Report - aol-mail-inbox.com/

Report Overview

Submitted URL
aol-mail-inbox.com/
IP
54.176.60.31
ASN
#16509 AMAZON-02
Submitted
2023-02-05 07:38:45
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.162.173.86
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	686 B	1.4 kB	142.250.74.131
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
aol-mail-inbox.com	unknown	2019-05-24T00:22:13Z	2023-02-05T08:38:46Z	9.4 kB	332 kB	54.176.60.31
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	389 B	44 kB	142.250.74.40
email-inbox-aol.com	unknown	2016-08-09T22:09:56Z	2023-02-05T08:38:46Z	702 B	18 kB	54.176.60.31
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	50 kB	34.120.237.76
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	1.2 kB	21 kB	142.250.74.110
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	aol-mail-inbox.com/	Phishing
2023-02-05	medium	aol-mail-inbox.com/	Phishing
2023-02-05	medium	aol-mail-inbox.com/wp-content/themes/catch-box/genericons/genericons.css?ver=3.4.1	Phishing
2023-02-05	medium	aol-mail-inbox.com/wp-content/plugins/ultimate-popunder/assets/lanund.js?ver=1.2.6	Phishing
2023-02-05	medium	aol-mail-inbox.com/wp-content/themes/catch-box/js/jquery.cycle.all.min.js?ver=2.9999.5	Phishing
2023-02-05	medium	aol-mail-inbox.com/wp-content/themes/catch-box/js/skip-link-focus-fix.js?ver=20151112	Phishing
2023-02-05	medium	aol-mail-inbox.com/wp-content/themes/catch-box/js/navigation.js?ver=20152512	Phishing
2023-02-05	medium	aol-mail-inbox.com/wp-includes/js/wp-embed.min.js?ver=5.2.7	Phishing
2023-02-05	medium	aol-mail-inbox.com/wp-content/plugins/uji-popup/modal/jquery.modal.min.js?ver=0.5.5	Phishing
2023-02-05	medium	aol-mail-inbox.com/wp-content/plugins/uji-popup/js/popups.js?ver=1.1	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	email-inbox-aol.com	Sinkholed
2023-02-05	medium	email-inbox-aol.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	aol-mail-inbox.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-25
Pretty URL aol-mail-inbox.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-25 01:48:26 Times Seen37195 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	aol-mail-inbox.com/	127 B	2023-03-07	2024-01-07
Pretty URL aol-mail-inbox.com/ IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:32 Last Seen2024-01-07 15:08:14 Times Seen46 Hash 88a9c25cd81b89d37602a6d3b7be6800 1ce7240c0339c0124e36b953d9a7d08dadf49c79 1059aa2d8d295b7abec198a4079d2dc37cc6846614235b109438d9d8a62e457c Loading...

	aol-mail-inbox.com/wp-content/themes/catch-box/js/catchbox_slider.js?ver=1.0	1.2 kB	2023-03-07	2023-11-03
Pretty URL aol-mail-inbox.com/wp-content/themes/catch-box/js/catchbox_slider.js?ver=1.0 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:32 Last Seen2023-11-03 11:52:49 Times Seen18 Hash ada82a2ed8081505543dcb8e0998c9ac db2e610770646c85fe2318f430da9c861272b7c9 3b0561f66f51a399b4b6ffe6ed5931485f83826d8fa4964f03a8b654e4d7e71b Loading...

	aol-mail-inbox.com/wp-content/themes/catch-box/js/navigation.js?ver=20152512	1.5 kB	2023-03-08	2023-11-26
Pretty URL aol-mail-inbox.com/wp-content/themes/catch-box/js/navigation.js?ver=20152512 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:18:34 Last Seen2023-11-26 01:09:32 Times Seen16 Hash c68b7a0f2a95a32b6c68d3f165137c75 f38f6bc57e81eb71f23044dd2f2477ff7f8efb70 133b46ec3ddf7ea4a539eb47f4e716725af8511c434d0a4dd82e4753b859618f Loading...

	aol-mail-inbox.com/wp-content/themes/catch-box/js/jquery.sidr.min.js?ver=2.1.1.1	7.3 kB	2023-03-08	2023-07-15
Pretty URL aol-mail-inbox.com/wp-content/themes/catch-box/js/jquery.sidr.min.js?ver=2.1.1.1 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:18:34 Last Seen2023-07-15 04:42:50 Times Seen10 Hash 8ff31b0acbea8b5d8ca1dac60cac11a0 22186151ad35fdd5bbeb637728cc31da00484223 f9b4f77665a50909b90f0ef53b93df14829b0b4086f3ccb563494b52a783d6ec Loading...

	aol-mail-inbox.com/wp-content/themes/catch-box/js/jquery.cycle.all.min.js?ver=2.9999.5	27 kB	2023-03-07	2024-02-24
Pretty URL aol-mail-inbox.com/wp-content/themes/catch-box/js/jquery.cycle.all.min.js?ver=2.9999.5 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:58 Last Seen2024-02-24 15:12:20 Times Seen114 Hash 0f50b29e341b4e2836748476bbf00c7e 018870ac48f1fc2d1b2ca97880602de86d3460cb 6e1458a286e9ceec0848d0e912932c59a3987ab282e3881124eca0d920ca0d9b Loading...

	aol-mail-inbox.com/wp-content/plugins/ultimate-popunder/assets/ultimate-popunder.js?ver=1.2.6	562 B	2023-03-08	2024-01-24
Pretty URL aol-mail-inbox.com/wp-content/plugins/ultimate-popunder/assets/ultimate-popunder.js?ver=1.2.6 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:35:17 Last Seen2024-01-24 04:28:05 Times Seen31 Hash b71385a7b74e99cc9afb6711bf950dcf f5b47bc765c730e012209fd1547baeb67d4077dd 507c805a798fded9baeb3afe2006b734e025f551c60d47f57dca2193c839e667 Loading...

	aol-mail-inbox.com/wp-content/themes/catch-box/js/catchbox-scrollup.min.js?ver=20072014	314 B	2023-03-07	2024-02-24
Pretty URL aol-mail-inbox.com/wp-content/themes/catch-box/js/catchbox-scrollup.min.js?ver=20072014 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:52 Last Seen2024-02-24 15:12:20 Times Seen137 Hash 84698d7b5677d2f1e41c2e2f19bf7160 fb6813c1cae29c0a53dbafae4404e2edeae9486d a12f71f082077e3d3d451ea22d0fb337bda3ea71348a19ea960d7572fb8a25ed Loading...

	aol-mail-inbox.com/	167 B	2023-03-13	2023-03-14
Pretty URL aol-mail-inbox.com/ IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:26:14 Last Seen2023-03-14 10:36:57 Times Seen1 Hash cbf690d8e46c2a90a8bb7d960e2896aa ecc5c73114e466f49e005045006da86f8a3cddae feaf40b949b05f7ba694b76866b9583eccd284faae9b9a077136aff62eb04f81 Loading...

	aol-mail-inbox.com/wp-content/plugins/uji-popup/js/popups.js?ver=1.1	2.2 kB	2023-03-08	2024-02-28
Pretty URL aol-mail-inbox.com/wp-content/plugins/uji-popup/js/popups.js?ver=1.1 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:21:22 Last Seen2024-02-28 05:32:12 Times Seen16 Hash 6f36fb384ab57165d3f1955ef88a42fe 4eacd9e31950eaa5e764adf715bf6bf340f13c94 efdb19618ca9d33f08f499bb677f7a56e0b55b6e67582e86586ada7435c4495f Loading...

	aol-mail-inbox.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	97 kB	2023-03-07	2024-04-25
Pretty URL aol-mail-inbox.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-25 01:48:26 Times Seen17745 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	www.googletagmanager.com/gtag/js?id=UA-162080145-45	113 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-162080145-45 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:26:14 Last Seen2023-03-13 17:26:14 Times Seen1 Hash a78fa1e20ef773834c3bb3e1f67c536e c4346fb4523548e9192d687f2f725f42fbae984b 74ac7306c03820bb3ef0594144367a34617acb931d3bbd46559c8a55755a78df Loading...

	aol-mail-inbox.com/wp-content/plugins/uji-popup/modal/jquery.modal.min.js?ver=0.5.5	4.3 kB	2023-03-08	2024-02-28
Pretty URL aol-mail-inbox.com/wp-content/plugins/uji-popup/modal/jquery.modal.min.js?ver=0.5.5 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:21:22 Last Seen2024-02-28 05:32:12 Times Seen16 Hash 88f2c1d1ba79ec95f8f3cc960f93a107 058b9226061a612eafbfe3aa25cc87ddfb2b50b1 4fe7fde764319b56dc9237348bbcec480c9bc3c29a737d42de0e8062cf2e2013 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	aol-mail-inbox.com/	2.2 kB	2023-03-13	2023-03-14
Pretty URL aol-mail-inbox.com/ IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:26:14 Last Seen2023-03-14 10:36:57 Times Seen1 Hash 5c4d74203b8b23ef2b2f61ff5dbf08ef de91c53edb725307eb4e4a40ebcd2f1de1e7ce04 73445015b6e55f8a1b1a9c5ef0804b3333e3b793d01d89c6d0e155ef66369d47 Loading...

	aol-mail-inbox.com/wp-content/themes/catch-box/js/html5.min.js?ver=3.7.3	2.6 kB	2023-03-07	2024-04-21
Pretty URL aol-mail-inbox.com/wp-content/themes/catch-box/js/html5.min.js?ver=3.7.3 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:32 Last Seen2024-04-21 09:37:07 Times Seen77 Hash 23e126e677813c9e82000968bc2d3860 0b3e6496e98c5ed304421f7e8a465e2f7a5a39f5 e87bcce4761b410d32df511bc602a89913a89bf460d121a7736175817d57552a Loading...

	aol-mail-inbox.com/	142 B	2023-03-13	2023-03-14
Pretty URL aol-mail-inbox.com/ IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:26:14 Last Seen2023-03-14 10:36:57 Times Seen1 Hash 3254053fb4f7b60961e52322d6fb9d56 d7a121fc44e252830a92a3209b0080b13265d5da 53f379730a829f4ffad0c87f2ab073c3d0474c19540cd37fc4d4b1ddfe0c2812 Loading...

	aol-mail-inbox.com/	191 B	2023-03-13	2023-03-14
Pretty URL aol-mail-inbox.com/ IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:26:14 Last Seen2023-03-14 10:36:57 Times Seen1 Hash 5dbc66d619b78703475d7425722e5874 e5c1e1c791e0f51179663d30d3b28c08c847e4da 7cbb0da348d801920a2c0bfc9eca497d7d4c458847d7b15a5ca6416d4b4045ab Loading...

	aol-mail-inbox.com/wp-content/plugins/ultimate-popunder/assets/lanund.js?ver=1.2.6	4.1 kB	2023-03-08	2024-01-24
Pretty URL aol-mail-inbox.com/wp-content/plugins/ultimate-popunder/assets/lanund.js?ver=1.2.6 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:35:17 Last Seen2024-01-24 04:28:05 Times Seen24 Hash 4abfc40bfc01c348e680674c388dbfa8 3f5aa8938e3075680dffd803b3db09f801342e1f c6c4db184b383db2c9075ec187f4750bcecad34db47d162402a26be85e36dab9 Loading...

	aol-mail-inbox.com/wp-content/themes/catch-box/js/skip-link-focus-fix.js?ver=20151112	1.1 kB	2023-03-07	2024-04-21
Pretty URL aol-mail-inbox.com/wp-content/themes/catch-box/js/skip-link-focus-fix.js?ver=20151112 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:32 Last Seen2024-04-21 09:37:07 Times Seen80 Hash 00def7d235b8a84810ce4838f06bc9d9 4cc4607386bcf2fdca8ddcabfa11f9e944fc2adb 66c48dc6be21195324a58b3fb2e2aeb740f1d226a44e926e8c074e029a307013 Loading...

	aol-mail-inbox.com/wp-includes/js/wp-embed.min.js?ver=5.2.7	1.4 kB	2023-03-07	2024-04-24
Pretty URL aol-mail-inbox.com/wp-includes/js/wp-embed.min.js?ver=5.2.7 IP 54.176.60.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-04-24 11:16:37 Times Seen1837 Hash 2dce40d16f9ff6332d3cbb7ae488a2b9 0a8eca5975f21a9f1bc079d111ca1657009dbe8f 2152557cac69e2bd7d6debef5037a9f554f9209cc305b8141b3329acb10c42b7 Loading...

HTTP Transactions (48)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3569
Expires: Sun, 05 Feb 2023 08:38:03 GMT
Date: Sun, 05 Feb 2023 07:38:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7025
Expires: Sun, 05 Feb 2023 09:35:39 GMT
Date: Sun, 05 Feb 2023 07:38:34 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 07:36:17 GMT
content-type: application/json
age: 137
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14708
Expires: Sun, 05 Feb 2023 11:43:42 GMT
Date: Sun, 05 Feb 2023 07:38:34 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: tjImBqXibYXb5DhfvMAEs6OWq3qFuNpkqxeUok8F7grOvUTKpcLBms7mJUGtdOJjIYV4ApdWQc0=
x-amz-request-id: K74NG42HG407SS96
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 06:53:10 GMT
age: 2724
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

aol-mail-inbox.com/

54.176.60.31

301 Moved Permanently

162 B

URL HTTP/1.1
aol-mail-inbox.com/
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 07:38:34 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://aol-mail-inbox.com/

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:34 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 06:49:07 GMT
age: 2967
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3971
Expires: Sun, 05 Feb 2023 08:44:46 GMT
Date: Sun, 05 Feb 2023 07:38:35 GMT
Connection: keep-alive

push.services.mozilla.com/

35.162.173.86

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.173.86:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tuHtG16atuVNd4qK503cGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wz2v/XLvNNbkMvkV2C+IMPe9Y78=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:38:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-162080145-45

142.250.74.40

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-162080145-45
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (43885 bytes)
Hash
e5e857e2f777e13822b965b235e89110
e9f75d80d00378f5f354277b722728c0420f308d
10f37d26cfafb256d6671f04a3d6366e92849a8e246d48fa088c4ec241c1f0b8

HTTP Headers

GET /gtag/js?id=UA-162080145-45 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 07:38:35 GMT
expires: Sun, 05 Feb 2023 07:38:35 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43885
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:38:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aol-mail-inbox.com/

54.176.60.31

200 OK

39 kB

URL HTTP/2
aol-mail-inbox.com/
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
data
Size
39 kB (38685 bytes)
Hash
8d32a227f178ca532cef6ddb53a144cf
e99549fa87e81e92e6e2225f15dc458e6777a73c
b2e1a7087577cd149eaf1fdd7d29fbcb7b2ec6b201baf0fa788066ba4e1bf16e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: text/html; charset=UTF-8
link: <https://aol-mail-inbox.com/wp-json/>; rel="https://api.w.org/", <https://aol-mail-inbox.com/>; rel=shortlink
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/themes/catch-box/genericons/genericons.css?ver=3.4.1

54.176.60.31

200 OK

28 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/themes/catch-box/genericons/genericons.css?ver=3.4.1
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (18732)
Size
28 kB (28266 bytes)
Hash
13a6500ddf36c6dd581877aefc78d34d
3ab844aaad6045edbe2da9e78c3c9f41599b67d6
4ed10d0d64bb1515397e8666a63f484d640dbc5678fa62574e077b7aef1c3af2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/catch-box/genericons/genericons.css?ver=3.4.1 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: text/css
content-length: 28266
last-modified: Tue, 21 Jan 2020 05:56:57 GMT
etag: "5e2692a9-6e6a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

email-inbox-aol.com/wp-content/uploads/2019/05/Webp.net-gifmaker-9.gif

54.176.60.31

301 Moved Permanently

162 B

URL HTTP/1.1
email-inbox-aol.com/wp-content/uploads/2019/05/Webp.net-gifmaker-9.gif
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/Webp.net-gifmaker-9.gif HTTP/1.1
Host: email-inbox-aol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 07:38:35 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://email-inbox-aol.com/wp-content/uploads/2019/05/Webp.net-gifmaker-9.gif

aol-mail-inbox.com/wp-content/themes/catch-box/style.css?ver=5.2.7

54.176.60.31

200 OK

84 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/themes/catch-box/style.css?ver=5.2.7
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (1261)
Size
84 kB (84115 bytes)
Hash
4db29958866656d4ee4cfc45cc53ea0d
b72a68e3f781ccd920230f31f254286a396c25c0
6db44c4d4fbb3dff6e48ada5350d7f521a1277d6044110ab501288e55a567c8a

HTTP Headers

GET /wp-content/themes/catch-box/style.css?ver=5.2.7 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: text/css
content-length: 84115
last-modified: Tue, 21 Jan 2020 05:56:57 GMT
etag: "5e2692a9-14893"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

54.176.60.31

200 OK

10 kB

URL HTTP/2
aol-mail-inbox.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (9959)
Size
10 kB (10056 bytes)
Hash
7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 10056
last-modified: Fri, 20 May 2016 06:11:28 GMT
etag: "573eaa90-2748"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/themes/catch-box/js/jquery.sidr.min.js?ver=2.1.1.1

54.176.60.31

200 OK

7.3 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/themes/catch-box/js/jquery.sidr.min.js?ver=2.1.1.1
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (7285), with no line terminators
Size
7.3 kB (7285 bytes)
Hash
8ff31b0acbea8b5d8ca1dac60cac11a0
22186151ad35fdd5bbeb637728cc31da00484223
f9b4f77665a50909b90f0ef53b93df14829b0b4086f3ccb563494b52a783d6ec

HTTP Headers

GET /wp-content/themes/catch-box/js/jquery.sidr.min.js?ver=2.1.1.1 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 7285
last-modified: Tue, 21 Jan 2020 05:56:57 GMT
etag: "5e2692a9-1c75"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/themes/catch-box/js/html5.min.js?ver=3.7.3

54.176.60.31

200 OK

2.6 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/themes/catch-box/js/html5.min.js?ver=3.7.3
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (2639), with no line terminators
Size
2.6 kB (2639 bytes)
Hash
23e126e677813c9e82000968bc2d3860
0b3e6496e98c5ed304421f7e8a465e2f7a5a39f5
e87bcce4761b410d32df511bc602a89913a89bf460d121a7736175817d57552a

HTTP Headers

GET /wp-content/themes/catch-box/js/html5.min.js?ver=3.7.3 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 2639
last-modified: Tue, 21 Jan 2020 05:56:57 GMT
etag: "5e2692a9-a4f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/plugins/uji-popup/modal/css/jquery.modal.css?ver=0.5.5

54.176.60.31

200 OK

786 B

URL HTTP/2
aol-mail-inbox.com/wp-content/plugins/uji-popup/modal/css/jquery.modal.css?ver=0.5.5
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
786 B (786 bytes)
Hash
bb729445f642abffdd77dd1c56304fc5
ef3de8a8636c792cd3191f4112f70ae724f5d10a
064964fe91f15e760ea6203ea477e8c96c55fe5e8abb127894f04d467a681aac

HTTP Headers

GET /wp-content/plugins/uji-popup/modal/css/jquery.modal.css?ver=0.5.5 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: text/css
content-length: 786
last-modified: Tue, 21 Jan 2020 05:56:56 GMT
etag: "5e2692a8-312"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/plugins/uji-popup/css/popups.css?ver=1.0

54.176.60.31

200 OK

2.4 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/plugins/uji-popup/css/popups.css?ver=1.0
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2381 bytes)
Hash
87b0e81cf81ad15582a3f522fb0ee594
ea226fe3de5b4a50d3dfbfa8699d8d6bcc19316d
6433b6ec31a00814e966e0371e83878f2d1ef41eaad768ef49bc2b2e978904cc

HTTP Headers

GET /wp-content/plugins/uji-popup/css/popups.css?ver=1.0 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: text/css
content-length: 2381
last-modified: Tue, 21 Jan 2020 05:56:56 GMT
etag: "5e2692a8-94d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/plugins/ultimate-popunder/assets/lanund.js?ver=1.2.6

54.176.60.31

200 OK

4.1 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/plugins/ultimate-popunder/assets/lanund.js?ver=1.2.6
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
4.1 kB (4126 bytes)
Hash
4abfc40bfc01c348e680674c388dbfa8
3f5aa8938e3075680dffd803b3db09f801342e1f
c6c4db184b383db2c9075ec187f4750bcecad34db47d162402a26be85e36dab9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/ultimate-popunder/assets/lanund.js?ver=1.2.6 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 4126
last-modified: Sat, 09 Oct 2021 09:56:05 GMT
etag: "61616735-101e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/plugins/ultimate-popunder/assets/ultimate-popunder.js?ver=1.2.6

54.176.60.31

200 OK

562 B

URL HTTP/2
aol-mail-inbox.com/wp-content/plugins/ultimate-popunder/assets/ultimate-popunder.js?ver=1.2.6
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
562 B (562 bytes)
Hash
b71385a7b74e99cc9afb6711bf950dcf
f5b47bc765c730e012209fd1547baeb67d4077dd
507c805a798fded9baeb3afe2006b734e025f551c60d47f57dca2193c839e667

HTTP Headers

GET /wp-content/plugins/ultimate-popunder/assets/ultimate-popunder.js?ver=1.2.6 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 562
last-modified: Sat, 09 Oct 2021 09:56:05 GMT
etag: "61616735-232"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp

54.176.60.31

200 OK

97 kB

URL HTTP/2
aol-mail-inbox.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (31997)
Size
97 kB (96873 bytes)
Hash
49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 96873
last-modified: Fri, 17 May 2019 17:08:53 GMT
etag: "5cdeeaa5-17a69"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/themes/catch-box/js/jquery.cycle.all.min.js?ver=2.9999.5

54.176.60.31

200 OK

27 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/themes/catch-box/js/jquery.cycle.all.min.js?ver=2.9999.5
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (27181), with no line terminators
Size
27 kB (27181 bytes)
Hash
0f50b29e341b4e2836748476bbf00c7e
018870ac48f1fc2d1b2ca97880602de86d3460cb
6e1458a286e9ceec0848d0e912932c59a3987ab282e3881124eca0d920ca0d9b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/catch-box/js/jquery.cycle.all.min.js?ver=2.9999.5 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 27181
last-modified: Tue, 21 Jan 2020 05:56:57 GMT
etag: "5e2692a9-6a2d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/themes/catch-box/js/catchbox_slider.js?ver=1.0

54.176.60.31

200 OK

1.2 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/themes/catch-box/js/catchbox_slider.js?ver=1.0
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
1.2 kB (1233 bytes)
Hash
ada82a2ed8081505543dcb8e0998c9ac
db2e610770646c85fe2318f430da9c861272b7c9
3b0561f66f51a399b4b6ffe6ed5931485f83826d8fa4964f03a8b654e4d7e71b

HTTP Headers

GET /wp-content/themes/catch-box/js/catchbox_slider.js?ver=1.0 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 1233
last-modified: Tue, 21 Jan 2020 05:56:57 GMT
etag: "5e2692a9-4d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/themes/catch-box/js/skip-link-focus-fix.js?ver=20151112

54.176.60.31

200 OK

1.1 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/themes/catch-box/js/skip-link-focus-fix.js?ver=20151112
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
1.1 kB (1058 bytes)
Hash
00def7d235b8a84810ce4838f06bc9d9
4cc4607386bcf2fdca8ddcabfa11f9e944fc2adb
66c48dc6be21195324a58b3fb2e2aeb740f1d226a44e926e8c074e029a307013

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/catch-box/js/skip-link-focus-fix.js?ver=20151112 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 1058
last-modified: Tue, 21 Jan 2020 05:56:57 GMT
etag: "5e2692a9-422"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/themes/catch-box/js/navigation.js?ver=20152512

54.176.60.31

200 OK

1.5 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/themes/catch-box/js/navigation.js?ver=20152512
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
1.5 kB (1481 bytes)
Hash
c68b7a0f2a95a32b6c68d3f165137c75
f38f6bc57e81eb71f23044dd2f2477ff7f8efb70
133b46ec3ddf7ea4a539eb47f4e716725af8511c434d0a4dd82e4753b859618f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/catch-box/js/navigation.js?ver=20152512 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 1481
last-modified: Tue, 21 Jan 2020 05:56:57 GMT
etag: "5e2692a9-5c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/themes/catch-box/js/catchbox-scrollup.min.js?ver=20072014

54.176.60.31

200 OK

314 B

URL HTTP/2
aol-mail-inbox.com/wp-content/themes/catch-box/js/catchbox-scrollup.min.js?ver=20072014
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (314), with no line terminators
Size
314 B (314 bytes)
Hash
84698d7b5677d2f1e41c2e2f19bf7160
fb6813c1cae29c0a53dbafae4404e2edeae9486d
a12f71f082077e3d3d451ea22d0fb337bda3ea71348a19ea960d7572fb8a25ed

HTTP Headers

GET /wp-content/themes/catch-box/js/catchbox-scrollup.min.js?ver=20072014 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 314
last-modified: Tue, 21 Jan 2020 05:56:57 GMT
etag: "5e2692a9-13a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-includes/js/wp-embed.min.js?ver=5.2.7

54.176.60.31

200 OK

1.4 kB

URL HTTP/2
aol-mail-inbox.com/wp-includes/js/wp-embed.min.js?ver=5.2.7
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (1403), with no line terminators
Size
1.4 kB (1403 bytes)
Hash
2dce40d16f9ff6332d3cbb7ae488a2b9
0a8eca5975f21a9f1bc079d111ca1657009dbe8f
2152557cac69e2bd7d6debef5037a9f554f9209cc305b8141b3329acb10c42b7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.2.7 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 1403
last-modified: Thu, 30 Aug 2018 12:40:26 GMT
etag: "5b87e5ba-57b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/plugins/uji-popup/modal/jquery.modal.min.js?ver=0.5.5

54.176.60.31

200 OK

4.3 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/plugins/uji-popup/modal/jquery.modal.min.js?ver=0.5.5
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (4330), with no line terminators
Size
4.3 kB (4330 bytes)
Hash
88f2c1d1ba79ec95f8f3cc960f93a107
058b9226061a612eafbfe3aa25cc87ddfb2b50b1
4fe7fde764319b56dc9237348bbcec480c9bc3c29a737d42de0e8062cf2e2013

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/uji-popup/modal/jquery.modal.min.js?ver=0.5.5 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 4330
last-modified: Tue, 21 Jan 2020 05:56:56 GMT
etag: "5e2692a8-10ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/plugins/uji-popup/js/popups.js?ver=1.1

54.176.60.31

200 OK

2.2 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/plugins/uji-popup/js/popups.js?ver=1.1
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (2241), with no line terminators
Size
2.2 kB (2242 bytes)
Hash
6f36fb384ab57165d3f1955ef88a42fe
4eacd9e31950eaa5e764adf715bf6bf340f13c94
efdb19618ca9d33f08f499bb677f7a56e0b55b6e67582e86586ada7435c4495f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/uji-popup/js/popups.js?ver=1.1 HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: application/javascript
content-length: 2242
last-modified: Tue, 21 Jan 2020 05:56:56 GMT
etag: "5e2692a8-8c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/wp-content/uploads/2020/07/AOL-Mail-Logo.jpg

54.176.60.31

200 OK

7.3 kB

URL HTTP/2
aol-mail-inbox.com/wp-content/uploads/2020/07/AOL-Mail-Logo.jpg
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 452x131, components 3\012- data
Size
7.3 kB (7349 bytes)
Hash
bb78812a0f45e4af401854233475631a
044541f1b887825b3446ae1df6766bdb9e6716d9
480b82d94d3e1834f40ab5c1dcf645d21454c201635bac354fc4dac39e02b895

HTTP Headers

GET /wp-content/uploads/2020/07/AOL-Mail-Logo.jpg HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:35 GMT
content-type: image/jpeg
content-length: 7349
last-modified: Sun, 12 Jul 2020 10:09:47 GMT
etag: "5f0ae16b-1cb5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9031
Expires: Sun, 05 Feb 2023 10:09:07 GMT
Date: Sun, 05 Feb 2023 07:38:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9031
Expires: Sun, 05 Feb 2023 10:09:07 GMT
Date: Sun, 05 Feb 2023 07:38:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9031
Expires: Sun, 05 Feb 2023 10:09:07 GMT
Date: Sun, 05 Feb 2023 07:38:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9031
Expires: Sun, 05 Feb 2023 10:09:07 GMT
Date: Sun, 05 Feb 2023 07:38:36 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6202 bytes)
Hash
251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 13:05:46 GMT
age: 66770
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10905 bytes)
Hash
1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jIvBQjGh9JzWQM0YpEYiqP5CcBrkwqLVjAYhMWJ1P1H0MRkm7kpnpg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:12:06 GMT
age: 33990
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3474 bytes)
Hash
d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:10:58 GMT
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
age: 34058
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7288 bytes)
Hash
b1092c4dd4d9ca4d09462ae46e1dd7c1
17444ff60be1afbc40d3653fa936f9eaf9478068
ea8362c7249080b34288ee675f70333607fc3be37e716fdcf63e4901849def9f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7288
x-amzn-requestid: 1aa297f5-2f9a-45be-b823-1eb4d5887769
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WrwH-iIAMFyhQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded17e-2b630b4a302b8ae118883b71;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:43:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z2oKgp1keqEkvN6jjsUepMbrxD4JCXKAOHrMNJHcuXN0CpulUh5GLA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:39 GMT
etag: "17444ff60be1afbc40d3653fa936f9eaf9478068"
content-type: image/jpeg
age: 35697
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11056 bytes)
Hash
3e0c38abfcd86f8074d4182d49fc354f
1367bebb73fa652695242100b26c394f1bfe4457
e42d110060133ac05e6cdfafa6473c55473220fdc7eaf03e3a89f58aa3603670

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11056
x-amzn-requestid: 4acc3364-4a33-4934-bdcb-41284d952113
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPFrwEW4IAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8317-33872f461a2faab552322837;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XhPm-ZDoEjlgeiXUwMRQZ5pOMs4qJzXagWZg302DcrYpUm5X7O8ZZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:46:47 GMT
age: 35509
etag: "1367bebb73fa652695242100b26c394f1bfe4457"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5014 bytes)
Hash
5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 14:53:45 GMT
age: 60291
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 05:44:08 GMT
expires: Sun, 05 Feb 2023 07:44:08 GMT
cache-control: public, max-age=7200
age: 6868
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j99&a=133793710&t=pageview&_s=1&dl=https%3A%2F%2Faol-mail-inbox.com%2F&ul=en-us&de=UTF-8&dt=AOL%20Mail%20Inbox%20%E2%80%93%20AOL%20Mail%20%7C%20Inbox&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=300221534&gjid=1057499426&cid=1058326653.1675582756&tid=UA-162080145-45&_gid=126524719.1675582756&_r=1&_slc=1&gtm=457e3210&z=868362420

142.250.74.110

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j99&a=133793710&t=pageview&_s=1&dl=https%3A%2F%2Faol-mail-inbox.com%2F&ul=en-us&de=UTF-8&dt=AOL%20Mail%20Inbox%20%E2%80%93%20AOL%20Mail%20%7C%20Inbox&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=300221534&gjid=1057499426&cid=1058326653.1675582756&tid=UA-162080145-45&_gid=126524719.1675582756&_r=1&_slc=1&gtm=457e3210&z=868362420
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f

HTTP Headers

POST /j/collect?v=1&_v=j99&a=133793710&t=pageview&_s=1&dl=https%3A%2F%2Faol-mail-inbox.com%2F&ul=en-us&de=UTF-8&dt=AOL%20Mail%20Inbox%20%E2%80%93%20AOL%20Mail%20%7C%20Inbox&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=300221534&gjid=1057499426&cid=1058326653.1675582756&tid=UA-162080145-45&_gid=126524719.1675582756&_r=1&_slc=1&gtm=457e3210&z=868362420 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://aol-mail-inbox.com
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://aol-mail-inbox.com
date: Sun, 05 Feb 2023 07:38:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

email-inbox-aol.com/wp-content/uploads/2019/05/Webp.net-gifmaker-9.gif

54.176.60.31

200 OK

18 kB

URL HTTP/2
email-inbox-aol.com/wp-content/uploads/2019/05/Webp.net-gifmaker-9.gif
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 300 x 250\012- data
Size
18 kB (17565 bytes)
Hash
96d005a8e84ee93feb827813a71b5dae
9ab89a6310344b8950d5e9532e41f1941b5959b6
fb97a3f3108badefc71e5d98a2effe68da6c8df7e0dfcfa7008f9e453913538a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/Webp.net-gifmaker-9.gif HTTP/1.1
Host: email-inbox-aol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:38:36 GMT
content-type: image/gif
content-length: 17565
last-modified: Tue, 21 May 2019 23:17:19 GMT
etag: "5ce486ff-449d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2

aol-mail-inbox.com/favicon.ico

54.176.60.31

404 Not Found

0 B

URL HTTP/2
aol-mail-inbox.com/favicon.ico
IP
54.176.60.31:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: aol-mail-inbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aol-mail-inbox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Sun, 05 Feb 2023 07:38:36 GMT
content-type: text/html
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML