Report Overview

  1. Submitted URL

    mgswater1.my.salesforce.com/visualforce/session?url=https://mgswater1.lightning.force.com/content/session?url=https://mgswater1.file.force.com/sfc/servlet.shepherd/document/download/0698d00000TWShyAAH?operationContext=S1

  2. IP

    13.50.12.180

    ASN

    #16509 AMAZON-02

  3. Submitted

    2024-03-28 11:54:18

    Access

    public

  4. Website Title

    Login | Salesforce

  5. Final URL

    mgswater1.my.salesforce.com/?ec=302&startURL=%2Fvisualforce%2Fsession%3Furl%3Dhttps%253A%252F%252Fmgswater1.lightning.force.com%252Fcontent%252Fsession%253Furl%253Dhttps%253A%252F%252Fmgswater1.file.force.com%252Fsfc%252Fservlet.shepherd%252Fdocument%252Fdownload%252F0698d00000TWShyAAH%253FoperationContext%253DS1

  6. Tags

  7. urlquery detections

    Phishing - Salesforce

Detections

  2. urlquery

    15

  3. Network Intrusion Detection

    0

  4. Threat Detection Systems

    0

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
geolocation.onetrust.com8022004-01-122018-02-072024-03-27
mgswater1.my.salesforce.comunknownunknownNo dataNo data
login.salesforce.com59761998-12-022012-08-282024-03-21
c.salesforce.com138791998-12-022015-01-102024-03-20
www.salesforce.com119471998-12-022012-05-222020-09-02
a.sfdcstatic.com132932010-07-302014-10-292024-03-20
www.googletagmanager.com752011-11-112013-05-222024-03-28

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (442)

HTTP Transactions (58)

URLIPResponseSize
mgswater1.my.salesforce.com/marketing/survey/survey1/1386
13.50.12.180200 OK2.0 kB
mgswater1.my.salesforce.com/marketing/survey/survey4/1386
13.50.12.180200 OK7.0 kB
mgswater1.my.salesforce.com/jslibrary/LoginHint208.js
13.50.12.180200 OK6.8 kB
login.salesforce.com/login/sessionserver212.html
85.222.152.67200 OK98 B
login.salesforce.com/jslibrary/SessionServer212.js
85.222.152.67200 OK8.8 kB
c.salesforce.com/login-messages/promos.html
2.22.31.66200 OK4.2 kB
www.salesforce.com/etc.bundles/sfdc-www/bundles/vendors~scriptloader.bundle.283c135b5cd15de3fdf3.js
2.22.31.66200 OK8.8 kB
www.salesforce.com/etc.bundles/sfdc-www/bundles/scriptloader.bundle.283c135b5cd15de3fdf3.js
2.22.31.66200 OK4.4 kB
mgswater1.my.salesforce.com/img/clear.png
13.50.12.180200 OK32 kB
www.salesforce.com/etc.clientlibs/clientlibs/granite/utils.min.js
2.22.31.66200 OK2.9 kB
www.salesforce.com/etc.clientlibs/clientlibs/granite/jquery/granite.min.js
2.22.31.66200 OK1.4 kB
www.salesforce.com/etc.clientlibs/foundation/clientlibs/jquery.min.js
2.22.31.66200 OK20 B
mgswater1.my.salesforce.com/jslibrary/baselogin.js
13.50.12.180200 OK10 kB
www.salesforce.com/etc/clientlibs/sfdc-aem-master/clientlibs_analytics_login_top.min.js
2.22.31.66200 OK7.5 kB
www.salesforce.com/etc.bundles/sfdc-www/bundles/all.bundle.fe8dd17cf7e8f8093df4.css
2.22.31.66200 OK69 kB
www.salesforce.com/etc/clientlibs/sfdc-aem-master/clientlibs_www_tags.min.js
2.22.31.66200 OK398 B
www.salesforce.com/etc.bundles/sfdc-www/bundles/vendors~utils~webpack-script-manifest-SfdcWwwBaseCnc-js~webpack-script-manifest-commonlyUsed-js~webp~72b17f21.bundle.283c135b5cd15de3fdf3.js
2.22.31.66200 OK4.6 kB
www.salesforce.com/etc.bundles/sfdc-www/bundles/vendors~utils~webpack-script-manifest-SfdcWwwBaseCnc-js~webpack-script-manifest-commonlyUsed-js~webp~8dbeef75.bundle.283c135b5cd15de3fdf3.js
2.22.31.66200 OK12 kB
www.salesforce.com/etc.bundles/sfdc-www/bundles/utils.bundle.283c135b5cd15de3fdf3.js
2.22.31.66200 OK9.9 kB
www.salesforce.com/etc/clientlibs/sfdc-aem-master/clientlibs_analytics_login_bottom.min.js
2.22.31.66200 OK52 kB
www.salesforce.com/content/dam/web/en_us/www/images/login-promos/green-checkmark.png
2.22.31.66200 OK442 B
www.salesforce.com/etc/clientlibs/sfdc-aem-master/clientlibs_base/imgs/spacer.gif
2.22.31.66200 OK43 B
a.sfdcstatic.com/digital/one-trust/core/stable/scripttemplates/otSDKStub.js
2.22.31.26200 OK7.5 kB
a.sfdcstatic.com/digital/one-trust/core/stable/consent/8e783e8c-0ad0-475d-8fca-4a03afa0a02a/8e783e8c-0ad0-475d-8fca-4a03afa0a02a.json
2.22.31.26200 OK2.0 kB
www.salesforce.com/login-messages/promos/_jcr_content.personalization.pagemetadata.v2.json
2.22.31.66200 OK107 B
www.salesforce.com/etc.bundles/sfdc-www/bundles/webpack-script-manifest-config-js.bundle.283c135b5cd15de3fdf3.js
2.22.31.66200 OK1.0 kB
www.salesforce.com/etc.bundles/sfdc-www/bundles/vendors~webpack-script-manifest-SfdcWwwBaseCnc-js~webpack-script-manifest-commonlyUsed-js~webpack-sc~8ab15162.bundle.283c135b5cd15de3fdf3.js
2.22.31.66200 OK4.5 kB
www.salesforce.com/etc.bundles/sfdc-www/bundles/vendors~webpack-script-manifest-commonlyUsed-js.bundle.283c135b5cd15de3fdf3.js
2.22.31.66200 OK41 kB
www.salesforce.com/etc.bundles/sfdc-www/bundles/webpack-script-manifest-commonlyUsed-js.bundle.283c135b5cd15de3fdf3.js
2.22.31.66200 OK24 kB
www.googletagmanager.com/gtm.js?id=GTM-WRXS6TH
142.250.74.168200 OK164 kB
c.salesforce.com/wbin/www-core/f/g
2.22.31.66403 Forbidden403 B
www.salesforce.com/etc/clientlibs/sfdc-aem-master/clientlibs_base/fonts/SalesforceSans-Regular.woff2
2.22.31.66200 OK28 kB
www.salesforce.com/content/dam/web/en_us/www/images/login-promos/php-login-free-trial-bg.jpg
2.22.31.66200 OK7.3 kB
a.sfdcstatic.com/shared/fonts/avant-garde/AvantGardeForSalesforceW05-Dm.woff2
2.22.31.26200 OK68 kB
a.sfdcstatic.com/digital/one-trust/core/stable/consent/8e783e8c-0ad0-475d-8fca-4a03afa0a02a/406638c4-4dd8-4b6a-8854-67b03c7a7774/en.json
2.22.31.26200 OK30 kB
www.salesforce.com/content/dam/web/en_us/www/images/login-promos/php-login-free-trial-fg-2.png
2.22.31.66200 OK48 kB
a.sfdcstatic.com/digital/one-trust/core/stable/scripttemplates/202401.2.0/assets/v2/otPcTab.json
2.22.31.26200 OK14 kB
a.sfdcstatic.com/digital/one-trust/core/stable/scripttemplates/202401.2.0/assets/otCommonStyles.css
2.22.31.26200 OK3.2 kB
a.sfdcstatic.com/digital/one-trust/core/stable/scripttemplates/202401.2.0/assets/otCenterRounded.json
2.22.31.26200 OK9.8 kB
www.googletagmanager.com/a?v=3&t=l&pid=1897733627&rv=43p0&u=AAAAAIAC&ut=AAAI&h=Ag&gtm=45He43p0v78940756za200&ccid=8940756&cid=GTM-WRXS6TH&l=L569.S6.Y1.B122.E391.I679.EC14.TC39.HTC1~gtm.init.S28.V28.E202~gtm.js.S17.V17.E195.TS5html.TI1838.TE1.TS5zone.TI3513.TE0.TS5zone.TI3514.TE0.TS5zone.TI3515.TE0.TS5zone.TI3516.TE1.TS5zone.TI3517.TE0.TS5zone.TI3518.TE0.TS5lcl.TI3519.TE0.TS5lcl.TI3520.TE0.TS5lcl.TI3521.TE0.TS5lcl.TI3522.TE0.TS5cl.TI3523.TE0.TS5cl.TI3524.TE0.TS5lcl.TI3525.TE0.TS5lcl.TI3526.TE0.TS5lcl.TI3527.TE0.TS5lcl.TI3528.TE0.TS5evl.TI3529.TE1.TS5tg.TI3530.TE0.TS5hl.TI3534.TE0.TS5cl.TI3535.TE0.TS5lcl.TI3536.TE0.TS5lcl.TI3537.TE0.TS5lcl.TI3538.TE0.TS5cl.TI3539.TE0.TS5cl.TI3540.TE0.TS5cl.TI3541.TE0.TS5cl.TI3542.TE0.TS5lcl.TI3544.TE1.TS5cl.TI3545.TE0.TS5lcl.TI3546.TE0.TS5cl.TI3547.TE0.TS5cl.TI3548.TE0.TS5cl.TI3549.TE0.TS5cl.TI3550.TE0.TS5cl.TI3551.TE0~*.S20.V19.E149.TS5cvt.TI3508.TE3~*.S17.V16.E104~*.S16.V16.E87~*.S19.V18.E70~gtm.dom.S25.V24.E48~gtm.load.S15.V15.E120.TS5tg.TI3533.TE0.TS5sdl.TI3543.TE0~gtm.scrollDepth.S15.V15~gtm.scrollDepth.S29.V29~gtm.scrollDepth.S27.V27~gtm.scrollDepth.S15.V15~gtm.scrollDepth.S14.V14~gtm.init_consent.S62.V60.E264
142.250.74.168200 OK0 B
www.salesforce.com/etc/clientlibs/sfdc-aem-master/clientlibs_base/fonts/SalesforceSans-Regular.woff2
2.22.31.66200 OK28 kB
www.salesforce.com/etc/clientlibs/sfdc-aem-master/clientlibs_base/fonts/SalesforceSans-Bold.woff2
2.22.31.66200 OK28 kB
www.salesforce.com/etc/clientlibs/sfdc-aem-master/clientlibs_base/fonts/SalesforceSans-Bold.woff2
2.22.31.66200 OK28 kB
a.sfdcstatic.com/digital/one-trust/core/stable/consent/8e783e8c-0ad0-475d-8fca-4a03afa0a02a/406638c4-4dd8-4b6a-8854-67b03c7a7774/logos/ddb906c9-f57b-40fc-85a1-c8bcbc371b0d/6a33a761-886e-4860-8e17-abc0832f7a62/corporate_logo_big.png
2.22.31.26200 OK5.5 kB
a.sfdcstatic.com/digital/one-trust/core/stable/consent/8e783e8c-0ad0-475d-8fca-4a03afa0a02a/406638c4-4dd8-4b6a-8854-67b03c7a7774/logos/static/ot_guard_logo.svg
2.22.31.26200 OK309 B
mgswater1.my.salesforce.com/?ec=302&startURL=%2Fvisualforce%2Fsession%3Furl%3Dhttps%253A%252F%252Fmgswater1.lightning.force.com%252Fcontent%252Fsession%253Furl%253Dhttps%253A%252F%252Fmgswater1.file.force.com%252Fsfc%252Fservlet.shepherd%252Fdocument%252Fdownload%252F0698d00000TWShyAAH%253FoperationContext%253DS1
13.50.12.180200 OK10 kB
mgswater1.my.salesforce.com/jslibrary/SfdcSessionBase208.js
13.50.12.180200 OK16 kB
mgswater1.my.salesforce.com/img/icon/capslock_blue.png
13.50.12.180200 OK549 B
mgswater1.my.salesforce.com/img/logo214.svg
13.50.12.180200 OK6.7 kB
mgswater1.my.salesforce.com/login/assets/fonts/SalesforceSans/SalesforceSans-Light.woff2
13.50.12.180200 OK28 kB
mgswater1.my.salesforce.com/s.gif
13.50.12.180200 OK43 B
www.salesforce.com/etc/clientlibs/granite/lodash/modern.min.js
2.22.31.66200 OK29 kB
mgswater1.my.salesforce.com/login/assets/fonts/SalesforceSans/SalesforceSans-Regular.woff2
13.50.12.180200 OK28 kB
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.32.137200 OK72 B
www.salesforce.com/etc.clientlibs/clientlibs/granite/jquery.min.js
2.22.31.66200 OK101 kB
a.sfdcstatic.com/digital/one-trust/core/stable/scripttemplates/202401.2.0/otBannerSdk.js
2.22.31.26200 OK440 kB
mgswater1.my.salesforce.com/css/sfdc_210.css
13.50.12.180200 OK16 kB
mgswater1.my.salesforce.com/favicon.ico
13.50.12.180200 OK5.4 kB