| 54.36.104.97/AcaBox/index.php | 54.36.104.97 | 200 OK | 221 B |
URL User Request GET HTTP/1.154.36.104.97/AcaBox/index.php IP54.36.104.97:443
CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash2f0784a14f68411e0ba0fd09a3582dcd 4898782a57ac9a13da2b89c9fc8182abf64d9a11 4dd0e0ac24fc3d10f55b128c170b67b0cb3ea3a68b0a06cd4e43bcd9e0ea8d19
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/index.php HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 25 Apr 2024 21:18:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Location: https://54.36.104.97/AcaBox/index.php
Content-Length: 221
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| 54.36.104.97/AcaBox/index.php | 54.36.104.97 | 200 OK | 60 kB |
URL User Request GET HTTP/1.154.36.104.97/AcaBox/index.php IP54.36.104.97:443
CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1239), with CRLF, LF line terminators Hash2183742f8a2c164a31734a80f4975b5d b6bce1f821641f2ff3c2b0ad0ae9e5a6a5f0385f 4a005e147155c7d66dbdec7f66b21d723df84c96db708803a4eadd1e3c63e941
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/index.php HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
X-Powered-By: PHP/5.5.38
Set-Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81; expires=Fri, 26-Apr-2024 10:18:16 GMT; Max-Age=46800; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, must-revalidate
Pragma:
refresh: 0; url=index0.php?cookietest=2
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
|
|
| 54.36.104.97/AcaBox/style.css | 54.36.104.97 | 200 OK | 10 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/style.css IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash4c3a645abea2ff14eb5090e8d8d038b3 a4b517d121848988d9f0e9a6209ddd506f7c8b05 5a31fbc09a8b66b2caa5580e80cd38c7b7a574c12deab25ee87168cbf05ffdc3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/style.css HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 01 Mar 2016 14:58:28 GMT
ETag: "2932-52cfdff78ad00"
Accept-Ranges: bytes
Content-Length: 10546
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| 54.36.104.97/AcaBox/js/fancybox-1.3.4/jquery.fancybox-1.3.4.js | 54.36.104.97 | 200 OK | 30 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/fancybox-1.3.4/jquery.fancybox-1.3.4.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (418), with CRLF line terminators Hash8d750ab5e966be4b8454bb0a0c50553d d7258fdae7166613847b2e51a903424798ee7a89 c909ac056f99f92c2317a4c518422f5d921cfe3ec177c8c8f8499e9ab3bc5aa3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/fancybox-1.3.4/jquery.fancybox-1.3.4.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:16 GMT
ETag: "7459-523a30c445700"
Accept-Ranges: bytes
Content-Length: 29785
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 54.36.104.97/AcaBox/js/jquery-fileDownload/jquery.fileDownload.js | 54.36.104.97 | 200 OK | 17 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/jquery-fileDownload/jquery.fileDownload.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1982), with CRLF line terminators Hash58929c3add882821a72fe13173727993 1aa821763b233100413649114f7c6b8f7434506e d4190c952b6a3f4e32672c7c8f80bae5a302fb242c7f988f021269dd44c981a9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/jquery-fileDownload/jquery.fileDownload.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:16 GMT
ETag: "43a9-523a30c445700"
Accept-Ranges: bytes
Content-Length: 17321
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 54.36.104.97/AcaBox/js/ticker-jquery.js | 54.36.104.97 | 200 OK | 642 B |
URL GET HTTP/1.154.36.104.97/AcaBox/js/ticker-jquery.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash2fd69e6dad26568edef0c416e8bfe405 f3d4ee13017d3505817030c9be7fb20e18c42a59 995ba3f2063767e4e129344dbde10ad7e55e4b4e2e673ab2717147a94876374d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/ticker-jquery.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Wed, 22 Nov 2023 09:24:04 GMT
ETag: "282-60aba47c84cab"
Accept-Ranges: bytes
Content-Length: 642
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 54.36.104.97/AcaBox/js/fancybox-1.3.4/jquery.fancybox-1.3.4.css | 54.36.104.97 | 200 OK | 8.9 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/fancybox-1.3.4/jquery.fancybox-1.3.4.css IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash4638ce99ef00cf62bfb22d230f9924b8 dc79d46238a7dd0a7b63f640bce08ae52af73b36 b16dc95bb0dee2be9a35dd088b2624c26b574a51611cf64aa9f04e9464e054a9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/fancybox-1.3.4/jquery.fancybox-1.3.4.css HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:16 GMT
ETag: "2294-523a30c445700"
Accept-Ranges: bytes
Content-Length: 8852
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 54.36.104.97/AcaBox/js/jquery.placeholder.js | 54.36.104.97 | 200 OK | 5.1 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/jquery.placeholder.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash7e62d05e20555b8a2c99d06bfdf057c9 c394418130bae00fab742d44f9c51536e1f8737c 8f7cb6bce00fc90c2ce1ed5adbf6547f4bc1d990934c982f1ad22dc52797954f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/jquery.placeholder.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:16 GMT
ETag: "13ba-523a30c445700"
Accept-Ranges: bytes
Content-Length: 5050
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 54.36.104.97/ticker.css | 54.36.104.97 | 200 OK | 162 B |
IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash108b93e27de6677032ab107644101516 f602d2439e9222e4ae953e6a0c52e616ec5c3825 735c84d854222bf22c5e4b23299c1e7188771a0a217565e23485f4a39291285b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ticker.css HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:13 GMT
ETag: "a2-523a30c169040"
Accept-Ranges: bytes
Content-Length: 162
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
|
|
| 54.36.104.97/AcaBox/js/jquery-image-dropdown-3.5/css/msdropdown/dd.css | 54.36.104.97 | 200 OK | 4.3 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/jquery-image-dropdown-3.5/css/msdropdown/dd.css IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hashfc5d87ddce1b9679fda5186ad3fa334a 6eed0d918044d63d79bd0cb4b8c4d4553fb773cb cbe4b0ea8594995768e2a628312f20cf15f92db53b004bbed0bbfb2a1796f000
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/jquery-image-dropdown-3.5/css/msdropdown/dd.css HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:17 GMT
ETag: "10f1-523a30c539940"
Accept-Ranges: bytes
Content-Length: 4337
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 54.36.104.97/AcaBox/js/jquery-textrange.js | 54.36.104.97 | 200 OK | 5.9 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/jquery-textrange.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash667aa4cf7669ded783b03de8158a27f3 e41b09b303d25c27fc132fb5bb5c120524c0c380 ce6461b5181b27e02cf4023e10c8a4babd66db0a97e0dea49b9d6b8368a7e7b3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/jquery-textrange.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:16 GMT
ETag: "170d-523a30c445700"
Accept-Ranges: bytes
Content-Length: 5901
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js | 142.250.74.74 | 200 OK | 33 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js IP142.250.74.74:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32072) Hashe0e0559014b222245deb26b6ae8bd940 e2f3603e23711f6446f278a411d905623d65201e 89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e
GET /ajax/libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32954
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:20:31 GMT
expires: Wed, 23 Apr 2025 07:20:31 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 223065
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 54.36.104.97/AcaBox/acabox.js | 54.36.104.97 | 200 OK | 16 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/acabox.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (562), with CRLF line terminators Hash03f11759d6f86ade1d80446f7a489a3d 9c2b03e81b31c1470e4a30a8f66ed681b3c87692 56a44f79573ce05107ce5806a11cd14f9d89338153a6b33f30a163305b618937
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/acabox.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Wed, 01 Aug 2018 10:03:56 GMT
ETag: "40a0-5725cd0037b00"
Accept-Ranges: bytes
Content-Length: 16544
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| code.jquery.com/ui/1.12.0/themes/base/jquery-ui.css | 151.101.130.137 | 200 OK | 36 kB |
URL GET HTTP/2code.jquery.com/ui/1.12.0/themes/base/jquery-ui.css IP151.101.130.137:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (2363) Hash0ffb2eb1fb5bb4236e7900904b79e5ac 8426fb1376a34e41fd40797a2474a1b05dfd458d 55a8eb8853147ab5cc7e393cd1422ebe3dad920bc516816fae161a468c5b1235
GET /ui/1.12.0/themes/base/jquery-ui.css HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: "28feccc0-8ca1"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 25 Apr 2024 21:18:16 GMT
age: 63688
x-served-by: cache-lga21975-LGA, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 10, 340
x-timer: S1714079897.768615,VS0,VE0
vary: Accept-Encoding
content-length: 36001
X-Firefox-Spdy: h2
|
|
| code.jquery.com/ui/1.12.0/jquery-ui.js | 151.101.130.137 | 200 OK | 520 kB |
URL GET HTTP/2code.jquery.com/ui/1.12.0/jquery-ui.js IP151.101.130.137:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1002) Size520 kB (520098 bytes) Hash540b3fea1b8c4af37343dcbd255040cd 40112996be9f29554100f4995081a3f817398ae7 d183ca03064fecca7700b311541da2f065de12776f0aadde4a5fd6b009754729
GET /ui/1.12.0/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: "28feccc0-7efa2"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 25 Apr 2024 21:18:16 GMT
age: 63687
x-served-by: cache-lga21965-LGA, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 14, 2
x-timer: S1714079897.758985,VS0,VE0
vary: Accept-Encoding
content-length: 520098
X-Firefox-Spdy: h2
|
|
| 54.36.104.97/AcaBox/skin/blue.monday/jplayer.blue.monday.css | 54.36.104.97 | 200 OK | 14 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/skin/blue.monday/jplayer.blue.monday.css IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash6b0d47e985c24c9789055d551b35638e 4b726bba86ac6f0c10af9e4d254a70b357b0c2ce b09b75af19b3eba5777b0fd9e3f315db3078bd68102cc338c48f062822c0b3fd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/skin/blue.monday/jplayer.blue.monday.css HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:17 GMT
ETag: "34a5-523a30c539940"
Accept-Ranges: bytes
Content-Length: 13477
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
|
|
| 54.36.104.97/AcaBox/style-h5.php | 54.36.104.97 | 200 OK | 8.7 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/style-h5.php IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hash1ea646d48fa4c5a6a9cdac144cd5b66f 141f349363bcb0645935bf324aefa07993774c35 fd954e238c0a30b9be111b4b6f40b67258e1a62bfd6b2888a21decee7cfaf7d1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/style-h5.php HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
X-Powered-By: PHP/5.5.38
Set-Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css; charset: UTF-8
|
|
| 54.36.104.97/AcaBox/js/colorbox-1.4/colorbox.css | 54.36.104.97 | 200 OK | 5.1 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/colorbox-1.4/colorbox.css IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hashb6eae4ae4fd219b17a52b8847734b882 52d30258f6317c7f781d1fefd09e13a1411923b1 f9e57519b26c99f8a0b8da5316da43069e9dd4eb518d6d0f8034d49da1167c0b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/colorbox-1.4/colorbox.css HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:16 GMT
ETag: "140f-523a30c445700"
Accept-Ranges: bytes
Content-Length: 5135
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| 54.36.104.97/AcaBox/js/jquery-image-dropdown-3.5/js/msdropdown/jquery.dd.js | 54.36.104.97 | 200 OK | 55 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/jquery-image-dropdown-3.5/js/msdropdown/jquery.dd.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (437), with CRLF line terminators Hashfd90120e18e5e357704a0eaa740454a9 7c3474a0c2d4bceea3b0bf53297568369a415fd0 35073c8b8c28075cb683067b132ca51a6ac5caf6f168c9271424a9de4b917459
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/jquery-image-dropdown-3.5/js/msdropdown/jquery.dd.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:17 GMT
ETag: "d643-523a30c539940"
Accept-Ranges: bytes
Content-Length: 54851
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 54.36.104.97/AcaBox/js/colorbox-1.4/jquery.colorbox_nooverlay.js | 54.36.104.97 | 200 OK | 30 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/colorbox-1.4/jquery.colorbox_nooverlay.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashbe9d29dcafa56a5390b75aa816abeab8 77e8131196cc35c8346e43fee5596f647cff035b 77536dc70ea5cda6f48f504b4589d11332bfa5443c19331acc5ce437a8895332
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/colorbox-1.4/jquery.colorbox_nooverlay.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 03 Nov 2015 13:41:16 GMT
ETag: "734e-523a30c445700"
Accept-Ranges: bytes
Content-Length: 29518
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 54.36.104.97/AcaBox/js/jquery-jplayer/jquery.jplayer.min.js | 54.36.104.97 | 200 OK | 61 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/js/jquery-jplayer/jquery.jplayer.min.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32026) Hash4a332e8b9248f2d7dd45f855570944e8 552f8f2e92496bdc63c539694295f7075bb46d89 600230e783fa38f88891426af12ddac8e12e9c4cff3222b60310d8d2814b341b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/js/jquery-jplayer/jquery.jplayer.min.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Thu, 08 Oct 2020 11:30:10 GMT
ETag: "ee16-5b127279d1480"
Accept-Ranges: bytes
Content-Length: 60950
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.googletagmanager.com/gtm.js?id=GTM-MXDD8W | 142.250.74.168 | 200 OK | 56 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-MXDD8W IP142.250.74.168:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (2642) Hash4fbd2e5368914bcff453f0c06902a814 ce9dbd425142fadb6e192fc0c41cf2e8982c82b4 cea9e608d5ad6d5b494f7ca37b8671c0636a3d6f44a11e34f16999755783dabc
GET /gtm.js?id=GTM-MXDD8W HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 21:18:16 GMT
expires: Thu, 25 Apr 2024 21:18:16 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 56122
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 54.36.104.97/AcaBox/Elements/acapela-twitter.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/acapela-twitter.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/acapela-twitter.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/acapela-soundcloud2.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/acapela-soundcloud2.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/acapela-soundcloud2.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/acapela-box-logo.jpg | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/acapela-box-logo.jpg IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/acapela-box-logo.jpg HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/button_googleplus.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/button_googleplus.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/button_googleplus.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/acapela-linkedin.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/acapela-linkedin.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/acapela-linkedin.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/AcaBox-h5.js | 54.36.104.97 | 200 OK | 16 kB |
URL GET HTTP/1.154.36.104.97/AcaBox/AcaBox-h5.js IP54.36.104.97:443
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (319), with CRLF line terminators Hash2e98d6b29611a19100bc3675ffeb2b01 05101b76caca76dbf342d4a255676cc6aec8784d b52003c7e7b291a97921901a0efcafe74d9aa711a3ec59e7a4838bbe7fd7d4b9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/AcaBox-h5.js HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 21:18:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
Last-Modified: Tue, 17 Oct 2017 06:35:33 GMT
ETag: "6428-55bb8547ad740"
Accept-Ranges: bytes
Content-Length: 25640
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 54.36.104.97/AcaBox/Elements/acapela-rss.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/acapela-rss.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/acapela-rss.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/adv_settings.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/adv_settings.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/adv_settings.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/acapela-facebook.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/acapela-facebook.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/acapela-facebook.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/acapela-youtube.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/acapela-youtube.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/acapela-youtube.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/cross.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/cross.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/cross.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/Play.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/Play.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/Play.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| 54.36.104.97/AcaBox/Elements/logoAG_XL_transp.png | 0.0.0.0 | | 0 B |
URL GET 54.36.104.97/AcaBox/Elements/logoAG_XL_transp.png IP0.0.0.0:0
Requested byhttps://54.36.104.97/AcaBox/index.php CertificateIssuerSectigo Limited Subject*.acapela-box.com Fingerprint38:5D:75:CD:F4:7E:5E:0D:B8:DE:C6:53:8C:5E:2D:C1:BB:C9:90:BD ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 22 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AcaBox/Elements/logoAG_XL_transp.png HTTP/1.1
Host: 54.36.104.97
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://54.36.104.97/AcaBox/index.php
Cookie: acabox=rlq7hi1h8u4qfu5dqktfffof81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|