{"report_id":"c333d139-297c-474a-83ef-69fb4cbb5f0b","version":6,"status":"done","tags":["pdf"],"date":"2025-11-14T10:31:10Z","url":{"schema":"https","addr":"ecp.wnmu.edu/wp-content/uploads/formidable/75/quickbooks-enterprise-support-phone-number.pdf","fqdn":"ecp.wnmu.edu","domain":"wnmu.edu","tld":"edu"},"ip":{"addr":"3.148.119.72","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"ecp.wnmu.edu/wp-content/uploads/formidable/75/quickbooks-enterprise-support-phone-number.pdf","fqdn":"ecp.wnmu.edu","domain":"wnmu.edu","tld":"edu"},"title":"quickbooks-enterprise-support-phone-number - quickbooks-enterprise-support-phone-number.pdf","dom":{"size":36013,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (11813)","md5":"8c4dd763d03d234a57471ffb84b4a2b5","sha1":"f530705beeeb1dc8fe8f2b7c2572eb320bae204c","sha256":"4b736480e7bb75ea606913588c61123b53a670cf3119107a3b45f0e474f7e179","sha512":"fc774c22d719b7e14ab85b83158f973a29b433c5dae5d38dc52d793dd90a3f73f0a96c74d33ea9208abad69675f6e75c4b69773eb3476c99d6864aedc8381964","ssdeep":"768:ZwdEcupNM9gjO5svaVYcpKfQt+T0hEeshFyM0dUIndpOdwdOd/d0dfLdedUdwdwc:qdgK9gjO5svaVYcpKfQt+T0hEeswdUIW","tlshash":"5ef20ea4a0f50876846344c971dfab2e39c4621b944a09d07f9d8ab70fdfdb56a0f12e","dom_hash":"domhashe682a977a6b4119940f96facefa8428b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"ecp.wnmu.edu/wp-content/uploads/formidable/75/quickbooks-enterprise-support-phone-number.pdf","fqdn":"ecp.wnmu.edu","domain":"wnmu.edu","tld":"edu"},"ip":{"addr":"3.148.119.72","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98","country_code":"zz"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-19T10:31:10Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ecp.wnmu.edu","ip":{"addr":"3.148.119.72","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"1992-01-23","domain_rank":0,"first_seen":"2025-11-13T00:06:44.989884Z","last_seen":"2025-11-13T00:06:44.989884Z","alert_count":0,"request_count":3,"received_data":56985,"sent_data":1465,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":[{"md5":"d589590c92ec0197fc52a1225bc1d9a3","sha1":"3d56ed757af8ceec608f0e86f93cc1872e3e6dd4","sha256":"9d2849f3178e1ef7782c9413178c8518e4f4312b49a7b774266f28c1274a56e7","sha512":"765312988223332b4143279ec657c48d3208a4a0b4c87dcd807e9d24ddfcab1726d7d7f44fc906b562e0b421832432443216cd70493465f3da38d21b3b55327a","magic":"PDF document, version 1.4, 1 page(s)","size":45137,"url":{"schema":"https","addr":"ecp.wnmu.edu/wp-content/uploads/formidable/75/quickbooks-enterprise-support-phone-number.pdf","fqdn":"ecp.wnmu.edu","domain":"wnmu.edu","tld":"edu"},"ip":{"addr":"3.148.119.72","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}}],"telegram":null,"pdfs":[{"url":{"schema":"https","addr":"ecp.wnmu.edu/wp-content/uploads/formidable/75/quickbooks-enterprise-support-phone-number.pdf","fqdn":"ecp.wnmu.edu","domain":"wnmu.edu","tld":"edu"},"ip":{"addr":"3.148.119.72","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"md5":"d589590c92ec0197fc52a1225bc1d9a3","sha1":"3d56ed757af8ceec608f0e86f93cc1872e3e6dd4","sha256":"9d2849f3178e1ef7782c9413178c8518e4f4312b49a7b774266f28c1274a56e7","sha512":"765312988223332b4143279ec657c48d3208a4a0b4c87dcd807e9d24ddfcab1726d7d7f44fc906b562e0b421832432443216cd70493465f3da38d21b3b55327a","magic":"PDF document, version 1.4, 1 page(s)","size":45137,"meta":{"version":"1.4","author":"","title":"quickbooks-enterprise-support-phone-number","subject":"","producer":"Skia/PDF m144 Google Docs Renderer","creator":"","page_count":1},"extracted_urls":null,"alerts":{"urlquery":null,"analyzer":null}}],"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ecp.wnmu.edu/wp-content/uploads/formidable/75/quickbooks-enterprise-support-phone-number.pdf","fqdn":"ecp.wnmu.edu","domain":"wnmu.edu","tld":"edu"},"ip":{"addr":"3.148.119.72","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-14T10:30:49.257Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wnmu.edu","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 31 Oct 2025 17:06:49 GMT","end":"Tue, 07 Jul 2026 16:12:02 GMT"},"fingerprint":{"sha1":"9B:6B:14:DF:4E:81:E7:BB:B0:66:FB:10:10:BC:17:A2:8E:13:AB:5B","sha256":"34:6C:E6:56:FE:2E:F2:3C:3F:75:82:77:D3:1C:5A:70:4F:9A:BF:E5:4B:64:96:98:89:60:60:0F:ED:DB:A2:68"}}},"request":{"raw":"GET /wp-content/uploads/formidable/75/quickbooks-enterprise-support-phone-number.pdf HTTP/1.1\r\nHost: ecp.wnmu.edu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 14 Nov 2025 10:30:50 GMT\r\nServer: Apache\r\nContent-Security-Policy: upgrade-insecure-requests;\r\nLast-Modified: Fri, 14 Nov 2025 09:17:26 GMT\r\nETag: \"b051-6438a774b48f1\"\r\nAccept-Ranges: bytes\r\nContent-Length: 45137\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/pdf\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":45137,"size_decoded":0,"mime_type":"application/pdf","magic":"PDF document, version 1.4, 1 page(s)","md5":"d589590c92ec0197fc52a1225bc1d9a3","sha1":"3d56ed757af8ceec608f0e86f93cc1872e3e6dd4","sha256":"9d2849f3178e1ef7782c9413178c8518e4f4312b49a7b774266f28c1274a56e7","sha512":"765312988223332b4143279ec657c48d3208a4a0b4c87dcd807e9d24ddfcab1726d7d7f44fc906b562e0b421832432443216cd70493465f3da38d21b3b55327a","ssdeep":"768:x5ZGq/pfoZPKyHWmaAd+BFyu6mKeymXfkUy9jkOwH7cDDgiz7lsAJTXvRk940a2P:L3cDUy7lseTZk9ja2CLZPSNYMEk","tlshash":"1113b0b0f5af8c8cfd85c977ca697a9a4e39f167b3cc2085002e4b54e186ed167462c7","first_seen":"2025-11-14T10:31:14.039562Z","last_seen":"2025-11-14T10:31:14.039562Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2802,"timings":{"blocked":1237,"dns":12,"connect":109,"send":0,"wait":109,"receive":218,"ssl":1115},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ecp.wnmu.edu/favicon.ico","fqdn":"ecp.wnmu.edu","domain":"wnmu.edu","tld":"edu"},"ip":{"addr":"3.148.119.72","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"resource://pdf.js/web/viewer.html","date":"2025-11-14T10:30:50.896Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wnmu.edu","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 31 Oct 2025 17:06:49 GMT","end":"Tue, 07 Jul 2026 16:12:02 GMT"},"fingerprint":{"sha1":"9B:6B:14:DF:4E:81:E7:BB:B0:66:FB:10:10:BC:17:A2:8E:13:AB:5B","sha256":"34:6C:E6:56:FE:2E:F2:3C:3F:75:82:77:D3:1C:5A:70:4F:9A:BF:E5:4B:64:96:98:89:60:60:0F:ED:DB:A2:68"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ecp.wnmu.edu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ecp.wnmu.edu/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nDate: Fri, 14 Nov 2025 10:30:50 GMT\r\nServer: Apache\r\nVary: Accept-Encoding,Cookie\r\nLink: \u003chttps://ecp.wnmu.edu/wp-json/\u003e; rel=\"https://api.w.org/\"\r\nX-Redirect-By: WordPress\r\nContent-Security-Policy: upgrade-insecure-requests;\r\nLocation: https://ecp.wnmu.edu/wp-content/uploads/2025/04/WNMUlogo.only-512-150x150.png\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5371,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T12:23:02.643109Z","times_seen":13933290,"resource_available":true,"data":null}},"time_used":571,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":571,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ecp.wnmu.edu/wp-content/uploads/2025/04/WNMUlogo.only-512-150x150.png","fqdn":"ecp.wnmu.edu","domain":"wnmu.edu","tld":"edu"},"ip":{"addr":"3.148.119.72","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"resource://pdf.js/web/viewer.html","date":"2025-11-14T10:30:51.555Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wnmu.edu","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 31 Oct 2025 17:06:49 GMT","end":"Tue, 07 Jul 2026 16:12:02 GMT"},"fingerprint":{"sha1":"9B:6B:14:DF:4E:81:E7:BB:B0:66:FB:10:10:BC:17:A2:8E:13:AB:5B","sha256":"34:6C:E6:56:FE:2E:F2:3C:3F:75:82:77:D3:1C:5A:70:4F:9A:BF:E5:4B:64:96:98:89:60:60:0F:ED:DB:A2:68"}}},"request":{"raw":"GET /wp-content/uploads/2025/04/WNMUlogo.only-512-150x150.png HTTP/1.1\r\nHost: ecp.wnmu.edu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://ecp.wnmu.edu/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 14 Nov 2025 10:30:51 GMT\r\nServer: Apache\r\nContent-Security-Policy: upgrade-insecure-requests;\r\nLast-Modified: Fri, 25 Apr 2025 18:35:16 GMT\r\nETag: \"14fb-6339e987ce11d\"\r\nAccept-Ranges: bytes\r\nContent-Length: 5371\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5371,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit colormap, non-interlaced","md5":"e4480cdeee085ccb2aa2d2cb641f4761","sha1":"b3c6ac709616a5f8d13de4d3852eeadcf5f33fed","sha256":"e35a8c1611d5bce8f8faa16907a985baec3d44d870d3650f7b7d2fa6ede3ce20","sha512":"fbd9b5835a93ad128968b4a822cfb38b573177a5ee6060e0f478eea68bd4795d9aa08694e2c8e8b212899ade93b1e1939bb7d8c7ed13a3edd028f3527577a85d","ssdeep":"96:LSa8G6gsg+wkh4yLCBi8+FzwKRYbQSq466Qs2HvrMRfcce06M3Df93m0Wxqd2huK:+gJkh54IzwKRYcSq4dQhP43e4Df9XWce","tlshash":"98b18d87a33b0056721c9345cb68c965ed5ab36e91448d70cef7ff10e8a6b785c9d412","first_seen":"2025-08-21T12:28:55.911838Z","last_seen":"2025-12-12T16:22:06.928389Z","times_seen":542,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":109,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}