Report - vxdse.myfreesites.net/

Report Overview

Visited public
2023-10-01 12:27:32
Tags
URL
vxdse.myfreesites.net/
Finishing URL
vxdse.myfreesites.net/
IP / ASN
104.16.22.251
#13335 CLOUDFLARENET
Title
Home

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-30 18:12:02	1.3 kB	2.8 kB	142.250.74.131
149b4.wpc.azureedge.net	113665	2014-01-22	2017-01-30 08:44:56	2023-09-30 23:59:02	468 B	8.4 kB	68.232.34.200
storage.googleapis.com	420	2005-01-25	2012-08-06 08:33:30	2023-10-01 02:06:33	1.5 kB	17 kB	142.250.74.155
in-us-east-event-hubs.servicebus.windows.net	84709	1995-08-10	2017-01-30 08:44:58	2023-09-30 19:39:57	1.6 kB	710 B	13.92.180.208
components.mywebsitebuilder.com	72103	1999-01-03	2018-06-25 13:03:17	2023-09-30 19:39:54	2.3 kB	0 B	0.0.0.0
vxdse.myfreesites.net	unknown	2015-03-23	2018-06-15 22:01:01	2023-09-15 21:14:49	480 B	18 kB	104.16.22.251
localize.sitebuilder.com	302217	1996-03-27	2017-01-30 09:55:54	2023-09-29 01:25:07	444 B	459 B	104.17.209.70

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-09-30	medium	vxdse.myfreesites.net/	Orange

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	From	Size	First Seen	Last Seen
	149b4.wpc.azureedge.net/80149B4/insights/t.js?brand=SiteBuilder&v=g-201911130911388234	ScriptElement	16 kB	2023-03-07	2025-01-24
Pretty URL 149b4.wpc.azureedge.net/80149B4/insights/t.js?brand=SiteBuilder&v=g-201911130911388234 IP 68.232.34.200 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25 Last Seen2025-01-24 12:17 Times Seen86 Hash 300a5b924f9419f690adb5fc25861f13 bdd5e465349ab68e0eb8884a9403580002759785 2579bf25ff2bc8ec6d3c4a2ca278319442013864c0a17bae00684acc71faa1a1 Loading...

	storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/5a743b8109dcfxEKEzDK.js?1577487062	ScriptElement	24 kB	2023-03-17	2023-10-25
Pretty URL storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/5a743b8109dcfxEKEzDK.js?1577487062 IP 142.250.74.155 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:32 Last Seen2023-10-25 01:57 Times Seen4 Hash bb7e2743a2c2adab0b426ce9355fb1be af97fc21229345189e75061da02a4cabfb823313 3964442ec1f074d904b18f73971fe533a17ccbc7e8bcfeccd42384200afcc90d Loading...

	vxdse.myfreesites.net/	ScriptElement	43 B	2023-03-07	2025-03-11
Pretty URL vxdse.myfreesites.net/ IP 104.16.22.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:25 Last Seen2025-03-11 06:26 Times Seen99 Hash 0a0882a2f887e1585d16811aa58742c1 f0a9511863a10b2bfa82f12af4dffbb066d6d6b4 de22b13dd753fdb7b8e031b07c8719fa2db4902cf5a058838d0e6444d10370e8 Loading...

	vxdse.myfreesites.net/	ScriptElement	209 B	2023-03-07	2025-05-01
Pretty URL vxdse.myfreesites.net/ IP 104.16.22.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:25 Last Seen2025-05-01 00:58 Times Seen121 Hash 2bfe929e46d1510143069f50ed83cf74 e7ed721b476bc4a9012cfb6cb836778c1b429445 0b4bf6cdea49347dd862030fee9f057a5e4d213741a0eecfba1adc148439fea9 Loading...

	vxdse.myfreesites.net/	ScriptElement	97 B	2023-03-17	2024-08-21
Pretty URL vxdse.myfreesites.net/ IP 104.16.22.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-17 12:32 Last Seen2024-08-21 07:37 Times Seen4 Hash da945f546ca95228f2291845033b5ea8 80027b1fc891512f0828437e681479bd123916b3 8aee50a86120f0fb16c981772c82021bdd4ecec18286863f158c57ace2ff7364 Loading...

	vxdse.myfreesites.net/	ScriptElement	3.4 kB	2023-03-17	2024-08-21
Pretty URL vxdse.myfreesites.net/ IP 104.16.22.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-17 12:32 Last Seen2024-08-21 07:37 Times Seen4 Hash 18e5a28386c71e1585c1b0f3e597d9b4 2179a22e9fae0ea7bf529c59dfa56184a177f503 9093c83332ff3a0e0212291b0512998b9e8c2c0303aed005a9278649888477bc Loading...

	storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/L6En0NRVXkAvbcqQp31N.js?1577487062	ScriptElement	55 kB	2023-03-17	2023-10-25
Pretty URL storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/L6En0NRVXkAvbcqQp31N.js?1577487062 IP 142.250.74.155 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:32 Last Seen2023-10-25 01:57 Times Seen4 Hash c8469f58b89e774a85e315b4beb950be 67f261b9e501f1ffde69f228a12072f5550de359 55eb6e7ea97779a61d2da3a72daac7c0745dd75a38b448adb1ad0c579eb78bee Loading...

	storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/lQwPTi8IUAxFHc3HZVDX.js?1577487062	ScriptElement	9.0 kB	2023-03-17	2023-10-25
Pretty URL storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/lQwPTi8IUAxFHc3HZVDX.js?1577487062 IP 142.250.74.155 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:32 Last Seen2023-10-25 01:57 Times Seen4 Hash 81ca36656980a4705822eefd9691b465 4895aa49ee8ebf151b9d24475aabf2c549b028c1 5de7cfc24874f50830028637589b32dbbb6740d4765fd7db2531c6e4b4a4a44f Loading...

	vxdse.myfreesites.net/	ScriptElement	857 B	2023-03-17	2024-08-21
Pretty URL vxdse.myfreesites.net/ IP 104.16.22.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-17 12:32 Last Seen2024-08-21 07:37 Times Seen4 Hash c75d3fbfed9e9b1b8d0d65d44d92d414 587ea81abaa8922f3dd2d37e2ad26f744df1c3b2 3a1483ba099c3fc334328c7e44826224049e4b4d42ef2b99c4e8f0b4cf104cef Loading...

	vxdse.myfreesites.net/	ScriptElement	2.1 kB	2023-03-17	2024-08-21
Pretty URL vxdse.myfreesites.net/ IP 104.16.22.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-17 12:32 Last Seen2024-08-21 07:37 Times Seen4 Hash 0fdd56a13c3f0d5040f4992927420192 fe8ff3287aa6a5e2b392a1b04af59496d3098334 6346d9b2ef8dc691a31e94fa77badc5fcc19d52a06a53c7e46d41e01ca86a351 Loading...

HTTP Transactions (17)

URL IP Response Size

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
51697fadde72a2efe385ea02d11d574f
c10823d8e99e83b4d9f3194e33c85cad2894e1d3
00e9954b10bface6bd51e3709c4e652cb730a3719db2c60bc8b54be7b2a0cf7c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Oct 2023 12:27:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
51697fadde72a2efe385ea02d11d574f
c10823d8e99e83b4d9f3194e33c85cad2894e1d3
00e9954b10bface6bd51e3709c4e652cb730a3719db2c60bc8b54be7b2a0cf7c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Oct 2023 12:27:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
51697fadde72a2efe385ea02d11d574f
c10823d8e99e83b4d9f3194e33c85cad2894e1d3
00e9954b10bface6bd51e3709c4e652cb730a3719db2c60bc8b54be7b2a0cf7c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Oct 2023 12:27:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

149b4.wpc.azureedge.net/80149B4/insights/t.js?brand=SiteBuilder&v=g-201911130911388234

68.232.34.200

200 OK

7.9 kB

URL GET HTTP/2
149b4.wpc.azureedge.net/80149B4/insights/t.js?brand=SiteBuilder&v=g-201911130911388234
IP
68.232.34.200:443
ASN
#15133 EDGECAST

Requested by
https://vxdse.myfreesites.net/
Certificate
IssuerDigiCert Inc
Subject*.vo.msecnd.net
Fingerprint0E:7D:A8:CD:FE:61:1E:46:97:A3:57:99:70:DA:E0:59:1D:34:04:80
ValidityFri, 05 May 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (16008), with CRLF line terminators
Size
7.9 kB (7885 bytes)
Hash
300a5b924f9419f690adb5fc25861f13
bdd5e465349ab68e0eb8884a9403580002759785
2579bf25ff2bc8ec6d3c4a2ca278319442013864c0a17bae00684acc71faa1a1

HTTP Headers

GET /80149B4/insights/t.js?brand=SiteBuilder&v=g-201911130911388234 HTTP/1.1
Host: 149b4.wpc.azureedge.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: Origin, Content-Type, Accept, Authorization
access-control-allow-origin: *
age: 9621548
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
date: Sun, 01 Oct 2023 12:27:16 GMT
etag: 1654214482
expires: Mon, 30 Sep 2024 12:27:16 GMT
last-modified: Mon, 12 Jun 2023 03:48:08 GMT
server: ECAcc (ska/F694)
vary: Accept-Encoding
x-aspnetmvc-version: 4.0
x-cache: HIT
content-length: 7885
X-Firefox-Spdy: h2

storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/5a743b8109dcfxEKEzDK.js?1577487062

142.250.74.155

200 OK

6.2 kB

URL GET HTTP/2
storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/5a743b8109dcfxEKEzDK.js?1577487062
IP
142.250.74.155:443
ASN
#15169 GOOGLE

Requested by
https://vxdse.myfreesites.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectstorage.googleapis.com
Fingerprint00:C1:78:FD:9E:4C:46:06:F6:9F:E5:76:7A:80:43:0D:58:E5:CB:02
ValidityMon, 04 Sep 2023 08:25:59 GMT - Mon, 27 Nov 2023 08:25:58 GMT

File type
ASCII text, with very long lines (24242), with no line terminators
Size
6.2 kB (6223 bytes)
Hash
bb7e2743a2c2adab0b426ce9355fb1be
af97fc21229345189e75061da02a4cabfb823313
3964442ec1f074d904b18f73971fe533a17ccbc7e8bcfeccd42384200afcc90d

HTTP Headers

GET /wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/5a743b8109dcfxEKEzDK.js?1577487062 HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-guploader-uploadid: ADPycds9dj-tvpEMwoUnwYSt8aylVyDdyfM3-iK--o_YEmZYEDUQ71j-vQQ1NhtCBqsoRxKZWrGaVMWjwQJBKsdoUTs1qw
date: Sun, 01 Oct 2023 12:27:16 GMT
cache-control: public, max-age=31536000
expires: Mon, 30 Sep 2024 12:27:16 GMT
last-modified: Fri, 02 Feb 2018 10:20:49 GMT
etag: "7ffa5d2335671579f79895c904040dd7"
vary: Accept-Encoding
x-goog-generation: 1517566849113838
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6223
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=C0yN0A==, md5=f/pdIzVnFXn3mJXJBAQN1w==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 6223
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/L6En0NRVXkAvbcqQp31N.js?1577487062

142.250.74.155

200 OK

6.2 kB

URL GET HTTP/2
storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/L6En0NRVXkAvbcqQp31N.js?1577487062
IP
142.250.74.155:443
ASN
#15169 GOOGLE

Requested by
https://vxdse.myfreesites.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectstorage.googleapis.com
Fingerprint00:C1:78:FD:9E:4C:46:06:F6:9F:E5:76:7A:80:43:0D:58:E5:CB:02
ValidityMon, 04 Sep 2023 08:25:59 GMT - Mon, 27 Nov 2023 08:25:58 GMT

File type
Unicode text, UTF-8 text, with very long lines (54959), with no line terminators
Size
6.2 kB (6163 bytes)
Hash
c8469f58b89e774a85e315b4beb950be
67f261b9e501f1ffde69f228a12072f5550de359
55eb6e7ea97779a61d2da3a72daac7c0745dd75a38b448adb1ad0c579eb78bee

HTTP Headers

GET /wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/L6En0NRVXkAvbcqQp31N.js?1577487062 HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-guploader-uploadid: ADPycduCML9DFsn02uIWdga-i8HNiH78xrX5VAbgqqlQ6zxPTziXOipCnBI5c3Gzuz6EST99oQNiDJlymRQeA6E0Mz73cQ
date: Sun, 01 Oct 2023 12:27:16 GMT
cache-control: public, max-age=31536000
expires: Mon, 30 Sep 2024 12:27:16 GMT
last-modified: Fri, 02 Feb 2018 10:20:34 GMT
etag: "9e0230e8a15959df6a3ce5fcfa94f9a0"
vary: Accept-Encoding
x-goog-generation: 1517566834411258
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6163
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=GhFpjA==, md5=ngIw6KFZWd9qPOX8+pT5oA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 6163
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
51697fadde72a2efe385ea02d11d574f
c10823d8e99e83b4d9f3194e33c85cad2894e1d3
00e9954b10bface6bd51e3709c4e652cb730a3719db2c60bc8b54be7b2a0cf7c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Oct 2023 12:27:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/lQwPTi8IUAxFHc3HZVDX.js?1577487062

142.250.74.155

200 OK

1.9 kB

URL GET HTTP/2
storage.googleapis.com/wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/lQwPTi8IUAxFHc3HZVDX.js?1577487062
IP
142.250.74.155:443
ASN
#15169 GOOGLE

Requested by
https://vxdse.myfreesites.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectstorage.googleapis.com
Fingerprint00:C1:78:FD:9E:4C:46:06:F6:9F:E5:76:7A:80:43:0D:58:E5:CB:02
ValidityMon, 04 Sep 2023 08:25:59 GMT - Mon, 27 Nov 2023 08:25:58 GMT

File type
ASCII text, with very long lines (9002), with no line terminators
Size
1.9 kB (1938 bytes)
Hash
81ca36656980a4705822eefd9691b465
4895aa49ee8ebf151b9d24475aabf2c549b028c1
5de7cfc24874f50830028637589b32dbbb6740d4765fd7db2531c6e4b4a4a44f

HTTP Headers

GET /wzukusers/user-31883872/sites/47548457/5a743b70b1595qCQjtE5/lQwPTi8IUAxFHc3HZVDX.js?1577487062 HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-guploader-uploadid: ADPycduHZBU5GbH2aUzLpo62XAasRAjijiiWLd79l1dV7DNQUZKa-4FuTct7freJgaxy_u7GJz_Wu9rfpVC1qjBJDQaG6A
date: Sun, 01 Oct 2023 12:27:16 GMT
cache-control: public, max-age=31536000
expires: Mon, 30 Sep 2024 12:27:16 GMT
last-modified: Fri, 02 Feb 2018 10:20:34 GMT
etag: "13d37160ba7e7d4b1c9a4db89c8bbe9c"
vary: Accept-Encoding
x-goog-generation: 1517566834676663
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1938
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=t9qGYw==, md5=E9NxYLp+fUscmk24nIu+nA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1938
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/publishers/b13e784a-47de-49e1-ab2e-8128c2f20567/messages?timeout=10

13.92.180.208

201 Created

0 B

URL POST HTTP/1.1
in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/publishers/b13e784a-47de-49e1-ab2e-8128c2f20567/messages?timeout=10
IP
13.92.180.208:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://vxdse.myfreesites.net/
Certificate
IssuerMicrosoft Corporation
Subjectservicebus.windows.net
FingerprintE7:83:CE:75:75:5A:CB:0E:31:00:00:DB:84:A0:15:EC:00:CA:B3:BE
ValiditySat, 15 Jul 2023 21:56:33 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /in-us-east-event-hub-a1/publishers/b13e784a-47de-49e1-ab2e-8128c2f20567/messages?timeout=10 HTTP/1.1
Host: in-us-east-event-hubs.servicebus.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: access-control-allow-origin,authorization,content-type
Referer: https://vxdse.myfreesites.net/
Origin: https://vxdse.myfreesites.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 0
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://vxdse.myfreesites.net
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 3600
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: access-control-allow-origin,authorization,content-type
Strict-Transport-Security: max-age=31536000
Date: Sun, 01 Oct 2023 12:27:17 GMT

in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/publishers/b13e784a-47de-49e1-ab2e-8128c2f20567/messages?timeout=10

13.92.180.208

201 Created

0 B

URL POST HTTP/1.1
in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/publishers/b13e784a-47de-49e1-ab2e-8128c2f20567/messages?timeout=10
IP
13.92.180.208:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://vxdse.myfreesites.net/
Certificate
IssuerMicrosoft Corporation
Subjectservicebus.windows.net
FingerprintE7:83:CE:75:75:5A:CB:0E:31:00:00:DB:84:A0:15:EC:00:CA:B3:BE
ValiditySat, 15 Jul 2023 21:56:33 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /in-us-east-event-hub-a1/publishers/b13e784a-47de-49e1-ab2e-8128c2f20567/messages?timeout=10 HTTP/1.1
Host: in-us-east-event-hubs.servicebus.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: SharedAccessSignature sr=https%3A%2F%2Fin-us-east-event-hubs.servicebus.windows.net%2Fin-us-east-event-hub-a1%2Fpublishers%2Fb13e784a-47de-49e1-ab2e-8128c2f20567%2Fmessages&sig=9ea6WUA6u3dD%2Fx0pXbLJ8zUfiIytsfSivNgU70DPwac%3D&se=1696166837.776&skn=Send
Access-Control-Allow-Origin: *
Content-Length: 605
Origin: https://vxdse.myfreesites.net
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 201 Created
Transfer-Encoding: chunked
Content-Type: application/xml; charset=utf-8
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://vxdse.myfreesites.net
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=31536000
Date: Sun, 01 Oct 2023 12:27:17 GMT

components.mywebsitebuilder.com/sitebuilder/favicon-196x196.png

0.0.0.0

0 B

URL GET
components.mywebsitebuilder.com/sitebuilder/favicon-196x196.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://vxdse.myfreesites.net/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sitebuilder/favicon-196x196.png HTTP/1.1
Host: components.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

components.mywebsitebuilder.com/g-201911130911388234/viewer-sitebuilder/viewer.css

0.0.0.0

0 B

URL GET
components.mywebsitebuilder.com/g-201911130911388234/viewer-sitebuilder/viewer.css
IP
0.0.0.0:0
ASN
#0

Requested by
https://vxdse.myfreesites.net/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /g-201911130911388234/viewer-sitebuilder/viewer.css HTTP/1.1
Host: components.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

components.mywebsitebuilder.com/g-201911130911388234/viewer/viewer.js

0.0.0.0

0 B

URL GET
components.mywebsitebuilder.com/g-201911130911388234/viewer/viewer.js
IP
0.0.0.0:0
ASN
#0

Requested by
https://vxdse.myfreesites.net/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /g-201911130911388234/viewer/viewer.js HTTP/1.1
Host: components.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

components.mywebsitebuilder.com/g-201911130911388234/viewer/viewer.js

0.0.0.0

0 B

URL GET
components.mywebsitebuilder.com/g-201911130911388234/viewer/viewer.js
IP
0.0.0.0:0
ASN
#0

Requested by
https://vxdse.myfreesites.net/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /g-201911130911388234/viewer/viewer.js HTTP/1.1
Host: components.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

vxdse.myfreesites.net/

104.16.22.251

200 OK

17 kB

URL User Request GET HTTP/2
vxdse.myfreesites.net/
IP
104.16.22.251:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectmyfreesites.net
Fingerprint6F:B6:8D:0A:91:7D:23:3F:21:DC:0D:E6:8A:D4:1C:AC:46:B8:48:61
ValidityThu, 06 Apr 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6107), with CRLF, LF line terminators
Size
17 kB (17116 bytes)
Hash
f8e3a7d9e43e85d900e0a72a6f9ccebc
9d138a2c732c5c48737d262acb02eb51de37e27d
8b5a3f7df7bb8801ccc979a8b2efbc078c3bccca325c156a90612f21b1c318e7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Orange

HTTP Headers

GET / HTTP/1.1
Host: vxdse.myfreesites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 01 Oct 2023 12:27:15 GMT
content-type: text/html
cf-ray: 80f4b2decb0db509-OSL
cf-cache-status: HIT
last-modified: Fri, 27 Dec 2019 22:51:02 GMT
vary: Accept-Encoding
content-md5: E5NlQA7x0jD/8Jw4WUDuaA==
x-ms-blob-type: BlockBlob
x-ms-creation-time: Fri, 27 Dec 2019 22:51:02 GMT
x-ms-lease-state: available
x-ms-lease-status: unlocked
x-ms-request-id: af97628f-501e-0053-08bc-f30281000000
x-ms-server-encrypted: true
x-ms-version: 2018-03-28
x-worker-version: 1.0.0
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

components.mywebsitebuilder.com/sitebuilder/favicon-16x16.png

0.0.0.0

0 B

URL GET
components.mywebsitebuilder.com/sitebuilder/favicon-16x16.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://vxdse.myfreesites.net/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sitebuilder/favicon-16x16.png HTTP/1.1
Host: components.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

localize.sitebuilder.com/

104.17.209.70

200 OK

29 B

URL GET HTTP/2
localize.sitebuilder.com/
IP
104.17.209.70:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vxdse.myfreesites.net/
Certificate
IssuerLet's Encrypt
Subjectlocalize.sitebuilder.com
Fingerprint44:5F:00:4B:83:41:99:BD:DE:17:18:A2:CE:8F:6D:8B:79:63:AE:F2
ValidityWed, 13 Sep 2023 01:58:25 GMT - Tue, 12 Dec 2023 01:58:24 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
29 B (29 bytes)
Hash
8bb2336aaf56f04c0f915d625cdc10ff
2b4b32504784751cfca6c17b771e01264c1dcaae
ff2121867268518d66db9d6e4cbfea449d582e9a58652bfa6634e568f33a30fd

HTTP Headers

GET / HTTP/1.1
Host: localize.sitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vxdse.myfreesites.net
DNT: 1
Connection: keep-alive
Referer: https://vxdse.myfreesites.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 01 Oct 2023 12:27:17 GMT
content-type: application/javascript
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
last-modified: Sun, 01 Oct 2023 12:27:17 GMT
cf-cache-status: MISS
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80f4b2e85d7a0b61-OSL
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by