| help-center-ad-appeal.vercel.app/appeal_case_id | 76.76.21.93 | 200 OK | 982 B |
URL User Request GET HTTP/2help-center-ad-appeal.vercel.app/appeal_case_id IP76.76.21.93:443
CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeHTML document, ASCII text, with very long lines (982), with no line terminators Hash224bf5715aa9473e84a327135ea53842 4d01ed1505b4bcdebd4442bbce77c3b4b1416b51 919e942a14d9226b01e0d41d2e69e94807aa4a0615c58a04c06a7b9aaa66f760
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /appeal_case_id HTTP/1.1
Host: help-center-ad-appeal.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1956772
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="appeal_case_id.html"
content-type: text/html; charset=utf-8
date: Wed, 08 May 2024 23:58:26 GMT
etag: "224bf5715aa9473e84a327135ea53842"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::lc9fw-1715212706765-09ad3e269c75
content-length: 982
X-Firefox-Spdy: h2
|
|
| help-center-ad-appeal.vercel.app/static/media/locked3.f8aad5b3548314fb29cd.jpg | 76.76.21.93 | 200 OK | 78 kB |
URL GET HTTP/2help-center-ad-appeal.vercel.app/static/media/locked3.f8aad5b3548314fb29cd.jpg IP76.76.21.93:443
Requested byhttps://help-center-ad-appeal.vercel.app/appeal_case_id CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1400x753, components 3 Hashfe814ba91f3ddab3535253a2dc94f41c 784d20946b089cbb701497a2163d60daed2f4e3d 14e3984b0a47cde756d2bb4d8f7ed16d467c128de4c6af47dab07761c49fe871
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/media/locked3.f8aad5b3548314fb29cd.jpg HTTP/1.1
Host: help-center-ad-appeal.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://help-center-ad-appeal.vercel.app/appeal_case_id
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1956770
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="locked3.f8aad5b3548314fb29cd.jpg"
content-type: image/jpeg
date: Wed, 08 May 2024 23:58:27 GMT
etag: "fe814ba91f3ddab3535253a2dc94f41c"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::6csfk-1715212707311-fa1efe83bd02
content-length: 78013
X-Firefox-Spdy: h2
|
|
| help-center-ad-appeal.vercel.app/logo.png | 76.76.21.93 | 200 OK | 36 kB |
URL GET HTTP/2help-center-ad-appeal.vercel.app/logo.png IP76.76.21.93:443
Requested byhttps://help-center-ad-appeal.vercel.app/appeal_case_id CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeRIFF (little-endian) data, Web/P image Hash3ddb61bdd806c16c6aa2b1dfdb7eaec9 5f5cbfd0f1284b09c15884a494758f8626227dd4 62ebfab29cdf3c417eb48e9c429133d6c4d1b8ddb27fc14820a57b9d5a617ae8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /logo.png HTTP/1.1
Host: help-center-ad-appeal.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://help-center-ad-appeal.vercel.app/appeal_case_id
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1956756
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="logo.png"
content-type: image/png
date: Wed, 08 May 2024 23:58:27 GMT
etag: "3ddb61bdd806c16c6aa2b1dfdb7eaec9"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::6csfk-1715212707354-e2e95dce001c
content-length: 35616
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=bhTgPlCnn2Fkw4imlTJ4veEfMN6kE1iKrU7Z4R5WfcoXL6vhws_mmO_JiiP3ofaJQMOWq8NTZhLQbUh8vuYQ4q_r2QF7jUg17XXVvDbpHDR0NtaGvpS4TxB0yOP8lZqf
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Wed, 08 May 2024 23:57:23 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 82
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| help-center-ad-appeal.vercel.app/static/js/main.2a7e9354.js | 76.76.21.93 | 200 OK | 272 kB |
URL GET HTTP/2help-center-ad-appeal.vercel.app/static/js/main.2a7e9354.js IP76.76.21.93:443
Requested byhttps://help-center-ad-appeal.vercel.app/appeal_case_id CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65464), with CRLF line terminators Size272 kB (271964 bytes) Hash9a50955f4c2839c6ff674a90c5f7f0fa 432f40d953bf51322be798ae4433939ebbbdf9c9 67e8d608d50bb12f22c5fa45d1766d944f2346e6d06e65d3d16e349b532261ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/js/main.2a7e9354.js HTTP/1.1
Host: help-center-ad-appeal.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://help-center-ad-appeal.vercel.app/appeal_case_id
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 1956771
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="main.2a7e9354.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 23:58:27 GMT
etag: W/"9a50955f4c2839c6ff674a90c5f7f0fa"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::kqg6z-1715212707171-e50699730068
X-Firefox-Spdy: h2
|
|
| help-center-ad-appeal.vercel.app/static/css/main.4b429469.css | 76.76.21.93 | 200 OK | 10 kB |
URL GET HTTP/2help-center-ad-appeal.vercel.app/static/css/main.4b429469.css IP76.76.21.93:443
Requested byhttps://help-center-ad-appeal.vercel.app/appeal_case_id CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with very long lines (10026), with CRLF line terminators Hash190f5e5d9cc9957e2a752f6927a402a5 26ff2b10ab0a6f5879e7e1e761abe399d480ad29 8168f95c9b828f8ba3856404affd3c1e580fffdef197e69495f135fb900fd645
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/css/main.4b429469.css HTTP/1.1
Host: help-center-ad-appeal.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://help-center-ad-appeal.vercel.app/appeal_case_id
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 1956771
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="main.4b429469.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Wed, 08 May 2024 23:58:27 GMT
etag: W/"190f5e5d9cc9957e2a752f6927a402a5"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::n2mpm-1715212707173-76689b4372c4
X-Firefox-Spdy: h2
|
|