394c e95568a5fb6d676773a37b94e099960ca471a79e1f144d53ad0ac3e0d59e5ed0 Loading...

	#3 Eval - 451d6260c1dde58cdd9680091902ee65	76 B	2024-05-03	2024-05-03
Pretty Observations First Seen2024-05-03 23:39:31 Last Seen2024-05-03 23:39:31 Times Seen1 Hash 451d6260c1dde58cdd9680091902ee65 a2d974e03df3ce96460d0436626333ddd9a25a34 59cf1fefcef4eea5acd4cd0e633c38d5f7425172ff986cb2c641bdd95491ae0c Loading...

HTTP Transactions (55)

URL IP Response Size

ocsp.entrust.net/

184.24.45.171

1.6 kB

URL
ocsp.entrust.net/
IP
184.24.45.171:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
34b5037e3b5784c52e64316c9bb616eb
25e1418ee3571f02e979c51384caec43efc166a6
8ce6b014221a7276b99f74f9714553ce5322f14c938aaaf4d9df4bac6f4eab7e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "8CE6B014221A7276B99F74F9714553CE5322F14C938AAAF4D9DF4BAC6F4EAB7E"
Last-Modified: Fri, 03 May 2024 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Fri, 03 May 2024 22:38:52 GMT
Date: Fri, 03 May 2024 21:38:52 GMT
Connection: keep-alive

csapps.pacificpower.net/

131.219.5.135

302 Found

0 B

URL User Request GET HTTP/1.1
csapps.pacificpower.net/
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET / HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Fri, 03 May 2024 21:38:52 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Set-Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; Path=/; Secure
WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; Domain=pacificpower.net; Path=/; Secure; HttpOnly; SameSite=Lax
TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; Path=/; Secure; HTTPOnly
TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; path=/; domain=pacificpower.net; HTTPonly; Secure
Location: https://csapps.pacificpower.net/idm/login
Content-Length: 0

csapps.pacificpower.net/idm/login

131.219.5.135

200 OK

19 kB

URL User Request GET HTTP/1.1
csapps.pacificpower.net/idm/login
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
HTML document, ASCII text, with very long lines (12368), with CRLF line terminators
Size
19 kB (19277 bytes)
Hash
7024cb17d26ccc68c57ba66fc465f699
31c8856f6b85992453d821a8d53adab1cc57c96a
5bebf657efb12317900f0c22b94e4de319d5df4485f198540f85701b8a180b91

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/login HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:52 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Content-Language: en-US
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: no-store
Content-Type: text/html
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Transfer-Encoding: chunked

csapps.pacificpower.net/idm/styles.b3bec19bee52a30f5594.css

131.219.5.135

200 OK

26 kB

URL GET HTTP/1.1
csapps.pacificpower.net/idm/styles.b3bec19bee52a30f5594.css
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
26 kB (25729 bytes)
Hash
f6d5a13da0ae46ec867261331420496d
d455258e769edc14be7611c68d073cb43f28808f
133c1e4c7fc8bf9e5a9e63f28e696695bb0b16c8aca292772ff13cc79b664e9a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/styles.b3bec19bee52a30f5594.css HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:53 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: text/css
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Transfer-Encoding: chunked

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.99

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 23:17:17 GMT
expires: Fri, 02 May 2025 23:17:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 80496
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2

142.250.74.99

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23236, version 1.0
Size
23 kB (23236 bytes)
Hash
716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 03:22:25 GMT
expires: Sat, 03 May 2025 03:22:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:08:26 GMT
content-type: font/woff2
age: 65788
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

csapps.pacificpower.net/idm/scripts.992c011ef1b3d870750c.js

131.219.5.135

200 OK

314 B

URL GET HTTP/1.1
csapps.pacificpower.net/idm/scripts.992c011ef1b3d870750c.js
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
ASCII text, with very long lines (314), with no line terminators
Size
314 B (314 bytes)
Hash
529268264a1b64b1b1ee7df70d3c362d
2ea80dd8d84eb26e8967899a0e3d18f5271232b8
d9caffbd7a243a2da779bb34d082e07edea0eda6fae317efe5c5262eb5b2007e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/scripts.992c011ef1b3d870750c.js HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:53 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: application/javascript
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Length: 314

csapps.pacificpower.net/idm/runtime.997803ee3c0202cb7b5b.js

131.219.5.135

200 OK

2.2 kB

URL GET HTTP/1.1
csapps.pacificpower.net/idm/runtime.997803ee3c0202cb7b5b.js
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
JavaScript source, ASCII text, with very long lines (3893), with no line terminators
Size
2.2 kB (2204 bytes)
Hash
6116831257f6d36d69a926fb7059203c
6488f2274a5264ce9a0b1108c13eb2c2ee3b256b
b9065fea4bf4f1cddab3e8007ff6de10b8d1e9d3b31c56bcd37c840ab0da7e1d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/runtime.997803ee3c0202cb7b5b.js HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:53 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:22:41 GMT
Cache-Control: must-revalidate, private
Content-Type: application/javascript
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Content-Length: 2204

csapps.pacificpower.net/idm/polyfills.ed5ef6e9e626e253441f.js

131.219.5.135

200 OK

59 kB

URL GET HTTP/1.1
csapps.pacificpower.net/idm/polyfills.ed5ef6e9e626e253441f.js
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
59 kB (58824 bytes)
Hash
d40077d3c4f5655994ced73bf45706ab
1dee6c92761b9ee0166c02c5fb15ada90610a34f
ea464cba12e40f35747033552d15b8703ce5801e6921d9efeb79104bb3c77302

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/polyfills.ed5ef6e9e626e253441f.js HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:53 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: application/javascript
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Transfer-Encoding: chunked

csapps.pacificpower.net/idm/main.5bda6ce81cef47323b0e.js

131.219.5.135

200 OK

399 kB

URL GET HTTP/1.1
csapps.pacificpower.net/idm/main.5bda6ce81cef47323b0e.js
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
399 kB (398611 bytes)
Hash
6895dc4e830952f641eb56ec600118df
b497679572b62db6126463c0000126168c5788fe
452aea746984dfc82aa712c0ce2ddb266e64cb82b3bdbbd6598d67c149a50535

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/main.5bda6ce81cef47323b0e.js HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:53 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: application/javascript
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Transfer-Encoding: chunked

www.googletagmanager.com/gtm.js?id=GTM-P4MW4G

142.250.74.168

200 OK

75 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-P4MW4G
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5894)
Size
75 kB (75420 bytes)
Hash
07015557a90e4fac8b665f468c4ec792
71ad5014a3236c1ed8b0a6c815e257f5370b0ba2
55e28b3698e0ccfd5f2fa27fea00bfe2a31c091df6af5ce7584db667e6ca0417

HTTP Headers

GET /gtm.js?id=GTM-P4MW4G HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 May 2024 21:38:54 GMT
expires: Fri, 03 May 2024 21:38:54 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 May 2024 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75420
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

csapps.pacificpower.net/icons/mobile_nav.svg

131.219.5.135

200 OK

1.5 kB

URL GET HTTP/1.1
csapps.pacificpower.net/icons/mobile_nav.svg
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
SVG Scalable Vector Graphics image
Size
1.5 kB (1480 bytes)
Hash
3bb3d2152a7c72920902d6da2a7dcc23
bb61ee28dc3c7d91899b4bd27e79cf4c9905701a
2a8fc36d381d25ed23af49018d5512c91e7f38e61f8ccee2fabe69068329f2f6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /icons/mobile_nav.svg HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:54 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: image/svg+xml
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Length: 1480

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

142.250.74.99

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:06:03 GMT
expires: Fri, 02 May 2025 02:06:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 156771
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

csapps.pacificpower.net/icons/baseline-phone-24px.svg

131.219.5.135

200 OK

724 B

URL GET HTTP/1.1
csapps.pacificpower.net/icons/baseline-phone-24px.svg
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
SVG Scalable Vector Graphics image
Size
724 B (724 bytes)
Hash
4bedaa150ae8e523c640008dbcaaeeb6
b55b1e322d6c30b3b062a401af2a4c96f608bf47
f39855783946b9278d58b0cd7b3d44a7d14dbad750e3279ad4e10412b0e9132e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /icons/baseline-phone-24px.svg HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:54 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: image/svg+xml
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Length: 724

csapps.pacificpower.net/icons/icon_user.svg

131.219.5.135

200 OK

1.4 kB

URL GET HTTP/1.1
csapps.pacificpower.net/icons/icon_user.svg
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
SVG Scalable Vector Graphics image
Size
1.4 kB (1417 bytes)
Hash
6a628ad27c091f6905d608fd1e1f2ab9
38c42da4787a862ff6c0d80c6665d05fc7168ec7
0e49593366e4045c5b6c7a5393af96b5bb56bc40872e32dc8d2c394f0b45a50a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /icons/icon_user.svg HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:54 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Tue, 23 Jan 2024 06:22:41 GMT
Cache-Control: must-revalidate, private
Content-Type: image/svg+xml
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Length: 1417

www.googletagmanager.com/gtag/js?id=G-C327BVDGZW&l=dataLayer&cx=c

142.250.74.168

200 OK

100 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-C327BVDGZW&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
100 kB (100118 bytes)
Hash
2f31b4c07a77a9f4b16005b064a7bf10
52e48155ea3586f0312c08914f015bb0351a011b
6a7793ff83297963a4dbbd60bded8fd631f85f4b6e69d9d0048a3bd6bd2f0db1

HTTP Headers

GET /gtag/js?id=G-C327BVDGZW&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 May 2024 21:38:55 GMT
expires: Fri, 03 May 2024 21:38:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100118
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

csapps.pacificpower.net/idm/3.a2499bf8ce1c842a923b.js

131.219.5.135

200 OK

3.8 kB

URL GET HTTP/1.1
csapps.pacificpower.net/idm/3.a2499bf8ce1c842a923b.js
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
JavaScript source, ASCII text, with very long lines (15207), with no line terminators
Size
3.8 kB (3814 bytes)
Hash
31e32aa5f92a2675aa05a7fc938e95a6
7cee6821d6e4072920307b9fd9766db216e7dc0a
6680f3c47994b7e7cab0863592190b3de7351b53cd2d2e6a1c6ea562b18dca26

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/3.a2499bf8ce1c842a923b.js HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:55 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: application/javascript
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Content-Length: 3814

csapps.pacificpower.net/idm/31.ec65ef79a667ca5c0802.js

131.219.5.135

200 OK

11 kB

URL GET HTTP/1.1
csapps.pacificpower.net/idm/31.ec65ef79a667ca5c0802.js
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
11 kB (11344 bytes)
Hash
5da80b611f747171ab06f3f8f7b9e519
b4ecbe192de6d43ffbd17bd7b6a927c695afa7d6
bd73a8043dd5fb2f91d1f5c512e609eacee13ec0f458d47968e655e02aed0177

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/31.ec65ef79a667ca5c0802.js HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:55 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:22:41 GMT
Cache-Control: must-revalidate, private
Content-Type: application/javascript
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Transfer-Encoding: chunked

csapps.pacificpower.net/idm/17.cce3c5308cc3c8ac2259.js

131.219.5.135

200 OK

7.4 kB

URL GET HTTP/1.1
csapps.pacificpower.net/idm/17.cce3c5308cc3c8ac2259.js
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
JavaScript source, ASCII text, with very long lines (53799), with no line terminators
Size
7.4 kB (7389 bytes)
Hash
e720150176bea149884deb3bd46bec34
7c0b5f00c2e3e186ec4aa64c29ce1faa98b4647f
03f1e6d5f32681fd675b49a36a1b7b08787bca4ccfd5b3f4a38e74b7e4b4863c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/17.cce3c5308cc3c8ac2259.js HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:55 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: application/javascript
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Transfer-Encoding: chunked

c.oracleinfinity.io/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/odc.js?_ora.config=analytics:production

95.101.10.145

200 OK

13 kB

URL GET HTTP/1.1
c.oracleinfinity.io/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/odc.js?_ora.config=analytics:production
IP
95.101.10.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerDigiCert Inc
Subjectc.oracleinfinity.io
Fingerprint83:80:D8:69:43:FE:E8:44:AA:D2:18:43:82:76:21:60:A9:F6:E1:C4
ValidityTue, 09 Jan 2024 00:00:00 GMT - Tue, 07 Jan 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (591)
Size
13 kB (13239 bytes)
Hash
e60c87aca8146b6b68620610c966380d
406f8d45dc96064e2571204e994ced48b3c5dc6b
f21c3d0cac8aa33f6dad4d0198ebae464e95214a1cdc5a21005e0b5dac601a8c

HTTP Headers

GET /acs/account/f1b66dd938f9483018795bb87054be64/js/pac/odc.js?_ora.config=analytics:production HTTP/1.1
Host: c.oracleinfinity.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-MD5: 5gyHrKgUa2toYgYQyWY4DQ==
Last-Modified: Tue, 25 Apr 2023 15:57:24 GMT
ETag: 979c7ccc-7b01-44a7-8a1e-00706f08cea9
version-id: 1d020e01-5615-42d8-b7ef-e1176f7bce16
storage-tier: Standard
Content-Type: application/javascript; charset=UTF-8
opc-request-id: iad-1:i0hO2jdjStgWpCLWJ1lxn98V8FqrbpXY6EXqTdbpfOWh9G3jiUxdEY9c3vpbVW21
x-api-id: native
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,PUT,GET,HEAD,DELETE,OPTIONS
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: accept-ranges,access-control-allow-credentials,access-control-allow-methods,access-control-allow-origin,content-length,content-md5,content-type,date,etag,last-modified,opc-client-info,opc-request-id,storage-tier,version-id,x-api-id
Vary: Accept-Encoding
Content-Encoding: gzip
Expires: Fri, 03 May 2024 21:38:55 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Fri, 03 May 2024 21:38:55 GMT
Content-Length: 13239
Connection: keep-alive

csapps.pacificpower.net/icons/search.svg

131.219.5.135

200 OK

926 B

URL GET HTTP/1.1
csapps.pacificpower.net/icons/search.svg
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
SVG Scalable Vector Graphics image
Size
926 B (926 bytes)
Hash
2ea4c43614e5b0beff1d450e9d280ea2
6a337e2d719662c6d68955afd6bb9b8c253c5f8f
b346cc12f8e034240af1b6e40201ee7e5682f93ab5aeb96798596fcf5b832326

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /icons/search.svg HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:55 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: image/svg+xml
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Length: 926

csapps.pacificpower.net/img/Pacific-Power-Logo.svg

131.219.5.135

25 kB

URL GET
csapps.pacificpower.net/img/Pacific-Power-Logo.svg
IP
131.219.5.135:0
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
SVG Scalable Vector Graphics image
Size
25 kB (24935 bytes)
Hash
3a2b77bf05e7a86156bd13694aee809d
27856abfa002c728782eec6c32433f1071dace50
a270870103d0b072bd482bf98a0bce0ae6a18c8faf9741c607063570dc27ddb3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /img/Pacific-Power-Logo.svg HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:55 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Tue, 23 Jan 2024 06:22:41 GMT
Cache-Control: must-revalidate, private
Content-Type: image/svg+xml
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Length: 24935

ocsp.entrust.net/

184.24.45.171

1.6 kB

URL
ocsp.entrust.net/
IP
184.24.45.171:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
a82e270963b2f122374e6a07d974aad8
400da3895ced3c1439827397566b63ea846ea09e
d7f0e10acf29d719f098ea3ef8e2298a889810c29c5a0dbd6ca149875e75ae27

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "D7F0E10ACF29D719F098EA3EF8E2298A889810C29C5A0DBD6CA149875E75AE27"
Last-Modified: Fri, 03 May 2024 21:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Fri, 03 May 2024 22:38:55 GMT
Date: Fri, 03 May 2024 21:38:55 GMT
Connection: keep-alive

c.oracleinfinity.io/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production.js

95.101.10.145

200 OK

2.0 kB

URL GET HTTP/1.1
c.oracleinfinity.io/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production.js
IP
95.101.10.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerDigiCert Inc
Subjectc.oracleinfinity.io
Fingerprint83:80:D8:69:43:FE:E8:44:AA:D2:18:43:82:76:21:60:A9:F6:E1:C4
ValidityTue, 09 Jan 2024 00:00:00 GMT - Tue, 07 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
2.0 kB (2003 bytes)
Hash
0849737c0a9f98a5866c54f105b57009
4fc4bdc08296a853fb9e7b358ee1b411a80813f0
1ce97781c193d2a23e69144b0c1de268ef8ea38eaa82eace622d3747afc7e127

HTTP Headers

GET /acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production.js HTTP/1.1
Host: c.oracleinfinity.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-MD5: CElzfAqfmKWGbFTxBbVwCQ==
Last-Modified: Tue, 25 Apr 2023 15:57:24 GMT
ETag: dc5b7663-9cde-48bb-b414-79273630ddb2
version-id: de0a10f0-2c36-4ce6-8839-c9228171a5af
storage-tier: Standard
Content-Type: application/javascript; charset=UTF-8
opc-request-id: iad-1:0MObU4HmR9spxKCl9b1ksUgs1M0y6vUr02C9OYCxSPfPw40h5HVZBklOrFOz7NZI
x-api-id: native
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,PUT,GET,HEAD,DELETE,OPTIONS
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: accept-ranges,access-control-allow-credentials,access-control-allow-methods,access-control-allow-origin,content-length,content-md5,content-type,date,etag,last-modified,opc-client-info,opc-request-id,storage-tier,version-id,x-api-id
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2003
Expires: Fri, 03 May 2024 21:38:55 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Fri, 03 May 2024 21:38:55 GMT
Connection: keep-alive

csapps.pacificpower.net/idm/common.161b81b2a2613b2bd7c8.js

131.219.5.135

200 OK

12 kB

URL GET HTTP/1.1
csapps.pacificpower.net/idm/common.161b81b2a2613b2bd7c8.js
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
JavaScript source, ASCII text, with very long lines (58163), with no line terminators
Size
12 kB (12090 bytes)
Hash
5f6602a0a639c81af5a4e9c532d9b81f
fe3e9411de19d8ce8c8e442787c5c8722e268ea9
c673aa40d47ccce3c0b000178c1506f79cc78033c61f8cad5ba7209d0f1074ab

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/common.161b81b2a2613b2bd7c8.js HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:55 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:22:41 GMT
Cache-Control: must-revalidate, private
Content-Type: application/javascript
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Transfer-Encoding: chunked

d.oracleinfinity.io/infy/acs/common/js/1.3.46/common.js

95.101.10.145

200 OK

16 kB

URL GET HTTP/2
d.oracleinfinity.io/infy/acs/common/js/1.3.46/common.js
IP
95.101.10.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerDigiCert Inc
Subjectc.oracleinfinity.io
Fingerprint83:80:D8:69:43:FE:E8:44:AA:D2:18:43:82:76:21:60:A9:F6:E1:C4
ValidityTue, 09 Jan 2024 00:00:00 GMT - Tue, 07 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (563)
Size
16 kB (16143 bytes)
Hash
eec92ff0d8dbc2a62e116af667acce39
ea70a2abeaca5c64d905c8880cf284110ad4e91f
5233b8e628617f99719b3b7ae193f9b5e5b5897c181d06f578a82f140c38dfda

HTTP Headers

GET /infy/acs/common/js/1.3.46/common.js HTTP/1.1
Host: d.oracleinfinity.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-md5: 7skv8NjbwqYuEWr2Z6zOOQ==
last-modified: Thu, 27 Apr 2023 17:41:15 GMT
etag: 0d9082cc-f350-4896-8c6d-40154b683c53
version-id: 9e45941b-93e4-4513-a5a7-2b87be5de305
storage-tier: Standard
content-type: application/javascript; charset=UTF-8
opc-request-id: iad-1:it5-Y3OuipEs3ciV20zyQZXJjGEac11REleKjOkRjY2AXkMrOwU8GHDEvAQBJVVb
x-api-id: native
access-control-allow-origin: *
access-control-allow-methods: POST,PUT,GET,HEAD,DELETE,OPTIONS
access-control-allow-credentials: true
access-control-expose-headers: accept-ranges,access-control-allow-credentials,access-control-allow-methods,access-control-allow-origin,content-length,content-md5,content-type,date,etag,last-modified,opc-client-info,opc-request-id,storage-tier,version-id,x-api-id
vary: Accept-Encoding
content-encoding: gzip
content-length: 16143
expires: Fri, 03 May 2024 21:38:55 GMT
cache-control: max-age=0, no-cache
pragma: no-cache
date: Fri, 03 May 2024 21:38:55 GMT
X-Firefox-Spdy: h2

csapps.pacificpower.net/icons/icon_round-add-location.svg

131.219.5.135

200 OK

1.8 kB

URL GET HTTP/1.1
csapps.pacificpower.net/icons/icon_round-add-location.svg
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
SVG Scalable Vector Graphics image
Size
1.8 kB (1761 bytes)
Hash
edb2716f04ab89446ab84dd19464caac
724709f099d25cf7ef7d7d5fea17dd1a0530ce66
59d73795df87643bea10845f3630c7d27c1e91165e64216c9e67e79b7fda7528

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /icons/icon_round-add-location.svg HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:55 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Tue, 23 Jan 2024 06:22:44 GMT
Cache-Control: must-revalidate, private
Content-Type: image/svg+xml
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Length: 1761

d.oracleinfinity.io/infy/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production/analytics.js

95.101.10.145

200 OK

19 kB

URL GET HTTP/2
d.oracleinfinity.io/infy/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production/analytics.js
IP
95.101.10.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerDigiCert Inc
Subjectc.oracleinfinity.io
Fingerprint83:80:D8:69:43:FE:E8:44:AA:D2:18:43:82:76:21:60:A9:F6:E1:C4
ValidityTue, 09 Jan 2024 00:00:00 GMT - Tue, 07 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (565)
Size
19 kB (18591 bytes)
Hash
e06182bfc490f32e7c35c65fdf485cac
51897a41f9c9ac1de22bf5abf6d3ab0d7a58006e
645818f6858ea8ed7ed4950bb212097f7ce71672fdfb5e7cd98655b2c5f39538

HTTP Headers

GET /infy/acs/account/f1b66dd938f9483018795bb87054be64/js/pac/analytics-production/analytics.js HTTP/1.1
Host: d.oracleinfinity.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-md5: 4GGCv8SQ8y58NcZf30hcrA==
last-modified: Tue, 25 Apr 2023 15:57:24 GMT
etag: 1e06d93b-e9f8-4cf5-a797-a3c471d66eb5
version-id: 16c7f67c-0a10-4959-9abc-bf708ea1cbca
storage-tier: Standard
content-type: application/javascript; charset=UTF-8
opc-request-id: iad-1:Cos3NXlXhr-l7CTT9q5Nv8Li0p8DRjM9sxTfC91UbX313S0f9KmcspjrQ6MFcyxR
x-api-id: native
access-control-allow-origin: *
access-control-allow-methods: POST,PUT,GET,HEAD,DELETE,OPTIONS
access-control-allow-credentials: true
access-control-expose-headers: accept-ranges,access-control-allow-credentials,access-control-allow-methods,access-control-allow-origin,content-length,content-md5,content-type,date,etag,last-modified,opc-client-info,opc-request-id,storage-tier,version-id,x-api-id
vary: Accept-Encoding
content-encoding: gzip
content-length: 18591
expires: Fri, 03 May 2024 21:38:55 GMT
cache-control: max-age=0, no-cache
pragma: no-cache
date: Fri, 03 May 2024 21:38:55 GMT
X-Firefox-Spdy: h2

csapps.pacificpower.net/idm/41.b22c966d3c79ca8405e2.js

131.219.5.135

200 OK

94 kB

URL GET HTTP/1.1
csapps.pacificpower.net/idm/41.b22c966d3c79ca8405e2.js
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
94 kB (93672 bytes)
Hash
9cfc010144c08a815562299a08f93980
95fc2f9163558054456063726fdd639ffbf5c86d
c23735b2dc9ca3fd26164ef2f1ff5dcb395546cf75ad2bc35c0cd7fd57099335

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /idm/41.b22c966d3c79ca8405e2.js HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:55 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Last-Modified: Tue, 23 Jan 2024 06:22:41 GMT
Cache-Control: must-revalidate, private
Content-Type: application/javascript
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Encoding: gzip
Transfer-Encoding: chunked

cobrowse.pacificpower.net/cobrowse/js/gcb.min.js

131.219.5.108

200 OK

147 kB

URL GET HTTP/1.1
cobrowse.pacificpower.net/cobrowse/js/gcb.min.js
IP
131.219.5.108:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcobrowse.pacificpower.net
FingerprintD5:DD:49:84:EA:2F:3F:0B:62:60:EE:88:47:00:F3:AD:2B:35:C3:88
ValidityTue, 27 Feb 2024 21:24:20 GMT - Sun, 23 Mar 2025 21:24:19 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
147 kB (146568 bytes)
Hash
04bc780cb5832925fff566250bfeefa9
2304ee99ce555c5c1c5f251eb336e23d01561ccc
89b8048ebb5809105d57f0948aaef23e4cc5d137c3a057525e2daf9b09f1e53a

HTTP Headers

GET /cobrowse/js/gcb.min.js HTTP/1.1
Host: cobrowse.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Last-Modified: Tue, 21 Apr 2020 10:00:44 GMT
Content-Type: application/javascript;charset=utf-8
Accept-Ranges: bytes
Vary: Accept-Encoding, User-Agent
Content-Encoding: gzip
Set-Cookie: ppwlbcbrowsesck=!O/tIMAkLNtvZ7CoPL334sfmReL9z6Vq3NegH0b6if7CCkyvBd8R2Iz+7AXU3/1ya4NrFEbUQxDzp+Rs=; path=/; Httponly; Secure
TS0165578a=0113d214aaa33c77e645bb278ffc2e78db43ef18f8c1e10466eb7ec7d490b47b70543872aa9e7a1c7a425608a0b3864ef07bd7d59b; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked

csapps.pacificpower.net/favicon.ico

131.219.5.135

200 OK

1.4 kB

URL GET HTTP/1.1
csapps.pacificpower.net/favicon.ico
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel
Size
1.4 kB (1406 bytes)
Hash
bb51a2d57de4cc5e3baaaba1814705ae
b889eb737900bfe64cb14ecbb5e2a0e472f2f432
e0df11934cb02b5f30854a26c0caf71b6b82a98d2fb8660a17598b0262acefca

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:56 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Tue, 23 Jan 2024 06:20:20 GMT
Cache-Control: must-revalidate, private
Content-Type: image/x-icon
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Length: 1406

ocsp.entrust.net/

184.24.45.171

1.6 kB

URL
ocsp.entrust.net/
IP
184.24.45.171:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
c6584652ea3614a731e962c5128e87ab
d09ce24a593eeceb63b6620ee2b148722b110ee0
bff3b5d53e2a55b5143c6167ab79bae562cfb4f6afcc4bf2612382de3d68ebce

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "BFF3B5D53E2A55B5143C6167AB79BAE562CFB4F6AFCC4BF2612382DE3D68EBCE"
Last-Modified: Fri, 03 May 2024 20:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Fri, 03 May 2024 22:38:56 GMT
Date: Fri, 03 May 2024 21:38:56 GMT
Connection: keep-alive

www.pacificpower.net/footer.infinity.json

131.219.5.137

200 OK

7.5 kB

URL GET HTTP/1.1
www.pacificpower.net/footer.infinity.json
IP
131.219.5.137:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectstatcont.prod.pacificorp.com
Fingerprint9A:98:3F:FE:B0:F7:AD:D2:FC:1F:BE:04:3C:16:C9:18:7D:8E:56:62
ValidityTue, 31 Oct 2023 20:18:04 GMT - Sat, 30 Nov 2024 20:18:03 GMT

File type
JSON text data
Size
7.5 kB (7536 bytes)
Hash
a233e6d16ad439793fadba3d5c3220bb
bbb42f05aa1f2e1d566268f76ef12a3f94448f5f
1d667f3c14b341a40976adc264f64faf10d74afdf55f7b07a1386b9c7f1e1173

HTTP Headers

GET /footer.infinity.json HTTP/1.1
Host: www.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:56 GMT
Age: 1486111
Last-Modified: Tue, 16 Apr 2024 16:50:25 GMT
ETag: "1d70-6163988e05ca2"
Accept-Ranges: bytes
Content-Length: 7536
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
cache-control: no-cache
Access-Control-Allow-Origin: https://csapps.pacificpower.net
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/json

csapps.pacificpower.net/idm/handshake

131.219.5.135

200 OK

684 B

URL POST HTTP/1.1
csapps.pacificpower.net/idm/handshake
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type
ASCII text, with very long lines (684), with no line terminators
Size
684 B (684 bytes)
Hash
fd3c7ecad270d6f8b19c5713a538806e
15ff757f69aed34b6d774e9aa2935149cdc9dffe
a44f832c20bb5df3a928f7f2dd480bc46eb8eab839149512e714a79dc12d1e20

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

POST /idm/handshake HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/octet-stream
X-XSRF-TOKEN: 49b0c0aa-3f54-4452-aad3-def61427935d
Content-Length: 1473
Origin: https://csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:57 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
Content-Type: application/json
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Content-Length: 684

www.pacificpower.net/content/experience-fragments/pcorp/en/angular/my-account-banner/pp.model.json

131.219.5.137

200 OK

8.6 kB

URL GET HTTP/1.1
www.pacificpower.net/content/experience-fragments/pcorp/en/angular/my-account-banner/pp.model.json
IP
131.219.5.137:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectstatcont.prod.pacificorp.com
Fingerprint9A:98:3F:FE:B0:F7:AD:D2:FC:1F:BE:04:3C:16:C9:18:7D:8E:56:62
ValidityTue, 31 Oct 2023 20:18:04 GMT - Sat, 30 Nov 2024 20:18:03 GMT

File type
JSON text data
Size
8.6 kB (8631 bytes)
Hash
97afcafd660d8306dbbbd321dbc4a103
1d1ff0a8ecfd540cf0cc4d1c15e5398781e9062b
44f16747cacf6d3abfd344891ed8a8c4a449756a79b6e429d3dcc2640ba401b2

HTTP Headers

GET /content/experience-fragments/pcorp/en/angular/my-account-banner/pp.model.json HTTP/1.1
Host: www.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:58 GMT
Age: 8781952
Last-Modified: Tue, 23 Jan 2024 06:13:06 GMT
ETag: "21b7-60f96d6f2a080"
Accept-Ranges: bytes
Content-Length: 8631
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
cache-control: no-cache
Access-Control-Allow-Origin: https://csapps.pacificpower.net
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/json

csapps.pacificpower.net/oauth2/authorization/B2C_1A_PAC_SIGNIN

131.219.5.135

302 Found

0 B

URL GET HTTP/1.1
csapps.pacificpower.net/oauth2/authorization/B2C_1A_PAC_SIGNIN
IP
131.219.5.135:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectcsapps.pacificpower.net
FingerprintE0:38:95:B6:47:2C:4B:17:D3:6A:8F:B1:FF:BC:CF:91:F6:6B:F9:FA
ValidityTue, 13 Jun 2023 22:53:25 GMT - Sun, 16 Jun 2024 22:53:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Salesforce

HTTP Headers

GET /oauth2/authorization/B2C_1A_PAC_SIGNIN HTTP/1.1
Host: csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/idm/login
Cookie: XSRF-TOKEN=49b0c0aa-3f54-4452-aad3-def61427935d; WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS0136869d=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Fri, 03 May 2024 21:38:58 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' https:; img-src 'self' data: https:; frame-src 'self' https:; connect-src 'self' https:
Location: https://login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
Content-Length: 0

www.pacificpower.net/content/dam/pcorp/logos/pacific-power-logo.svg

131.219.5.137

200 OK

3.6 kB

URL GET HTTP/1.1
www.pacificpower.net/content/dam/pcorp/logos/pacific-power-logo.svg
IP
131.219.5.137:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectstatcont.prod.pacificorp.com
Fingerprint9A:98:3F:FE:B0:F7:AD:D2:FC:1F:BE:04:3C:16:C9:18:7D:8E:56:62
ValidityTue, 31 Oct 2023 20:18:04 GMT - Sat, 30 Nov 2024 20:18:03 GMT

File type
SVG Scalable Vector Graphics image
Size
3.6 kB (3575 bytes)
Hash
5e24a171b13a84b249c19e0cd0c4f1bf
73bd6a9ecbfa48f0ece3107ae735c00d5691852b
d94eb8f47a9ccbc67dd8a7155cdef4c291f57d8835a577a45b4756ed0cd4d4c4

HTTP Headers

GET /content/dam/pcorp/logos/pacific-power-logo.svg HTTP/1.1
Host: www.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:58 GMT
Age: 17598425
Last-Modified: Fri, 13 Oct 2023 05:11:53 GMT
ETag: "df7-607921834d840"
Accept-Ranges: bytes
Content-Length: 3575
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
cache-control: max-age=2592000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pacificpower.net/content/dam/pcorp/icons/social/fb.svg

131.219.5.137

200 OK

1.4 kB

URL GET HTTP/1.1
www.pacificpower.net/content/dam/pcorp/icons/social/fb.svg
IP
131.219.5.137:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectstatcont.prod.pacificorp.com
Fingerprint9A:98:3F:FE:B0:F7:AD:D2:FC:1F:BE:04:3C:16:C9:18:7D:8E:56:62
ValidityTue, 31 Oct 2023 20:18:04 GMT - Sat, 30 Nov 2024 20:18:03 GMT

File type
SVG Scalable Vector Graphics image
Size
1.4 kB (1415 bytes)
Hash
72f447d505c677fc9eead435e5d30a21
e756832205c7814e15e473a8a01808011c83e5e3
bb5f619bde74c4da3049cb3a63b9b63c292b762dd122c16c373ad6fda013834e

HTTP Headers

GET /content/dam/pcorp/icons/social/fb.svg HTTP/1.1
Host: www.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:58 GMT
Age: 17598426
Last-Modified: Fri, 13 Oct 2023 05:11:52 GMT
ETag: "587-6079218259600"
Accept-Ranges: bytes
Content-Length: 1415
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
cache-control: max-age=2592000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pacificpower.net/content/dam/pcorp/icons/social/x.svg

131.219.5.137

200 OK

1.3 kB

URL GET HTTP/1.1
www.pacificpower.net/content/dam/pcorp/icons/social/x.svg
IP
131.219.5.137:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectstatcont.prod.pacificorp.com
Fingerprint9A:98:3F:FE:B0:F7:AD:D2:FC:1F:BE:04:3C:16:C9:18:7D:8E:56:62
ValidityTue, 31 Oct 2023 20:18:04 GMT - Sat, 30 Nov 2024 20:18:03 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1328 bytes)
Hash
290a2a77d7db30da2d146d8fcdc96ac4
aebf7da932ba284356e4ef48b4e6bc12133e8d60
fccb3518f264a1bea22744c5df3347640773dca7421390d3e2034ec395cffe3b

HTTP Headers

GET /content/dam/pcorp/icons/social/x.svg HTTP/1.1
Host: www.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:58 GMT
Age: 17588030
Last-Modified: Fri, 13 Oct 2023 08:05:08 GMT
ETag: "530-6079483cbf500"
Accept-Ranges: bytes
Content-Length: 1328
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
cache-control: max-age=2592000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pacificpower.net/content/dam/pcorp/icons/social/yt.svg

131.219.5.137

200 OK

1.3 kB

URL GET HTTP/1.1
www.pacificpower.net/content/dam/pcorp/icons/social/yt.svg
IP
131.219.5.137:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectstatcont.prod.pacificorp.com
Fingerprint9A:98:3F:FE:B0:F7:AD:D2:FC:1F:BE:04:3C:16:C9:18:7D:8E:56:62
ValidityTue, 31 Oct 2023 20:18:04 GMT - Sat, 30 Nov 2024 20:18:03 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1272 bytes)
Hash
321573aa5f1da32e79e39bd5c8d595d5
11e536d4c2cb0fbae14b3a3dfc16c4f4ce6083a2
11ff349e01b452cc44ecd802620184acb0ed302f51b8e18c860b1c59b24ebbf8

HTTP Headers

GET /content/dam/pcorp/icons/social/yt.svg HTTP/1.1
Host: www.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:58 GMT
Age: 17598424
Last-Modified: Fri, 13 Oct 2023 05:11:54 GMT
ETag: "4f8-6079218441a80"
Accept-Ranges: bytes
Content-Length: 1272
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
cache-control: max-age=2592000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pacificpower.net/content/dam/pcorp/icons/social/li.svg

131.219.5.137

200 OK

2.0 kB

URL GET HTTP/1.1
www.pacificpower.net/content/dam/pcorp/icons/social/li.svg
IP
131.219.5.137:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectstatcont.prod.pacificorp.com
Fingerprint9A:98:3F:FE:B0:F7:AD:D2:FC:1F:BE:04:3C:16:C9:18:7D:8E:56:62
ValidityTue, 31 Oct 2023 20:18:04 GMT - Sat, 30 Nov 2024 20:18:03 GMT

File type
SVG Scalable Vector Graphics image
Size
2.0 kB (1950 bytes)
Hash
afb060f6070431a7a0ff0fe79c5ac8ba
be77c0589fd2fb62ede410ea14821fba27b6b5a1
5ff844e9b5ef102ea5c357a5add67cebd4e73e932adb134899fd8ee02849868e

HTTP Headers

GET /content/dam/pcorp/icons/social/li.svg HTTP/1.1
Host: www.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:58 GMT
Age: 17588030
Last-Modified: Fri, 13 Oct 2023 08:05:08 GMT
ETag: "79e-6079483cbf500"
Accept-Ranges: bytes
Content-Length: 1950
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
cache-control: max-age=2592000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pacificpower.net/content/dam/pcorp/icons/social/in.svg

131.219.5.137

200 OK

2.5 kB

URL GET HTTP/1.1
www.pacificpower.net/content/dam/pcorp/icons/social/in.svg
IP
131.219.5.137:443
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerEntrust, Inc.
Subjectstatcont.prod.pacificorp.com
Fingerprint9A:98:3F:FE:B0:F7:AD:D2:FC:1F:BE:04:3C:16:C9:18:7D:8E:56:62
ValidityTue, 31 Oct 2023 20:18:04 GMT - Sat, 30 Nov 2024 20:18:03 GMT

File type
SVG Scalable Vector Graphics image
Size
2.5 kB (2524 bytes)
Hash
7c08a2ffb50eaacfaaa4b1b9a83322e9
f07388cd0680eb0461aa6b86950bd6703c2e4862
c8df809abc75fc0df98da493bfb7f6a184b48228f9451688a29d7f5f783bf329

HTTP Headers

GET /content/dam/pcorp/icons/social/in.svg HTTP/1.1
Host: www.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:58 GMT
Age: 17598965
Last-Modified: Fri, 13 Oct 2023 05:02:53 GMT
ETag: "9dc-60791f8051940"
Accept-Ranges: bytes
Content-Length: 2524
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
cache-control: max-age=2592000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pacificpower.net/content/dam/pcorp/icons/co-browse-green.svg

131.219.5.137

3.9 kB

URL GET
www.pacificpower.net/content/dam/pcorp/icons/co-browse-green.svg
IP
131.219.5.137:0
ASN
#23255 PACIFICORP

Requested by
https://csapps.pacificpower.net/idm/login

File type
SVG Scalable Vector Graphics image
Size
3.9 kB (3901 bytes)
Hash
c3e8962807ea7a8d1399a6397e748a94
098ab75a0d2b60dae9378547b74bbe51b9240fdc
4bdd86b0955949395efeaba026d3812e46867ae6dfbe2dc9831477c02d5dad31

HTTP Headers

GET /content/dam/pcorp/icons/co-browse-green.svg HTTP/1.1
Host: www.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 21:38:58 GMT
Age: 17598424
Last-Modified: Fri, 13 Oct 2023 05:11:54 GMT
ETag: "f3d-6079218441a80"
Accept-Ranges: bytes
Content-Length: 3901
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
cache-control: max-age=2592000
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp

13.107.246.53

200 OK

151 kB

URL GET HTTP/2
login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
IP
13.107.246.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerDigiCert Inc
Subjectlogin.csapps.pacificpower.net
Fingerprint4C:0F:2D:3D:46:54:04:DB:B6:70:44:A3:3F:9D:8E:D1:48:94:D6:38
ValidityThu, 07 Dec 2023 00:00:00 GMT - Sat, 07 Dec 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (62035), with CRLF, LF line terminators
Size
151 kB (151034 bytes)
Hash
44ebf175735a730da4daa49e755f1502
22701140f059bb387b0190e1d43d04a4ded273fd
3c10e0935bebf3c46b4bafe09848e8e23e23156b2bdee89ed328e0dbe5c29f9a

HTTP Headers

GET /bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp HTTP/1.1
Host: login.csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://csapps.pacificpower.net/
DNT: 1
Connection: keep-alive
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 03 May 2024 21:38:59 GMT
content-type: text/html; charset=utf-8
content-length: 151034
cache-control: no-store, must-revalidate, no-cache
expires: -1
x-ms-gateway-requestid: 529e39e5-a469-4e37-83b9-cfc2a4363583
x-ua-compatible: IE=edge
x-request-id: c1755c11-00ba-47a3-a6df-d94946fb7c81
x-build: 1.1.144.0
x-frame-options: ALLOW-FROM https://csapps.pacificpower.net
content-security-policy: frame-ancestors https://csapps.pacificpower.net https://csapps.rockymountainpower.net
public: OPTIONS,TRACE,GET,HEAD,POST
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
set-cookie: x-ms-cpim-csrf=cTZrU2ZveStBdkJqTmFBT0JTWmNMTzZmd0FFcVF5NmlLSlhKUWpOdzU3MmR6c1RJQnIxT0tVdDA5VXFzUW1mYk1VMFUzS1RFMnpuY0hqdzlIV3hsOFE9PTsyMDI0LTA1LTAzVDIxOjM4OjU5LjE3NjI5OFo7L2NDZmVkQTRSckFqb2JTRVpoSXp3dz09O3siT3JjaGVzdHJhdGlvblN0ZXAiOjF9; domain=login.csapps.pacificpower.net; path=/; SameSite=None; secure; HttpOnly
x-ms-cpim-cache|evx1wboao0em39ljrvt8gq_0=m1.Uq2PukDSb7wV5b0P.wW7uSwdsBipGK3b9b+cT8A==.0.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; domain=login.csapps.pacificpower.net; path=/; SameSite=None; secure; HttpOnly
x-ms-cpim-trans=eyJUX0RJQyI6W3siSSI6ImMxNzU1YzExLTAwYmEtNDdhMy1hNmRmLWQ5NDk0NmZiN2M4MSIsIlQiOiJiaGViMmMub25taWNyb3NvZnQuY29tIiwiUCI6IkIyQ18xQV9QQUNfU0lHTklOIiwiQyI6IjhlMTgxNGU0LTU2ZmEtNDgxMi05MzkyLTYwOTY2NTcwMjZlNyIsIlMiOjEsIk0iOnt9LCJEIjowLCJFIjoiIn1dLCJDX0lEIjoiYzE3NTVjMTEtMDBiYS00N2EzLWE2ZGYtZDk0OTQ2ZmI3YzgxIn0=; domain=login.csapps.pacificpower.net; path=/; SameSite=None; secure; HttpOnly
x-ms-cpim-geo=NA; expires=Fri, 03 May 2024 22:38:59 GMT; path=/; secure; samesite=none; httponly
allow: OPTIONS, TRACE, GET, HEAD, POST
x-azure-ref: 20240503T213858Z-er15bb998b7frflbq63x12c8y00000000110000000003sk8
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

pacwebappssaprd.blob.core.windows.net/html/pac_signin.html

20.150.34.36

200 OK

9.3 kB

URL GET HTTP/1.1
pacwebappssaprd.blob.core.windows.net/html/pac_signin.html
IP
20.150.34.36:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
Certificate
IssuerMicrosoft Corporation
Subject*.blob.core.windows.net
Fingerprint9E:42:CF:5A:AB:50:9B:10:C6:C7:AC:EA:15:7B:92:FC:24:99:54:29
ValidityTue, 26 Sep 2023 23:39:09 GMT - Thu, 26 Sep 2024 23:39:09 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
9.3 kB (9294 bytes)
Hash
c50154bfdba86def8c92024cb859058c
ba0ab573927a599e925cb049d16811ca2a13a213
64ccd41067cc9a0105d45d05e84f624fd629a088e00ff7468a982715523ebded

HTTP Headers

GET /html/pac_signin.html HTTP/1.1
Host: pacwebappssaprd.blob.core.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://login.csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://login.csapps.pacificpower.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 9294
Content-Type: text/html
Content-MD5: xQFUv9uobe+MkgJMuFkFjA==
Last-Modified: Thu, 02 Sep 2021 21:27:39 GMT
ETag: 0x8D96E587D864019
Vary: Origin
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bbb19fff-901e-0000-16a2-9df1af000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: https://login.csapps.pacificpower.net
Access-Control-Allow-Credentials: true
Date: Fri, 03 May 2024 21:38:59 GMT

cdnjs.cloudflare.com/ajax/libs/bootstrap-icons/1.5.0/font/bootstrap-icons.min.css

104.17.24.14

200 OK

6.8 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/bootstrap-icons/1.5.0/font/bootstrap-icons.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (57399), with no line terminators
Size
6.8 kB (6777 bytes)
Hash
5d91c9b281ad21364bc3475179735237
5fe32d217cdd4e230a5d422ac6a78d9b19f13f40
41796cb02d843636d293efdaf5dc2155420a4d3f23c30bd3014a7cc13b1e5c6c

HTTP Headers

GET /ajax/libs/bootstrap-icons/1.5.0/font/bootstrap-icons.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://login.csapps.pacificpower.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 03 May 2024 21:39:00 GMT
content-type: text/css; charset=utf-8
content-length: 6777
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60a4f899-1a79"
last-modified: Wed, 19 May 2021 11:38:01 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 263711
expires: Wed, 23 Apr 2025 21:39:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ivpvYISsIRZmhv8XyXRxQKI9Tl6x1gAGq8tA5Qd4vT33V7gsmg6ux6C3BgqszQACIoSUlYrvAkMUEiI8F7slU75Vq4Q2D%2FLWEWj8N6j5oMRDsi6%2FuwfMtMDZCbpLjsCEdE4ZHk9S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e366b80a13b4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.aspnetcdn.com/ajax/bootstrap/3.3.5/css/bootstrap.min.css

152.199.19.160

200 OK

20 kB

URL GET HTTP/2
ajax.aspnetcdn.com/ajax/bootstrap/3.3.5/css/bootstrap.min.css
IP
152.199.19.160:443
ASN
#15133 EDGECAST

Requested by
https://login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
Certificate
IssuerDigiCert Inc
Subject*.vo.msecnd.net
Fingerprint86:E0:37:E4:B1:31:51:81:DD:54:33:82:FF:4D:EB:D1:15:5F:65:C4
ValidityTue, 30 Jan 2024 00:00:00 GMT - Thu, 30 Jan 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65371)
Size
20 kB (19759 bytes)
Hash
5d5357cb3704e1f43a1f5bfed2aebf42
08df9a96752852f2cbd310c30facd934e348c2c5
31fbd99641c212a6ad3681a2397bde13c148c0ccd98385bce6a7eb7c81417d87

HTTP Headers

GET /ajax/bootstrap/3.3.5/css/bootstrap.min.css HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://login.csapps.pacificpower.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 3439074
cache-control: public,max-age=31536000
content-type: text/css
date: Fri, 03 May 2024 21:39:00 GMT
etag: "80254bf0cb33d21:0"
last-modified: Mon, 31 Oct 2016 23:10:15 GMT
server: ECAcc (ska/F7A3)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 19759
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.99

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://login.csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 23:17:17 GMT
expires: Fri, 02 May 2025 23:17:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 80503
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

142.250.74.99

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://login.csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:06:03 GMT
expires: Fri, 02 May 2025 02:06:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 156777
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdnjs.cloudflare.com/ajax/libs/bootstrap-icons/1.5.0/font/fonts/bootstrap-icons.woff2?856008caa5eb66df68595e734e59580d

104.17.24.14

200 OK

90 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/bootstrap-icons/1.5.0/font/fonts/bootstrap-icons.woff2?856008caa5eb66df68595e734e59580d
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 90528, version 1.0
Size
90 kB (90528 bytes)
Hash
e07b538aa51b6fa77f32828af21cb591
4649877868a0068ce50b105d0d2a235e8010c98f
76506e128f2b47b7179f5037bd885a1674455ffeb6b5093cdb4c7eefbf436ce8

HTTP Headers

GET /ajax/libs/bootstrap-icons/1.5.0/font/fonts/bootstrap-icons.woff2?856008caa5eb66df68595e734e59580d HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://login.csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 21:39:00 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 90528
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "60a4f899-161a0"
last-modified: Wed, 19 May 2021 11:38:01 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 256836
expires: Wed, 23 Apr 2025 21:39:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7oCxByaqQOypSkbw22Psojr4i0BTqtDdxcOPboJuLNcS2yaXebUB39d6r2dFpRNviDl35KwFFNw7W3bUuuSYrmz1j8j4oa%2B8xzi%2BdDPWRXMSekihGJknYzBCtcrvM%2B2cej%2B3GCZc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e366b98df60afa-OSL
alt-svc: h3=":443"; ma=86400

login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/B2C_1A_PAC_signin/client/perftrace?tx=StateProperties=eyJUSUQiOiJjMTc1NWMxMS0wMGJhLTQ3YTMtYTZkZi1kOTQ5NDZmYjdjODEifQ&p=B2C_1A_PAC_signin

13.107.246.53

200 OK

0 B

URL POST HTTP/2
login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/B2C_1A_PAC_signin/client/perftrace?tx=StateProperties=eyJUSUQiOiJjMTc1NWMxMS0wMGJhLTQ3YTMtYTZkZi1kOTQ5NDZmYjdjODEifQ&p=B2C_1A_PAC_signin
IP
13.107.246.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
Certificate
IssuerDigiCert Inc
Subjectlogin.csapps.pacificpower.net
Fingerprint4C:0F:2D:3D:46:54:04:DB:B6:70:44:A3:3F:9D:8E:D1:48:94:D6:38
ValidityThu, 07 Dec 2023 00:00:00 GMT - Sat, 07 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /bheb2c.onmicrosoft.com/B2C_1A_PAC_signin/client/perftrace?tx=StateProperties=eyJUSUQiOiJjMTc1NWMxMS0wMGJhLTQ3YTMtYTZkZi1kOTQ5NDZmYjdjODEifQ&p=B2C_1A_PAC_signin HTTP/1.1
Host: login.csapps.pacificpower.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
X-CSRF-TOKEN: cTZrU2ZveStBdkJqTmFBT0JTWmNMTzZmd0FFcVF5NmlLSlhKUWpOdzU3MmR6c1RJQnIxT0tVdDA5VXFzUW1mYk1VMFUzS1RFMnpuY0hqdzlIV3hsOFE9PTsyMDI0LTA1LTAzVDIxOjM4OjU5LjE3NjI5OFo7L2NDZmVkQTRSckFqb2JTRVpoSXp3dz09O3siT3JjaGVzdHJhdGlvblN0ZXAiOjF9
X-Requested-With: XMLHttpRequest
Content-Length: 2309
Origin: https://login.csapps.pacificpower.net
DNT: 1
Connection: keep-alive
Referer: https://login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
Cookie: WCSSSID=OGJlNTBiNDItMzk2Yy00N2RkLWI2MGQtMzYyMDZjZjlkYWNl; TS01964c10=0113d214aab557b885280e439c0c40cc13dea3e097faf03d1b02c94628c6cb227a3cae9e3ece1772993e18461c6b102c83f7e3b7de; _ga_C327BVDGZW=GS1.1.1714772335.1.0.1714772335.0.0.0; _ga=GA1.1.1142870768.1714772335; x-ms-cpim-csrf=cTZrU2ZveStBdkJqTmFBT0JTWmNMTzZmd0FFcVF5NmlLSlhKUWpOdzU3MmR6c1RJQnIxT0tVdDA5VXFzUW1mYk1VMFUzS1RFMnpuY0hqdzlIV3hsOFE9PTsyMDI0LTA1LTAzVDIxOjM4OjU5LjE3NjI5OFo7L2NDZmVkQTRSckFqb2JTRVpoSXp3dz09O3siT3JjaGVzdHJhdGlvblN0ZXAiOjF9; x-ms-cpim-cache|evx1wboao0em39ljrvt8gq_0=m1.Uq2PukDSb7wV5b0P.wW7uSwdsBipGK3b9b+cT8A==.0.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; x-ms-cpim-trans=eyJUX0RJQyI6W3siSSI6ImMxNzU1YzExLTAwYmEtNDdhMy1hNmRmLWQ5NDk0NmZiN2M4MSIsIlQiOiJiaGViMmMub25taWNyb3NvZnQuY29tIiwiUCI6IkIyQ18xQV9QQUNfU0lHTklOIiwiQyI6IjhlMTgxNGU0LTU2ZmEtNDgxMi05MzkyLTYwOTY2NTcwMjZlNyIsIlMiOjEsIk0iOnt9LCJEIjowLCJFIjoiIn1dLCJDX0lEIjoiYzE3NTVjMTEtMDBiYS00N2EzLWE2ZGYtZDk0OTQ2ZmI3YzgxIn0=; x-ms-cpim-geo=NA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 03 May 2024 21:39:01 GMT
content-length: 0
cache-control: no-store, must-revalidate, no-cache
x-ms-gateway-requestid: 891c367b-3152-4ee0-a590-db2fc00e71d1
x-frame-options: ALLOW-FROM https://csapps.pacificpower.net
content-security-policy: frame-ancestors https://csapps.pacificpower.net https://csapps.rockymountainpower.net
public: OPTIONS,TRACE,GET,HEAD,POST
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
allow: OPTIONS, TRACE, GET, HEAD, POST
x-azure-ref: 20240503T213900Z-er15bb998b7frflbq63x12c8y00000000110000000003skw
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato:300,400,700

142.250.74.138

200 OK

2.2 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato:300,400,700
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (2215), with no line terminators
Size
2.2 kB (2167 bytes)
Hash
c479791b0cc366ddbd541c57780f90ad
27335692fe86c20d2c523b43e6ddbf3d3420f0e1
e77e641746ebcc0b6582674b938fdb3c18e44377b17f89fbad27b535b62e6515

HTTP Headers

GET /css?family=Lato:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 May 2024 21:38:53 GMT
date: Fri, 03 May 2024 21:38:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/icon?family=Material+Icons

142.250.74.138

200 OK

565 B

URL GET HTTP/2
fonts.googleapis.com/icon?family=Material+Icons
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://csapps.pacificpower.net/idm/login
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (588), with no line terminators
Size
565 B (565 bytes)
Hash
959a533a3dc02649e0cc3f8f67d942af
34db49ff64aed8b51beaba5b9928ad504a4df335
24864ed3ee6fab66640980d4c24640e579e5583764a8ee8c4f09decf27977247

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://csapps.pacificpower.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 May 2024 21:38:53 GMT
date: Fri, 03 May 2024 21:38:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato:300,400,700

142.250.74.138

200 OK

2.2 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Lato:300,400,700
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (2215), with no line terminators
Size
2.2 kB (2167 bytes)
Hash
c479791b0cc366ddbd541c57780f90ad
27335692fe86c20d2c523b43e6ddbf3d3420f0e1
e77e641746ebcc0b6582674b938fdb3c18e44377b17f89fbad27b535b62e6515

HTTP Headers

GET /css?family=Lato:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://login.csapps.pacificpower.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 May 2024 21:39:00 GMT
date: Fri, 03 May 2024 21:39:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/icon?family=Material+Icons

142.250.74.138

200 OK

565 B

URL GET HTTP/3
fonts.googleapis.com/icon?family=Material+Icons
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://login.csapps.pacificpower.net/bheb2c.onmicrosoft.com/oauth2/v2.0/authorize?response_type=code&client_id=8e1814e4-56fa-4812-9392-6096657026e7&scope=8e1814e4-56fa-4812-9392-6096657026e7%20openid&state=2GFEKEanPERPHBmn8LA_d610RjlOD7-0LrEV6K3EyNE%3D&redirect_uri=https://csapps.pacificpower.net/login/oauth2/code/&nonce=VxUdoJvEnSKB-Zs99lfbmm1x-mdLHIF4TelpAlLKtUs&p=B2C_1A_PAC_SIGNIN&x-client-SKU=spring-boot-starter&brand=pp
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (588), with no line terminators
Size
565 B (565 bytes)
Hash
959a533a3dc02649e0cc3f8f67d942af
34db49ff64aed8b51beaba5b9928ad504a4df335
24864ed3ee6fab66640980d4c24640e579e5583764a8ee8c4f09decf27977247

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://login.csapps.pacificpower.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 May 2024 21:39:00 GMT
date: Fri, 03 May 2024 21:39:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL