Report - hoopheads.org/index.html

Report Overview

Submitted URL
hoopheads.org/index.html
IP
38.113.1.97
ASN
#29873 BIZLAND-SD
Submitted
2022-09-01 21:56:21
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-07T09:43:07Z	328 B	964 B	172.64.155.188
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-07T09:34:07Z	987 B	2.2 kB	93.184.220.29
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-07T05:09:07Z	2.0 kB	5.3 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-07T05:09:06Z	401 B	5.8 kB	143.204.55.110
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-07T05:09:06Z	321 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-07T06:58:15Z	980 B	95 kB	142.250.74.163
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-07T09:49:47Z	439 B	159 kB	142.250.74.163
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-07T09:44:55Z	377 B	1.1 kB	142.250.74.10
hoopheads.org	unknown			4.8 kB	121 kB	38.113.1.97
cdn2.editmysite.com	11564	2012-10-02T20:27:39Z	2023-03-06T20:35:51Z	1.5 kB	242 kB	151.101.85.46
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-07T05:09:07Z	594 B	127 B	52.43.58.150
www.weebly.com	21455	2012-05-21T14:40:56Z	2023-03-06T14:01:50Z	1.1 kB	4.6 kB	74.115.50.110
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-07T07:15:10Z	441 B	746 B	142.250.74.10
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-07T05:09:06Z	758 B	2.7 kB	143.204.55.27
www.google.com	7	2015-05-10T13:11:19Z	2023-03-07T06:15:59Z	368 B	1.2 kB	142.250.74.164
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-07T05:09:22Z	3.2 kB	56 kB	34.120.237.76
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-07T05:09:18Z	4.0 kB	8.4 kB	142.250.74.3
www.editmysite.com	43381	2017-01-29T19:23:39Z	2023-03-06T20:42:35Z	687 B	12 kB	74.115.50.67
maps.googleapis.com	33876	2019-10-17T17:56:16Z	2023-03-07T10:57:18Z	383 B	56 kB	216.58.211.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-01	medium	hoopheads.org/index.html	Malware
2022-09-01	medium	hoopheads.org/index.html	Malware
2022-09-01	medium	hoopheads.org/files/templateArtifacts.js?1590436076	Malware
2022-09-01	medium	hoopheads.org/files/mobile/theme/formelements.png?1590436076	Malware
2022-09-01	medium	hoopheads.org/files/mobile/theme/concrete.png?1590436076	Malware
2022-09-01	medium	hoopheads.org/files/mobile/theme/search-dark.png?1590436076	Malware
2022-09-01	medium	hoopheads.org/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (29)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 08:56:17 Times Seen37035376 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	hoopheads.org/index.html	23 B	2023-03-07	2024-04-18
Pretty URL hoopheads.org/index.html IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:41 Last Seen2024-04-18 10:55:16 Times Seen177 Hash 9c38874ff03199b732e554ac5d16e57e 21f73581cb04ef4d2261a25326d62f3a26dd6aa5 19661648f5429fc450334613db4baadec338413076878891d57053b6e3638d62 Loading...

	hoopheads.org/index.html	35 B	2023-03-07	2024-04-24
Pretty URL hoopheads.org/index.html IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-24 06:59:18 Times Seen2929 Hash 13385ea3f3e6184de3bfa80f08fe938b 6f859a2fd4b7e15ed74990516d97a52e7b4eeb20 5e87d85ec57af5d97b6c0d4c6e766afd2b53d077102827d19625a37d8cd11c2d Loading...

	cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1589934640&	181 kB	2023-03-07	2023-03-17
Pretty URL cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1589934640& IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2023-03-17 12:46:21 Times Seen1 Hash 6d0e19ea5a149c71990a9f7e6ef153dc 0479103bf6dddcec668738f203d69441345e0c3d 9bfb6266418837cf775c1d459a95843d075262619e2c5b2654caaa7773ad3bdc Loading...

	maps.googleapis.com/maps-api-v3/api/js/49/12/map.js	69 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/49/12/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2023-03-17 12:45:47 Times Seen1 Hash 0fec2a26fab59225657bc0cf3a426319 77166a0e5aba83253365ec6fccd45b231ed4321c 6b79d40f3388b0f3e541373294b12cec4be153136d39cc0df49c0721a1116af7 Loading...

	maps.googleapis.com/maps-api-v3/api/js/49/12/infowindow.js	8.2 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/49/12/infowindow.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2023-03-17 12:45:47 Times Seen1 Hash 213192a94d5645692c42e2e94eb76871 6f4bad57900711ebe7857f706f2517226e729870 d22248fe536708f41abb5d0ff563e04110bd022d90f34394ea819fdb58e32da3 Loading...

	www.gstatic.com/recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js	398 kB	2023-03-07	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:04 Last Seen2023-03-17 09:45:40 Times Seen1 Hash 5bce7de1679e3055306a5d7981c33df5 025bde2fc0d17e6b9b84fe859ab1c7615be21c2b 022e00d009d00466a5e5a1317f5bcf3d219e2032cc5b59dbdf4e73bdc7330348 Loading...

	maps.googleapis.com/maps-api-v3/api/js/49/12/common.js	251 kB	2023-03-07	2023-04-19
Pretty URL maps.googleapis.com/maps-api-v3/api/js/49/12/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2023-04-19 18:29:40 Times Seen6 Hash 82dc1903d1627765455c59d20ba39701 9beb56f499d2b263e491889cfe176a41dbccc1b7 f014b0fe9d6d15ab085819248e1b7f2fb5ec74c9b357de6aab9d412a6698242d Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&2sgme-weeblyinc1&7sjl6w7b&10e1&callback=_xdc_._61t3l5&client=gme-weeblyinc1&token=20928	62 B	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&2sgme-weeblyinc1&7sjl6w7b&10e1&callback=_xdc_._61t3l5&client=gme-weeblyinc1&token=20928 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:53 Last Seen2023-03-07 12:05:53 Times Seen1 Hash 82cd46e283c7672e76c96b41b2dc6031 231c73181adafa7c135dddf408579917a635b287 8124b000d7ca6dd2788318ea8aacc2a0c83485d37f501714d75dc0718b782a4a Loading...

	maps.googleapis.com/maps-api-v3/api/js/49/12/controls.js	92 kB	2023-03-07	2023-04-19
Pretty URL maps.googleapis.com/maps-api-v3/api/js/49/12/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2023-04-19 18:29:40 Times Seen5 Hash f620b11611129a3e50e41f652eb17090 7848c8010898c04660d3ea23f080de2147f659f8 5db4b9603ff19dbaf62547d88423a61bf05caff9f1fae4c11b15e6ecdcfbabe7 Loading...

	hoopheads.org/files/templateArtifacts.js?1590436076	7.2 kB	2023-03-07	2024-04-24
Pretty URL hoopheads.org/files/templateArtifacts.js?1590436076 IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2024-04-24 06:59:18 Times Seen3719 Hash ae81ab7069097a055829fb9919258138 7dc529f16fb595bbbfc5937adfe1d0a5cf563f8a 5a630b41e7c3d34392bcb150a5731b6261bc6314d71d5db8407a646af15bf8af Loading...

	hoopheads.org/index.html	1.8 kB	2023-03-07	2024-04-24
Pretty URL hoopheads.org/index.html IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 06:59:18 Times Seen2912 Hash 563cec0ace2baea4e867b491f66cd6b0 fc4451f8fa76c5d1e3714e9008510633cffaa4f7 e4538493fc4f43f93806d0239acac9b38b0453c8440dc5ba4fcb47eae6ab2556 Loading...

	hoopheads.org/index.html	22 B	2023-03-07	2024-04-23
Pretty URL hoopheads.org/index.html IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-23 17:56:26 Times Seen2262 Hash 9a33cbad7c996ea8903a3eb3332a125c 8efed109b301f8aa0f3768dcd824d669d0129741 5d3b8f4578ca89904a46d014a8433346ca2773e8691f6cc9d09b2b30f0802dbc Loading...

	hoopheads.org/index.html	62 B	2023-03-07	2024-04-24
Pretty URL hoopheads.org/index.html IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 06:59:18 Times Seen2924 Hash 461bd236ddeca3b8b6e3cca8599ccb43 73c74d3281452e483c11f944d798738afc7f5b89 aebd4ac1ead5b4987d8b975cafa889ca1a6831175bc206ca9552863e390bc0f1 Loading...

	maps.googleapis.com/maps-api-v3/api/js/49/12/marker.js	37 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/49/12/marker.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2023-03-17 12:45:47 Times Seen1 Hash c970bd7abf6e883a57161b674d7f8fa7 d4d513004e8d0c823ebe1e1b567daa8f0d23d5c2 baa6e76bec3616ef1604701660033060451f69bf62c1a31838ceb3691ede7b80 Loading...

	hoopheads.org/index.html	117 B	2023-03-07	2024-04-24
Pretty URL hoopheads.org/index.html IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 06:59:18 Times Seen2915 Hash ef142665f07ac27f698aa34d471c4439 b9e0d81f97054a9a0a68f57096d992ba58f33184 fbfd3b11452dce82b76e405100aece37dcfe12df4c71fb8f2bc2fe2166e9f07f Loading...

	maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1	168 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1 IP 216.58.211.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:19 Last Seen2023-03-17 09:45:08 Times Seen1 Hash 3cf904aeb38bef3a0b0fb8d1d714764b 4639ff03c23569adebf62221e2ba255f1630dbfc e000ef9caa3f8521048e78fa45f7e7b8a32852d66597aedae2ebde0178e9e2da Loading...

	maps.googleapis.com/maps-api-v3/api/js/49/12/onion.js	27 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/49/12/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2023-03-17 12:45:47 Times Seen1 Hash 0f8614a648e33942cae8a70020335d23 25e19fdc11fabc10e7ec09e6d4b6a7ad0a4c7662 5576ae9ff39545c50feeb305c0d921046cfcfc6d3b2b64789fe1819569197b69 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d41.12088939570546&2d-73.88871931897008&2m2&1d41.13592073277202&2d-73.72773854780561&2u15&4sen-US&5e0&6sm%40616000000&7b0&8e0&12e1&13shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&14b1&callback=_xdc_._d4y38y&client=gme-weeblyinc1&token=15866	14 kB	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d41.12088939570546&2d-73.88871931897008&2m2&1d41.13592073277202&2d-73.72773854780561&2u15&4sen-US&5e0&6sm%40616000000&7b0&8e0&12e1&13shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&14b1&callback=_xdc_._d4y38y&client=gme-weeblyinc1&token=15866 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:53 Last Seen2023-03-07 12:05:53 Times Seen1 Hash 24c8975e6cb6a9ca7be544a373e89d42 7f65170b6dfaafcccd2224b50f1c2a16eadbbb82 744ad91caaf82967238b8410da5cd82a22d8228c436df666fcfb49e5661fc409 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&2sgme-weeblyinc1&7m1&1e0&callback=_xdc_._fbe8ww&client=gme-weeblyinc1&token=46475	62 B	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&2sgme-weeblyinc1&7m1&1e0&callback=_xdc_._fbe8ww&client=gme-weeblyinc1&token=46475 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2023-03-17 10:33:20 Times Seen1 Hash aa3823b462c923e1003ec664e2773565 58484760df5ebbf3849d04695e25f9189ab4e665 37b04198457183732ab4f1891476352935547fa254baf6787a7124510ff5e3e5 Loading...

	hoopheads.org/gdpr/gdprscript.js?buildTime=1589934640&hasRemindMe=true&stealth=false	16 kB	2023-03-07	2023-03-17
Pretty URL hoopheads.org/gdpr/gdprscript.js?buildTime=1589934640&hasRemindMe=true&stealth=false IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:59 Last Seen2023-03-17 12:35:20 Times Seen1 Hash dfde5d03a4b82646ece6b9542a2704c7 fb63d0f0116bd7a46d2dbc98aeb6198cfd09ae8e c7b453a252da81d750873e0e74e2be4bb9fbc5441ddcb14c34f3fedb53a01b66 Loading...

	hoopheads.org/index.html	55 B	2023-03-07	2024-02-12
Pretty URL hoopheads.org/index.html IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:37 Last Seen2024-02-12 22:25:00 Times Seen29 Hash 817a69af191bb378894d925d5266115d c49eff2c4a7fee6e34fe1ace5daa2429f7487d29 1d271904adb81cd9bc0843975ecfc080a202f0194a935a97ee122b174e4ed3dd Loading...

	hoopheads.org/index.html	233 B	2023-03-07	2023-03-07
Pretty URL hoopheads.org/index.html IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:53 Last Seen2023-03-07 21:52:48 Times Seen1 Hash fd02741391f9ca4aaa429748b16a030c 3c719f2d8856c12de626071372fc5a4d5fd7c7de 9dd0552c31caf9dba8e43892c3b145d5a8ebd11b8d237f9bc84acdc1c3a7726d Loading...

	hoopheads.org/index.html	32 B	2023-03-07	2024-04-24
Pretty URL hoopheads.org/index.html IP 38.113.1.97 ASN #29873 BIZLAND-SD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-24 06:59:18 Times Seen2938 Hash 1bca01edca83d94091a2bb38d7ef8183 d05117e4ab3b3461be3855e95813a5c607e3ca95 fcf1cbf5cfad6d605868f42d38a0a937f5e6eaa91b05dcfbbbc95e4c3e23e528 Loading...

	www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=888878050895940983&ineditor=0&control=3&width=auto&height=150px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=-73.8082780&lat=41.1283770&domain=www&point=1&align=2&reseller=true	10 kB	2023-03-07	2023-03-08
Pretty URL www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=888878050895940983&ineditor=0&control=3&width=auto&height=150px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=-73.8082780&lat=41.1283770&domain=www&point=1&align=2&reseller=true IP 74.115.50.67 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:53 Last Seen2023-03-08 07:34:34 Times Seen1 Hash dbc4183631db9ef1b4bcbec27067a4dc 59871fe26fc6f864f612f2850dd462fc599b4a4a 33b03399ba5e1652aa5a3bf80539b29e07ec292617e973aa2c9f98648c0f149f Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js	94 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:53 Last Seen2024-04-24 08:23:17 Times Seen16234 Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf Loading...

	www.google.com/recaptcha/api.js?_=1662069371484	850 B	2023-03-07	2023-03-17
Pretty URL www.google.com/recaptcha/api.js?_=1662069371484 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:04 Last Seen2023-03-17 09:45:40 Times Seen1 Hash 08a22a9561455ef2484e5fafd6d559fb 5b7cd1ba4757453d762e6a5bcfebc180a2feec41 a4ff8f92d9b59d55089a8f75de55bb57a83a9c6a9c981a97b039c4e3a83e79e7 Loading...

	maps.googleapis.com/maps-api-v3/api/js/49/12/util.js	160 kB	2023-03-07	2023-04-19
Pretty URL maps.googleapis.com/maps-api-v3/api/js/49/12/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2023-04-19 18:29:40 Times Seen6 Hash 9a55db23e5ee4a3c69049e669cae3399 e90266ba9584b2d901b6a818dec7fbe2ab81eb9b f6d4a1314948a30ef72a8dc1a11f2165e3b4cf7c33e6016140450ac7ff55941f Loading...

	maps.googleapis.com/maps/vt?pb=!1m4!1m3!1i15!2i9663!3i12269!1m4!1m3!1i15!2i9663!3i12270!1m4!1m3!1i15!2i9664!3i12269!1m4!1m3!1i15!2i9665!3i12269!1m4!1m3!1i15!2i9664!3i12270!1m4!1m3!1i15!2i9665!3i12270!1m4!1m3!1i15!2i9666!3i12269!1m4!1m3!1i15!2i9667!3i12269!1m4!1m3!1i15!2i9666!3i12270!1m4!1m3!1i15!2i9667!3i12270!1m4!1m3!1i15!2i9668!3i12269!1m4!1m3!1i15!2i9668!3i12270!2m3!1e0!2sm!3i616348764!3m17!2sen-US!3sUS!5e18!12m4!1e68!2m2!1sset!2sRoadmap!12m3!1e37!2m1!1ssmartmaps!12m4!1e26!2m2!1sstyles!2zcy50OjMzfHMuZTpsfHAudjpvZmY!4e3!12m1!5b1!23i1379903&callback=_xdc_._b9yli0&client=gme-weeblyinc1&token=119706	5.2 kB	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/vt?pb=!1m4!1m3!1i15!2i9663!3i12269!1m4!1m3!1i15!2i9663!3i12270!1m4!1m3!1i15!2i9664!3i12269!1m4!1m3!1i15!2i9665!3i12269!1m4!1m3!1i15!2i9664!3i12270!1m4!1m3!1i15!2i9665!3i12270!1m4!1m3!1i15!2i9666!3i12269!1m4!1m3!1i15!2i9667!3i12269!1m4!1m3!1i15!2i9666!3i12270!1m4!1m3!1i15!2i9667!3i12270!1m4!1m3!1i15!2i9668!3i12269!1m4!1m3!1i15!2i9668!3i12270!2m3!1e0!2sm!3i616348764!3m17!2sen-US!3sUS!5e18!12m4!1e68!2m2!1sset!2sRoadmap!12m3!1e37!2m1!1ssmartmaps!12m4!1e26!2m2!1sstyles!2zcy50OjMzfHMuZTpsfHAudjpvZmY!4e3!12m1!5b1!23i1379903&callback=_xdc_._b9yli0&client=gme-weeblyinc1&token=119706 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:53 Last Seen2023-03-07 12:05:53 Times Seen1 Hash 7fdfce0ca23fcb725231896fe1161485 d2e2c6c3fa9a9475313f0fde5f396dc9cbedabe4 31466bfa80b121d6c78efb8a467aa7f6b735986168a087b24a22c8c5b921b006 Loading...

HTTP Transactions (58)

URL IP Response Size

hoopheads.org/index.html

38.113.1.97

301 Moved Permanently

240 B

URL HTTP/1.1
hoopheads.org/index.html
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
240 B (240 bytes)
Hash
f71e3ae26453bdf455bc3a38269e6625
a36d16f324cd8288acba6af921175af4cdd5c130
aafca33f46b3b28528df33f95239421eb16c0b1e068f1941d02e7e6f60bb1dc8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /index.html HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Sep 2022 21:56:10 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 240
Connection: keep-alive
Server: Apache/2
Location: https://hoopheads.org/index.html
Cache-Control: max-age=3600
Expires: Thu, 01 Sep 2022 22:56:06 GMT
Age: 4

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7875
Expires: Fri, 02 Sep 2022 00:07:25 GMT
Date: Thu, 01 Sep 2022 21:56:10 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 21:41:25 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rjYZTtUkR6MgDZg9uqSGSGFfF3Kc3Eloc0KjwniIiyI0edpnI1SnFQ==
Age: 885

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Thu, 01 Sep 2022 01:15:17 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nRrZFE__Bc6h-fuLz_ZEohlNx1QFdReU9IKKW8SFrxYFYKFLanI5DA==
age: 74454
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 01 Sep 2022 21:56:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
607b7a37b03444c1b099bf84e550a322
449f4d9109440452e231e499deea532a544839f2
b728e78ad316ed1d133864179301c408d663105a3be75dba25f19d01f790dd5d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 01:58:35 GMT
Expires: Tue, 06 Sep 2022 01:58:34 GMT
Etag: "449f4d9109440452e231e499deea532a544839f2"
Cache-Control: max-age=359543,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7441411e8b880b06-OSL

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 01 Sep 2022 20:57:05 GMT
Expires: Thu, 01 Sep 2022 21:07:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pcCtO3gOT-0DJM1xqsu7iKPLKZ2AR_Z6K43xm9Bjl81Gp7vda5l0Cw==
Age: 3545

hoopheads.org/index.html

38.113.1.97

200 OK

14 kB

URL HTTP/1.1
hoopheads.org/index.html
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (913)
Size
14 kB (14272 bytes)
Hash
e9212471ce9c7e70ca0e8d539ffa6a76
fa48dc2fb73b88af0e37fca40fcd44378471fda8
61bf50208f19a3fac8841c5a3d813c877f5ae57baf5194e4ec29270abeb9ca0b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /index.html HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14272
Connection: keep-alive
Server: Apache/2
Last-Modified: Tue, 26 May 2020 01:50:51 GMT
ETag: "37c0-5a683533f53b8"
Accept-Ranges: bytes
Cache-Control: max-age=3600
Expires: Thu, 01 Sep 2022 22:56:06 GMT
Age: 4

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2eb022bbcb69557dc09477b624814e87
6030f2c630a01fbc027c887d31e696f84cc60c97
d7a508e276f0ca1b58b6af39720fb7ebb26fb38df50a159eb82d1d2542610b85

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6041
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:11 GMT
Last-Modified: Thu, 01 Sep 2022 20:15:30 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1589934640&

151.101.85.46

200 OK

33 kB

URL HTTP/2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1589934640&
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Size
33 kB (32802 bytes)
Hash
40ee71f2f2de93b9561845efa9a0cbbc
13451e3fb165d1ad524d9863d8344eab4a2fe353
41a33daf28fc89ce06f3c6a6029d078c20a0f42f07d6ec3dc7127d206dcec5fe

HTTP Headers

GET /js/lang/en/stl.js?buildTime=1589934640& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 17:51:19 GMT
etag: "63051397-2c44e"
expires: Wed, 07 Sep 2022 09:59:59 GMT
cache-control: max-age=1209600
x-host: grn82.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 21:56:11 GMT
age: 734171
x-served-by: cache-sjc10073-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662069371.197462,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32802
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
59bdc2e0a449c6388eb0c96da3586600
c61d2414961c4f05c9bcf400d6a1d9792fbe9093
2b3c911dddbf9fad01ea3232354ac2f0e6731541ab3a7e916ef09682dd43cf4e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
59bdc2e0a449c6388eb0c96da3586600
c61d2414961c4f05c9bcf400d6a1d9792fbe9093
2b3c911dddbf9fad01ea3232354ac2f0e6731541ab3a7e916ef09682dd43cf4e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn2.editmysite.com/css/mobile-sites.css?buildTime=1589934640

151.101.85.46

200 OK

5.5 kB

URL HTTP/2
cdn2.editmysite.com/css/mobile-sites.css?buildTime=1589934640
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (34780)
Size
5.5 kB (5510 bytes)
Hash
1f25d71190b0c7d6240b54835d913325
9a319c610d496a3d4894687c3bbe806bf49f06cf
f952e00bab919c754552dbfd587be23ff659be36c6073860a2aded536a8c7ac8

HTTP Headers

GET /css/mobile-sites.css?buildTime=1589934640 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 Aug 2022 20:43:12 GMT
etag: W/"6303ea60-87dd"
expires: Tue, 06 Sep 2022 11:08:16 GMT
cache-control: max-age=1209600
x-host: blu115.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 21:56:11 GMT
age: 816474
x-served-by: cache-sjc10025-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662069371.201941,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5510
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/sites.css?buildTime=1589934640

151.101.85.46

200 OK

30 kB

URL HTTP/2
cdn2.editmysite.com/css/sites.css?buildTime=1589934640
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29746 bytes)
Hash
d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e

HTTP Headers

GET /css/sites.css?buildTime=1589934640 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 29 Aug 2022 23:13:51 GMT
etag: W/"630d482f-347ac"
expires: Tue, 13 Sep 2022 10:21:58 GMT
cache-control: max-age=1209600
x-host: grn82.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 21:56:11 GMT
age: 214453
x-served-by: cache-sjc10057-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1662069371.204179,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/main-mobile.js?buildTime=1589934640

151.101.85.46

200 OK

171 kB

URL HTTP/2
cdn2.editmysite.com/js/site/main-mobile.js?buildTime=1589934640
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32034)
Size
171 kB (171128 bytes)
Hash
0bd49ed4fba0cfe7e5470f9ddb3ca45c
760979559f546f0e67c4bd526ed7f1d52ec53de4
a6d5e5736e839c9c5a7ed9f7102c0847e73b459cefed29f0790724aa9acec517

HTTP Headers

GET /js/site/main-mobile.js?buildTime=1589934640 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 17:52:38 GMT
etag: "630513e6-92cf4"
expires: Wed, 07 Sep 2022 09:47:04 GMT
cache-control: max-age=1209600
x-host: grn17.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 21:56:11 GMT
age: 734947
x-served-by: cache-sjc10059-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662069371.197947,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 171128
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
59bdc2e0a449c6388eb0c96da3586600
c61d2414961c4f05c9bcf400d6a1d9792fbe9093
2b3c911dddbf9fad01ea3232354ac2f0e6731541ab3a7e916ef09682dd43cf4e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
59bdc2e0a449c6388eb0c96da3586600
c61d2414961c4f05c9bcf400d6a1d9792fbe9093
2b3c911dddbf9fad01ea3232354ac2f0e6731541ab3a7e916ef09682dd43cf4e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

52.43.58.150

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.58.150:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Zj1tQR0u0tWb1sLsECRaHw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qjmYq8GVDBqSXKJlcV8nA4sXzjM=

hoopheads.org/files/templateArtifacts.js?1590436076

38.113.1.97

200 OK

7.2 kB

URL HTTP/1.1
hoopheads.org/files/templateArtifacts.js?1590436076
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
exported SGML document, ASCII text, with very long lines (1630)
Size
7.2 kB (7160 bytes)
Hash
ae81ab7069097a055829fb9919258138
7dc529f16fb595bbbfc5937adfe1d0a5cf563f8a
5a630b41e7c3d34392bcb150a5731b6261bc6314d71d5db8407a646af15bf8af

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/templateArtifacts.js?1590436076 HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:11 GMT
Content-Type: application/x-javascript
Content-Length: 7160
Connection: keep-alive
Server: Apache/2
Last-Modified: Thu, 08 Mar 2018 22:16:11 GMT
ETag: "1bf8-566ee05f77887"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Fri, 02 Sep 2022 01:22:35 GMT
Age: 2016

hoopheads.org/files/mobile/main_style.css?1590436076%20title=

38.113.1.97

200 OK

42 kB

URL HTTP/1.1
hoopheads.org/files/mobile/main_style.css?1590436076%20title=
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
Unicode text, UTF-8 text, with very long lines (1259)
Size
42 kB (42332 bytes)
Hash
91391b62f14c76eda2458bd4af1677a3
816abff2b2139da1c05e7ccc1f481b53cf004c3b
20e659f29c02b50229cea74fcebd06878d2e410a0c435339edf93c3547b766bf

HTTP Headers

GET /files/mobile/main_style.css?1590436076%20title= HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:11 GMT
Content-Type: text/css
Content-Length: 42332
Connection: keep-alive
Server: Apache/2
Last-Modified: Mon, 25 May 2020 19:48:07 GMT
ETag: "a55c-5a67e420142e7"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Fri, 02 Sep 2022 01:56:11 GMT
Age: 0

hoopheads.org/gdpr/gdprscript.js?buildTime=1589934640&hasRemindMe=true&stealth=false

38.113.1.97

200 OK

16 kB

URL HTTP/1.1
hoopheads.org/gdpr/gdprscript.js?buildTime=1589934640&hasRemindMe=true&stealth=false
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
HTML document text\012- HTML document text\012- C source, ASCII text, with very long lines (14060)
Size
16 kB (15890 bytes)
Hash
dfde5d03a4b82646ece6b9542a2704c7
fb63d0f0116bd7a46d2dbc98aeb6198cfd09ae8e
c7b453a252da81d750873e0e74e2be4bb9fbc5441ddcb14c34f3fedb53a01b66

HTTP Headers

GET /gdpr/gdprscript.js?buildTime=1589934640&hasRemindMe=true&stealth=false HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:11 GMT
Content-Type: text/javascript;
Content-Length: 15890
Connection: keep-alive
Server: Apache/2
X-Powered-By: PHP/5.5.22
X-DS-Version: 1627228505
Age: 0

hoopheads.org/uploads/3/4/5/2/34523520/2353863.jpg?315

38.113.1.97

200 OK

13 kB

URL HTTP/1.1
hoopheads.org/uploads/3/4/5/2/34523520/2353863.jpg?315
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 77x77, segment length 16, baseline, precision 8, 314x183, components 3\012- data
Size
13 kB (13060 bytes)
Hash
a900c4a55496837c638ca5e19249c150
1c7140d13e8a79cd5aaa5e9ae11bf2edec9f6ec9
940fe382c5bb8f215da56e493aff7e216ab0dfb744fe8de1769c4ed08c6df951

HTTP Headers

GET /uploads/3/4/5/2/34523520/2353863.jpg?315 HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:11 GMT
Content-Type: image/jpeg
Content-Length: 13060
Connection: keep-alive
Server: Apache/2
Last-Modified: Thu, 18 Feb 2016 22:33:28 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "3304-52c12f49aaa47"
Expires: Thu, 01 Sep 2022 22:04:47 GMT
Age: 13884

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hoopheads.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:20 GMT
expires: Tue, 29 Aug 2023 18:53:20 GMT
cache-control: public, max-age=31536000
age: 270172
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

142.250.74.163

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Size
48 kB (47952 bytes)
Hash
17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd

HTTP Headers

GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hoopheads.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:59:14 GMT
expires: Tue, 29 Aug 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 269818
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hoopheads.org/files/mobile/theme/concrete-overlay.png?1590436076

38.113.1.97

200 OK

11 kB

URL HTTP/1.1
hoopheads.org/files/mobile/theme/concrete-overlay.png?1590436076
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
11 kB (10576 bytes)
Hash
52ce28f8a8c47893955e1872996168cb
7637c9302ce9299f7bb8851271776da4630e9169
28db0d0b813953cab86eb57415652fcc1a700870ddebbbff517968d2036d7945

HTTP Headers

GET /files/mobile/theme/concrete-overlay.png?1590436076 HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/files/mobile/main_style.css?1590436076%20title=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:11 GMT
Content-Type: image/png
Content-Length: 10576
Connection: keep-alive
Server: Apache/2
Last-Modified: Thu, 21 May 2015 22:16:04 GMT
ETag: "2950-5169ee3afa4a7"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Fri, 02 Sep 2022 01:56:12 GMT
Age: 0

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hoopheads.org/files/mobile/theme/formelements.png?1590436076

38.113.1.97

200 OK

1.6 kB

URL HTTP/1.1
hoopheads.org/files/mobile/theme/formelements.png?1590436076
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
PNG image data, 44 x 44, 8-bit colormap, non-interlaced\012- data
Size
1.6 kB (1577 bytes)
Hash
d833f2cb60e5e1f4f7d043db0fc79060
d9bc8aa2516290ece09f4cb6d6c520eb5dca5205
b641147ac03ec6b1f5b3f2dfe88705740559bec4dec99f8ae2ed18f6eb0afc71

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/mobile/theme/formelements.png?1590436076 HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/files/mobile/main_style.css?1590436076%20title=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:12 GMT
Content-Type: image/png
Content-Length: 1577
Connection: keep-alive
Server: Apache/2
Last-Modified: Thu, 21 May 2015 22:16:04 GMT
ETag: "629-5169ee3b2eead"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Fri, 02 Sep 2022 01:56:12 GMT
Age: 0

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67921e2bd7c620bdd4db5ed1e73d3146
1deaa030ab490c63f94bde4c7ada5e2f849fb506
7fcee2496cdc63c9779941621d9e61acd006910947ccb6c7e98f383b0bf4574c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?_=1662069371484

142.250.74.164

200 OK

555 B

URL HTTP/2
www.google.com/recaptcha/api.js?_=1662069371484
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
555 B (555 bytes)
Hash
20ea0fc27ddf01e53ed8882484fc01de
0ab2af2f82275ff31c78701aeaad55f702ac8a40
f6bd5bccba08ad51ba7be815ff11f12155c7f507a37c690075b3e01dc25d6fcd

HTTP Headers

GET /recaptcha/api.js?_=1662069371484 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Thu, 01 Sep 2022 21:56:12 GMT
date: Thu, 01 Sep 2022 21:56:12 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dc076b754adaddcb000f3f987b6c5df2
01e9b40591692b8b2a6a94729e9481c7e600d248
9dbf2e71e1cbad91a71154b729e8ef496eda7544828a8bfd4f64e6dd70c4f64d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hoopheads.org/files/mobile/theme/concrete.png?1590436076

38.113.1.97

200 OK

10 kB

URL HTTP/1.1
hoopheads.org/files/mobile/theme/concrete.png?1590436076
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
10 kB (10500 bytes)
Hash
c1ffa6ad41d0265c849c423b7a5c81f4
f58da61b0761beaabfe4df3a3fd013864a7af912
c71093c5fc2d6d73fa14dfaf64a0667277b7538470be70cac1c366db62945270

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/mobile/theme/concrete.png?1590436076 HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/files/mobile/main_style.css?1590436076%20title=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:12 GMT
Content-Type: image/png
Content-Length: 10500
Connection: keep-alive
Server: Apache/2
Last-Modified: Thu, 21 May 2015 22:16:04 GMT
ETag: "2904-5169ee3b027b3"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Fri, 02 Sep 2022 01:56:12 GMT
Age: 0

hoopheads.org/files/mobile/theme/search-dark.png?1590436076

38.113.1.97

200 OK

1.2 kB

URL HTTP/1.1
hoopheads.org/files/mobile/theme/search-dark.png?1590436076
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
PNG image data, 40 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1216 bytes)
Hash
3af9ff37a4593746f3c6e84044cdd4bd
f1572ff494afab943dcee291ca3ea1cf0d5402cd
f43bf4f4a03d6241472f6288a6842de4b4e25c34a7c0fb9a7ba840ce31dbef1b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/mobile/theme/search-dark.png?1590436076 HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/files/mobile/main_style.css?1590436076%20title=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:12 GMT
Content-Type: image/png
Content-Length: 1216
Connection: keep-alive
Server: Apache/2
Last-Modified: Thu, 21 May 2015 22:16:04 GMT
ETag: "4c0-5169ee3b8fe3f"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Fri, 02 Sep 2022 01:56:12 GMT
Age: 0

www.gstatic.com/recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js

142.250.74.163

200 OK

158 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (613)
Size
158 kB (157730 bytes)
Hash
d27f59fd0d124cb313fe64dd5ba8b26c
05da0ecd3970a5a568305a51f1e38945cca7ab39
09b3f5846ef9e14fd2fb99c280cee6a25fc4c7c96e050e70cc754a96625de485

HTTP Headers

GET /recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hoopheads.org
Connection: keep-alive
Referer: https://hoopheads.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157730
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 16:27:28 GMT
expires: Tue, 29 Aug 2023 16:27:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 04:01:21 GMT
content-type: text/javascript
age: 278924
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3e3ab5ac3f5a6e6e9280be15808cec34
2f617a1b1c5e23ad7c6dc0860cbd7321d623aedf
d8aab176ba437978c41363c49edf7f08825ece839bf74accafade0f4a8d2b796

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1861
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:12 GMT
Last-Modified: Thu, 01 Sep 2022 21:25:11 GMT
Server: ECS (amb/6B7B)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12846
Expires: Fri, 02 Sep 2022 01:30:18 GMT
Date: Thu, 01 Sep 2022 21:56:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12846
Expires: Fri, 02 Sep 2022 01:30:18 GMT
Date: Thu, 01 Sep 2022 21:56:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12846
Expires: Fri, 02 Sep 2022 01:30:18 GMT
Date: Thu, 01 Sep 2022 21:56:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12846
Expires: Fri, 02 Sep 2022 01:30:18 GMT
Date: Thu, 01 Sep 2022 21:56:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12846
Expires: Fri, 02 Sep 2022 01:30:18 GMT
Date: Thu, 01 Sep 2022 21:56:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10015 bytes)
Hash
25983224daee47c629690b65e7db685b
6f144e4e28ba6dfb56860b187a224cfbc23b50bb
2ada67937844f22cf524d39cf034ae5e49dd892c4b2e70af31cec62c747e3762

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10015
x-amzn-requestid: 28b44607-90c3-42b0-9a47-5ffd4f670347
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLlfGBqIAMFWqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-38788fd737d1b6a35acc1fee;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ewn6Zur0bM9apclbO-0bIZV6NbnBIGAxuUtPQZBq-2f-SERyxA_w3Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:51 GMT
etag: "6f144e4e28ba6dfb56860b187a224cfbc23b50bb"
content-type: image/jpeg
age: 1101
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb286723e-5b07-4b35-8224-cdbe76a32724.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.6 kB (2625 bytes)
Hash
225b8d6b006bc34721fd5f986b3fb6f6
7b7e20e3036e32798cbcc251dacc89ac93085e4d
87b2404ad60df3c4421c4b1fae2d2c4c8391aec7ce809da223642fc0375044cd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb286723e-5b07-4b35-8224-cdbe76a32724.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2625
x-amzn-requestid: 45e03380-927b-4bc2-b53f-af2df7d8380c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLlfHq5IAMFQxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-5aa105d34993ee034a18138e;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mPZC6Uuds4HDELnIhEAXe11QTYpEDgrjQT6_lBHiyiB5QnUFJjMfOw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:51 GMT
age: 1101
etag: "7b7e20e3036e32798cbcc251dacc89ac93085e4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9642 bytes)
Hash
d0c1e7f6c9e17585905fdbe9ae4da50b
67192f5be476ac4dada66dc9fbe26469d62e2d78
21ca880b36bbb7791f8df2bf9830f11a960692123dd6dde5be42bda004dc428b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9642
x-amzn-requestid: 52c698d7-6419-4614-9c53-68a265266337
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbEvgoAMFkKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-547a72850cce71da013383f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: I3pDTq3EeJJtzJFsAFaym7cV5nCrwFailDRzgA3QkAFOYj3xV43v2w==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
etag: "67192f5be476ac4dada66dc9fbe26469d62e2d78"
content-type: image/jpeg
age: 1126
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0462-8823-4971-b883-caf554e900df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8381 bytes)
Hash
62010c86472d14f87499b41dc46c12e4
d15de8ceb6fef98b46a87aec2e071c909efd2973
0fd93286e0381c85fa0db6cca62c4736b7a3837efcd035d25f7a4d948d9a0af0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0462-8823-4971-b883-caf554e900df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8381
x-amzn-requestid: fcfbb9fb-66bd-40db-9088-d7c6110675bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbGLToAMF6Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-75d4a2991a1bbf266e81c2e2;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _HYMbSu2Xdv2-CWi2SPHdhsGCkJbarEhaO0l3jmBjNaKYuaoZAUgyA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
etag: "d15de8ceb6fef98b46a87aec2e071c909efd2973"
content-type: image/jpeg
age: 1126
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409dfca9-6638-46e3-bd6c-98a42f043bc4.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9040 bytes)
Hash
a6c03a9391cf529bf7354ef49730bf29
05e3b1ca0471c4a754beefd5fa5cf88b8d86c141
c0f03851ec2bb7dce175820e2d89112d4149c2bedee10b82ea7a751ca0fdc134

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409dfca9-6638-46e3-bd6c-98a42f043bc4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9040
x-amzn-requestid: 24ba8357-3dbc-4609-8998-a358d3b4c4cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLleHKxIAMFqFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-2b67e5bd14e08d5c3ccf352f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LyGeYOyhuVfBGe8YYic7WNZAkn5t5g9XSldntgG11pVJa7N1r7zHSA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:51 GMT
age: 1101
etag: "05e3b1ca0471c4a754beefd5fa5cf88b8d86c141"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10435 bytes)
Hash
955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
age: 1126
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

hoopheads.org/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]

38.113.1.97

200 OK

348 B

URL HTTP/1.1
hoopheads.org/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP
38.113.1.97:0
ASN
#29873 BIZLAND-SD

File type
JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size
348 B (348 bytes)
Hash
a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: hoopheads.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://hoopheads.org
Connection: keep-alive
Referer: https://hoopheads.org/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:12 GMT
Content-Type: application/json
Content-Length: 348
Connection: keep-alive
Server: Apache/2
X-Powered-By: PHP/5.5.22
Vary: X-W-SSL,User-Agent
X-Host: blu93.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
X-DS-Version: 1627228505
Age: 0

www.weebly.com/weebly/apps/generateMap.php?map=google&elementid=888878050895940983&ineditor=0&control=3&width=auto&height=150px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=-73.8082780&lat=41.1283770&domain=www&point=1&align=2&reseller=true

74.115.50.110

302 Found

0 B

URL HTTP/1.1
www.weebly.com/weebly/apps/generateMap.php?map=google&elementid=888878050895940983&ineditor=0&control=3&width=auto&height=150px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=-73.8082780&lat=41.1283770&domain=www&point=1&align=2&reseller=true
IP
74.115.50.110:0
ASN
#27647 WEEBLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /weebly/apps/generateMap.php?map=google&elementid=888878050895940983&ineditor=0&control=3&width=auto&height=150px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=-73.8082780&lat=41.1283770&domain=www&point=1&align=2&reseller=true HTTP/1.1
Host: www.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Thu, 01 Sep 2022 21:56:12 GMT
Server: Apache
Location: https://www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=888878050895940983&ineditor=0&control=3&width=auto&height=150px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=-73.8082780&lat=41.1283770&domain=www&point=1&align=2&reseller=true
X-Host: blu105.sf2p.intern.weebly.net
Vary: User-Agent
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 0
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-W-DC: SFO
Set-Cookie: sto-id-editor=AEHLBNAK; Domain=weebly.com; Path=/

www.weebly.com/uploads/reseller/assets/1001-favicon.ico

74.115.50.110

404 Not Found

3.7 kB

URL HTTP/1.1
www.weebly.com/uploads/reseller/assets/1001-favicon.ico
IP
74.115.50.110:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (368)
Size
3.7 kB (3739 bytes)
Hash
2eeb3e560ca8f369be20ceb5858a4701
6c53e6b66c1bc6d0b93116e14fb79c30424bf36c
ac2d9485acf7e9c29d94d31f19d3aedda958cd4f6119ddc888fbbde52d6078dd

HTTP Headers

GET /uploads/reseller/assets/1001-favicon.ico HTTP/1.1
Host: www.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 01 Sep 2022 21:56:12 GMT
Content-Type: text/html
Content-Length: 3739
Connection: keep-alive
ETag: "61c39c46-e9b"
X-Host: blu71.sf2p.intern.weebly.net
X-W-DC: SFO

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c63e81063eadd2831bb91740c3ac2d3a
6c6821654eaf13e5ed8f3d2a0c39fbd1c4e21682
92c63caf278dc258bdcea1715645957ba8838e01d9b89d099c20792a6998ed47

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 363
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:13 GMT
Last-Modified: Thu, 01 Sep 2022 21:50:10 GMT
Server: ECS (amb/6B8C)
X-Cache: HIT
Content-Length: 471

www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=888878050895940983&ineditor=0&control=3&width=auto&height=150px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=-73.8082780&lat=41.1283770&domain=www&point=1&align=2&reseller=true

74.115.50.67

200 OK

12 kB

URL HTTP/1.1
www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=888878050895940983&ineditor=0&control=3&width=auto&height=150px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=-73.8082780&lat=41.1283770&domain=www&point=1&align=2&reseller=true
IP
74.115.50.67:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (827)
Size
12 kB (11575 bytes)
Hash
b59a084ceb9f5f8a5ba1fabfd1e9d269
e1c1a8630af8273e7503a255f4fcb6c197abdaed
ed387984c49330e91b59dfe450d89c265c8b82456877636862dba8b2db6b4797

HTTP Headers

GET /ajax/apps/generateMap.php?map=google&elementid=888878050895940983&ineditor=0&control=3&width=auto&height=150px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=-73.8082780&lat=41.1283770&domain=www&point=1&align=2&reseller=true HTTP/1.1
Host: www.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hoopheads.org/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 21:56:13 GMT
Server: Apache
X-Host: grn125.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 11575
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-W-DC: SFO
Set-Cookie: sto-id-designer=HEFPBMAK; Domain=editmysite.com; Path=/

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1

216.58.211.10

200 OK

55 kB

URL HTTP/2
maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2492)
Size
55 kB (55045 bytes)
Hash
fdbd5f9d5f4eab9db788c5b0c7212c64
e34222c9fde6dc122b7ae25e54f131315ff79519
bd580f9a01d5136d31d9feecfee131fb75a75119a6a65858d4d6d442e7276a2c

HTTP Headers

GET /maps/api/js?v=3&client=gme-weeblyinc1 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.editmysite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 01 Sep 2022 21:56:13 GMT
expires: Thu, 01 Sep 2022 22:26:13 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55045
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=17
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 21:56:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Open+Sans:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 21:56:11 GMT
date: Thu, 01 Sep 2022 21:56:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js

142.250.74.10

200 OK

0 B

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hoopheads.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Aug 2022 09:37:50 GMT
expires: Sun, 27 Aug 2023 09:37:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 476301
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (29)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP