| | 213.172.38.6 | 302 | 205 B |
URL User Request GET HTTP/1.1IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash6acc12cffbddebc39d4a70e744631413 0b7c19ebe5730c08b65f6a05a1d8eff130117143 26a4a0129319f2483db224678c95714fcc70b6d34ac2e289cf3988357f0b160f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Tue, 07 May 2024 22:18:10 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
Location: https://213.172.38.6/
Content-Length: 205
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| | 213.172.38.6 | 302 | 0 B |
URL User Request GET HTTP/1.1IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Location: https://213.172.38.6/c/portal/login?redirect=%2F&refererPlid=94982&p_l_id=412103
Content-Length: 0
Set-Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; Path=/; HttpOnly
COOKIE_SUPPORT=true; Max-Age=31536000; Expires=Wed, 07-May-2025 22:18:11 GMT; Path=/; HttpOnly
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
|
|
| 213.172.38.6/c/portal/login?redirect=%2F&refererPlid=94982&p_l_id=412103 | 213.172.38.6 | 302 | 0 B |
URL User Request GET HTTP/1.1213.172.38.6/c/portal/login?redirect=%2F&refererPlid=94982&p_l_id=412103 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /c/portal/login?redirect=%2F&refererPlid=94982&p_l_id=412103 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Liferay-Portal: Liferay Digital Experience Platform 7.3.10 SP3 (Athanasius / Build 7310 / September 22, 2020)
Location: https://213.172.38.6/web/guest/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Set-Cookie: GUEST_LANGUAGE_ID=en_US; Max-Age=31536000; Expires=Wed, 07-May-2025 22:18:11 GMT; Path=/; HttpOnly
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
|
|
| 213.172.38.6/web/guest/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F | 213.172.38.6 | 302 | 0 B |
URL User Request GET HTTP/1.1213.172.38.6/web/guest/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /web/guest/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Location: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Content-Length: 0
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
|
|
| 213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F | 213.172.38.6 | 200 | 59 kB |
URL User Request GET HTTP/1.1213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1276), with CRLF, LF line terminators Hash7535e0fdccd89c55d0029f1fd0457aaf 674ce933667b8ee884c70c5ed9c8dd665f25b9a1 480ef62665153bc992d897745423c33a27802f5b57a974554a01bff733bf9a8d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Liferay-Portal: Liferay Digital Experience Platform 7.3.10 SP3 (Athanasius / Build 7310 / September 22, 2020)
Content-Type: text/html;charset=UTF-8
Set-Cookie: GUEST_LANGUAGE_ID=en_US; Max-Age=31536000; Expires=Wed, 07-May-2025 22:18:12 GMT; Path=/; HttpOnly
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| player.vimeo.com/api/player.js | 162.159.138.60 | 200 OK | 11 kB |
URL GET HTTP/1.1player.vimeo.com/api/player.js IP162.159.138.60:443
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerLet's Encrypt Subjectplayer.vimeo.com FingerprintE8:45:41:E9:31:D2:A5:77:D5:5E:75:89:F8:00:24:2E:C3:3F:C8:BE ValidityFri, 29 Mar 2024 06:04:47 GMT - Thu, 27 Jun 2024 06:04:46 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (37934) Hashda2ba57d91a7f508da290f9fa623eae4 b14816b57ca689786847fef1f5a31288e159e3e4 1b26ea722a2121ee02d8ca9c23460c5ff6cb75f840ff9e0c1ee79ecaedc7ad8f
GET /api/player.js HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 22:18:12 GMT
Content-Type: application/javascript;charset=utf-8
Content-Length: 11390
Connection: keep-alive
access-control-allow-origin: *
Cache-Control: max-age=1800
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
expires: Tue, 07 May 2024 18:20:23 GMT
x-player-backend: g
x-backend-server: player-backend-edge-entry
x-bapp-server:
Content-Encoding: gzip
accept-ranges: bytes
via: 1.1 varnish
Age: 1669
x-served-by: cache-osl6525-OSL
x-cache: HIT
x-cache-hits: 151
x-timer: S1715120293.640115,VS0,VE0
vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=r_PF5Gaam8r57logc2VhC3hFTezxCcayawPZGlAYiBU-1715120292-1.0.1.1-bDxhNwHadR0upkTyHRRfjJGmdtGOItOms2PuRLubo9Tp3eVr74rKh8uXPatNU2pfYKNAQ4dFauwfk5ODW17klg; path=/; expires=Tue, 07-May-24 22:48:12 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
_cfuvid=6ID9GHKiW71JOWYgmvEd5jKu1Soy00Rrw5emaZ.h_QA-1715120292641-0.0.1.1-604800000; path=/; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 880495a4e90fb51e-OSL
|
|
| 213.172.38.6/o/my-liferay-theme/css/bootstrap/bootstrap.min.css | 213.172.38.6 | 200 | 145 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/css/bootstrap/bootstrap.min.css IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65325) Size145 kB (144877 bytes) Hash450fc463b8b1a349df717056fbb3e078 895125a4522a3b10ee7ada06ee6503587cbf95c5 2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/css/bootstrap/bootstrap.min.css HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
ETag: "70e9907"
Content-Type: text/css;charset=UTF-8
Content-Length: 144877
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/css/lightbox.css | 213.172.38.6 | 200 | 3.7 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/css/lightbox.css IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash3980e8971f481097f45429a86ebe38b6 325f34544468585b88604124db68c8d6a64e2475 b913876af74f5963a22198bcdfd159f86720f311304d9758bb8a6792f4f75061
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/css/lightbox.css HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
ETag: "db3d4093"
Content-Type: text/css;charset=UTF-8
Content-Length: 3713
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js | 142.250.74.74 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP142.250.74.74:443
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:53:06 GMT
expires: Fri, 02 May 2025 01:53:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 505506
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 213.172.38.6/o/my-liferay-theme/js/bootstrap/bootstrap.min.js | 213.172.38.6 | 200 | 49 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/js/bootstrap/bootstrap.min.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (48664), with CRLF line terminators Hashd061ab58270e692309b728296e90bba2 c9b4b1b279855515ea3f919adc71420664b18000 b00834c17c50af103e353ef86a69d90bbcaa819ed92b4d6ed670a425514e3c3a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/js/bootstrap/bootstrap.min.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:18 GMT
ETag: "96f20f68"
Content-Type: text/javascript
Content-Length: 48950
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/css/_custom-576px.css | 213.172.38.6 | 200 | 803 B |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/css/_custom-576px.css IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashd9031f7c8cc65a2be7208ec711a01bdb 0d388392e9487f65ca6021df0ac8070f0361566f aca12733af324af86b161e879e5154b0c27f451d3b4d35013b7fbd6ee6e775ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/css/_custom-576px.css HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
ETag: "883952"
Content-Type: text/css;charset=UTF-8
Content-Length: 803
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/css/_custom-576-768px.css | 213.172.38.6 | 200 | 385 B |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/css/_custom-576-768px.css IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hasha1647364fec05e979ba196be5f91b555 765eb8577dddae158dc3b19ee3d41b1d60a2e9e8 2e1dd524c34eae5352faf4795279117095b5004276950a2e89647d520428cfae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/css/_custom-576-768px.css HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
ETag: "d393bce5"
Content-Type: text/css;charset=UTF-8
Content-Length: 385
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/css/_custom-992-1200px.css | 213.172.38.6 | 200 | 693 B |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/css/_custom-992-1200px.css IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash15fec75ef95a4d89d8ad0119e62ed8c8 7575f5708ee5656f0e066f8b84271f2acadafc91 38b8bb3f18b865b881b63d7aef54ca0e9bc928cae42d550e60c72df75d32cbc1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/css/_custom-992-1200px.css HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
ETag: "3fabd4ab"
Content-Type: text/css;charset=UTF-8
Content-Length: 693
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/css/_custom-768-992px.css | 213.172.38.6 | 200 | 392 B |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/css/_custom-768-992px.css IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash2b088f4d58f4005acf25feff7d90c77c 34cea7ecabfbcdad9793b3e8090654b91740b406 de1505e60cdfd0d7cebd58b01379c414af29c81d942506d7812c8d903d8d1eab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/css/_custom-768-992px.css HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
ETag: "a5640d51"
Content-Type: text/css;charset=UTF-8
Content-Length: 392
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/js/lightbox.js | 213.172.38.6 | 200 | 19 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/js/lightbox.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (671), with CRLF line terminators Hashf58c229bd407f4063d935b0a02f40191 f20c5e033ddfc242ba7242f8d1ea1be02550c876 db65737293ff206cfe801ea95ef29665d677bc5b19c142837096b9ad9dee886e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/js/lightbox.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:18 GMT
ETag: "3663889"
Content-Type: text/javascript
Content-Length: 18929
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
|
|
| 213.172.38.6/o/js_loader_config?t=1714033664073 | 213.172.38.6 | 200 | 173 B |
URL GET HTTP/1.1213.172.38.6/o/js_loader_config?t=1714033664073 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash9648de564b54381c1205121869073eb4 aceb04a2b7dee7395c5d6dd416e35d9cfbb4727d e843e20138f55c83d5f61be85bfe4766dd69bb7c34b8abd6d84f29c3cf000cad
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/js_loader_config?t=1714033664073 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:44 GMT
ETag: "b176de30"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 173
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
|
|
| www.googletagmanager.com/gtag/js?id=GTM-MNFXGV9 | 142.250.74.168 | 200 OK | 68 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=GTM-MNFXGV9 IP142.250.74.168:443
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2202) Hashc34b40102faa819ba80d6d0d47b77760 7c4599d1255a07bc55f750ef13fa4e1b43b8a5a4 c8c18974f4ed068b26ad51fcce8940ad94e7e04017033b17c52740a8aa2cdf88
GET /gtag/js?id=GTM-MNFXGV9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 22:18:12 GMT
expires: Tue, 07 May 2024 22:18:12 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68363
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 213.172.38.6/combo?browserId=firefox&minifierType=js&languageId=en_US&b=7310&t=1714033664058&/o/frontend-js-jquery-web/jquery/jquery.min.js&/o/frontend-js-jquery-web/jquery/init.js&/o/frontend-js-jquery-web/jquery/ajax.js&/o/frontend-js-jquery-web/jquery/bootstrap.bundle.min.js&/o/frontend-js-jquery-web/jquery/collapsible_search.js&/o/frontend-js-jquery-web/jquery/fm.js&/o/frontend-js-jquery-web/jquery/form.js&/o/frontend-js-jquery-web/jquery/popper.min.js&/o/frontend-js-jquery-web/jquery/side_navigation.js | 213.172.38.6 | 200 | 234 kB |
URL GET HTTP/1.1213.172.38.6/combo?browserId=firefox&minifierType=js&languageId=en_US&b=7310&t=1714033664058&/o/frontend-js-jquery-web/jquery/jquery.min.js&/o/frontend-js-jquery-web/jquery/init.js&/o/frontend-js-jquery-web/jquery/ajax.js&/o/frontend-js-jquery-web/jquery/bootstrap.bundle.min.js&/o/frontend-js-jquery-web/jquery/collapsible_search.js&/o/frontend-js-jquery-web/jquery/fm.js&/o/frontend-js-jquery-web/jquery/form.js&/o/frontend-js-jquery-web/jquery/popper.min.js&/o/frontend-js-jquery-web/jquery/side_navigation.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Size234 kB (233553 bytes) Hash7bc1bab92b89eefa437498d4982639e1 dbbbfc6622fe7bc9626adb3b77985869c7aca4a8 086b7a1fbfdc3877caeebcb8d8ad171aa68b25c588c36a29daa041c5f55071ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo?browserId=firefox&minifierType=js&languageId=en_US&b=7310&t=1714033664058&/o/frontend-js-jquery-web/jquery/jquery.min.js&/o/frontend-js-jquery-web/jquery/init.js&/o/frontend-js-jquery-web/jquery/ajax.js&/o/frontend-js-jquery-web/jquery/bootstrap.bundle.min.js&/o/frontend-js-jquery-web/jquery/collapsible_search.js&/o/frontend-js-jquery-web/jquery/fm.js&/o/frontend-js-jquery-web/jquery/form.js&/o/frontend-js-jquery-web/jquery/popper.min.js&/o/frontend-js-jquery-web/jquery/side_navigation.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:44 GMT
ETag: "fdf49f5"
Content-Type: text/javascript
Content-Length: 233553
Keep-Alive: timeout=15, max=94
Connection: Keep-Alive
|
|
| 213.172.38.6/o/js_bundle_config?t=1714033711365 | 213.172.38.6 | 200 | 16 kB |
URL GET HTTP/1.1213.172.38.6/o/js_bundle_config?t=1714033711365 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (574) Hash8f16c68ef9be59b820d72f2512b737c7 760fa1edc9b0601d6e75f7f8910ad3f45044aca1 71e0218f148f42d386445d0ea70294732dc5ad06cd177f84d2f3eaa6577bd0fd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/js_bundle_config?t=1714033711365 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Thu, 25 Apr 2024 08:28:31 GMT
ETag: "7c526dc6"
Content-Type: text/javascript;charset=UTF-8
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| 213.172.38.6/combo?browserId=firefox&minifierType=&themeId=myliferaytheme_WAR_myliferaytheme&languageId=en_US&b=7310&LiferayElecnorAccountLogin_LiferayElecnorAccountLoginPortlet:%2Fcss%2Fmain.css&com_liferay_journal_content_web_portlet_JournalContentPortlet_INSTANCE_4Yu7AlM2XHJd:%2Fcss%2Fmain.css&com_liferay_portal_search_web_search_bar_portlet_SearchBarPortlet_INSTANCE_templateSearch:%2Fcss%2Fmain.css&com_liferay_product_navigation_product_menu_web_portlet_ProductMenuPortlet:%2Fcss%2Fmain.css&com_liferay_product_navigation_user_personal_bar_web_portlet_ProductNavigationUserPersonalBarPortlet:%2Fcss%2Fmain.css&com_liferay_rss_web_portlet_RSSPortlet_INSTANCE_Ufss5vVBfANC:%2Fcss%2Fmain.css&com_liferay_site_navigation_menu_web_portlet_SiteNavigationMenuPortlet:%2Fcss%2Fmain.css&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fcss%2Fmain.css&es_elecnor_userprofile_UserprofilePortlet:%2Fcss%2Fmain.css&t=1709911530000 | 213.172.38.6 | 200 | 22 kB |
URL GET HTTP/1.1213.172.38.6/combo?browserId=firefox&minifierType=&themeId=myliferaytheme_WAR_myliferaytheme&languageId=en_US&b=7310&LiferayElecnorAccountLogin_LiferayElecnorAccountLoginPortlet:%2Fcss%2Fmain.css&com_liferay_journal_content_web_portlet_JournalContentPortlet_INSTANCE_4Yu7AlM2XHJd:%2Fcss%2Fmain.css&com_liferay_portal_search_web_search_bar_portlet_SearchBarPortlet_INSTANCE_templateSearch:%2Fcss%2Fmain.css&com_liferay_product_navigation_product_menu_web_portlet_ProductMenuPortlet:%2Fcss%2Fmain.css&com_liferay_product_navigation_user_personal_bar_web_portlet_ProductNavigationUserPersonalBarPortlet:%2Fcss%2Fmain.css&com_liferay_rss_web_portlet_RSSPortlet_INSTANCE_Ufss5vVBfANC:%2Fcss%2Fmain.css&com_liferay_site_navigation_menu_web_portlet_SiteNavigationMenuPortlet:%2Fcss%2Fmain.css&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fcss%2Fmain.css&es_elecnor_userprofile_UserprofilePortlet:%2Fcss%2Fmain.css&t=1709911530000 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (22038), with no line terminators Hash38010d93bf73a7e6861527fcfe757f11 724b3dfe273c18e2703b2269622850949f3d6115 2ec2be673be06b3002247607a3701f0e5e1176ab39f330a9adcb2e49649fe95b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo?browserId=firefox&minifierType=&themeId=myliferaytheme_WAR_myliferaytheme&languageId=en_US&b=7310&LiferayElecnorAccountLogin_LiferayElecnorAccountLoginPortlet:%2Fcss%2Fmain.css&com_liferay_journal_content_web_portlet_JournalContentPortlet_INSTANCE_4Yu7AlM2XHJd:%2Fcss%2Fmain.css&com_liferay_portal_search_web_search_bar_portlet_SearchBarPortlet_INSTANCE_templateSearch:%2Fcss%2Fmain.css&com_liferay_product_navigation_product_menu_web_portlet_ProductMenuPortlet:%2Fcss%2Fmain.css&com_liferay_product_navigation_user_personal_bar_web_portlet_ProductNavigationUserPersonalBarPortlet:%2Fcss%2Fmain.css&com_liferay_rss_web_portlet_RSSPortlet_INSTANCE_Ufss5vVBfANC:%2Fcss%2Fmain.css&com_liferay_site_navigation_menu_web_portlet_SiteNavigationMenuPortlet:%2Fcss%2Fmain.css&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fcss%2Fmain.css&es_elecnor_userprofile_UserprofilePortlet:%2Fcss%2Fmain.css&t=1709911530000 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Fri, 08 Mar 2024 15:25:30 GMT
ETag: "3162830f"
Content-Type: text/css;charset=UTF-8
Content-Length: 22038
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
|
|
| 213.172.38.6/combo?browserId=firefox&minifierType=&themeId=myliferaytheme_WAR_myliferaytheme&languageId=en_US&b=7310&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fjs%2Fstaging.js&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fjs%2Fstaging_branch.js&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fjs%2Fstaging_version.js&t=1694768538000 | 213.172.38.6 | 200 | 5.3 kB |
URL GET HTTP/1.1213.172.38.6/combo?browserId=firefox&minifierType=&themeId=myliferaytheme_WAR_myliferaytheme&languageId=en_US&b=7310&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fjs%2Fstaging.js&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fjs%2Fstaging_branch.js&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fjs%2Fstaging_version.js&t=1694768538000 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (629) Hash8ba6248f9fd389da568631eb8181bc65 3cab8b9efacb18406a46327cec71e7487f3dd59f dc297e949088c3c38687c4ed65c40f0ffbb06cc54601d41d1d9afc72ca63cb69
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo?browserId=firefox&minifierType=&themeId=myliferaytheme_WAR_myliferaytheme&languageId=en_US&b=7310&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fjs%2Fstaging.js&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fjs%2Fstaging_branch.js&com_liferay_staging_bar_web_portlet_StagingBarPortlet:%2Fjs%2Fstaging_version.js&t=1694768538000 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:18 GMT
ETag: "b48c922e"
Content-Type: text/javascript
Content-Length: 5307
Keep-Alive: timeout=15, max=93
Connection: Keep-Alive
|
|
| 213.172.38.6/o/frontend-css-web/main.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1650836047435 | 213.172.38.6 | 200 | 110 kB |
URL GET HTTP/1.1213.172.38.6/o/frontend-css-web/main.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1650836047435 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65518) Size110 kB (109764 bytes) Hashc54656c05e6406e4c2148b84c2b8bbdf b23e5034232c64fd4240402d7576f7fa6b9d1990 6332089425bbe9caad8b443769cb8f75e8847ec8cd84db27c767be032a0469f1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/frontend-css-web/main.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1650836047435 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Sun, 24 Apr 2022 21:34:07 GMT
ETag: "cbad9bf8"
Content-Type: text/css;charset=UTF-8
Content-Length: 109764
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
|
|
| 213.172.38.6/o/documents-sig-viewer-portlet/html/css/modal.css | 213.172.38.6 | 200 | 4.3 kB |
URL GET HTTP/1.1213.172.38.6/o/documents-sig-viewer-portlet/html/css/modal.css IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash67d65596ccbe47fad14cfb21ee906306 bf4d4784c8d1bca4c9cca6a87c72a645870b7489 7b0886fcdbf765cde92cb9b08003a165904f6875fdfc55f14fdd2ab560081425
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/documents-sig-viewer-portlet/html/css/modal.css HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
ETag: "b2f159c8"
Content-Type: text/css;charset=UTF-8
Content-Length: 4315
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/js/main.js?browserId=firefox&minifierType=js&languageId=en_US&b=7310&t=1694768538000 | 213.172.38.6 | 200 | 8.9 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/js/main.js?browserId=firefox&minifierType=js&languageId=en_US&b=7310&t=1694768538000 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (561) Hash77429a3b91b671976c4bcec1f8463bbb ae546184f36699a5b30a0b51cfbd50fcb1bd3e96 2a47f5e71b82060c399713986c7638cbb6da086d6f9e303332c93b757c1bf7e9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/js/main.js?browserId=firefox&minifierType=js&languageId=en_US&b=7310&t=1694768538000 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:18 GMT
ETag: "ed9b2b81"
Content-Type: text/javascript
Content-Length: 8944
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/css/main.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1694768538000 | 213.172.38.6 | 200 | 172 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/css/main.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1694768538000 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65518) Size172 kB (171890 bytes) Hashaf957e02772bbccc9fdca6a7b6278bca bbdb33359414106741cadc3daf03065f51d5d687 9e30cba5e4b30f9efde546b30883e4157949877fd13a000ee26fbc140717f630
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/css/main.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1694768538000 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:18 GMT
ETag: "2b0137aa"
Content-Type: text/css;charset=UTF-8
Content-Length: 171890
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/css/clay.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1694768538000 | 213.172.38.6 | 200 | 598 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/css/clay.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1694768538000 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (21799), with CRLF, LF line terminators Size598 kB (598156 bytes) Hashc224132176f11dcfbd03192ae64e630c d1a3707c8b3d2f6b614aa2c96d01135fbda123f9 c649907c9e2d6782cc72c37584f91959c273bd1be3887c1700e2b49599db2946
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/css/clay.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1694768538000 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:11 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:18 GMT
ETag: "c55bf575"
Content-Type: text/css;charset=UTF-8
Content-Length: 598156
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/help-cau.png | 213.172.38.6 | 200 | 8.0 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/help-cau.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 138 x 138, 8-bit/color RGBA, non-interlaced Hashc5a376ff20c572b07a691f1082a1d0d2 d40ccd55c1d3a4e984bfad7ef71ffacbcdc4472c 60a04087e3e45eb2dd2258d83520f1a2d365982b3bfed373578eb10ffffc4f83
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/help-cau.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "ecaba60"
Content-Type: image/png
Content-Length: 8001
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/arrow-blue.svg | 213.172.38.6 | 200 | 162 B |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/arrow-blue.svg IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashbbf9f9e6c2d2951be0dfdd4369635267 efc8c25f3abd815f5dc638dbd06e39a1b64158ca 0ffe9c58666db70f7f22c0f3831da5b026d802052d67b3f0747198caac0aa0c4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/arrow-blue.svg HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: W/"162-1694768528000"
Content-Type: image/svg+xml
Content-Length: 162
Keep-Alive: timeout=15, max=91
Connection: Keep-Alive
|
|
| 213.172.38.6/o/LiferayElecnorAccountLogin/html/images/ms-logo.png | 213.172.38.6 | 200 | 2.9 kB |
URL GET HTTP/1.1213.172.38.6/o/LiferayElecnorAccountLogin/html/images/ms-logo.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Hash01d3f16b2bdab39a69d2e0f2019dd696 2f7e0b5e6f9563772942dde295c66c54e163c157 8ee5be289b25fe1868edb80dd7ebd3f8de6f9cc581c1324261bc74146a2bd0e8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/LiferayElecnorAccountLogin/html/images/ms-logo.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 07 Mar 2024 08:26:10 GMT
ETag: "2dec1ce1"
Content-Type: image/png
Content-Length: 2947
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/help-back.png | 213.172.38.6 | 200 | 2.4 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/help-back.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced Hash3c65c0a9c4b5a8631064983768f6ae87 a46f29a0ad761c6f95ad9946d6ebf10a7f858d6c 5dc22e45b74f1bd8663c5ade042e7b39404a1326247aa4c73740e558a7470d6b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/help-back.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "5c750270"
Content-Type: image/png
Content-Length: 2369
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
|
|
| 213.172.38.6/o/LiferayElecnorAccountLogin/html/images/main-logo.svg | 213.172.38.6 | 200 | 1.9 kB |
URL GET HTTP/1.1213.172.38.6/o/LiferayElecnorAccountLogin/html/images/main-logo.svg IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash36022e3f71a70a87225789dd1a7061dc 8d7d5baa3b97f8f828de7f4da2f35ac12e57d3f7 fb961636f783c3b1a02571958bf07e7d82afce993d3194e8c30cdc3e6efee4ec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/LiferayElecnorAccountLogin/html/images/main-logo.svg HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Last-Modified: Thu, 07 Mar 2024 08:26:10 GMT
ETag: W/"1863-1709799970000"
Content-Type: image/svg+xml
Content-Length: 1863
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/arrow-cau.png | 213.172.38.6 | 200 | 340 B |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/arrow-cau.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 42 x 28, 8-bit/color RGBA, non-interlaced Hashe92dd0a57b1b55c28e9e73572b141fa7 1a18110cf171425709216c05fdc7168641bc6577 eb62d55f246befb1ad1d60b92fdbadeafdd5e49616500ada0f65924465e4829f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/arrow-cau.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "13051dc"
Content-Type: image/png
Content-Length: 340
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/icon-linkedin.png | 213.172.38.6 | 200 | 1.9 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/icon-linkedin.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced Hash468ca2910a0c73dbd6c700f760598c22 a107b44aad8597fc1726540c35414bbde009b41a ac8bbf8903103316c14ca2d079462dbd4361cb5e83da37857ac46e50d12e8cdd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/icon-linkedin.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "af2d0437"
Content-Type: image/png
Content-Length: 1936
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/help-icon-cau.png | 213.172.38.6 | 200 | 2.6 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/help-icon-cau.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced Hash41fd6720a009abcbc9d0f09e137e6645 821ff27dfc2dad1562023562f27c5a6787e2d953 7fb4e606df081158abfd03d794af15c027e3b5762daaabd40fbfb8ca9ff94ec1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/help-icon-cau.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "35b943c5"
Content-Type: image/png
Content-Length: 2576
Keep-Alive: timeout=15, max=90
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/icon-twitter.png | 213.172.38.6 | 200 | 7.0 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/icon-twitter.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 160 x 160, 8-bit/color RGBA, non-interlaced Hashdaf68ce85d7f49637a1c7393b69bf7cd 85ff01d6ba7029ce1c5bbde788c99db059a318b4 41b2d3ef99b3988aae68ecdaddaa2610eb388958e854cd68a323372ede923be0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/icon-twitter.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "438e38e1"
Content-Type: image/png
Content-Length: 7031
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/logo_ge_en.jpg | 213.172.38.6 | 200 | 179 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/logo_ge_en.jpg IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 2247x1028, components 3 Size179 kB (179307 bytes) Hash4c958b66fb81f30ee768dffa2c1f8f5c 4f5c928dfcc74281e26ffd43fd9850c04621e245 035c52c13e1cdd0e82a4853118cfb15888c682abde32604fa06e52a419c1a812
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/logo_ge_en.jpg HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "7539e0b1"
Content-Type: image/jpeg
Content-Length: 179307
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
|
|
| 213.172.38.6/combo?browserId=firefox&minifierType=js&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/aui/aui.js&/o/frontend-js-aui-web/liferay/modules.js&/o/frontend-js-aui-web/liferay/aui_sandbox.js&/o/frontend-js-aui-web/aui/attribute-base/attribute-base.js&/o/frontend-js-aui-web/aui/attribute-complex/attribute-complex.js&/o/frontend-js-aui-web/aui/attribute-core/attribute-core.js&/o/frontend-js-aui-web/aui/attribute-observable/attribute-observable.js&/o/frontend-js-aui-web/aui/attribute-extras/attribute-extras.js&/o/frontend-js-aui-web/aui/event-custom-base/event-custom-base.js&/o/frontend-js-aui-web/aui/event-custom-complex/event-custom-complex.js&/o/frontend-js-aui-web/aui/oop/oop.js&/o/frontend-js-aui-web/aui/aui-base-lang/aui-base-lang.js&/o/frontend-js-aui-web/liferay/dependency.js&/o/frontend-js-aui-web/liferay/util.js&/o/frontend-js-web/loader/config.js&/o/frontend-js-web/loader/loader.js&/o/frontend-js-web/liferay/dom_task_runner.js&/o/frontend-js-web/liferay/events.js&/o/frontend-js-web/liferay/lazy_load.js&/o/frontend-js-web/liferay/liferay.js&/o/frontend-js-web/liferay/global.bundle.js&/o/frontend-js-web/liferay/portlet.js&/o/frontend-js-web/liferay/workflow.js | 213.172.38.6 | 200 | 423 kB |
URL GET HTTP/1.1213.172.38.6/combo?browserId=firefox&minifierType=js&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/aui/aui.js&/o/frontend-js-aui-web/liferay/modules.js&/o/frontend-js-aui-web/liferay/aui_sandbox.js&/o/frontend-js-aui-web/aui/attribute-base/attribute-base.js&/o/frontend-js-aui-web/aui/attribute-complex/attribute-complex.js&/o/frontend-js-aui-web/aui/attribute-core/attribute-core.js&/o/frontend-js-aui-web/aui/attribute-observable/attribute-observable.js&/o/frontend-js-aui-web/aui/attribute-extras/attribute-extras.js&/o/frontend-js-aui-web/aui/event-custom-base/event-custom-base.js&/o/frontend-js-aui-web/aui/event-custom-complex/event-custom-complex.js&/o/frontend-js-aui-web/aui/oop/oop.js&/o/frontend-js-aui-web/aui/aui-base-lang/aui-base-lang.js&/o/frontend-js-aui-web/liferay/dependency.js&/o/frontend-js-aui-web/liferay/util.js&/o/frontend-js-web/loader/config.js&/o/frontend-js-web/loader/loader.js&/o/frontend-js-web/liferay/dom_task_runner.js&/o/frontend-js-web/liferay/events.js&/o/frontend-js-web/liferay/lazy_load.js&/o/frontend-js-web/liferay/liferay.js&/o/frontend-js-web/liferay/global.bundle.js&/o/frontend-js-web/liferay/portlet.js&/o/frontend-js-web/liferay/workflow.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (578) Size423 kB (422744 bytes) Hash53526688c53fa0efe78dccee861d89bf 553609c619a0ebbaff9c1d04c8ff042a63d2303c af32a9d358489563b966bf80e45c1bc38afa6286faf7fc4c4545b2102af5e917
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo?browserId=firefox&minifierType=js&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/aui/aui.js&/o/frontend-js-aui-web/liferay/modules.js&/o/frontend-js-aui-web/liferay/aui_sandbox.js&/o/frontend-js-aui-web/aui/attribute-base/attribute-base.js&/o/frontend-js-aui-web/aui/attribute-complex/attribute-complex.js&/o/frontend-js-aui-web/aui/attribute-core/attribute-core.js&/o/frontend-js-aui-web/aui/attribute-observable/attribute-observable.js&/o/frontend-js-aui-web/aui/attribute-extras/attribute-extras.js&/o/frontend-js-aui-web/aui/event-custom-base/event-custom-base.js&/o/frontend-js-aui-web/aui/event-custom-complex/event-custom-complex.js&/o/frontend-js-aui-web/aui/oop/oop.js&/o/frontend-js-aui-web/aui/aui-base-lang/aui-base-lang.js&/o/frontend-js-aui-web/liferay/dependency.js&/o/frontend-js-aui-web/liferay/util.js&/o/frontend-js-web/loader/config.js&/o/frontend-js-web/loader/loader.js&/o/frontend-js-web/liferay/dom_task_runner.js&/o/frontend-js-web/liferay/events.js&/o/frontend-js-web/liferay/lazy_load.js&/o/frontend-js-web/liferay/liferay.js&/o/frontend-js-web/liferay/global.bundle.js&/o/frontend-js-web/liferay/portlet.js&/o/frontend-js-web/liferay/workflow.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:12 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "6ff5cfb"
Content-Type: text/javascript
Content-Length: 422744
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/icon-vimeo.png | 213.172.38.6 | 200 | 2.4 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/icon-vimeo.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced Hash39bdcc89f67c2c9b1cbfb49af4b2b782 6d1f0c038be5309afea2b3f53cc8cf8cf1cf6e77 b32a1a618c5ea47f39a896677e64cb42e08527a92d93b7d526778d84d64c93ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/icon-vimeo.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "d45d0e8a"
Content-Type: image/png
Content-Length: 2402
Keep-Alive: timeout=15, max=89
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/instagram-icon.png | 213.172.38.6 | 200 | 3.6 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/instagram-icon.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced Hash2b552abdc70a6a7233402ce5f6d15eff 75fe5f448fe2931a35ecc7f6277e2f3d4986faf8 46e251e6276509382e1cd97971e52256aabcf1ed3e5cfb577f77905b6fdc3128
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/instagram-icon.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "e030b01b"
Content-Type: image/png
Content-Length: 3570
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
|
|
| 213.172.38.6/image/layout_set_logo?img_id=54815226&t=1715063122441 | 213.172.38.6 | 200 | 13 kB |
URL GET HTTP/1.1213.172.38.6/image/layout_set_logo?img_id=54815226&t=1715063122441 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeGIF image data, version 89a, 260 x 84 Hash81959e10ada951e9cd2e9c4d97056861 e04132006da8e5682291b11a8acfa750024886b4 70fce606560153ce0e15dde9f7950ff40eb3ff27f11a3394e808c716a6bbbdbd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /image/layout_set_logo?img_id=54815226&t=1715063122441 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Tue, 07 May 2024 06:25:21 GMT
ETag: "52f3eff9"
Content-Type: image/gif
Content-Length: 13321
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
|
|
| www.googletagmanager.com/gtm.js?id=GTM-MNFXGV9 | 142.250.74.168 | 200 OK | 68 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-MNFXGV9 IP142.250.74.168:443
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2202) Hash856542d93421c2b68b6e538a48a46b37 ac47d0bd7ca8b8a71f9d836fc61d8de1eadc1095 5061118dc1910527f770d0ede9b7193d86990fd8d83b27b142dfb8f6aa81e532
GET /gtm.js?id=GTM-MNFXGV9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 22:18:13 GMT
expires: Tue, 07 May 2024 22:18:13 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68231
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 213.172.38.6/o/my-liferay-theme/images/clay/icons.svg | 213.172.38.6 | 200 | 229 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/clay/icons.svg IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Size229 kB (229328 bytes) Hashc952703b1b6fb9be766347b855323561 114dc2d4bfdbf6dadb4b349b54d09abeadeb7acf 1e42bd7344c4fcc7307facd288d85fd559b76ba86a97d32358385995f6d90946
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/clay/icons.svg HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Last-Modified: Fri, 15 Sep 2023 09:02:10 GMT
ETag: W/"229328-1694768530000"
Content-Type: image/svg+xml
Content-Length: 229328
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/widget-base/assets/skins/sam/widget-base.css | 213.172.38.6 | 200 | 321 B |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/widget-base/assets/skins/sam/widget-base.css IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (321), with no line terminators Hashbb55762331e2aab6a5689aff1449b91d 2f660f50eb6040c53f41e9c918f4b0b9de154b7d 589969ef21cf150751b8d2349d076ce0e1b34a674b60247a6588bc4ba30e0419
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/widget-base/assets/skins/sam/widget-base.css HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "d8d4a37d"
Content-Type: text/css;charset=UTF-8
Content-Length: 321
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/css/font-awesome/font/fontawesome-webfont.woff?v=3.2.1 | 213.172.38.6 | 200 | 44 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/css/font-awesome/font/fontawesome-webfont.woff?v=3.2.1 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 43572, version 1.0 Hashb683029bafe0305ac2234038a03e1541 12f8c193902e99348493ace32e498031bf79b654 18e6b5ff511b90edf098e62ac45ed9d6673a3eee10165d0de4164d4d02a3a77f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/css/font-awesome/font/fontawesome-webfont.woff?v=3.2.1 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/o/my-liferay-theme/css/clay.css?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&minifierType=css&languageId=en_US&b=7310&t=1694768538000
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Last-Modified: Fri, 15 Sep 2023 09:02:18 GMT
ETag: W/"43572-1694768538000"
Content-Type: font/woff
Content-Length: 43572
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://213.172.38.6
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 502993
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 213.172.38.6/o/js_resolve_modules?modules=metal-dom%2Fsrc%2Fall%2Fdom%2Cfrontend-js-web%2Fliferay%2Ftoast%2Fcommands%2FOpenToast.es | 213.172.38.6 | 200 | 26 kB |
URL GET HTTP/1.1213.172.38.6/o/js_resolve_modules?modules=metal-dom%2Fsrc%2Fall%2Fdom%2Cfrontend-js-web%2Fliferay%2Ftoast%2Fcommands%2FOpenToast.es IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashafe0f4ac9e6cf766a6db9386760b0efa 7de34442a8f23eac7afd8487d0f2a77c1f2a1229 5c3c9e8c5cb7098e937a40559581859ded740cdbaae3a45f31ca9d8333173b07
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/js_resolve_modules?modules=metal-dom%2Fsrc%2Fall%2Fdom%2Cfrontend-js-web%2Fliferay%2Ftoast%2Fcommands%2FOpenToast.es HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: no-cache
ETag: W/"f13b4c87-e117-474a-9f49-25bb7671e0d5"
Content-Type: application/json;charset=UTF-8
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;600;700;800&display=swap | 142.250.74.74 | 200 OK | 50 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;600;700;800&display=swap IP142.250.74.74:443
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash05e87f8e885aaeac2aabe2bc68499098 b10f0b2eb580c27426b9703d9cef4248546e1eb9 8e0e024d6659450522751f8de4cc8c1f0c6503b4f8fb80d0e02418a0bc9393d6
GET /css2?family=Open+Sans:wght@300;400;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 22:18:12 GMT
date: Tue, 07 May 2024 22:18:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 213.172.38.6/o/js_resolve_modules?modules=frontend-js-tooltip-support-web%403.0.5%2Findex | 213.172.38.6 | 200 | 33 kB |
URL GET HTTP/1.1213.172.38.6/o/js_resolve_modules?modules=frontend-js-tooltip-support-web%403.0.5%2Findex IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashab6c7dde406fa1f2329f7cae7611d880 a7d874b5c1d8c522a909fafb23a3b965a9983872 9c3930f91c4d5ed91487cf8b009304fe28d1350a96c82c48554b73d501077214
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/js_resolve_modules?modules=frontend-js-tooltip-support-web%403.0.5%2Findex HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: no-cache
ETag: W/"f13b4c87-e117-474a-9f49-25bb7671e0d5"
Content-Type: application/json;charset=UTF-8
Keep-Alive: timeout=15, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://213.172.38.6
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 502993
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/event-focus/event-focus-min.js&/o/frontend-js-aui-web/aui/widget-base/widget-base-min.js&/o/frontend-js-aui-web/aui/aui-widget-cssclass/aui-widget-cssclass-min.js&/o/frontend-js-aui-web/aui/aui-widget-toggle/aui-widget-toggle-min.js&/o/frontend-js-aui-web/aui/base-build/base-build-min.js&/o/frontend-js-aui-web/aui/aui-component/aui-component-min.js&/o/frontend-js-aui-web/aui/aui-event-base/aui-event-base-min.js&/o/frontend-js-aui-web/aui/timers/timers-min.js&/o/frontend-js-aui-web/aui/aui-event-input/aui-event-input-min.js&/o/frontend-js-aui-web/aui/aui-form-validator/aui-form-validator-min.js&/o/frontend-js-aui-web/liferay/form.js | 213.172.38.6 | 200 | 45 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/event-focus/event-focus-min.js&/o/frontend-js-aui-web/aui/widget-base/widget-base-min.js&/o/frontend-js-aui-web/aui/aui-widget-cssclass/aui-widget-cssclass-min.js&/o/frontend-js-aui-web/aui/aui-widget-toggle/aui-widget-toggle-min.js&/o/frontend-js-aui-web/aui/base-build/base-build-min.js&/o/frontend-js-aui-web/aui/aui-component/aui-component-min.js&/o/frontend-js-aui-web/aui/aui-event-base/aui-event-base-min.js&/o/frontend-js-aui-web/aui/timers/timers-min.js&/o/frontend-js-aui-web/aui/aui-event-input/aui-event-input-min.js&/o/frontend-js-aui-web/aui/aui-form-validator/aui-form-validator-min.js&/o/frontend-js-aui-web/liferay/form.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6015) Hash91b18037a7e11f378df0a3d4360b6df9 e53142dd6778c5bbb9d50f4b5779c34b282a2a1f e9173e2ebcc11ea9835151bdfee92021a7727e5c6681f8df8d5d1452393381c8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/event-focus/event-focus-min.js&/o/frontend-js-aui-web/aui/widget-base/widget-base-min.js&/o/frontend-js-aui-web/aui/aui-widget-cssclass/aui-widget-cssclass-min.js&/o/frontend-js-aui-web/aui/aui-widget-toggle/aui-widget-toggle-min.js&/o/frontend-js-aui-web/aui/base-build/base-build-min.js&/o/frontend-js-aui-web/aui/aui-component/aui-component-min.js&/o/frontend-js-aui-web/aui/aui-event-base/aui-event-base-min.js&/o/frontend-js-aui-web/aui/timers/timers-min.js&/o/frontend-js-aui-web/aui/aui-event-input/aui-event-input-min.js&/o/frontend-js-aui-web/aui/aui-form-validator/aui-form-validator-min.js&/o/frontend-js-aui-web/liferay/form.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "532a525a"
Content-Type: text/javascript
Content-Length: 45277
Keep-Alive: timeout=15, max=94
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/yui-throttle/yui-throttle-min.js&/o/frontend-js-aui-web/aui/classnamemanager/classnamemanager-min.js&/o/frontend-js-aui-web/aui/aui-classnamemanager/aui-classnamemanager-min.js&/o/frontend-js-aui-web/aui/aui-debounce/aui-debounce-min.js&/o/frontend-js-aui-web/aui/array-extras/array-extras-min.js&/o/frontend-js-aui-web/aui/event-base/event-base-min.js&/o/frontend-js-aui-web/aui/dom-core/dom-core-min.js&/o/frontend-js-aui-web/aui/dom-base/dom-base-min.js&/o/frontend-js-aui-web/aui/selector-native/selector-native-min.js&/o/frontend-js-aui-web/aui/selector/selector-min.js&/o/frontend-js-aui-web/aui/node-core/node-core-min.js&/o/frontend-js-aui-web/aui/dom-style/dom-style-min.js&/o/frontend-js-aui-web/aui/node-base/node-base-min.js&/o/frontend-js-aui-web/aui/event-delegate/event-delegate-min.js&/o/frontend-js-aui-web/aui/node-event-delegate/node-event-delegate-min.js | 213.172.38.6 | 200 | 43 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/yui-throttle/yui-throttle-min.js&/o/frontend-js-aui-web/aui/classnamemanager/classnamemanager-min.js&/o/frontend-js-aui-web/aui/aui-classnamemanager/aui-classnamemanager-min.js&/o/frontend-js-aui-web/aui/aui-debounce/aui-debounce-min.js&/o/frontend-js-aui-web/aui/array-extras/array-extras-min.js&/o/frontend-js-aui-web/aui/event-base/event-base-min.js&/o/frontend-js-aui-web/aui/dom-core/dom-core-min.js&/o/frontend-js-aui-web/aui/dom-base/dom-base-min.js&/o/frontend-js-aui-web/aui/selector-native/selector-native-min.js&/o/frontend-js-aui-web/aui/selector/selector-min.js&/o/frontend-js-aui-web/aui/node-core/node-core-min.js&/o/frontend-js-aui-web/aui/dom-style/dom-style-min.js&/o/frontend-js-aui-web/aui/node-base/node-base-min.js&/o/frontend-js-aui-web/aui/event-delegate/event-delegate-min.js&/o/frontend-js-aui-web/aui/node-event-delegate/node-event-delegate-min.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6004) Hashe7a5ec7f0915d1eeba37a866ec7e5f13 5d459d6571bfee547f164223b7e6746de501b603 99d000eda8218b924bdb163976990f75fcfb0da7f88a29b4efb182cd230db53d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/yui-throttle/yui-throttle-min.js&/o/frontend-js-aui-web/aui/classnamemanager/classnamemanager-min.js&/o/frontend-js-aui-web/aui/aui-classnamemanager/aui-classnamemanager-min.js&/o/frontend-js-aui-web/aui/aui-debounce/aui-debounce-min.js&/o/frontend-js-aui-web/aui/array-extras/array-extras-min.js&/o/frontend-js-aui-web/aui/event-base/event-base-min.js&/o/frontend-js-aui-web/aui/dom-core/dom-core-min.js&/o/frontend-js-aui-web/aui/dom-base/dom-base-min.js&/o/frontend-js-aui-web/aui/selector-native/selector-native-min.js&/o/frontend-js-aui-web/aui/selector/selector-min.js&/o/frontend-js-aui-web/aui/node-core/node-core-min.js&/o/frontend-js-aui-web/aui/dom-style/dom-style-min.js&/o/frontend-js-aui-web/aui/node-base/node-base-min.js&/o/frontend-js-aui-web/aui/event-delegate/event-delegate-min.js&/o/frontend-js-aui-web/aui/node-event-delegate/node-event-delegate-min.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "8cb42b73"
Content-Type: text/javascript
Content-Length: 43384
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/pluginhost-base/pluginhost-base-min.js&/o/frontend-js-aui-web/aui/pluginhost-config/pluginhost-config-min.js&/o/frontend-js-aui-web/aui/node-pluginhost/node-pluginhost-min.js&/o/frontend-js-aui-web/aui/dom-screen/dom-screen-min.js&/o/frontend-js-aui-web/aui/node-screen/node-screen-min.js&/o/frontend-js-aui-web/aui/node-style/node-style-min.js&/o/frontend-js-aui-web/aui/aui-node-base/aui-node-base-min.js&/o/frontend-js-aui-web/aui/escape/escape-min.js&/o/frontend-js-aui-web/aui/selector-css2/selector-css2-min.js&/o/frontend-js-aui-web/aui/selector-css3/selector-css3-min.js&/o/frontend-js-aui-web/aui/base-core/base-core-min.js&/o/frontend-js-aui-web/aui/base-observable/base-observable-min.js&/o/frontend-js-aui-web/aui/base-base/base-base-min.js&/o/frontend-js-aui-web/aui/base-pluginhost/base-pluginhost-min.js&/o/frontend-js-aui-web/aui/event-synthetic/event-synthetic-min.js | 213.172.38.6 | 200 | 37 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/pluginhost-base/pluginhost-base-min.js&/o/frontend-js-aui-web/aui/pluginhost-config/pluginhost-config-min.js&/o/frontend-js-aui-web/aui/node-pluginhost/node-pluginhost-min.js&/o/frontend-js-aui-web/aui/dom-screen/dom-screen-min.js&/o/frontend-js-aui-web/aui/node-screen/node-screen-min.js&/o/frontend-js-aui-web/aui/node-style/node-style-min.js&/o/frontend-js-aui-web/aui/aui-node-base/aui-node-base-min.js&/o/frontend-js-aui-web/aui/escape/escape-min.js&/o/frontend-js-aui-web/aui/selector-css2/selector-css2-min.js&/o/frontend-js-aui-web/aui/selector-css3/selector-css3-min.js&/o/frontend-js-aui-web/aui/base-core/base-core-min.js&/o/frontend-js-aui-web/aui/base-observable/base-observable-min.js&/o/frontend-js-aui-web/aui/base-base/base-base-min.js&/o/frontend-js-aui-web/aui/base-pluginhost/base-pluginhost-min.js&/o/frontend-js-aui-web/aui/event-synthetic/event-synthetic-min.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6008) Hash02f0ce2bd08a875ced92bc8b1f74e1ac a02acd36f106b2615a98c9bfc6c45a71235fffe9 1fd27e552de07e6cf0aa53b8eec5646dce33906668bc85f372fe402951a4dfee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/pluginhost-base/pluginhost-base-min.js&/o/frontend-js-aui-web/aui/pluginhost-config/pluginhost-config-min.js&/o/frontend-js-aui-web/aui/node-pluginhost/node-pluginhost-min.js&/o/frontend-js-aui-web/aui/dom-screen/dom-screen-min.js&/o/frontend-js-aui-web/aui/node-screen/node-screen-min.js&/o/frontend-js-aui-web/aui/node-style/node-style-min.js&/o/frontend-js-aui-web/aui/aui-node-base/aui-node-base-min.js&/o/frontend-js-aui-web/aui/escape/escape-min.js&/o/frontend-js-aui-web/aui/selector-css2/selector-css2-min.js&/o/frontend-js-aui-web/aui/selector-css3/selector-css3-min.js&/o/frontend-js-aui-web/aui/base-core/base-core-min.js&/o/frontend-js-aui-web/aui/base-observable/base-observable-min.js&/o/frontend-js-aui-web/aui/base-base/base-base-min.js&/o/frontend-js-aui-web/aui/base-pluginhost/base-pluginhost-min.js&/o/frontend-js-aui-web/aui/event-synthetic/event-synthetic-min.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "30f4f311"
Content-Type: text/javascript
Content-Length: 36574
Keep-Alive: timeout=15, max=88
Connection: Keep-Alive
|
|
| 213.172.38.6/o/js_resolve_modules?modules=frontend-js-tabs-support-web%401.0.9%2Findex | 213.172.38.6 | 200 | 11 kB |
URL GET HTTP/1.1213.172.38.6/o/js_resolve_modules?modules=frontend-js-tabs-support-web%401.0.9%2Findex IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash43e9687503b60e76eca12348ff300f65 e77683baffa9a667f35f43d146c2b9520427043f d383a2fed2f92ff43e898508e2458c444065b8b5d7cf5ef5c4a92ea397e4fdb5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/js_resolve_modules?modules=frontend-js-tabs-support-web%401.0.9%2Findex HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: no-cache
ETag: W/"f13b4c87-e117-474a-9f49-25bb7671e0d5"
Content-Type: application/json;charset=UTF-8
Keep-Alive: timeout=15, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| 213.172.38.6/o/js_resolve_modules?modules=frontend-js-alert-support-web%401.0.8%2Findex | 213.172.38.6 | 200 | 10 kB |
URL GET HTTP/1.1213.172.38.6/o/js_resolve_modules?modules=frontend-js-alert-support-web%401.0.8%2Findex IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash24db561914fa9c3829451c95339b1207 fc2fd2c77afca5dd0b8d0090ff90f69dd1aa46da 02b09ebe703bd916e77eeaf56612957b8e746a8baa5dc079fb24b66bcc360ed4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/js_resolve_modules?modules=frontend-js-alert-support-web%401.0.8%2Findex HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: no-cache
ETag: W/"f13b4c87-e117-474a-9f49-25bb7671e0d5"
Content-Type: application/json;charset=UTF-8
Keep-Alive: timeout=15, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| 213.172.38.6/o/js_resolve_modules?modules=frontend-js-collapse-support-web%401.0.11%2Findex | 213.172.38.6 | 200 | 11 kB |
URL GET HTTP/1.1213.172.38.6/o/js_resolve_modules?modules=frontend-js-collapse-support-web%401.0.11%2Findex IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashc64a94639d775bfad6a42eea17245e92 01cef88388828d8eb3364a39d2434cbde6899e47 8b5a29c72cbf7fcd8948e1ce2a88da23ff5938db6a2321c13ec2527e245d72c8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/js_resolve_modules?modules=frontend-js-collapse-support-web%401.0.11%2Findex HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: no-cache
ETag: W/"f13b4c87-e117-474a-9f49-25bb7671e0d5"
Content-Type: application/json;charset=UTF-8
Keep-Alive: timeout=15, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| www.googletagmanager.com/gtag/js?id=G-8X0H6HSF97&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 103 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-8X0H6HSF97&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size103 kB (102767 bytes) Hash56a2b1c5ef923eaefee77d8083e56f95 662155ac4287be005ed04e0449c3f5f35333058f 2b0eb56c5d6269910fa7cdb6610c98aff7e84ab06c37aff7658dabecc3741093
GET /gtag/js?id=G-8X0H6HSF97&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 22:18:13 GMT
expires: Tue, 07 May 2024 22:18:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 102767
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 213.172.38.6/o/js_resolve_modules?modules=frontend-js-dropdown-support-web%401.0.9%2Findex | 213.172.38.6 | 200 | 11 kB |
URL GET HTTP/1.1213.172.38.6/o/js_resolve_modules?modules=frontend-js-dropdown-support-web%401.0.9%2Findex IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash0529a534f87c885988bd6a98a4f032ef 6ba92f6392e4c6f43bd0acb21813d31782f74cc7 ac53c9fb5af1dce3314ed7f6a0a2ed416fd65f72d3c52ab6d2b71f23e399276e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/js_resolve_modules?modules=frontend-js-dropdown-support-web%401.0.9%2Findex HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: no-cache
ETag: W/"f13b4c87-e117-474a-9f49-25bb7671e0d5"
Content-Type: application/json;charset=UTF-8
Keep-Alive: timeout=15, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| 213.172.38.6/o/js_resolve_modules?modules=remote-app-support-web%401.0.6%2Findex | 213.172.38.6 | 200 | 70 kB |
URL GET HTTP/1.1213.172.38.6/o/js_resolve_modules?modules=remote-app-support-web%401.0.6%2Findex IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashf35cbb0e976cdd96d4679bd726a969e7 c22936e1c4b0bd2eae7a9e8844f4035da0cc9996 0832f6d65229ff335ce977466eaf0504a92bdcc8195111ee773db308fe5ea473
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/js_resolve_modules?modules=remote-app-support-web%401.0.6%2Findex HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: no-cache
ETag: W/"f13b4c87-e117-474a-9f49-25bb7671e0d5"
Content-Type: application/json;charset=UTF-8
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/portal-search-web/js/search_bar.js | 213.172.38.6 | 200 | 1.8 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/portal-search-web/js/search_bar.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (513) Hashccf6be78962e0126ea733f580299687c ae8754e1b58f46b214fb7116b9c156e46e9627a9 1c10d24036f469088efd5cc892e85f9dde7d6c5d1595f8febe792cb8940efd0b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/portal-search-web/js/search_bar.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "b41b2d03"
Content-Type: text/javascript
Content-Length: 1814
Keep-Alive: timeout=15, max=93
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/prev.png | 213.172.38.6 | 200 | 1.4 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/prev.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced Hash84b76dee6b27b795e89e3649078a11c2 6640a3432f7ba7aea6129cdf7a5d3eabd47c295c 7fd9273f20fdb1229c224341271a119020a5eee74ccf6b4605730917c864caf2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/prev.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/o/my-liferay-theme/css/lightbox.css
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "b19a96e6"
Content-Type: image/png
Content-Length: 1360
Keep-Alive: timeout=15, max=87
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/loading.gif | 213.172.38.6 | 200 | 8.5 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/loading.gif IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeGIF image data, version 89a, 32 x 32 Hash2299ad0b3f63413f026dfec20c205b8f cf720b50cf8dde0e1a84ce1c6a77788bfc5882d5 225aa88b6ab02c06222ec9468d62e15fa188e39cdb9431d1f55401ad380753ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/loading.gif HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/o/my-liferay-theme/css/lightbox.css
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "9f0d4ed8"
Content-Type: image/gif
Content-Length: 8476
Keep-Alive: timeout=15, max=93
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/close.png | 213.172.38.6 | 200 | 280 B |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/close.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 27 x 27, 8-bit colormap, non-interlaced Hashd9d2d0b1308cb694aa8116915592e2a9 3ca48361cfe0e41163023d03c26296f375bb3eac 5d62e6c90005bfb71f6abb440f9e4753681cb23bbd5e60477ab6f442d2f0e69c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/close.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/o/my-liferay-theme/css/lightbox.css
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "28f3558f"
Content-Type: image/png
Content-Length: 280
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/next.png | 213.172.38.6 | 200 | 1.4 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/next.png IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced Hash31f15875975aab69085470aabbfec802 777e92c050f600b4519299c3d786b8f2f459fea4 15b869b02c6fbaa8c6c26445a2dd2d9bad80fd27b1409f8179e5dd89dc89d90a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/next.png HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/o/my-liferay-theme/css/lightbox.css
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT, Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "20afba09"
Content-Type: image/png
Content-Length: 1350
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-tabs-support-web@1.0.9/TabsProvider.js&/o/js/resolved-module/frontend-js-tabs-support-web@1.0.9/index.js | 213.172.38.6 | 200 | 5.0 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-tabs-support-web@1.0.9/TabsProvider.js&/o/js/resolved-module/frontend-js-tabs-support-web@1.0.9/index.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (526) Hasheb8b8d07d5cc4b8145d76ab0231b059c 48e6ce9b7ebdd7b37446eb8efb3d528ac5de90be ba7cdb842d81e62a3b341aecea75c78302152a7a69d4cac8710462e4aaca7280
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-tabs-support-web@1.0.9/TabsProvider.js&/o/js/resolved-module/frontend-js-tabs-support-web@1.0.9/index.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:12 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "9904e4ca"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 5041
Keep-Alive: timeout=15, max=91
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useEventListener.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useIsMounted.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useInterval.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/usePrevious.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useStateSafe.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useThunk.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useTimeout.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/index.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/toast/commands/OpenToast.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/bridge/frontend-js-web/liferay/toast/commands/OpenToast.es.js | 213.172.38.6 | 200 | 13 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useEventListener.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useIsMounted.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useInterval.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/usePrevious.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useStateSafe.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useThunk.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useTimeout.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/index.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/toast/commands/OpenToast.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/bridge/frontend-js-web/liferay/toast/commands/OpenToast.es.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (550) Hashbd20ddd2ecfbf4c12488b50a0c938ea9 a52e7b5ee993b9df385a869faf90b73099dc9556 03487d4f29b1c9efca598b70a508a4a1f38193bd6bc0202fe4aa8fffc3f14827
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useEventListener.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useIsMounted.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useInterval.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/usePrevious.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useStateSafe.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useThunk.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/hooks/useTimeout.es.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/index.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/toast/commands/OpenToast.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/bridge/frontend-js-web/liferay/toast/commands/OpenToast.es.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "8ab641e1"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 13062
Keep-Alive: timeout=15, max=86
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/tooltip@3.4.0/lib/TooltipProvider.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/tooltip@3.4.0/lib/index.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/Geometry.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/Position.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/Align.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/all/position.js&/o/js/resolved-module/frontend-js-tooltip-support-web@3.0.5/reducer.js&/o/js/resolved-module/frontend-js-tooltip-support-web@3.0.5/index.js | 213.172.38.6 | 200 | 33 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/tooltip@3.4.0/lib/TooltipProvider.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/tooltip@3.4.0/lib/index.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/Geometry.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/Position.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/Align.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/all/position.js&/o/js/resolved-module/frontend-js-tooltip-support-web@3.0.5/reducer.js&/o/js/resolved-module/frontend-js-tooltip-support-web@3.0.5/index.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1233) Hashb4c0fbe2b466a21a6780af014881c8c3 8967314f98cd870ed4dd3046ebda831f5c186775 b8fa2843852d84c96f0f42cd976db374c9f8c165a9c94cc42766eb74eb2d7375
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/tooltip@3.4.0/lib/TooltipProvider.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/tooltip@3.4.0/lib/index.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/Geometry.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/Position.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/Align.js&/o/js/resolved-module/frontend-js-metal-web$metal-position@2.1.2/lib/all/position.js&/o/js/resolved-module/frontend-js-tooltip-support-web@3.0.5/reducer.js&/o/js/resolved-module/frontend-js-tooltip-support-web@3.0.5/index.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "bb3a4589"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 33114
Keep-Alive: timeout=15, max=91
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-alert-support-web@1.0.8/index.js | 213.172.38.6 | 200 | 794 B |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-alert-support-web@1.0.8/index.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (509) Hash150dd1a57270e3a75ca7f8646937736b 16398c317367e163eb438d9c4705cc3958d71c71 99d7306785cc5a4dde722264287767423c335b4f8a35016b53d2ea35d8693a69
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-alert-support-web@1.0.8/index.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "f7b316b7"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 794
Keep-Alive: timeout=15, max=90
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-metal-web@4.0.9/bridge/metal-dom/src/all/dom.js&/o/js/resolved-module/frontend-taglib-clay$classnames@2.2.6/index.js&/o/js/resolved-module/frontend-js-react-web$object-assign@4.1.1/index.js&/o/js/resolved-module/frontend-js-react-web$react@16.12.0/cjs/react.production.min.js&/o/js/resolved-module/frontend-js-react-web$react@16.12.0/index.js&/o/js/resolved-module/frontend-taglib-clay$warning@4.0.3/warning.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/icon@3.1.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Col.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Container.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/ContainerFluid.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Content.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Row.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Sheet.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/alert@3.5.0/lib/Footer.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/alert@3.5.0/lib/ToastContainer.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/alert@3.5.0/lib/index.js&/o/js/resolved-module/frontend-js-node-shims$process@0.11.10/browser.js&/o/js/resolved-module/frontend-js-node-shims$process@0.11.10/index.js&/o/js/resolved-module/frontend-js-react-web$scheduler@0.18.0/cjs/scheduler.production.min.js&/o/js/resolved-module/frontend-js-react-web$scheduler@0.18.0/index.js&/o/js/resolved-module/frontend-js-react-web$react-dom@16.12.0/cjs/react-dom.production.min.js&/o/js/resolved-module/frontend-js-react-web$react-dom@16.12.0/index.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/render.es.js | 213.172.38.6 | 200 | 222 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-metal-web@4.0.9/bridge/metal-dom/src/all/dom.js&/o/js/resolved-module/frontend-taglib-clay$classnames@2.2.6/index.js&/o/js/resolved-module/frontend-js-react-web$object-assign@4.1.1/index.js&/o/js/resolved-module/frontend-js-react-web$react@16.12.0/cjs/react.production.min.js&/o/js/resolved-module/frontend-js-react-web$react@16.12.0/index.js&/o/js/resolved-module/frontend-taglib-clay$warning@4.0.3/warning.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/icon@3.1.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Col.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Container.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/ContainerFluid.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Content.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Row.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Sheet.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/alert@3.5.0/lib/Footer.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/alert@3.5.0/lib/ToastContainer.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/alert@3.5.0/lib/index.js&/o/js/resolved-module/frontend-js-node-shims$process@0.11.10/browser.js&/o/js/resolved-module/frontend-js-node-shims$process@0.11.10/index.js&/o/js/resolved-module/frontend-js-react-web$scheduler@0.18.0/cjs/scheduler.production.min.js&/o/js/resolved-module/frontend-js-react-web$scheduler@0.18.0/index.js&/o/js/resolved-module/frontend-js-react-web$react-dom@16.12.0/cjs/react-dom.production.min.js&/o/js/resolved-module/frontend-js-react-web$react-dom@16.12.0/index.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/render.es.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (553) Size222 kB (222069 bytes) Hashbe7b6580d18877ac1fc943c2c0d63c52 fb92a12058c151029bc9786cd21ecf1139d69525 c2918849f20e05bf28dc9ace3ff187445cc0bb757d435b1d4f5196f695e0a722
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-metal-web@4.0.9/bridge/metal-dom/src/all/dom.js&/o/js/resolved-module/frontend-taglib-clay$classnames@2.2.6/index.js&/o/js/resolved-module/frontend-js-react-web$object-assign@4.1.1/index.js&/o/js/resolved-module/frontend-js-react-web$react@16.12.0/cjs/react.production.min.js&/o/js/resolved-module/frontend-js-react-web$react@16.12.0/index.js&/o/js/resolved-module/frontend-taglib-clay$warning@4.0.3/warning.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/icon@3.1.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Col.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Container.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/ContainerFluid.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Content.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Row.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/Sheet.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/layout@3.3.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/alert@3.5.0/lib/Footer.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/alert@3.5.0/lib/ToastContainer.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/alert@3.5.0/lib/index.js&/o/js/resolved-module/frontend-js-node-shims$process@0.11.10/browser.js&/o/js/resolved-module/frontend-js-node-shims$process@0.11.10/index.js&/o/js/resolved-module/frontend-js-react-web$scheduler@0.18.0/cjs/scheduler.production.min.js&/o/js/resolved-module/frontend-js-react-web$scheduler@0.18.0/index.js&/o/js/resolved-module/frontend-js-react-web$react-dom@16.12.0/cjs/react-dom.production.min.js&/o/js/resolved-module/frontend-js-react-web$react-dom@16.12.0/index.js&/o/js/resolved-module/frontend-js-react-web@4.0.19/js/render.es.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "c081ae51"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 222069
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/coreNamed.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/core.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/array/array.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/async/async.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/disposable/Disposable.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/object/object.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/string/string.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/metal.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/domData.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventHandle.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventEmitter.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventEmitterProxy.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventHandler.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/events.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/DomDelegatedEventHandle.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/DomEventHandle.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/domNamed.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/dom.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/DomEventEmitterProxy.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/features.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/globalEval.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/globalEvalStyles.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/events.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/all/dom.js | 213.172.38.6 | 200 | 69 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/coreNamed.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/core.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/array/array.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/async/async.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/disposable/Disposable.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/object/object.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/string/string.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/metal.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/domData.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventHandle.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventEmitter.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventEmitterProxy.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventHandler.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/events.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/DomDelegatedEventHandle.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/DomEventHandle.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/domNamed.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/dom.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/DomEventEmitterProxy.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/features.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/globalEval.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/globalEvalStyles.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/events.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/all/dom.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (594) Hashb1b57c56188eafeac36896621e4aa53c 90cbf1248dd56b004a33a3e098998a92bee4e7fc 9286db51cea7dfc41a551a892b2cb6cc42d8b9b209254da1aeb0f89650c7272e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/coreNamed.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/core.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/array/array.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/async/async.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/disposable/Disposable.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/object/object.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/string/string.js&/o/js/resolved-module/frontend-js-metal-web$metal@2.16.8/lib/metal.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/domData.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventHandle.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventEmitter.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventEmitterProxy.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/EventHandler.js&/o/js/resolved-module/frontend-js-metal-web$metal-events@2.16.8/lib/events.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/DomDelegatedEventHandle.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/DomEventHandle.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/domNamed.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/dom.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/DomEventEmitterProxy.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/features.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/globalEval.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/globalEvalStyles.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/events.js&/o/js/resolved-module/frontend-js-metal-web$metal-dom@2.16.8/lib/all/dom.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "89df3b48"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 69355
Keep-Alive: timeout=15, max=94
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-collapse-support-web@1.0.11/CollapseProvider.js&/o/js/resolved-module/frontend-js-collapse-support-web@1.0.11/index.js | 213.172.38.6 | 200 | 6.6 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-collapse-support-web@1.0.11/CollapseProvider.js&/o/js/resolved-module/frontend-js-collapse-support-web@1.0.11/index.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (533) Hashb64952007e0d820b3d6757b9676b860b bdef33a02acc36480791d14c2d1928e80d0cf10c c9eceaafe016ff560dbb85692033689acf0b9af184c51294db79158dcbc59e40
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-collapse-support-web@1.0.11/CollapseProvider.js&/o/js/resolved-module/frontend-js-collapse-support-web@1.0.11/index.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "e2580fd1"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 6595
Keep-Alive: timeout=15, max=85
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/aui-timer/aui-timer-min.js&/o/frontend-js-aui-web/aui/event-touch/event-touch-min.js&/o/frontend-js-aui-web/aui/event-move/event-move-min.js | 213.172.38.6 | 200 | 7.6 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/aui-timer/aui-timer-min.js&/o/frontend-js-aui-web/aui/event-touch/event-touch-min.js&/o/frontend-js-aui-web/aui/event-move/event-move-min.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (3995) Hash2b21716e8f55e7bda349e7716352d1d3 c198763b6f9343ddb5ca44754120e8546a10ee93 7f04329fa92456e93b5c515e3df9f9807fd49c3eaffb7cc1e0172c4a24371832
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/aui-timer/aui-timer-min.js&/o/frontend-js-aui-web/aui/event-touch/event-touch-min.js&/o/frontend-js-aui-web/aui/event-move/event-move-min.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "1b783ceb"
Content-Type: text/javascript
Content-Length: 7628
Keep-Alive: timeout=15, max=90
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/tooltip@3.4.0/lib/Tooltip.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/Portal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/delegate.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/Keys.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useFocusManagement.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/FocusScope.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/getEllipsisItems.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/Group.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/Button.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/ButtonWithIcon.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/link@3.2.0/lib/Context.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/link@3.2.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/LinkOrButton.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/sub.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/observeRect.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useDebounce.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/setElementFullHeight.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useInternalState.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useMousePosition.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/MouseSafeArea.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/index.js&/o/js/resolved-module/frontend-taglib-clay$dom-align@1.10.4/dist-node/index.js | 213.172.38.6 | 200 | 72 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/tooltip@3.4.0/lib/Tooltip.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/Portal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/delegate.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/Keys.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useFocusManagement.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/FocusScope.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/getEllipsisItems.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/Group.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/Button.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/ButtonWithIcon.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/link@3.2.0/lib/Context.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/link@3.2.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/LinkOrButton.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/sub.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/observeRect.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useDebounce.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/setElementFullHeight.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useInternalState.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useMousePosition.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/MouseSafeArea.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/index.js&/o/js/resolved-module/frontend-taglib-clay$dom-align@1.10.4/dist-node/index.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (613) Hasha7c50dc5bb6306edcebc3285af0f72e5 eedbe0a22291525edbe140bd32440e851b6d729f a29bf838717ee5e3b0bdba1a0ca69cb773cae7ebd6a0874de13b1b50b545e22c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/tooltip@3.4.0/lib/Tooltip.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/Portal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/delegate.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/Keys.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useFocusManagement.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/FocusScope.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/getEllipsisItems.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/Group.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/Button.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/ButtonWithIcon.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/button@3.6.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/link@3.2.0/lib/Context.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/link@3.2.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/LinkOrButton.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/sub.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/observeRect.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useDebounce.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/setElementFullHeight.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useInternalState.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/useMousePosition.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/MouseSafeArea.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/shared@3.29.0/lib/index.js&/o/js/resolved-module/frontend-taglib-clay$dom-align@1.10.4/dist-node/index.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:13 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "1ee41812"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 71938
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-dropdown-support-web$dom-align@1.10.4/dist-node/index.js&/o/js/resolved-module/frontend-js-dropdown-support-web@1.0.9/DropdownProvider.js&/o/js/resolved-module/frontend-js-dropdown-support-web@1.0.9/index.js | 213.172.38.6 | 200 | 29 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-dropdown-support-web$dom-align@1.10.4/dist-node/index.js&/o/js/resolved-module/frontend-js-dropdown-support-web@1.0.9/DropdownProvider.js&/o/js/resolved-module/frontend-js-dropdown-support-web@1.0.9/index.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (564) Hash3d9cf9a6cd1c0f5c5abf6f01733ea64a 7867806761204e7c80852afe0b481b63779a29fd 010bbd0cdaede6413e56c895b90b83362b5cccbbdd2108c833dc2786e4161711
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-dropdown-support-web$dom-align@1.10.4/dist-node/index.js&/o/js/resolved-module/frontend-js-dropdown-support-web@1.0.9/DropdownProvider.js&/o/js/resolved-module/frontend-js-dropdown-support-web@1.0.9/index.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:14 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "e355907e"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 28950
Keep-Alive: timeout=15, max=84
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/aop/AOP.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/autosize/autosize.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/debounce/debounce.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/form/object_to_form_data.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/breakpoints.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/validators.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/Config.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/State.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/all/state.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/CompatibilityEventProxy.es.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/events/events.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/sync/sync.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/ComponentDataManager.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/ComponentRenderer.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/Component.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/ComponentRegistry.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/all/component.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/PortletBase.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/DefaultEventHandler.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/toggle_disabled.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/ItemSelectorDialog.es.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/loading-indicator@3.2.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Body.js | 213.172.38.6 | 200 | 80 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/aop/AOP.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/autosize/autosize.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/debounce/debounce.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/form/object_to_form_data.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/breakpoints.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/validators.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/Config.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/State.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/all/state.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/CompatibilityEventProxy.es.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/events/events.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/sync/sync.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/ComponentDataManager.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/ComponentRenderer.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/Component.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/ComponentRegistry.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/all/component.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/PortletBase.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/DefaultEventHandler.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/toggle_disabled.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/ItemSelectorDialog.es.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/loading-indicator@3.2.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Body.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (601) Hash04d76970bb5d6185bd95ebb90db8998b d7c4117e5aaecbd767495ea36f244ef265f01a6c 07fea194ee5ce5a878833ec15f6491d1c01f49dbd645b4313239bfbe9200ebfc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/aop/AOP.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/autosize/autosize.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/debounce/debounce.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/form/object_to_form_data.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/breakpoints.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/validators.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/Config.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/State.js&/o/js/resolved-module/frontend-js-metal-web$metal-state@2.16.8/lib/all/state.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/CompatibilityEventProxy.es.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/events/events.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/sync/sync.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/ComponentDataManager.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/ComponentRenderer.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/Component.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/ComponentRegistry.js&/o/js/resolved-module/frontend-js-metal-web$metal-component@2.16.8/lib/all/component.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/PortletBase.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/DefaultEventHandler.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/toggle_disabled.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/ItemSelectorDialog.es.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/loading-indicator@3.2.0/lib/index.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Body.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:14 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "b7d65636"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 79838
Keep-Alive: timeout=15, max=89
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Context.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Footer.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Header.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Hook.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/types.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Modal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/useModal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Provider.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/index.js&/o/js/resolved-module/frontend-js-react-web$classnames@2.2.6/index.js&/o/js/resolved-module/frontend-js-react-web$prop-types@15.7.2/lib/ReactPropTypesSecret.js&/o/js/resolved-module/frontend-js-react-web$prop-types@15.7.2/factoryWithThrowingShims.js&/o/js/resolved-module/frontend-js-react-web$prop-types@15.7.2/index.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/Modal.scss.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/navigate.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/Modal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Checkbox.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/SelectBox.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/DualListBox.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Form.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Input.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Radio.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/RadioGroup.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Select.js | 213.172.38.6 | 200 | 89 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Context.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Footer.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Header.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Hook.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/types.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Modal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/useModal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Provider.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/index.js&/o/js/resolved-module/frontend-js-react-web$classnames@2.2.6/index.js&/o/js/resolved-module/frontend-js-react-web$prop-types@15.7.2/lib/ReactPropTypesSecret.js&/o/js/resolved-module/frontend-js-react-web$prop-types@15.7.2/factoryWithThrowingShims.js&/o/js/resolved-module/frontend-js-react-web$prop-types@15.7.2/index.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/Modal.scss.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/navigate.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/Modal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Checkbox.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/SelectBox.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/DualListBox.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Form.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Input.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Radio.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/RadioGroup.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Select.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (696) Hash2235414b2b6fe78bfa103f110515d67d 702a2d604f090fa27e8b245116be39c7391b03aa 12ea9bc919aed5f2f897b3b08783a189ee5e6e9287de083631b98065f7769dae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Context.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Footer.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Header.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Hook.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/types.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Modal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/useModal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/Provider.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/modal@3.8.0/lib/index.js&/o/js/resolved-module/frontend-js-react-web$classnames@2.2.6/index.js&/o/js/resolved-module/frontend-js-react-web$prop-types@15.7.2/lib/ReactPropTypesSecret.js&/o/js/resolved-module/frontend-js-react-web$prop-types@15.7.2/factoryWithThrowingShims.js&/o/js/resolved-module/frontend-js-react-web$prop-types@15.7.2/index.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/Modal.scss.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/navigate.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/Modal.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Checkbox.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/SelectBox.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/DualListBox.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Form.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Input.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Radio.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/RadioGroup.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Select.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:14 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "ae541680"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 89020
Keep-Alive: timeout=15, max=91
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/liferay/menu.js | 213.172.38.6 | 200 | 11 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/liferay/menu.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (563) Hashe53a8c7367a32bc57f127e1d75d63028 8373324ebe643468bdb455155cfdb5fa31beffd8 46d866547f8ad8f4e4e80ebd24cd208b7913f65a1ddf74900be437a50f3c77cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/liferay/menu.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:14 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "e4d583e2"
Content-Type: text/javascript
Content-Length: 11054
Keep-Alive: timeout=15, max=83
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/SelectWithOption.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Toggle.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/index.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/components/SimpleInputModal.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/commands/OpenSimpleInputModal.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_portlet_namespace.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_portlet_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_action_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_render_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_resource_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/fetch.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/session.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/throttle.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/add_params.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_dom.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_element.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/in_browser_view.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/focus_form_field.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_portlet_id.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/is_phone.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/is_tablet.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/normalize_friendly_url.js&/o/js/resolved-module/frontend-js-web@4.0.46/index.es.js&/o/js/resolved-module/remote-app-support-web@1.0.6/index.js | 213.172.38.6 | 200 | 56 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/SelectWithOption.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Toggle.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/index.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/components/SimpleInputModal.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/commands/OpenSimpleInputModal.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_portlet_namespace.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_portlet_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_action_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_render_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_resource_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/fetch.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/session.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/throttle.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/add_params.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_dom.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_element.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/in_browser_view.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/focus_form_field.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_portlet_id.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/is_phone.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/is_tablet.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/normalize_friendly_url.js&/o/js/resolved-module/frontend-js-web@4.0.46/index.es.js&/o/js/resolved-module/remote-app-support-web@1.0.6/index.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (569) Hash4bafc5c57d14d3edaf809214c8e10280 84005b25bb506a9855f14b219608833cab7843a1 a0336cbab4c45f455daaba155bea33efbd848efee7149658166c03f80f860708
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/SelectWithOption.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/Toggle.js&/o/js/resolved-module/@frontend-taglib-clay$clayui/form@3.29.0/lib/index.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/components/SimpleInputModal.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/modal/commands/OpenSimpleInputModal.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_portlet_namespace.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_portlet_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_action_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_render_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/portlet_url/create_resource_url.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/fetch.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/session.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/throttle.es.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/add_params.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_dom.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_element.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/in_browser_view.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/focus_form_field.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/get_portlet_id.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/is_phone.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/is_tablet.js&/o/js/resolved-module/frontend-js-web@4.0.46/liferay/util/normalize_friendly_url.js&/o/js/resolved-module/frontend-js-web@4.0.46/index.es.js&/o/js/resolved-module/remote-app-support-web@1.0.6/index.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:14 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "b88b7fdd"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 55484
Keep-Alive: timeout=15, max=93
Connection: Keep-Alive
|
|
| 213.172.38.6/o/frontend-js-web/liferay/modal/Modal.css | 213.172.38.6 | 200 | 1.3 kB |
URL GET HTTP/1.1213.172.38.6/o/frontend-js-web/liferay/modal/Modal.css IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash87f033cc34b939a738cf0a0d2bf0381a 5107c2d0f1185a32aaf0b137c6da2c7144dfdfb9 0fbba475e3eb6dae513de9bb8010aff38286094fe5a3c5c19a67a860cfd971a5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/frontend-js-web/liferay/modal/Modal.css HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:14 GMT
ETag: "ca27d482"
Content-Type: text/css;charset=UTF-8
Content-Length: 1261
Keep-Alive: timeout=15, max=90
Connection: Keep-Alive
|
|
| 213.172.38.6/o/frontend-js-web/liferay/available_languages.jsp?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&colorSchemeId=01&minifierType=js&languageId=en_US&b=7310&t=1714033639623 | 213.172.38.6 | 200 | 326 B |
URL GET HTTP/1.1213.172.38.6/o/frontend-js-web/liferay/available_languages.jsp?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&colorSchemeId=01&minifierType=js&languageId=en_US&b=7310&t=1714033639623 IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (308) Hash66d95de2a72b2859d3616778ff078f24 9959eeb1b38e789628de79e53ba469ced536b50e 42f019dc3ddd2bac53d3871841ce898cb2a79ebaeb6b64849a047bf204761e59
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/frontend-js-web/liferay/available_languages.jsp?browserId=firefox&themeId=myliferaytheme_WAR_myliferaytheme&colorSchemeId=01&minifierType=js&languageId=en_US&b=7310&t=1714033639623 HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Vary: Accept-Encoding
Expires: Fri, 05 May 2034 22:18:14 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:19 GMT
ETag: "4d37dae1"
Content-Type: text/javascript;charset=UTF-8
Content-Length: 326
Keep-Alive: timeout=15, max=82
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/array-invoke/array-invoke-min.js&/o/frontend-js-aui-web/liferay/language.js | 213.172.38.6 | 200 | 253 B |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/array-invoke/array-invoke-min.js&/o/frontend-js-aui-web/liferay/language.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash3bf356e7086d39c780f192df87086d10 1a4addf07f10e58298d12bcde21eff6c35b0e853 0d730051ad95fbc1b8bb5bbb2d608d8a59c46efbef6a1352e4f4706feb9fe993
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/array-invoke/array-invoke-min.js&/o/frontend-js-aui-web/liferay/language.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:14 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "ab6fe51e"
Content-Type: text/javascript
Content-Length: 253
Keep-Alive: timeout=15, max=88
Connection: Keep-Alive
|
|
| 213.172.38.6/o/my-liferay-theme/images/favicon.ico | 213.172.38.6 | 200 | 1.2 kB |
URL GET HTTP/1.1213.172.38.6/o/my-liferay-theme/images/favicon.ico IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashbaec7c544a43ce5b7dc48ee672589ae1 c04bff938080a91ed0842e29a13d87ab59da1a23 cc458959141b57171ac845f56db6b6d77f454b980885159800b81a617a592c7d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/my-liferay-theme/images/favicon.ico HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public, max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:14 GMT, Fri, 05 May 2034 22:18:14 GMT
Last-Modified: Fri, 15 Sep 2023 09:02:08 GMT
ETag: "da29d92"
Content-Type: image/x-icon
Content-Length: 1150
Keep-Alive: timeout=15, max=89
Connection: Keep-Alive
|
|
| 213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/cookie/cookie-min.js&/o/frontend-js-aui-web/aui/plugin/plugin-min.js&/o/frontend-js-aui-web/liferay/session.js | 213.172.38.6 | 200 | 17 kB |
URL GET HTTP/1.1213.172.38.6/combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/cookie/cookie-min.js&/o/frontend-js-aui-web/aui/plugin/plugin-min.js&/o/frontend-js-aui-web/liferay/session.js IP213.172.38.6:443 ASN#15704 Xtra Telecom S.A.
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerDigiCert Inc Subject*.elecnor.com Fingerprint5C:7B:C0:3E:C7:43:4F:1F:6D:3E:56:D3:B9:AE:6A:93:8F:23:45:26 ValiditySun, 18 Jun 2023 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2761) Hash22d250c8f796e637e9e8e3c82367cec8 1ab548cdef0dc395ee8e8ba09d9bfef9187b707b 64fdf8701ba2467730f5035476e3a81b209c6165cc2dbcf7552b72007c230fdd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /combo/?browserId=firefox&minifierType=&languageId=en_US&b=7310&t=1714033656710&/o/frontend-js-aui-web/aui/cookie/cookie-min.js&/o/frontend-js-aui-web/aui/plugin/plugin-min.js&/o/frontend-js-aui-web/liferay/session.js HTTP/1.1
Host: 213.172.38.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F
Cookie: JSESSIONID=BF5F7F480222A651F6ACA251C439ACA6; COOKIE_SUPPORT=true; GUEST_LANGUAGE_ID=en_US; _ga_8X0H6HSF97=GS1.1.1715120293.1.0.1715120293.0.0.0; _ga=GA1.1.1897710623.1715120294
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Tue, 07 May 2024 22:18:13 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1i
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Cache-Control: max-age=315360000, public
Expires: Fri, 05 May 2034 22:18:14 GMT
Last-Modified: Thu, 25 Apr 2024 08:27:36 GMT
ETag: "a65f2f37"
Content-Type: text/javascript
Content-Length: 16606
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive
|
|
| fonts.googleapis.com/css2?family=DM+Serif+Display&display=swap | 142.250.74.74 | 200 OK | 5.9 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=DM+Serif+Display&display=swap IP142.250.74.74:443
Requested byhttps://213.172.38.6/en/login?p_p_id=com_liferay_login_web_portlet_LoginPortlet&p_p_lifecycle=0&_com_liferay_login_web_portlet_LoginPortlet_redirect=%2F CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash791697a7227cd6d6d8a813bfc45058cd 22722b14ff4e45e09b0c2aa6c6edba7d628537f0 6d1aa81e77b9f403a8ae347a64ffdd27abcc8675101c8decd9f1236eb5ebe59c
GET /css2?family=DM+Serif+Display&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://213.172.38.6/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 22:18:13 GMT
date: Tue, 07 May 2024 22:18:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|