Report Overview

  1. Submitted URL

    bayfiles.com/Sfd4l2E8ye/ProtonVPN_1.18.5_rar

  2. IP

    45.154.253.151

    ASN

    #41634 Svea Hosting AB

  3. Submitted

    2022-11-11 18:41:30

    Access

  4. Website Title

  5. Final URL

  6. Tags

    None

  7. urlquery detections

    No alerts detected

Detections

  2. urlquery

    0

  3. Network Intrusion Detection

    0

  4. Threat Detection Systems

    26

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
contile.services.mozilla.com11142021-05-27T20:32:35Z2023-03-10T05:10:00Z
itahandkeight.xyzunknown2022-10-23T13:27:59Z2023-02-26T16:31:13Z
accounts.google.com812016-03-20T13:44:49Z2023-03-10T12:46:47Z
policityseriod.infounknown2018-11-10T13:18:32Z2023-03-10T14:56:53Z
img-getpocket.cdn.mozilla.net16312018-06-22T01:36:00Z2023-03-10T05:10:04Z
www.facebook.com992012-05-21T02:23:41Z2021-02-04T00:31:35Z
r3.o.lencr.org3442020-12-02T09:52:13Z2023-03-10T05:09:10Z
ocsp.digicert.com862012-05-21T09:02:23Z2023-03-10T13:49:44Z
ikadmethe.xyzunknown2022-11-07T23:37:45Z2023-03-05T11:59:48Z
push.services.mozilla.com21402014-10-24T10:27:06Z2023-03-10T05:10:02Z
pogothere.xyzunknown2022-09-04T21:11:25Z2023-03-10T12:21:51Z
djv99sxoqpv11.cloudfront.netunknown2021-10-07T16:52:14Z2023-03-10T13:13:41Z
e1.o.lencr.org61592021-08-20T09:36:30Z2023-03-10T11:39:59Z
ocsp.pki.goog1752018-07-01T08:43:07Z2023-03-10T05:11:10Z
bayfiles.com3766022012-05-24T18:09:40Z2023-03-10T14:56:20Z
firefox.settings.services.mozilla.com8672020-06-04T22:08:41Z2023-03-10T05:10:00Z
content-signature-2.cdn.mozilla.net11522020-11-03T13:26:46Z2023-03-10T05:12:35Z
vjs.zencdn.net49682012-05-21T10:26:59Z2023-03-10T09:31:40Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumdjv99sxoqpv11.cloudfront.net/3SGxSVnQrAzwwSzwFNmtDfVphYUJuBiE5GjhROz5AMBYmECUDKzlvOTEedCIOLFFicBgpAjVrUi0CMWtFbg02NEl8SiYmGyNRKDcMPQ42JQMuBHQjFXUBPSwdJAAzc0YOWXxmUXpceiEdJgg9IQdtXmI4AG1eYmdEZlx3ZTZtXmIhHSZaZnNHCklgZgx+WH-dlNm1eYiQCbV8TZ0R9QmJ/UXpcNTMXIwN3ZDJ6XGNmRHlcY3NGeAo7JBEuAypzRg5dYmNaeEona0UMalware
mediumdjv99sxoqpv11.cloudfront.net/YZ0RoRkkEKwYgdhMtDHt+VHNbdXxBLhspJxd5BgUKHj4cKSw+Yhw8LVp0TiooCSNVYCwJJ1V3bwYgCnt9QTEJeyQIPgEqJQZhWgB8SXRNdHlPMwEoLQgzG2N7VyocY3tXdVhoeUJ3KmN7VzMBKH9TYVsEbFV0EHB9QncqY3tXNh5jeiZ1WHNnV21NdHkAIQ-stJkJ2LnR5VnRYd3lWYVp2Lw42DSAmH2FaAHhXcUZ2bxJ5WQMalware
mediumdjv99sxoqpv11.cloudfront.net/4RE5SOGYnITxeWTAnNgVRd3lhC1ViJCFXCDRzGFkSPjc+WwUHOXRMHCBzYh4KJSA1BUAhIDEFV2IvNlpbcGgmSAkvcyhZHjEsNksRIiZ0TQd5Iz1CDygiMx1UAnt8CEN2fnpPDyoqPU8VYXxiVhJhfGIJVmp+dwskYXxiTw8qeGYdVQZrYAgecnp3CyRhfG-JKEGF9EwlWcWBiEUN2fjVdBS8hdwogdn5jCFZ1fmMdVHQoO0oDIiEqHVQCf2INSHRoJwVXMalware
mediumpolicityseriod.info/QkMzNXc5YUBCKDcxXxdNYCtHQQcxeRwaFSM6VVwbJzAdVhgvbEBCWSgwERlVMS5VF01zbxFBFiUcWlFVeGEEBkBxcQUXW2AwRlcoKycBF01gIVEFFCd6UFNacnZVVFp2IAcAWnt7BQRadHRVDEMjdAZWRiQgEUgMalware
mediumpolicityseriod.info/Z3NFbjM8UXJdBFRBc0wfRVFpTFEFQyYLCgQVaF4GARJoWlBTRmhXC1FCaFgEAUpxDwRSEHQIUEVfZ1sBAxJ3D1VSXn0PUFJecVYFV14kCwZSXn1aBVAVI18EUBB9DBFLUTYZEUtRNQFfDhAsGkoUFjcHXANdLABVCFFpTAZJQWczMalware
mediumpolicityseriod.info/Malware
mediumpolicityseriod.info/Malware
mediumpolicityseriod.info/Malware
mediumpolicityseriod.info/Malware
mediumpolicityseriod.info/Malware
mediumpolicityseriod.info/Malware
mediumpolicityseriod.info/Malware
mediumpolicityseriod.info/Malware

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


JavaScript (13)

HTTP Transactions (89)

URLIPResponseSize
bayfiles.com/Sfd4l2E8ye/ProtonVPN_1.18.5_rar
45.154.253.150301 Moved Permanently162 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK939 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK5.3 kB
r3.o.lencr.org/
23.36.77.32200 OK503 B
bayfiles.com/Sfd4l2E8ye/ProtonVPN_1.18.5_rar
45.154.253.151200 OK2.8 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
bayfiles.com/css/bayfiles.css?1667332315
45.154.253.151200 OK25 kB
bayfiles.com/sw.js
45.154.253.151200 OK14 kB
bayfiles.com/js/app.js?1667332315
45.154.253.151200 OK58 kB
bayfiles.com/img/flags/24/no.png
45.154.253.151200 OK611 B
bayfiles.com/img/flags/24/br.png
45.154.253.151200 OK1.1 kB
bayfiles.com/img/flags/24/se.png
45.154.253.151200 OK581 B
bayfiles.com/img/flags/24/dk.png
45.154.253.151200 OK537 B
vjs.zencdn.net/7.3.0/video.min.js
151.101.86.217200 OK132 kB
vjs.zencdn.net/7.3.0/video-js.min.css
151.101.86.217200 OK9.7 kB
bayfiles.com/img/flags/24/fr.png
45.154.253.151200 OK536 B
bayfiles.com/img/flags/24/in.png
45.154.253.151200 OK593 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK329 B
bayfiles.com/img/flags/24/pl.png
45.154.253.151200 OK347 B
bayfiles.com/img/flags/24/jp.png
45.154.253.151200 OK599 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
djv99sxoqpv11.cloudfront.net/?xsvjd=737333
54.230.245.37200 OK98 kB
bayfiles.com/img/flags/24/es.png
45.154.253.151200 OK666 B
e1.o.lencr.org/
23.36.76.226200 OK346 B
e1.o.lencr.org/
23.36.76.226200 OK346 B
bayfiles.com/img/flags/24/kr.png
45.154.253.151200 OK988 B
ikadmethe.xyz/SUJUVnkoIDc7Rih/NnAMOy5pc0sPZ2YQHSM0bW8KMS0lJg94c3o1FSY3MDALJiwgeBcsNnFkP3oREy4qHywFJDgzNSMFAz4EGjsNDSQCJhEQFx4jOyAHYRETIRAbLEwIDxYPFAwBARIyMy4iGS0MJzAVMAYOEhAQKgAzJjgjFCYDEHkBGQENDyAzZksHBzhuKiAbOREABxAfEhoEEgViSwMTGSM7ARM+ECEcAAQFDi0IFRcDKnINGS4ROjkDITkhMT88LQgzMUAAEzAiISQLYBc+eCcNOx0MGDguShMWDiIhJAs8HioTIw44NwEBPzoeEyUsc0sLFRx7HSUMOWccECsFFRsfegAMSRt7BTszbHASAyE5IRoCNBELIxhKEwYeYCEODDkEMSUhDWU3DicVOU4DABEjODAyLgQefCYNOzcoJxE5FyhyAXATOi06JkQgKmAuAz0EBR0+InsZLws
54.230.111.65200 OK1.2 kB
ikadmethe.xyz/bHJwSDMNEBMlDA1PEm5GHh5NbQEqV0IOVwYESXFAFB0BOEVdQ14rXwMHFC5BAxwEZl0JBlV6dVggNX1gIzUpJno4ChUfZy0cPi9lPhZDJFsvQyYheS80KAt3Pgg3Dlg/IhorFl4wJz9mJD0oGn4kMTIyagRGOwJgLUMyHXIEOzQNdTpAOT59AAISK3QLHyMJWBoRCSBpJBg1O30HASIBWjZCJBlXWTsKeXAoCxchfhRDJQldGEozDX1eFB44YygLHzljOUomEWsUGyYgeQQUNwF5Oh8AbQEuFgc7WDUqCCFnG0oBLXQ1FiYZaR4rMS9WDxwAe3AVIBgudEE4Ow10Kks1P187EScKWiknPnpVBiQUCmBUGhQ/XAsWHn1ZLzQqeVUBPxQeez0dP3hcKDsZDUIkJCELVV47Pht7Ph06P2U0VBo7XAICTQJSGAgJJFAPMQc
54.230.111.65200 OK1.2 kB
ikadmethe.xyz/VXRySEU0FhElejRJEG4wJxhPbXcTUUAOIT8CS3E2LRsDODNkRVwrKToBFi43OhoGZiswAFd6AwwuQhoqBx8ZDQ4iLRUsLRgANgAxcEYwHg0bFhYQPRc4Gjs1HwwWfQcyITkAL2EXORsycEYwES0iTD4eNWUgGycqFic8HhwWAzgCdANHED8cMjccPHwEIDcCICwlOxgiEAU4GR89IxUKfQYsIAYhHRgiBTIQGz4ZIi8zQAZyAw0dKxxmACosEz0bFx0PZj8fBnIDDj8KDh1NJhETJjEQDhNlMToKfAQaETkcZgAqBi1gHhchH2QjOgYrA0ZDBiEdHzMBFHgHBgIuH0Y+JhdgIhwaHDFHHh8cAwRABDJhRjYbBDg8QA4kFDwaECYALkAqPR9BJRljPwcdJjVoGjELPC8AHS0c
54.230.111.65200 OK1.2 kB
push.services.mozilla.com/
35.165.143.157101 Switching Protocols0 B
bayfiles.com/img/flags/24/fi.png
45.154.253.151200 OK456 B
itahandkeight.xyz/YzYxdnBMCVIFTQFidzMSDXxSNEM5U2AgGypSZx48O2d3Tyc2RRcCGQcLBkVHUAUEUAAKUgxHSEVFRRcEFkUMR1YKWFcZTUVADEdeUxgDWEFFQwxHVhdGUBFNUhBBAgQPCwBARlsHCERAWwYFQUI
172.67.208.217204 No Content0 B
itahandkeight.xyz/TTd2VlJiCBUlbxpvHicGIEMFBRR4AiM7awNiRSIBLAcCDzchA1AiOykKQWVlfgRFcCIkU0tndD5DFyInPgpHcDsjURlrdDsKR3hheRlFZnx5EQNrY2tDBjc1cAZQJiY5W0tnZHsPR29gfQ9GYmd8
172.67.208.217204 No Content0 B
itahandkeight.xyz/a1ZxRjhEaRI1BQk8GRRpBmcpB28tZyZ3WyQPOTZbMzEBL1s9PVcyUQ9rRnMOWGFHYEgCMkx0AU0lBSdMHiVMdx4COBcpBU0gTHcWW3hHdhZacAR7CU0iASdfVmdXNkwfOkx3Dl1uQH8KW25Bcg5f
172.67.208.217204 No Content0 B
e1.o.lencr.org/
23.36.76.226200 OK346 B
bayfiles.com/static/logo.png
45.154.253.151200 OK39 kB
bayfiles.com/img/file/filetypes/ext/rar.png?1663356888
45.154.253.151200 OK631 B
djv99sxoqpv11.cloudfront.net/3SGxSVnQrAzwwSzwFNmtDfVphYUJuBiE5GjhROz5AMBYmECUDKzlvOTEedCIOLFFicBgpAjVrUi0CMWtFbg02NEl8SiYmGyNRKDcMPQ42JQMuBHQjFXUBPSwdJAAzc0YOWXxmUXpceiEdJgg9IQdtXmI4AG1eYmdEZlx3ZTZtXmIhHSZaZnNHCklgZgx+WH-dlNm1eYiQCbV8TZ0R9QmJ/UXpcNTMXIwN3ZDJ6XGNmRHlcY3NGeAo7JBEuAypzRg5dYmNaeEona0U
54.230.245.37200 OK454 B
djv99sxoqpv11.cloudfront.net/YZ0RoRkkEKwYgdhMtDHt+VHNbdXxBLhspJxd5BgUKHj4cKSw+Yhw8LVp0TiooCSNVYCwJJ1V3bwYgCnt9QTEJeyQIPgEqJQZhWgB8SXRNdHlPMwEoLQgzG2N7VyocY3tXdVhoeUJ3KmN7VzMBKH9TYVsEbFV0EHB9QncqY3tXNh5jeiZ1WHNnV21NdHkAIQ-stJkJ2LnR5VnRYd3lWYVp2Lw42DSAmH2FaAHhXcUZ2bxJ5WQ
54.230.245.37200 OK182 B
djv99sxoqpv11.cloudfront.net/4RE5SOGYnITxeWTAnNgVRd3lhC1ViJCFXCDRzGFkSPjc+WwUHOXRMHCBzYh4KJSA1BUAhIDEFV2IvNlpbcGgmSAkvcyhZHjEsNksRIiZ0TQd5Iz1CDygiMx1UAnt8CEN2fnpPDyoqPU8VYXxiVhJhfGIJVmp+dwskYXxiTw8qeGYdVQZrYAgecnp3CyRhfG-JKEGF9EwlWcWBiEUN2fjVdBS8hdwogdn5jCFZ1fmMdVHQoO0oDIiEqHVQCf2INSHRoJwVX
54.230.245.37200 OK540 B
bayfiles.com/img/flags/24/us.png
45.154.253.151200 OK656 B
bayfiles.com/img/flags/24/de.png
45.154.253.151200 OK483 B
bayfiles.com/img/flags/24/ru.png
45.154.253.151200 OK403 B
bayfiles.com/img/favicon/favicon-32x32-bayfiles.png?1663356888
45.154.253.151200 OK1.4 kB
r3.o.lencr.org/
23.36.77.32200 OK503 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.35200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.35200 OK471 B
e1.o.lencr.org/
23.36.76.226200 OK345 B
e1.o.lencr.org/
23.36.76.226200 OK345 B
e1.o.lencr.org/
23.36.76.226200 OK345 B
ikadmethe.xyz/utx?cb=hQon6shHkoTo&top=bayfiles.com&tid=737333
54.230.111.65204 No Content0 B
ikadmethe.xyz/utx?cb=F3yS1F1nW6nR&top=bayfiles.com&tid=756376
54.230.111.65204 No Content0 B
ikadmethe.xyz/multi?cs=SUdEY1BwfnRUZnBxdVtheXV3UGQ&abt=0&red=1&sm=76&k=&v=1.0.60.1&sts=0&prn=0&emb=0&tid=756376&rxy=1280_1024&fs=1&ref=https%3A%2F%2Fbayfiles.com%2FSfd4l2E8ye%2FProtonVPN_1.18.5_rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&_Dpg8=1668192081076&crc=1
54.230.111.65200 OK1.6 kB
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
216.58.207.237302 Found396 B
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
216.58.207.237302 Found393 B
ocsp.pki.goog/gts1c3
142.250.74.35200 OK471 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
e1.o.lencr.org/
23.36.76.226200 OK345 B
policityseriod.info/QkMzNXc5YUBCKDcxXxdNYCtHQQcxeRwaFSM6VVwbJzAdVhgvbEBCWSgwERlVMS5VF01zbxFBFiUcWlFVeGEEBkBxcQUXW2AwRlcoKycBF01gIVEFFCd6UFNacnZVVFp2IAcAWnt7BQRadHRVDEMjdAZWRiQgEUg
103.224.212.220302 Found0 B
bayfiles.com/sw.js?Z3NFbjM8UXJdBFRBc0wfRVFpTFEFQyYLCgQVaF4GARJoWlBTRmhXC1FCaFgEAUpxDwRSEHQIUEVfZ1sBAxJ3D1VSXn0PUFJecVYFV14kCwZSXn1aBVAVI18EUBB9DBFLUTYZEUtRNQFfDhAsGkoUFjcHXANdLABVCFFpTAZJQWcz
45.154.253.151200 OK14 kB
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg
34.120.237.76200 OK8.3 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
34.120.237.76200 OK5.6 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg
34.120.237.76200 OK6.5 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50b47142-be82-4ddc-85e8-45dc7102abe9.jpeg
34.120.237.76200 OK6.7 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg
34.120.237.76200 OK11 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg
34.120.237.76200 OK8.6 kB
policityseriod.info/Z3NFbjM8UXJdBFRBc0wfRVFpTFEFQyYLCgQVaF4GARJoWlBTRmhXC1FCaFgEAUpxDwRSEHQIUEVfZ1sBAxJ3D1VSXn0PUFJecVYFV14kCwZSXn1aBVAVI18EUBB9DBFLUTYZEUtRNQFfDhAsGkoUFjcHXANdLABVCFFpTAZJQWcz
103.224.212.220302 Found0 B
policityseriod.info/
103.224.212.220302 Found0 B
policityseriod.info/
103.224.212.220302 Found0 B
policityseriod.info/
103.224.212.220302 Found0 B
policityseriod.info/
103.224.212.220302 Found0 B
policityseriod.info/
103.224.212.220302 Found0 B
policityseriod.info/
103.224.212.220302 Found0 B
policityseriod.info/
103.224.212.220302 Found0 B
policityseriod.info/
103.224.212.220302 Found0 B
pogothere.xyz/asd100.bin
172.64.106.19200 OK0 B
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
31.13.72.36200 OK0 B
pogothere.xyz/asd100.bin
172.64.106.19200 OK0 B
accounts.google.com/v3/signin/identifier?dsh=S-2112939984%3A1668192081791908&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=ARgdvAvk4-3G1GalzgxOQwjEHOjdaJlhY6_t-OqMug0rgUjhAm6uba5mrWLT946Y1XpkCuYHlYVaZg
216.58.207.237403 Forbidden0 B
pogothere.xyz/
172.64.106.19200 OK0 B