{"report_id":"e6c3a515-eeae-4096-aea3-f2fad2c9b99a","version":6,"status":"done","tags":["phishing","microsoft","outlook"],"date":"2023-11-15T17:11:07Z","url":{"schema":"http","addr":"selligenttier.naylorcampaigns.com/track?type=click\u0026enid=ZWFzPTEmbXNpZD0mYXVpZD0mbWFpbGluZ2lkPTYyNDExMiZtZXNzYWdlaWQ9NjI0MTEyJmRhdGFiYXNlaWQ9NjI0MTEyJnNlcmlhbD0xNjgyODQwNyZlbWFpbGlkPVRpbUBFbGV2YXRlZGNnLmNvbSZ1c2VyaWQ9MjExMTg2JnRhcmdldGlkPSZtbj0mZmw9Jm12aWQ9JmV4dHJhPSYmJg==\u0026\u0026\u00269999\u0026\u0026\u0026afrotech2021.org/mics/nQQoO/aGRheUBrbmlnaHRzY29tcGFuaWVzLmNvbQ==","fqdn":"selligenttier.naylorcampaigns.com","domain":"naylorcampaigns.com","tld":"com"},"ip":{"addr":"144.202.229.149","port":0,"asn":11383,"as":"AS-TIERP-11383","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/#hday@knightscompanies.com","fqdn":"fk8yexnlsp0gv69.cojeguqipk.ru","domain":"cojeguqipk.ru","tld":"ru"},"title":"fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/#hday@knightscompanies.com"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T13:36:25Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ocsp.netsolssl.com","ip":{"addr":"172.64.149.23","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2005-01-31","domain_rank":8381,"first_seen":"2012-05-20 23:51:49","last_seen":"2023-11-15 08:19:00","alert_count":0,"request_count":1,"received_data":964,"sent_data":332,"comment":"","tags":null,"fingerprints":null},{"fqdn":"selligenttier.naylorcampaigns.com","ip":{"addr":"144.202.229.149","port":0,"asn":11383,"as":"AS-TIERP-11383","country":"United States","country_code":"US"},"domain_registered":"2008-01-21","domain_rank":0,"first_seen":"2021-04-20 09:07:12","last_seen":"2023-11-15 05:15:56","alert_count":0,"request_count":1,"received_data":1868,"sent_data":802,"comment":"","tags":null,"fingerprints":null},{"fqdn":"afrotech2021.org","ip":{"addr":"69.49.230.170","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"domain_registered":"2019-01-24","domain_rank":0,"first_seen":"2021-02-03 12:12:20","last_seen":"2023-11-15 11:07:41","alert_count":1,"request_count":1,"received_data":272,"sent_data":520,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":439,"first_seen":"2012-09-30 02:15:09","last_seen":"2023-11-15 05:09:16","alert_count":0,"request_count":1,"received_data":26134,"sent_data":467,"comment":"","tags":null,"fingerprints":null},{"fqdn":"challenges.cloudflare.com","ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":0,"first_seen":"2021-10-20 07:02:03","last_seen":"2023-11-15 13:41:23","alert_count":0,"request_count":9,"received_data":427557,"sent_data":5592,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fk8yexnlsp0gv69.cojeguqipk.ru","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"domain_registered":"2023-11-12","domain_rank":0,"first_seen":"2023-11-14 19:23:52","last_seen":"2023-11-15 09:35:15","alert_count":1,"request_count":2,"received_data":7935,"sent_data":1001,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1c862db5f2555377c2dc1e62ed7b3981","sha1":"c29e6dc25c08a70995127ec13ded6f80d9a36174","sha256":"27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac","sha512":"31143265b96385ef4b575b72591775139057dff85891be61591e3d55259b6d1dc95d86a0feec40c801d38e64278cfbe50c3c2a16757f986ad40f716935bf2bb2","ssdeep":"","tlshash":"0c8000ac38802000803328e8002fa8aaa020083030800e022a02e8888cb222c822a8ae","size":26,"data":"","first_seen":"2023-04-11T21:13:06Z","last_seen":"2026-06-01T18:12:08.323372Z","times_seen":324539,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/api.js","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6142a5f5c66e2c1be52ee9506a565962","sha1":"c3b39e8352efd1e0619b6dd62af8b2a917622868","sha256":"51cd12da61a7401c73472b2ac77067adfa30e9fc0545b4b7c240e9154e011fc7","sha512":"3de194e4c8f32703cfee9e2a48230d21301e28a39beefb36dcb2b8df26b962b3a508e7fd8fe55aca2f619293e293cdf64459bf5d91526cbceda770396765d5e2","ssdeep":"768:3YpyCIUTKuBT1ytljuXeMDKLFn76p+B5nLZ73akHgMO4B4oq0HVi:30nKuBT1Yj7MDCKp","tlshash":"9ff229993187343187ee41e0207b67877339ba3ae58cc840d85bc97539bcd8ad137ba9","size":34254,"data":"","first_seen":"2023-11-07T13:44:12Z","last_seen":"2023-11-30T20:53:42Z","times_seen":32842,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"data","addr":"data:text/javascript;base64,ZG9jdW1lbnQud3JpdGUoZGVjb2RlVVJJQ29tcG9uZW50KGVzY2FwZShhdG9iKGRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoImVlbml6WEx6dkVPQ2hhZiIpLmdldEF0dHJpYnV0ZSgiZVhiTGtuRGZUR2NoUlNJIikpKSkpO2lQVGZ3UGtvU1Rwa3lyd0Z5bER6PSJlSVFUWUFhUExlVHhHQk0iOw==","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"6e37309ea8ccc264b04ba7e79c1694ed","sha1":"157f3c816a62b09c7191a4bc6faca690f0202d70","sha256":"0c68a28adbfca6c852f54cbc3c0472600352522f54d3a0a792f57fb34c9467c3","sha512":"f2509d04ccfe6ae005af75713bf447ab72cc6960089dac57c4b06d9b29a7a9e50048ed32097baac04bb08695519f5acc3eb0b20625cb67f43290bab907965d67","ssdeep":"","tlshash":"a6c08cb24210ea364d2a06568228dfd6eaed3e6cf80a4c002c4b4ec3728cd2240100a6","size":163,"data":"","first_seen":"2024-08-20T19:26:29.413298Z","last_seen":"2024-08-20T19:26:29.413298Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"2c5dd26e7a0a07734411bd920719485a","sha1":"c8588828ae537191954810b131519b1ad2f29cdc","sha256":"5e36bb1990bd1d2c7bab821b85e8d73b9a588bc8a6205a26ebbc07bb0334ffbd","sha512":"418157821706027124ce13af0e7bd2a5ab434518e04624bbfe79ba5648dc4e7e907b7eee7cf6b46ef2340fb84f349df7fc02f21524abfc7ab4213c27c85cdd71","ssdeep":"","tlshash":"b561e8f695b842756aa9b138131fa200653512af1c48b46d7e4cd9089f6d4bf50f1bc9","size":3448,"data":"","first_seen":"2024-08-20T19:26:29.413942Z","last_seen":"2024-08-20T19:26:29.413942Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"17ed29f0b67a3f489438ca5b6147e466","sha1":"bf0592c0f5f4a42feaeaf723e8ade7e763294131","sha256":"b2c3a4f6f24b41e09b4a1cdee34b18eb4be1da3af5bcdff83fa7ab92f7233860","sha512":"f55aad29a1190e4370454a4c008e70821155d586877ec68d2a17e05040f77376b34b43e40ba022d596f51f3228949f674c80c1c0164452be37952105a05f4027","ssdeep":"","tlshash":"aff0496eb0192472a4742e223717b3c6bb2a615463b33493b22d4554f0128eb82a7e88","size":651,"data":"","first_seen":"2024-08-20T19:26:29.414933Z","last_seen":"2024-08-20T19:26:29.414933Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=82691c373a4b5690","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f1ac0f38466e7779e44356f4e2ef3cc6","sha1":"b3e583e0fa345675704c5470279297ab694332c7","sha256":"13bf1d4232a11dd71a740098e7623c4a33ad8fa69413914be278608c223dc567","sha512":"7d0b89be041308f03091f131e1284b868f21d2f428698e19cbe92f4b09923087ac7d773c50df3b1c8d6b12277f24ceac898dad20efdabf505e1567b19b2ff0e3","ssdeep":"3072:8uVNYF7+WIGXidjo4Ugrp2FPk4kcH4gYACebek7R3Txf3ka:8aYF7/tcgekVjtUa","tlshash":"4c0484cc7b81b99905237d7870277216709f3e456c7c29ddea10f0d42af630a92d6aee","size":179780,"data":"","first_seen":"2023-11-15T18:09:15Z","last_seen":"2023-11-15T18:40:59Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b56ad0f2a74f6a242146646eccac4c8c","sha1":"67cf37ed8d42836d2737ee9556c3459c0bef2257","sha256":"9afcccc18839b990b6152be7e42e5a2d660289e2aba4f9b28bc6d637c749c5cd","sha512":"bcba7442c6100d282d915c74fe0ccd408588753d0bef8dddeecf4f6c07326b68f74e13d46ab344ab94968d5542661aa4d8b9a8824713d5936e14ec7d4925c49c","ssdeep":"","tlshash":"e7e07d19388192b03bc3b7e95d2bdecdccf324d99437e01104cc5848942fa1d91d344b","size":318,"data":"","first_seen":"2024-08-20T19:26:29.415834Z","last_seen":"2024-08-20T19:26:29.415834Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":[{"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-06-01T18:10:59.853642Z","times_seen":725157,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"c76baa01dd70215163561b37aea7db87","sha1":"c7856fc643ce923384266b97c10b9ab4e2de3c6e","sha256":"d1bd71111a73f2d379ffde1e50d8c0dc04e089c4205986003b4351942caee84a","sha512":"627b4cf62c44657d45eb3518762b557837c56a534c663572ccbf1e7d6b8502cabfe1fd0e5feab6b6652cc7945811590ed0e83648c8198dc0cba35956a57b7e23","ssdeep":"","tlshash":"f2c02bc6f32809032e18180f3c9c80232810127ac984c8e7833e344708cc5c001b9248","size":144,"data":"","first_seen":"2023-11-07T13:07:13Z","last_seen":"2024-08-20T20:33:21.263817Z","times_seen":12294,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"134a390698d4747a1bdba68887ebbd73","sha1":"1ad3e0568092c7b64303fe86e701a8b56b0708bf","sha256":"6821abb2f3010aff5a617d3d18218c9d1c3bef86750779ccd00abd7314db5e35","sha512":"36ae1d22065c4ee8c58633b01cb716134671c66ad1548eb65882487cc6e74402a3a993ea30fdca639bd26fac8725a557df0914cd5294978473f9e70618d81ad4","ssdeep":"","tlshash":"c0c08c2ea0398ca96337307f38822c008007ee84e1137ac962c7038002030b34381d21","size":164,"data":"","first_seen":"2023-11-07T14:10:12Z","last_seen":"2024-08-20T20:33:04.427047Z","times_seen":12219,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"write":[{"md5":"92a55af8791899725cc546dcc6ec905b","sha1":"d502763403dc865f590ef9b62c22a6688c05394a","sha256":"b1759be55151485067bf632b3fae0f8eaa89617751530d1eb8bc01be0ddc0e8f","sha512":"5861859773fc3dcc7a3b6d22d935120c24e62eef4a9f01c10f24b8c071e1ed0f47e6842d0aba817e866f9357c76263b033365b9f690a76c9f6d57e889fb1a026","ssdeep":"","tlshash":"3b71a9a5d0b603b338b396c22e92af25b4f26107e55610c153ed22645edbf77715bf04","size":3692,"data":"","first_seen":"2024-08-20T19:26:29.418825Z","last_seen":"2024-08-20T19:26:29.418825Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"a27c88365ce7cd8f68390c4c024e29e1","sha1":"1d15a8d192608f93096ef8d9aa623c360dbb7351","sha256":"0ca2b3df8f04565300bafcd6c929a1d310d2a761ff9f8dda200f3f6cffab50ce","sha512":"1ce1d149845e13e3f312f848dcbd973d241a0815da5aa7202a2db68160a84a21e9585bc115a3020ffc995139a8a25f44c0f28f51e5f9a9099753708e937d6584","ssdeep":"","tlshash":"e671c264acf3509185cbd30cbbe0ed861be0b1a3919a5656bb4c874ec7857ec8957f02","size":3574,"data":"","first_seen":"2023-11-07T13:07:13Z","last_seen":"2024-08-20T20:33:21.268002Z","times_seen":72071,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"http","addr":"ocsp.netsolssl.com/","fqdn":"ocsp.netsolssl.com","domain":"netsolssl.com","tld":"com"},"ip":{"addr":"172.64.149.23","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-15T17:10:50.673389237Z","timestamp":1700068250673,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: ocsp.netsolssl.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 15 Nov 2023 17:10:50 GMT\r\nContent-Type: application/ocsp-response\r\nContent-Length: 472\r\nConnection: keep-alive\r\nLast-Modified: Mon, 13 Nov 2023 17:19:41 GMT\r\nExpires: Mon, 20 Nov 2023 17:19:40 GMT\r\nEtag: \"0f6f51776c977ea16424d199e71562441e02815f\"\r\nCache-Control: max-age=432783,s-maxage=1800,public,no-transform,must-revalidate\r\nX-CCACDN-Proxy-ID: mcdpinlb5\r\nX-Frame-Options: SAMEORIGIN\r\nCF-Cache-Status: DYNAMIC\r\nServer: cloudflare\r\nCF-RAY: 82691c244c377130-OSL\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"9d8a5e67dcd74aa5a65163f5c09095e4","sha1":"0f6f51776c977ea16424d199e71562441e02815f","sha256":"3903f04ab4520871fdbb6c904fbb98e6274c4a84b24afb9827a14ab4f114bef3","sha512":"bb1da8832b1ae8529c5fdd2d10cad2ff1a97601f6cdf0194ffe8307fb47b5fe18da276bd629a18af2ef6301c00b4ac1d281461bfd1f3bd6ab13abd34e01b73e8","ssdeep":"","tlshash":"5ff054580b203d8c86044ac82a465cbe1a03603006a14f1fd56c9c6caf915d66741108","first_seen":"2023-11-13T18:21:52Z","last_seen":"2023-11-17T05:59:20Z","times_seen":3757,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"selligenttier.naylorcampaigns.com/track?type=click\u0026enid=ZWFzPTEmbXNpZD0mYXVpZD0mbWFpbGluZ2lkPTYyNDExMiZtZXNzYWdlaWQ9NjI0MTEyJmRhdGFiYXNlaWQ9NjI0MTEyJnNlcmlhbD0xNjgyODQwNyZlbWFpbGlkPVRpbUBFbGV2YXRlZGNnLmNvbSZ1c2VyaWQ9MjExMTg2JnRhcmdldGlkPSZtbj0mZmw9Jm12aWQ9JmV4dHJhPSYmJg==\u0026\u0026\u00269999\u0026\u0026\u0026afrotech2021.org/mics/nQQoO/aGRheUBrbmlnaHRzY29tcGFuaWVzLmNvbQ==","fqdn":"selligenttier.naylorcampaigns.com","domain":"naylorcampaigns.com","tld":"com"},"ip":{"addr":"144.202.229.149","port":0,"asn":11383,"as":"AS-TIERP-11383","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-15T17:10:50.814253884Z","timestamp":1700068250814,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /track?type=click\u0026enid=ZWFzPTEmbXNpZD0mYXVpZD0mbWFpbGluZ2lkPTYyNDExMiZtZXNzYWdlaWQ9NjI0MTEyJmRhdGFiYXNlaWQ9NjI0MTEyJnNlcmlhbD0xNjgyODQwNyZlbWFpbGlkPVRpbUBFbGV2YXRlZGNnLmNvbSZ1c2VyaWQ9MjExMTg2JnRhcmdldGlkPSZtbj0mZmw9Jm12aWQ9JmV4dHJhPSYmJg==\u0026\u0026\u00269999\u0026\u0026\u0026afrotech2021.org/mics/nQQoO/aGRheUBrbmlnaHRzY29tcGFuaWVzLmNvbQ== HTTP/1.1\r\nHost: selligenttier.naylorcampaigns.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 15 Nov 2023 17:10:50 GMT\r\nServer: \r\nCache-Control: no-cache, must-revalidate, max-age=0, no-store\r\nExpires: -1\r\nPragma: no-cache\r\nContent-Length: 1630\r\nConnection: close\r\nContent-Type: text/html;charset=ascii\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1630,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with very long lines (1630), with no line terminators","md5":"08c4110a0a033c1c53b88f833e72e7d0","sha1":"c5570786c6f9fed5fd048cf66fb7b9476dc769d2","sha256":"202a4988535ce63af5c55d5ade1c5474d140a78eade8b5e9f2af39517ae23fda","sha512":"cfe0908faf38fee4fd7b2106de3ba2a7e215c70886351352e6d963f03025e452fa595b6662fbf601c79f618d1525d701e2b5aab0d249a7b6591a2fe9d34beb04","ssdeep":"","tlshash":"523153b23e8d5c9e09f42dc718cfe65aac6f6324020980e48fc1c5006aa5e81064bfee","first_seen":"2023-11-15T18:11:08Z","last_seen":"2023-11-15T18:11:08Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"afrotech2021.org/mics/nQQoO/aGRheUBrbmlnaHRzY29tcGFuaWVzLmNvbQ==","fqdn":"afrotech2021.org","domain":"afrotech2021.org","tld":"org"},"ip":{"addr":"69.49.230.170","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-15T17:10:51.48519724Z","timestamp":1700068251485,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /mics/nQQoO/aGRheUBrbmlnaHRzY29tcGFuaWVzLmNvbQ== HTTP/1.1\r\nHost: afrotech2021.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 15 Nov 2023 17:10:51 GMT\r\nServer: Apache\r\nrefresh: 0;url=https://fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/#hday@knightscompanies.com\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-01T18:10:49.760673Z","times_seen":16013365,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css","fqdn":"cdn.jsdelivr.net","domain":"cdn.jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/#hday@knightscompanies.com","date":"2023-11-15T17:10:53.467Z","timestamp":1700068253467,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q3","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 27 Sep 2023 18:13:13 GMT","end":"Mon, 28 Oct 2024 18:13:12 GMT"},"fingerprint":{"sha1":"05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09","sha256":"0F:90:CD:B5:CD:3B:AE:F1:BB:01:3A:4D:6D:2E:A6:BA:98:C6:1B:1B:75:BE:DD:CB:39:33:E8:D1:21:F1:9F:EF"}}},"request":{"raw":"GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fk8yexnlsp0gv69.cojeguqipk.ru/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 5.0.2\r\nx-jsd-version-type: version\r\netag: W/\"260c5-fByeBXPlzqi603M74vxjqoxo6o0\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Wed, 15 Nov 2023 17:10:53 GMT\r\nage: 13591494\r\nx-served-by: cache-fra-eddf8230097-FRA, cache-bma1635-BMA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 25360\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25360,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (65306)","md5":"abe91756d18b7cd60871a2f47c1e8192","sha1":"7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d","sha256":"7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b","sha512":"bac54101debafcda5535f0607b5f60c2cda3e896629e771ad76ac07b697e77e4242d4f5f886d363b55fc43a85ea48a6bfc460a66f2b1fc8f56b27ba326e3a604","ssdeep":"1536:d0bwW83RipVVsEBpy0cuJcf22RWb5CyVUpz600I4fM:d0bwlyVUpz600I4fM","tlshash":"09e3a3d7f581241dd4a7c259a0d1bffd052f4586e3025babb0277bb88b8a6c70963e4c","first_seen":"2023-04-05T03:16:49Z","last_seen":"2026-06-01T18:14:35.871081Z","times_seen":97152,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":45,"dns":20,"connect":8,"send":0,"wait":9,"receive":3,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/api.js","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/#hday@knightscompanies.com","date":"2023-11-15T17:10:53.465Z","timestamp":1700068253465,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /turnstile/v0/api.js HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fk8yexnlsp0gv69.cojeguqipk.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Wed, 15 Nov 2023 17:10:53 GMT\r\nlocation: /turnstile/v0/g/9914b343/api.js\r\naccess-control-allow-origin: *\r\nvary: accept-encoding\r\ncache-control: max-age=300, public\r\nserver: cloudflare\r\ncf-ray: 82691c3619c41c0e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":12961,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"data","md5":"b692abb6092fb2b779436c5bf3247f29","sha1":"adc7fd18d3bb8bdcb0b6781b4c732a122f236f3c","sha256":"90854f165c402cf3931cb6ef35e7d33b40521629e1ba4fa237d0179a5f1dc888","sha512":"c591d6dd44651693ea4a30b38916cdaa1b9f6eb26e50aea921f2877fd5dd404a983d57b6e39957f46a9739601667048e8707bbab7b1595cfff68d428041e4a41","ssdeep":"384:hAjsEppR3qjmerx8rjD2XeIaf2y2UsHY8:hrEzwjmerGjDCafaUsHY8","tlshash":"0e42c0530affbf1527b078e662f1bb271c1344a0f9fa821a646c3561afd87b44e1502e","first_seen":"2023-11-15T17:13:56Z","last_seen":"2023-11-15T18:11:21Z","times_seen":16,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":13,"dns":0,"connect":1,"send":0,"wait":17,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/","fqdn":"fk8yexnlsp0gv69.cojeguqipk.ru","domain":"cojeguqipk.ru","tld":"ru"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-11-15T17:10:51.653Z","timestamp":1700068251653,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cojeguqipk.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Sun, 12 Nov 2023 20:53:31 GMT","end":"Sat, 10 Feb 2024 20:53:30 GMT"},"fingerprint":{"sha1":"BC:6E:A2:83:D1:61:C8:CA:06:44:DB:96:A2:06:6D:D0:16:07:21:14","sha256":"C8:11:C2:2C:59:B3:3E:FF:1D:BB:3A:D6:C4:F6:2F:E8:6A:E9:3C:06:8D:D9:BB:0E:6A:BD:57:32:99:CF:5B:B3"}}},"request":{"raw":"GET /rd5fj/ HTTP/1.1\r\nHost: fk8yexnlsp0gv69.cojeguqipk.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 15 Nov 2023 17:10:52 GMT\r\ncontent-type: text/html; charset=UTF-8\r\naccess-control-allow-origin: *\r\nset-cookie: PHPSESSID=uq3rtrjjt7u88dta2d7uile84r; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=IXwuXB%2FJry2xpozcJvK4O%2F%2FxAgWIGKkAmAeYs9sT7PWhdswSpqddlX46loEe5KcxJPIFPtjxge8o%2FYKfbR%2FCLvoLO%2BZkgdqJGtfG1wd69VD9QM9zVqTeibAGjzWb%2B%2FSOcJoG9S6SMhe4HRTA3TpZfA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 82691c2b0c8bb51e-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5233,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with very long lines (5237), with no line terminators","md5":"8dba1613a0f428e32bf47c0a034f695b","sha1":"69d5cd66e7e9fc01516eeac0a78cf019946c347b","sha256":"e81d9c9e135266d93f41c214ffb2965055cfea99dfab2f4fed2ad42ae09d0f67","sha512":"e2a3d24f77209b09f995bb6ca8bd48e56dc791e93d1c308810c1b6602df3e2a39b37e51a54bcde77053f50dcc44953b8f0abd45d91ddfc9fa99d02f632bd3a54","ssdeep":"96:7AR78arRu0bId1Id0nuBgBFAmIkNPqBL+BkLNWAmBNBZBLBnBFbdTG/pByBTZv8c:7ASSRNId1Id0uBgBrzqBL+BkLNQBNBZt","tlshash":"64b197e18e50279a974ce749bf017d9ebc2d7fc948219c2cc1b26d899d2e6a1c34f64c","first_seen":"2023-11-15T18:11:08Z","last_seen":"2023-11-15T18:11:08Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1722,"timings":{"blocked":53,"dns":31,"connect":1,"send":0,"wait":1615,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/#hday@knightscompanies.com","date":"2023-11-15T17:10:53.663Z","timestamp":1700068253663,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fk8yexnlsp0gv69.cojeguqipk.ru/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 15 Nov 2023 17:10:53 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\ncontent-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: cross-origin\r\ndocument-policy: js-profiling\r\norigin-agent-cluster: ?1\r\npermissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()\r\nreferrer-policy: same-origin\r\nserver: cloudflare\r\ncf-ray: 82691c373a4b5690-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":73264,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (40091)","md5":"fdff8e92c8824274f86babb3fe06d8c6","sha1":"947074a2f055d191bf7262ce14810dd22ab73be7","sha256":"754f2db8c8b6bc5a78a3b82ad835b3e5cf2645b27929e567135aa32c3bcb5f8e","sha512":"c869f73ceb3196747dea872904edfed04b5574405eac4d0c7776e912e9f94fef8a82e5860b85aca868b5f12a5393a10781715dd7b3742fd5c2c92af38fe876d2","ssdeep":"1536:XaTfc9IJbBeceIedkeO5gwyc99Kh0afdU6/jPNXhzNmU77JuI15fJRjDbY1GvIjw:4foTV/Pws9/j1hd77Jv5fJRjDbYMvIjw","tlshash":"6f63f7d98ebc7d29ab029a29b0ce51e3732d53471551e198b8dca190cfec04e26f1f79","first_seen":"2023-11-15T18:11:08Z","last_seen":"2023-11-15T18:11:08Z","times_seen":1,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=82691c373a4b5690","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal","date":"2023-11-15T17:10:53.772Z","timestamp":1700068253772,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=82691c373a4b5690 HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 15 Nov 2023 17:10:53 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nserver: cloudflare\r\ncf-ray: 82691c37eafc5690-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":179780,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"f1ac0f38466e7779e44356f4e2ef3cc6","sha1":"b3e583e0fa345675704c5470279297ab694332c7","sha256":"13bf1d4232a11dd71a740098e7623c4a33ad8fa69413914be278608c223dc567","sha512":"7d0b89be041308f03091f131e1284b868f21d2f428698e19cbe92f4b09923087ac7d773c50df3b1c8d6b12277f24ceac898dad20efdabf505e1567b19b2ff0e3","ssdeep":"3072:8uVNYF7+WIGXidjo4Ugrp2FPk4kcH4gYACebek7R3Txf3ka:8aYF7/tcgekVjtUa","tlshash":"4c0484cc7b81b99905237d7870277216709f3e456c7c29ddea10f0d42af630a92d6aee","first_seen":"2023-11-15T18:09:15Z","last_seen":"2023-11-15T18:40:59Z","times_seen":4,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/409169293:1700065844:IrQ6eHJw8OIejjhxaQk8zna7mBM0N4RgzTfGnaWPnKg/82691c373a4b5690/62408f0ce1efcc2","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal","date":"2023-11-15T17:10:53.988Z","timestamp":1700068253988,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/g/flow/ov1/409169293:1700065844:IrQ6eHJw8OIejjhxaQk8zna7mBM0N4RgzTfGnaWPnKg/82691c373a4b5690/62408f0ce1efcc2 HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal\r\nContent-type: application/x-www-form-urlencoded\r\nCF-Challenge: 62408f0ce1efcc2\r\nContent-Length: 2886\r\nOrigin: https://challenges.cloudflare.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 15 Nov 2023 17:10:53 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: yK5FqpGiMSlVr40m6SExCI3kV2ppsHg2cRyktxbpPikypP4amxqRG/5beV8be+paW4Gwe2wG6FmFMlXj24anjXnRz2wxotBZpn5F27FzgblJlJYravluNGVZ757kbuDe3zJr14K8gbj9wQXEMDmI4sH4xBMri5lXhmqk7VmwsbcaTBZPjNBIOySuSVu/StMJbadm9m6lbE5SZXUqpue4f77ERpazVJA0XzlEZ0Rc9PJkOQKV2LT2w/OBHWjD76Ujlh6VvSTQuKxeq4C+m6VPU42+mheiJ45fyNk1A/Yt/yAEVhLvPT9xF0l03+r9KmDJwKt7upXLdCpeLh4ZRziMYIuPwgbElKBYbsStPwItzmcRgA3704yMHXkXl2ymEj+amL9pr5knPVLPDu0SmoiozSzaow2ws9wQDP0o7B0WX6ql63k0yy3HBb+sEMsjOxYJsGjvg6Sk2Nz8NifTIP87E+4D3R6oCX9fn3y337I/QmgMNQcIWqvdgjKQs/l7+aU7$8/yVwfIMwaFK6EyG6EItcg==\r\nserver: cloudflare\r\ncf-ray: 82691c394c3f5690-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":104668,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"bdeb53b30ce5eeac260c67664df9c6e1","sha1":"be2dba269d77a9817b9d8693bf41659e9bb5d83f","sha256":"0f8c5f23680b8eed0df66f1a5a0afa35c52ca056ef95f09547c59c709b00f6d5","sha512":"b25f390eb954ea18f82f05708d51cec61e618cfc61a3f97ee9352f042c60c7686c30037c520452ca5ed4291eee56fec6b7b0798003206a590fc0e71701a37881","ssdeep":"3072:s5IRvhfA5yIDWX2pPvW1jT0DouMVdJmQTOrsx+:YI7fA5DDn7gdTOr4+","tlshash":"b8a302086e296c180ef3bfb245b2a4363f5a87af142359d520fc3b2ed62d425dd39469","first_seen":"2023-11-15T18:11:08Z","last_seen":"2023-11-15T18:11:08Z","times_seen":1,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":62,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/g/9914b343/api.js","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/#hday@knightscompanies.com","date":"2023-11-15T17:10:53.501Z","timestamp":1700068253501,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /turnstile/v0/g/9914b343/api.js HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://fk8yexnlsp0gv69.cojeguqipk.ru/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 15 Nov 2023 17:10:53 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31536000\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 82691c3639df1c0e-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":34254,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (34253)","md5":"6142a5f5c66e2c1be52ee9506a565962","sha1":"c3b39e8352efd1e0619b6dd62af8b2a917622868","sha256":"51cd12da61a7401c73472b2ac77067adfa30e9fc0545b4b7c240e9154e011fc7","sha512":"3de194e4c8f32703cfee9e2a48230d21301e28a39beefb36dcb2b8df26b962b3a508e7fd8fe55aca2f619293e293cdf64459bf5d91526cbceda770396765d5e2","ssdeep":"768:3YpyCIUTKuBT1ytljuXeMDKLFn76p+B5nLZ73akHgMO4B4oq0HVi:30nKuBT1Yj7MDCKp","tlshash":"9ff229993187343187ee41e0207b67877339ba3ae58cc840d85bc97539bcd8ad137ba9","first_seen":"2023-11-07T13:44:12Z","last_seen":"2023-11-30T20:53:42Z","times_seen":32842,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fk8yexnlsp0gv69.cojeguqipk.ru/favicon.ico","fqdn":"fk8yexnlsp0gv69.cojeguqipk.ru","domain":"cojeguqipk.ru","tld":"ru"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/#hday@knightscompanies.com","date":"2023-11-15T17:10:53.639Z","timestamp":1700068253639,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cojeguqipk.ru","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Sun, 12 Nov 2023 20:53:31 GMT","end":"Sat, 10 Feb 2024 20:53:30 GMT"},"fingerprint":{"sha1":"BC:6E:A2:83:D1:61:C8:CA:06:44:DB:96:A2:06:6D:D0:16:07:21:14","sha256":"C8:11:C2:2C:59:B3:3E:FF:1D:BB:3A:D6:C4:F6:2F:E8:6A:E9:3C:06:8D:D9:BB:0E:6A:BD:57:32:99:CF:5B:B3"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: fk8yexnlsp0gv69.cojeguqipk.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fk8yexnlsp0gv69.cojeguqipk.ru/rd5fj/\r\nCookie: PHPSESSID=uq3rtrjjt7u88dta2d7uile84r\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Wed, 15 Nov 2023 17:10:53 GMT\r\ncontent-type: text/html\r\ncache-control: private, no-cache, max-age=0\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: BYPASS\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=FAgCls2yyLUW48HX785zBnF99PY9i74dRcZJVM5jwCLS1rxiu5P6N6SatQ69ye051oTNDo3mON3m1AeudG7MmESrJ4YnNYsCyWSRqzSxzua36%2Bi3Zs8bz7E6PK4yc8BjwykHqHK%2FALvEj8HaQmwoWA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 82691c370fd0b50f-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":1236,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (1274), with no line terminators","md5":"8c16945397b2ea2fa974494c910f6d08","sha1":"87289c714f1955cc0a4b8d0f5319bf0dcf771141","sha256":"16782bd72a33f1963efb1d59aa17f964a604235a255e51dd4aafe0e0587040c6","sha512":"c57c43f89f7120d957597532db1634c5085a982de4cf3a1e4251a6593af28262362cbb1163a81e47c2a46c0cada341839ac2824e25b94dfbc8c2c116b84f9f90","ssdeep":"","tlshash":"c621423ec1c1920a94171198f7d1b278265ac341db930fb4364d7068f6cd0ee56a3fc4","first_seen":"2023-04-05T04:31:49Z","last_seen":"2025-03-27T15:32:37.859784Z","times_seen":16264,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/9DKbiDfWH6ZjHxgSNTG3KHa3ucVmP6rj9MHN3bQn2%2BU%3D","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal","date":"2023-11-15T17:10:53.770Z","timestamp":1700068253770,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/cmg/1/9DKbiDfWH6ZjHxgSNTG3KHa3ucVmP6rj9MHN3bQn2%2BU%3D HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 15 Nov 2023 17:10:53 GMT\r\ncontent-type: image/png\r\ncache-control: max-age=2629800, public\r\nserver: cloudflare\r\ncf-ray: 82691c37eaf75690-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":61,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced\\012- data","md5":"9246cca8fc3c00f50035f28e9f6b7f7d","sha1":"3aa538440f70873b574f40cd793060f53ec17a5d","sha256":"c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84","sha512":"a2098304d541df4c71cde98e4c4a8fb1746d7eb9677ceba4b19ff522efdd981e484224479fd882809196b854dbc5b129962dba76198d34aaecf7318bd3736c6b","ssdeep":"","tlshash":"a5a002e763957d7bd94b133756651151f8324514171305458805d475161736c81c4a82","first_seen":"2023-08-25T15:09:14Z","last_seen":"2025-05-14T12:12:43.698394Z","times_seen":189286,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/409169293:1700065844:IrQ6eHJw8OIejjhxaQk8zna7mBM0N4RgzTfGnaWPnKg/82691c373a4b5690/62408f0ce1efcc2","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal","date":"2023-11-15T17:10:55.664Z","timestamp":1700068255664,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/g/flow/ov1/409169293:1700065844:IrQ6eHJw8OIejjhxaQk8zna7mBM0N4RgzTfGnaWPnKg/82691c373a4b5690/62408f0ce1efcc2 HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal\r\nContent-type: application/x-www-form-urlencoded\r\nCF-Challenge: 62408f0ce1efcc2\r\nContent-Length: 25743\r\nOrigin: https://challenges.cloudflare.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 15 Nov 2023 17:10:55 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: mbrxMsTTBu/wc0L3j+NdjfZkyt6KpH7v/NaA/fMWjETZ9bJnFlx/aaxQyiYn/mul$00x1pjn/un4g5QqbPi4jWw==\r\nserver: cloudflare\r\ncf-ray: 82691c43bd8c5690-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17816,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (17816), with no line terminators","md5":"12be8798047ae19b67b1dd63d5cce66b","sha1":"d6f8e05c96f16f49b0973e82f1e95db2e128b679","sha256":"4efb003962c8952fae11a1ee87385ad5e97ea1c7c6cf430ee203343e83efff27","sha512":"10047cea539f2d18accc778d73e675a14c6e1f35a186d81043ba26039a2341fa20cd0abcefab718c9c3d43641d9a352f77f6f8777c24c8d764aa77e7f57418c8","ssdeep":"384:8XYCWHfP4Kd+XLKixWto7YWkn7dEDNZZAjc7O/4xfoe:We4bL3Wlh76hIcS/4loe","tlshash":"7982d1e835a08dbe05a9db1b928e58914639c3d0b8d7bd950cde7694cb4f8a240fccf4","first_seen":"2023-11-15T18:11:08Z","last_seen":"2023-11-15T18:11:08Z","times_seen":1,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/82691c373a4b5690/1700068253666/9HGOWGpO78HxvyD","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal","date":"2023-11-15T17:10:54.888Z","timestamp":1700068254888,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/i/82691c373a4b5690/1700068253666/9HGOWGpO78HxvyD HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 15 Nov 2023 17:10:54 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\ncf-ray: 82691c3ee9a15690-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":61,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 99, 8-bit/color RGB, non-interlaced\\012- data","md5":"fbaa7ed5f6171251fec4537626211651","sha1":"ebdde6511e7564d098ed157cf46c90b8bbbe71e0","sha256":"ddfee70f2efdefd3c1c83f17ab0adc77782def7dd68d95943af41676ef720a7a","sha512":"00b1d6ad22e2bd5c09886abb4cfa7209375e0d04455c9ae71c7b8e13dc1be887a73e45c848f1b4d7c0b37d07e15a9f847ed6dfba024529cb37feb2f167ef726c","ssdeep":"","tlshash":"39a002d763906c38cb46433f66352091e8732624422111059c05c535a6166ac82c5a52","first_seen":"2023-05-10T22:05:57Z","last_seen":"2025-03-20T17:48:06.115227Z","times_seen":64,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/82691c373a4b5690/1700068253668/b508a303360b318e892bfa768670b9243f4e46cdf8bbcda6eca7b450b540a71e/qyrAJRPCthhc1vC","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal","date":"2023-11-15T17:10:54.979Z","timestamp":1700068254979,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 18 Aug 2023 00:00:00 GMT","end":"Sat, 17 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E","sha256":"A2:A8:37:E9:57:D0:F0:FE:3B:6F:A8:23:58:80:DA:61:DD:F9:50:CF:F0:2D:27:D5:00:AA:21:A7:B4:75:80:AD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/pat/82691c373a4b5690/1700068253668/b508a303360b318e892bfa768670b9243f4e46cdf8bbcda6eca7b450b540a71e/qyrAJRPCthhc1vC HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2sas1/0x4AAAAAAANHG8fJ5xVDlBCK/auto/normal\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 401 Unauthorized\r\ndate: Wed, 15 Nov 2023 17:10:54 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\nwww-authenticate: PrivateToken challenge=AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gtQijAzYLMY6JK_p2hnC5JD9ORs34u82m7Ke0ULVApx4AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA2Vpu93cQGJ2LaZqutZBtBreQbl_on09bX3jUD1xgGHNU1bhZDG0Mis-M3E9MoLsj0SXQPrgtEEXCrSty2tCoCHs4hds4Th8FtYf6vr6jcGvhP-JPUCv7zhxe2WixKmBEuBMQPOEnZpPY5qGlclA0pn5z1YdkqVDVuPLDsqYDXAsntqJEXsVqxzOxbHOAWm7Unww5KwcId437A1PncomjAGLNf0sFUKCTQ0CULWIPIaOE__-uztyz5ahlObs2gAGcQwskwDCWAS3sN5mp3SCTpB4OPKwZ1DcVhhqHJrhvtP_8AgwwCgl9K4KqkgXop7P1oLjAeJ3eQhWNua7m5REZMwIDAQAB, max-age=20, PrivateToken challenge=AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tILUIowM2CzGOiSv6doZwuSQ_TkbN-LvNpuyntFC1QKceABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAyAcIyqXWj0XAym0z5V844rFA0WOzLVwj0uCwmVj6zC4qOH40oBiGHrMNMBnDyk95jvnBAuHeEs855e7nA4l4DPJ4jUWKZbua8BxGAzjn74A1BV81a52F1zvBPUm-VEJXPAPXQehXphSv51uR7HKtfcM5oaS33TGDSy-6xv0r84xjMuTBvwPgXGehxpi1MCGGE5yWkzKN5Zzllk7m6Nkiv6learV-Uz7tzaoPbdZkBk1bFXxm2q07jWavoBZ-JEuEJyjQ00PSTz2Zjpbct6AlR3eCS9sbmXtb5XxSs7JMsvoa8uojD7a5m2SEJIwaf8xKL6wtxkaPonUfvsLj4JoJZQIDAQAB, max-age=20\r\nserver: cloudflare\r\ncf-ray: 82691c3f7a095690-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"401","status_text":"Unauthorized","fingerprints":null,"data":{"size":1,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"very short file (no magic)","md5":"ff44570aca8241914870afbc310cdb85","sha1":"58668e7669fd564d99db5d581fcdb6a5618440b5","sha256":"6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5","sha512":"3c266c0035de59eab2a0dd31b3dcb4a9dd157b310289e5db9ab4f8c2fddb7433466d48f25da7ad735a1cb8f2935aa612ad1f62f0efcece3933ba9979082e2304","ssdeep":"","tlshash":"c700000000000003c00000300000003000000000000000000003000000000000000000","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-01T18:10:49.765603Z","times_seen":446674,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}