Report - z30.ddns.net/?Result=pDQw

Report Overview

Visited public
2024-08-18 21:00:02
Tags
dyndns
URL
z30.ddns.net/?Result=pDQw
Finishing URL
z30.ddns.net/?Result=pDQw
IP / ASN
34.199.8.144
#14618 AMAZON-AES
Title
ALFASCAN-Reports
Suspicious - DynDNS domain

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Sent	Received	IP
r11.o.lencr.org	unknown	1.3 kB	3.5 kB	23.33.119.57
r10.o.lencr.org	unknown	981 B	2.7 kB	23.36.77.32
z30.ddns.net	unknown	845 B	1.5 kB	34.199.8.144
reports.alfascan.com.eg	unknown	2.0 kB	111 kB	196.204.26.149

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-08-18 20:59:38	medium	Client IP	34.199.8.144	ET INFO DYNAMIC_DNS HTTP Request to a *.ddns .net Domain
2024-08-18 20:59:38	medium	Client IP	34.199.8.144	ET INFO DYNAMIC_DNS HTTP Request to a *.ddns .net Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	reports.alfascan.com.eg/Link2/Scripts/External/jquery.js	ScriptElement	273 kB	2023-03-07	2025-05-03
Pretty URL reports.alfascan.com.eg/Link2/Scripts/External/jquery.js IP 196.204.26.149 ASN #24835 RAYA Telecom - Egypt Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-05-03 02:11 Times Seen770 Hash 91515770ce8c55de23b306444d8ea998 1d85f0f3464e5e49b0522744bf7314e176ac76d9 8ade6740a1d3cfedf81e28d9250929341207b23a55f1be90ccc26cf6d98e052a Loading...

	reports.alfascan.com.eg/Link2/Scripts/bootstrap.min.js	ScriptElement	28 kB	2023-03-07	2025-05-02
Pretty URL reports.alfascan.com.eg/Link2/Scripts/bootstrap.min.js IP 196.204.26.149 ASN #24835 RAYA Telecom - Egypt Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11 Last Seen2025-05-02 18:57 Times Seen117 Hash ace7e36241b07a25f57f1efa44685949 2a3b220f41f572a09fcd70d431bb210ee8dd2828 77784729456d5b714cbf56ab897545efe66fc38f7cdc45ef04d9143c477913df Loading...

	reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw	ScriptElement	0 B	0001-01-01	2025-05-08
Pretty URL reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw IP 196.204.26.149 ASN #24835 RAYA Telecom - Egypt Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-08 06:06 Times Seen4629616 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (14)

URL IP Response Size

r11.o.lencr.org/

23.33.119.57

504 B

URL
r11.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
219f59137337a0ee601729cab5ec83f6
85f2e3496820405559fd526b44b9a915e0009a4f
f9701bf0083b06f4a573774d1a4dd491236216bc08f1006a94ce79144df70a21

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F9701BF0083B06F4A573774D1A4DD491236216BC08F1006A94CE79144DF70A21"
Last-Modified: Sat, 17 Aug 2024 00:55:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3674
Expires: Sun, 18 Aug 2024 22:00:51 GMT
Date: Sun, 18 Aug 2024 20:59:37 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
9fca859eba50e585d7c1550a61d33bc3
a33940f9c83807660f212e5ff511fe28e0413c0d
08afcf8f1ad63cfd72b781cf4c69900e3fd266ee46389de3918570cf5d682f30

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "08AFCF8F1AD63CFD72B781CF4C69900E3FD266EE46389DE3918570CF5D682F30"
Last-Modified: Fri, 16 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5086
Expires: Sun, 18 Aug 2024 22:24:23 GMT
Date: Sun, 18 Aug 2024 20:59:37 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
69a9603269726ce602d708bf57058c4c
8689e9ea81ea9636e7b08c3ed42650553a0c4e3b
1a2339d740b715f3df1900d80114c8376ead57205961a6f896edf37b3ee3a897

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1A2339D740B715F3DF1900D80114C8376EAD57205961A6F896EDF37B3EE3A897"
Last-Modified: Sat, 17 Aug 2024 09:59:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4367
Expires: Sun, 18 Aug 2024 22:12:24 GMT
Date: Sun, 18 Aug 2024 20:59:37 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
18f75729f3e25e2eb7f12b70dfce3849
479177b92dda7c4e8763c80a15cbc71c3386d06c
0b7da2da1fcba23c5118479e14828f87a605a32af15d0962f216115a9ff1d02a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0B7DA2DA1FCBA23C5118479E14828F87A605A32AF15D0962F216115A9FF1D02A"
Last-Modified: Sun, 18 Aug 2024 15:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20665
Expires: Mon, 19 Aug 2024 02:44:02 GMT
Date: Sun, 18 Aug 2024 20:59:37 GMT
Connection: keep-alive

z30.ddns.net/?Result=pDQw

34.199.8.144

200 Found

569 B

URL User Request GET HTTP/1.1
z30.ddns.net/?Result=pDQw
IP
34.199.8.144:80
ASN
#14618 AMAZON-AES

File type
HTML document, ASCII text
Size
569 B (569 bytes)
Hash
d3978a205b5469151a33375c787d4524
919089909e56487e2904480e228245454979de37
e02f0a3a7c36d3a13493a9b1a5585b5dc418e62289be500688c57ed7d73d7936

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.ddns .net Domain

HTTP Headers

GET /?Result=pDQw HTTP/1.1
Host: z30.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 Found
Date: Sun, 18 Aug 2024 20:59:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 569
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

z30.ddns.net/KHgKKjl_popupgoogle.html

34.199.8.144

200 OK

367 B

URL GET HTTP/1.1
z30.ddns.net/KHgKKjl_popupgoogle.html
IP
34.199.8.144:80
ASN
#14618 AMAZON-AES

Requested by
http://z30.ddns.net/?Result=pDQw

File type
HTML document, ASCII text
Size
367 B (367 bytes)
Hash
d4ae4ee1e7155e896f26bd6b975bace2
ff58c7e245d124c3cc8452da9aa1a1f46e5ce065
87b742825f5eafe79e50361855f158ab2c57cb92f325805d81a1cb59a51d20f3

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

NIDS	Severity	Alert
suricata	medium	ET INFO DYNAMIC_DNS HTTP Request to a *.ddns .net Domain

HTTP Headers

GET /KHgKKjl_popupgoogle.html HTTP/1.1
Host: z30.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://z30.ddns.net/?Result=pDQw
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 18 Aug 2024 20:59:38 GMT
Server: Apache
Last-Modified: Mon, 22 Mar 2021 19:27:51 GMT
ETag: "258-5be250fcc8c28-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 367
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html

reports.alfascan.com.eg/link2/Report/visitreports/favicon.ico

196.204.26.149

404 Not Found

1.2 kB

URL GET HTTP/1.1
reports.alfascan.com.eg/link2/Report/visitreports/favicon.ico
IP
196.204.26.149:80
ASN
#24835 RAYA Telecom - Egypt

Requested by
http://z30.ddns.net/?Result=pDQw

File type
HTML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1245 bytes)
Hash
5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f

HTTP Headers

GET /link2/Report/visitreports/favicon.ico HTTP/1.1
Host: reports.alfascan.com.eg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://z30.ddns.net/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sun, 18 Aug 2024 20:59:38 GMT
Content-Length: 1245

r11.o.lencr.org/

23.33.119.27

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4030
Expires: Sun, 18 Aug 2024 22:06:49 GMT
Date: Sun, 18 Aug 2024 20:59:39 GMT
Connection: keep-alive

r11.o.lencr.org/

23.33.119.27

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4030
Expires: Sun, 18 Aug 2024 22:06:49 GMT
Date: Sun, 18 Aug 2024 20:59:39 GMT
Connection: keep-alive

r11.o.lencr.org/

23.33.119.27

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4030
Expires: Sun, 18 Aug 2024 22:06:49 GMT
Date: Sun, 18 Aug 2024 20:59:39 GMT
Connection: keep-alive

reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw

196.204.26.149

200 OK

3.4 kB

URL GET HTTP/1.1
reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw
IP
196.204.26.149:80
ASN
#24835 RAYA Telecom - Egypt

Requested by
http://z30.ddns.net/?Result=pDQw

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
3.4 kB (3426 bytes)
Hash
86bb21ab55ca29521ed5c6105071aaed
00d0bcfb267be7a38a9b8647ee4eebb96cd512f7
7a68e719e1b0c246169c13f8024480e7c99f2dfab8fa886f44b38adf4f7f7b4c

HTTP Headers

GET /link2/Report/visitreports/?Result=pDQw HTTP/1.1
Host: reports.alfascan.com.eg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://z30.ddns.net/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sun, 18 Aug 2024 20:59:40 GMT
Content-Length: 3426

reports.alfascan.com.eg/Link2/Content/bootstrap.min.css

196.204.26.149

200 OK

16 kB

URL GET HTTP/1.1
reports.alfascan.com.eg/Link2/Content/bootstrap.min.css
IP
196.204.26.149:80
ASN
#24835 RAYA Telecom - Egypt

Requested by
http://reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw

File type
ASCII text, with very long lines (64706)
Size
16 kB (16352 bytes)
Hash
02d0e92364084d85628439f52a9aec8c
4a0cb913fd0ccd50db113e936441e47fe362a803
eb0db6e260e25cf040ebb25b874778c7764669d821865fd17d90511873eb55be

HTTP Headers

GET /Link2/Content/bootstrap.min.css HTTP/1.1
Host: reports.alfascan.com.eg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Thu, 08 Jul 2021 13:40:01 GMT
Accept-Ranges: bytes
ETag: "804ef3bffe73d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sun, 18 Aug 2024 20:59:41 GMT
Content-Length: 16352

reports.alfascan.com.eg/Link2/Scripts/bootstrap.min.js

196.204.26.149

200 OK

7.7 kB

URL GET HTTP/1.1
reports.alfascan.com.eg/Link2/Scripts/bootstrap.min.js
IP
196.204.26.149:80
ASN
#24835 RAYA Telecom - Egypt

Requested by
http://reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw

File type
JavaScript source, ASCII text, with very long lines (27605)
Size
7.7 kB (7681 bytes)
Hash
ace7e36241b07a25f57f1efa44685949
2a3b220f41f572a09fcd70d431bb210ee8dd2828
77784729456d5b714cbf56ab897545efe66fc38f7cdc45ef04d9143c477913df

HTTP Headers

GET /Link2/Scripts/bootstrap.min.js HTTP/1.1
Host: reports.alfascan.com.eg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 08 Jul 2021 13:48:14 GMT
Accept-Ranges: bytes
ETag: "023cde5ff73d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sun, 18 Aug 2024 20:59:41 GMT
Content-Length: 7681

reports.alfascan.com.eg/Link2/Scripts/External/jquery.js

196.204.26.149

200 OK

81 kB

URL GET HTTP/1.1
reports.alfascan.com.eg/Link2/Scripts/External/jquery.js
IP
196.204.26.149:80
ASN
#24835 RAYA Telecom - Egypt

Requested by
http://reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw

File type
JavaScript source, ASCII text
Size
81 kB (81137 bytes)
Hash
91515770ce8c55de23b306444d8ea998
1d85f0f3464e5e49b0522744bf7314e176ac76d9
8ade6740a1d3cfedf81e28d9250929341207b23a55f1be90ccc26cf6d98e052a

HTTP Headers

GET /Link2/Scripts/External/jquery.js HTTP/1.1
Host: reports.alfascan.com.eg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://reports.alfascan.com.eg/link2/Report/visitreports/?Result=pDQw
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 08 Jul 2021 13:48:11 GMT
Accept-Ranges: bytes
ETag: "805f3e4ff73d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sun, 18 Aug 2024 20:59:41 GMT
Content-Length: 81137

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (14)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers