Report - m.exactag.com/ai.aspx?tc=d9717506bc40b07205bbd26a23a8d2e6b6b4f9&url=http:brighamthompson.com/toro/98178//bWlrZS5jYW1wYmVsbEBjc2llbGVjdHJpYy5jb20=

Report Overview

Submitted URL
m.exactag.com/ai.aspx?tc=d9717506bc40b07205bbd26a23a8d2e6b6b4f9&url=http:brighamthompson.com/toro/98178//bWlrZS5jYW1wYmVsbEBjc2llbGVjdHJpYy5jb20=
IP
213.202.235.8
ASN
#24961 myLoc managed IT AG
Submitted
2024-04-19 17:27:26
Access
public
Website Title
Just a moment...
Final URL
e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
m.exactag.com	11114	2010-08-24	2015-04-09	2024-04-18	599 B	1.0 kB	213.202.235.8
brighamthompson.com	unknown	2020-07-12	2023-09-10	2024-03-17	442 B	289 B	162.241.120.242
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-19	5.7 kB	687 kB	104.17.3.184
e6383aba.bc441c9d7cb392e877a8272b.workers.dev	unknown	unknown	No data	No data	1.1 kB	7.7 kB	172.67.178.85

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-19 17:27:00	low	Client IP	172.67.178.85	ET INFO Observed Cloudflare workers.dev Domain in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (46)

	URL	Size	First Seen	Last Seen
	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=876e9a54fdc27130	432 kB	2024-04-19	2024-04-19
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=876e9a54fdc27130 IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 19:27:32 Last Seen2024-04-19 19:27:34 Times Seen2 Hash cc23d827f51d40b15fe253164ced24ae f8e0eba57e57f089b2f5016dd489666a2b0ffabf 993b30e404e203d15da8396f3df841004a42bb0debb429c33a71205b4ba15611 Loading...

	e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com	311 B	2024-04-19	2024-04-20
Pretty URL e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com IP 172.67.178.85 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 18:00:03 Last Seen2024-04-20 12:41:01 Times Seen68 Hash e068ceee0ab18b4ad188084dcb86d520 f88d11a0710549838d4c18b4aab1949cddb03591 a64886ef56ff47519063203bb82f0202a26966219657f097b5ccf8ee1327f4e7 Loading...

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal	3.6 kB	2024-04-19	2024-04-19
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 19:27:32 Last Seen2024-04-19 19:27:32 Times Seen1 Hash cf95dc98ad6094162bff68f183518199 9788d1bbadd1d02a8089d06ba21e61f34918c4a1 bf707a587780535d7d2e98fa88a8647feea548ad168c29316d9079a18b74d0ec Loading...

	challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	42 kB	2024-04-18	2024-04-29
Pretty URL challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP 104.17.3.184 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 21:08:49 Last Seen2024-04-29 16:17:51 Times Seen2594 Hash f94a2211ce789a95a7c67e8c660d63e8 f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f 926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 83299b08202810fd592e478ae4a0cace	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 83299b08202810fd592e478ae4a0cace 478e1cdf93d2658d48bdb27af532c7274c769bbe cc3a9a0e5ea8bf606dc3715fefa5d61f61c8654463db4c12ac3d017c231ed04a Loading...

	#2 Eval - 8b579f3d1f0f73eb72c8a0c303f98df1	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 8b579f3d1f0f73eb72c8a0c303f98df1 402b763e470f6dedd25fa68cb31937f9da9a082c 956e6f9a0d1d30da0d84ebff81deffe7dbd64cbae682b429dbb71fbc40bcab2d Loading...

	#3 Eval - a1f95b2c734a626cd1684ba814130efc	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash a1f95b2c734a626cd1684ba814130efc 8fcbe6ce068aae1f8461fb400cee9abb4f0eac9f a75d40be31384920ad6da31d6c73bf80b738e4ce4739ca0a6c98513352a1858f Loading...

	#4 Eval - e5cc470ccb102b54a1ebf3f7e0615db0	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash e5cc470ccb102b54a1ebf3f7e0615db0 2acfd3deda9e4dc3b714502db8dca9aa52be07be 8d053eef3891f92675dc02a7b5a6d4ea8818d48da1a8813ae6fd39bf0cf84065 Loading...

	#5 Eval - 4190a54ec6612e7653c37bce8809d1ea	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 4190a54ec6612e7653c37bce8809d1ea 350281c4c72d5c8b72ca26450754ee9a2eb0e14b 1c7175c220ad20375df0cbb676b25417476ae0a94e907f81f4c3b0eaf3cf9bf1 Loading...

	#6 Eval - 4d5db65c93c02e5cb991cb0eaab45be4	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 4d5db65c93c02e5cb991cb0eaab45be4 874b61bfbee642915194769f81fd4f124ce87701 d3c399261195305103eec860a19d0c0b96a7101cc5813160a392d71a0b8c0c4c Loading...

	#7 Eval - afcb246157768d12e7a663d964440b18	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash afcb246157768d12e7a663d964440b18 37363c42270b59edf0ae104eba61c3d4f6e4f5e0 db30a059be660be6bf57eed6dbd09bef28b8711bbf7aa4298cd277367ce10b11 Loading...

	#8 Eval - 6f1afb486ab88e77996a974c96c0b2a2	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 6f1afb486ab88e77996a974c96c0b2a2 28c38b4b3d25a215b83f2e5d2ab4bff8ca17e637 da889cf91f45cf7af931b4ee048aa02260c6c192b64c5b1e80de38d3ecedf855 Loading...

	#9 Eval - fe9ab31891e5e3b045f8af19e43d01d4	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash fe9ab31891e5e3b045f8af19e43d01d4 90242ebe82edd9e4562f25cf80f7e4907177819f eb03e8725de40ea0daaefd87a34096dfc18353ccebbad4df7762fe85461c9618 Loading...

	#10 Eval - 7c43b9019c9da257b4d26491d48ef862	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 7c43b9019c9da257b4d26491d48ef862 b1db423cc0fe0c759225b7a76e31197e34e39008 cc0ecbcaa1cb6d3977a1a75e77ec6d3c32538bf4332e537ca1edf517b2282587 Loading...

	#11 Eval - 11730835fd2c7706257b2710dbc0bb47	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 11730835fd2c7706257b2710dbc0bb47 f01a4f85313719f583d4779d106657b73dcc5284 050f2a4858a3fd9f95a90af8bda40862c53464a5bae6c5c8a39a9ea704922e87 Loading...

	#12 Eval - 430b40899d0cb1496109b6386c4b92c7	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 430b40899d0cb1496109b6386c4b92c7 32a685fce8c9d0e105ee0db2293aac018a8ff4b8 00b1a1814978901af159eec5bf26636e93f2fb86a362408c0af4eaf17a994f85 Loading...

	#13 Eval - 04ae8daf38c0516e40e8f1dcd9e100d4	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 04ae8daf38c0516e40e8f1dcd9e100d4 e1532c29b3ecdbec31af2647b1f67a0eb5e40357 342516e1b8e98db955f910739f1cd1c8b18579b8da4c83c7a9bf018339501472 Loading...

	#14 Eval - 36c29e3ff174e652bd534227d02596ff	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 36c29e3ff174e652bd534227d02596ff ea99abf23949652e485c0bc899d8a80265994712 6fe6febaa83eb5082df23ea4c6e2e52d47da3bae4f532147c15779036d6bb77e Loading...

	#15 Eval - 448c6f002fd4632eab6c3bc8c552f5ac	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 448c6f002fd4632eab6c3bc8c552f5ac 41635269972f1a743af61b5280dc27d57f293c8b 73adee86249250201f8ae8dca58dbf805de8e95f784e3e84779fa01440397a6d Loading...

	#16 Eval - 30c02b781441217ffdfc420a2a12e963	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 30c02b781441217ffdfc420a2a12e963 fb4c8689f92d44b14e4fb2583d4e5f6ed4d981b4 406dae21a17fba7b6d2b967679047cb8b2aaf7b9a529911f3ed7d49f96f8e3d6 Loading...

	#17 Eval - 52f0ea0f576ed6fb71554d679e4b30c3	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 52f0ea0f576ed6fb71554d679e4b30c3 bcdeccd6d2ea2b84a08fa34084d0d1dc95eebca4 bfccbb39bbae7b50d3be2fba6ea9bfae647162fac27647181d91969d30d2ea7b Loading...

	#18 Eval - 3455677e730ab7d4b2e17485332ca023	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 3455677e730ab7d4b2e17485332ca023 d09c25960882b21693e395e5c698d67b27ebce8d 8c9e88090bee7ea7930bd61497255e04c52f32f9be4d1f7cc7153e755fcd86f7 Loading...

	#19 Eval - 03e967ef0a12af307ff990b089a5c460	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 03e967ef0a12af307ff990b089a5c460 506f55fde6e8e33f6459c6aafc7e5f277635124d e03fe948a7e48505065b89274f6a4e581633927aef12d549047094f4b1869e8a Loading...

	#20 Eval - 6c4e3494b21c638b4ea9b717cf7b034f	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 6c4e3494b21c638b4ea9b717cf7b034f 409be53fe7b19d158be0474f09cf76e5f9e9dc9f d0580b7a0cfea9385e594404b8e345d1429e77b3aa5d3803738a08ad7adc9714 Loading...

	#21 Eval - bc367fa90240bf8d746acea6d1e80ecc	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash bc367fa90240bf8d746acea6d1e80ecc 4ad7bd69af07f0a54cdbf86fb9b02de9a7509b28 4ef7b2d71a56a7980eabfaf7b10444d7e8ce8287ad27f59bd410f647c66359f2 Loading...

	#22 Eval - 43c81e43a6e7d9140033055ff3e04983	62 B	2024-04-18	2024-04-29
Pretty Observations First Seen2024-04-18 21:08:51 Last Seen2024-04-29 16:17:50 Times Seen2736 Hash 43c81e43a6e7d9140033055ff3e04983 b0eca03913678cb38c488c7c79cc4f9d2755ea17 3f7ef931c657c4333a401c40e8b0b8d1ff3b164542af45e14242314c0ec39f34 Loading...

	#23 Eval - 4a65c153d2bfafa5eef3c301e7a15493	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 4a65c153d2bfafa5eef3c301e7a15493 c4ae213b6ba34393fa160f2aa9ee18b6a8c3cf54 446f092b9f1f225794a0416d21fbec071288cc48f39da5805ef721f7b8fa1d63 Loading...

	#24 Eval - fa2dba595f3647c50ef5adaac4538d31	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash fa2dba595f3647c50ef5adaac4538d31 dad5841df3617bee6f0b9ce930673ef39c24b013 097ab852b6cf540db84cf4ad7f2542d46654d9a24f9b617a9a3a9d816b7738f5 Loading...

	#25 Eval - 79fbaab0db365a716aeee99563c5944b	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 79fbaab0db365a716aeee99563c5944b 5c09f6e5d364b5d5e1330d7fd7472bdadc833d30 d43bdab68aa4ffb0dfea0c04a172868f5e54502318687f38aa8679d2c020a3f1 Loading...

	#26 Eval - ae599dc7dc8373ad3e908676040a6d1a	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash ae599dc7dc8373ad3e908676040a6d1a 2c564a56345b70413861cc3f9d880d48766b7254 fe144522b890f97b9c1a75b7dca1295980b4b68ec92b160d57f56f76b3761edd Loading...

	#27 Eval - ecb5805f80d411cec78b1e060c1ad27c	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash ecb5805f80d411cec78b1e060c1ad27c 8ba2b543e7e8de72ed78632f986f5164083f6f5e f0d9f5ce19975a82903b5d09a08bd8037575509956a2298281d93d8a673775a6 Loading...

	#28 Eval - 0059092d71afe13d681560ec08a30886	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 0059092d71afe13d681560ec08a30886 14e8b10776674eed3e65e72945a1f6403d6ae683 c7e30d2054b6657c918fb7f7ac3a6d0252a0d46884869023ca4cf01241436c4f Loading...

	#29 Eval - a0e8080ce50304c6e5105992a78adf3c	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash a0e8080ce50304c6e5105992a78adf3c d18883f61a0afb0e0fc0842989ec591eda29869f 15eff7581a7465397eadaf8e282bca6ac40ffc8eec24b653c5e988a9ff4971e1 Loading...

	#30 Eval - 20b8cd172ffb719da99b0021bdaee673	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 20b8cd172ffb719da99b0021bdaee673 60c9cd97eb228150208a0114c7621ed7a5df4c86 e7f832ec4c144d14474c79c7d9df2a18461a7c0e629eea3b721d5c176981863a Loading...

	#31 Eval - 262a715de8c5961388687be300bed040	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 262a715de8c5961388687be300bed040 e3b9b6f1d1c08aa2865daeef769a6dc506665697 93eda7bdf102a6589bb6b4db0c5158aa7c8ca95214b094463d8c9307a2140f3b Loading...

	#32 Eval - f5d90a40ac8a96e4866d9055290c0acf	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash f5d90a40ac8a96e4866d9055290c0acf d13030ddc314b6c7e0d0739541d5c0aef9e5e95a baf9179525f6c863b6ab64c17d24c5f064bb5564a8eba9a109bcba2f4a00df63 Loading...

	#33 Eval - 3934ec4ee22748921a7a89ce487f1a0a	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 3934ec4ee22748921a7a89ce487f1a0a f390976fdd86cdfcc0e8805aaf2e2f8753dbd537 16f43eb0d4f808aee44202987d5c3f7b82d8bf46318e5796d12992f2481b290c Loading...

	#34 Eval - 721069f8b420c69e060902c36a7f6d81	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:33 Times Seen1 Hash 721069f8b420c69e060902c36a7f6d81 522d9fa4e417131854199cb43a5b0b9d73607796 b1d5b80a3e1505ee995812fdd54ddaaea6fed3b53d58407a072fb71b04741573 Loading...

	#35 Eval - 5b9d7e5578bbbccb72bc538d166b4932	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:33 Last Seen2024-04-19 19:27:34 Times Seen1 Hash 5b9d7e5578bbbccb72bc538d166b4932 2cfefa0e9df8ebe20552911a8e8e673b7036ed39 c44b5d062ca509e402de0acc41f2f0c3607ef8e84813b76ee42a8a03e7c2dbbd Loading...

	#36 Eval - f856455e65d23cf6a6fdabc4a40b7049	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:34 Last Seen2024-04-19 19:27:34 Times Seen1 Hash f856455e65d23cf6a6fdabc4a40b7049 5d9d650bad4525a5b57f16e82190a6244b5388cb 3789fc6ced37e520e4a57d1ce95fb012ccda5b1a720650cd644aede93fffeaa2 Loading...

	#37 Eval - 5218f76b6f3c4f0ce8987c028224ddc3	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:34 Last Seen2024-04-19 19:27:34 Times Seen1 Hash 5218f76b6f3c4f0ce8987c028224ddc3 81641db3bf669f820cb29b15eb449cf5d58d296a b407b66437e45a42950ac25565e5f94f03e0fa3c7d354631465acbe068b11b2c Loading...

	#38 Eval - 04c7332eb4ca49074627f2850cf19482	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:34 Last Seen2024-04-19 19:27:34 Times Seen1 Hash 04c7332eb4ca49074627f2850cf19482 970e3dd9046adb2bcb02437fe7a75ad5a7e0cbd7 2ab8ac867b830042e8095b9d001ba9659166c50ce02840f5bfd1bb3d63d99dd1 Loading...

	#39 Eval - ab3af6d3325e13a3b08e8055385338d4	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:34 Last Seen2024-04-19 19:27:34 Times Seen1 Hash ab3af6d3325e13a3b08e8055385338d4 88d523dca9259417860d0e2e4b2e9dc6ee7eadcc 8fc9ac3e268e1b6b25b22152a5f91b82c102e19933c8769c33ab0f433faabf23 Loading...

	#40 Eval - 32eead0169608a18cde77d93fd577047	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:34 Last Seen2024-04-19 19:27:34 Times Seen1 Hash 32eead0169608a18cde77d93fd577047 b8035f239207440ed59c9681450d2fda39ff78a1 580eb71ae01d5afe7c4ce49cc7fc24ca8822dbd9d895353f6cef097c13e848dc Loading...

	#41 Eval - 9cb999a524ac0eb7d2ade389d4bb4e00	28 B	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 19:27:34 Last Seen2024-04-19 19:27:34 Times Seen1 Hash 9cb999a524ac0eb7d2ade389d4bb4e00 af6e0447ca5a95988cd4e39be08d10bac5c022ff bef5626da5e228e5b298d150f46c87b7c4660c13c0b777bcb455ae08ca2eca00 Loading...

	#42 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-02
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-02 23:11:22 Times Seen351209 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

HTTP Transactions (13)

	URL	IP	Response	Size
	m.exactag.com/ai.aspx?tc=d9717506bc40b07205bbd26a23a8d2e6b6b4f9&url=http:brighamthompson.com/toro/98178//bWlrZS5jYW1wYmVsbEBjc2llbGVjdHJpYy5jb20=	213.202.235.8		0 B
URL m.exactag.com/ai.aspx?tc=d9717506bc40b07205bbd26a23a8d2e6b6b4f9&url=http:brighamthompson.com/toro/98178//bWlrZS5jYW1wYmVsbEBjc2llbGVjdHJpYy5jb20= IP 213.202.235.8:0 ASN #24961 myLoc managed IT AG File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /ai.aspx?tc=d9717506bc40b07205bbd26a23a8d2e6b6b4f9&url=http:brighamthompson.com/toro/98178//bWlrZS5jYW1wYmVsbEBjc2llbGVjdHJpYy5jb20= HTTP/1.1 Host: m.exactag.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Found Cache-Control: max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Type: text/html; charset=iso-8859-1 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fr, 19 Apr 2024 05:26:59 GMT Location: http:brighamthompson.com/toro/98178//bWlrZS5jYW1wYmVsbEBjc2llbGVjdHJpYy5jb20= P3P: policyref="https://m.exactag.com/w3c/p3p.xml", CP="NOI NID STP STA CUR OUR" Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS Access-Control-Max-Age: 1000 Access-Control-Allow-Headers: * X-ET-Code: 20 X-ET-Camp: 0 X-ET-Monitoring: 1 Accept-CH: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64 Strict-Transport-Security: max-age=31536000 Date: Fri, 19 Apr 2024 17:26:59 GMT Connection: close Content-Length: 0 cross-origin-resource-policy: cross-origin X-Xss-Protection: 0 X-Content-Type-Options: nosniff

	brighamthompson.com/toro/98178//bWlrZS5jYW1wYmVsbEBjc2llbGVjdHJpYy5jb20=	162.241.120.242		0 B
URL brighamthompson.com/toro/98178//bWlrZS5jYW1wYmVsbEBjc2llbGVjdHJpYy5jb20= IP 162.241.120.242:0 ASN #19871 NETWORK-SOLUTIONS-HOSTING File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /toro/98178//bWlrZS5jYW1wYmVsbEBjc2llbGVjdHJpYy5jb20= HTTP/1.1 Host: brighamthompson.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 19 Apr 2024 17:26:58 GMT Server: Apache refresh: 0;url=https://e6383aba.bc441c9d7cb392e877a8272b.workers.dev?qrc=mike.campbell@csielectric.com Content-Length: 0 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8`

	challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	104.17.3.184	302 Found	0 B
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e6383aba.bc441c9d7cb392e877a8272b.workers.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Fri, 19 Apr 2024 17:27:00 GMT content-length: 0 access-control-allow-origin: * cache-control: max-age=300, public cross-origin-resource-policy: cross-origin location: /turnstile/v0/b/471dc2adc340/api.js?onload=onloadTurnstileCallback vary: Accept-Encoding server: cloudflare cf-ray: 876e9a544d3256ae-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D	104.17.3.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Fri, 19 Apr 2024 17:27:00 GMT content-type: image/png content-length: 61 cache-control: max-age=2629800, public server: cloudflare cf-ray: 876e9a559e607130-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?onload=onloadTurnstileCallback	104.17.3.184	200 OK	50 kB
URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?onload=onloadTurnstileCallback IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (42414) Size 50 kB (49868 bytes) Hash f94a2211ce789a95a7c67e8c660d63e8 f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f 926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b HTTP Headers `GET /turnstile/v0/b/471dc2adc340/api.js?onload=onloadTurnstileCallback HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://e6383aba.bc441c9d7cb392e877a8272b.workers.dev/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Fri, 19 Apr 2024 17:27:00 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * cache-control: max-age=31536000 cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 876e9a546d5656ae-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/876e9a54fdc27130/1713547621042/1ed6281b199dfe7b1c83a2a4039d3335d58d31eb87649fd864343fd1a45abb05/YdYut4FESzMnNjk	104.17.3.184	401 Unauthorized	1 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/876e9a54fdc27130/1713547621042/1ed6281b199dfe7b1c83a2a4039d3335d58d31eb87649fd864343fd1a45abb05/YdYut4FESzMnNjk IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type very short file (no magic) Size 1 B (1 bytes) Hash ff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/pat/876e9a54fdc27130/1713547621042/1ed6281b199dfe7b1c83a2a4039d3335d58d31eb87649fd864343fd1a45abb05/YdYut4FESzMnNjk HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 401 Unauthorized date: Fri, 19 Apr 2024 17:27:02 GMT content-type: text/plain; charset=UTF-8 content-length: 1 www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gHtYoGxmd_nscg6KkA50zNdWNMeuHZJ_YZDQ_0aRauwUAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIB7WKBsZnf57HIOipAOdMzXVjTHrh2Sf2GQ0P9GkWrsFABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20 server: cloudflare cf-ray: 876e9a5dd94f7130-OSL alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/876e9a54fdc27130/1713547621045/YHgytCeXb87yABo	104.17.3.184	200 OK	61 B
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/876e9a54fdc27130/1713547621045/YHgytCeXb87yABo IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type PNG image data, 38 x 77, 8-bit/color RGB, non-interlaced Size 61 B (61 bytes) Hash 31bde90b5c4e3590b6e13803484e5066 39654be4d6341c6972ec447ce2e45ccaf1aaae8e 09b4c8001b0dbee766f62db7fea9e4bbfdbf17cd0415196be52efa1e49a301f3 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/i/876e9a54fdc27130/1713547621045/YHgytCeXb87yABo HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Fri, 19 Apr 2024 17:27:02 GMT content-type: image/png content-length: 61 server: cloudflare cf-ray: 876e9a5e59f57130-OSL alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/8436383:1713543310:alUUujKeAyhgx8Vf9OGNGCUJXW0tnLJ5Upkd0_Rp2p0/876e9a54fdc27130/e997ded2a66a793	104.17.3.184	200 OK	22 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/8436383:1713543310:alUUujKeAyhgx8Vf9OGNGCUJXW0tnLJ5Upkd0_Rp2p0/876e9a54fdc27130/e997ded2a66a793 IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (22544), with no line terminators Size 22 kB (22544 bytes) Hash d359bb151dcee4e3e067658f280a4059 7305a4c8dd93666b7124d11d7fae969bed979686 e12bca551fe8fa40c53d69bede0abb476e43a2a5a37e78035e5fe2dcbfddfe2b HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/8436383:1713543310:alUUujKeAyhgx8Vf9OGNGCUJXW0tnLJ5Upkd0_Rp2p0/876e9a54fdc27130/e997ded2a66a793 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: e997ded2a66a793 Content-Length: 25912 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Fri, 19 Apr 2024 17:27:02 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: zYiM/YAMSK1+/Uwur1STUeThWPaUCOlRVb0igqZi8ojK3HhjleI5f+rbJ5Kn4fY5$qSMMr4v2JG73Hr8VuCetoQ== vary: accept-encoding server: cloudflare cf-ray: 876e9a5feb7e7130-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/8436383:1713543310:alUUujKeAyhgx8Vf9OGNGCUJXW0tnLJ5Upkd0_Rp2p0/876e9a54fdc27130/e997ded2a66a793	104.17.3.184	200 OK	97 kB
URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/8436383:1713543310:alUUujKeAyhgx8Vf9OGNGCUJXW0tnLJ5Upkd0_Rp2p0/876e9a54fdc27130/e997ded2a66a793 IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 97 kB (96936 bytes) Hash 07e72b7b43f0ba9dd3211a6897f467d2 c8f9e7330582a735b347b8834bc6f71b886a6514 fa2cd819e0007575ffb8c967f2b9111a6a0d64c360d5d095bc287b5fd1349f42 HTTP Headers POST /cdn-cgi/challenge-platform/h/b/flow/ov1/8436383:1713543310:alUUujKeAyhgx8Vf9OGNGCUJXW0tnLJ5Upkd0_Rp2p0/876e9a54fdc27130/e997ded2a66a793 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal Content-type: application/x-www-form-urlencoded CF-Challenge: e997ded2a66a793 Content-Length: 2651 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 19 Apr 2024 17:27:01 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: fM7cGUrwvNZMB90WdCmi0k0Ot6I+JFoVt7WW73G4/3j9whNmVyULPIu/ypo2quO3O0JgLGFWQ617vEOKK1lgC2taRQ/RclSpKcK/HqibjR2b/rnEHWZTVgub3HPlbesg8eFOgnVFBhSMv71Lx1E55R0zwOdZAxEQPf7cY7J92u6NIq1ZLQmJ+20WM50RDCxFRWkfmEYawS2CqrRwkdyYueyIE79l0E79bRMusRO6OrVuh7jyBJvm+zuD4h9oV5tnABe/rhu8c8KLvHRlXpchhVKciwXjbhUnxDsNooDAdejccnCuttD9+8C4xe7VLFIMLnr9JMwoOm709vbE9tG5dbJWYGqBoBQpos9H8im2n7HX+Max6BQrBbizHQCvByVEDk9VXTYA1zZqsQj1Zr7ihg==$XgsWlTs8JLpeAvZtGi954A== vary: accept-encoding server: cloudflare cf-ray: 876e9a5769227130-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	e6383aba.bc441c9d7cb392e877a8272b.workers.dev/favicon.ico	172.67.178.85	200 OK	3.3 kB
URL GET HTTP/3 e6383aba.bc441c9d7cb392e877a8272b.workers.dev/favicon.ico IP 172.67.178.85:443 ASN #13335 CLOUDFLARENET Requested by https://e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com Certificate IssuerGoogle Trust Services LLC Subjectbc441c9d7cb392e877a8272b.workers.dev Fingerprint78:1E:5C:29:79:0F:C8:6D:59:72:B9:BD:46:81:35:45:BD:32:6E:BE ValidityFri, 19 Apr 2024 11:31:38 GMT - Thu, 18 Jul 2024 11:31:37 GMT File type HTML document, ASCII text, with very long lines (3271), with no line terminators Size 3.3 kB (3255 bytes) Hash b19a1d688570a9230c690377de9c2f6d 902d3b283d3f3bd8a46b207bd36b8c3c3de58dc7 01c879531898f0586152c3c11539c5f3d9c356bbeeea9dba4f3d572e577480e9 HTTP Headers GET /favicon.ico HTTP/1.1 Host: e6383aba.bc441c9d7cb392e877a8272b.workers.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 19 Apr 2024 17:27:00 GMT content-type: text/html;charset=UTF-8 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n8RBTqPR9Qr71XUo975ZZPwa69AaTcOAtS%2Bu7AxeSAZTPA6EBeI2IgitpQ9I9q1jKWSUcgF%2Bnn3OT4N37WssZeaXeBBF9OUNObdEuY8L65qKZLK96T%2FxhJp35qDKV5fRDtKGTe6M50ySacYq0VP2Wk%2B3znb5VF0cf0vHKqm07Kg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 876e9a54ef09b51e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=876e9a54fdc27130	104.17.3.184	200 OK	432 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=876e9a54fdc27130 IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 432 kB (431710 bytes) Hash cc23d827f51d40b15fe253164ced24ae f8e0eba57e57f089b2f5016dd489666a2b0ffabf 993b30e404e203d15da8396f3df841004a42bb0debb429c33a71205b4ba15611 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=876e9a54fdc27130 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Fri, 19 Apr 2024 17:27:00 GMT content-type: application/javascript; charset=UTF-8 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 vary: accept-encoding server: cloudflare cf-ray: 876e9a55ae637130-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com	172.67.178.85	200 OK	3.3 kB
URL User Request GET HTTP/2 e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com IP 172.67.178.85:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectbc441c9d7cb392e877a8272b.workers.dev Fingerprint78:1E:5C:29:79:0F:C8:6D:59:72:B9:BD:46:81:35:45:BD:32:6E:BE ValidityFri, 19 Apr 2024 11:31:38 GMT - Thu, 18 Jul 2024 11:31:37 GMT File type HTML document, ASCII text, with very long lines (3271), with no line terminators Size 3.3 kB (3255 bytes) Hash b19a1d688570a9230c690377de9c2f6d 902d3b283d3f3bd8a46b207bd36b8c3c3de58dc7 01c879531898f0586152c3c11539c5f3d9c356bbeeea9dba4f3d572e577480e9 HTTP Headers GET /?qrc=mike.campbell@csielectric.com HTTP/1.1 Host: e6383aba.bc441c9d7cb392e877a8272b.workers.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 19 Apr 2024 17:27:00 GMT content-type: text/html;charset=UTF-8 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rpe8gtJNW94gzGlXdlLowpZlmLd60RApCgkp0QO5UcK4g5Bcvwh6Bi9aNKdbgp32uvJ935EutfsYYWFcYn7IMmsI7T1%2BUHBrVAmhE88qKranHu%2BhhaOcT5EOs4stV4UbTWUDGuJ%2F5%2FQE4EXzqIRLuzLAey4uMuiasclmohslZ4Y%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 876e9a536d96b515-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal	104.17.3.184	200 OK	80 kB
URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal IP 104.17.3.184:443 ASN #13335 CLOUDFLARENET Requested by https://e6383aba.bc441c9d7cb392e877a8272b.workers.dev/?qrc=mike.campbell@csielectric.com Certificate IssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (41702) Size 80 kB (80014 bytes) Hash e922b40a672329ac1a273bdfc9e1c3e8 b43684570d17d3f48a3b010ea4019c45303f11ff 4338ab553619223d76f83192c57fb0ed20b3f7a0e0614808f8f32ccfdbc61549 HTTP Headers GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/e3csz/0x4AAAAAAAXm36J_lt_bFlKI/auto/normal HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://e6383aba.bc441c9d7cb392e877a8272b.workers.dev/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 19 Apr 2024 17:27:00 GMT content-type: text/html; charset=UTF-8 origin-agent-cluster: ?1 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 referrer-policy: same-origin critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() cross-origin-opener-policy: same-origin content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self' accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-resource-policy: cross-origin document-policy: js-profiling vary: accept-encoding server: cloudflare cf-ray: 876e9a54fdc27130-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (46)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash