Report - aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=aula.ula.edu.mx/course/view.php?id=1

Report Overview

Submitted URL
aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=aula.ula.edu.mx/course/view.php?id=1
IP
143.204.55.64
ASN
#16509 AMAZON-02
Submitted
2022-12-15 19:30:59
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	1.9 kB	54.230.245.110
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T05:09:25Z	3.8 kB	54 kB	34.120.237.76
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-09T07:25:22Z	384 B	70 kB	143.204.55.46
aula.ula.edu.mx	unknown	2022-12-05T06:21:07Z	2023-03-07T17:23:07Z	14 kB	2.3 MB	143.204.55.23
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T05:22:46Z	341 B	797 B	93.184.220.29
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	343 B	700 B	142.250.74.131
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	52.89.255.30
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-09T05:17:26Z	377 B	5.0 kB	54.230.111.66
in.hotjar.com	1746	2018-10-22T19:15:59Z	2023-03-09T05:17:27Z	484 B	287 B	34.243.128.180
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	1.4 kB	3.5 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking
2022-11-24	medium	aula.ula.edu.mx/	Westpac Institutional Banking

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	aula.ula.edu.mx/lib/javascript.php/1670923702/lib/requirejs/require.min.js	18 kB	2023-03-07	2024-04-17
Pretty URL aula.ula.edu.mx/lib/javascript.php/1670923702/lib/requirejs/require.min.js IP 143.204.55.94 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:30 Last Seen2024-04-17 03:43:17 Times Seen1594 Hash 1f53ac504f7e69a6df96140eed2d4df2 da00136dd3fd0ccab626d7555ccb5fdf1c096fad 9ce0dbd6a1df9332653e27d1ddc505c5b78fd82b4112de0ec63840c3fbe0b8c2 Loading...

	aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1	60 B	2023-03-07	2024-04-24
Pretty URL aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 IP 143.204.55.23 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:30 Last Seen2024-04-24 12:33:40 Times Seen1129 Hash dba70bf9335863dea2696ca9da069b01 adfc079c12684d419766c7732c35da693517a7f8 05f515ab150c8852191afb40be55373b5b5337d89d513e48b802293123361798 Loading...

	aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1	6.9 kB	2023-03-08	2024-02-07
Pretty URL aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 IP 143.204.55.23 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:59:08 Last Seen2024-02-07 05:57:37 Times Seen1 Hash 07098725adf9499a80f48efd66013c6f 4bb18785bed174cd8ae99a209707259a36d1178b 03d021ef08986e1bde32537b60c76f666022e8e7b663f99e933b2e61c3afeea7 Loading...

	aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1	5.8 kB	2023-03-09	2024-02-07
Pretty URL aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 IP 143.204.55.23 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:19:53 Last Seen2024-02-07 05:57:37 Times Seen1 Hash e378208ad7fd534ea04d7c7dd46d11ee 963cff34c326a2379dfb26c39ace70a29820e1e1 8e634457faa3205cfa5a1243473594169410bb8ca3349125eece40b659099461 Loading...

	static.hotjar.com/c/hotjar-2789290.js?sv=6	8.2 kB	2023-03-09	2023-03-09
Pretty URL static.hotjar.com/c/hotjar-2789290.js?sv=6 IP 54.230.111.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:40:30 Last Seen2023-03-09 10:40:34 Times Seen1 Hash 29bed20ef5c764c8a76de3eefb4f40b7 6c07388e7834e90feae73a55bc24a6a5eb27ce9e 1261ae99b0381b3cc1305ba19e2077b94e6dd2d3c4e9cf952197ad5ffca640d0 Loading...

	aula.ula.edu.mx/theme/yui_combo.php?3.17.2/event-mousewheel/event-mousewheel-min.js&3.17.2/event-resize/event-resize-min.js&3.17.2/event-hover/event-hover-min.js&3.17.2/event-touch/event-touch-min.js&3.17.2/event-move/event-move-min.js&3.17.2/event-flick/event-flick-min.js&3.17.2/event-valuechange/event-valuechange-min.js&3.17.2/event-tap/event-tap-min.js	15 kB	2023-03-07	2024-04-21
Pretty URL aula.ula.edu.mx/theme/yui_combo.php?3.17.2/event-mousewheel/event-mousewheel-min.js&3.17.2/event-resize/event-resize-min.js&3.17.2/event-hover/event-hover-min.js&3.17.2/event-touch/event-touch-min.js&3.17.2/event-move/event-move-min.js&3.17.2/event-flick/event-flick-min.js&3.17.2/event-valuechange/event-valuechange-min.js&3.17.2/event-tap/event-tap-min.js IP 143.204.55.94 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:30 Last Seen2024-04-21 12:53:29 Times Seen1545 Hash 0151b48e61660bed14bf6acd5bb77210 e096360d7d8819dbbf42e7137ed9e37cdd286700 26d1a45d173703f01ca9bb8be4335bae6005c3bc0a5f78b380ad18fb152b8835 Loading...

	aula.ula.edu.mx/lib/javascript.php/1670923702/lib/polyfills/polyfill.js	18 kB	2023-03-07	2024-04-08
Pretty URL aula.ula.edu.mx/lib/javascript.php/1670923702/lib/polyfills/polyfill.js IP 143.204.55.94 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:30 Last Seen2024-04-08 13:09:10 Times Seen501 Hash 901890f127a81c136912ceb57c131305 ef4bd0e1c5d2dcb97265830feff005f682020a5d 244ff779cc4a0d32d8a21e1dceece94080b39c4b2c77ab5c0a772f333db71216 Loading...

	aula.ula.edu.mx/lib/javascript.php/1670923702/lib/babel-polyfill/polyfill.min.js	99 kB	2023-03-07	2024-04-08
Pretty URL aula.ula.edu.mx/lib/javascript.php/1670923702/lib/babel-polyfill/polyfill.min.js IP 143.204.55.94 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:30 Last Seen2024-04-08 13:09:10 Times Seen649 Hash 36842211132011a28a3ad07a62a629b1 624790be7f03f203771237170bfdf62e0186ae0f d9e07890edf5f6f350ef465b37479fc6192923e60e64d9f20af37eb3b011cc66 Loading...

	aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1	1.2 kB	2023-03-08	2024-02-07
Pretty URL aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 IP 143.204.55.23 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:59:08 Last Seen2024-02-07 05:57:37 Times Seen1 Hash ac7f2e1b135ee47a43fa36b16ebec6a5 7aaef7f1ed8221a1c192c33f67bbbc59c08833a9 e35fa24a7fb35e07dcefca3040913e571ac52a16b30e85d928aac5754bd98c5a Loading...

	aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1	522 B	2023-03-09	2023-03-09
Pretty URL aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 IP 143.204.55.23 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:40:34 Last Seen2023-03-09 10:40:34 Times Seen1 Hash ed68541e887b1a79a813316f12feadf3 9408beb9b603d3acc55235e0c9548943634f71b2 7c15dafe24c3088123cb50adaf638ad68b6ea019115c59c67d323631513ac57d Loading...

	aula.ula.edu.mx/lib/requirejs.php/1670923702/core/first.js	1.9 MB	2023-03-09	2023-03-09
Pretty URL aula.ula.edu.mx/lib/requirejs.php/1670923702/core/first.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:19:53 Last Seen2023-03-09 10:40:34 Times Seen1 Hash 662762bc4287643b5e0046f8f0b3d240 28fead2fa9e53932dcff2fc31125b44beede2a34 bfb4e054f68e3829b308d57b47eba77b27d6e4fd808a8af47107b37cb5718b5d Loading...

	aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1	15 kB	2023-03-09	2023-03-09
Pretty URL aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 IP 143.204.55.23 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:40:34 Last Seen2023-03-09 10:40:34 Times Seen1 Hash 5085b35889511b7e7481db0d866cfc7a 8fbd5d36bc6e5c34660df4100edbb365a1f9f8c6 99adc9c1e8482ae446af9dc7f09764c4c28223231d9b8c757748fa6030c0515e Loading...

	aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1	390 B	2023-03-08	2024-02-07
Pretty URL aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 IP 143.204.55.23 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:59:08 Last Seen2024-02-07 05:57:37 Times Seen1 Hash 1f3337ce237654593efd47de8c4b7691 20ff864a8eb1b74ff4bcc7e3bd48539f252c5334 65e6b58edd06a5d8a55a305771255a89bb951c508d5c6a3424bdd15ef0dca0fb Loading...

	aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1	214 B	2023-03-08	2024-02-07
Pretty URL aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 IP 143.204.55.23 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:59:08 Last Seen2024-02-07 05:57:37 Times Seen1 Hash 924301c3831bd8255fd5fcd9baba07c7 383c5f59613a8987bc2e3699e4b605c4da01e236 10463a7fa1cdd5c448bce515488e28ffa157e6a9466c0890304ff0d08828699a Loading...

	aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1	1.1 kB	2023-03-09	2023-03-09
Pretty URL aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 IP 143.204.55.23 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:40:30 Last Seen2023-03-09 10:40:34 Times Seen1 Hash 5d62366440538a48f3e4af671051d8fb 350cb5a4f2dbe7aba41541172f0d1935d834732c 0047c861f56123a68b0de442b9c7b53b9104d956e1dc41ec2b320784fd395048 Loading...

	aula.ula.edu.mx/theme/yui_combo.php?m/1670923702/core/event/event-min.js&m/1670923702/filter_mathjaxloader/loader/loader-min.js	2.2 kB	2023-03-07	2024-04-08
Pretty URL aula.ula.edu.mx/theme/yui_combo.php?m/1670923702/core/event/event-min.js&m/1670923702/filter_mathjaxloader/loader/loader-min.js IP 143.204.55.94 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:30 Last Seen2024-04-08 13:09:10 Times Seen421 Hash 78e865a30eff73e43dca8b8e44bcbb6e 242cf2f16d121fc1d5a486063a0d6ab130abbf23 7eb61ba5b02c939a8985c145a24985cb3b4e3cadfcfc00fa5bca76aa0d8c5238 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 12:43:38 Times Seen37063037 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	aula.ula.edu.mx/lib/javascript.php/1670923702/lib/jquery/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-04-18
Pretty URL aula.ula.edu.mx/lib/javascript.php/1670923702/lib/jquery/jquery-3.5.1.min.js IP 143.204.55.94 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:30 Last Seen2024-04-18 02:28:15 Times Seen589 Hash de4b1f62b938e770b049213be961e86e 4e6a1e0501610029a551c06a51f1acc3c8b6473a 621c0f52571ccff5dab81de13db26fda4b4a7dad83a01827c9139571023abea4 Loading...

	aula.ula.edu.mx/lib/javascript.php/1670923702/lib/javascript-static.js	21 kB	2023-03-07	2024-04-08
Pretty URL aula.ula.edu.mx/lib/javascript.php/1670923702/lib/javascript-static.js IP 143.204.55.94 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:30 Last Seen2024-04-08 13:09:10 Times Seen939 Hash ac7f47cc5271b4115ac489f7a0d70737 bb091a4de18f4ffce0ba80668ed0427ae03001d0 ec9d65cb26cade9adcf9c012734551cf8c86c49a1ff45fef12662ae42f312e3f Loading...

	aula.ula.edu.mx/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js	283 kB	2023-03-07	2024-04-17
Pretty URL aula.ula.edu.mx/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js IP 143.204.55.94 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:30 Last Seen2024-04-17 03:43:17 Times Seen1560 Hash 8039fd714b58260199b364107c92bff6 3776c202a78a99e5eeaafbdc7d8ad61acee3af1d 13eaaadfa414f262b7964320054bb2b322b9ef9f3522bc25c9d60dc83b5141cf Loading...

	vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html	2.3 kB	2023-03-08	2023-03-26
Pretty URL vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:11 Last Seen2023-03-26 01:38:12 Times Seen2 Hash 2ab04d2242413cc15369fa816e1a02f8 8ff148dd539f0fff0892dcc2075839c315cb8642 fe51660a3d21efbefab64694f51d02f2bcee4e82c324895e93c78ba6179508a3 Loading...

HTTP Transactions (42)

URL IP Response Size

aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1

143.204.55.23

301 Moved Permanently

167 B

URL HTTP/1.1
aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
IP
143.204.55.23:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

HTTP Headers

GET /auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 15 Dec 2022 19:30:47 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
X-Cache: Redirect from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lDnnwyrYlwxVARG8awYUzbNWoZC2LSFANsfs0zAANrQVmUBx0C0tXw==

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
96367f956a4177aec7e7e80221539d58
8dcad10fde96c139d1ef212388cb6755fe3fe077
f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4F9BDB5180359DFD734CEF1E6F1B54BC9D8F72CAE557366EB74F22100B94DC4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7107
Expires: Thu, 15 Dec 2022 21:29:14 GMT
Date: Thu, 15 Dec 2022 19:30:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4a5e9bc8b7891ac5f4552c29bcbaedb0
39735081eeb64eae477c61c1147daeb68fb37b22
c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C465EFAF205FF2992AF02C16187CA14A658CD5335B892903374F3ADAB32A8CD9"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6966
Expires: Thu, 15 Dec 2022 21:26:53 GMT
Date: Thu, 15 Dec 2022 19:30:47 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 15 Dec 2022 19:09:00 GMT
content-type: application/json
age: 1307
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
51bd0cc75ed746fd33c950eb12936b7e
4a1007ea6c6e4f5e8b4a7d1f85f7a3e329dc8f50
188d4a0d544f40048dc7476cb4f5e478f1eb49a8ef1d51699fb155d2ae258655

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "188D4A0D544F40048DC7476CB4F5E478F1EB49A8EF1D51699FB155D2AE258655"
Last-Modified: Tue, 13 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4654
Expires: Thu, 15 Dec 2022 20:48:21 GMT
Date: Thu, 15 Dec 2022 19:30:47 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Lkj93tmTxHix6SaeMw5rq8G4eCRfIipW3CpsMkgikGFSfvQYkT7WzsOfKciRcvnN8L77ekpWTzc=
x-amz-request-id: WZ903A691J6144SZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 15 Dec 2022 18:51:01 GMT
age: 2386
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 19:30:47 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 15 Dec 2022 18:33:21 GMT
age: 3447
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
cfcc070d997dc9c397f1306fe65f1dbe
3786212881f7fb62ee6334b4cbdb8f3c63403f00
e2952c7cc7765dc3ad3d921a5983d968be4c8ede9f576454a876c7baab2da407

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127095
Date: Thu, 15 Dec 2022 19:30:47 GMT
Etag: "639ac35e-1d7"
Expires: Sat, 17 Dec 2022 06:49:03 GMT
Last-Modified: Thu, 15 Dec 2022 06:49:02 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9ztZ9F5kMh7_xTIMJMByuT-7KNa7YICknNRDsplXqX7A-zzsZrC7pQ==

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b9f0adeb27a19629aeff6f34de67f3ad
3876d1b871d7da6d18de23c2edb301eb30728066
c5744a90c8f66629aa2331465a32afe0d430b36d16fd98bc821e370f1b24463c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4087
Cache-Control: max-age=139459
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:30:48 GMT
Etag: "639ae3b4-1d7"
Expires: Sat, 17 Dec 2022 10:15:07 GMT
Last-Modified: Thu, 15 Dec 2022 09:07:00 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7554f75e4959d216038e95962579e741
10f237248a234544391eb351e97515d385a372b3
cb2bc78887ed330dee49076c04ba87723fdc2a869a124dba2a475cac174480da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:30:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

52.89.255.30

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.89.255.30:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YN/1rktABJj1G1FMgwFxPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Lxfds8nLWB2zXiASJFSgEI2vV8U=

aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1

143.204.55.94

404 Not Found

42 kB

URL HTTP/2
aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type
data
Size
42 kB (42220 bytes)
Hash
4ff31d4a1ef6535d3f77cea6f31b73f5
5e27c3f2941444e85c61d40a6abf9350b46f3772
969f2c36c0ba8f92bfe9220c745b69d56135c28fff4ed7aa801175b2eab6872d

HTTP Headers

GET /auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1 HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
set-cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak; path=/; secure
content-language: en-us
content-script-type: text/javascript
content-style-type: text/css
x-ua-compatible: IE=edge
cache-control: private, pre-check=0, post-check=0, max-age=0, no-transform
pragma: no-cache
expires: 
accept-ranges: none
x-frame-options: sameorigin
x-cache: Error from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d_mGIfvnNIVDAFGTOSJrabJAMTo-yBUig6r-V5hZZWUHcA_zJ-VJJg==
X-Firefox-Spdy: h2

aula.ula.edu.mx/theme/moove/pix/moodle-logo-white.png

143.204.55.94

200 OK

85 kB

URL HTTP/2
aula.ula.edu.mx/theme/moove/pix/moodle-logo-white.png
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type
PNG image data, 4010 x 1023, 8-bit/color RGBA, non-interlaced\012- data
Size
85 kB (85223 bytes)
Hash
fe66c91006a29f3bf35b82245ee2edaa
972b0f822c3bff1cf50ea3f0149eed48034de16e
f74bd584a21d5a2034780a503a39bac18216324dc49b56a454c2f7531ed3d6db

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /theme/moove/pix/moodle-logo-white.png HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 85223
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
last-modified: Sun, 07 Nov 2021 01:41:40 GMT
etag: "61872ed4-14ce7"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ob505DWgx_uJFh6GJksqJMGMIDt-pjtO9hK-3GsaCGxNahL_h7BGXg==
X-Firefox-Spdy: h2

aula.ula.edu.mx/docs/Nunito-Regular.ttf

143.204.55.94

200 OK

153 kB

URL HTTP/2
aula.ula.edu.mx/docs/Nunito-Regular.ttf
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type
TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2014 The Nunito Project Authors (https://github.com/googlefonts/nunito)NunitoRegular3.\012- data
Size
153 kB (152932 bytes)
Hash
d8de52e6c5df1a987ef6b9126a70cfcc
07822103331d2ebc7756a0746d8f34a7210a68ed
9e2747806c4a30f0d4f39596a13dd97dc5484b96845d945d90b300e1bbdebc72

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /docs/Nunito-Regular.ttf HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/theme/styles.php/moove/1670923702_1/all
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 152932
date: Thu, 15 Dec 2022 19:30:49 GMT
server: nginx/1.21.4
last-modified: Sun, 12 Aug 2012 00:00:00 GMT
etag: "5026f200-25564"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: r8GttM7vAGqAlPrCtDVnj-O8HIboEHbVvCgW6RMA7EXvcpia5aBPrA==
X-Firefox-Spdy: h2

aula.ula.edu.mx/lib/javascript.php/1670923702/lib/javascript-static.js

143.204.55.94

200 OK

7.3 kB

URL HTTP/2
aula.ula.edu.mx/lib/javascript.php/1670923702/lib/javascript-static.js
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type
data
Size
7.3 kB (7286 bytes)
Hash
de8dc746c33db4e7072c72b5669ff8b2
53392f9d11bf38a8c0f1875599c6f2fcf657ec0b
5a9e809dd1eb1c9c7b95c2c93a420f426bb05ec5627e9b29458839d3ba148093

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /lib/javascript.php/1670923702/lib/javascript-static.js HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
etag: "b672700bc2918ca54f9f58beae4884ad92473413"
content-disposition: inline; filename="javascript.php"
last-modified: Wed, 14 Dec 2022 04:11:26 GMT
expires: Wed, 15 Mar 2023 19:30:48 GMT
pragma: 
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ota3-UQcvLBL0TMoXHtYMddQeRqZtpGf4tuP75h1xJJKlUcSwcYNTg==
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13117
Expires: Thu, 15 Dec 2022 23:09:26 GMT
Date: Thu, 15 Dec 2022 19:30:49 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4523 bytes)
Hash
b76e8c43482cb1f6e9d3f5dd55185382
364236e338c799f7d7a604882451428d12cdc7c7
375600e8bedfec8fa85da9298fc3322b91e97261dee7fd94b1dad8e6f4faed67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4523
x-amzn-requestid: 5404595d-f42f-49a0-9438-093b2fb1b852
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dBXWTGEcIAMFdnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6396d28e-17f927945ee836a91a3148e0;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 07:04:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JBIoHXeeJIsyl_wj57ZEP_f1mg3eq0WJjgKveuc_DslNZzSiVf62Og==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 07:11:31 GMT
age: 44358
etag: "364236e338c799f7d7a604882451428d12cdc7c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4368d88-830e-4776-bbdb-c2457233983a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9851 bytes)
Hash
8b031e56b256ee8ed21093f8c5398815
ef4ac091b1804b68c1d8e073d73f7a57e08739a6
f332c68ba6b31d67c02d16412c85e760cbc2e7a67073876c8799365e80b6dbab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4368d88-830e-4776-bbdb-c2457233983a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9851
x-amzn-requestid: 38f12682-d3c4-4e4f-9b24-afe81ca85dde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c-FX9FsVoAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63958299-3d25cec26bcb2ccf73e3526f;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 07:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dBS9TPBeVScdBuJSzheNE2lvUb3RqZTfZjJkWcbyuwkyhu0HrFmkIQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 14:33:16 GMT
age: 17853
etag: "ef4ac091b1804b68c1d8e073d73f7a57e08739a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5789 bytes)
Hash
9d38060edf5f77bdaa18a4dd3b092c12
50b89e4fbdb88026899ce49cb45b0d6286f303a7
8ff9d03bca03022c717004f96a178d4982d16b575cb70a1a237ca76f90f4f0e1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5789
x-amzn-requestid: bb0455df-4252-4b04-a24c-eb101e3e40db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dKWBdFAUIAMFaig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a6a09-1e3f6b0d0a59da3807acffee;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 00:27:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QQrpPJpyUuwf5USygp_vUiZ-S2Jt7VUN8yClS2Pt_IUgVwMn-xeDhQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 00:38:36 GMT
etag: "50b89e4fbdb88026899ce49cb45b0d6286f303a7"
content-type: image/jpeg
age: 67933
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F874ce85e-7786-4e92-aea7-1c22181143e6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9108 bytes)
Hash
389fe7dd5f3f80351a97fe4106be49b5
a91f474e6d320797c2ea32ecaf7a341f5f77fe82
11957edbfb3dc06abbe8ee6aa9dac0a25f84ba909a6404030c9f081343384513

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F874ce85e-7786-4e92-aea7-1c22181143e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9108
x-amzn-requestid: ce72b199-1b81-4257-bcf0-3c9dc144b5d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6s3rHhDoAMFZxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63942830-0751237e7103e2b9615db079;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 06:33:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3p17v7Bynhh_3E58b5uEpjmNfZ-bSee-_jhauzs3LtWRV9GJoT0Evg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 09:02:49 GMT
age: 37680
etag: "a91f474e6d320797c2ea32ecaf7a341f5f77fe82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f949bdd-b2f9-4eba-91cf-0c0588f819de.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5166 bytes)
Hash
860298771622d100fe1feafb0a1aac50
e5d9b7454c471d5e5dea8b4352ba7595a8a04ce3
93ea9f1b9a0276075ff9752dc31a5a19e4378ca481895a3cd22f461a8ca6040a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f949bdd-b2f9-4eba-91cf-0c0588f819de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5166
x-amzn-requestid: fa8e9bd0-e5ee-48e9-86b6-0330ccac7d69
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6xc4GQYIAMFriA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63942f85-5f7472d631c1c9f560d88378;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 07:04:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xLdYmAD22dAMhCBqu5X65V9G-JzAEOWNNmHOG_Dcp1zgMzY8Tj80Jw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 07:53:14 GMT
age: 41855
etag: "e5d9b7454c471d5e5dea8b4352ba7595a8a04ce3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5259 bytes)
Hash
672ae812012d060ba75fbb8cb9d6038c
2ab1016451432b6cd1d6b9756c6cc6a926ffa7ce
cd9c002af775a6ba6ff8902a67e19c2ed2663d23bf8a1c3fe763598a60ba8d69

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5259
x-amzn-requestid: 21c0e355-e696-4785-a162-5f96e02836f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c3fV1HHKIAMFsjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6392df58-608335604793d9f46939a81a;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 07:10:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BYwjCf0sQ3F2gNE6x5Q5K6D_PhMXV-T8kPGRpVHIdouM_I9sU7bMOw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 02:09:49 GMT
age: 62460
etag: "2ab1016451432b6cd1d6b9756c6cc6a926ffa7ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

aula.ula.edu.mx/lib/javascript.php/1670923702/lib/polyfills/polyfill.js

143.204.55.94

200 OK

1.0 MB

URL HTTP/2
aula.ula.edu.mx/lib/javascript.php/1670923702/lib/polyfills/polyfill.js
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type
data
Size
1.0 MB (1031314 bytes)
Hash
182056ac4ebdbdd108fdfed7ee383bd1
a3b73d195530e8ad6119a099f29536961899d25f
b2d2f757594114c9cb1d6adffca3e1d6d4330c9cf8c3d8eb0a187df9b3be2417

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /lib/javascript.php/1670923702/lib/polyfills/polyfill.js HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
etag: "be22bab6da6e68278bf3171fdbd9e2515b944000"
content-disposition: inline; filename="javascript.php"
last-modified: Tue, 13 Dec 2022 09:28:27 GMT
expires: Wed, 15 Mar 2023 19:30:48 GMT
pragma: 
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KNwu55U_58ujLZ9WnaI7TXzyAshVTmi-C4iQLrIi4FkWf99l0KSUNA==
X-Firefox-Spdy: h2

aula.ula.edu.mx/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.css

143.204.55.94

200 OK

979 kB

URL HTTP/2
aula.ula.edu.mx/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.css
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type
data
Size
979 kB (979271 bytes)
Hash
de3d9731e89cd4da08bb17dfe6b4ed7b
a454d4d2fb4f1531f51ea3992cb8bf999911d2d9
ac436aa6f2a53dc844fc9c9965491b23c4a4c10e8ca2379b3e2bd18e19d9a651

HTTP Headers

GET /theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.css HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css;charset=UTF-8
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
content-disposition: inline; filename="combo"
last-modified: Mon, 19 Jul 2021 16:26:15 GMT
expires: Sun, 10 Dec 2023 19:30:48 GMT
pragma: 
cache-control: public, max-age=31104000, immutable
accept-ranges: none
etag: "b9bc567c469e2872cf3bbb14603342a72de2509b"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nfybgcCc_ZWZkL72aWIOLG-X65zk5pFHdfhRuJvzFn5mC9hMpfDBnQ==
X-Firefox-Spdy: h2

aula.ula.edu.mx/pluginfile.php/1/theme_moove/favicon/1670923702/favicon%20%281%29.ico

143.204.55.94

200 OK

1.2 kB

URL HTTP/2
aula.ula.edu.mx/pluginfile.php/1/theme_moove/favicon/1670923702/favicon%20%281%29.ico
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
de2735526769da38bee892f921db3a76
2b9c551bf65a44f99a09155e8630b25098204efd
7dea92d980a55486b3191f24065ebaa1ece1f5823dca0927d049c0b1948f6f08

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /pluginfile.php/1/theme_moove/favicon/1670923702/favicon%20%281%29.ico HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 1150
date: Thu, 15 Dec 2022 19:30:50 GMT
server: nginx/1.21.4
last-modified: Fri, 12 Nov 2021 16:38:22 GMT
content-disposition: inline; filename="favicon (1).ico"
cache-control: public, max-age=5184000, no-transform
expires: Mon, 13 Feb 2023 19:30:50 GMT
etag: "618e987e-47e"
accept-ranges: bytes, bytes
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lF5DNb5oQ3_n6YroJTzYVmUhx2d1WQpb0k3jtiXd4e5dQBHNmetkCw==
X-Firefox-Spdy: h2

script.hotjar.com/modules.c28cd36cbf17f5f066e3.js

143.204.55.46

200 OK

69 kB

URL HTTP/2
script.hotjar.com/modules.c28cd36cbf17f5f066e3.js
IP
143.204.55.46:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48638)
Size
69 kB (68810 bytes)
Hash
3e6cbb4d28be1c4e94119d32ec59cb86
07e600e7e8d95fd9859d299bda98d51bd9e8bbce
8925bd24005c4e4a1249ab2440a59f21657c22de591987d3149a14e516cd1cdb

HTTP Headers

GET /modules.c28cd36cbf17f5f066e3.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 68810
date: Thu, 15 Dec 2022 11:42:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "3e6cbb4d28be1c4e94119d32ec59cb86"
last-modified: Thu, 15 Dec 2022 11:41:44 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dgAjkvM3umEoVpbi8MXZT4d6SJN-zMa_BnyayQUc-T5g0GeISauTSg==
age: 28124
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-2789290.js?sv=6

54.230.111.66

200 OK

4.4 kB

URL HTTP/2
static.hotjar.com/c/hotjar-2789290.js?sv=6
IP
54.230.111.66:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (7441)
Size
4.4 kB (4417 bytes)
Hash
85623003df2e0fe9775deb23596aceee
bbe237d5c5c288c20c9f97301350a4153facf4a1
fcd1b0d97934968cf693c8da8bfc100a578a9008735cb34a709242dbd7acd437

HTTP Headers

GET /c/hotjar-2789290.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Thu, 15 Dec 2022 19:30:50 GMT
cache-control: max-age=60
etag: W/29bed20ef5c764c8a76de3eefb4f40b7
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V4KUUEiB73msvn-w0_AhywqXEXh2pT3oc_8ws_OB6HsDxpwWtfWB5Q==
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
105e8d3215636f5b4e05f200208abb1a
69bea1ccc6d763bd32d19dd8a9fe04a1827219cd
3ec47f5075dac7395ed16805a938e93471e6125cd023b0593030b675ca94e22a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Dec 2022 19:30:50 GMT
Last-Modified: Thu, 15 Dec 2022 18:27:36 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: eapAHP8G6clCVZqpZDxYZpJOrxLLjpmuiuwhEaXrvkkYCRQszuTudA==
Age: 3794

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7163 bytes)
Hash
1e1fb0ddf6ac86d38423a55841c78c6c
d31310f2441c9f7584f3c1605dd3fb38d5af41a6
8e91e724a42f8b0cf953570937c33465903c979297e439438d86c45b3d242d4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7163
x-amzn-requestid: 3c24d190-0c16-4aab-8da4-ab11a91c8e5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dE_HIEdEIAMFV8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63984560-4956b65205477bfe244bd4c3;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 09:26:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c4v50kU254dC1EM2QEk8Z6dwH-th3wdnHc4XokHHUaNB-Vfe2AOsDw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 06:28:25 GMT
age: 46951
etag: "d31310f2441c9f7584f3c1605dd3fb38d5af41a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

in.hotjar.com/api/v2/client/sites/2789290/visit-data?sv=6

34.243.128.180

200 OK

0 B

URL HTTP/2
in.hotjar.com/api/v2/client/sites/2789290/visit-data?sv=6
IP
34.243.128.180:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/v2/client/sites/2789290/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 149
Origin: https://aula.ula.edu.mx
Connection: keep-alive
Referer: https://aula.ula.edu.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:30:50 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2

aula.ula.edu.mx/theme/yui_combo.php?3.17.2/event-mousewheel/event-mousewheel-min.js&3.17.2/event-resize/event-resize-min.js&3.17.2/event-hover/event-hover-min.js&3.17.2/event-touch/event-touch-min.js&3.17.2/event-move/event-move-min.js&3.17.2/event-flick/event-flick-min.js&3.17.2/event-valuechange/event-valuechange-min.js&3.17.2/event-tap/event-tap-min.js

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/theme/yui_combo.php?3.17.2/event-mousewheel/event-mousewheel-min.js&3.17.2/event-resize/event-resize-min.js&3.17.2/event-hover/event-hover-min.js&3.17.2/event-touch/event-touch-min.js&3.17.2/event-move/event-move-min.js&3.17.2/event-flick/event-flick-min.js&3.17.2/event-valuechange/event-valuechange-min.js&3.17.2/event-tap/event-tap-min.js
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /theme/yui_combo.php?3.17.2/event-mousewheel/event-mousewheel-min.js&3.17.2/event-resize/event-resize-min.js&3.17.2/event-hover/event-hover-min.js&3.17.2/event-touch/event-touch-min.js&3.17.2/event-move/event-move-min.js&3.17.2/event-flick/event-flick-min.js&3.17.2/event-valuechange/event-valuechange-min.js&3.17.2/event-tap/event-tap-min.js HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak; _hjSessionUser_2789290=eyJpZCI6ImRiNzkwM2NlLWY2ZmItNTllZC04M2YyLTQ1MjBjMDE4MTZkZSIsImNyZWF0ZWQiOjE2NzExMzI2NDc1MjcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2789290=eyJpZCI6IjFiZGRiYzkzLTgxYzItNDUxZC04YTM2LTBkNDc0YTI4NmNhNyIsImNyZWF0ZWQiOjE2NzExMzI2NDc2MjUsImluU2FtcGxlIjpmYWxzZX0=; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 15 Dec 2022 19:30:50 GMT
server: nginx/1.21.4
content-disposition: inline; filename="combo"
last-modified: Mon, 19 Jul 2021 16:26:15 GMT
expires: Sun, 10 Dec 2023 19:30:50 GMT
pragma: 
cache-control: public, max-age=31104000, immutable
accept-ranges: none
etag: "b24ca831785ba367093f089618e840be511be85d"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hbevulLxmeaiSyfu_0Nvx5NXUe4jNgSk3aLXcYQL2iP16HnrFPnejg==
X-Firefox-Spdy: h2

aula.ula.edu.mx/lib/ajax/service-nologin.php?info=core_output_load_fontawesome_icon_system_map&cachekey=1670923702&args=%5B%7B%22index%22%3A0%2C%22methodname%22%3A%22core_output_load_fontawesome_icon_system_map%22%2C%22args%22%3A%7B%22themename%22%3A%22moove%22%7D%7D%5D

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/lib/ajax/service-nologin.php?info=core_output_load_fontawesome_icon_system_map&cachekey=1670923702&args=%5B%7B%22index%22%3A0%2C%22methodname%22%3A%22core_output_load_fontawesome_icon_system_map%22%2C%22args%22%3A%7B%22themename%22%3A%22moove%22%7D%7D%5D
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /lib/ajax/service-nologin.php?info=core_output_load_fontawesome_icon_system_map&cachekey=1670923702&args=%5B%7B%22index%22%3A0%2C%22methodname%22%3A%22core_output_load_fontawesome_icon_system_map%22%2C%22args%22%3A%7B%22themename%22%3A%22moove%22%7D%7D%5D HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak; _hjSessionUser_2789290=eyJpZCI6ImRiNzkwM2NlLWY2ZmItNTllZC04M2YyLTQ1MjBjMDE4MTZkZSIsImNyZWF0ZWQiOjE2NzExMzI2NDc1MjcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2789290=eyJpZCI6IjFiZGRiYzkzLTgxYzItNDUxZC04YTM2LTBkNDc0YTI4NmNhNyIsImNyZWF0ZWQiOjE2NzExMzI2NDc2MjUsImluU2FtcGxlIjpmYWxzZX0=; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 15 Dec 2022 19:30:51 GMT
server: nginx/1.21.4
expires: Wed, 15 Mar 2023 19:30:51 GMT
pragma: 
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PP5zCGH91uNJNoMqePweKyit7uUaXzjUfwN1NMqOClgkVspjBFpnfA==
X-Firefox-Spdy: h2

aula.ula.edu.mx/lib/javascript.php/1670923702/lib/babel-polyfill/polyfill.min.js

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/lib/javascript.php/1670923702/lib/babel-polyfill/polyfill.min.js
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /lib/javascript.php/1670923702/lib/babel-polyfill/polyfill.min.js HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
etag: "2b6906e8d5f9e80eccd7b8e9e503f56e58d84f4d"
content-disposition: inline; filename="javascript.php"
last-modified: Tue, 13 Dec 2022 09:28:27 GMT
expires: Wed, 15 Mar 2023 19:30:48 GMT
pragma: 
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3JifDG2w42bNqwi-LOw-6rSzB49fQnkLSaxBzZdHctZSPmeyxjZxjw==
X-Firefox-Spdy: h2

aula.ula.edu.mx/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
content-disposition: inline; filename="combo"
last-modified: Mon, 19 Jul 2021 16:26:15 GMT
expires: Sun, 10 Dec 2023 19:30:48 GMT
pragma: 
cache-control: public, max-age=31104000, immutable
accept-ranges: none
etag: "78581a0bac8a932effb32db3e91e0f2f2b47c08e"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: r4LWzv6jgloKuuAV4nEEjtH6iUVOzpEWCM4sby2J_QhJ-vK1fmIC6w==
X-Firefox-Spdy: h2

aula.ula.edu.mx/theme/yui_combo.php?m/1670923702/core/event/event-min.js&m/1670923702/filter_mathjaxloader/loader/loader-min.js

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/theme/yui_combo.php?m/1670923702/core/event/event-min.js&m/1670923702/filter_mathjaxloader/loader/loader-min.js
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /theme/yui_combo.php?m/1670923702/core/event/event-min.js&m/1670923702/filter_mathjaxloader/loader/loader-min.js HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 15 Dec 2022 19:30:49 GMT
server: nginx/1.21.4
content-disposition: inline; filename="combo"
last-modified: Mon, 19 Jul 2021 16:26:15 GMT
expires: Sun, 10 Dec 2023 19:30:49 GMT
pragma: 
cache-control: public, max-age=31104000, immutable
accept-ranges: none
etag: "1785c7c059872f6f1a7fddbc9b8a5a4b7926f4ef"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ie_1SUzGkNvRTmq6eKLq1Kzdkw1xleGEh4didwrdMuQN_b2iopwNDQ==
X-Firefox-Spdy: h2

aula.ula.edu.mx/lib/javascript.php/1670923702/lib/jquery/jquery-3.5.1.min.js

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/lib/javascript.php/1670923702/lib/jquery/jquery-3.5.1.min.js
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /lib/javascript.php/1670923702/lib/jquery/jquery-3.5.1.min.js HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 15 Dec 2022 19:30:50 GMT
server: nginx/1.21.4
etag: "55a3d7be12da7470318df86ee3072746e07f5bdb"
content-disposition: inline; filename="javascript.php"
last-modified: Wed, 14 Dec 2022 04:11:39 GMT
expires: Wed, 15 Mar 2023 19:30:50 GMT
pragma: 
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zSO2QLuUEG_HZKFj7hhMlWjQOMx6If4RJmSShUsbMOgQWtsf2wvFdA==
X-Firefox-Spdy: h2

aula.ula.edu.mx/theme/styles.php/moove/1670923702_1/all

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/theme/styles.php/moove/1670923702_1/all
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /theme/styles.php/moove/1670923702_1/all HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
etag: "9a3e9fa80e6d5253f0022f486edb24130d401061"
content-disposition: inline; filename="styles.php"
last-modified: Thu, 15 Dec 2022 19:16:52 GMT
expires: Wed, 15 Mar 2023 19:30:48 GMT
pragma: 
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7akhwIEtl2DfaqXNON51b4cmnjLcIfek9qpdvglvuiKQ-ISkihvElg==
X-Firefox-Spdy: h2

aula.ula.edu.mx/lib/javascript.php/1670923702/lib/requirejs/require.min.js

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/lib/javascript.php/1670923702/lib/requirejs/require.min.js
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /lib/javascript.php/1670923702/lib/requirejs/require.min.js HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
etag: "011f1540bb8965161ccbabba8dcbd1dda07c3ec6"
content-disposition: inline; filename="javascript.php"
last-modified: Tue, 13 Dec 2022 09:28:24 GMT
expires: Wed, 15 Mar 2023 19:30:48 GMT
pragma: 
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QNY4wbX3mjoIkyjQ2EY-MdrVfGYE2l00GkFLoYRo9ut46DuRGisibg==
X-Firefox-Spdy: h2

aula.ula.edu.mx/pluginfile.php/1/theme_moove/logo/1670923702/aula-by-ula.svg

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/pluginfile.php/1/theme_moove/logo/1670923702/aula-by-ula.svg
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Westpac Institutional Banking

HTTP Headers

GET /pluginfile.php/1/theme_moove/logo/1670923702/aula-by-ula.svg HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
vary: Accept-Encoding
date: Thu, 15 Dec 2022 19:30:48 GMT
server: nginx/1.21.4
last-modified: Mon, 14 Mar 2022 11:53:10 GMT
content-disposition: inline; filename="aula-by-ula.svg"
cache-control: public, max-age=5184000, no-transform
expires: Mon, 13 Feb 2023 19:30:48 GMT
accept-ranges: bytes
etag: W/"622f2ca6-2647"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JKn0VIQ71DvwlgCCiwYcMdqFvJR-3HUgOxntgz7xZ7WFWD1mTQRjxg==
X-Firefox-Spdy: h2

aula.ula.edu.mx/lib/ajax/service-nologin.php?info=6-method-calls

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/lib/ajax/service-nologin.php?info=6-method-calls
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /lib/ajax/service-nologin.php?info=6-method-calls HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 775
Origin: https://aula.ula.edu.mx
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak; _hjSessionUser_2789290=eyJpZCI6ImRiNzkwM2NlLWY2ZmItNTllZC04M2YyLTQ1MjBjMDE4MTZkZSIsImNyZWF0ZWQiOjE2NzExMzI2NDc1MjcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2789290=eyJpZCI6IjFiZGRiYzkzLTgxYzItNDUxZC04YTM2LTBkNDc0YTI4NmNhNyIsImNyZWF0ZWQiOjE2NzExMzI2NDc2MjUsImluU2FtcGxlIjpmYWxzZX0=; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 15 Dec 2022 19:30:51 GMT
server: nginx/1.21.4
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MJwI_MFAkhkuq2QwIyWcajJcNOSNOnx1TsVHcqvCFWGoGFrAThUWVA==
X-Firefox-Spdy: h2

aula.ula.edu.mx/lib/ajax/service-nologin.php?info=8-method-calls&cachekey=1670923702

143.204.55.94

200 OK

0 B

URL HTTP/2
aula.ula.edu.mx/lib/ajax/service-nologin.php?info=8-method-calls&cachekey=1670923702
IP
143.204.55.94:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /lib/ajax/service-nologin.php?info=8-method-calls&cachekey=1670923702 HTTP/1.1
Host: aula.ula.edu.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 1303
Origin: https://aula.ula.edu.mx
Connection: keep-alive
Referer: https://aula.ula.edu.mx/auth/userkey/login.php?key=f38d16dced7730973c2498d4f6dd6634&wantsurl=https://aula.ula.edu.mx/course/view.php?id=1
Cookie: MoodleSessionmdl_ula=tfiinnfmpi3kb0ifcu7qcp85ak; _hjSessionUser_2789290=eyJpZCI6ImRiNzkwM2NlLWY2ZmItNTllZC04M2YyLTQ1MjBjMDE4MTZkZSIsImNyZWF0ZWQiOjE2NzExMzI2NDc1MjcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2789290=eyJpZCI6IjFiZGRiYzkzLTgxYzItNDUxZC04YTM2LTBkNDc0YTI4NmNhNyIsImNyZWF0ZWQiOjE2NzExMzI2NDc2MjUsImluU2FtcGxlIjpmYWxzZX0=; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 15 Dec 2022 19:30:51 GMT
server: nginx/1.21.4
expires: Wed, 15 Mar 2023 19:30:51 GMT
pragma: 
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Fry7Gdx6XHlJhSaS5KUCV7nH5dAEDuxic4AJ0NR7deMXEd09JXi8ww==
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations