Proxy Request 8ed2ee5c-4b86-4e2f-b613-7f2e9eeb0542

Parent Attack 190f1e5b-635a-48c2-b650-1f5d880f641c
Date 2020-03-16 10:44:53PM
URL
pittsburghneurosurgerycenter.com/wp-login.php
Form Data ["pwd: 6969", "testcookie: 1", "wp-submit: Log In", "log: admin"]
Headers ["Content-Length: 48", "Content-Type: application/x-www-form-urlencoded", "Cookie: wordpress_test_cookie=WP+Cookie+check", "Referer: http://pittsburghneurosurgerycenter.com/wp-login.php", "User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0", "Accept: text/html", "Connection: keep-alive"]
<!DOCTYPE html>
<!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]-->
<!--[if IE 7]>    <html class="no-js ie7 oldie" lang="en-US"> <![endif]-->
<!--[if IE 8]>    <html class="no-js ie8 oldie" lang="en-US"> <![endif]-->
<!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]-->
<head>
<title>Attention Required! | Cloudflare</title>
<meta name="captcha-bypass" id="captcha-bypass" />
<meta charset="UTF-8" />
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta http-equiv="X-UA-Compatible" content="IE=Edge,chrome=1" />
<meta name="robots" content="noindex, nofollow" />
<meta name="viewport" content="width=device-width,initial-scale=1,maximum-scale=1" />
<link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" type="text/css" media="screen,projection" />
<!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" type="text/css" media="screen,projection" /><![endif]-->
<style type="text/css">body{margin:0;padding:0}</style>


<!--[if gte IE 10]><!--><script type="text/javascript" src="/cdn-cgi/scripts/zepto.min.js"></script><!--<![endif]-->
<!--[if gte IE 10]><!--><script type="text/javascript" src="/cdn-cgi/scripts/cf.common.js"></script><!--<![endif]-->




</head>
<body>
  <div id="cf-wrapper">
    <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div>
    <div id="cf-error-details" class="cf-error-details-wrapper">
      <div class="cf-wrapper cf-header cf-error-overview">
        <h1 data-translate="challenge_headline">One more step</h1>
        <h2 class="cf-subheadline"><span data-translate="complete_sec_check">Please complete the security check to access</span> pittsburghneurosurgerycenter.com</h2>
      </div><!-- /.header -->
      
      <div class="cf-section cf-highlight cf-captcha-container">
        <div class="cf-wrapper">
          <div class="cf-columns two">
            <div class="cf-column">
            <a href="http://tempestsw.com/nightingalesguilt.php?c=0" style="display: none;">table</a>
              <div class="cf-highlight-inverse cf-form-stacked">
                <form class="challenge-form" id="challenge-form" action="/wp-login.php?__cf_chl_captcha_tk__=1ddd1e9c460abd9d16bfaedde62f7b6a6f78d0fa-1584398693-0-ARSvWZQUxLemAFe39-aX55JD7X-pGtgzV7UhtxdRqvWC2vNVJgSrHSWFF4fZrakJLhJ6_gWZgbw9vO6bYcpSJQPPjWgMYpFxl25K1DN8ryawu84tjGLVME-xNzAovoVsoSXH1J5HgrVbOt4zH_m_Yb6bINqMv5-wn5sl25H8AOPY7dblJE6UEN-qCPSyP-qlHjnuGHXyFthhfj3jrVVDGPspKq_Jc-vWgkGBRszLyvtOcXAnwauHRCX08mkTqU4vtELbDycNM3QEjVvKm8nTIaPSazHQM4MljBWJLsGuHPX8DQiqn0EWBaZymYNe0rXrI8IQkfF-QKtHPpILFPQwKyS_kk0cRSKbdo9j0Ftqh-RtB98GQjkBAGn0zV0apoIiuqh5hKRnuNkqtw3xMRL0ljl9pG0qBG0HEZQQFtfon7psazDhQ41PY8GdvgSSqroUdgx8jZSkKB1yKPLM0TsPeF-_U6nQ8rUU4kazFPZR5IaT" method="POST" enctype="application/x-www-form-urlencoded">
  <input type="hidden" name="r" value="1ea264618cdff5b24825a6c99ba9a7236940a9af-1584398693-0-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">
  <script type="text/javascript" src="/cdn-cgi/scripts/cf.challenge.js" data-type="normal"  data-ray="57520057599e3278" async data-sitekey="6LfBixYUAAAAABhdHynFUIMA_sa4s-XsJvnjtgB0"></script>
  <input type="hidden" name="cf_captcha_kind" value="re">
  <div class="g-recaptcha"></div>
  <noscript id="cf-captcha-bookmark" class="cf-captcha-info">
    <div><div style="width: 302px">
      <div>
        <iframe src="https://www.google.com/recaptcha/api/fallback?k=6LfBixYUAAAAABhdHynFUIMA_sa4s-XsJvnjtgB0" frameborder="0" scrolling="no" style="width: 302px; height:422px; border-style: none;"></iframe>
      </div>
      <div style="width: 300px; border-style: none; bottom: 12px; left: 25px; margin: 0px; padding: 0px; right: 25px; background: #f9f9f9; border: 1px solid #c1c1c1; border-radius: 3px;">
        <textarea id="g-recaptcha-response" name="g-recaptcha-response" class="g-recaptcha-response" style="width: 250px; height: 40px; border: 1px solid #c1c1c1; margin: 10px 25px; padding: 0px; resize: none;"></textarea>
        <input type="submit" value="Submit"></input>
      </div>
    </div></div>
  </noscript>
  <div id="trk_captcha_js" style="background-image:url('/cdn-cgi/images/trace/captcha/nojs/re/transparent.gif?ray=57520057599e3278')"> </div>
</form>

                <script type="text/javascript">
  (function(){
    var a = function() {try{return !!window.addEventListener} catch(e) {return !1} },
    b = function(b, c) {a() ? document.addEventListener("DOMContentLoaded", b, c) : document.attachEvent("onreadystatechange", b)};
    b(function(){
      if (!a()) return;

      window.addEventListener("message", handleMessage, false)

      function handleMessage(event) {
        if (event.data && event.data.type === 'results') {
          var f = document.getElementById('challenge-form');

          if (f) {
            addInput(f, 'bf_challenge_id', '708');
            addInput(f, 'bf_execution_time', event.data.executionTimeMs);
            addInput(f, 'bf_result_hash', event.data.resultHash);
          }

          window.removeEventListener("message", handleMessage, false)
        }
      }

      function addInput(parent, name, value) {
        var input = document.createElement('input');
        input.type = 'hidden';
        input.name = name;
        input.value = value;
        parent.appendChild(input);
      }

      function withIframe(iframeContent) {
        var iframe = document.createElement('iframe');
        iframe.id = 'bf_test_iframe';
        iframe.style.visibility = 'hidden';
        document.body.appendChild(iframe);
        var doc = (iframe.contentWindow || iframe.contentDocument).document;
        doc.write(iframeContent);
        doc.close();
      }

      withIframe("<!doctype html>\n<meta charset=\"utf8\">\n<meta name=\"timeout\" content=\"long\">\n<title><\/title>\n\n\n<script src=\"https:\/\/ajax.cloudflare.com\/cdn-cgi\/scripts\/697236fc\/cloudflare-static\/bot-filter.js\"><\/__script__>\n\n\n\n<script>\"use strict\";function r(e){return\"db\"+self.location.pathname+\"-\"+e.name}function f(e,n){return new EventWatcher(e,n,[\"abort\",\"blocked\",\"complete\",\"error\",\"success\",\"upgradeneeded\"])}function e(e,n,t){return u(e,r(e),n,t)}function u(i,e,t,s){return new Promise(function(a,n){var c=indexedDB.open(e,t);c.onupgradeneeded=i.step_func(function(e){var n=e.target.result,transaction=e.target.transaction,t=!1,r=null,o=transaction.abort.bind(transaction);transaction.abort=function(){transaction._willBeAborted(),o()},transaction._willBeAborted=function(){r=new Promise(function(n,e){c.onerror=function(e){e.preventDefault(),n(e)},c.onsuccess=function(){return e(new Error(\"indexedDB.open should not succeed for an aborted versionchange transaction\"))}}),t=!0};var u=s(n,transaction,c);t||(c.onerror=null,c.onsuccess=null,r=f(i,c).wait_for(\"success\")),a(Promise.resolve(u).then(function(){return r}))}),c.onerror=function(e){return n(e.target.error)},c.onsuccess=function(){var e=c.result;i.add_cleanup(function(){e.close()}),n(new Error(\"indexedDB.open should not succeed without creating a versionchange transaction\"))}}).then(function(e){var n=e.target.result;return n&&i.add_cleanup(function(){n.close()}),n||e.target.error})}function n(e,n){return t(e,r(e),n)}function t(n,t,r){var e=indexedDB.deleteDatabase(t),o;return f(n,e).wait_for(\"success\").then(function(e){return n.add_cleanup(function(){indexedDB.deleteDatabase(t)}),u(n,t,1,r)})}function o(e,n){return a(e,r(e),n)}function a(n,e,t){var r=indexedDB.open(e,t),o;return f(n,r).wait_for(\"success\").then(function(){var e=r.result;return n.add_cleanup(function(){e.close()}),e})}var c=[{title:\"Quarry Memories\",author:\"Fred\",isbn:123456},{title:\"Water Buffaloes\",author:\"Fred\",isbn:234567},{title:\"Bedrock Nights\",author:\"Barney\",isbn:345678}],i=function e(n,t){var r=t.createObjectStore(\"books\",{keyPath:\"isbn\",autoIncrement:!0});r.createIndex(\"by_author\",\"author\"),r.createIndex(\"by_title\",\"title\",{unique:!0});for(var o=0;o<c.length;o++){var u=c[o];r.put(u)}return r};function s(e,n){var t=n.createObjectStore(\"not_books\");return t.createIndex(\"not_by_author\",\"author\"),t.createIndex(\"not_by_title\",\"title\",{unique:!0}),t}function d(e,n,t){__c$2(n.indexNames);var r=n.index(\"by_author\"),o=n.index(\"by_title\");return Promise.all([h(e,r,t),b(e,o,t)])}function l(e,n,t,r){var o=n.put({title:\"Bedrock Nights \"+t,author:\"Barney\"}),u;return f(e,o).wait_for(\"success\").then(function(){var e=o.result;__c$1(e)})}function _(e,n,t){var r=n.get(123456),o;return f(e,r).wait_for(\"success\").then(function(){var e=r.result;__c$1(e.isbn),__c$1(e.author),__c$1(e.title)})}function h(e,index,n){var t=index.get(c[2].author),r;return f(e,t).wait_for(\"success\").then(function(){var e=t.result;__c$1(e.isbn),__c$1(e.title)})}function b(e,index,n){var t=index.get(c[2].title),r;return f(e,t).wait_for(\"success\").then(function(){var e=t.result;__c$1(e.isbn),__c$1(e.author)})}function v(e,n){for(var t=new Uint8Array(e),r=1e3+n,o=0;o<e;++o)r^=r<<13,r^=r>>17,r^=r<<5,t[o]=255&r;return t}promise_test(function(t){return n(t,function(e,transaction){i(t,e)}).then(function(e){e.close()}).then(function(){return e(t,2,function(e,transaction){var n=transaction.objectStore(\"books\"),index;n.index(\"by_author\").name=\"by_author\",__c$2(n.indexNames)})}).then(function(e){var transaction,n=e.transaction(\"books\",\"readonly\").objectStore(\"books\");__c$2(n.indexNames);var index=n.index(\"by_author\");return h(t,index,\"Committing a transaction that renames an index to the same name should not change the index's contents\").then(function(){return e.close()})})});for(var g=[\"\",\"\\\\u0000\",\"\\\\uDC00\\\\uD800\"],m=0,x,name;m<g.length;m++){var p;x=g[m],name=void 0,name=JSON.parse('\"'+x+'\"')}<\/__script__>".replace(/\/__script__/g, '/script'));

    }, false);
  })();
  </script>

              </div>
            </div>

            <div class="cf-column">
              <div class="cf-screenshot-container">
              
                <span class="cf-no-screenshot"></span>
              
              </div>
            </div>
          </div><!-- /.columns -->
        </div>
      </div><!-- /.captcha-container -->

      <div class="cf-section cf-wrapper">
        <div class="cf-columns two">
          <div class="cf-column">
            <h2 data-translate="why_captcha_headline">Why do I have to complete a CAPTCHA?</h2>
            
            <p data-translate="why_captcha_detail">Completing the CAPTCHA proves you are a human and gives you temporary access to the web property.</p>
          </div>

          <div class="cf-column">
            <h2 data-translate="resolve_captcha_headline">What can I do to prevent this in the future?</h2>
            

            <p data-translate="resolve_captcha_antivirus">If you are on a personal connection, like at home, you can run an anti-virus scan on your device to make sure it is not infected with malware.</p>

            <p data-translate="resolve_captcha_network">If you are at an office or shared network, you can ask the network administrator to run a scan across the network looking for misconfigured or infected devices.</p>
            
              
              <p data-translate="resolve_captcha_privacy_pass"> Another way to prevent getting this page in the future is to use Privacy Pass. You may need to download version 2.0 now from the <a href="https://addons.mozilla.org/en-US/firefox/addon/privacy-pass/">Firefox Add-ons Store</a>.</p>
              
            
          </div>
        </div>
      </div><!-- /.section -->
      

      <div class="cf-error-footer cf-wrapper">
  <p>
    <span class="cf-footer-item">Cloudflare Ray ID: <strong>57520057599e3278</strong></span>
    <span class="cf-footer-separator">&bull;</span>
    <span class="cf-footer-item"><span>Your IP</span>: 178.165.72.177</span>
    <span class="cf-footer-separator">&bull;</span>
    <span class="cf-footer-item"><span>Performance &amp; security by</span> <a href="https://www.cloudflare.com/5xx-error-landing?utm_source=error_footer" id="brand_link" target="_blank">Cloudflare</a></span>
    
  </p>
</div><!-- /.error-footer -->


    </div><!-- /#cf-error-details -->
  </div><!-- /#cf-wrapper -->

  <script type="text/javascript">
  window._cf_translation = {};
  
  
</script>


  <script src="https://ajax.cloudflare.com/cdn-cgi/scripts/f8ce4a63/cloudflare-static/pic-chl.js"></script>
<script type="text/javascript">
  (function(){
    var a = function() {try{return !!window.addEventListener} catch(e) {return !1} },
    b = function(b, c) {a() ? document.addEventListener("DOMContentLoaded", b, c) : document.attachEvent("onreadystatechange", b)};
    b(function(){
      var f = document.getElementById('challenge-form');
      if (f) {
        var input = document.createElement('input');
        input.type = 'hidden';
        input.name = 'cv_chal_result';
        input.value = window.__CF$cv$chal([0x1ea83b8b49,0x47f70c9c22]);
        f.appendChild(input);
        try {
           if (window.__CF$cv$fp) {
              var input = document.createElement('input');
              input.type = 'hidden';
              input.name = 'cv_chal_fp';
              input.value = window.__CF$cv$fp();
              f.appendChild(input);
           }
        } catch (e) { }
      }
    }, false);
  })();
</script>

</body>
</html>
© 2021 threat.gg