| | 13.237.134.80 | 200 | 175 B |
URL User Request GET HTTP/1.1IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashca1ce3399a1abab6d52988a51f3b4307 3ceee27f1294f8d1cc213aa461cad2d2ed706cea 5eb0dfd23b6a6bc58ff93d6e8c61b6418d58fec61e55fa70ee2135a23db3f628
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Cache-control: no-cache="set-cookie"
Content-Type: text/html
Date: Fri, 26 Apr 2024 14:17:57 GMT
Location: https://13.237.134.80/
Set-Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB;PATH=/;MAX-AGE=900
Content-Length: 175
Connection: keep-alive
|
|
| | 13.237.134.80 | 200 | 23 kB |
URL User Request GET HTTP/1.1IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (31680), with CRLF, LF line terminators Hash3adae4f149677ba3a14f3bb96c0818c1 1e80a49a3b1d8a638b088440456bcb7b42eee352 1ba720d6c42d5f88bd1fa049f06ad9e28577a9d4a6058607c0fde91eba1fdfc3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: private, max-age=0, no-store, must-revalidate
Content-Encoding: gzip
Content-Language: en-GB-x-lvariant-CDU
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/html;charset=UTF-8
Date: Fri, 26 Apr 2024 14:18:01 GMT
Expires: Wed, 26 Apr 2023 14:18:01 GMT
Last-Modified: Mon, 26 Apr 2004 14:18:01 GMT
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; Path=/; Secure
BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 23156
Connection: keep-alive
|
|
| www.googletagmanager.com/gtag/js?id=G-HMESPGZW30 | 142.250.74.168 | 200 OK | 88 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-HMESPGZW30 IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hash53eaf35095ecc864aa5e1ce926f96eb1 ba18874d944b36aae4567fe6236047730403baa5 523236b0eff2ab36ad4bbcc2219871fa2994fb6ec3c447f7aea8550b1f844edd
GET /gtag/js?id=G-HMESPGZW30 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 14:18:02 GMT
expires: Fri, 26 Apr 2024 14:18:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88322
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 13.237.134.80/ui-ultra/css/multi_factor_authentication.css?v=3900.89.0-rel.31+520e1f0_authLogin | 13.237.134.80 | 200 | 1.9 kB |
URL GET HTTP/1.113.237.134.80/ui-ultra/css/multi_factor_authentication.css?v=3900.89.0-rel.31+520e1f0_authLogin IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashe96957c79a9f125ea7c78ede0e22af6d 376c94dbdb4d42f2f1095819cd2ccd96947978e6 3852ef20b02a33b2042d01cb38a8737e8a180d31fc6fb08418c8ad3188f6470e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/css/multi_factor_authentication.css?v=3900.89.0-rel.31+520e1f0_authLogin HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Fri, 26 Apr 2024 14:18:02 GMT
ETag: W/"7882-1713437854401"
Expires: Sat, 26 Apr 2025 14:18:02 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:34 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142882,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:2ea52e232b2f520120653e8e09d864701280d0a28d749e46e746970562761ebd,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 1910
Connection: keep-alive
|
|
| 13.237.134.80/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 32 kB |
URL GET HTTP/1.113.237.134.80/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators Hash786377f67b24ac4deed06c2e2f1245a9 f59a4c2b422b0cef0d29d74088cfce21532a3ff9 0983fcfc3072ccb41f0642e4aa9844eefc429a32929b2a0f17e011ed40f57901
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Fri, 26 Apr 2024 14:18:02 GMT
ETag: W/"224954-1713437854401"
Expires: Sat, 26 Apr 2025 14:18:02 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:34 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142882,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:2ea52e232b2f520120653e8e09d864701280d0a28d749e46e746970562761ebd,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| 13.237.134.80/webapps/allyintegration/css/ally-integration.css?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 690 B |
URL GET HTTP/1.113.237.134.80/webapps/allyintegration/css/ally-integration.css?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hash77ee8e44be74000901b68dde0ebbe5c5 1473844b68204be1d11fafb6e1c38de4604032e0 9fad912cf6e57ee64c28cb404620f34a38a261b00152b211e4f9cb7cd9fd9299
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/allyintegration/css/ally-integration.css?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Fri, 26 Apr 2024 14:18:02 GMT
ETag: W/"2621-1713438219022"
Expires: Sat, 26 Apr 2025 14:18:02 GMT
Last-Modified: Thu, 18 Apr 2024 11:03:39 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142882,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:2ea52e232b2f520120653e8e09d864701280d0a28d749e46e746970562761ebd,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 690
Connection: keep-alive
|
|
| 13.237.134.80/webapps/vtbe-tinymce/css/prism/prism.css?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 968 B |
URL GET HTTP/1.113.237.134.80/webapps/vtbe-tinymce/css/prism/prism.css?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hash78002c2fc79e9c6119de63ecb70b8e4d a2c40e2cd25207cfc30297285488c5f527676fc1 be56dec9d9cf6b598fa197b45d0d05d79559645ecd2600b4bdd1e19d99d107a5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/vtbe-tinymce/css/prism/prism.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Fri, 26 Apr 2024 14:18:03 GMT
ETag: W/"2578-1713438241228"
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Thu, 18 Apr 2024 11:04:01 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 968
Connection: keep-alive
|
|
| 13.237.134.80/webapps/videointegration/css/video-integration.css?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 1.3 kB |
URL GET HTTP/1.113.237.134.80/webapps/videointegration/css/video-integration.css?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hash830a516f26e407ac3787637d59bf1fa2 9181a61ddc34508957340d5e3be121c663ca5122 fc563ce4fca78532552a1a6e3015c4b03d5ce2005db329511d66301f18d98c65
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/videointegration/css/video-integration.css?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Fri, 26 Apr 2024 14:18:03 GMT
ETag: W/"6598-1713438184462"
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Thu, 18 Apr 2024 11:03:04 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 1331
Connection: keep-alive
|
|
| 13.237.134.80/groupjs/C06BB5AB16B1B9E8916F9691B7B7B6C3.js?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 245 kB |
URL GET HTTP/1.113.237.134.80/groupjs/C06BB5AB16B1B9E8916F9691B7B7B6C3.js?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Size245 kB (244631 bytes) Hash74d82b983cd0f01749f1823061c1b024 e0270b74eadcd1c41e5ea13c3cf5e3ea9cb8647c 4fa74fa209f304d682a834e56f87d71071e33ef2f5ec0de1661c78f8ce334b50
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/C06BB5AB16B1B9E8916F9691B7B7B6C3.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:02 GMT
ETag: W/"971503-0"
Expires: Sat, 26 Apr 2025 14:18:02 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142882,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:2ea52e232b2f520120653e8e09d864701280d0a28d749e46e746970562761ebd,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| 13.237.134.80/webapps/login/dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 324 B |
URL GET HTTP/1.113.237.134.80/webapps/login/dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashe4050bd65d45a6ded45f708ea2eafb95 c3586f0a713d3b1ef6b90082212d1e337cd3c6b8 781c7f021bbeb66d1450529459091659cd3db5350c6639aedad169418d5f29bd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/login/dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/javascript;charset=utf-8
Date: Fri, 26 Apr 2024 14:18:03 GMT
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Wed, 11 Oct 1972 10:30:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 324
Connection: keep-alive
|
|
| 13.237.134.80/webapps/login/dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 268 B |
URL GET HTTP/1.113.237.134.80/webapps/login/dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hash36e009f91181ef74ca454e00c66ffa71 30c925a0753b470af626a5f9c5bda0f4cae84982 4615c76da7157a63d19da4d9ce644e06354dec4041248deb1ff47ea4505f6fec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/login/dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/javascript;charset=utf-8
Date: Fri, 26 Apr 2024 14:18:03 GMT
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Wed, 11 Oct 1972 10:30:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 268
Connection: keep-alive
|
|
| 13.237.134.80/ui-ultra/js/hide-focus-outline.js?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 472 B |
URL GET HTTP/1.113.237.134.80/ui-ultra/js/hide-focus-outline.js?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hash343244e5258e2ef8dde956703460baa8 0899037c3e1b694169057644814cf6740a8f75cb ac41ec5d4eb98e51271ecc1068100d6b3ddf9528745cb2052096dfa697e51171
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/js/hide-focus-outline.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:03 GMT
ETag: W/"1224-1713437854597"
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:34 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 472
Connection: keep-alive
|
|
| 13.237.134.80/ui-ultra/js/login-page.js?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 1.3 kB |
URL GET HTTP/1.113.237.134.80/ui-ultra/js/login-page.js?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hashd9cca39466f7bea7f0431e320e1d36e1 1a898cc69ac4fa64f388e72264a58db322a8eda0 86ade681c0bf2c7c36b415adb3138e77e9aa4f15f8768c71f1926b0dbb65f5ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/js/login-page.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:03 GMT
ETag: W/"3647-1713437854589"
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:34 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 1331
Connection: keep-alive
|
|
| 13.237.134.80/webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 955 B |
URL GET HTTP/1.113.237.134.80/webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashc2dfa8a026dc7f23c851182267a410cc d22c9ce9b62473438d05954e78a7f14e52f38975 6ad8d6e55f9a039561ce1ebee3dd66a919026919bc18f60d69ed7571879c4158
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:03 GMT
ETag: W/"3022-1713438167488"
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Thu, 18 Apr 2024 11:02:47 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 955
Connection: keep-alive
|
|
| 13.237.134.80/groupjs/D2F66879F6B5BDC4D8FBB179915FB7B6.js?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 1.3 kB |
URL GET HTTP/1.113.237.134.80/groupjs/D2F66879F6B5BDC4D8FBB179915FB7B6.js?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hash3044ad6ddcfeca90b7421a8034328589 edcc324f98e07442f9f610eceaaa0776b1af9589 177d5c312e61851bc963cd1a1e4987e705b48b1f81b8bb130ad700cc7cd07cba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/D2F66879F6B5BDC4D8FBB179915FB7B6.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:03 GMT
ETag: W/"4396-0"
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 1349
Connection: keep-alive
|
|
| 13.237.134.80/javascript/qrcodejs/qrcode.min.js | 13.237.134.80 | 200 | 7.0 kB |
URL GET HTTP/1.113.237.134.80/javascript/qrcodejs/qrcode.min.js IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeASCII text, with very long lines (19928) Hash272a836f3b4bff95839c86eb6064cd85 425c063b9b3f7b4c187c5903f1014a45112b8e6f 2128d181bff54d66702dbb9dca6361bff68e92ce51c2cc9a526a58c3b63a97a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/qrcodejs/qrcode.min.js HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:03 GMT
ETag: W/"19929-1713437875562"
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:55 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 7010
Connection: keep-alive
|
|
| 13.237.134.80/groupjs/28F109DE025409B49671178835AE5F13.js?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 30 kB |
URL GET HTTP/1.113.237.134.80/groupjs/28F109DE025409B49671178835AE5F13.js?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hash41c509236e8f0745b7ec9bd0859e2dc5 497eaa23ad84647f59cef95a1969c6a17cd4a661 7d3cf7f85e05a028c538c7de469e9b297fc16363dc0aac82ddd37037b0eedafa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/28F109DE025409B49671178835AE5F13.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:03 GMT
ETag: W/"126302-0"
Expires: Sat, 26 Apr 2025 14:18:03 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| 13.237.134.80/branding/_1_1/loginLogo/CustomLoginLogo.png?m=k2pmp09p | 13.237.134.80 | 200 | 28 kB |
URL GET HTTP/1.113.237.134.80/branding/_1_1/loginLogo/CustomLoginLogo.png?m=k2pmp09p IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typePNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced Hash3d2ae13df2689be143051e1aa0729947 f3bac3769f291f063245f331eeeed39a6219d44e e52f7fa783831c8937a5f14ac30995d8ef0c2f4c6f3d3b64a59ea9535b1ac5df
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /branding/_1_1/loginLogo/CustomLoginLogo.png?m=k2pmp09p HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: image/png
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"28185-1713439939646"
Expires: Sat, 26 Apr 2025 14:18:04 GMT
Last-Modified: Thu, 18 Apr 2024 11:32:19 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 28185
Connection: keep-alive
|
|
| 13.237.134.80/images/ci/icons/complete.svg | 13.237.134.80 | 200 | 197 B |
URL GET HTTP/1.113.237.134.80/images/ci/icons/complete.svg IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashbace85b1fa415de4a4a74ca3d381902d 7483c9d380d9c771840f9a0f4d1a896c5fc644d0 6b1d4c32909ee44f2d4e1800bad63003aa44eee1898d89992a061985780f6687
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/ci/icons/complete.svg HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714151881,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:c6bcef4befc1600141911f0ef6746a51a81b7d702546b809fd1c6a661e39376d,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: private, max-age=0, no-store, must-revalidate
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: image/svg+xml
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"342-1713437856832"
Expires: Wed, 26 Apr 2023 14:18:04 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:36 GMT
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 197
Connection: keep-alive
|
|
| 13.237.134.80/ui-ultra/fonts/open-sans/open-sans-regular.woff | 13.237.134.80 | 200 | 20 kB |
URL GET HTTP/1.113.237.134.80/ui-ultra/fonts/open-sans/open-sans-regular.woff IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 20216, version 1.1 Hashcb721d9fb2f39c4c5fa9d75dd46ce78d 1ae6eab90118f90e61bd2a03fe7462b043756ccf 615494a93f61434c21c6a35e51b508950d66d7784b2f4deb10b7a904b4cca17c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/fonts/open-sans/open-sans-regular.woff HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: font/woff
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"20216-1713437854397"
Expires: Sat, 26 Apr 2025 14:18:04 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:34 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 20216
Connection: keep-alive
|
|
| 13.237.134.80/webapps/privacy-disclosure/execute/consent?backURL=https%3A//13.237.134.80/&preview=false&blackboard.platform.security.NonceUtil.nonce=login | 13.237.134.80 | 200 | 19 kB |
URL GET HTTP/1.113.237.134.80/webapps/privacy-disclosure/execute/consent?backURL=https%3A//13.237.134.80/&preview=false&blackboard.platform.security.NonceUtil.nonce=login IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (31680) Hashd308e62171d1175c8fe86839e82c2cd2 493f7ffaf6eca917b250f78397d04f9c834e6e05 247c5d6bdfff087114a804fb6b52750ad54b44e1d3c68dce000168040e7f55fa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/privacy-disclosure/execute/consent?backURL=https%3A//13.237.134.80/&preview=false&blackboard.platform.security.NonceUtil.nonce=login HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Prototype-Version: 1.7
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: private, max-age=0, no-store, must-revalidate
Content-Encoding: gzip
Content-Language: en-GB-x-lvariant-CDU
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/html;charset=UTF-8
Date: Fri, 26 Apr 2024 14:18:04 GMT
Expires: Wed, 26 Apr 2023 14:18:04 GMT
Last-Modified: Mon, 26 Apr 2004 14:18:04 GMT
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: JSESSIONID=4AE06F1FD249251B5AA5BEA6DED3A5FB; Path=/webapps/privacy-disclosure; Secure
BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 18871
Connection: keep-alive
|
|
| 13.237.134.80/ui-ultra/fonts/noto-serif/noto-serif-regular.woff | 13.237.134.80 | 200 | 27 kB |
URL GET HTTP/1.113.237.134.80/ui-ultra/fonts/noto-serif/noto-serif-regular.woff IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 26800, version 1.1 Hashb6ba7dac6b1c9fae143afd1ce4525e20 2955ba4f22888a7eed61748798833c22483180f9 ea01504bd051c7abe5f01fca1f3d916766a2b48954eb5e3ec70b9a3c1b5d00b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/fonts/noto-serif/noto-serif-regular.woff HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: font/woff
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"26800-1713437854401"
Expires: Sat, 26 Apr 2025 14:18:04 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:34 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 26800
Connection: keep-alive
|
|
| 13.237.134.80/ui-ultra/fonts/noto-serif/noto-serif-700.woff | 13.237.134.80 | 200 | 30 kB |
URL GET HTTP/1.113.237.134.80/ui-ultra/fonts/noto-serif/noto-serif-700.woff IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 30528, version 1.1 Hashcac059679f33a22db64077fcb2d373c3 fd451671d7ab29a818a1a4cc13b8873169b5a459 7524d2331d9b06db184c22369be31cea7aa53227d96f9f13d24745c354e74541
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/fonts/noto-serif/noto-serif-700.woff HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: font/woff
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"30528-1713437854401"
Expires: Sat, 26 Apr 2025 14:18:04 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:34 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 30528
Connection: keep-alive
|
|
| 13.237.134.80/ui-ultra/fonts/open-sans/open-sans-700.woff | 13.237.134.80 | 200 | 21 kB |
URL GET HTTP/1.113.237.134.80/ui-ultra/fonts/open-sans/open-sans-700.woff IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 20964, version 1.1 Hash107bc2e1387828d8595ef4452c3fc666 4e630a4f834886ab65248b9dfb679659d079a764 2944acfdff85dc6308cf8a2766b6efce9ec63fc8356fd5118a98001b936e50dc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/fonts/open-sans/open-sans-700.woff HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; BbRouter=expires:1714142883,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:53b46e0815d2ee5897df7e9f34b02dcbf381b4656a79b372f17ad7790c7a2396,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: font/woff
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"20964-1713437854397"
Expires: Sat, 26 Apr 2025 14:18:04 GMT
Last-Modified: Thu, 18 Apr 2024 10:57:34 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 20964
Connection: keep-alive
|
|
| www.googletagmanager.com/gtag/js?id=G-HMESPGZW30 | 142.250.74.168 | 200 OK | 88 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-HMESPGZW30 IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hashfeb7d519f5b5a5646f2bd1072dd1f1de 1ad85bba9e8c0bfc6e0b67544821071dba030491 258ef6310eb73e14130afece4fdd38c191247a3de94dc8227ab82eceb60c5e1a
GET /gtag/js?id=G-HMESPGZW30 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 14:18:04 GMT
expires: Fri, 26 Apr 2024 14:18:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88268
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/images/reorder_bg.png | 104.18.34.143 | 200 OK | 330 B |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/images/reorder_bg.png IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typePNG image data, 17 x 33, 8-bit/color RGBA, non-interlaced Hashadc43cb2b68639182095e0d5386ccfda afb5eb3618229618e1b05a90ce155fa56a626842 2406525bd2af383be7b20e401d1d79e01b86e4576e46c205b27cd2202db1cc2d
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/images/reorder_bg.png HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/theme.css?v=3900.89.0-rel.31+520e1f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: image/png
content-length: 330
cf-ray: 87a733338a015689-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 697756
cache-control: public, max-age=2592000
etag: "adc43cb2b68639182095e0d5386ccfda"
last-modified: Tue, 16 Apr 2024 17:48:04 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-regular.woff | 104.18.34.143 | 200 OK | 20 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-regular.woff IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeWeb Open Font Format, TrueType, length 20216, version 1.1 Hashcb721d9fb2f39c4c5fa9d75dd46ce78d 1ae6eab90118f90e61bd2a03fe7462b043756ccf 615494a93f61434c21c6a35e51b508950d66d7784b2f4deb10b7a904b4cca17c
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-regular.woff HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://13.237.134.80
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: font/woff
content-length: 20216
cf-ray: 87a733338a0b5689-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 706752
cache-control: public, max-age=2592000
etag: "cb721d9fb2f39c4c5fa9d75dd46ce78d"
last-modified: Tue, 16 Apr 2024 17:48:03 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/noto-serif/noto-serif-regular.woff | 104.18.34.143 | 200 OK | 27 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/noto-serif/noto-serif-regular.woff IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeWeb Open Font Format, TrueType, length 26800, version 1.1 Hashb6ba7dac6b1c9fae143afd1ce4525e20 2955ba4f22888a7eed61748798833c22483180f9 ea01504bd051c7abe5f01fca1f3d916766a2b48954eb5e3ec70b9a3c1b5d00b2
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/noto-serif/noto-serif-regular.woff HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://13.237.134.80
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: font/woff
content-length: 26800
cf-ray: 87a733339a145689-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 676120
cache-control: public, max-age=2592000
etag: "b6ba7dac6b1c9fae143afd1ce4525e20"
last-modified: Tue, 16 Apr 2024 17:48:03 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-700.woff | 104.18.34.143 | 200 OK | 21 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-700.woff IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeWeb Open Font Format, TrueType, length 20964, version 1.1 Hash107bc2e1387828d8595ef4452c3fc666 4e630a4f834886ab65248b9dfb679659d079a764 2944acfdff85dc6308cf8a2766b6efce9ec63fc8356fd5118a98001b936e50dc
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-700.woff HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://13.237.134.80
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: font/woff
content-length: 20964
cf-ray: 87a733339a195689-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 706752
cache-control: public, max-age=2592000
etag: "107bc2e1387828d8595ef4452c3fc666"
last-modified: Tue, 16 Apr 2024 17:48:03 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| 13.237.134.80/branding/_1_1/brand.css?ts=1573186619293&v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 1.3 kB |
URL GET HTTP/1.113.237.134.80/branding/_1_1/brand.css?ts=1573186619293&v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashfb931bdca5d8ceaa3b184f72e2b45c97 6e58fd7a4cc167c5d5a7fc3972d924102cb468f5 2e684753cdfad62e878a0c4527d9c1b66cb8438a4fbb4cc6250026d8d21a5ae9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /branding/_1_1/brand.css?ts=1573186619293&v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; _ga_HMESPGZW30=GS1.1.1714141084.1.0.1714141084.0.0.0; _ga=GA1.1.102796272.1714141084
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"5141-1713439939306"
Expires: Sat, 26 Apr 2025 14:18:04 GMT
Last-Modified: Thu, 18 Apr 2024 11:32:19 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 1314
Connection: keep-alive
|
|
| 13.237.134.80/webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 955 B |
URL GET HTTP/1.113.237.134.80/webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashc2dfa8a026dc7f23c851182267a410cc d22c9ce9b62473438d05954e78a7f14e52f38975 6ad8d6e55f9a039561ce1ebee3dd66a919026919bc18f60d69ed7571879c4158
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: JSESSIONID=4AE06F1FD249251B5AA5BEA6DED3A5FB; AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; _ga_HMESPGZW30=GS1.1.1714141084.1.0.1714141084.0.0.0; _ga=GA1.1.102796272.1714141084
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"3022-1713438167488"
Expires: Sat, 26 Apr 2025 14:18:04 GMT
Last-Modified: Thu, 18 Apr 2024 11:02:47 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 955
Connection: keep-alive
|
|
| online.cdu.edu.au/bbcswebdav/xid-12734907_4 | 3.104.186.178 | 302 | 0 B |
URL GET HTTP/1.1online.cdu.edu.au/bbcswebdav/xid-12734907_4 IP3.104.186.178:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bbcswebdav/xid-12734907_4 HTTP/1.1
Host: online.cdu.edu.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Access-Control-Allow-Origin: https://online.cdu.edu.au
Cache-Control: private, max-age=0, no-store, must-revalidate, no-cache="set-cookie"
Content-Security-Policy: frame-ancestors 'self'
Date: Fri, 26 Apr 2024 14:18:05 GMT
Expires: Wed, 26 Apr 2023 14:18:05 GMT
Last-Modified: Mon, 26 Apr 2004 14:18:05 GMT
Location: https://alt-5b2b431b0cadd.blackboard.com/bbcswebdav/xid-12734907_4?source_domain=online.cdu.edu.au
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEB9626A38B35E45FB82D89537BB252B36DA3AD4D2815F94AC34ABEA5192979CF3CCC7C1D418B02A635EEF4A72C216629;PATH=/;MAX-AGE=900
AWSELBCORS=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEB9626A38B35E45FB82D89537BB252B36DA3AD4D2815F94AC34ABEA5192979CF3CCC7C1D418B02A635EEF4A72C216629;PATH=/;MAX-AGE=900;SECURE;SAMESITE=None
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Origin
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 0
Connection: keep-alive
|
|
| 13.237.134.80/groupjs/79A5689F31FD41786870C12F9C10398F.js?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 30 kB |
URL GET HTTP/1.113.237.134.80/groupjs/79A5689F31FD41786870C12F9C10398F.js?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashf3e83b509b3991a020975e6028d243c3 a73787198d4ca46a0399d6c02302cc6631ac7c3f 9d92b2ffaa94f57dbfa0d6326cd6de3ba39b5ba0b948bc0920bbdd67e1891d5a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/79A5689F31FD41786870C12F9C10398F.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; _ga_HMESPGZW30=GS1.1.1714141084.1.0.1714141084.0.0.0; _ga=GA1.1.102796272.1714141084
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"126302-0"
Expires: Sat, 26 Apr 2025 14:18:04 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 30279
Connection: keep-alive
|
|
| 13.237.134.80/groupjs/C06BB5AB16B1B9E8916F9691B7B7B6C3.js?v=3900.89.0-rel.31+520e1f0 | 13.237.134.80 | 200 | 245 kB |
URL GET HTTP/1.113.237.134.80/groupjs/C06BB5AB16B1B9E8916F9691B7B7B6C3.js?v=3900.89.0-rel.31+520e1f0 IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Size245 kB (244631 bytes) Hash74d82b983cd0f01749f1823061c1b024 e0270b74eadcd1c41e5ea13c3cf5e3ea9cb8647c 4fa74fa209f304d682a834e56f87d71071e33ef2f5ec0de1661c78f8ce334b50
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/C06BB5AB16B1B9E8916F9691B7B7B6C3.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; _ga_HMESPGZW30=GS1.1.1714141084.1.0.1714141084.0.0.0; _ga=GA1.1.102796272.1714141084
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 14:18:04 GMT
ETag: W/"971503-0"
Expires: Sat, 26 Apr 2025 14:18:04 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| prod-ap-southeast-2.ally.ac/integration/learn/ally.js?_=1714141083558 | 13.239.72.130 | 200 OK | 479 B |
URL GET HTTP/2prod-ap-southeast-2.ally.ac/integration/learn/ally.js?_=1714141083558 IP13.239.72.130:443
CertificateIssuerAmazon Subject*.ally.ac Fingerprint5E:C0:43:C4:F7:7C:96:5B:BA:96:6C:9F:BA:70:2B:7C:E0:6C:24:5B ValidityMon, 05 Feb 2024 00:00:00 GMT - Wed, 05 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hashf4d48dc656592b4abc8046f6d9c6bb97 334c89486f4c3f6b6e0c4e2b5e968f74ec3e8554 7a2828de24df92e2838f93cafca8f51b5265c932eb31d7fe714b6fc1450ece16
GET /integration/learn/ally.js?_=1714141083558 HTTP/1.1
Host: prod-ap-southeast-2.ally.ac
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:18:05 GMT
content-type: application/javascript
content-length: 479
server: Apache
strict-transport-security: max-age=31536000
last-modified: Tue, 02 Apr 2024 12:13:45 GMT
etag: "353-6151c099fd040-gzip"
accept-ranges: bytes
cache-control: max-age=0
expires: Fri, 26 Apr 2024 14:18:05 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PUT, OPTIONS, PATCH, DELETE
access-control-allow-headers: origin, x-requested-with, content-type, accept, accept-encoding, accept-language, authorization, host, referer, user-agent
access-control-max-age: 86400, 86400
X-Firefox-Spdy: h2
|
|
| prod-ap-southeast-2.ally.ac/integration/learn/ally.js?_=1714141083559 | 13.239.72.130 | 200 OK | 479 B |
URL GET HTTP/2prod-ap-southeast-2.ally.ac/integration/learn/ally.js?_=1714141083559 IP13.239.72.130:443
CertificateIssuerAmazon Subject*.ally.ac Fingerprint5E:C0:43:C4:F7:7C:96:5B:BA:96:6C:9F:BA:70:2B:7C:E0:6C:24:5B ValidityMon, 05 Feb 2024 00:00:00 GMT - Wed, 05 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hashf4d48dc656592b4abc8046f6d9c6bb97 334c89486f4c3f6b6e0c4e2b5e968f74ec3e8554 7a2828de24df92e2838f93cafca8f51b5265c932eb31d7fe714b6fc1450ece16
GET /integration/learn/ally.js?_=1714141083559 HTTP/1.1
Host: prod-ap-southeast-2.ally.ac
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:18:05 GMT
content-type: application/javascript
content-length: 479
server: Apache
strict-transport-security: max-age=31536000
last-modified: Tue, 02 Apr 2024 12:13:45 GMT
etag: "353-6151c099fd040-gzip"
accept-ranges: bytes
cache-control: max-age=0
expires: Fri, 26 Apr 2024 14:18:05 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PUT, OPTIONS, PATCH, DELETE
access-control-allow-headers: origin, x-requested-with, content-type, accept, accept-encoding, accept-language, authorization, host, referer, user-agent
access-control-max-age: 86400, 86400
X-Firefox-Spdy: h2
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/i18n.js?v=3900.89.0-rel.31+520e1f0 | 104.18.34.143 | 200 OK | 3.5 kB |
URL GET HTTP/2learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/i18n.js?v=3900.89.0-rel.31+520e1f0 IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
Hash81ad40b5487c3b62dc6c79067a2de090 eed40ab3eb06be96b613011106ce27624ca2089f 6192e27f62f87d22d98dff80d0d959d224a2c77525c556aa9b9dab7818f621b9
GET /3900.89.0-rel.31+520e1f0/javascript/i18n.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: application/javascript
cf-ray: 87a73332f88e5689-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707744
cache-control: public, max-age=2592000
etag: W/"81ad40b5487c3b62dc6c79067a2de090"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| alt-5b2b431b0cadd.blackboard.com/bbcswebdav/xid-12734907_4?source_domain=online.cdu.edu.au | 13.237.204.74 | 302 | 0 B |
URL GET HTTP/1.1alt-5b2b431b0cadd.blackboard.com/bbcswebdav/xid-12734907_4?source_domain=online.cdu.edu.au IP13.237.204.74:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bbcswebdav/xid-12734907_4?source_domain=online.cdu.edu.au HTTP/1.1
Host: alt-5b2b431b0cadd.blackboard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://13.237.134.80/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Cache-Control: private, max-age=0, no-store, must-revalidate, no-cache="set-cookie"
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/octet-stream
Date: Fri, 26 Apr 2024 14:18:06 GMT
Expires: Wed, 26 Apr 2023 14:18:06 GMT
Last-Modified: Mon, 26 Apr 2004 14:18:06 GMT
Location: /bbcswebdav/institution/FDT/Base%20Nav/Login%20Page/CDU-small.png?source_domain=online.cdu.edu.au
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: source_domain="b25saW5lLmNkdS5lZHUuYXU="; Version=1; Path=/; Secure; HttpOnly; SameSite=None
AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEB9626A38B35E45FB82D89537BB252B308586AFEA56BA4FAD75FEC87F39DB3D32B4FF4C2E1407454A778B6A507F38932;PATH=/;MAX-AGE=900
AWSELBCORS=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEB9626A38B35E45FB82D89537BB252B308586AFEA56BA4FAD75FEC87F39DB3D32B4FF4C2E1407454A778B6A507F38932;PATH=/;MAX-AGE=900;SECURE;SAMESITE=None
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Blackboard-appserver: ip-10-144-116-131.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 0
Connection: keep-alive
|
|
| alt-5b2b431b0cadd.blackboard.com/bbcswebdav/institution/FDT/Base%20Nav/Login%20Page/CDU-small.png?source_domain=online.cdu.edu.au | 3.104.186.178 | 302 | 0 B |
URL GET HTTP/1.1alt-5b2b431b0cadd.blackboard.com/bbcswebdav/institution/FDT/Base%20Nav/Login%20Page/CDU-small.png?source_domain=online.cdu.edu.au IP3.104.186.178:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bbcswebdav/institution/FDT/Base%20Nav/Login%20Page/CDU-small.png?source_domain=online.cdu.edu.au HTTP/1.1
Host: alt-5b2b431b0cadd.blackboard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://13.237.134.80/
DNT: 1
Connection: keep-alive
Cookie: source_domain="b25saW5lLmNkdS5lZHUuYXU="; AWSELBCORS=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEB9626A38B35E45FB82D89537BB252B308586AFEA56BA4FAD75FEC87F39DB3D32B4FF4C2E1407454A778B6A507F38932
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Cache-Control: no-cache, no-store, must-revalidate
Content-Security-Policy: frame-ancestors 'self'
Date: Fri, 26 Apr 2024 14:18:06 GMT
Expires: 0
Last-Modified: Mon, 26 Apr 2004 14:18:06 GMT
Location: https://learn-ap-southeast-2-prod-fleet01-xythos.content.blackboardcdn.com/5b2b431b0cadd/4360167?X-Blackboard-S3-Bucket=learn-ap-southeast-2-prod-fleet01-xythos&X-Blackboard-Expiration=1714154400000&X-Blackboard-Signature=LwsOjFnR96XpgxEvQrmAtRUn5JT1sSokCrdNtptPfwQ%3D&X-Blackboard-Client-Id=112872&X-Blackboard-S3-Region=ap-southeast-2&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27CDU-small.png&response-content-type=image%2Fpng&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEHUaDmFwLXNvdXRoZWFzdC0yIkcwRQIhAOCr8hldvagGds3a5MREdHCzWE5Wa1iai05bSyCsm7F3AiAt5%2BSw5AJBSXP2hUuyKfLSo3G6drX7hbNqqrFOGalrnCrMBQi%2B%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAAaDDU1NjkwMzg2MTM2MSIM3qFLWdWyIfCL4O9FKqAFHHBLVewVAgqLcHoEjzpaWcLwKIGbcWD%2FAPsjL1M0nr6%2B7zGQ6J6OMAIvSmrQZSp7vJ5iIOXn7qZotzWxzQWzyV4om98t%2Fx5jZ0jv7aWBXc8fHWG3haPDvf0iv0DHqi3LpDvFubzIYQQLmAbznRa6W4Cgz%2BxtNh3xoQ06o3VhOoDfmpVus3v6XgAvDmNBjPe3o7Z14whf9S%2FPGLIcnL06foSt0UUoiv2z2jR1J2H7FdEeIPCxXfbjxQFXDKCLndjHXWjVphJ5iu2Y8%2FhPbeJBGMrgtlJvMAK982nL6XMv9OpvpC72mI%2F1u0PkIrZ8xkC8e%2BWRDVt3N0DHw8Kc7sKKVWcI2lxmeuWpOMe13JWF8gGTmwn58ipVmcixAVj4QG8GwBjtCap9a32sT6Ip2x8t4CuQUPWoNTec7zYrnVBzqZ0yeeTel9GZVueLJEHVSp%2FXqY0MZHpZdDhYj7Vy7Ff2gypYOlh9J5ITx64CqMG6dFRY3u2rcVdLi6j0rdDBMA1nKsSpakx6vdnv%2FRC13%2BrO3uEfZAADrJB9%2Bn6IU1w0%2FYTPDPn8s6a53cspqvwnG1VBg4qQPed2KFsTYKKx%2BPu8aMeCflq%2FjUX96fO4XC0Vz0X5y8qBX%2FzVZlSCI0ghMwuk5kki2UnOBzaz2uTeyS%2BT7c%2BzdIkbE1nCZMSaVZKfqLryqY4Zrv8jxo0kirRfn7dx%2BI1nWgYGzZ3vG3k%2FhnR8oK0w0HT2cG3azJvsYH%2FsrINf09HvkIY21XZBRGsJqwUDnDM6UWqWv1NXngKnuBi8dOQKFhWUfOZLxMW%2BxIY2nyeWagjajl5CT7wBwTDdupjOjUilYlPJy0n31CwYYYRYFSfihLR73N5N3RqT%2FylX0bzALiV53Sv2oPfDBgvJuTFoMJnPrrEGOrEB5rxJQ5LsPD89XcUV5a5PCk9qiTip16CF0%2BKZfTZS96fdI1ykSPXrVRQ7i%2B3utJbHJMw68tgOJqFo4zEPN9qF0yMWBb7bGmHWBStCtb7TKWT4y4GsKjmKtWG%2BKFoLJvRiUjgJF80WcS9gGMwkrYlkx%2FA2w0cVoUO8oq%2BG3NQjwbFEhbCXiYVz3uuTPd3IuDIl1Q0l3yJ7Y8nJe42frG7HNrco5yy9wed74TjNfVhOI6%2BL&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240426T120000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAYDKQORRY567PZI3Z%2F20240426%2Fap-southeast-2%2Fs3%2Faws4_request&X-Amz-Signature=dba1a038754c0d2423929fd28bd2e2b37ebe05899fd81abdf566d4189324e308
P3P: CP="CAO PSA OUR"
Pragma: no-cache
Set-Cookie: source_domain="b25saW5lLmNkdS5lZHUuYXU="; Version=1; Path=/; Secure; HttpOnly; SameSite=None
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Blackboard-appserver: ip-10-144-116-131.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 0
Connection: keep-alive
|
|
| learn-ap-southeast-2-prod-fleet01-xythos.content.blackboardcdn.com/5b2b431b0cadd/4360167?X-Blackboard-S3-Bucket=learn-ap-southeast-2-prod-fleet01-xythos&X-Blackboard-Expiration=1714154400000&X-Blackboard-Signature=LwsOjFnR96XpgxEvQrmAtRUn5JT1sSokCrdNtptPfwQ%3D&X-Blackboard-Client-Id=112872&X-Blackboard-S3-Region=ap-southeast-2&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27CDU-small.png&response-content-type=image%2Fpng&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEHUaDmFwLXNvdXRoZWFzdC0yIkcwRQIhAOCr8hldvagGds3a5MREdHCzWE5Wa1iai05bSyCsm7F3AiAt5%2BSw5AJBSXP2hUuyKfLSo3G6drX7hbNqqrFOGalrnCrMBQi%2B%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAAaDDU1NjkwMzg2MTM2MSIM3qFLWdWyIfCL4O9FKqAFHHBLVewVAgqLcHoEjzpaWcLwKIGbcWD%2FAPsjL1M0nr6%2B7zGQ6J6OMAIvSmrQZSp7vJ5iIOXn7qZotzWxzQWzyV4om98t%2Fx5jZ0jv7aWBXc8fHWG3haPDvf0iv0DHqi3LpDvFubzIYQQLmAbznRa6W4Cgz%2BxtNh3xoQ06o3VhOoDfmpVus3v6XgAvDmNBjPe3o7Z14whf9S%2FPGLIcnL06foSt0UUoiv2z2jR1J2H7FdEeIPCxXfbjxQFXDKCLndjHXWjVphJ5iu2Y8%2FhPbeJBGMrgtlJvMAK982nL6XMv9OpvpC72mI%2F1u0PkIrZ8xkC8e%2BWRDVt3N0DHw8Kc7sKKVWcI2lxmeuWpOMe13JWF8gGTmwn58ipVmcixAVj4QG8GwBjtCap9a32sT6Ip2x8t4CuQUPWoNTec7zYrnVBzqZ0yeeTel9GZVueLJEHVSp%2FXqY0MZHpZdDhYj7Vy7Ff2gypYOlh9J5ITx64CqMG6dFRY3u2rcVdLi6j0rdDBMA1nKsSpakx6vdnv%2FRC13%2BrO3uEfZAADrJB9%2Bn6IU1w0%2FYTPDPn8s6a53cspqvwnG1VBg4qQPed2KFsTYKKx%2BPu8aMeCflq%2FjUX96fO4XC0Vz0X5y8qBX%2FzVZlSCI0ghMwuk5kki2UnOBzaz2uTeyS%2BT7c%2BzdIkbE1nCZMSaVZKfqLryqY4Zrv8jxo0kirRfn7dx%2BI1nWgYGzZ3vG3k%2FhnR8oK0w0HT2cG3azJvsYH%2FsrINf09HvkIY21XZBRGsJqwUDnDM6UWqWv1NXngKnuBi8dOQKFhWUfOZLxMW%2BxIY2nyeWagjajl5CT7wBwTDdupjOjUilYlPJy0n31CwYYYRYFSfihLR73N5N3RqT%2FylX0bzALiV53Sv2oPfDBgvJuTFoMJnPrrEGOrEB5rxJQ5LsPD89XcUV5a5PCk9qiTip16CF0%2BKZfTZS96fdI1ykSPXrVRQ7i%2B3utJbHJMw68tgOJqFo4zEPN9qF0yMWBb7bGmHWBStCtb7TKWT4y4GsKjmKtWG%2BKFoLJvRiUjgJF80WcS9gGMwkrYlkx%2FA2w0cVoUO8oq%2BG3NQjwbFEhbCXiYVz3uuTPd3IuDIl1Q0l3yJ7Y8nJe42frG7HNrco5yy9wed74TjNfVhOI6%2BL&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240426T120000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAYDKQORRY567PZI3Z%2F20240426%2Fap-southeast-2%2Fs3%2Faws4_request&X-Amz-Signature=dba1a038754c0d2423929fd28bd2e2b37ebe05899fd81abdf566d4189324e308 | 104.18.34.143 | 200 OK | 4.6 kB |
URL GET HTTP/2learn-ap-southeast-2-prod-fleet01-xythos.content.blackboardcdn.com/5b2b431b0cadd/4360167?X-Blackboard-S3-Bucket=learn-ap-southeast-2-prod-fleet01-xythos&X-Blackboard-Expiration=1714154400000&X-Blackboard-Signature=LwsOjFnR96XpgxEvQrmAtRUn5JT1sSokCrdNtptPfwQ%3D&X-Blackboard-Client-Id=112872&X-Blackboard-S3-Region=ap-southeast-2&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27CDU-small.png&response-content-type=image%2Fpng&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEHUaDmFwLXNvdXRoZWFzdC0yIkcwRQIhAOCr8hldvagGds3a5MREdHCzWE5Wa1iai05bSyCsm7F3AiAt5%2BSw5AJBSXP2hUuyKfLSo3G6drX7hbNqqrFOGalrnCrMBQi%2B%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAAaDDU1NjkwMzg2MTM2MSIM3qFLWdWyIfCL4O9FKqAFHHBLVewVAgqLcHoEjzpaWcLwKIGbcWD%2FAPsjL1M0nr6%2B7zGQ6J6OMAIvSmrQZSp7vJ5iIOXn7qZotzWxzQWzyV4om98t%2Fx5jZ0jv7aWBXc8fHWG3haPDvf0iv0DHqi3LpDvFubzIYQQLmAbznRa6W4Cgz%2BxtNh3xoQ06o3VhOoDfmpVus3v6XgAvDmNBjPe3o7Z14whf9S%2FPGLIcnL06foSt0UUoiv2z2jR1J2H7FdEeIPCxXfbjxQFXDKCLndjHXWjVphJ5iu2Y8%2FhPbeJBGMrgtlJvMAK982nL6XMv9OpvpC72mI%2F1u0PkIrZ8xkC8e%2BWRDVt3N0DHw8Kc7sKKVWcI2lxmeuWpOMe13JWF8gGTmwn58ipVmcixAVj4QG8GwBjtCap9a32sT6Ip2x8t4CuQUPWoNTec7zYrnVBzqZ0yeeTel9GZVueLJEHVSp%2FXqY0MZHpZdDhYj7Vy7Ff2gypYOlh9J5ITx64CqMG6dFRY3u2rcVdLi6j0rdDBMA1nKsSpakx6vdnv%2FRC13%2BrO3uEfZAADrJB9%2Bn6IU1w0%2FYTPDPn8s6a53cspqvwnG1VBg4qQPed2KFsTYKKx%2BPu8aMeCflq%2FjUX96fO4XC0Vz0X5y8qBX%2FzVZlSCI0ghMwuk5kki2UnOBzaz2uTeyS%2BT7c%2BzdIkbE1nCZMSaVZKfqLryqY4Zrv8jxo0kirRfn7dx%2BI1nWgYGzZ3vG3k%2FhnR8oK0w0HT2cG3azJvsYH%2FsrINf09HvkIY21XZBRGsJqwUDnDM6UWqWv1NXngKnuBi8dOQKFhWUfOZLxMW%2BxIY2nyeWagjajl5CT7wBwTDdupjOjUilYlPJy0n31CwYYYRYFSfihLR73N5N3RqT%2FylX0bzALiV53Sv2oPfDBgvJuTFoMJnPrrEGOrEB5rxJQ5LsPD89XcUV5a5PCk9qiTip16CF0%2BKZfTZS96fdI1ykSPXrVRQ7i%2B3utJbHJMw68tgOJqFo4zEPN9qF0yMWBb7bGmHWBStCtb7TKWT4y4GsKjmKtWG%2BKFoLJvRiUjgJF80WcS9gGMwkrYlkx%2FA2w0cVoUO8oq%2BG3NQjwbFEhbCXiYVz3uuTPd3IuDIl1Q0l3yJ7Y8nJe42frG7HNrco5yy9wed74TjNfVhOI6%2BL&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240426T120000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAYDKQORRY567PZI3Z%2F20240426%2Fap-southeast-2%2Fs3%2Faws4_request&X-Amz-Signature=dba1a038754c0d2423929fd28bd2e2b37ebe05899fd81abdf566d4189324e308 IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subject FingerprintC3:03:F9:D9:8A:68:84:3F:8D:08:CF:FB:18:6B:A0:00:EF:D6:A2:11 ValidityThu, 04 Apr 2024 02:37:32 GMT - Wed, 03 Jul 2024 02:37:31 GMT
File typePNG image data, 176 x 50, 8-bit/color RGBA, non-interlaced Hash7ed15b3a8da8a55daea738017b4c6b47 e3b44b50a1bf97d39e38a5330beca64e8b990bb6 3a981121899cbba593e7c559803731d328448224cfa744534241106e3889137f
GET /5b2b431b0cadd/4360167?X-Blackboard-S3-Bucket=learn-ap-southeast-2-prod-fleet01-xythos&X-Blackboard-Expiration=1714154400000&X-Blackboard-Signature=LwsOjFnR96XpgxEvQrmAtRUn5JT1sSokCrdNtptPfwQ%3D&X-Blackboard-Client-Id=112872&X-Blackboard-S3-Region=ap-southeast-2&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27CDU-small.png&response-content-type=image%2Fpng&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEHUaDmFwLXNvdXRoZWFzdC0yIkcwRQIhAOCr8hldvagGds3a5MREdHCzWE5Wa1iai05bSyCsm7F3AiAt5%2BSw5AJBSXP2hUuyKfLSo3G6drX7hbNqqrFOGalrnCrMBQi%2B%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAAaDDU1NjkwMzg2MTM2MSIM3qFLWdWyIfCL4O9FKqAFHHBLVewVAgqLcHoEjzpaWcLwKIGbcWD%2FAPsjL1M0nr6%2B7zGQ6J6OMAIvSmrQZSp7vJ5iIOXn7qZotzWxzQWzyV4om98t%2Fx5jZ0jv7aWBXc8fHWG3haPDvf0iv0DHqi3LpDvFubzIYQQLmAbznRa6W4Cgz%2BxtNh3xoQ06o3VhOoDfmpVus3v6XgAvDmNBjPe3o7Z14whf9S%2FPGLIcnL06foSt0UUoiv2z2jR1J2H7FdEeIPCxXfbjxQFXDKCLndjHXWjVphJ5iu2Y8%2FhPbeJBGMrgtlJvMAK982nL6XMv9OpvpC72mI%2F1u0PkIrZ8xkC8e%2BWRDVt3N0DHw8Kc7sKKVWcI2lxmeuWpOMe13JWF8gGTmwn58ipVmcixAVj4QG8GwBjtCap9a32sT6Ip2x8t4CuQUPWoNTec7zYrnVBzqZ0yeeTel9GZVueLJEHVSp%2FXqY0MZHpZdDhYj7Vy7Ff2gypYOlh9J5ITx64CqMG6dFRY3u2rcVdLi6j0rdDBMA1nKsSpakx6vdnv%2FRC13%2BrO3uEfZAADrJB9%2Bn6IU1w0%2FYTPDPn8s6a53cspqvwnG1VBg4qQPed2KFsTYKKx%2BPu8aMeCflq%2FjUX96fO4XC0Vz0X5y8qBX%2FzVZlSCI0ghMwuk5kki2UnOBzaz2uTeyS%2BT7c%2BzdIkbE1nCZMSaVZKfqLryqY4Zrv8jxo0kirRfn7dx%2BI1nWgYGzZ3vG3k%2FhnR8oK0w0HT2cG3azJvsYH%2FsrINf09HvkIY21XZBRGsJqwUDnDM6UWqWv1NXngKnuBi8dOQKFhWUfOZLxMW%2BxIY2nyeWagjajl5CT7wBwTDdupjOjUilYlPJy0n31CwYYYRYFSfihLR73N5N3RqT%2FylX0bzALiV53Sv2oPfDBgvJuTFoMJnPrrEGOrEB5rxJQ5LsPD89XcUV5a5PCk9qiTip16CF0%2BKZfTZS96fdI1ykSPXrVRQ7i%2B3utJbHJMw68tgOJqFo4zEPN9qF0yMWBb7bGmHWBStCtb7TKWT4y4GsKjmKtWG%2BKFoLJvRiUjgJF80WcS9gGMwkrYlkx%2FA2w0cVoUO8oq%2BG3NQjwbFEhbCXiYVz3uuTPd3IuDIl1Q0l3yJ7Y8nJe42frG7HNrco5yy9wed74TjNfVhOI6%2BL&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240426T120000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAYDKQORRY567PZI3Z%2F20240426%2Fap-southeast-2%2Fs3%2Faws4_request&X-Amz-Signature=dba1a038754c0d2423929fd28bd2e2b37ebe05899fd81abdf566d4189324e308 HTTP/1.1
Host: learn-ap-southeast-2-prod-fleet01-xythos.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://13.237.134.80/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:18:08 GMT
content-type: image/png
content-length: 4583
cf-ray: 87a733409cd87131-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: private, max-age=2592000
content-disposition: inline; filename*=UTF-8''CDU-small.png
etag: "5477fb6038efa27e7d59a3a5d070084b"
last-modified: Sun, 07 Jul 2019 23:40:09 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cookie.js | 104.18.34.143 | 200 OK | 2.6 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cookie.js IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeASCII text, with very long lines (2701), with no line terminators Hashfa3532315b5fe6c90491810fe7026878 a48f57e0468dd2a7662e7a47e930e29adaeaae27 cdbeaaae616547c2b08de84431942566818dd3460fd5758467f0ddb368959ce0
GET /3900.89.0-rel.31+520e1f0/javascript/cookie.js HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: application/javascript
cf-ray: 87a7333308955689-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707750
cache-control: public, max-age=2592000
etag: W/"a183fc09aa8be412e99d9f469396fd48"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cookie.js | 104.18.34.143 | 200 OK | 2.6 kB |
URL GET HTTP/2learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cookie.js IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeASCII text, with very long lines (2701), with no line terminators Hashfa3532315b5fe6c90491810fe7026878 a48f57e0468dd2a7662e7a47e930e29adaeaae27 cdbeaaae616547c2b08de84431942566818dd3460fd5758467f0ddb368959ce0
GET /3900.89.0-rel.31+520e1f0/javascript/cookie.js HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:18:02 GMT
content-type: application/javascript
cf-ray: 87a733246ba656b4-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707748
cache-control: public, max-age=2592000
etag: W/"a183fc09aa8be412e99d9f469396fd48"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/icon-core.css | 104.18.34.143 | 200 OK | 3.2 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/icon-core.css IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeASCII text, with very long lines (3408), with no line terminators Hashd8d56882a2742ba46df57201594c4878 834253be70c8a73e012698b35a2b8bc8e4660228 bbe8153ec9e68e6ff1a09922bc5a18180b4414072bf8c034429827b40be0d884
GET /3900.89.0-rel.31+520e1f0/fonts/icon-core.css HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: text/css
cf-ray: 87a7333379d15689-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707728
cache-control: public, max-age=2592000
etag: W/"31aaabf9b328158c344befe272e73a9f"
last-modified: Tue, 16 Apr 2024 17:47:37 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cdn.js | 104.18.34.143 | 200 OK | 7.5 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cdn.js IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeC source, ASCII text, with very long lines (7910), with no line terminators Hash092d8a76fe4d493135f405a0fa62a7e3 4d350445e38c6ec91fdd5652d340a0a9668192de 905073814295632313f3efd98acd952c1f37e253d61cae907a8fd9958e0e6ea6
GET /3900.89.0-rel.31+520e1f0/javascript/cdn.js HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: application/javascript
cf-ray: 87a73333089a5689-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707750
cache-control: public, max-age=2592000
etag: W/"7f298f32a138572408938fd65e61e1b9"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/ui/styles/print.css?v=3900.89.0-rel.31+520e1f0 | 104.18.34.143 | 200 OK | 3.0 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/ui/styles/print.css?v=3900.89.0-rel.31+520e1f0 IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeASCII text, with very long lines (3128), with no line terminators Hashf764983fc7a6ad36b565b5595f9b827d ee1d02cfdf0c35145e0019982302834596745865 b246182d35882b394b9d03dadb9d30fe5152a36184593d67d733d5cfcabd9a8d
GET /3900.89.0-rel.31+520e1f0/ui/styles/print.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:03 GMT
content-type: text/css
cf-ray: 87a7332b4d8c5689-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707742
cache-control: public, max-age=2592000
etag: W/"5a1e4691f6428cdb6b4f8ec2d1bce4e3"
last-modified: Tue, 16 Apr 2024 17:48:04 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0 | 104.18.34.143 | 200 OK | 252 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0 IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
Size252 kB (252379 bytes) Hash234a1c00d625252fe3b8087da74e6f08 c5ad46a8b84656ca7a7a5e081956b9fc4a38c4d3 6bcccac509d3c9fb6fc12adf7648cb47b96931ce6906a42c3747ef2a69588269
GET /3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: text/css
cf-ray: 87a73332e8615689-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707731
cache-control: public, max-age=2592000
etag: W/"234a1c00d625252fe3b8087da74e6f08"
last-modified: Tue, 16 Apr 2024 17:47:34 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| prod-ap-southeast-2.ally.ac/static/integration/learn/ally.eddeb5af89355dd75feb.js | 13.239.72.130 | 200 OK | 329 kB |
URL GET HTTP/2prod-ap-southeast-2.ally.ac/static/integration/learn/ally.eddeb5af89355dd75feb.js IP13.239.72.130:443
CertificateIssuerAmazon Subject*.ally.ac Fingerprint5E:C0:43:C4:F7:7C:96:5B:BA:96:6C:9F:BA:70:2B:7C:E0:6C:24:5B ValidityMon, 05 Feb 2024 00:00:00 GMT - Wed, 05 Mar 2025 23:59:59 GMT
Size329 kB (329148 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/integration/learn/ally.eddeb5af89355dd75feb.js HTTP/1.1
Host: prod-ap-southeast-2.ally.ac
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:18:05 GMT
content-type: application/javascript
server: Apache
strict-transport-security: max-age=31536000
last-modified: Tue, 02 Apr 2024 12:13:45 GMT
etag: "505bc-6151c099fd040-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 26 Apr 2025 14:18:05 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PUT, OPTIONS, PATCH, DELETE
access-control-allow-headers: origin, x-requested-with, content-type, accept, accept-encoding, accept-language, authorization, host, referer, user-agent
access-control-max-age: 86400, 86400
X-Firefox-Spdy: h2
|
|
| dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 0.0.0.0 | | 0 B |
URL GET dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: dwr_open
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/icon-listing.css | 104.18.34.143 | 200 OK | 18 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/icon-listing.css IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
Hash1c41a4e6a2ad6e410fb6d3520e3b2c82 a6d9b2adf78fbeca9f312ccfb4948d54d79cdfbc 717a37d00b6b59825e69ac19ecf89aa3c0a2a4527c5bdf18ab5596bab5af3a9b
GET /3900.89.0-rel.31+520e1f0/fonts/icon-listing.css HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: text/css
cf-ray: 87a7333379d55689-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707728
cache-control: public, max-age=2592000
etag: W/"1c41a4e6a2ad6e410fb6d3520e3b2c82"
last-modified: Tue, 16 Apr 2024 17:47:37 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 13.237.134.80/favicon.ico | 13.237.134.80 | 200 | 3.4 kB |
URL GET HTTP/1.113.237.134.80/favicon.ico IP13.237.134.80:443
CertificateIssuerAmazon Subjectonline.cdu.edu.au Fingerprint40:41:8F:4B:80:54:E7:8D:13:09:7A:07:BE:2B:9F:6C:16:33:3F:BC ValidityWed, 17 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashe60d45ed40811e2af464be6dd48f16df 378903c1d74b3fb2cb4c4ab3fa09f09d305214ba 7310e3c01e1ec9f241ace4cae6ab0bb36185d9d54e9e6a7422aa1f976ef5f6a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 13.237.134.80
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Cookie: AWSELB=3F5D3B9702980CEE6F2F85075868E822EC38CBC85BEC010CEB49ABF090358B71304E3E48D34DEA5E1C9AD27CBE4CF4BA3FD638CAB579FB35EDB875FE1507C1A1523588DFFB; BbRouter=expires:1714142884,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:9edf726aac6aec4eb7be1890b2a3f0a23f1d7fcd2b651d045fa62a34bf1a7f28,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; BbClientCalenderTimeZone=UTC; JSESSIONID=C69F9ACECE26850D44502C46AA35A2FB; _ga_HMESPGZW30=GS1.1.1714141084.1.0.1714141084.0.0.0; _ga=GA1.1.102796272.1714141084
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: max-age=300,must-revalidate
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: image/x-icon
Date: Fri, 26 Apr 2024 14:18:06 GMT
ETag: W/"3370-1713439947215"
Expires: Sat, 26 Apr 2025 14:18:06 GMT
Last-Modified: Thu, 18 Apr 2024 11:32:27 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714142886,id:8368B6BDCDACE152AD4DA38FD14408DD,signature:3de34901006aa4f6693247ec454735c87768bc999ba254a2c0b98219f314e849,site:11b60899-16ea-4aa6-b7c5-7e705b1418cb,v:2,xsrf:00085fdb-d63e-443b-9e1b-566fc0fc541b; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-144-118-211.ap-southeast-2.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 2639
Connection: keep-alive
|
|
| dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 0.0.0.0 | | 0 B |
URL GET dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: dwr_open
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cdn.js | 104.18.34.143 | 200 OK | 7.5 kB |
URL GET HTTP/2learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cdn.js IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeC source, ASCII text, with very long lines (7910), with no line terminators Hash092d8a76fe4d493135f405a0fa62a7e3 4d350445e38c6ec91fdd5652d340a0a9668192de 905073814295632313f3efd98acd952c1f37e253d61cae907a8fd9958e0e6ea6
GET /3900.89.0-rel.31+520e1f0/javascript/cdn.js HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:18:02 GMT
content-type: application/javascript
cf-ray: 87a733246ba156b4-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707748
cache-control: public, max-age=2592000
etag: W/"7f298f32a138572408938fd65e61e1b9"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/theme.css?v=3900.89.0-rel.31+520e1f0 | 104.18.34.143 | 200 OK | 236 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/theme.css?v=3900.89.0-rel.31+520e1f0 IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
Size236 kB (236465 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/theme.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: text/css
cf-ray: 87a73332f86b5689-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707729
cache-control: public, max-age=2592000
etag: W/"03b483d1935c8fa74db95cb921f2fc97"
last-modified: Tue, 16 Apr 2024 17:48:04 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/core.css | 104.18.34.143 | 200 OK | 12 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/core.css IP104.18.34.143:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
Hashd616cc54b56a90485996a7544034efb9 a8b9753a2359221265b04660939a696b116983b3 0a57f5fbaca0908e5147dde373759aa657eeb7182622860f8bd67e49fcdb4039
GET /3900.89.0-rel.31+520e1f0/common/core.css HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:18:04 GMT
content-type: text/css
cf-ray: 87a7333379d95689-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 707728
cache-control: public, max-age=2592000
etag: W/"d616cc54b56a90485996a7544034efb9"
last-modified: Tue, 16 Apr 2024 17:47:34 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| prod-ap-southeast-2.ally.ac/static/integration/learn/ally.eddeb5af89355dd75feb.js | 13.239.72.130 | 200 OK | 329 kB |
URL GET HTTP/2prod-ap-southeast-2.ally.ac/static/integration/learn/ally.eddeb5af89355dd75feb.js IP13.239.72.130:443
CertificateIssuerAmazon Subject*.ally.ac Fingerprint5E:C0:43:C4:F7:7C:96:5B:BA:96:6C:9F:BA:70:2B:7C:E0:6C:24:5B ValidityMon, 05 Feb 2024 00:00:00 GMT - Wed, 05 Mar 2025 23:59:59 GMT
Size329 kB (329148 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/integration/learn/ally.eddeb5af89355dd75feb.js HTTP/1.1
Host: prod-ap-southeast-2.ally.ac
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://13.237.134.80/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:18:05 GMT
content-type: application/javascript
server: Apache
strict-transport-security: max-age=31536000
last-modified: Tue, 02 Apr 2024 12:13:45 GMT
etag: "505bc-6151c099fd040-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 26 Apr 2025 14:18:05 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PUT, OPTIONS, PATCH, DELETE
access-control-allow-headers: origin, x-requested-with, content-type, accept, accept-encoding, accept-language, authorization, host, referer, user-agent
access-control-max-age: 86400, 86400
X-Firefox-Spdy: h2
|
|