Report - 54.250.12.14/

Report Overview

Submitted URL
54.250.12.14/
IP
54.250.12.14
ASN
#16509 AMAZON-02
Submitted
2022-12-03 14:24:14
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
66

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
54.250.12.14	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	1.3 MB	54.250.12.14
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.164.56.167
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	42 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed
2022-12-03	medium	54.250.12.14	Sinkholed

JavaScript (41)

	URL	Size	First Seen	Last Seen
	54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/ux/classic/ux.js	162 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/ux/classic/ux.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 2f2620c558fb3da2a0c5dd1a126cf4bc d49d6855ef188eff273aadf4401a17cf1c4ab995 3e7c7a70183792ff59c5700e0cae497c4634a897d8effe4ed8b1d345a71965c3 Loading...

	54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/locale/locale-ja.js	8.2 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/locale/locale-ja.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 9efa1bedd61aa2ee37ed8e4033962aa8 6dce19c2638cb70f2588375073aa46a0403c67eb b0183c62d709079c8a6696d0cfb598186a000172d69113796b2555801d6e12da Loading...

	54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/FileSaver.js/2.0.4/FileSaver.js	2.7 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/FileSaver.js/2.0.4/FileSaver.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 48d3a2a44da456016ef6033e046d75c4 eb71dcc0a7e1aa46d54751a22666fd27b737e037 77852b8179dcd446c82d637c27d1d8bc3198bb03a799c0cb788d7328c3b432ab Loading...

	54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/patch.js	9.1 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/patch.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 97b981ef07438d8de156e478d5bfad56 b4d3c0944f8a99297c6984d4bc86d40924f93080 cb8812fbd6e9bb25de789a3277d1a81832b92f805a572116597c336372501ec9 Loading...

	54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/theme-triton-dark.js	36 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/theme-triton-dark.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 3926243566250ce161b9e3f9d299887d c1bf5273bee21a73e47c1341281d140d8c972252 5653a390804693c750d8400ee11deffd8698d30ea51780b99ed70812e5b69f53 Loading...

	54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/ux.js	8.5 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/ux.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash ec88b5f561297a115549b3453ff1b38f f00b096ea19976767ac92e04c3bf12e5985ad96e 5b09534df87dc3158a5c15b5151afb4516c010188881f4c869cf747a76462709 Loading...

	54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bootstrap_login.js	337 B	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bootstrap_login.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash a3be2b62c4c56238fa2cb2d24d5f8104 c99d29fb79e9ac99656c7d6575d9fe1b9c1238f9 783a46659a41fcffba8fdcab81c3827f707713d875ee20c7bbe07987f2880065 Loading...

	54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next-http-backend/1.4.1/i18nextHttpBackend.js	9.2 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next-http-backend/1.4.1/i18nextHttpBackend.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash f794ca2341726fbd231c58872923bb2f 128c39f1ca5d6bee7583b5cd3e0cd782d6852e6f 4bdcd361abb84104dc9d7d4d09c77dc01f25f122914714ff41ac1ec41e7e3cb3 Loading...

	54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/charts/classic/charts.js	372 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/charts/classic/charts.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 708caffb37f35b46faa18111f7811640 11c05d037b498ac971ad1750849a2fd77b66fb05 80a84d5f45076ebafbff84c24649b141a1f07269061b5925ae519a15d416252b Loading...

	54.250.12.14/	2.6 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/ IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash a0e7f86080403ae6ea9d3ef0ed3c0fd5 fb393cce203897ea2eb8d947eff7d26572f5d366 2c1ac99ddec7f95b0a9d65fbf956f1419dd0878dfbbf5df7c311991b95af8209 Loading...

	54.250.12.14/webjars/cadix-extjs/6.6.0-custom/ext-all.js	2.3 MB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/webjars/cadix-extjs/6.6.0-custom/ext-all.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 83a4d4e6ce4230bccae9bf5254220fd8 0545d82c951b0f0200aeb5a2438534e04e3b94d2 2a7e7c7fa1875723826560ab46d4d9725e4273fd98a1309c2f3b78d50f3d6f1e Loading...

	54.250.12.14/	92 B	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/ IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 91fcf0a18763d593914d213ec14f34a1 29df9e69bab43dcdce0627ca853126bf0dffdfe0 ed9345191eb6755e1baa76d43cef9ac5726336f8e26cfea3d4c2615c27092e13 Loading...

	54.250.12.14/bundle/configs_login.js?namespace=Cadix.Configs	1.4 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/configs_login.js?namespace=Cadix.Configs IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash b72a253ca71e2317346f4978b6b1248b b8a9e87b2a1af61e37a867f27875670de85a09c0 70b948e49d5690eeba7cc606277910f643b1a79f79a6aae89799d8b8701293fc Loading...

	54.250.12.14/bundle/contexts_login.js?namespace=Cadix.Contexts	136 B	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/contexts_login.js?namespace=Cadix.Contexts IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 0b517b3778e4903fffaf53d229210f4d 3d930ed50118b8cc5e16c0fa2ba69f19db0d7c0a 681bc766e5628e6b5b0d86b3a5d7c452a8cb1b711bef4d9c934dc2bea21dd6ea Loading...

	54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bundle_login.js	94 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bundle_login.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash ed4559b67182f966dc5513d965ac7e02 aeb66accca113b2a1a3c8cbe67b1d4a66df71e95 82461a67553da705021027ba57fc50be1bf91e5cf253141134a77485ce4fa2c3 Loading...

	54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next/21.8.9/i18next.js	55 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next/21.8.9/i18next.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 1bd874a23a1211a17d58be000118324b 785aedbe0e800d709d445fda86b0648138311d89 d015b414dff3dce1e00c75190102b263947af0a4ff667e245ddf7d28ace047c4 Loading...

	54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/crypto-js/4.1.1/crypto-js.js	50 kB	2023-03-08	2023-03-08
Pretty URL 54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/crypto-js/4.1.1/crypto-js.js IP 54.250.12.14 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash a7562b8f248da06c7a43c708ea8c8f9c 4d665c807adeb561073864a4b6daf2b8b684c6e5 6ca6e62be03829c7f7375cfd706a3daae466777978f7a400ed632933b1138c30 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 13:49:55 Times Seen37063639 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3ee2a6054fdbaeaa0ec7408fcd5ff994	214 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 3ee2a6054fdbaeaa0ec7408fcd5ff994 5d61a48dade5487d125d1fc58fcc862f3a5ddab9 6c53528a9c9d8aa1cd88d73c9ed7eae14b8eb22768829cc6127a2620a1e851b0 Loading...

	#2 Eval - 8e2ad9ad5aaee944668c08e107d78d5c	295 B	2023-03-07	2024-01-30
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-01-30 20:19:19 Times Seen34 Hash 8e2ad9ad5aaee944668c08e107d78d5c 4a619ab95e7fd94c4752e7b240e04c672f9f5fa0 3acdad218cc8c89b0552c4ca4235d20b9b43accb35be94c46b81f545e4ff47ed Loading...

	#3 Eval - 8912f9ff3a867ac213d048de46b43c60	85 B	2023-03-08	2024-02-27
Pretty Observations First Seen2023-03-08 15:20:33 Last Seen2024-02-27 03:47:15 Times Seen29 Hash 8912f9ff3a867ac213d048de46b43c60 22702fd831b6db082cdcc5b67d2720b48a03a83f 46c2c7f614270b9f981b431264c28864e94f12996dc460dd805450377d0077be Loading...

	#4 Eval - aba21e7314efd29a8037d0108c12d968	1.3 kB	2023-03-07	2024-01-30
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-01-30 20:19:19 Times Seen28 Hash aba21e7314efd29a8037d0108c12d968 f59fe4417b0279c8326b631bf88fae565137a049 c296d29f5413f899c309ce50d9552d9b6aa3b260b780ca9fc7662fb58c9b81b8 Loading...

	#5 Eval - e022e2d70dd9ad115889c910e056e532	213 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-04-24 00:53:45 Times Seen513 Hash e022e2d70dd9ad115889c910e056e532 98411e277ea0ffe98878a10ff58eb6c1d22f0466 7ab3d9376f6b12127da11872f7070f3f8bc3554c2547a1227c5b4ffe5f49272a Loading...

	#6 Eval - 8fe2babe85ca6f8357cbf84ccf11c559	216 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-04-24 00:53:46 Times Seen508 Hash 8fe2babe85ca6f8357cbf84ccf11c559 985d3c517efccae373a9ce524529d536f8bd1a60 bb3daa9779d3adaee4b92e53c2c4f40c8fe03bed679b9e9b8b6c1e7548e84497 Loading...

	#7 Eval - 7ab2e25f430f2732ca6fc0565d322dfb	1.0 kB	2023-03-08	2023-03-29
Pretty Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-29 23:26:42 Times Seen2 Hash 7ab2e25f430f2732ca6fc0565d322dfb f5377449fecb5b83a29320fec7af6a01993027ae d0003bffebd1b4cd68631bf74949091d77e72887275c72b1a88cc4516b83739c Loading...

	#8 Eval - efda4ad249e3b9d58256a69b7f97cb36	50 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-04-24 00:53:45 Times Seen584 Hash efda4ad249e3b9d58256a69b7f97cb36 a26343144c2418f60d34a263f334da6ab6ec0d3c fba72aa4d1d991e33c934c2202157bebdfdc62ef1bb8f17ac89d2e05cf0987c8 Loading...

	#9 Eval - e694d23ab6388bbd41f59d38f06fb979	373 B	2023-03-07	2024-02-28
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-02-28 09:05:07 Times Seen75 Hash e694d23ab6388bbd41f59d38f06fb979 2f371ef0bbcb9bcc7d2f15a8a93f27ed5b62545e 6583265e27ec57e59ad0e4039119c60ec459d2b2edb4133b693f0ef95f49ba7d Loading...

	#10 Eval - 536164c21541b761244e06fd7f2dabb3	142 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 536164c21541b761244e06fd7f2dabb3 2c8cef1362855d3c2863fd59a227903d729be6d1 d3d0de9c83419138b7d503bbf2fe63f4bdc21307f21c56b0a8aac0248403d0c6 Loading...

	#11 Eval - 2e401db48a4deb5a7581f1c36cd4ccf7	99 B	2023-03-08	2023-04-05
Pretty Observations First Seen2023-03-08 15:20:33 Last Seen2023-04-05 01:45:36 Times Seen3 Hash 2e401db48a4deb5a7581f1c36cd4ccf7 a1431010d0166245754a536957353ccc56f33dba bb9ae2dee2009ba957e3aa462d88ef110b513e3d6bea965b5b1a931dd5d20381 Loading...

	#12 Eval - 1c1c87cc05345d72177a60bb978c87b5	4.8 kB	2023-03-07	2024-01-30
Pretty Observations First Seen2023-03-07 14:28:46 Last Seen2024-01-30 20:19:19 Times Seen14 Hash 1c1c87cc05345d72177a60bb978c87b5 79020923795f2ebbc982c612af7d7539e3f2ab93 635c1794e3365736f37c70b71d3f944e2803cae914d98f22cd1f6c7ce39cd066 Loading...

	#13 Eval - 3f4cbfd7650ba2a2ec840ad361b86d3c	1.3 kB	2023-03-07	2024-01-30
Pretty Observations First Seen2023-03-07 14:28:46 Last Seen2024-01-30 20:19:19 Times Seen14 Hash 3f4cbfd7650ba2a2ec840ad361b86d3c b46138103f112a9a8047fc8bf55d993c76daf73b e77b2ee957240564cf4e5f207e30862a6ff30e09b647a1a833dae1ea04156737 Loading...

	#14 Eval - 4295859e9c30acdefba67b93f96cd224	1.1 kB	2023-03-07	2024-01-04
Pretty Observations First Seen2023-03-07 14:28:46 Last Seen2024-01-04 13:26:14 Times Seen13 Hash 4295859e9c30acdefba67b93f96cd224 3bd31dfd277ff602e8e101979a543bea2e96ac2a 167c43a0c57d3b6e9bd02071ca3581afd60367d6edad1eb1b69238b665914f3f Loading...

	#15 Eval - 55dc544cf22c7e290d01818c33feeb77	3.2 kB	2023-03-07	2024-01-30
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-01-30 20:19:19 Times Seen29 Hash 55dc544cf22c7e290d01818c33feeb77 9a0ebbd124a1fe49669a8b1c2f1da2129c2d8b95 24d544540ab33ff04030b9a0888c01214637709d097e8ccc13d38eab6a8e089c Loading...

	#16 Eval - c61c6b5dd73d26715b49379363346768	1.5 kB	2023-03-07	2024-01-30
Pretty Observations First Seen2023-03-07 14:28:46 Last Seen2024-01-30 20:19:19 Times Seen14 Hash c61c6b5dd73d26715b49379363346768 01a2c2ba74676364dd3a854aa23a7ddc88368596 e5e5e8fbe838d311619ce443ca5cb82a238016ee75a10bb6a308b8a85059b51e Loading...

	#17 Eval - a0efc48203eb5e0ca4f7e4337fd1282e	2.9 kB	2023-03-08	2024-01-30
Pretty Observations First Seen2023-03-08 15:20:33 Last Seen2024-01-30 20:19:19 Times Seen12 Hash a0efc48203eb5e0ca4f7e4337fd1282e 967d031ce4c534289f6eea17d752476c87cdb302 a852cf3d8dfc57074f3d8601e0392dd16c4713e48d16c7b518a814d9ce9e393d Loading...

	#18 Eval - 71dc4acedac1c38be3f5b481464ab15e	3.9 kB	2023-03-07	2023-12-27
Pretty Observations First Seen2023-03-07 14:28:46 Last Seen2023-12-27 03:16:50 Times Seen8 Hash 71dc4acedac1c38be3f5b481464ab15e 2ea0e19b1379adf788ef0a3542ea36efaa764143 c7be8c3ca1adb6a5fed4c3c6b5b64d2eb3721a732f7f40490c76bde30a569ae0 Loading...

	#19 Eval - 5c858de1432a46a36c499a78cf954a27	901 B	2023-03-07	2024-01-30
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-01-30 20:19:19 Times Seen28 Hash 5c858de1432a46a36c499a78cf954a27 926c14e50cdacd4412da50dc847e4c23d07e490a c333ede8f27db0ecec144af81bce9bf82a2232a7ce3600a77463e796e40b9d4c Loading...

	#20 Eval - f5bd4ec38be040d9f1b3baea7e6be0e5	935 B	2023-03-08	2023-03-29
Pretty Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-29 23:26:42 Times Seen2 Hash f5bd4ec38be040d9f1b3baea7e6be0e5 69c4b41160f163628e16948bc84c9c84d21c4f0d d20338b59b43efdf491f10b5a833220e15f5007a4bc3c439002e1bdf25af7f84 Loading...

	#21 Eval - 3c2af21364e25c0ac95bd8f27a36fd78	92 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 3c2af21364e25c0ac95bd8f27a36fd78 aecae47b3b33f53230553ac5e5d2721bfee295be 955d9c388019b1dafd3a6721e2595620ef941543dc0bf22c30aa24006dd71b6c Loading...

	#22 Eval - 6ab5153eb6ca3112324979491af48831	159 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 15:20:33 Last Seen2023-03-08 15:20:33 Times Seen1 Hash 6ab5153eb6ca3112324979491af48831 b6ebc54b817a68e59fc916f6e0179ffad9468b0f 08bde6227d5c4bdcb0fe9ecf5a8b388cf1bd022383f2c4ddf7fe876fbcc7585d Loading...

	#23 Eval - 0870c6ea8a796949d1a43365ba530ef0	975 B	2023-03-07	2024-01-30
Pretty Observations First Seen2023-03-07 12:03:19 Last Seen2024-01-30 20:19:19 Times Seen29 Hash 0870c6ea8a796949d1a43365ba530ef0 96f3328670c0c1e229c39dfc429ff6e3f8b0b7ad 36e76310218ca8904c39a83cdbd0fbf1f3e55784e6553eb6c1cba860bfe535a2 Loading...

HTTP Transactions (51)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7707
Expires: Sat, 03 Dec 2022 16:32:29 GMT
Date: Sat, 03 Dec 2022 14:24:02 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4926
Cache-Control: max-age=163756
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 14:24:02 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 11:53:18 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2848
Expires: Sat, 03 Dec 2022 15:11:30 GMT
Date: Sat, 03 Dec 2022 14:24:02 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 14:18:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 347
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: EXm0v4Hcv/rbnW08rvnyHHCzEg3XRl1J0qO4jYEfrAgi1+KzUbXQW1rYbXqdez5eEp+KqlHGJJI=
x-amz-request-id: 8DF9BFBSJHSNSASX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 13:47:08 GMT
age: 2214
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 14:24:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

54.250.12.14/

54.250.12.14

200

1.8 kB

URL HTTP/1.1
54.250.12.14/
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.8 kB (1772 bytes)
Hash
cfd970cb7820dbca653ece9e01675e12
68aeea9f6787ea1cce8b9e4fd682e0bd211ae12b
3a01d99548f196387196e1a002cf50b4b7606d113c36e1972751eff294bc9e73

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: SAMEORIGIN
vary: accept-encoding
Content-Encoding: gzip
Content-Type: text/html;charset=UTF-8
Content-Language: ja
Set-Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; Path=/
SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2; Path=/; HttpOnly; SameSite=Lax
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 14:08:58 GMT
cache-control: public,max-age=3600
age: 905
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next-http-backend/1.4.1/i18nextHttpBackend.js

54.250.12.14

200

9.2 kB

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next-http-backend/1.4.1/i18nextHttpBackend.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (516)
Size
9.2 kB (9205 bytes)
Hash
f794ca2341726fbd231c58872923bb2f
128c39f1ca5d6bee7583b5cd3e0cd782d6852e6f
4bdcd361abb84104dc9d7d4d09c77dc01f25f122914714ff41ac1ec41e7e3cb3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next-http-backend/1.4.1/i18nextHttpBackend.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Cache-Control: max-age=86400, public
Content-Disposition: inline;filename=f.txt
Content-Type: text/javascript;charset=UTF-8
Content-Length: 9205
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4916
Cache-Control: max-age=158684
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 14:24:03 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 10:28:47 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/FileSaver.js/2.0.4/FileSaver.js

54.250.12.14

200

2.7 kB

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/FileSaver.js/2.0.4/FileSaver.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (515)
Size
2.7 kB (2681 bytes)
Hash
48d3a2a44da456016ef6033e046d75c4
eb71dcc0a7e1aa46d54751a22666fd27b737e037
77852b8179dcd446c82d637c27d1d8bc3198bb03a799c0cb788d7328c3b432ab

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/FileSaver.js/2.0.4/FileSaver.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Cache-Control: max-age=86400, public
Content-Disposition: inline;filename=f.txt
Content-Type: text/javascript;charset=UTF-8
Content-Length: 2681
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/locale/locale-ja.js

54.250.12.14

200

2.7 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/locale/locale-ja.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (6342), with no line terminators
Size
2.7 kB (2659 bytes)
Hash
b0482ad5688f8ee3b1c057409460f5bb
603fc54551438aedd8e94189bf0d677630437857
c9ac5d6262cb4956b90143a8d48f6f6ff70a18a58a9c056750dbb11d766bfc05

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/classic/locale/locale-ja.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/theme-triton-dark.js

54.250.12.14

200

8.9 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/theme-triton-dark.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (35547), with no line terminators
Size
8.9 kB (8929 bytes)
Hash
2a850439cb4533d234beb0ad1e4a5e2d
7e7f7f5737c4b92a16d0b37846d6c3b1563714f2
5c1549624f7b4a455c050088841a430fe8c45052111cbb4bfad4cf4bd9e80e73

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/theme-triton-dark.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/calendar/classic/triton/resources/calendar-all.css

54.250.12.14

200

2.4 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/calendar/classic/triton/resources/calendar-all.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (13578), with no line terminators
Size
2.4 kB (2405 bytes)
Hash
cdec00bd369001c9570a76e6d96ea98b
368eb2d6ff8085d33faa32e2db716a0a60f80c16
f8791423d7f806c4fd3923ec231a4f2d0dd0932a051b44030ef227eff3b1b8de

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/packages/calendar/classic/triton/resources/calendar-all.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next/21.8.9/i18next.js

54.250.12.14

200

55 kB

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next/21.8.9/i18next.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (572)
Size
55 kB (55449 bytes)
Hash
1bd874a23a1211a17d58be000118324b
785aedbe0e800d709d445fda86b0648138311d89
d015b414dff3dce1e00c75190102b263947af0a4ff667e245ddf7d28ace047c4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/i18next/21.8.9/i18next.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Cache-Control: max-age=86400, public
Content-Disposition: inline;filename=f.txt
Content-Type: text/javascript;charset=UTF-8
Content-Length: 55449
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/charts/classic/triton/resources/charts-all.css

54.250.12.14

200

789 B

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/charts/classic/triton/resources/charts-all.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (2550), with no line terminators
Size
789 B (789 bytes)
Hash
816b502840ad3fef89ae0b58badc3941
02b99cee986b5cc4107bdd24932e1841faa9ef41
981e151ef07d5ee77227643845679180ebb36a218cc7cab6cfd99a600f211d6a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/packages/charts/classic/triton/resources/charts-all.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked

push.services.mozilla.com/

35.164.56.167

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.164.56.167:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WMRYlfxSBzYMUXxdbnd54Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: z9bKkxCWOamGtlvcNq7KsvMQ+vw=

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/ux/classic/triton/resources/ux-all.css

54.250.12.14

200

1.8 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/ux/classic/triton/resources/ux-all.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (6977), with no line terminators
Size
1.8 kB (1759 bytes)
Hash
41f015c1f55d771e6651224287c82934
8feebba2a458446c3c01689e268bd94f82d3f22d
eadcf0d55d816ba3e8c877d78a9b987c89e19dc8525d9abedaf1b94324ec9285

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/packages/ux/classic/triton/resources/ux-all.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/crypto-js/4.1.1/crypto-js.js

54.250.12.14

200

50 kB

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/crypto-js/4.1.1/crypto-js.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (756)
Size
50 kB (50205 bytes)
Hash
a7562b8f248da06c7a43c708ea8c8f9c
4d665c807adeb561073864a4b6daf2b8b684c6e5
6ca6e62be03829c7f7375cfd706a3daae466777978f7a400ed632933b1138c30

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/cdn/libs/crypto-js/4.1.1/crypto-js.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Cache-Control: max-age=86400, public
Content-Disposition: inline;filename=f.txt
Content-Type: text/javascript;charset=UTF-8
Content-Length: 50205
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/calendar/classic/calendar.js

54.250.12.14

200

34 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/calendar/classic/calendar.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (34058 bytes)
Hash
d72d8a961c6f7917027b041a2ad6d9c9
81a0f00e11d0dc5220cc26778512717136dc3d33
ed92b0fa21ddd64f0dec2de18b40673663bf0c2a1b3d4ad409c9edc733640994

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/packages/calendar/classic/calendar.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/patch.js

54.250.12.14

200

9.1 kB

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/patch.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (542)
Size
9.1 kB (9056 bytes)
Hash
97b981ef07438d8de156e478d5bfad56
b4d3c0944f8a99297c6984d4bc86d40924f93080
cb8812fbd6e9bb25de789a3277d1a81832b92f805a572116597c336372501ec9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/patch.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Cache-Control: max-age=86400, public
Content-Disposition: inline;filename=f.txt
Content-Type: text/javascript;charset=UTF-8
Content-Length: 9056
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/ux/classic/ux.js

54.250.12.14

200

49 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/ux/classic/ux.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
49 kB (48775 bytes)
Hash
583f369ea488c589d7238d6ff6b7bee0
0258b24efdd3f1978ab3871058d56d78f7a3b1bc
faa47108a943e484ba5688b47ed7cef6a1673692befe8c3602c5e82904fe3102

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/packages/ux/classic/ux.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/ux.js

54.250.12.14

200

8.5 kB

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/ux.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
C source, ASCII text, with very long lines (1100)
Size
8.5 kB (8482 bytes)
Hash
ec88b5f561297a115549b3453ff1b38f
f00b096ea19976767ac92e04c3bf12e5985ad96e
5b09534df87dc3158a5c15b5151afb4516c010188881f4c869cf747a76462709

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/ux.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Cache-Control: max-age=86400, public
Content-Disposition: inline;filename=f.txt
Content-Type: text/javascript;charset=UTF-8
Content-Length: 8482
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/custom.js

54.250.12.14

200

0 B

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/custom.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/custom.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Cache-Control: max-age=86400, public
Content-Disposition: inline;filename=f.txt
Content-Type: text/javascript;charset=UTF-8
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/main.css

54.250.12.14

200

997 B

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/main.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
assembler source, ASCII text, with CRLF line terminators
Size
997 B (997 bytes)
Hash
e788e4e4929d2b26140d84b8890908a3
c54211c4a24d8f8e5dc7ae2c2dca0ab8ea328663
0bafe056a27f38ce9f8a05d84ad73b4381cb7b42344e5a3fb686369727dcce8e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/main.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/login.css

54.250.12.14

200

28 B

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/login.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
28 B (28 bytes)
Hash
bdb1c6077d0364838448f2a6bce4a502
e452abd44b9f16026b2d08a05a1d3ef4546c674e
41f90b05140d5a1dcbdcf6d15bb8f710151b18f3889f0685974532049ead94a6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/login.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 28
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/patch.css

54.250.12.14

200

777 B

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/patch.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
777 B (777 bytes)
Hash
36ec6dcaa8f23d938e535bd629e42fd5
a5163d8359f74f9a39caee3a8ddde5e73a04874c
e12a3cb193b62b9717b239ffa24b2d3a647fdef53786f456300253cf5debfd27

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/patch.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/custom.css

54.250.12.14

200

456 B

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/custom.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
456 B (456 bytes)
Hash
b50e7f5573677d598fb115dd637ef866
002be5d5fe94d00b1f1094395f69830ebc76e6f6
e33394dde463e8de124dfe8dd22ad60b4097fe9fc1622e97c720b31f3efb2508

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/css/custom.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 456
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all.css

54.250.12.14

200

117 B

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
117 B (117 bytes)
Hash
0cbbd2942e79e159ad79d7658de0f062
1e7a9b25c05b81eb4dd6aec09b6514d6abecc22e
ae2c77d1dbfaea426bff8c10d3ce10f5dde418dc2d041d062d5a5595c0890a87

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 117
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/charts/classic/charts.js

54.250.12.14

200

108 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/packages/charts/classic/charts.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
108 kB (108468 bytes)
Hash
bcffa8368f83a9873dd47ab23a826147
a6620dc71d5f602a06bd14df8010514ca343c9dd
bc0cdd78ced32c0bb662c00267cfdf30cebb8d81ba7c0d4351cf0dce0c2a5512

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/packages/charts/classic/charts.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:02 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all_1.css

54.250.12.14

200

33 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all_1.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
33 kB (32565 bytes)
Hash
fd81994bf0ca39f7890700ab9902f81f
cd28e937761ccd0e3ed1763b9c5c540a115f26ae
8239907a191c764dcb01d9589ecb50752f0abc69ac5bbd765c7a33cac13637a9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all_1.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all.css
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all_2.css

54.250.12.14

200

28 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all_2.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
28 kB (28349 bytes)
Hash
4c0273dce52cd4eb40504cb806819149
534f8efbf0c4f356c3ae0d7bc1290d44de6da548
aabb1c4afaa6679a2eaa1c2e4ac2e22406be23f63d5e5a4aa5b1b7810e8945b0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all_2.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all.css
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all_3.css

54.250.12.14

200

12 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all_3.css
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
12 kB (12364 bytes)
Hash
99923b3cb05d731819e39ac7399eb68d
220ef4abd019fab84ad0bfc30917480ef9e46fde
346676a0442bf95f106117cc703e2c312909591b73d61da7d350de2e4c7105df

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all_3.css HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/webjars/cadix-extjs/6.6.0-custom/classic/theme-triton-dark/resources/theme-triton-dark-all.css
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3912
Expires: Sat, 03 Dec 2022 15:29:17 GMT
Date: Sat, 03 Dec 2022 14:24:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3912
Expires: Sat, 03 Dec 2022 15:29:17 GMT
Date: Sat, 03 Dec 2022 14:24:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3912
Expires: Sat, 03 Dec 2022 15:29:17 GMT
Date: Sat, 03 Dec 2022 14:24:05 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 33717
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 00:57:24 GMT
age: 48401
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9715 bytes)
Hash
45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 59579
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
fcb89ca25035b2bbb71ae5dd175fcd40
544428cdad754b1bb7be3cd46a79bf078fd5b450
36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bd85z5A6C0nxpDjeSEPp1NHJxXFO5sy1OgTLz7KpdWz61TNrfyQ47Q==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 03:53:20 GMT
age: 37845
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5354 bytes)
Hash
1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -AurmlKwF0QgfsWBsV3ZN9ZyDhw1Zo82zUqrpkBbvbCfh0j7evV2Tg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 11:01:04 GMT
age: 12181
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7334 bytes)
Hash
498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 17nFm7AQdmRYS_af-EJ4XBVw8l3YudcphlpcZMveuVjvjhhYdkAQsw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 01:56:10 GMT
age: 44875
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

54.250.12.14/webjars/cadix-extjs/6.6.0-custom/ext-all.js

54.250.12.14

200

678 kB

URL HTTP/1.1
54.250.12.14/webjars/cadix-extjs/6.6.0-custom/ext-all.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (64854)
Size
678 kB (677906 bytes)
Hash
f4d63837fc358f589f79245f7592df17
b6b0a2c5c1da106eb1ca4bf2f005be90f541eba0
0b00469a46d118145510c1546e155ef8586a0c88b69aec681db1d0ebbec78a5b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webjars/cadix-extjs/6.6.0-custom/ext-all.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:04 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/img/common/loading-gears.gif

54.250.12.14

200

40 kB

URL HTTP/1.1
54.250.12.14/img/common/loading-gears.gif
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 200 x 200\012- data
Size
40 kB (40211 bytes)
Hash
213e51e2f5368163f6307e24b7326cbb
176bb8e52203d0b31950b1b982f9d57ceb676ff1
e151cbf0bb7146f48f1a5f6533580fa0a8379ac13f2a1c6a392622f4db41d2a5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/common/loading-gears.gif HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:05 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 40211
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive

54.250.12.14/favicon.ico

54.250.12.14

200

28 kB

URL HTTP/1.1
54.250.12.14/favicon.ico
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
MS Windows icon resource - 2 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, 48x48, 32 bits/pixel\012- data
Size
28 kB (28239 bytes)
Hash
2f5fb06ed27cad539170f0bc9c1d7957
fe84661051d18061ad225c4b47e8d5206abd69fa
0b5209cbc0221099f39d7d0a206466d20c31ccd90ce3f3be8a1035fd256cac44

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:06 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Accept-Ranges: bytes
Content-Type: image/x-icon
Content-Length: 28239
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive

54.250.12.14/bundle/messages_login.json?lang=ja

54.250.12.14

200

2.6 kB

URL HTTP/1.1
54.250.12.14/bundle/messages_login.json?lang=ja
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (5599), with no line terminators
Size
2.6 kB (2551 bytes)
Hash
072c54667c638c6442574a232fb548a8
eaf9bf51960a0b7a89880d585833fd3a3e1e3e68
34f4b1772adfcb3ca0787fbd9a8ad9fcf52d8b708ff02052df4a61aafff2286a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/messages_login.json?lang=ja HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://54.250.12.14/
Connection: keep-alive
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:06 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: SAMEORIGIN
vary: accept-encoding
Content-Encoding: gzip
Content-Type: application/json
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bootstrap_login.js

54.250.12.14

200

337 B

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bootstrap_login.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (337), with no line terminators
Size
337 B (337 bytes)
Hash
a3be2b62c4c56238fa2cb2d24d5f8104
c99d29fb79e9ac99656c7d6575d9fe1b9c1238f9
783a46659a41fcffba8fdcab81c3827f707713d875ee20c7bbe07987f2880065

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bootstrap_login.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:06 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Cache-Control: max-age=86400, public
Content-Disposition: inline;filename=f.txt
Content-Type: text/javascript;charset=UTF-8
Content-Length: 337
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive

54.250.12.14/bundle/configs_login.js?namespace=Cadix.Configs

54.250.12.14

200

1.4 kB

URL HTTP/1.1
54.250.12.14/bundle/configs_login.js?namespace=Cadix.Configs
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (1403), with no line terminators
Size
1.4 kB (1403 bytes)
Hash
b72a253ca71e2317346f4978b6b1248b
b8a9e87b2a1af61e37a867f27875670de85a09c0
70b948e49d5690eeba7cc606277910f643b1a79f79a6aae89799d8b8701293fc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/configs_login.js?namespace=Cadix.Configs HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:06 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: SAMEORIGIN
Content-Type: application/javascript;charset=UTF-8
Content-Length: 1403
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive

54.250.12.14/bundle/contexts_login.js?namespace=Cadix.Contexts

54.250.12.14

200

136 B

URL HTTP/1.1
54.250.12.14/bundle/contexts_login.js?namespace=Cadix.Contexts
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
136 B (136 bytes)
Hash
0b517b3778e4903fffaf53d229210f4d
3d930ed50118b8cc5e16c0fa2ba69f19db0d7c0a
681bc766e5628e6b5b0d86b3a5d7c452a8cb1b711bef4d9c934dc2bea21dd6ea

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/contexts_login.js?namespace=Cadix.Contexts HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:06 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: SAMEORIGIN
Content-Type: application/javascript;charset=UTF-8
Content-Length: 136
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bundle_login.js

54.250.12.14

200

94 kB

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bundle_login.js
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (2746)
Size
94 kB (93724 bytes)
Hash
ed4559b67182f966dc5513d965ac7e02
aeb66accca113b2a1a3c8cbe67b1d4a66df71e95
82461a67553da705021027ba57fc50be1bf91e5cf253141134a77485ce4fa2c3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/js/bundle_login.js HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:06 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Cache-Control: max-age=86400, public
Content-Disposition: inline;filename=f.txt
Content-Type: text/javascript;charset=UTF-8
Content-Length: 93724
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive

54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/img/product/product-logo.svg

54.250.12.14

200

7.7 kB

URL HTTP/1.1
54.250.12.14/bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/img/product/product-logo.svg
IP
54.250.12.14:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
7.7 kB (7724 bytes)
Hash
0e9a8196ba6b54c1a7c7098208264105
99d7661d5df2fdc2573b29000efaa162a86b9a81
73dbb90ddd061b2149b4da0d72f56df6e04a141523ca472dc32e51421bc7f5e0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /bundle/pack/cc741dcb2c99cd583ad81a5d9ca14ba1/img/product/product-logo.svg HTTP/1.1
Host: 54.250.12.14
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://54.250.12.14/
Cookie: XSRF-TOKEN=3f2bf4df-0825-4c73-a343-e4675f133124; SESSION=NmE2MWQ3YzMtMzVlNi00NzViLWE0NDUtMTA4Mzc4MTFiM2M2

HTTP/1.1 200 
Date: Sat, 03 Dec 2022 14:24:08 GMT
Server: Apache/2.4.46 (Unix) OpenSSL/1.1.1k
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Last-Modified: Thu, 14 Jul 2022 06:02:28 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Content-Type: image/svg+xml
Content-Length: 7724
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (41)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations