Report - www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

Report Overview

Visited public
2023-08-14 03:20:12
Tags
URL
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
Finishing URL
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP / ASN
45.60.198.199
#19551 INCAPSULA
Title
cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
tracking-protection.cdn.mozilla.net	9282	1998-01-31	2015-09-17 19:00:28	2023-08-13 05:11:41	5.3 kB	1.9 MB	34.120.158.37
www.cyberbit.com	unknown	2003-07-19	2017-07-10 21:31:58	2023-08-10 07:10:30	28 kB	69 kB	45.60.198.199

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-08-14 03:20:02	medium	45.60.198.199	Client IP	ETPRO HUNTING Observed Suspicious Hex Encoded String Inbound (decodeURIComponent)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (65)

	URL	From	Size	First Seen	Last Seen
	unknown	Function	37 B	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-05-09 11:59 Times Seen263351 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	unknown	Function	79 B	2023-04-11	2025-02-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 23:15 Last Seen2025-02-20 03:05 Times Seen4451 Hash 120c1389396ce23fefa260228782dd21 203ec734e1ed18539b950ed6cddd99fb0fa146ee 60bf0118313f13ad0bacfb3a8797ffed3ec9cf808b948ddd4f6c7aa1c022c236 Loading...

	www.cyberbit.com/_Incapsula_Resource?SWJIYLWA=5074a744e2e3d891814e9a2dace20bd4,719d34d31c8e3a6e6fffd425f7e032f3	ScriptElement	201 kB	2023-08-14	2023-08-14
Pretty URL www.cyberbit.com/_Incapsula_Resource?SWJIYLWA=5074a744e2e3d891814e9a2dace20bd4,719d34d31c8e3a6e6fffd425f7e032f3 IP 45.60.198.199 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-14 05:20 Last Seen2023-08-14 05:20 Times Seen1 Hash d5ac36d3cbb5c7f007ffa6d2d30bd1b4 886243057f9a35462cc16270d41de1cfd2cde292 d1276a2f50f693b9b61ee153ffc12ade3ec980bb940028d61b8d0f5d66d1c8e3 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 638c9916678ee8a7daa19512cc1d2730	22 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4694 Hash 638c9916678ee8a7daa19512cc1d2730 ab83830091905ec484220e15372611e52518dc10 b61450ba5bafc525e2d88f4cadc1ad21e2f9c4677b2a536a24a5a0feafe945e6 Loading...

	#2 Eval - 27b9e8ee937beec0809fb34fda1ddf7b	20 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4686 Hash 27b9e8ee937beec0809fb34fda1ddf7b 7c3612f7bd867e6391dc0c335e4e86b895311c2f 376af77bec228136fe68820159cdd85e7dee88e8d4012f271a7c7e3fa8cb961b Loading...

	#3 Eval - cb71c7ef87fda3f07fca16ff0e5dfc7a	39 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4647 Hash cb71c7ef87fda3f07fca16ff0e5dfc7a f9685d28562d64f3dc682e295925dcd6989d331c aeda8791c13855121ae691baa0b4e5eb5f9711c28ecd354ba09e1a421eff3636 Loading...

	#4 Eval - ac408718f90b4869b863ddc727d91e3b	11 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4692 Hash ac408718f90b4869b863ddc727d91e3b 25371f581459458b7dd1ed30aead59658d9489bf 5da5924441330ccd35db945b25fec66d4cdfdcaa94a8370184d93abf1c70bf69 Loading...

	#5 Eval - 24deed6e1d4b688cb9b4ed7e4122c41c	13 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4694 Hash 24deed6e1d4b688cb9b4ed7e4122c41c 65e447c54305dd9339396c154db07818f9675b34 4deae959aff553f287e3236a8660b8897f8752000468d2e2cf12b341fb0cdd80 Loading...

	#6 Eval - ede734df353b9e562a963297ba7c87c0	30 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4691 Hash ede734df353b9e562a963297ba7c87c0 e361269d3adbed83677ff3a95c6850aff9fcdef0 11a1ee0bde5a782d084d961b98a42edff5b26bedf9dc24360b24932b44a1e5e3 Loading...

	#7 Eval - 1622caeb74e094da6ab9e76bab8ee308	29 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4652 Hash 1622caeb74e094da6ab9e76bab8ee308 54872bed6489c41b6bd5c7ea479863d01101ac1f a33815e7ee33a5e2e993b07a8089370b73f4ab17c28173674a2a4bf68f360a34 Loading...

	#8 Eval - 8400e05902a35980362b8678710c6652	18 B	2023-03-07 01:03	2025-05-07 22:35
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-07 22:35 Times Seen18538 Hash 8400e05902a35980362b8678710c6652 f8b855e4e73f2379f26b0691dc179bdfa4fa9eaa addd231a2f2807fb0b4ebdadd2bc23ae2a1cb93a92b07fa6e20ee9af832a8b47 Loading...

	#9 Eval - 1ac192483dc9109c58d614be646b53d4	9 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4698 Hash 1ac192483dc9109c58d614be646b53d4 e727e7bd5f6f8c596d3f18c28ab3adf1e1f648f6 a7ee4ff8c5a8c59e9d3aa188d886da9a46115dd1eef5b1f630c30707eb9edf56 Loading...

	#10 Eval - 5c7d8e264462855c136d5418414eba0d	21 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4691 Hash 5c7d8e264462855c136d5418414eba0d 1ad08c07d2a4c32c51eae77a3c9c708380eb4aa8 557f660ab468b60da17465750f7cc68df8b0776844c6aaca8ebeb26bee13da93 Loading...

	#11 Eval - a689097727785bb0e94e7a64d6745480	13 B	2023-03-07 01:03	2025-05-07 22:35
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-07 22:35 Times Seen18484 Hash a689097727785bb0e94e7a64d6745480 270ab5e5a178a457e9b7ba8c3f4ad4b4014bdceb 56e57af29d4af8b1fb7008dbfdf84a764970a6673f1f19165f1a8498ce903d93 Loading...

	#12 Eval - 678ced14fe07222e7546fa5e791e5ea4	16 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4652 Hash 678ced14fe07222e7546fa5e791e5ea4 bc9b0c4f2e64c35c0092586c9c731eb7d1c781d5 1fda644c37854aff9560145e4274a952961e41aeb8107d5351a696ee61a4c089 Loading...

	#13 Eval - 75ffaf9d6adf7ebdf45f653a3af9155b	15 B	2023-03-07 12:55	2024-10-22 20:57
Pretty Observations First Seen2023-03-07 12:55 Last Seen2024-10-22 20:57 Times Seen4609 Hash 75ffaf9d6adf7ebdf45f653a3af9155b ae7b54572f935b4aebbb16607dcb17cc37bb75cd 48bf3adc34687d1911e5be8a7556b136e886402146d9120cda4335da4d106f5b Loading...

	#14 Eval - 8c7367acff313b8cc92167e9cf6377a4	11 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4659 Hash 8c7367acff313b8cc92167e9cf6377a4 051061c35dede06e751f127657cfd8dabc9b47ce 3cc64514d3abed3dc3b2e415611859ab78d3b9603db4ea43cea997437a1d3c94 Loading...

	#15 Eval - d6c664e097b9852e2741d2d5e845d17b	19 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4733 Hash d6c664e097b9852e2741d2d5e845d17b 0f1c8bb4616b837ab5c48b0396366b2db885d97b e9f512b04d36507ea3084f0f9d0b34a56ea913205bee762e3822276bfa03a8c0 Loading...

	#16 Eval - 91b21cf9c70987d6e7ada8f7dd71333e	84 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4652 Hash 91b21cf9c70987d6e7ada8f7dd71333e 750a123249b1f096176e7453c1518c2ae271d103 088e93e9a3b72b7b10673f7851072230b6c1ba25d30961ed6d4e02b663df55bc Loading...

	#17 Eval - cf8eb3a6281bbc5283df73117e15ee6b	24 B	2023-03-07 01:03	2025-05-01 06:57
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-01 06:57 Times Seen18101 Hash cf8eb3a6281bbc5283df73117e15ee6b 555b973dafe65782e867452d16afa9fec784b020 ae3766b014bf6a5b6452d14a9f1de103d584e98933db2577122c136bfb9eb0c6 Loading...

	#18 Eval - ca0ad8df766d431af572a7feddef0a0e	78 B	2023-08-13 21:59	2024-08-21 08:49
Pretty Observations First Seen2023-08-13 21:59 Last Seen2024-08-21 08:49 Times Seen15 Hash ca0ad8df766d431af572a7feddef0a0e bc8175d8850fe8b7a1cfb3dac4a57bdaa39e7558 4a241503d07c2cddcbdc0b9ea89f8a6c82ecf8c11d2d9e59a090b36355736ad0 Loading...

	#19 Eval - 85824de2ddcbac40e643761e7a9bbea1	13 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4626 Hash 85824de2ddcbac40e643761e7a9bbea1 aa12de0b2a946197b8eab089c61c7cce0f140827 fd7946685ac9cb0c883a6bf17e87cadbb42a9587607228abd40ba2d7e9d3a843 Loading...

	#20 Eval - 554838a8451ac36cb977e719e9d6623c	6 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4715 Hash 554838a8451ac36cb977e719e9d6623c b90d94578d1a527500b3c0a2970f0a6515fcc70d 9390ef32addf32bfdea786bc1e20679592498068bcbfcd357ea10ab64ea35e47 Loading...

	#21 Eval - 8ef0d95da6323915a544f519142a2fed	26 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4652 Hash 8ef0d95da6323915a544f519142a2fed cdf7a1be8bf82a6dbf3bdcd1e7e07e817b37aa55 bd1a5e40de88be784b132db124269458f1f2147147203184d78db5f6d3c10b7b Loading...

	#22 Eval - 7d99c2b827c44bd336e6dbbccecdd3fd	17 B	2023-03-07 01:07	2025-05-07 22:35
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-05-07 22:35 Times Seen5074 Hash 7d99c2b827c44bd336e6dbbccecdd3fd 0c442b9b39bde00818aaee29e9f5e321205ab863 512cd32f64ec1e7adec9996902a58e18dcac185384dcc9280b1d4cff5f71aad0 Loading...

	#23 Eval - 9a51c7bc5f4a7355c5a95df917f8562b	28 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4690 Hash 9a51c7bc5f4a7355c5a95df917f8562b 1bf0f7c215c58ec44d159d7a3896542b78b572a2 5be03a981cd3ea43ae469e444e0c2044fd1f62ff756c66af704b41bfb8a534cf Loading...

	#24 Eval - 3428957f1e9334006e8f58235b13e756	8 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4697 Hash 3428957f1e9334006e8f58235b13e756 5932ec3b29ebe803fd4c2ea4c6466594a8d26e98 8bd555867ffc79c51b068d10c968024c8c89764bfc1328af639db13f7772dc14 Loading...

	#25 Eval - 05b8e35f93bc745e61dd7e2cd1f57880	3 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4701 Hash 05b8e35f93bc745e61dd7e2cd1f57880 d5a998f82b079627752459766aff20e69379c835 7732fd718939ed21d789c661fe8cb1396221570f4f1ad183b99ecd5cfab0a0a1 Loading...

	#26 Eval - d68edf5b9de9ee4efc99d3d8b7c32cce	12 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4693 Hash d68edf5b9de9ee4efc99d3d8b7c32cce 960bd0f68e6c299ec70b9a5875cd07f566ee13ae fc46e7c5e303e1d0c08399ca0cfd0f41f900785c48767b83c3dec78c3071d5cf Loading...

	#27 Eval - 20c24fc3f9b9c1f8a608a323f9b6d5ac	5 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4651 Hash 20c24fc3f9b9c1f8a608a323f9b6d5ac 5cb7b7fda365bd6a45a964bf0564f728b64ae9ab f016276bfd9d0c87d462da1ded531041858fb1d9de3c2847d6da2f0083d7493f Loading...

	#28 Eval - f864b35ac95430bc6aeb496bf2ed082f	27 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4706 Hash f864b35ac95430bc6aeb496bf2ed082f 354f87b56a53e82a01a9f4046d14f6a252a7306b 637b9222317e0e767545e9a30e37b345aedd784b494c7ca1deb4f3394590ef28 Loading...

	#29 Eval - 61b5c50094a59006dbee6a76fc45f403	23 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4695 Hash 61b5c50094a59006dbee6a76fc45f403 2d7806f38716a43e8c137edf6a2ce743a37dd269 0b50f6dc0f1e1ec1df8092c7a6a7b6cb12a032061b0b6b3fab819579d3379935 Loading...

	#30 Eval - b7d4d94e84fbad8d7040a0e25458b40a	14 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4660 Hash b7d4d94e84fbad8d7040a0e25458b40a 5c21041c93822166c14ecdc78a09a41f2b6baffa 4de935da6bb4d5db50f69ff2b445ca9a775965951cf5687c2778d1712529bda4 Loading...

	#31 Eval - ea2e4cc9df5be8e71813e64bc3f6192d	27 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4655 Hash ea2e4cc9df5be8e71813e64bc3f6192d 8f4ede67838d6b98d12f9f4023b7d1a6fe0a3d03 39fafa61c757866eb313e3096b7cbdef2a30c83e80c7830de58011ac6f762220 Loading...

	#32 Eval - b875641d35848453d748e30f507257d8	39 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4653 Hash b875641d35848453d748e30f507257d8 b4ed0326a975d65d7f0ff6684d10f76b5f0c70bb f5662777f3170bb676c0ebf3b6a5ca9e47d520f6dc36857a9366ace59f9373f6 Loading...

	#33 Eval - 1442d6a776e2fbc53ea37426f652cf06	15 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4696 Hash 1442d6a776e2fbc53ea37426f652cf06 d8d4bb76c6420dd34955c75ad515836498b03a67 85d394336cd42ecfc5456a8da2f7d48cd2758a0b282781643b5f950013fbc014 Loading...

	#34 Eval - f25cc9bf81bc9b72290565687a011dd4	18 B	2023-03-07 01:03	2025-04-28 02:16
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-04-28 02:16 Times Seen18134 Hash f25cc9bf81bc9b72290565687a011dd4 98d624e473eecad652ddd8505917825d8f219296 793401a4baa2fb67b2049b633d5ebb8c25d2dc67d41071aabd7c180ddbdd2599 Loading...

	#35 Eval - ec41c3cbe04113c06bcb49cff7ece6b7	23 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4689 Hash ec41c3cbe04113c06bcb49cff7ece6b7 46b800206c9d3a1a83ab95f817885256f25a06e3 22b04595352775e334273c710ce6651d314362c4740ce9bedef51926084592ea Loading...

	#36 Eval - ada87d459740200b714fc82782d2d74d	21 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4684 Hash ada87d459740200b714fc82782d2d74d 2b8aca3e1389f6d9bea8e6c1ae0b85b51f01cb8f 0f9d76bc0eb53ebd5f3b05bbaa9b2af8ed4c568387b8a05ad5bceb6c672c08de Loading...

	#37 Eval - 60190cb2b5a1d64c6c22fdda4d9e29e0	6 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4705 Hash 60190cb2b5a1d64c6c22fdda4d9e29e0 40102dbf908059999bc913f7bf15496897be5abc d8e60ebbbb2b1a9d5f0dd2cfc7e810688583ad8afb626fcc6c357f756e799530 Loading...

	#38 Eval - 6d0bcc7d16cddf092b92a81a88d46ae2	37 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4693 Hash 6d0bcc7d16cddf092b92a81a88d46ae2 058f5aad922e59188daa5803859c34e2fafb4b08 2df3a2b97bb192deb2588839c6973f323182e3e7ada29dd28dd7af8a25ccb647 Loading...

	#39 Eval - c59832b8df36b9a820c7ef7a60ab60a9	22 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4651 Hash c59832b8df36b9a820c7ef7a60ab60a9 15a1a6f1d05b144ab14a200f5ecec1e57d63ca46 9bf439f32692df2a181814f6a6eda509e2c2744d7ff70bdcfe5b305673bceef2 Loading...

	#40 Eval - 9d4812d7408ddf7de197527dc539f128	29 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4650 Hash 9d4812d7408ddf7de197527dc539f128 e2aba3504ad22fc1e85c060f454e9e7dc454d830 13ffc640d7bb981cd2fa3a3a76f2119b60155413b0a4c9911b881c3d8694ffc2 Loading...

	#41 Eval - 3f29eaeb153e9810192934758710b772	22 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4875 Hash 3f29eaeb153e9810192934758710b772 016fe1c086bd726733148487bc8f52427c16b408 cf96000c74802c69ff15429ce2cfaa3826f3da79125fa1b27c7bff8ae539dccf Loading...

	#42 Eval - f67e7c912ad8aad97ee08ad5ab012d35	19 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4649 Hash f67e7c912ad8aad97ee08ad5ab012d35 07b4fcf97d3d497c44356dfaa6e4b13455f9ab03 188f286466468be490176215d19fa0a4a14f0cd759c2f53271fa7e4f7f0f42c2 Loading...

	#43 Eval - 1333ef87bbe31f545269a9544c6a3756	16 B	2023-03-07 01:03	2025-04-30 21:44
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-04-30 21:44 Times Seen18134 Hash 1333ef87bbe31f545269a9544c6a3756 33f5ccdefacf248ad39b8f3f9a5da1ffbf03f854 d17194a96291e963420dd3361221101c8fdb7d8d382fc8993563576d3fd29dd6 Loading...

	#44 Eval - bd4b9558232620979858ba87b82d0002	18 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4660 Hash bd4b9558232620979858ba87b82d0002 1d744a2ef2ec756f361bb6c8faeee7ca311b955f cb7ef195b9f3a7e3322007d9e9920c57db176770fdebac24d052724f69628502 Loading...

	#45 Eval - ec3f2a2f7c1cd40ee4c35dd8e31bd6ed	20 B	2023-03-07 01:07	2025-03-22 10:56
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-03-22 10:56 Times Seen4736 Hash ec3f2a2f7c1cd40ee4c35dd8e31bd6ed 721bb42fa91e4f0a795b4633ceec390fd77e293f ed2f592c334f968423c64f8a2d6d40969aa1638c7b112d1404135f8c19c5c112 Loading...

	#46 Eval - e311df114c7bf03c4149303d413e1897	30 B	2023-03-08 03:36	2024-10-22 20:57
Pretty Observations First Seen2023-03-08 03:36 Last Seen2024-10-22 20:57 Times Seen4610 Hash e311df114c7bf03c4149303d413e1897 efae22e9304c197b598169f3908315927d168f9f 0370b57cb0597d54a41afea1cc17c949e2c75e53fc357f16d3b30d61983f8ecf Loading...

	#47 Eval - c9f7198c57735fa7a7a8ac2cc18dd542	9 B	2023-03-07 01:02	2025-05-08 10:48
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-08 10:48 Times Seen25611 Hash c9f7198c57735fa7a7a8ac2cc18dd542 d78ec33d89c7283a59982f10f71e7e305fa1ce93 ebf49dcd836f810084c14e0f2dab4dc1768bbdc5980481bf201fcf76771dff7a Loading...

	#48 Eval - 2e9e3b99016016e8d228bec54dda989c	9 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4682 Hash 2e9e3b99016016e8d228bec54dda989c 694883bf8e6a3b2c41b5eebb886d6239fb28f7b1 e6d77b37a3426cf302697c5cd4e87be6c4a86ba4c75f3323933851f88996818a Loading...

	#49 Eval - 9ed987966c06808b50f9fddc24931bd1	5 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4706 Hash 9ed987966c06808b50f9fddc24931bd1 6feda84dcc2663ca33e76e422493a0b516d69899 f79926c01dc6dfc2c3b562072c8b86353e1ef6b41f9f314ea82639fb5a05e659 Loading...

	#50 Eval - ea0d3f3a3c2fe62e86536d6c69a71134	14 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4659 Hash ea0d3f3a3c2fe62e86536d6c69a71134 b4c056cfffae51e3eb0572bfb8ab77b2433d64a0 ffdf9f8beda9c02931b5cc25f6739cc6572a555ff75bd193bd73cf0fa9c9b197 Loading...

	#51 Eval - 350052386c44f930fe96151db3383ace	12 B	2023-03-07 01:03	2025-05-07 22:35
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-07 22:35 Times Seen18486 Hash 350052386c44f930fe96151db3383ace 9979e0947b58f29a711ad5afed356853b921e9ac bc1a6bd7f4ddbcd78987ea609d4595bdf2422cb1be9e85af5d6c199f62000d6c Loading...

	#52 Eval - 70dabbe009e701d4dea689692cfacf96	15 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4657 Hash 70dabbe009e701d4dea689692cfacf96 3ae4bba61f049941854984320b05ee05b0333c72 fead589f4fcd300fa99db8a6dcd98de5c6a7c7e0b6294f58fbaf6d49c76ee4a8 Loading...

	#53 Eval - b08ee3ad14c1a7a65db935e55aa3b319	17 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4655 Hash b08ee3ad14c1a7a65db935e55aa3b319 8d8772cbf089eb1b99b01faeb9de2ba0790e67ae 59bfdf19bd92f0ff92dc0c493ff43a19ab288a9d364f1ee6a6576319ed93106b Loading...

	#54 Eval - d65c067152080cc10b1022e2831a36a7	13 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4654 Hash d65c067152080cc10b1022e2831a36a7 7e2a6260e988dd49a70bea58f2b4751b2ddc83ba b110746fdd7b8851db5401bc6bed1ed5e640132a131b1a04f8ad6e419a9288b9 Loading...

	#55 Eval - 5fb4aaaca9dcd7e4bdd13e6cb525f5f2	17 B	2023-03-07 01:07	2025-04-17 04:09
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-17 04:09 Times Seen4661 Hash 5fb4aaaca9dcd7e4bdd13e6cb525f5f2 3125298847e22983a3ffa5a336858fd47f04ac26 76db878eaef5c327d799591407f672bd85c802f631d227331107830b1674096a Loading...

	#56 Eval - 54e57903f8bac0a9aa37299ad5f2377e	46 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4647 Hash 54e57903f8bac0a9aa37299ad5f2377e 914abde16cef88a9ec6440ad2bba9fa03e56cc58 60addc42b8dd987986e799c1d9f22ba70067eb2fda2202edde66578d2db0cc8a Loading...

	#57 Eval - 2cf1f2ffb65f23b4ed92282f797717ec	100 kB	2024-08-21 08:47	2024-08-21 08:47
Pretty Observations First Seen2024-08-21 08:47 Last Seen2024-08-21 08:47 Times Seen1 Hash 2cf1f2ffb65f23b4ed92282f797717ec ed94f709bd7e67c7771c645ef2878d4ca2ac2d14 c98dba6134057f2acc196b74f7cf627c90e79521b06266a2f0b4cff2c20e2fe7 Loading...

	#58 Eval - dfbbad69e20de0e28eb4f617f88da39d	11 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4704 Hash dfbbad69e20de0e28eb4f617f88da39d aada8c761c9839de74c9e0a3f646245903ade635 ab60c1ca8ca90078c97602a13b894dc646ed6938845f76ca4de0b82daed10677 Loading...

	#59 Eval - ec8bf516fafa51927e71233e18e82503	6 B	2023-03-07 01:07	2025-04-23 03:17
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-04-23 03:17 Times Seen4706 Hash ec8bf516fafa51927e71233e18e82503 a882f143d6c53ffe9108554f617f716e0119580d 5ec9c2c2913538bbedadd97c25943dc5fedf8617e6bed980714f5e9a9b2e24e6 Loading...

	#60 Eval - 0db30215cd2704e5b00dc2375563eab4	15 B	2023-03-07 01:03	2025-05-07 22:35
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-07 22:35 Times Seen18507 Hash 0db30215cd2704e5b00dc2375563eab4 e3d7cdb911d32f5d178ef1d7aaf3c14d945f0920 de7f7b137340e1d218833d7afef73ea711325f139a4428eed317ca0374f67c91 Loading...

	#61 Eval - a56bc3ed1e00c38138422e4768d8eb3b	39 B	2023-03-07 01:07	2025-02-20 03:05
Pretty Observations First Seen2023-03-07 01:07 Last Seen2025-02-20 03:05 Times Seen4649 Hash a56bc3ed1e00c38138422e4768d8eb3b 686e034128dba9ba481128d60d7216686578bdd4 17f93f34acd3f5bfcdcb7ec122710f0455b5eaddca9d291e00f117f63dd3cdb9 Loading...

	#62 Eval - dea74133f495f093186b63cf7a5cf082	32 B	2023-07-11 15:03	2024-10-22 20:57
Pretty Observations First Seen2023-07-11 15:03 Last Seen2024-10-22 20:57 Times Seen4608 Hash dea74133f495f093186b63cf7a5cf082 c83e4186c60a9eb4ed3fecdfd1e3c38751cd73c2 ec96ebb0db5c39dd4983ea448c0a7c7ae9e0a813dbe343d1af527a8ee8725783 Loading...

HTTP Transactions (43)

URL IP Response Size

tracking-protection.cdn.mozilla.net/ads-track-digest256/111.0/1684443982

34.120.158.37

56 kB

URL
tracking-protection.cdn.mozilla.net/ads-track-digest256/111.0/1684443982
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
56 kB (56118 bytes)
Hash
eccf8436aa08de0d355cd2c068568453
e05e69cb2970888f00770ab772d77354df830f05
71a2d75150b4656ff17a9589a66e9e03661fa4ea1dfdf16c1d848efaae082439

HTTP Headers

GET /ads-track-digest256/111.0/1684443982 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: U8KR49sVqwVKKP/Yh+HcS13EkLkZ7FsXO2XzTJtf/vlbV0h1vy1mGg+RQcO6kQ+AnPvP4LAZpoV5UynMNo9FzuZMHeZpLqlZM2400xOE+/g=
x-amz-request-id: MK5TZ5JSCBSZNK9E
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 56118
via: 1.1 google
date: Sun, 13 Aug 2023 10:52:46 GMT
age: 59229
last-modified: Thu, 18 May 2023 21:16:40 GMT
etag: "eccf8436aa08de0d355cd2c068568453"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/analytics-track-digest256/111.0/1683905755

34.120.158.37

10 kB

URL
tracking-protection.cdn.mozilla.net/analytics-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
10 kB (10262 bytes)
Hash
27ca7a562ad626165a25126b5975bc58
de8e9d89b673f3e1375e2a70f3c9d696726dfbe4
405d79f4b44125a2147ac70652ea7e7a544c1a5b34b376f683ea3e90445e7e42

HTTP Headers

GET /analytics-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: VPdVVtnx5qmJ0qSFkTWelWvelQhCcGj5rxd6DqepMuxJ8RE0XDMKueA2Mcr+GvYcLzp2KDc8mCc=
x-amz-request-id: GY6M1R9DVKYCY6HN
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 10262
via: 1.1 google
date: Sun, 13 Aug 2023 10:28:22 GMT
age: 60693
last-modified: Fri, 12 May 2023 15:46:41 GMT
etag: "27ca7a562ad626165a25126b5975bc58"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/base-cryptomining-track-digest256/111.0/1683905755

34.120.158.37

2.3 kB

URL
tracking-protection.cdn.mozilla.net/base-cryptomining-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
2.3 kB (2293 bytes)
Hash
7938ce04b9288ce2553c06df7544718e
0f6bcdb2770858cfc9018dd76d3ac16386afd3e0
efedbe30e6f1ac7617b022b31ccd2920f0d518e9a7f8818447e117fbc7cd30ee

HTTP Headers

GET /base-cryptomining-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: Y1oh9aIc3iGPKEBxEaypH0ZTGYQ/Rt40EofYPtdlhV+zQ3wYaoLU1HswyveO6ZZvzxDPul4rKf5CXqlaQ0lUagg0On7CIhrF
x-amz-request-id: XFJDVHW7QSHS6DJ6
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 2293
via: 1.1 google
date: Sun, 13 Aug 2023 15:21:17 GMT
age: 43119
last-modified: Fri, 12 May 2023 15:46:54 GMT
etag: "7938ce04b9288ce2553c06df7544718e"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/base-email-track-digest256/111.0/1683905755

34.120.158.37

7.0 kB

URL
tracking-protection.cdn.mozilla.net/base-email-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
7.0 kB (6965 bytes)
Hash
02560eef6a3e694713d21ba526dbf2d2
c300dbaeeb367bd302eaf2941a97cdd54c84bde9
6796e1d3ffc1d5316c498c022fd22be9e15842a3b3166f664d14042b614e491c

HTTP Headers

GET /base-email-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: YpcHxZ95Fy6iWBAmCN2oc3hc1JT46Lw1vcl3pDH3YXaXy5m1NrW7hLIxTj1bbRH8qsXYXur4zKUI3zaQOLPkdNxgJEOPdrwj
x-amz-request-id: F5BNBV3K4WR51B47
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 6965
via: 1.1 google
date: Sun, 13 Aug 2023 17:46:07 GMT
age: 34429
last-modified: Fri, 12 May 2023 15:46:56 GMT
etag: "02560eef6a3e694713d21ba526dbf2d2"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/base-fingerprinting-track-digest256/111.0/1683905755

34.120.158.37

3.6 kB

URL
tracking-protection.cdn.mozilla.net/base-fingerprinting-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
3.6 kB (3637 bytes)
Hash
84a28e1e64a4aca618879e590fb29c47
ddea829bfd334fe48e25374f36119c6ce19bdfeb
e87ee13b3afbcefcfd7f87bdd26b12aa18b79437ebd4a3cf689f78aefa0a7d1e

HTTP Headers

GET /base-fingerprinting-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: IvwQPWcBhU+EYOBkVbDuCqqknohhkAfGkCujnQ9G3gYta0F7HeNNKwhcP6VUUndhtxUuv9tXnfc=
x-amz-request-id: K92KDV6BMZVTZZ4Y
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 3637
via: 1.1 google
date: Sun, 13 Aug 2023 16:03:37 GMT
age: 40579
last-modified: Fri, 12 May 2023 15:46:52 GMT
etag: "84a28e1e64a4aca618879e590fb29c47"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/content-email-track-digest256/111.0/1683905755

34.120.158.37

8.9 kB

URL
tracking-protection.cdn.mozilla.net/content-email-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
8.9 kB (8853 bytes)
Hash
b9c2809ffc057abb94df0750c8cb57dd
e8ab5e486a0b53147eb8d66ca4585a06c5bbd210
b9816319448d2ccb8ef6a6e2aaefe13a9fa96335bdc1fd57c281dfe7ff95ede9

HTTP Headers

GET /content-email-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: lqg4FwlrwFoGC+BNjlOpxpGn90qX5eHxALcH62+86rDjbmNo0FFeBHadpplDSoRmRQuwqvAqgbc=
x-amz-request-id: PG6M3SGSBDXADEKG
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 8853
via: 1.1 google
date: Sun, 13 Aug 2023 21:09:00 GMT
age: 22256
last-modified: Fri, 12 May 2023 15:46:57 GMT
etag: "b9c2809ffc057abb94df0750c8cb57dd"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/content-track-digest256/111.0/1683905755

34.120.158.37

15 kB

URL
tracking-protection.cdn.mozilla.net/content-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
15 kB (15382 bytes)
Hash
d78d9f71f82fcce3a0d9079ec988ed05
13f8a07b0437728b11cefeda36b6211262d3af16
7449b095579811871ecad49889db2ae188486b18ab96f903a20941e34cfef7ee

HTTP Headers

GET /content-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 5m14U7VQ6Ib5RAzv6122AU/CIqW38kmVVzNIT4z00k9lpb7NtBVb7DWhdf0361a1veenfCKNp9g=
x-amz-request-id: RMK5GTPJRBYAV2Z5
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 15382
via: 1.1 google
date: Sun, 13 Aug 2023 15:56:04 GMT
age: 41032
last-modified: Fri, 12 May 2023 15:46:39 GMT
etag: "d78d9f71f82fcce3a0d9079ec988ed05"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/google-trackwhite-digest256/111.0/1683905755

34.120.158.37

1.5 MB

URL
tracking-protection.cdn.mozilla.net/google-trackwhite-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
1.5 MB (1470328 bytes)
Hash
2146c997750a1c7e55eb69a5a1a5e5b4
69ba29aca5c6a4bea1365e895b3c5b31df31220a
507d674f59748ff86ff629a2eb98b3cd343aec0a21e58089793341dc96361188

HTTP Headers

GET /google-trackwhite-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: TrKUX935Q3VzjnRsIS2IuFTngAY40s0GQXDcVQ/GMzO/1UrxHWCGmpPKHNxQGWorWB/NDRccTgQ=
x-amz-request-id: 30TC8Q8VV9GKB5RJ
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
via: 1.1 google
date: Sun, 13 Aug 2023 05:04:55 GMT
age: 80101
last-modified: Fri, 12 May 2023 15:46:50 GMT
etag: "2146c997750a1c7e55eb69a5a1a5e5b4"
content-type: application/octet-stream
content-length: 1470328
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/mozstd-trackwhite-digest256/111.0/1684443982

34.120.158.37

345 kB

URL
tracking-protection.cdn.mozilla.net/mozstd-trackwhite-digest256/111.0/1684443982
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
345 kB (344663 bytes)
Hash
aacf54fd5b2994c73b3e4e5e13f4b5a2
10494f54553c768432a556492e655aa774456927
bee12d3c1d013147f78ee8ce7d9fa5e83679cc650763c6f4f49a10ff2d4537e5

HTTP Headers

GET /mozstd-trackwhite-digest256/111.0/1684443982 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: FeoNTSq+T0a9aHJ4rjV1gfKyzo0FDvWWWnl8wyQ2gAIKKvvcfNFmBPuz8tClpt9BP2pV5gaMy1XBok4c53Vc/DFrCVl+ZIHPT190x+lCl1U=
x-amz-request-id: 205CEBH10PA5CF3J
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 344663
via: 1.1 google
date: Sun, 13 Aug 2023 21:04:52 GMT
age: 22504
last-modified: Thu, 18 May 2023 21:16:46 GMT
etag: "aacf54fd5b2994c73b3e4e5e13f4b5a2"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-track-digest256/111.0/1683905755

34.120.158.37

2.2 kB

URL
tracking-protection.cdn.mozilla.net/social-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
2.2 kB (2197 bytes)
Hash
f901679cf935d4b6067610a7287d0b99
fffa5389bec50a175f18deaf8933401edc4bd262
d553a4537f796d580ea8f696062c19540f1d332e2b478942f6ddea3952c6df4c

HTTP Headers

GET /social-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: wjOyp9NmoNISHAM0VwEVO3oKIqukiJrRDSwhst5y5/1tT9pcj6+ebEP7hhT1oyz0Xq/24ZN/S1kQAWn0XmR3Ww==
x-amz-request-id: RXHYXS7EXD6V466T
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 2197
via: 1.1 google
date: Sun, 13 Aug 2023 05:10:36 GMT
age: 79760
last-modified: Fri, 12 May 2023 15:46:42 GMT
etag: "f901679cf935d4b6067610a7287d0b99"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-tracking-protection-facebook-digest256/111.0/1683905755

34.120.158.37

468 B

URL
tracking-protection.cdn.mozilla.net/social-tracking-protection-facebook-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
468 B (468 bytes)
Hash
092bf11bed810e853f65d296f1e8b9e3
fed3b3a85aaf2bf1790fb115201b0dfdefe3982c
8c89c977f2c3f91b1050c645843453edc3d5bfcbe5e4af4b945b385f1b60046f

HTTP Headers

GET /social-tracking-protection-facebook-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: shwxaXU5lLf1KMzIh2jSojW+C4PKHSL5xzxFzHbIghtkC2r+s2I8HrSvp6kEPlJp8FZMOluvwto=
x-amz-request-id: T818YPNG7N1DZH4V
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 468
via: 1.1 google
date: Sun, 13 Aug 2023 15:16:13 GMT
age: 43423
last-modified: Fri, 12 May 2023 15:46:44 GMT
etag: "092bf11bed810e853f65d296f1e8b9e3"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:19:55 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; path=/
visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; expires=Mon, 12 Aug 2024 23:06:21 GMT; HttpOnly; path=/; Domain=.cyberbit.com
incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==; path=/; Domain=.cyberbit.com
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 NNNN CT(20 23 0) RT(1691983194816 19) q(0 0 0 1) r(1 15) U24
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-tracking-protection-linkedin-digest256/111.0/1683905755

34.120.158.37

148 B

URL
tracking-protection.cdn.mozilla.net/social-tracking-protection-linkedin-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
148 B (148 bytes)
Hash
90a72e82e4192224c509d557fd1d0d0c
19fe3346057c74364b7a2a2c1de0011a19c153d8
1024a91771abf18dd0a4de9dcc166ba7f9d224c803b6a5854f3f2db8d9a3c4a2

HTTP Headers

GET /social-tracking-protection-linkedin-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: feoZhWC1RqJ+5k7QU5estNNnQlE8Jvr4PZjI8Nnx8o81eS2buYh1hKIREX/e5lDYRPFWYWWPvJDuGbjy47W1HQ==
x-amz-request-id: S8MRA02EJ33BJR8N
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 148
via: 1.1 google
date: Sun, 13 Aug 2023 15:21:18 GMT
age: 43118
last-modified: Fri, 12 May 2023 15:46:46 GMT
etag: "90a72e82e4192224c509d557fd1d0d0c"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-tracking-protection-twitter-digest256/111.0/1683905755

34.120.158.37

244 B

URL
tracking-protection.cdn.mozilla.net/social-tracking-protection-twitter-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
244 B (244 bytes)
Hash
44186218fd668b3ffe6d95bc9c2acf06
e5b11bad035d82c42f2783024bb40fb2fa00d7e6
6d7715ed174a8438063ca39237b2e0c7e204dd68d0396866bc898a7e7aa70372

HTTP Headers

GET /social-tracking-protection-twitter-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 4B7gOD7so7ANAL5y+hfPk7BaWsVIbZZjw5w36sHI8ro+qRbXSJjeEtFOScI+xID6F1kYQ2YheFs=
x-amz-request-id: 4G5KC4AZ92RXC24A
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 244
via: 1.1 google
date: Sun, 13 Aug 2023 16:01:40 GMT
age: 40696
last-modified: Fri, 12 May 2023 15:46:45 GMT
etag: "44186218fd668b3ffe6d95bc9c2acf06"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:19:56 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 1534) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:19:57 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 1996) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:19:57 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 2503) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:19:58 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 3186) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/

45.60.198.199

0 B

URL
www.cyberbit.com/
IP
45.60.198.199:0
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Mon, 14 Aug 2023 03:19:58 GMT
Server: Apache
Pragma: no-cache
Access-Control-Allow-Origin: *
Expires: Mon, 14 Aug 2023 04:19:58 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Location: https://www.cyberbit.com/
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Set-Cookie: PHPSESSID=4eae1e8c59dc7e0eee72439d4ac32a7b; path=/
visid_incap_2665546=v9ATcjyZSgyoMe363hhRhV6d2WQAAAAAQUIPAAAAAABIQW2Zf6cBms7PUKhoVMmI; expires=Mon, 12 Aug 2024 23:06:20 GMT; HttpOnly; path=/; Domain=.cyberbit.com
incap_ses_720_2665546=uU54b0UvXBValEGKNvX9CV6d2WQAAAAAu7X+25iPhpMBTheVF6BjOg==; path=/; Domain=.cyberbit.com
X-CDN: Imperva
X-Iinfo: 7-16545933-16545934 NNNN CT(21 -1 0) RT(1691983198033 1) q(0 0 0 0) r(4 4) U24

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:19:58 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 3643) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:19:59 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 4101) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:19:59 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 4822) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:00 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 5286) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:00 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 5772) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

www.cyberbit.com/

45.60.198.199

18 kB

URL
www.cyberbit.com/
IP
45.60.198.199:0
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9632)
Size
18 kB (17886 bytes)
Hash
e534e531b491c52393b5c3508bf50b9d
701a91a8568131b5b0b7fd371a660a15ec0e8eee
61113a36b7046ee91ff36b3938f83e199c24f2abd41be0b75d7805b9e274cae9

HTTP Headers

GET / HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 14 Aug 2023 03:19:58 GMT
server: Apache
last-modified: Wed, 09 Aug 2023 08:46:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/html; charset=UTF-8
set-cookie: visid_incap_2665546=v9ATcjyZSgyoMe363hhRhV6d2WQAAAAAQUIPAAAAAABIQW2Zf6cBms7PUKhoVMmI; expires=Mon, 12 Aug 2024 23:06:20 GMT; HttpOnly; path=/; Domain=.cyberbit.com
incap_ses_720_2665546=DfX8Jhv0PVFalEGKNvX9CV6d2WQAAAAAaHuKzdLpGBgFx4KhFapn6w==; path=/; Domain=.cyberbit.com
x-cdn: Imperva
x-iinfo: 7-16545937-16545939 NNNN CT(20 22 0) RT(1691983198497 19) q(0 0 0 0) r(0 3) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:01 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 6706) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:02 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 7188) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:02 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 7699) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:03 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 8189) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:03 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 8662) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:04 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 9142) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:04 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 9602) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:05 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 10074) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:05 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 10541) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

212 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
212 B (212 bytes)
Hash
185dd5ec503c683da355a50e70f25c68
cf79e1a0b6f763060a526886494db0b1b2e053b7
d02032286070b4dd9d8fbd985a7bdca8af8edf52b89ff177db3bfcb2c8a9c43d

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
Content-Length: 212
X-Iinfo: 6-10528391-0 0NNN RT(1691983206473 1) q(0 -1 -1 -1) r(0 -1) B10(8,881083,0) U24

www.cyberbit.com/_Incapsula_Resource?SWJIYLWA=5074a744e2e3d891814e9a2dace20bd4,719d34d31c8e3a6e6fffd425f7e032f3

45.60.198.199

200 OK

29 kB

URL GET HTTP/1.1
www.cyberbit.com/_Incapsula_Resource?SWJIYLWA=5074a744e2e3d891814e9a2dace20bd4,719d34d31c8e3a6e6fffd425f7e032f3
IP
45.60.198.199:80
ASN
#19551 INCAPSULA

Requested by
http://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

File type
ASCII text, with very long lines (65536), with no line terminators
Size
29 kB (28667 bytes)
Hash
d5ac36d3cbb5c7f007ffa6d2d30bd1b4
886243057f9a35462cc16270d41de1cfd2cde292
d1276a2f50f693b9b61ee153ffc12ade3ec980bb940028d61b8d0f5d66d1c8e3

Detections

NIDS	Severity	Alert
suricata	medium	ETPRO HUNTING Observed Suspicious Hex Encoded String Inbound (decodeURIComponent)

HTTP Headers

GET /_Incapsula_Resource?SWJIYLWA=5074a744e2e3d891814e9a2dace20bd4,719d34d31c8e3a6e6fffd425f7e032f3 HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: application/javascript
Content-Encoding: gzip
X-Robots-Tag: noindex
Content-Length: 28667

www.cyberbit.com/_Incapsula_Resource?SWHANEDL=567017237406487801,1858494312826654560,5806495846066697011,620532

45.60.198.199

200 OK

29 B

URL GET HTTP/1.1
www.cyberbit.com/_Incapsula_Resource?SWHANEDL=567017237406487801,1858494312826654560,5806495846066697011,620532
IP
45.60.198.199:80
ASN
#19551 INCAPSULA

Requested by
http://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

File type
ASCII text, with no line terminators
Size
29 B (29 bytes)
Hash
8802eda32d6d2d22d9f27e5ebcc0da44
bcb9e63030f089c3fb94c41282db0b3bc808a527
558a8ed81355f3cdfc69e59973acfc8550afd2f57c7c0edd91e1375b605bc15b

HTTP Headers

GET /_Incapsula_Resource?SWHANEDL=567017237406487801,1858494312826654560,5806495846066697011,620532 HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: application/javascript
X-Robots-Tag: noindex
Content-Length: 29

www.cyberbit.com/_Incapsula_Resource?SWKMTFSR=1&e=0.40611062862516

45.60.198.199

200 OK

1 B

URL GET HTTP/1.1
www.cyberbit.com/_Incapsula_Resource?SWKMTFSR=1&e=0.40611062862516
IP
45.60.198.199:80
ASN
#19551 INCAPSULA

Requested by
http://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

GET /_Incapsula_Resource?SWKMTFSR=1&e=0.40611062862516 HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==; ___utmvc=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
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: text/plain
X-Robots-Tag: noindex
Content-Length: 1

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==; ___utmvc=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
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Mon, 14 Aug 2023 03:20:07 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: *
Set-Cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
___utmvc=a; Max-Age=0; path=/; expires=Sat, 05 Aug 2023 22:57:54 GMT
Location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-CDN: Imperva
X-Iinfo: 11-11199045-11199050 NNNN CT(21 -1 0) RT(1691983206591 204) q(0 1 1 -1) r(6 6) U24

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:07 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 12498) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:08 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 12996) q(0 0 0 -1) r(4 4) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:08 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 13475) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/

45.60.198.199

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
IP
45.60.198.199:443
ASN
#19551 INCAPSULA

Certificate
IssuerGlobalSign nv-sa
Subjectimperva.com
Fingerprint77:F6:7F:BE:5F:B3:89:90:FD:F8:FF:83:9B:CB:97:2A:2D:C3:CC:B5
ValidityThu, 20 Jul 2023 22:22:54 GMT - Tue, 16 Jan 2024 22:22:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/ HTTP/1.1
Host: www.cyberbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=34aa600045084ecce8557b52c93ef1d3; visid_incap_2665546=fyCjw0kBQeeuFXYL3l1Eolqd2WQAAAAAQUIPAAAAAADBaFoGevgBrgJX7ukg91P2; incap_ses_720_2665546=dpZGYg8XQhLak0GKNvX9CVyd2WQAAAAAFvNOFS3kPF6NIHCh+LfevA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Mon, 14 Aug 2023 03:20:08 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
set-cookie: PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.www.cyberbit.com
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.cyberbit.com
location: https://www.cyberbit.com/blog/endpoint-security/com-hijacking-windows-overlooked-security-vulnerability/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
x-cdn: Imperva
x-iinfo: 6-10528268-10528270 PNNN RT(1691983194816 13931) q(0 0 0 -1) r(5 5) U24
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (65)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash