Report - driverfinderpro.com/

Report Overview

Visited public
2023-11-19 09:23:01
Tags
URL
driverfinderpro.com/
Finishing URL
driverfinderpro.com/
IP / ASN
50.57.252.68
#32244 LIQUIDWEB
Title
Driver Finder Software for Windows 11, Windows 10, Windows 8, Windows 7, Vista and XP

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
static.driverfinderpro.com	unknown	2009-06-02	2023-03-01 04:16:52	2023-10-03 12:26:46	1.3 kB	33 kB	54.230.111.68
driverfinderpro.com	unknown	2009-06-02	2012-07-08 10:33:34	2023-10-17 08:38:43	476 B	7.1 kB	50.57.252.68
cdn.ywxi.net	9928	2013-04-17	2013-12-29 11:29:16	2023-11-19 05:23:47	1.4 kB	23 kB	143.204.55.124
images.driverfinderpro.com	unknown	2009-06-02	2012-08-25 17:27:22	2023-10-03 12:26:46	6.5 kB	142 kB	143.204.55.120
seal.digicert.com	8805	1996-12-02	2012-06-18 15:05:20	2023-11-19 05:48:21	943 B	8.7 kB	3.19.8.217
s3-us-west-2.amazonaws.com	unknown	2005-08-18	2017-01-29 12:21:01	2023-11-18 15:57:06	1.0 kB	2.1 kB	52.92.130.240
www.trustedsite.com	15448	2004-06-07	2017-01-30 01:22:54	2023-11-19 05:23:50	466 B	1.3 kB	100.20.14.222

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-19 09:22:44	medium	Client IP	Internal IP	ET ADWARE_PUP DriverTurbo Domain (driverfinderpro .com) in DNS Lookup
2023-11-19 09:22:44	medium	Client IP	Internal IP	ET ADWARE_PUP DriverTurbo Domain (driverfinderpro .com) in DNS Lookup
2023-11-19 09:22:44	medium	Client IP	Internal IP	ET ADWARE_PUP DriverTurbo Domain (driverfinderpro .com) in DNS Lookup
2023-11-19 09:22:45	medium	Client IP	Internal IP	ET ADWARE_PUP DriverTurbo Domain (driverfinderpro .com) in DNS Lookup
2023-11-19 09:22:45	medium	Client IP	Internal IP	ET ADWARE_PUP DriverTurbo Domain (driverfinderpro .com) in DNS Lookup
2023-11-19 09:22:45	medium	Client IP	Internal IP	ET ADWARE_PUP DriverTurbo Domain (driverfinderpro .com) in DNS Lookup
2023-11-19 09:22:45	medium	Client IP	Internal IP	ET ADWARE_PUP DriverTurbo Domain (driverfinderpro .com) in DNS Lookup

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed
2023-11-19	medium	driverfinderpro.com	Sinkholed

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	driverfinderpro.com/	ScriptElement	396 B	2023-06-27	2024-08-20
Pretty URL driverfinderpro.com/ IP 50.57.252.68 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-27 22:56 Last Seen2024-08-20 18:48 Times Seen1 Hash c4d4513ed8ccbe91a9c9363a7eacf276 d3e8a66c441f9c5dd8e935e4644c4df87feb62dc 6d4997a250e0fab86cc1b71f275e8162aad9ceaea53e4563902e42a0e3a8ee91 Loading...

	driverfinderpro.com/	ScriptElement	337 B	2023-06-27	2024-08-20
Pretty URL driverfinderpro.com/ IP 50.57.252.68 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-27 22:56 Last Seen2024-08-20 18:48 Times Seen1 Hash 29b0688709b88f3b5693c0d0855457ac c6ff0dc4621a57c3acdcfdb1dc3a199403b5918a e7784c22f7caf46b0f94e70149781b49558fd1b134b620e9133d75d04334f77c Loading...

	driverfinderpro.com/sandbox%20eval%20code		147 B	2023-04-11	2025-05-09
Pretty URL driverfinderpro.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 12:56 Times Seen341440 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	connect.facebook.net/en_US/all.js#xfbml=1	ScriptElement	17 kB	2023-05-05	2025-05-09
Pretty URL connect.facebook.net/en_US/all.js#xfbml=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-09 11:25 Times Seen54129 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

	static.driverfinderpro.com/js/dfgdpr.min.js?x73594	ScriptElement	2.7 kB	2023-03-26	2024-08-21
Pretty URL static.driverfinderpro.com/js/dfgdpr.min.js?x73594 IP 54.230.111.68 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:46 Last Seen2024-08-21 04:42 Times Seen2 Hash 3ab70e348302f28d19779dff4270330c b7136513774b8197a37e829e46f6e7927a01a529 84e6e985808f57ed63ecbb50838561e3d6fcace4b2a62048b8460755eb9d7196 Loading...

	cdn.ywxi.net/js/1.js	ScriptElement	20 kB	2023-10-13	2024-08-21
Pretty URL cdn.ywxi.net/js/1.js IP 143.204.55.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 13:41 Last Seen2024-08-21 04:52 Times Seen265 Hash 3f0f513f2963b98d009ec1bebb4539e8 476fc2d8b26089bb3c994096816c1a89fad55c2c e439ab908d5181dccc2a2994a2b3cc4d3232d1a77b906a8d366959f609850b40 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-09
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 12:56 Times Seen340639 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	driverfinderpro.com/	ScriptElement	148 B	2023-06-27	2024-08-20
Pretty URL driverfinderpro.com/ IP 50.57.252.68 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-27 22:56 Last Seen2024-08-20 18:48 Times Seen1 Hash 1432edf4bec33981fa29aa17f458efff 8a9006fac7a42e047e984a1a70504a5a65ffbcf1 802c1e428608cbe90171109136864e8d4a55b48122f55f736d7c92b78c3e0989 Loading...

	seal.digicert.com/seals/cascade/seal.min.js	ScriptElement	7.7 kB	2023-03-07	2025-05-06
Pretty URL seal.digicert.com/seals/cascade/seal.min.js IP 3.19.8.217 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11 Last Seen2025-05-06 04:21 Times Seen478 Hash 80aa9eec1d19324dcef60e2e0ed92280 8eb63a841a5ee0e24b7f47ec15effa1a97e89a3e 81f277888d1ee510668666fb819bcf637e488b613dac15cf78cbe9d1ac41658c Loading...

	www.trustedsite.com/rpc/ajax?do=tmjs-visit&host=driverfinderpro.com&rand=1700385767407	ScriptElement	6 B	2023-03-07	2025-05-09
Pretty URL www.trustedsite.com/rpc/ajax?do=tmjs-visit&host=driverfinderpro.com&rand=1700385767407 IP 100.20.14.222 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-05-09 12:28 Times Seen689 Hash 714941ce444573628d1d7f71369ec475 8abc077c85bdcd2fa69103c0f9253aa4fa0f5400 a4aa9f775af34f63386d8b4d8a14fce2225c317c3f93cbafdeb5a8524eb542a1 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js		1.7 kB	2023-05-05	2025-05-09
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-09 11:25 Times Seen54729 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

HTTP Transactions (26)

URL IP Response Size

driverfinderpro.com/

50.57.252.68

200 OK

5.9 kB

URL User Request GET HTTP/1.1
driverfinderpro.com/
IP
50.57.252.68:443
ASN
#32244 LIQUIDWEB

Certificate
IssuerSectigo Limited
Subjectwww.driverfinderpro.com
Fingerprint26:EA:AE:73:E9:6B:31:FA:F8:93:D1:04:EE:5C:55:C3:BB:F5:75:29
ValidityTue, 24 Jan 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1995)
Size
5.9 kB (5851 bytes)
Hash
06ed53859c0fa8c8d69fee75ff9c1e04
82db06707c6b60108fad64b988c75485782c8816
aff2f31036f400d55baa69cc711de29b81cc809c47e2ef2088e70ca9b344f397

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Apache/2.4
Vary: Accept-Encoding,User-Agent
Cache-Control: max-age=1367, public
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubdomains
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https:; frame-src https:; font-src 'self' data: https:; connect-src 'self' https:; media-src 'self' https://*.driverfinderpro.com
Date: Sun, 19 Nov 2023 09:22:43 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
X-XSS-Protection: 1; mode=block
Pragma: public
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
ETag: "6296085765c6ae1f9821473e782a0d54"
Connection: Keep-Alive
Set-Cookie: X-Mapping-knikccmo=FAD5674A7A9A9FB88B1F6083AB22514F; path=/
PHPSESSID=35c959e7a52f5a80dfe7d2a95b035782; path=/
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 19 Nov 2023 08:45:30 GMT
X-Powered-By: W3 Total Cache/2.6.0
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET
Referrer-Policy: no-referrer-when-downgrade
Permissions-Policy: camera=(), microphone=(), usb=()
Content-Length: 5851

cdn.ywxi.net/js/1.js

143.204.55.124

200 OK

4.8 kB

URL GET HTTP/2
cdn.ywxi.net/js/1.js
IP
143.204.55.124:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subject*.ywxi.net
Fingerprint48:8D:EB:FC:93:BF:4B:5E:46:1F:2F:50:6D:49:1F:C1:19:B5:61:CF
ValidityMon, 05 Jun 2023 00:00:00 GMT - Wed, 03 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (637)
Size
4.8 kB (4835 bytes)
Hash
3f0f513f2963b98d009ec1bebb4539e8
476fc2d8b26089bb3c994096816c1a89fad55c2c
e439ab908d5181dccc2a2994a2b3cc4d3232d1a77b906a8d366959f609850b40

HTTP Headers

GET /js/1.js HTTP/1.1
Host: cdn.ywxi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://driverfinderpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 4835
date: Sun, 19 Nov 2023 08:29:04 GMT
server: Apache
x-trace: 2BE1318CC74FBD4A5870A957914538417A0447D46A000000000000000000
content-security-policy-report-only: report-uri https://52723791ca12811bfedec52ea4c44290.report-uri.com/r/d/csp/reportOnly; default-src 'self'; script-src * 'unsafe-inline' 'unsafe-eval'; script-src-elem * 'unsafe-inline'; script-src-attr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; style-src-elem * 'unsafe-inline'; style-src-attr 'self' 'unsafe-inline'; img-src * data:; font-src * data:; connect-src *; media-src * blob:; object-src 'none'; frame-src *; frame-ancestors *; form-action 'self'
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
expires: Sun, 19 Nov 2023 09:29:04 GMT
access-control-allow-origin: *
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: H9I0l4q2cdEHylMNbh64IWeLRz687oWUeuUF4JxAc3DgTrQHRtB4vg==
age: 3220
X-Firefox-Spdy: h2

images.driverfinderpro.com/award-softpedia.jpg?x73594

143.204.55.120

200 OK

6.3 kB

URL GET HTTP/2
images.driverfinderpro.com/award-softpedia.jpg?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 180x124, components 3\012- data
Size
6.3 kB (6302 bytes)
Hash
c212e18b4d03c5bb2687cb71e2364acc
f9accb9237c53cb9f6222d6070aefa7a49f13caa
ef544e0dea776a732a749f31f7b17efa51c0cb82ef9e5f482b54b32043f2184a

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /award-softpedia.jpg?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 6302
date: Sun, 01 Oct 2023 06:15:54 GMT
last-modified: Wed, 31 Aug 2011 18:45:57 GMT
etag: "c212e18b4d03c5bb2687cb71e2364acc"
expires: Thu, 01 Dec 2031 16:00:00 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: RHWUTVpFapSopAaVhTKi-a4n9kQfQXhiH4IH1wWxTWuKgTZfiL1boA==
age: 4244811
X-Firefox-Spdy: h2

images.driverfinderpro.com/button-download-click.gif?x73594

143.204.55.120

200 OK

5.3 kB

URL GET HTTP/2
images.driverfinderpro.com/button-download-click.gif?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 275 x 50\012- data
Size
5.3 kB (5344 bytes)
Hash
a39120787526eaf2d923996d6dbe6a84
796cc974b1d5ed231c44bb2c797883791c140377
628bdbdd0f33f08c15ef4eef5d993e1bdfc0f7731fbc9702dad5b98b02df386b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /button-download-click.gif?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/gif
content-length: 5344
date: Sun, 19 Nov 2023 08:57:13 GMT
last-modified: Mon, 06 May 2013 05:51:02 GMT
etag: "a39120787526eaf2d923996d6dbe6a84"
x-amz-meta-cb-modifiedtime: Mon, 18 Feb 2013 14:16:01 GMT
expires: Wed, 01 Jan 2014 16:00:00 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ERJe1nVCqVLsDHo5CH4H3zCl-iulEQ__Mm2U0RzxZZURWVHUcr1olw==
age: 1532
X-Firefox-Spdy: h2

images.driverfinderpro.com/steps.webp?x73594

143.204.55.120

200 OK

19 kB

URL GET HTTP/2
images.driverfinderpro.com/steps.webp?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
19 kB (18906 bytes)
Hash
0ecfec64e9956d7c67ad8d0e478181b7
f3a8bf195eee052176eda7ae711389a875ce5404
b0b97e238e557c9ce3a7bb51ee009789dc7f50295a015527beef843e916f2af3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /steps.webp?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 18906
date: Mon, 13 Nov 2023 02:56:23 GMT
last-modified: Wed, 13 Jul 2022 12:04:47 GMT
etag: "0ecfec64e9956d7c67ad8d0e478181b7"
cache-control: max-age=31536000, public
x-amz-meta-cb-modifiedtime: Wed, 13 Jul 2022 12:02:34 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: qFnwi7qpCO96zVGgaWvS3sG7SiIRkqhfPQjzgaay33c-1krs_N4mDA==
age: 541582
X-Firefox-Spdy: h2

images.driverfinderpro.com/award-integrity.png?x73594

143.204.55.120

200 OK

11 kB

URL GET HTTP/2
images.driverfinderpro.com/award-integrity.png?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
PNG image data, 180 x 210, 8-bit colormap, non-interlaced\012- data
Size
11 kB (11102 bytes)
Hash
b1f922c8e7448e19ae8ea89e476a533d
f794f21ea903aecb1ff144ec65cbc5e7a1af17cc
d268bc3e3422f3d7d08ffe003c60dc28da2aa7f5c6a74aefcaf73197b16a5541

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /award-integrity.png?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 11102
last-modified: Tue, 07 Apr 2015 15:42:59 GMT
x-amz-meta-cb-modifiedtime: Tue, 07 Apr 2015 15:40:27 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Nov 2023 08:25:35 GMT
expires: Thu, 31 Dec 2015 20:00:00 GMT
etag: "b1f922c8e7448e19ae8ea89e476a533d"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: eNl6yRuA9PIONIAfQweRcNhHM-XLLmFt1RAfkRF-hUKrAfzKnd07zg==
age: 3430
X-Firefox-Spdy: h2

images.driverfinderpro.com/logo-banner-4.png?x73594

143.204.55.120

200 OK

4.6 kB

URL GET HTTP/2
images.driverfinderpro.com/logo-banner-4.png?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
PNG image data, 355 x 75, 8-bit colormap, non-interlaced\012- data
Size
4.6 kB (4554 bytes)
Hash
9562934955c717cf41cf6379a369f55b
21665720ab050b24e41a31df923a59c7dd9f474d
20dd50fcf881e8dad717e0b0625c73f38613dc6e6bb58644364f40ea42952c95

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /logo-banner-4.png?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 4554
last-modified: Wed, 17 Feb 2016 12:40:12 GMT
x-amz-meta-cb-modifiedtime: Wed, 17 Feb 2016 11:25:44 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Nov 2023 08:25:25 GMT
expires: Sat, 31 Dec 2016 20:00:00 GMT
etag: "9562934955c717cf41cf6379a369f55b"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: SIxi6W2gAGN6k-0sZneGWGPdR9LnIBh05N1TPrv8BIc5BT8TGzgidA==
age: 3440
X-Firefox-Spdy: h2

images.driverfinderpro.com/button-download-full.png?x73594

143.204.55.120

200 OK

3.9 kB

URL GET HTTP/2
images.driverfinderpro.com/button-download-full.png?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
PNG image data, 275 x 50, 8-bit colormap, non-interlaced\012- data
Size
3.9 kB (3940 bytes)
Hash
a4a1adea21d45c9a86172ba468938e06
58858de1367039359b7066b66727c93079fa5efc
9a803840a7983d1caf325dc8ce62c53968d3ec9fc78437d958c6c0b3bb2d6101

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /button-download-full.png?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 3940
last-modified: Tue, 12 Nov 2013 17:55:50 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Nov 2023 08:47:01 GMT
expires: Mon, 01 Dec 2014 16:00:00 GMT
etag: "a4a1adea21d45c9a86172ba468938e06"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: v2Lwd_8KNGAyWUNCD8z0XeiU4LbEHGmYSDP3B-kG59VsPz2EW2C5_w==
age: 2143
X-Firefox-Spdy: h2

images.driverfinderpro.com/homepage-box.jpg?x73594

143.204.55.120

200 OK

13 kB

URL GET HTTP/2
images.driverfinderpro.com/homepage-box.jpg?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 300x290, components 3\012- data
Size
13 kB (12632 bytes)
Hash
fe923934928a11d57e5eec8cffa62c0e
c2f0f734a9df37ffbf183e50e07232f2b3baa9ae
bde9fa336e80dd265f6ce23d01446734f63e7faf036b8b653784b6529b20634e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /homepage-box.jpg?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 12632
date: Sat, 23 Sep 2023 00:33:03 GMT
last-modified: Tue, 31 Mar 2020 14:54:00 GMT
etag: "fe923934928a11d57e5eec8cffa62c0e"
x-amz-meta-cb-modifiedtime: Tue, 31 Mar 2020 14:52:17 GMT
expires: Thu, 01 Dec 2031 16:00:00 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ykxsNbG4-RXJBRD1Xe9VZCXV6VzJOIt7y7oQ0I_n7QU43YeDUE6rVw==
age: 4956582
X-Firefox-Spdy: h2

images.driverfinderpro.com/icon-home-mfg.gif

143.204.55.120

200 OK

2.4 kB

URL GET HTTP/3
images.driverfinderpro.com/icon-home-mfg.gif
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 50 x 40\012- data
Size
2.4 kB (2353 bytes)
Hash
12044c6405047b5bd27975d0b2de36fc
7dc9aa1ca4df461ef659bd24687a2c3c52ae885a
0af77a315e4b24227cdc44b2185afefb4ca055a0f3768e8a8432cc2cf2d8dea3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /icon-home-mfg.gif HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.driverfinderpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
content-length: 2353
age: 2234
last-modified: Mon, 05 Sep 2011 09:34:53 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Nov 2023 08:45:31 GMT
expires: Thu, 01 Dec 2013 16:00:00 GMT
etag: "12044c6405047b5bd27975d0b2de36fc"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: RAv2B3daVqMbuP8iDT_VyBeTE0G2w49_t6L-fVs0InHyOMFkY1tMug==

images.driverfinderpro.com/icon-home-device.gif

143.204.55.120

200 OK

2.1 kB

URL GET HTTP/3
images.driverfinderpro.com/icon-home-device.gif
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 50 x 40\012- data
Size
2.1 kB (2074 bytes)
Hash
77bc7d030a808e83d889a18e89f9206c
a63f48de0202148110ce6b57690d3c16434a91b3
20e5f27c429d147187795e3a7edfbae3d771416b8c6c9560704fbe92471d60a6

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /icon-home-device.gif HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.driverfinderpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
content-length: 2074
age: 2234
last-modified: Mon, 05 Sep 2011 09:34:52 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Nov 2023 08:45:31 GMT
expires: Thu, 01 Dec 2013 16:00:00 GMT
etag: "77bc7d030a808e83d889a18e89f9206c"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ZKPBgFN36vQXGZVKHCSOi_C9AhdJ-30wydkxvfvxtkbVIaVTY1bLuQ==

images.driverfinderpro.com/MS-Windows.gif?x73594

143.204.55.120

200 OK

3.9 kB

URL GET HTTP/2
images.driverfinderpro.com/MS-Windows.gif?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 180 x 43\012- data
Size
3.9 kB (3922 bytes)
Hash
4af073bdbdb37f1bf06483b4b18bad40
0191e4cc38590fb3b4d6315519f2a26adedd81e5
6b50c9a02f71cd1855db5bb3045ea2b029a97cdafda9850c3f2f0b96f4b4b56e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /MS-Windows.gif?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/gif
content-length: 3922
date: Sun, 19 Nov 2023 09:22:45 GMT
last-modified: Tue, 11 Aug 2020 09:32:02 GMT
etag: "4af073bdbdb37f1bf06483b4b18bad40"
cache-control: max-age=31536000, public
x-amz-meta-cb-modifiedtime: Tue, 11 Aug 2020 09:31:45 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: OXe6ZbP9s5OclKJ3tS_jHk8wL9tygQ0FJ4T9Ugaf04j4iuHYgaN2mw==
X-Firefox-Spdy: h2

images.driverfinderpro.com/icon-home-security.gif

143.204.55.120

200 OK

1.9 kB

URL GET HTTP/3
images.driverfinderpro.com/icon-home-security.gif
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 50 x 40\012- data
Size
1.9 kB (1852 bytes)
Hash
ec45b709afc8fe1179a7497942bfab02
9c706a3670c2807fb409c267052a86d65bf7bf09
8b4fc42983eff84669be5e54428d9223c53e955ed9112bcfe29ba2019bb67ba3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /icon-home-security.gif HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.driverfinderpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
content-length: 1852
age: 2142
last-modified: Mon, 05 Sep 2011 09:34:55 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Nov 2023 08:47:03 GMT
expires: Thu, 01 Dec 2013 16:00:00 GMT
etag: "ec45b709afc8fe1179a7497942bfab02"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: gXgcMXjYjXPd_vhU4H1IvJeyORyYyUWTEg9QQwi3TfpQz5Io6Ki1aA==

images.driverfinderpro.com/icon-home-rss.gif

143.204.55.120

200 OK

2.2 kB

URL GET HTTP/3
images.driverfinderpro.com/icon-home-rss.gif
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 50 x 40\012- data
Size
2.2 kB (2194 bytes)
Hash
0f0f667db6d8df363da6dbb85cca9821
59c371f6f6be6e92b0403ecab15caddc82e093e2
9c49fb270c14a871b14ae647a9c50b3e0957d4fc8966816e231f14e18bc393b2

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /icon-home-rss.gif HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.driverfinderpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
content-length: 2194
age: 2235
last-modified: Mon, 05 Sep 2011 09:34:55 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Nov 2023 08:45:31 GMT
expires: Thu, 01 Dec 2013 16:00:00 GMT
etag: "0f0f667db6d8df363da6dbb85cca9821"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 8BuexlGrEvthi4w7NAenCBuOHGSpdjnVCOwo9PC1k0-drpIJx2kzvQ==

seal.digicert.com/seals/cascade/seal.min.js

3.19.8.217

200 OK

7.7 kB

URL GET HTTP/1.1
seal.digicert.com/seals/cascade/seal.min.js
IP
3.19.8.217:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerDigiCert Inc
Subjectseal.digicert.com
Fingerprint9C:DE:99:B6:24:AF:1E:FD:BB:62:57:BA:A7:10:2A:5D:5A:E8:D1:21
ValiditySun, 07 May 2023 00:00:00 GMT - Wed, 05 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7741), with no line terminators
Size
7.7 kB (7741 bytes)
Hash
80aa9eec1d19324dcef60e2e0ed92280
8eb63a841a5ee0e24b7f47ec15effa1a97e89a3e
81f277888d1ee510668666fb819bcf637e488b613dac15cf78cbe9d1ac41658c

HTTP Headers

GET /seals/cascade/seal.min.js HTTP/1.1
Host: seal.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://driverfinderpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:22:45 GMT
Content-Type: text/javascript
Content-Length: 7741
Connection: keep-alive
last-modified: Fri, 17 Nov 2023 00:28:31 GMT
etag: "1e3d-60a4e374109c0"
x-envoy-upstream-service-time: 1
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

seal.digicert.com/seals/cascade/?tag=wc0C-xKc&referer=driverfinderpro.com&format=png&lang=en&seal_number=15&seal_size=m

3.19.8.217

200 OK

159 B

URL GET HTTP/1.1
seal.digicert.com/seals/cascade/?tag=wc0C-xKc&referer=driverfinderpro.com&format=png&lang=en&seal_number=15&seal_size=m
IP
3.19.8.217:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerDigiCert Inc
Subjectseal.digicert.com
Fingerprint9C:DE:99:B6:24:AF:1E:FD:BB:62:57:BA:A7:10:2A:5D:5A:E8:D1:21
ValiditySun, 07 May 2023 00:00:00 GMT - Wed, 05 Jun 2024 23:59:59 GMT

File type
PNG image data, 100 x 73, 8-bit colormap, non-interlaced\012- data
Size
159 B (159 bytes)
Hash
8d1a7d1efaf61b3d6fa738882e0e030b
e2d4cb1c5dd0a8e9595a2f14f250e643b2e0bb3e
2707ebaa45efd183f1346054b3c821135ec6383fe937dc21b94614c22ca0d738

HTTP Headers

GET /seals/cascade/?tag=wc0C-xKc&referer=driverfinderpro.com&format=png&lang=en&seal_number=15&seal_size=m HTTP/1.1
Host: seal.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://driverfinderpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:22:45 GMT
Content-Type: image/png
Content-Length: 159
Connection: keep-alive
last-modified: Sun, 19 Nov 2023 09:03:01 GMT
cache-control: max-age=7776000
expires: Sat, 17 Feb 2024 09:03:02 GMT
x-envoy-upstream-service-time: 41
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Strict-Transport-Security: max-age=31536000

images.driverfinderpro.com/driverfinder-icon.png?x73594

143.204.55.120

200 OK

14 kB

URL GET HTTP/3
images.driverfinderpro.com/driverfinder-icon.png?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced\012- data
Size
14 kB (14132 bytes)
Hash
b5c82fd62ca1b03c4c6966fdf7d408c2
c9df0c5ef4c4d88cfd7362ff11b953f9b5cef831
f179c3ff69df56abccfe2e7a3b89dae7ec110eb2971401718bf63675f3dd1d0c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /driverfinder-icon.png?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
content-length: 14132
age: 2131578
date: Wed, 25 Oct 2023 17:16:28 GMT
last-modified: Mon, 06 Sep 2021 15:14:28 GMT
etag: "b5c82fd62ca1b03c4c6966fdf7d408c2"
cache-control: max-age=31536000, public
x-amz-meta-cb-modifiedtime: Mon, 06 Sep 2021 15:12:53 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: w2sU7fxfZ937VJh4ZssrjJXlhvJ_TQr6puY_1EQC0s490F_W-gdUlA==

images.driverfinderpro.com/favicon-120x120.ico?x73594

143.204.55.120

200 OK

45 kB

URL GET HTTP/3
images.driverfinderpro.com/favicon-120x120.ico?x73594
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectimages.driverfinderpro.com
FingerprintE3:04:12:88:AD:48:A0:F1:DE:39:D4:CF:80:41:34:D5:46:9A:21:3E
ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 120x120, 24 bits/pixel\012- data
Size
45 kB (45182 bytes)
Hash
95a1c93ac1f11445159e78393477c60b
4a29969be514721797a7b654624454612998f988
7b8a2a1cb056aa58b4cca302ef0733c4cdd74878be9c94ea1639b1dbf0e0c361

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /favicon-120x120.ico?x73594 HTTP/1.1
Host: images.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/x-icon
content-length: 45182
age: 44158
date: Sat, 18 Nov 2023 21:06:48 GMT
last-modified: Tue, 26 Jan 2021 13:23:02 GMT
etag: "95a1c93ac1f11445159e78393477c60b"
cache-control: max-age=31536000, public
x-amz-meta-cb-modifiedtime: Tue, 26 Jan 2021 13:10:26 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: egkfK1JCqnmyrbhE4aDWcK1B5USn-wAdetBTOtYOzU2jo33N_EWnUg==

s3-us-west-2.amazonaws.com/mfesecure-public/host/driverfinderpro.com/client.json?source=jsinline

52.92.130.240

200 OK

181 B

URL GET HTTP/1.1
s3-us-west-2.amazonaws.com/mfesecure-public/host/driverfinderpro.com/client.json?source=jsinline
IP
52.92.130.240:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subject*.s3-us-west-2.amazonaws.com
Fingerprint29:D7:48:C0:C9:57:6E:93:C1:56:5D:91:7F:98:4A:4F:63:B5:CA:1D
ValidityTue, 10 Oct 2023 00:00:00 GMT - Sat, 03 Aug 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
181 B (181 bytes)
Hash
761e54e6fa8088dd4a4f2f4f8d0a85ee
970965e41eeb3bb062fb3ee29482e2112a5b7e4a
29c5545f5580ada6876041ca82032d8c7085cb1fccd7952b46dfbfe039777bf6

HTTP Headers

GET /mfesecure-public/host/driverfinderpro.com/client.json?source=jsinline HTTP/1.1
Host: s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://driverfinderpro.com
DNT: 1
Connection: keep-alive
Referer: https://driverfinderpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: ZKco0m/6mXKKOBqLWqxXuD+XWz2zzO1pbasUZ/VgedL0ePhrDiH3WqJS9zfxdwjpB20UldbN8Fo=
x-amz-request-id: GQ0Y3HMJHRY0MZXT
Date: Sun, 19 Nov 2023 09:22:46 GMT
Access-Control-Allow-Origin: https://driverfinderpro.com
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Expose-Headers: Access-Control-Allow-Origin
Access-Control-Max-Age: 60
Access-Control-Allow-Credentials: true
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-replication-status: COMPLETED
Last-Modified: Mon, 03 Apr 2023 00:01:03 GMT
ETag: "a904660786648ec09c07b3ab3f6a1294"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=60
Content-Encoding: gzip
x-amz-version-id: dsBIz8_ZS04S9W8JJ2QN5g3MgHQnI3D4
Accept-Ranges: bytes
Content-Type: application/json
Server: AmazonS3
Content-Length: 181

s3-us-west-2.amazonaws.com/mfesecure-public/host/driverfinderpro.com/client.json?source=jsmain

52.92.130.240

200 OK

181 B

URL GET HTTP/1.1
s3-us-west-2.amazonaws.com/mfesecure-public/host/driverfinderpro.com/client.json?source=jsmain
IP
52.92.130.240:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subject*.s3-us-west-2.amazonaws.com
Fingerprint29:D7:48:C0:C9:57:6E:93:C1:56:5D:91:7F:98:4A:4F:63:B5:CA:1D
ValidityTue, 10 Oct 2023 00:00:00 GMT - Sat, 03 Aug 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
181 B (181 bytes)
Hash
761e54e6fa8088dd4a4f2f4f8d0a85ee
970965e41eeb3bb062fb3ee29482e2112a5b7e4a
29c5545f5580ada6876041ca82032d8c7085cb1fccd7952b46dfbfe039777bf6

HTTP Headers

GET /mfesecure-public/host/driverfinderpro.com/client.json?source=jsmain HTTP/1.1
Host: s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://driverfinderpro.com
DNT: 1
Connection: keep-alive
Referer: https://driverfinderpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: AFtwzXnnNS0wvnQ1hAdBW2+RqVQCLrywaaEUfSlS7Bh+WwB2yda29XXPTVmpnsk83G1JJpq3i+8=
x-amz-request-id: GQ0PFNZW0DHNVCS5
Date: Sun, 19 Nov 2023 09:22:46 GMT
Access-Control-Allow-Origin: https://driverfinderpro.com
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Expose-Headers: Access-Control-Allow-Origin
Access-Control-Max-Age: 60
Access-Control-Allow-Credentials: true
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-replication-status: COMPLETED
Last-Modified: Mon, 03 Apr 2023 00:01:03 GMT
ETag: "a904660786648ec09c07b3ab3f6a1294"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=60
Content-Encoding: gzip
x-amz-version-id: dsBIz8_ZS04S9W8JJ2QN5g3MgHQnI3D4
Accept-Ranges: bytes
Content-Type: application/json
Server: AmazonS3
Content-Length: 181

cdn.ywxi.net/meter/driverfinderpro.com/202.svg?ts=1680480062040&l=en

143.204.55.124

200 OK

7.3 kB

URL GET HTTP/2
cdn.ywxi.net/meter/driverfinderpro.com/202.svg?ts=1680480062040&l=en
IP
143.204.55.124:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subject*.ywxi.net
Fingerprint48:8D:EB:FC:93:BF:4B:5E:46:1F:2F:50:6D:49:1F:C1:19:B5:61:CF
ValidityMon, 05 Jun 2023 00:00:00 GMT - Wed, 03 Jul 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8260)
Size
7.3 kB (7295 bytes)
Hash
d29e0bcfbcd86d3e7deea04ec5d80385
5e41b41ca542c7c2cac2d73ad85c11ee6d1707b9
74e617923cae53c9ea93b192ab7f817ddfdcf6418bb946dcd4c2b2b616549794

HTTP Headers

GET /meter/driverfinderpro.com/202.svg?ts=1680480062040&l=en HTTP/1.1
Host: cdn.ywxi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://driverfinderpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 7295
date: Sun, 19 Nov 2023 08:46:47 GMT
server: Apache
x-trace: 2B470AA01B3F20F69B81E767A9E88D2DC143E86B76000000000000000000
content-security-policy-report-only: report-uri https://52723791ca12811bfedec52ea4c44290.report-uri.com/r/d/csp/reportOnly; default-src 'self'; script-src * 'unsafe-inline' 'unsafe-eval'; script-src-elem * 'unsafe-inline'; script-src-attr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; style-src-elem * 'unsafe-inline'; style-src-attr 'self' 'unsafe-inline'; img-src * data:; font-src * data:; connect-src *; media-src * blob:; object-src 'none'; frame-src *; frame-ancestors *; form-action 'self'
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
cache-control: public
expires: Sun, 19 Nov 2023 09:46:47 GMT
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: s0eWIXReQbVKaWmq-Si8JzFak1OoBMvaZd8_IDqAu1HoKdzfjSIjDQ==
age: 2159
X-Firefox-Spdy: h2

cdn.ywxi.net/meter/driverfinderpro.com/205.svg?ts=1680480062040&l=en

143.204.55.124

200 OK

7.4 kB

URL GET HTTP/2
cdn.ywxi.net/meter/driverfinderpro.com/205.svg?ts=1680480062040&l=en
IP
143.204.55.124:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subject*.ywxi.net
Fingerprint48:8D:EB:FC:93:BF:4B:5E:46:1F:2F:50:6D:49:1F:C1:19:B5:61:CF
ValidityMon, 05 Jun 2023 00:00:00 GMT - Wed, 03 Jul 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8293)
Size
7.4 kB (7400 bytes)
Hash
d2915d8e6d1b1a695dec64bd15417740
5b0c4660b470b32bb4fec4b59615d9c6a453b057
1a0989896f2933670321396aa9d0581db5ec8bdf3327691ca35f9c4bfa98c8fd

HTTP Headers

GET /meter/driverfinderpro.com/205.svg?ts=1680480062040&l=en HTTP/1.1
Host: cdn.ywxi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://driverfinderpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 7400
date: Sun, 19 Nov 2023 09:22:46 GMT
server: Apache
x-trace: 2B29EA5BA282DC602BBF348AD017B27BA63E93B05A000000000000000000
content-security-policy-report-only: report-uri https://52723791ca12811bfedec52ea4c44290.report-uri.com/r/d/csp/reportOnly; default-src 'self'; script-src * 'unsafe-inline' 'unsafe-eval'; script-src-elem * 'unsafe-inline'; script-src-attr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; style-src-elem * 'unsafe-inline'; style-src-attr 'self' 'unsafe-inline'; img-src * data:; font-src * data:; connect-src *; media-src * blob:; object-src 'none'; frame-src *; frame-ancestors *; form-action 'self'
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
cache-control: public
expires: Sun, 19 Nov 2023 10:22:45 GMT
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LUQx7d2huoOfGS0-pl-qwqffXgXrWXGkQXVgmIw25KjzgdazrM_Gyg==
X-Firefox-Spdy: h2

www.trustedsite.com/rpc/ajax?do=tmjs-visit&host=driverfinderpro.com&rand=1700385767407

100.20.14.222

200 OK

26 B

URL GET HTTP/2
www.trustedsite.com/rpc/ajax?do=tmjs-visit&host=driverfinderpro.com&rand=1700385767407
IP
100.20.14.222:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subject*.trustedsite.com
FingerprintAD:0C:49:BC:83:14:75:71:D4:D1:17:03:87:79:4E:43:72:CA:B5:FF
ValidityThu, 09 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
26 B (26 bytes)
Hash
714941ce444573628d1d7f71369ec475
8abc077c85bdcd2fa69103c0f9253aa4fa0f5400
a4aa9f775af34f63386d8b4d8a14fce2225c317c3f93cbafdeb5a8524eb542a1

HTTP Headers

GET /rpc/ajax?do=tmjs-visit&host=driverfinderpro.com&rand=1700385767407 HTTP/1.1
Host: www.trustedsite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://driverfinderpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 19 Nov 2023 09:22:46 GMT
content-type: text/javascript; charset=utf-8
content-length: 26
set-cookie: AWSALB=buR+aBdxb1UJg8ral99LlluDmWTeTd2WIh/S+N4VIJK9J+YMDkkJiPje/ft7Uxz2RWWL8zNiCOwrn5slbBrHlgoYC8m44SStG1eoEs5e5TNLLz3yo7kpXizTUm3S; Expires=Sun, 26 Nov 2023 09:22:46 GMT; Path=/
AWSALBCORS=buR+aBdxb1UJg8ral99LlluDmWTeTd2WIh/S+N4VIJK9J+YMDkkJiPje/ft7Uxz2RWWL8zNiCOwrn5slbBrHlgoYC8m44SStG1eoEs5e5TNLLz3yo7kpXizTUm3S; Expires=Sun, 26 Nov 2023 09:22:46 GMT; Path=/; SameSite=None; Secure
server: Apache
x-trace: 2B596AC00A9AB28BBF730A94A3CCE5A56D7EB03B44000000000000000000
content-security-policy-report-only: report-uri https://52723791ca12811bfedec52ea4c44290.report-uri.com/r/d/csp/reportOnly; default-src 'self'; script-src * 'unsafe-inline' 'unsafe-eval'; script-src-elem * 'unsafe-inline'; script-src-attr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; style-src-elem * 'unsafe-inline'; style-src-attr 'self' 'unsafe-inline'; img-src * data:; font-src * data:; connect-src *; media-src * blob:; object-src 'none'; frame-src *; frame-ancestors *; form-action 'self'
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
X-Firefox-Spdy: h2

static.driverfinderpro.com/css/mobile.min.css?x73594

54.230.111.68

200 OK

4.3 kB

URL GET HTTP/2
static.driverfinderpro.com/css/mobile.min.css?x73594
IP
54.230.111.68:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectstatic.driverfinderpro.com
FingerprintC2:98:1F:89:F0:C2:A8:0A:D7:F5:8E:0D:04:DF:EF:0C:14:BA:A0:FD
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4280), with no line terminators
Size
4.3 kB (4280 bytes)
Hash
e98dd2fd138dd7dc4e309279b0aa22a7
66caeebec9ca3c98f1b9f82f902af9d149ee554f
075feb3553755896b61cfa37accd719fdf19ebc80fb70e392fef987f7cc30c26

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /css/mobile.min.css?x73594 HTTP/1.1
Host: static.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Wed, 27 Sep 2023 06:18:10 GMT
last-modified: Wed, 01 Dec 2021 18:04:14 GMT
etag: W/"e98dd2fd138dd7dc4e309279b0aa22a7"
cache-control: max-age=31536000
x-amz-meta-cb-modifiedtime: Wed, 01 Dec 2021 18:03:55 GMT
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bBaC3zo23K9E0sE8Ti1cdLgg6FWTMm8_OlS2KGpiGUBeMuP5t6cJUw==
age: 4590275
X-Firefox-Spdy: h2

static.driverfinderpro.com/css/style.min.css?x73594

54.230.111.68

200 OK

24 kB

URL GET HTTP/2
static.driverfinderpro.com/css/style.min.css?x73594
IP
54.230.111.68:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectstatic.driverfinderpro.com
FingerprintC2:98:1F:89:F0:C2:A8:0A:D7:F5:8E:0D:04:DF:EF:0C:14:BA:A0:FD
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (24486), with no line terminators
Size
24 kB (24486 bytes)
Hash
a7c822e0e51f7492453e077823f49733
da4e6cc8051b4b72ae6b0e2bfa3a2fbfe6abfadb
54957f47786280e50596666dbf0f278e9ace3d432d2c30d5db161805450a1cc6

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /css/style.min.css?x73594 HTTP/1.1
Host: static.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Tue, 26 Sep 2023 18:04:16 GMT
last-modified: Wed, 13 Jul 2022 12:15:16 GMT
etag: W/"a7c822e0e51f7492453e077823f49733"
cache-control: max-age=31536000
x-amz-meta-cb-modifiedtime: Fri, 24 Jun 2022 10:03:32 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PoLXNs3erdGqbuqRTTVIvQyNDFUQG9Z7GXPDkQr68v3KKmYQbsCXRA==
age: 4634309
X-Firefox-Spdy: h2

static.driverfinderpro.com/js/dfgdpr.min.js?x73594

54.230.111.68

200 OK

2.7 kB

URL GET HTTP/2
static.driverfinderpro.com/js/dfgdpr.min.js?x73594
IP
54.230.111.68:443
ASN
#16509 AMAZON-02

Requested by
https://driverfinderpro.com/
Certificate
IssuerAmazon
Subjectstatic.driverfinderpro.com
FingerprintC2:98:1F:89:F0:C2:A8:0A:D7:F5:8E:0D:04:DF:EF:0C:14:BA:A0:FD
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (2804), with no line terminators
Size
2.7 kB (2687 bytes)
Hash
84ea638c11a74510923aba4a1c0ce936
8efadeb822ad9483c60404b590518cbf39ce3b56
a265f62a3e88781c4cbcecef2d6d02fc5df4babf66bcf4f8173f7cc6deae8985

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

GET /js/dfgdpr.min.js?x73594 HTTP/1.1
Host: static.driverfinderpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://driverfinderpro.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/x-javascript
date: Thu, 16 Nov 2023 02:37:40 GMT
last-modified: Wed, 25 Aug 2021 14:37:45 GMT
etag: W/"3ab70e348302f28d19779dff4270330c"
cache-control: max-age=31536000
x-amz-meta-cb-modifiedtime: Wed, 25 Aug 2021 14:35:34 GMT
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tltX1ZLdaUsAW-kdhxZLKNuUCoi0KOW1MbegKZl4Kkz6ZRKRz0fdDg==
age: 283505
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by