| | 3.66.134.204 | 200 | 175 B |
URL User Request GET HTTP/1.1IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashca1ce3399a1abab6d52988a51f3b4307 3ceee27f1294f8d1cc213aa461cad2d2ed706cea 5eb0dfd23b6a6bc58ff93d6e8c61b6418d58fec61e55fa70ee2135a23db3f628
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Cache-control: no-cache="set-cookie"
Content-Type: text/html
Date: Thu, 25 Apr 2024 22:18:25 GMT
Location: https://3.66.134.204/
Set-Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551;PATH=/;MAX-AGE=900
Content-Length: 175
Connection: keep-alive
|
|
| | 3.66.134.204 | 200 | 35 kB |
URL User Request GET HTTP/1.1IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (59546) Hashfab8e2028c1d2c2ec377328876c2d8e3 792d18db6f0f3baca7013d74b17dc0c9bf5734e9 5a9b86ca804ca53373796754f43f8c4017042933f65769937e1e82df3eddb833
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: private, max-age=0, no-store, must-revalidate
Content-Encoding: gzip
Content-Language: es-ES
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/html;charset=UTF-8
Date: Thu, 25 Apr 2024 22:18:26 GMT
Expires: Tue, 25 Apr 2023 22:18:26 GMT
Last-Modified: Sun, 25 Apr 2004 22:18:26 GMT
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: JSESSIONID=91386BEAFE753B2E099028A282864CDB; Path=/; Secure
BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| 3.66.134.204/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 32 kB |
URL GET HTTP/1.13.66.134.204/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators Hash786377f67b24ac4deed06c2e2f1245a9 f59a4c2b422b0cef0d29d74088cfce21532a3ff9 0983fcfc3072ccb41f0642e4aa9844eefc429a32929b2a0f17e011ed40f57901
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Thu, 25 Apr 2024 22:18:26 GMT
ETag: W/"224954-1713461721674"
Expires: Fri, 25 Apr 2025 22:18:26 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:af7ba3af4ed9d16c163504ffb503932fe4892230d5c636b594fb1f2382877a22,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| 3.66.134.204/groupjs/AD08F020135F260526451BB6D03E9333.js?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 244 kB |
URL GET HTTP/1.13.66.134.204/groupjs/AD08F020135F260526451BB6D03E9333.js?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Size244 kB (244539 bytes) Hash209a15481c45b1acd768fbb1c7d2fc61 20c94d824a50015cb888f09a29a9a532e7198f69 a264c00ef062d84c036b156aa5e382dec16fd9d549aa724fd074227c64adbb5a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/AD08F020135F260526451BB6D03E9333.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:26 GMT
ETag: W/"971183-0"
Expires: Fri, 25 Apr 2025 22:18:26 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:af7ba3af4ed9d16c163504ffb503932fe4892230d5c636b594fb1f2382877a22,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| 3.66.134.204/ui-ultra/js/hide-focus-outline.js?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 472 B |
URL GET HTTP/1.13.66.134.204/ui-ultra/js/hide-focus-outline.js?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hash343244e5258e2ef8dde956703460baa8 0899037c3e1b694169057644814cf6740a8f75cb ac41ec5d4eb98e51271ecc1068100d6b3ddf9528745cb2052096dfa697e51171
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/js/hide-focus-outline.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:26 GMT
ETag: W/"1224-1713461721898"
Expires: Fri, 25 Apr 2025 22:18:26 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:af7ba3af4ed9d16c163504ffb503932fe4892230d5c636b594fb1f2382877a22,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 472
Connection: keep-alive
|
|
| 3.66.134.204/ui-ultra/css/multi_factor_authentication.css?v=3900.89.0-rel.31+520e1f0_authLogin | 3.66.134.204 | 200 | 1.9 kB |
URL GET HTTP/1.13.66.134.204/ui-ultra/css/multi_factor_authentication.css?v=3900.89.0-rel.31+520e1f0_authLogin IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashe96957c79a9f125ea7c78ede0e22af6d 376c94dbdb4d42f2f1095819cd2ccd96947978e6 3852ef20b02a33b2042d01cb38a8737e8a180d31fc6fb08418c8ad3188f6470e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/css/multi_factor_authentication.css?v=3900.89.0-rel.31+520e1f0_authLogin HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Thu, 25 Apr 2024 22:18:26 GMT
ETag: W/"7882-1713461721662"
Expires: Fri, 25 Apr 2025 22:18:26 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:af7ba3af4ed9d16c163504ffb503932fe4892230d5c636b594fb1f2382877a22,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 1910
Connection: keep-alive
|
|
| 3.66.134.204/webapps/vtbe-tinymce/css/prism/prism.css?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 968 B |
URL GET HTTP/1.13.66.134.204/webapps/vtbe-tinymce/css/prism/prism.css?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hash78002c2fc79e9c6119de63ecb70b8e4d a2c40e2cd25207cfc30297285488c5f527676fc1 be56dec9d9cf6b598fa197b45d0d05d79559645ecd2600b4bdd1e19d99d107a5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/vtbe-tinymce/css/prism/prism.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Thu, 25 Apr 2024 22:18:26 GMT
ETag: W/"2578-1713462056696"
Expires: Fri, 25 Apr 2025 22:18:26 GMT
Last-Modified: Thu, 18 Apr 2024 17:40:56 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:af7ba3af4ed9d16c163504ffb503932fe4892230d5c636b594fb1f2382877a22,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 968
Connection: keep-alive
|
|
| 3.66.134.204/webapps/videointegration/css/video-integration.css?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 1.3 kB |
URL GET HTTP/1.13.66.134.204/webapps/videointegration/css/video-integration.css?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hash830a516f26e407ac3787637d59bf1fa2 9181a61ddc34508957340d5e3be121c663ca5122 fc563ce4fca78532552a1a6e3015c4b03d5ce2005db329511d66301f18d98c65
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/videointegration/css/video-integration.css?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/css
Date: Thu, 25 Apr 2024 22:18:26 GMT
ETag: W/"6598-1713461937931"
Expires: Fri, 25 Apr 2025 22:18:26 GMT
Last-Modified: Thu, 18 Apr 2024 17:38:57 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:af7ba3af4ed9d16c163504ffb503932fe4892230d5c636b594fb1f2382877a22,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 1331
Connection: keep-alive
|
|
| 3.66.134.204/webapps/login/dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 326 B |
URL GET HTTP/1.13.66.134.204/webapps/login/dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hash9bc1134c93b5f998658908843f690347 0c80881811b489688de42740d8bc347f0dd06f8a 4cd15932a8e59ff70ea9e197361ec49ae85526a26dfc8cf3b8cd993213fb7be3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/login/dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/javascript;charset=utf-8
Date: Thu, 25 Apr 2024 22:18:26 GMT
Expires: Fri, 25 Apr 2025 22:18:26 GMT
Last-Modified: Wed, 11 Oct 1972 19:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:af7ba3af4ed9d16c163504ffb503932fe4892230d5c636b594fb1f2382877a22,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 326
Connection: keep-alive
|
|
| 3.66.134.204/webapps/login/dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 268 B |
URL GET HTTP/1.13.66.134.204/webapps/login/dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hash06d90f68edce60f54dcf573ca0ed779c a0c5250aa1f8f1d6c6f83ae81472718bc89a8811 c4f59619afee34b439315b362a9758a7594411a76531288af22070268b2199c8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/login/dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/javascript;charset=utf-8
Date: Thu, 25 Apr 2024 22:18:26 GMT
Expires: Fri, 25 Apr 2025 22:18:26 GMT
Last-Modified: Wed, 11 Oct 1972 19:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:af7ba3af4ed9d16c163504ffb503932fe4892230d5c636b594fb1f2382877a22,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 268
Connection: keep-alive
|
|
| 3.66.134.204/ui-ultra/js/login-page.js?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 1.3 kB |
URL GET HTTP/1.13.66.134.204/ui-ultra/js/login-page.js?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hashd9cca39466f7bea7f0431e320e1d36e1 1a898cc69ac4fa64f388e72264a58db322a8eda0 86ade681c0bf2c7c36b415adb3138e77e9aa4f15f8768c71f1926b0dbb65f5ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/js/login-page.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"3647-1713461721898"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 1331
Connection: keep-alive
|
|
| 3.66.134.204/webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 955 B |
URL GET HTTP/1.13.66.134.204/webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashc2dfa8a026dc7f23c851182267a410cc d22c9ce9b62473438d05954e78a7f14e52f38975 6ad8d6e55f9a039561ce1ebee3dd66a919026919bc18f60d69ed7571879c4158
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"3022-1713461901963"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:38:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 955
Connection: keep-alive
|
|
| 3.66.134.204/javascript/qrcodejs/qrcode.min.js | 3.66.134.204 | 200 | 7.0 kB |
URL GET HTTP/1.13.66.134.204/javascript/qrcodejs/qrcode.min.js IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeASCII text, with very long lines (19928) Hash272a836f3b4bff95839c86eb6064cd85 425c063b9b3f7b4c187c5903f1014a45112b8e6f 2128d181bff54d66702dbb9dca6361bff68e92ce51c2cc9a526a58c3b63a97a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /javascript/qrcodejs/qrcode.min.js HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"19929-1713461741034"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:41 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 7010
Connection: keep-alive
|
|
| 3.66.134.204/groupjs/28F109DE025409B49671178835AE5F13.js?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 30 kB |
URL GET HTTP/1.13.66.134.204/groupjs/28F109DE025409B49671178835AE5F13.js?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash41c509236e8f0745b7ec9bd0859e2dc5 497eaa23ad84647f59cef95a1969c6a17cd4a661 7d3cf7f85e05a028c538c7de469e9b297fc16363dc0aac82ddd37037b0eedafa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/28F109DE025409B49671178835AE5F13.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"126302-0"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| 3.66.134.204/groupjs/D2F66879F6B5BDC4D8FBB179915FB7B6.js?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 1.3 kB |
URL GET HTTP/1.13.66.134.204/groupjs/D2F66879F6B5BDC4D8FBB179915FB7B6.js?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hash3044ad6ddcfeca90b7421a8034328589 edcc324f98e07442f9f610eceaaa0776b1af9589 177d5c312e61851bc963cd1a1e4987e705b48b1f81b8bb130ad700cc7cd07cba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/D2F66879F6B5BDC4D8FBB179915FB7B6.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"4396-0"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 1349
Connection: keep-alive
|
|
| 3.66.134.204/images/ci/icons/complete.svg | 3.66.134.204 | 200 | 197 B |
URL GET HTTP/1.13.66.134.204/images/ci/icons/complete.svg IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashbace85b1fa415de4a4a74ca3d381902d 7483c9d380d9c771840f9a0f4d1a896c5fc644d0 6b1d4c32909ee44f2d4e1800bad63003aa44eee1898d89992a061985780f6687
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/ci/icons/complete.svg HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: private, max-age=0, no-store, must-revalidate
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: image/svg+xml
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"342-1713461723938"
Expires: Tue, 25 Apr 2023 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:23 GMT
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 197
Connection: keep-alive
|
|
| 3.66.134.204/branding/_1_1/loginLogo/CustomLoginLogo.svg?m=lr7grro4 | 3.66.134.204 | 200 | 12 kB |
URL GET HTTP/1.13.66.134.204/branding/_1_1/loginLogo/CustomLoginLogo.svg?m=lr7grro4 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash2db9f750afd2e7a6054d299762a8a40f b53677b185f00c1ce6291eb9a54a06057a7d3d7b af401748968b29fa2be2bedae26e0948cb94ebdd0042260f86a5e5cba70c18d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /branding/_1_1/loginLogo/CustomLoginLogo.svg?m=lr7grro4 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714094306,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:3a7674a2a521d23b53bdadf6c8a1e0b41312dc508120ccb73808ff895c633120,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: private, max-age=0, no-store, must-revalidate
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: image/svg+xml
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"67173-1713463978450"
Expires: Tue, 25 Apr 2023 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 18:12:58 GMT
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 12341
Connection: keep-alive
|
|
| 3.66.134.204/ui-ultra/fonts/open-sans/open-sans-regular.woff | 3.66.134.204 | 200 | 20 kB |
URL GET HTTP/1.13.66.134.204/ui-ultra/fonts/open-sans/open-sans-regular.woff IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 20216, version 1.1 Hashcb721d9fb2f39c4c5fa9d75dd46ce78d 1ae6eab90118f90e61bd2a03fe7462b043756ccf 615494a93f61434c21c6a35e51b508950d66d7784b2f4deb10b7a904b4cca17c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/fonts/open-sans/open-sans-regular.woff HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: font/woff
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"20216-1713461721662"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 20216
Connection: keep-alive
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/ui/styles/print.css?v=3900.89.0-rel.31+520e1f0 | 172.64.153.113 | 200 OK | 28 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/ui/styles/print.css?v=3900.89.0-rel.31+520e1f0 IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeassembler source, ASCII text Hash5a1e4691f6428cdb6b4f8ec2d1bce4e3 7911721bafe245912ae7f2b57dbf7b9fb8b29e9c 163c303141da19cb841148180700c456ca7ba0712600cd411e83841b637f47c9
GET /3900.89.0-rel.31+520e1f0/ui/styles/print.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: text/css
cf-ray: 87a1b5807bfe5688-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650166
cache-control: public, max-age=2592000
etag: W/"5a1e4691f6428cdb6b4f8ec2d1bce4e3"
last-modified: Tue, 16 Apr 2024 17:48:04 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 3.66.134.204/ui-ultra/fonts/noto-serif/noto-serif-700.woff | 3.66.134.204 | 200 | 30 kB |
URL GET HTTP/1.13.66.134.204/ui-ultra/fonts/noto-serif/noto-serif-700.woff IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 30528, version 1.1 Hashcac059679f33a22db64077fcb2d373c3 fd451671d7ab29a818a1a4cc13b8873169b5a459 7524d2331d9b06db184c22369be31cea7aa53227d96f9f13d24745c354e74541
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/fonts/noto-serif/noto-serif-700.woff HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: font/woff
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"30528-1713461721662"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 30528
Connection: keep-alive
|
|
| 3.66.134.204/ui-ultra/fonts/open-sans/open-sans-700.woff | 3.66.134.204 | 200 | 21 kB |
URL GET HTTP/1.13.66.134.204/ui-ultra/fonts/open-sans/open-sans-700.woff IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 20964, version 1.1 Hash107bc2e1387828d8595ef4452c3fc666 4e630a4f834886ab65248b9dfb679659d079a764 2944acfdff85dc6308cf8a2766b6efce9ec63fc8356fd5118a98001b936e50dc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/fonts/open-sans/open-sans-700.woff HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: font/woff
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"20964-1713461721662"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 20964
Connection: keep-alive
|
|
| 3.66.134.204/ui-ultra/bower_components/bb-foundation-extensions/fonts/bb-icons.woff | 3.66.134.204 | 200 | 57 kB |
URL GET HTTP/1.13.66.134.204/ui-ultra/bower_components/bb-foundation-extensions/fonts/bb-icons.woff IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 56576, version 1.0 Hash60a094fee3c9fa7024cd48899403bfa6 44eb42c01be12b54c6423ae52e05252d0e94936f 44586a326d1be6119b94c73f00261828398e817bdf47dd2cb0e887eaa5af8f12
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/bower_components/bb-foundation-extensions/fonts/bb-icons.woff HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: font/woff
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"56576-1713461721826"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 56576
Connection: keep-alive
|
|
| 3.66.134.204/bbcswebdav/institution/login/fondo01.jpg | 3.66.134.204 | 302 | 0 B |
URL GET HTTP/1.13.66.134.204/bbcswebdav/institution/login/fondo01.jpg IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /bbcswebdav/institution/login/fondo01.jpg HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Cache-Control: private, max-age=0, no-store, must-revalidate
Content-Security-Policy: frame-ancestors 'self'
Date: Thu, 25 Apr 2024 22:18:27 GMT
Expires: Tue, 25 Apr 2023 22:18:27 GMT
Last-Modified: Sun, 25 Apr 2004 22:18:27 GMT
Location: https://alt-61bb2155c45f5.blackboard.com/bbcswebdav/institution/login/fondo01.jpg?one_hash=7C296FBD9F99BC07E5D43BD75752D49A&f_hash=9AE966B69234AEB3AFBC43A3E263FA71
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 0
Connection: keep-alive
|
|
| 3.66.134.204/webapps/privacy-disclosure/execute/consent?backURL=https%3A//3.66.134.204/&preview=false&blackboard.platform.security.NonceUtil.nonce=login | 3.66.134.204 | 200 | 28 kB |
URL GET HTTP/1.13.66.134.204/webapps/privacy-disclosure/execute/consent?backURL=https%3A//3.66.134.204/&preview=false&blackboard.platform.security.NonceUtil.nonce=login IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (59546) Hashcc3ca54b539f1dfe07127a0e97c4efad 19c1e8c6317456e8264494fd88071b43960430c2 b82c404d45a5f7864ff274675ab49f437aa4c5bf5ff9fa914bfc0d3fe198278f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/privacy-disclosure/execute/consent?backURL=https%3A//3.66.134.204/&preview=false&blackboard.platform.security.NonceUtil.nonce=login HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, text/html, application/xml, text/xml, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: UgEFVVRUGwICVVFWAgIHVFU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjY3MjQyNyIsImFwIjoiMTM4NTkwNDI2MCIsImlkIjoiMzhkMzZiNmVhZWE3MmQzZCIsInRyIjoiMjMyZDE1MzRmYjZmMjhjYTk4ODFjOTZkNzhjZTY5ZjUiLCJ0aSI6MTcxNDA4MzUwNzQ4MiwidGsiOiI2NDg4ODQifX0=
traceparent: 00-232d1534fb6f28ca9881c96d78ce69f5-38d36b6eaea72d3d-01
tracestate: 648884@nr=0-1-672427-1385904260-38d36b6eaea72d3d----1714083507482
X-Requested-With: XMLHttpRequest
X-Prototype-Version: 1.7
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC; JSESSIONID=91386BEAFE753B2E099028A282864CDB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: private, max-age=0, no-store, must-revalidate
Content-Encoding: gzip
Content-Language: es-ES
Content-Security-Policy: frame-ancestors 'self'
Content-Type: text/html;charset=UTF-8
Date: Thu, 25 Apr 2024 22:18:27 GMT
Expires: Tue, 25 Apr 2023 22:18:27 GMT
Last-Modified: Sun, 25 Apr 2004 22:18:27 GMT
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: JSESSIONID=362D3123556AE3F4A7C24C8056FC5478; Path=/webapps/privacy-disclosure; Secure
BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 27895
Connection: keep-alive
|
|
| 3.66.134.204/groupjs/79A5689F31FD41786870C12F9C10398F.js?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 30 kB |
URL GET HTTP/1.13.66.134.204/groupjs/79A5689F31FD41786870C12F9C10398F.js?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashf3e83b509b3991a020975e6028d243c3 a73787198d4ca46a0399d6c02302cc6631ac7c3f 9d92b2ffaa94f57dbfa0d6326cd6de3ba39b5ba0b948bc0920bbdd67e1891d5a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/79A5689F31FD41786870C12F9C10398F.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC; JSESSIONID=91386BEAFE753B2E099028A282864CDB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"126302-0"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| 3.66.134.204/groupjs/AD08F020135F260526451BB6D03E9333.js?v=3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 244 kB |
URL GET HTTP/1.13.66.134.204/groupjs/AD08F020135F260526451BB6D03E9333.js?v=3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Size244 kB (244539 bytes) Hash209a15481c45b1acd768fbb1c7d2fc61 20c94d824a50015cb888f09a29a9a532e7198f69 a264c00ef062d84c036b156aa5e382dec16fd9d549aa724fd074227c64adbb5a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /groupjs/AD08F020135F260526451BB6D03E9333.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC; JSESSIONID=91386BEAFE753B2E099028A282864CDB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"971183-0"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
transfer-encoding: chunked
Connection: keep-alive
|
|
| 3.66.134.204/webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 3.66.134.204 | 200 | 955 B |
URL GET HTTP/1.13.66.134.204/webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashc2dfa8a026dc7f23c851182267a410cc d22c9ce9b62473438d05954e78a7f14e52f38975 6ad8d6e55f9a039561ce1ebee3dd66a919026919bc18f60d69ed7571879c4158
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /webapps/privacy-disclosure/js/cookieConsent.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: JSESSIONID=362D3123556AE3F4A7C24C8056FC5478; AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC; JSESSIONID=91386BEAFE753B2E099028A282864CDB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: public
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: application/javascript
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"3022-1713461901963"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:38:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 955
Connection: keep-alive
|
|
| alt-61bb2155c45f5.blackboard.com/bbcswebdav/institution/login/fondo01.jpg?one_hash=7C296FBD9F99BC07E5D43BD75752D49A&f_hash=9AE966B69234AEB3AFBC43A3E263FA71 | 35.158.42.91 | 302 | 0 B |
URL GET HTTP/1.1alt-61bb2155c45f5.blackboard.com/bbcswebdav/institution/login/fondo01.jpg?one_hash=7C296FBD9F99BC07E5D43BD75752D49A&f_hash=9AE966B69234AEB3AFBC43A3E263FA71 IP35.158.42.91:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bbcswebdav/institution/login/fondo01.jpg?one_hash=7C296FBD9F99BC07E5D43BD75752D49A&f_hash=9AE966B69234AEB3AFBC43A3E263FA71 HTTP/1.1
Host: alt-61bb2155c45f5.blackboard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3.66.134.204/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Cache-Control: no-cache, no-store, must-revalidate, no-cache="set-cookie"
Content-Security-Policy: frame-ancestors 'self'
Date: Thu, 25 Apr 2024 22:18:27 GMT
Expires: 0
Last-Modified: Sun, 25 Apr 2004 22:18:27 GMT
Location: https://learn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com/61bb2155c45f5/3506442?X-Blackboard-S3-Bucket=learn-eu-central-1-prod-fleet01-xythos&X-Blackboard-Expiration=1714100400000&X-Blackboard-Signature=NozrdX0Xq6zQVKNe5IcK3phmtO2BG9w37LFQIgvhtoU%3D&X-Blackboard-Client-Id=628821&X-Blackboard-S3-Region=eu-central-1&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27fondo01.jpg&response-content-type=image%2Fjpeg&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEGYaDGV1LWNlbnRyYWwtMSJGMEQCIHfWHs%2B6cc%2FvfQA0UIqxYOZyVKcP5yVwIqDwRGL0oOWOAiBIo8UWCaRbtMGDUsw%2BfDLLCKORmx0mZkwGNF6Cv3T11yrGBQiv%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAMaDDYzNTU2NzkyNDE4MyIMu6J6%2B6GWEaqRbjlaKpoFFf1g1ZraM6X12rZhAZX9uoUMk9NYTxlfXO57TnJf61syvOrJnowr%2FPHTNzi8OtAgQFqliDf%2FE3ObIYVYCP%2BlfGM16tSRpubf%2FsukvcCjvwpptXZ7rAUnyVmWzTDPP1mV8K0MmUHeGHBu%2Fc6R42TEecU2INIII9A3WYYX4Dxv7IM%2BPhDOA2cKWHbwHbnbVtYSRDjmR009A5%2BewmaJ8AGFMbQ9a%2BnQOJAgRBTGHN10lPkRqq830N732POddfAwNOiPvdnb1UYBunKs%2BeuPocbUJwMuzy42luOspmwyKC2HFi%2BM8eXqpeyhblI8YsNMJvLNEQwIw%2BwPYz%2F3zyO0KJ7Bw%2F%2F8Sd7d0HjRZPBe%2BqlEGNJW3Mm5x2ehePhNovK8w4B%2BudELLc0bucX5up3mGxKdX7Ewv0wn5anRxqoFsOCLctfogzeNklUavlo%2B3R5hzu7Z3aWHMIkB9676iVxso6bolfecqVZckI8h55%2BOgzFpJdVsq3dl5ZARmqk%2Bahg9lXCNCli3C9%2FLz%2Bl6pxH2hfvUh8Aw8tChCk3UUrn0jN0WG7K0VzKq%2FC%2FR9X8sa4PRkSpenvYIj6sQkkDF0Byt4tZG%2Fk0FL8dcdvgPt%2Bp7Ei5twtAYqeyHXuzkIVLMvC8B8OMEOdWfybKy18bRlBowb9qy6JzOt2XkYZ0faGdJfQU18DlSgvXb3mAiwy3tZPmvpnkIK%2F%2FACCVndiz62kzdHi8qorahhoPvhryg8m4bg3R7USSo17DnB43ZSPtxmgXztcGkXJxivyWUhsKizpavWE7mJmu%2FD%2B0bMoK15UgABBaLmtoaGbK%2FFrtpot0bt0F1QunH7oayKKAnri763tGJgktw6wCJTkj%2Bd66ZdjThGuHugn5vroHG3KsVHXZEMIuZq7EGOrIBb5p6rn39esTSuzKhM%2FX%2F4dL7iJ6zjT6mw5wTM64eYj4BIG%2FJDTSbbzXdxBuGFMmM4kxoyeu3WNlTOkfTAw6Rv1Oo0HpXIQZj3s6kkDIa2DHsfl%2B6ZmKpoQ%2FCwsLkgDSRs33%2FOaxMCfo0fkTpMJrUSNmlItpbsxAdq%2BxBKcRBpVVjXlMJd5B%2BNzCXy3z9PpahfP%2B8HI668%2FfTg21MIgay9%2BciYqj5ZVSRbNKPpiA2gszI7A%3D%3D&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240425T210000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAZH6WM4PL4L2XRI4T%2F20240425%2Feu-central-1%2Fs3%2Faws4_request&X-Amz-Signature=f2944a54eb795051b3a7dc92cb7a38c09086974d7a037836c51d50797e3bd64e
P3P: CP="CAO PSA OUR"
Pragma: no-cache
Set-Cookie: BbRouter=expires:1714094307,id:A2FAC504C1D734EA6E0A44F56A2EA9DF,sessionId:474278109,signature:4a648f3bb5bc641a1a90cca067e70324629333702719359dc964aff4b2319124,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly; SameSite=None
AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC0AA14BEBE9A93D82BD54E532EC8C3E3DED1FB0193B3C23F54C046144EF370E338757746C6693BECD34906121CF29A93;PATH=/;MAX-AGE=900
AWSELBCORS=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC0AA14BEBE9A93D82BD54E532EC8C3E3DED1FB0193B3C23F54C046144EF370E338757746C6693BECD34906121CF29A93;PATH=/;MAX-AGE=900;SECURE;SAMESITE=None
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Blackboard-appserver: ip-10-148-203-85.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 0
Connection: keep-alive
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/icon-core.css | 172.64.153.113 | 200 OK | 1.2 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/icon-core.css IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeASCII text, with very long lines (601) Hash31aaabf9b328158c344befe272e73a9f 40ec9995c08a94ae47adae70fd95773dd0f40486 e903b4dfe94bfbfa4c14860eb57b0966cd2f7a4be397fff8bde791618fdae9e8
GET /3900.89.0-rel.31+520e1f0/fonts/icon-core.css HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: text/css
cf-ray: 87a1b582ed6b5688-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650151
cache-control: public, max-age=2592000
etag: W/"31aaabf9b328158c344befe272e73a9f"
last-modified: Tue, 16 Apr 2024 17:47:37 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/icon-listing.css | 172.64.153.113 | 200 OK | 23 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/icon-listing.css IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
Hash1c41a4e6a2ad6e410fb6d3520e3b2c82 a6d9b2adf78fbeca9f312ccfb4948d54d79cdfbc 717a37d00b6b59825e69ac19ecf89aa3c0a2a4527c5bdf18ab5596bab5af3a9b
GET /3900.89.0-rel.31+520e1f0/fonts/icon-listing.css HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: text/css
cf-ray: 87a1b582ed6e5688-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650151
cache-control: public, max-age=2592000
etag: W/"1c41a4e6a2ad6e410fb6d3520e3b2c82"
last-modified: Tue, 16 Apr 2024 17:47:37 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/theme.css?v=3900.89.0-rel.31+520e1f0 | 172.64.153.113 | 200 OK | 74 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/theme.css?v=3900.89.0-rel.31+520e1f0 IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeUnicode text, UTF-8 text, with very long lines (2593) Hash03b483d1935c8fa74db95cb921f2fc97 11d8e4753233c52c641dbc3fcdcd6fcc460a38fd dfab14f875046871f165ee5c3de9556f442dcdcac18ac91d3724de0b8e83ecab
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/theme.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: text/css
cf-ray: 87a1b5825d105688-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650152
cache-control: public, max-age=2592000
etag: W/"03b483d1935c8fa74db95cb921f2fc97"
last-modified: Tue, 16 Apr 2024 17:48:04 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-700.woff | 172.64.153.113 | 200 OK | 21 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-700.woff IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeWeb Open Font Format, TrueType, length 20964, version 1.1 Hash107bc2e1387828d8595ef4452c3fc666 4e630a4f834886ab65248b9dfb679659d079a764 2944acfdff85dc6308cf8a2766b6efce9ec63fc8356fd5118a98001b936e50dc
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-700.woff HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3.66.134.204
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: font/woff
content-length: 20964
cf-ray: 87a1b5832d925688-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 649175
cache-control: public, max-age=2592000
etag: "107bc2e1387828d8595ef4452c3fc666"
last-modified: Tue, 16 Apr 2024 17:48:03 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/FontAwesome/fontawesome-webfont.woff?v=3.2.1 | 172.64.153.113 | 200 OK | 44 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/fonts/FontAwesome/fontawesome-webfont.woff?v=3.2.1 IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeWeb Open Font Format, TrueType, length 43572, version 1.0 Hashb683029bafe0305ac2234038a03e1541 12f8c193902e99348493ace32e498031bf79b654 18e6b5ff511b90edf098e62ac45ed9d6673a3eee10165d0de4164d4d02a3a77f
GET /3900.89.0-rel.31+520e1f0/fonts/FontAwesome/fontawesome-webfont.woff?v=3.2.1 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3.66.134.204
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: font/woff
content-length: 43572
cf-ray: 87a1b5846e1f5688-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 649175
cache-control: public, max-age=2592000
etag: "b683029bafe0305ac2234038a03e1541"
last-modified: Tue, 16 Apr 2024 17:47:37 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cookie.js | 172.64.153.113 | 200 OK | 2.2 MB |
URL GET HTTP/2learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cookie.js IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
Size2.2 MB (2213788 bytes) Hasha183fc09aa8be412e99d9f469396fd48 3e4d6d08adf86ca9f173654883a720b85568c288 2f6a37a29c735dc433c33e9581d0fd237918b350ab5636bd867920cdca147940
GET /3900.89.0-rel.31+520e1f0/javascript/cookie.js HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: application/javascript
cf-ray: 87a1b5825d145688-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650173
cache-control: public, max-age=2592000
etag: W/"a183fc09aa8be412e99d9f469396fd48"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 3.66.134.204/favicon.ico | 3.66.134.204 | 200 | 2.6 kB |
IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashe60d45ed40811e2af464be6dd48f16df 378903c1d74b3fb2cb4c4ab3fa09f09d305214ba 7310e3c01e1ec9f241ace4cae6ab0bb36185d9d54e9e6a7422aa1f976ef5f6a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC; JSESSIONID=91386BEAFE753B2E099028A282864CDB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: max-age=300,must-revalidate
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self'
Content-Type: image/x-icon
Date: Thu, 25 Apr 2024 22:18:28 GMT
ETag: W/"3370-1713463986411"
Expires: Fri, 25 Apr 2025 22:18:28 GMT
Last-Modified: Thu, 18 Apr 2024 18:13:06 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085308,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:25cc951f27d276ca9da48b12d7ca167edb08a7316e2f17901cb6f5c29e9afba0,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Accept-Encoding
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 2639
Connection: keep-alive
|
|
| 3.66.134.204/bbcswebdav/institution/login/favicon.ico | 3.66.134.204 | | 0 B |
URL GET 3.66.134.204/bbcswebdav/institution/login/favicon.ico IP3.66.134.204:0
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /bbcswebdav/institution/login/favicon.ico HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC; JSESSIONID=91386BEAFE753B2E099028A282864CDB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Cache-Control: private, max-age=0, no-store, must-revalidate
Content-Security-Policy: frame-ancestors 'self'
Date: Thu, 25 Apr 2024 22:18:28 GMT
Expires: Tue, 25 Apr 2023 22:18:28 GMT
Last-Modified: Sun, 25 Apr 2004 22:18:28 GMT
Location: https://alt-61bb2155c45f5.blackboard.com/bbcswebdav/institution/login/favicon.ico?one_hash=A18DF364F6DEA7648A16A1404EA1193D&f_hash=9AE966B69234AEB3AFBC43A3E263FA71
P3P: CP="CAO PSA OUR"
Pragma: private
Set-Cookie: BbRouter=expires:1714085308,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:25cc951f27d276ca9da48b12d7ca167edb08a7316e2f17901cb6f5c29e9afba0,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Blackboard-appserver: ip-10-148-208-45.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 0
Connection: keep-alive
|
|
| alt-61bb2155c45f5.blackboard.com/bbcswebdav/institution/login/favicon.ico?one_hash=A18DF364F6DEA7648A16A1404EA1193D&f_hash=9AE966B69234AEB3AFBC43A3E263FA71 | 35.158.42.91 | | 0 B |
URL GET alt-61bb2155c45f5.blackboard.com/bbcswebdav/institution/login/favicon.ico?one_hash=A18DF364F6DEA7648A16A1404EA1193D&f_hash=9AE966B69234AEB3AFBC43A3E263FA71 IP35.158.42.91:0
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bbcswebdav/institution/login/favicon.ico?one_hash=A18DF364F6DEA7648A16A1404EA1193D&f_hash=9AE966B69234AEB3AFBC43A3E263FA71 HTTP/1.1
Host: alt-61bb2155c45f5.blackboard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3.66.134.204/
DNT: 1
Connection: keep-alive
Cookie: BbRouter=expires:1714094307,id:A2FAC504C1D734EA6E0A44F56A2EA9DF,sessionId:474278109,signature:4a648f3bb5bc641a1a90cca067e70324629333702719359dc964aff4b2319124,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; AWSELBCORS=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC0AA14BEBE9A93D82BD54E532EC8C3E3DED1FB0193B3C23F54C046144EF370E338757746C6693BECD34906121CF29A93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Cache-Control: no-cache, no-store, must-revalidate
Content-Security-Policy: frame-ancestors 'self'
Date: Thu, 25 Apr 2024 22:18:28 GMT
Expires: 0
Last-Modified: Sun, 25 Apr 2004 22:18:28 GMT
Location: https://learn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com/61bb2155c45f5/3506441?X-Blackboard-S3-Bucket=learn-eu-central-1-prod-fleet01-xythos&X-Blackboard-Expiration=1714100400000&X-Blackboard-Signature=HMsc2fSET4LJXPPibqtNrtUR4%2FTF2Cf3W4mmvuqUcWs%3D&X-Blackboard-Client-Id=628821&X-Blackboard-S3-Region=eu-central-1&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27favicon.ico&response-content-type=image%2Fx-icon&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEGYaDGV1LWNlbnRyYWwtMSJGMEQCIHfWHs%2B6cc%2FvfQA0UIqxYOZyVKcP5yVwIqDwRGL0oOWOAiBIo8UWCaRbtMGDUsw%2BfDLLCKORmx0mZkwGNF6Cv3T11yrGBQiv%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAMaDDYzNTU2NzkyNDE4MyIMu6J6%2B6GWEaqRbjlaKpoFFf1g1ZraM6X12rZhAZX9uoUMk9NYTxlfXO57TnJf61syvOrJnowr%2FPHTNzi8OtAgQFqliDf%2FE3ObIYVYCP%2BlfGM16tSRpubf%2FsukvcCjvwpptXZ7rAUnyVmWzTDPP1mV8K0MmUHeGHBu%2Fc6R42TEecU2INIII9A3WYYX4Dxv7IM%2BPhDOA2cKWHbwHbnbVtYSRDjmR009A5%2BewmaJ8AGFMbQ9a%2BnQOJAgRBTGHN10lPkRqq830N732POddfAwNOiPvdnb1UYBunKs%2BeuPocbUJwMuzy42luOspmwyKC2HFi%2BM8eXqpeyhblI8YsNMJvLNEQwIw%2BwPYz%2F3zyO0KJ7Bw%2F%2F8Sd7d0HjRZPBe%2BqlEGNJW3Mm5x2ehePhNovK8w4B%2BudELLc0bucX5up3mGxKdX7Ewv0wn5anRxqoFsOCLctfogzeNklUavlo%2B3R5hzu7Z3aWHMIkB9676iVxso6bolfecqVZckI8h55%2BOgzFpJdVsq3dl5ZARmqk%2Bahg9lXCNCli3C9%2FLz%2Bl6pxH2hfvUh8Aw8tChCk3UUrn0jN0WG7K0VzKq%2FC%2FR9X8sa4PRkSpenvYIj6sQkkDF0Byt4tZG%2Fk0FL8dcdvgPt%2Bp7Ei5twtAYqeyHXuzkIVLMvC8B8OMEOdWfybKy18bRlBowb9qy6JzOt2XkYZ0faGdJfQU18DlSgvXb3mAiwy3tZPmvpnkIK%2F%2FACCVndiz62kzdHi8qorahhoPvhryg8m4bg3R7USSo17DnB43ZSPtxmgXztcGkXJxivyWUhsKizpavWE7mJmu%2FD%2B0bMoK15UgABBaLmtoaGbK%2FFrtpot0bt0F1QunH7oayKKAnri763tGJgktw6wCJTkj%2Bd66ZdjThGuHugn5vroHG3KsVHXZEMIuZq7EGOrIBb5p6rn39esTSuzKhM%2FX%2F4dL7iJ6zjT6mw5wTM64eYj4BIG%2FJDTSbbzXdxBuGFMmM4kxoyeu3WNlTOkfTAw6Rv1Oo0HpXIQZj3s6kkDIa2DHsfl%2B6ZmKpoQ%2FCwsLkgDSRs33%2FOaxMCfo0fkTpMJrUSNmlItpbsxAdq%2BxBKcRBpVVjXlMJd5B%2BNzCXy3z9PpahfP%2B8HI668%2FfTg21MIgay9%2BciYqj5ZVSRbNKPpiA2gszI7A%3D%3D&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240425T210000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAZH6WM4PL4L2XRI4T%2F20240425%2Feu-central-1%2Fs3%2Faws4_request&X-Amz-Signature=5e7aba0c44d1c02b7ca1821c13c00cd2add884a26eb020530c8ffa5359b02666
P3P: CP="CAO PSA OUR"
Pragma: no-cache
Set-Cookie: BbRouter=expires:1714094308,id:A2FAC504C1D734EA6E0A44F56A2EA9DF,sessionId:474278109,signature:62cd396bd275a4167cb9112a2106634ed3f554e0e2fc9ebd4f845d793a40c651,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly; SameSite=None
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Blackboard-appserver: ip-10-148-203-85.eu-central-1.compute.internal
X-Blackboard-product: Blackboard Learn ™ 3900.89.0-rel.31+520e1f0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 0
Connection: keep-alive
|
|
| dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 0.0.0.0 | | 0 B |
URL GET dwr_open/interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /interface/UserDataDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: dwr_open
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/images/reorder_bg.png | 172.64.153.113 | 200 OK | 330 B |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/images/reorder_bg.png IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typePNG image data, 17 x 33, 8-bit/color RGBA, non-interlaced Hashadc43cb2b68639182095e0d5386ccfda afb5eb3618229618e1b05a90ce155fa56a626842 2406525bd2af383be7b20e401d1d79e01b86e4576e46c205b27cd2202db1cc2d
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/images/reorder_bg.png HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/theme.css?v=3900.89.0-rel.31+520e1f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: image/png
content-length: 330
cf-ray: 87a1b5831d8f5688-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 640179
cache-control: public, max-age=2592000
etag: "adc43cb2b68639182095e0d5386ccfda"
last-modified: Tue, 16 Apr 2024 17:48:04 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cdn.js | 172.64.153.113 | 200 OK | 7.5 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cdn.js IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeC source, ASCII text, with very long lines (7910), with no line terminators Hash092d8a76fe4d493135f405a0fa62a7e3 4d350445e38c6ec91fdd5652d340a0a9668192de 905073814295632313f3efd98acd952c1f37e253d61cae907a8fd9958e0e6ea6
GET /3900.89.0-rel.31+520e1f0/javascript/cdn.js HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: application/javascript
cf-ray: 87a1b5825d165688-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650173
cache-control: public, max-age=2592000
etag: W/"7f298f32a138572408938fd65e61e1b9"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/i18n.js?v=3900.89.0-rel.31+520e1f0 | 172.64.153.113 | 200 OK | 2.0 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/i18n.js?v=3900.89.0-rel.31+520e1f0 IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeASCII text, with very long lines (2126), with no line terminators Hashcdcfed3c006c30d0fa6291b3e0e182e3 f1552d9aae333bb466edb49012ad3c2a578fac4c 41669fe6b57e83810cec16bf947d2a81b8bbb7093c3b2ee616498be76293bc4b
GET /3900.89.0-rel.31+520e1f0/javascript/i18n.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: application/javascript
cf-ray: 87a1b5825d135688-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650167
cache-control: public, max-age=2592000
etag: W/"81ad40b5487c3b62dc6c79067a2de090"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/noto-serif/noto-serif-regular.woff | 172.64.153.113 | 200 OK | 27 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/noto-serif/noto-serif-regular.woff IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeWeb Open Font Format, TrueType, length 26800, version 1.1 Hashb6ba7dac6b1c9fae143afd1ce4525e20 2955ba4f22888a7eed61748798833c22483180f9 ea01504bd051c7abe5f01fca1f3d916766a2b48954eb5e3ec70b9a3c1b5d00b2
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/noto-serif/noto-serif-regular.woff HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3.66.134.204
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: font/woff
content-length: 26800
cf-ray: 87a1b5832d915688-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 618543
cache-control: public, max-age=2592000
etag: "b6ba7dac6b1c9fae143afd1ce4525e20"
last-modified: Tue, 16 Apr 2024 17:48:03 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/i18n.js?v=3900.89.0-rel.31+520e1f0 | 172.64.153.113 | 200 OK | 2.0 kB |
URL GET HTTP/2learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/i18n.js?v=3900.89.0-rel.31+520e1f0 IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeASCII text, with very long lines (2126), with no line terminators Hashcdcfed3c006c30d0fa6291b3e0e182e3 f1552d9aae333bb466edb49012ad3c2a578fac4c 41669fe6b57e83810cec16bf947d2a81b8bbb7093c3b2ee616498be76293bc4b
GET /3900.89.0-rel.31+520e1f0/javascript/i18n.js?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:18:26 GMT
content-type: application/javascript
cf-ray: 87a1b57eabb97127-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650166
cache-control: public, max-age=2592000
etag: W/"81ad40b5487c3b62dc6c79067a2de090"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| learn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com/61bb2155c45f5/3506441?X-Blackboard-S3-Bucket=learn-eu-central-1-prod-fleet01-xythos&X-Blackboard-Expiration=1714100400000&X-Blackboard-Signature=HMsc2fSET4LJXPPibqtNrtUR4%2FTF2Cf3W4mmvuqUcWs%3D&X-Blackboard-Client-Id=628821&X-Blackboard-S3-Region=eu-central-1&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27favicon.ico&response-content-type=image%2Fx-icon&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEGYaDGV1LWNlbnRyYWwtMSJGMEQCIHfWHs%2B6cc%2FvfQA0UIqxYOZyVKcP5yVwIqDwRGL0oOWOAiBIo8UWCaRbtMGDUsw%2BfDLLCKORmx0mZkwGNF6Cv3T11yrGBQiv%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAMaDDYzNTU2NzkyNDE4MyIMu6J6%2B6GWEaqRbjlaKpoFFf1g1ZraM6X12rZhAZX9uoUMk9NYTxlfXO57TnJf61syvOrJnowr%2FPHTNzi8OtAgQFqliDf%2FE3ObIYVYCP%2BlfGM16tSRpubf%2FsukvcCjvwpptXZ7rAUnyVmWzTDPP1mV8K0MmUHeGHBu%2Fc6R42TEecU2INIII9A3WYYX4Dxv7IM%2BPhDOA2cKWHbwHbnbVtYSRDjmR009A5%2BewmaJ8AGFMbQ9a%2BnQOJAgRBTGHN10lPkRqq830N732POddfAwNOiPvdnb1UYBunKs%2BeuPocbUJwMuzy42luOspmwyKC2HFi%2BM8eXqpeyhblI8YsNMJvLNEQwIw%2BwPYz%2F3zyO0KJ7Bw%2F%2F8Sd7d0HjRZPBe%2BqlEGNJW3Mm5x2ehePhNovK8w4B%2BudELLc0bucX5up3mGxKdX7Ewv0wn5anRxqoFsOCLctfogzeNklUavlo%2B3R5hzu7Z3aWHMIkB9676iVxso6bolfecqVZckI8h55%2BOgzFpJdVsq3dl5ZARmqk%2Bahg9lXCNCli3C9%2FLz%2Bl6pxH2hfvUh8Aw8tChCk3UUrn0jN0WG7K0VzKq%2FC%2FR9X8sa4PRkSpenvYIj6sQkkDF0Byt4tZG%2Fk0FL8dcdvgPt%2Bp7Ei5twtAYqeyHXuzkIVLMvC8B8OMEOdWfybKy18bRlBowb9qy6JzOt2XkYZ0faGdJfQU18DlSgvXb3mAiwy3tZPmvpnkIK%2F%2FACCVndiz62kzdHi8qorahhoPvhryg8m4bg3R7USSo17DnB43ZSPtxmgXztcGkXJxivyWUhsKizpavWE7mJmu%2FD%2B0bMoK15UgABBaLmtoaGbK%2FFrtpot0bt0F1QunH7oayKKAnri763tGJgktw6wCJTkj%2Bd66ZdjThGuHugn5vroHG3KsVHXZEMIuZq7EGOrIBb5p6rn39esTSuzKhM%2FX%2F4dL7iJ6zjT6mw5wTM64eYj4BIG%2FJDTSbbzXdxBuGFMmM4kxoyeu3WNlTOkfTAw6Rv1Oo0HpXIQZj3s6kkDIa2DHsfl%2B6ZmKpoQ%2FCwsLkgDSRs33%2FOaxMCfo0fkTpMJrUSNmlItpbsxAdq%2BxBKcRBpVVjXlMJd5B%2BNzCXy3z9PpahfP%2B8HI668%2FfTg21MIgay9%2BciYqj5ZVSRbNKPpiA2gszI7A%3D%3D&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240425T210000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAZH6WM4PL4L2XRI4T%2F20240425%2Feu-central-1%2Fs3%2Faws4_request&X-Amz-Signature=5e7aba0c44d1c02b7ca1821c13c00cd2add884a26eb020530c8ffa5359b02666 | 0.0.0.0 | | 0 B |
URL GET learn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com/61bb2155c45f5/3506441?X-Blackboard-S3-Bucket=learn-eu-central-1-prod-fleet01-xythos&X-Blackboard-Expiration=1714100400000&X-Blackboard-Signature=HMsc2fSET4LJXPPibqtNrtUR4%2FTF2Cf3W4mmvuqUcWs%3D&X-Blackboard-Client-Id=628821&X-Blackboard-S3-Region=eu-central-1&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27favicon.ico&response-content-type=image%2Fx-icon&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEGYaDGV1LWNlbnRyYWwtMSJGMEQCIHfWHs%2B6cc%2FvfQA0UIqxYOZyVKcP5yVwIqDwRGL0oOWOAiBIo8UWCaRbtMGDUsw%2BfDLLCKORmx0mZkwGNF6Cv3T11yrGBQiv%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAMaDDYzNTU2NzkyNDE4MyIMu6J6%2B6GWEaqRbjlaKpoFFf1g1ZraM6X12rZhAZX9uoUMk9NYTxlfXO57TnJf61syvOrJnowr%2FPHTNzi8OtAgQFqliDf%2FE3ObIYVYCP%2BlfGM16tSRpubf%2FsukvcCjvwpptXZ7rAUnyVmWzTDPP1mV8K0MmUHeGHBu%2Fc6R42TEecU2INIII9A3WYYX4Dxv7IM%2BPhDOA2cKWHbwHbnbVtYSRDjmR009A5%2BewmaJ8AGFMbQ9a%2BnQOJAgRBTGHN10lPkRqq830N732POddfAwNOiPvdnb1UYBunKs%2BeuPocbUJwMuzy42luOspmwyKC2HFi%2BM8eXqpeyhblI8YsNMJvLNEQwIw%2BwPYz%2F3zyO0KJ7Bw%2F%2F8Sd7d0HjRZPBe%2BqlEGNJW3Mm5x2ehePhNovK8w4B%2BudELLc0bucX5up3mGxKdX7Ewv0wn5anRxqoFsOCLctfogzeNklUavlo%2B3R5hzu7Z3aWHMIkB9676iVxso6bolfecqVZckI8h55%2BOgzFpJdVsq3dl5ZARmqk%2Bahg9lXCNCli3C9%2FLz%2Bl6pxH2hfvUh8Aw8tChCk3UUrn0jN0WG7K0VzKq%2FC%2FR9X8sa4PRkSpenvYIj6sQkkDF0Byt4tZG%2Fk0FL8dcdvgPt%2Bp7Ei5twtAYqeyHXuzkIVLMvC8B8OMEOdWfybKy18bRlBowb9qy6JzOt2XkYZ0faGdJfQU18DlSgvXb3mAiwy3tZPmvpnkIK%2F%2FACCVndiz62kzdHi8qorahhoPvhryg8m4bg3R7USSo17DnB43ZSPtxmgXztcGkXJxivyWUhsKizpavWE7mJmu%2FD%2B0bMoK15UgABBaLmtoaGbK%2FFrtpot0bt0F1QunH7oayKKAnri763tGJgktw6wCJTkj%2Bd66ZdjThGuHugn5vroHG3KsVHXZEMIuZq7EGOrIBb5p6rn39esTSuzKhM%2FX%2F4dL7iJ6zjT6mw5wTM64eYj4BIG%2FJDTSbbzXdxBuGFMmM4kxoyeu3WNlTOkfTAw6Rv1Oo0HpXIQZj3s6kkDIa2DHsfl%2B6ZmKpoQ%2FCwsLkgDSRs33%2FOaxMCfo0fkTpMJrUSNmlItpbsxAdq%2BxBKcRBpVVjXlMJd5B%2BNzCXy3z9PpahfP%2B8HI668%2FfTg21MIgay9%2BciYqj5ZVSRbNKPpiA2gszI7A%3D%3D&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240425T210000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAZH6WM4PL4L2XRI4T%2F20240425%2Feu-central-1%2Fs3%2Faws4_request&X-Amz-Signature=5e7aba0c44d1c02b7ca1821c13c00cd2add884a26eb020530c8ffa5359b02666 IP0.0.0.0:0
CertificateIssuerGoogle Trust Services LLC Subjectlearn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com Fingerprint65:2A:25:2A:AE:A9:C4:C0:53:58:95:EC:8B:1D:53:CF:18:D1:E3:4B ValidityThu, 04 Apr 2024 03:19:23 GMT - Wed, 03 Jul 2024 03:19:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /61bb2155c45f5/3506441?X-Blackboard-S3-Bucket=learn-eu-central-1-prod-fleet01-xythos&X-Blackboard-Expiration=1714100400000&X-Blackboard-Signature=HMsc2fSET4LJXPPibqtNrtUR4%2FTF2Cf3W4mmvuqUcWs%3D&X-Blackboard-Client-Id=628821&X-Blackboard-S3-Region=eu-central-1&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27favicon.ico&response-content-type=image%2Fx-icon&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEGYaDGV1LWNlbnRyYWwtMSJGMEQCIHfWHs%2B6cc%2FvfQA0UIqxYOZyVKcP5yVwIqDwRGL0oOWOAiBIo8UWCaRbtMGDUsw%2BfDLLCKORmx0mZkwGNF6Cv3T11yrGBQiv%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAMaDDYzNTU2NzkyNDE4MyIMu6J6%2B6GWEaqRbjlaKpoFFf1g1ZraM6X12rZhAZX9uoUMk9NYTxlfXO57TnJf61syvOrJnowr%2FPHTNzi8OtAgQFqliDf%2FE3ObIYVYCP%2BlfGM16tSRpubf%2FsukvcCjvwpptXZ7rAUnyVmWzTDPP1mV8K0MmUHeGHBu%2Fc6R42TEecU2INIII9A3WYYX4Dxv7IM%2BPhDOA2cKWHbwHbnbVtYSRDjmR009A5%2BewmaJ8AGFMbQ9a%2BnQOJAgRBTGHN10lPkRqq830N732POddfAwNOiPvdnb1UYBunKs%2BeuPocbUJwMuzy42luOspmwyKC2HFi%2BM8eXqpeyhblI8YsNMJvLNEQwIw%2BwPYz%2F3zyO0KJ7Bw%2F%2F8Sd7d0HjRZPBe%2BqlEGNJW3Mm5x2ehePhNovK8w4B%2BudELLc0bucX5up3mGxKdX7Ewv0wn5anRxqoFsOCLctfogzeNklUavlo%2B3R5hzu7Z3aWHMIkB9676iVxso6bolfecqVZckI8h55%2BOgzFpJdVsq3dl5ZARmqk%2Bahg9lXCNCli3C9%2FLz%2Bl6pxH2hfvUh8Aw8tChCk3UUrn0jN0WG7K0VzKq%2FC%2FR9X8sa4PRkSpenvYIj6sQkkDF0Byt4tZG%2Fk0FL8dcdvgPt%2Bp7Ei5twtAYqeyHXuzkIVLMvC8B8OMEOdWfybKy18bRlBowb9qy6JzOt2XkYZ0faGdJfQU18DlSgvXb3mAiwy3tZPmvpnkIK%2F%2FACCVndiz62kzdHi8qorahhoPvhryg8m4bg3R7USSo17DnB43ZSPtxmgXztcGkXJxivyWUhsKizpavWE7mJmu%2FD%2B0bMoK15UgABBaLmtoaGbK%2FFrtpot0bt0F1QunH7oayKKAnri763tGJgktw6wCJTkj%2Bd66ZdjThGuHugn5vroHG3KsVHXZEMIuZq7EGOrIBb5p6rn39esTSuzKhM%2FX%2F4dL7iJ6zjT6mw5wTM64eYj4BIG%2FJDTSbbzXdxBuGFMmM4kxoyeu3WNlTOkfTAw6Rv1Oo0HpXIQZj3s6kkDIa2DHsfl%2B6ZmKpoQ%2FCwsLkgDSRs33%2FOaxMCfo0fkTpMJrUSNmlItpbsxAdq%2BxBKcRBpVVjXlMJd5B%2BNzCXy3z9PpahfP%2B8HI668%2FfTg21MIgay9%2BciYqj5ZVSRbNKPpiA2gszI7A%3D%3D&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240425T210000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAZH6WM4PL4L2XRI4T%2F20240425%2Feu-central-1%2Fs3%2Faws4_request&X-Amz-Signature=5e7aba0c44d1c02b7ca1821c13c00cd2add884a26eb020530c8ffa5359b02666 HTTP/1.1
Host: learn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3.66.134.204/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:28 GMT
content-type: image/x-icon
cf-ray: 87a1b586184f7127-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 610299
cache-control: private, max-age=2592000
content-disposition: inline; filename*=UTF-8''favicon.ico
etag: W/"ff882fca0776fade5080d8ffc848e78a"
last-modified: Mon, 18 Jul 2022 06:11:30 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 3.66.134.204/ui-ultra/fonts/noto-serif/noto-serif-regular.woff | 3.66.134.204 | 200 | 27 kB |
URL GET HTTP/1.13.66.134.204/ui-ultra/fonts/noto-serif/noto-serif-regular.woff IP3.66.134.204:443
CertificateIssuerAmazon Subjectaula-virtual.unav.edu Fingerprint74:60:C0:0D:BE:CD:AA:88:4D:6B:CD:D7:4D:26:68:E6:53:53:A2:13 ValidityWed, 20 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 26800, version 1.1 Hashb6ba7dac6b1c9fae143afd1ce4525e20 2955ba4f22888a7eed61748798833c22483180f9 ea01504bd051c7abe5f01fca1f3d916766a2b48954eb5e3ec70b9a3c1b5d00b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ui-ultra/fonts/noto-serif/noto-serif-regular.woff HTTP/1.1
Host: 3.66.134.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/ui-ultra/css/ultra.css?v=3900.89.0-rel.31+520e1f0
Cookie: AWSELB=BB737BAD126D3FDE82A8BDE50A16CFC44E7725D33DC204C084AE5932BEB5E9196FA81F8D1BFCB2CA1330019B7E685544BC132C657ED4DD655BF12BED1ADFFB1118B783B551; JSESSIONID=91386BEAFE753B2E099028A282864CDB; BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; BbClientCalenderTimeZone=UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Accept-Ranges: bytes
Cache-Control: public
Content-Security-Policy: frame-ancestors 'self'
Content-Type: font/woff
Date: Thu, 25 Apr 2024 22:18:27 GMT
ETag: W/"26800-1713461721662"
Expires: Fri, 25 Apr 2025 22:18:27 GMT
Last-Modified: Thu, 18 Apr 2024 17:35:21 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: BbRouter=expires:1714085307,id:D7C86ACA17376FC253EA47B087DC0AD4,signature:52b9714f9e7a655267783b9ac8c2376da8cab53960c66bdc68ad213ba77e86d1,site:b0e42efa-3fd1-4568-b369-97a67553b8a5,v:2,xsrf:b0fa2f23-78d9-4f94-83da-69e4e312bd35; Path=/; Secure; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
Content-Length: 26800
Connection: keep-alive
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/core.css | 172.64.153.113 | 200 OK | 12 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/core.css IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
Hashd616cc54b56a90485996a7544034efb9 a8b9753a2359221265b04660939a696b116983b3 0a57f5fbaca0908e5147dde373759aa657eeb7182622860f8bd67e49fcdb4039
GET /3900.89.0-rel.31+520e1f0/common/core.css HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: text/css
cf-ray: 87a1b582ed715688-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650151
cache-control: public, max-age=2592000
etag: W/"d616cc54b56a90485996a7544034efb9"
last-modified: Tue, 16 Apr 2024 17:47:34 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0 | 172.64.153.113 | 200 OK | 252 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0 IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
Size252 kB (252379 bytes) Hash234a1c00d625252fe3b8087da74e6f08 c5ad46a8b84656ca7a7a5e081956b9fc4a38c4d3 6bcccac509d3c9fb6fc12adf7648cb47b96931ce6906a42c3747ef2a69588269
GET /3900.89.0-rel.31+520e1f0/common/shared.css?v=3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: text/css
cf-ray: 87a1b5824d0c5688-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650154
cache-control: public, max-age=2592000
etag: W/"234a1c00d625252fe3b8087da74e6f08"
last-modified: Tue, 16 Apr 2024 17:47:34 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| learn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com/61bb2155c45f5/3506442?X-Blackboard-S3-Bucket=learn-eu-central-1-prod-fleet01-xythos&X-Blackboard-Expiration=1714100400000&X-Blackboard-Signature=NozrdX0Xq6zQVKNe5IcK3phmtO2BG9w37LFQIgvhtoU%3D&X-Blackboard-Client-Id=628821&X-Blackboard-S3-Region=eu-central-1&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27fondo01.jpg&response-content-type=image%2Fjpeg&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEGYaDGV1LWNlbnRyYWwtMSJGMEQCIHfWHs%2B6cc%2FvfQA0UIqxYOZyVKcP5yVwIqDwRGL0oOWOAiBIo8UWCaRbtMGDUsw%2BfDLLCKORmx0mZkwGNF6Cv3T11yrGBQiv%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAMaDDYzNTU2NzkyNDE4MyIMu6J6%2B6GWEaqRbjlaKpoFFf1g1ZraM6X12rZhAZX9uoUMk9NYTxlfXO57TnJf61syvOrJnowr%2FPHTNzi8OtAgQFqliDf%2FE3ObIYVYCP%2BlfGM16tSRpubf%2FsukvcCjvwpptXZ7rAUnyVmWzTDPP1mV8K0MmUHeGHBu%2Fc6R42TEecU2INIII9A3WYYX4Dxv7IM%2BPhDOA2cKWHbwHbnbVtYSRDjmR009A5%2BewmaJ8AGFMbQ9a%2BnQOJAgRBTGHN10lPkRqq830N732POddfAwNOiPvdnb1UYBunKs%2BeuPocbUJwMuzy42luOspmwyKC2HFi%2BM8eXqpeyhblI8YsNMJvLNEQwIw%2BwPYz%2F3zyO0KJ7Bw%2F%2F8Sd7d0HjRZPBe%2BqlEGNJW3Mm5x2ehePhNovK8w4B%2BudELLc0bucX5up3mGxKdX7Ewv0wn5anRxqoFsOCLctfogzeNklUavlo%2B3R5hzu7Z3aWHMIkB9676iVxso6bolfecqVZckI8h55%2BOgzFpJdVsq3dl5ZARmqk%2Bahg9lXCNCli3C9%2FLz%2Bl6pxH2hfvUh8Aw8tChCk3UUrn0jN0WG7K0VzKq%2FC%2FR9X8sa4PRkSpenvYIj6sQkkDF0Byt4tZG%2Fk0FL8dcdvgPt%2Bp7Ei5twtAYqeyHXuzkIVLMvC8B8OMEOdWfybKy18bRlBowb9qy6JzOt2XkYZ0faGdJfQU18DlSgvXb3mAiwy3tZPmvpnkIK%2F%2FACCVndiz62kzdHi8qorahhoPvhryg8m4bg3R7USSo17DnB43ZSPtxmgXztcGkXJxivyWUhsKizpavWE7mJmu%2FD%2B0bMoK15UgABBaLmtoaGbK%2FFrtpot0bt0F1QunH7oayKKAnri763tGJgktw6wCJTkj%2Bd66ZdjThGuHugn5vroHG3KsVHXZEMIuZq7EGOrIBb5p6rn39esTSuzKhM%2FX%2F4dL7iJ6zjT6mw5wTM64eYj4BIG%2FJDTSbbzXdxBuGFMmM4kxoyeu3WNlTOkfTAw6Rv1Oo0HpXIQZj3s6kkDIa2DHsfl%2B6ZmKpoQ%2FCwsLkgDSRs33%2FOaxMCfo0fkTpMJrUSNmlItpbsxAdq%2BxBKcRBpVVjXlMJd5B%2BNzCXy3z9PpahfP%2B8HI668%2FfTg21MIgay9%2BciYqj5ZVSRbNKPpiA2gszI7A%3D%3D&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240425T210000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAZH6WM4PL4L2XRI4T%2F20240425%2Feu-central-1%2Fs3%2Faws4_request&X-Amz-Signature=f2944a54eb795051b3a7dc92cb7a38c09086974d7a037836c51d50797e3bd64e | 172.64.153.113 | 200 OK | 2.2 MB |
URL GET HTTP/2learn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com/61bb2155c45f5/3506442?X-Blackboard-S3-Bucket=learn-eu-central-1-prod-fleet01-xythos&X-Blackboard-Expiration=1714100400000&X-Blackboard-Signature=NozrdX0Xq6zQVKNe5IcK3phmtO2BG9w37LFQIgvhtoU%3D&X-Blackboard-Client-Id=628821&X-Blackboard-S3-Region=eu-central-1&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27fondo01.jpg&response-content-type=image%2Fjpeg&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEGYaDGV1LWNlbnRyYWwtMSJGMEQCIHfWHs%2B6cc%2FvfQA0UIqxYOZyVKcP5yVwIqDwRGL0oOWOAiBIo8UWCaRbtMGDUsw%2BfDLLCKORmx0mZkwGNF6Cv3T11yrGBQiv%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAMaDDYzNTU2NzkyNDE4MyIMu6J6%2B6GWEaqRbjlaKpoFFf1g1ZraM6X12rZhAZX9uoUMk9NYTxlfXO57TnJf61syvOrJnowr%2FPHTNzi8OtAgQFqliDf%2FE3ObIYVYCP%2BlfGM16tSRpubf%2FsukvcCjvwpptXZ7rAUnyVmWzTDPP1mV8K0MmUHeGHBu%2Fc6R42TEecU2INIII9A3WYYX4Dxv7IM%2BPhDOA2cKWHbwHbnbVtYSRDjmR009A5%2BewmaJ8AGFMbQ9a%2BnQOJAgRBTGHN10lPkRqq830N732POddfAwNOiPvdnb1UYBunKs%2BeuPocbUJwMuzy42luOspmwyKC2HFi%2BM8eXqpeyhblI8YsNMJvLNEQwIw%2BwPYz%2F3zyO0KJ7Bw%2F%2F8Sd7d0HjRZPBe%2BqlEGNJW3Mm5x2ehePhNovK8w4B%2BudELLc0bucX5up3mGxKdX7Ewv0wn5anRxqoFsOCLctfogzeNklUavlo%2B3R5hzu7Z3aWHMIkB9676iVxso6bolfecqVZckI8h55%2BOgzFpJdVsq3dl5ZARmqk%2Bahg9lXCNCli3C9%2FLz%2Bl6pxH2hfvUh8Aw8tChCk3UUrn0jN0WG7K0VzKq%2FC%2FR9X8sa4PRkSpenvYIj6sQkkDF0Byt4tZG%2Fk0FL8dcdvgPt%2Bp7Ei5twtAYqeyHXuzkIVLMvC8B8OMEOdWfybKy18bRlBowb9qy6JzOt2XkYZ0faGdJfQU18DlSgvXb3mAiwy3tZPmvpnkIK%2F%2FACCVndiz62kzdHi8qorahhoPvhryg8m4bg3R7USSo17DnB43ZSPtxmgXztcGkXJxivyWUhsKizpavWE7mJmu%2FD%2B0bMoK15UgABBaLmtoaGbK%2FFrtpot0bt0F1QunH7oayKKAnri763tGJgktw6wCJTkj%2Bd66ZdjThGuHugn5vroHG3KsVHXZEMIuZq7EGOrIBb5p6rn39esTSuzKhM%2FX%2F4dL7iJ6zjT6mw5wTM64eYj4BIG%2FJDTSbbzXdxBuGFMmM4kxoyeu3WNlTOkfTAw6Rv1Oo0HpXIQZj3s6kkDIa2DHsfl%2B6ZmKpoQ%2FCwsLkgDSRs33%2FOaxMCfo0fkTpMJrUSNmlItpbsxAdq%2BxBKcRBpVVjXlMJd5B%2BNzCXy3z9PpahfP%2B8HI668%2FfTg21MIgay9%2BciYqj5ZVSRbNKPpiA2gszI7A%3D%3D&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240425T210000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAZH6WM4PL4L2XRI4T%2F20240425%2Feu-central-1%2Fs3%2Faws4_request&X-Amz-Signature=f2944a54eb795051b3a7dc92cb7a38c09086974d7a037836c51d50797e3bd64e IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com Fingerprint65:2A:25:2A:AE:A9:C4:C0:53:58:95:EC:8B:1D:53:CF:18:D1:E3:4B ValidityThu, 04 Apr 2024 03:19:23 GMT - Wed, 03 Jul 2024 03:19:22 GMT
Size2.2 MB (2212977 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /61bb2155c45f5/3506442?X-Blackboard-S3-Bucket=learn-eu-central-1-prod-fleet01-xythos&X-Blackboard-Expiration=1714100400000&X-Blackboard-Signature=NozrdX0Xq6zQVKNe5IcK3phmtO2BG9w37LFQIgvhtoU%3D&X-Blackboard-Client-Id=628821&X-Blackboard-S3-Region=eu-central-1&response-cache-control=private%2C%20max-age%3D21600&response-content-disposition=inline%3B%20filename%2A%3DUTF-8%27%27fondo01.jpg&response-content-type=image%2Fjpeg&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEGYaDGV1LWNlbnRyYWwtMSJGMEQCIHfWHs%2B6cc%2FvfQA0UIqxYOZyVKcP5yVwIqDwRGL0oOWOAiBIo8UWCaRbtMGDUsw%2BfDLLCKORmx0mZkwGNF6Cv3T11yrGBQiv%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F8BEAMaDDYzNTU2NzkyNDE4MyIMu6J6%2B6GWEaqRbjlaKpoFFf1g1ZraM6X12rZhAZX9uoUMk9NYTxlfXO57TnJf61syvOrJnowr%2FPHTNzi8OtAgQFqliDf%2FE3ObIYVYCP%2BlfGM16tSRpubf%2FsukvcCjvwpptXZ7rAUnyVmWzTDPP1mV8K0MmUHeGHBu%2Fc6R42TEecU2INIII9A3WYYX4Dxv7IM%2BPhDOA2cKWHbwHbnbVtYSRDjmR009A5%2BewmaJ8AGFMbQ9a%2BnQOJAgRBTGHN10lPkRqq830N732POddfAwNOiPvdnb1UYBunKs%2BeuPocbUJwMuzy42luOspmwyKC2HFi%2BM8eXqpeyhblI8YsNMJvLNEQwIw%2BwPYz%2F3zyO0KJ7Bw%2F%2F8Sd7d0HjRZPBe%2BqlEGNJW3Mm5x2ehePhNovK8w4B%2BudELLc0bucX5up3mGxKdX7Ewv0wn5anRxqoFsOCLctfogzeNklUavlo%2B3R5hzu7Z3aWHMIkB9676iVxso6bolfecqVZckI8h55%2BOgzFpJdVsq3dl5ZARmqk%2Bahg9lXCNCli3C9%2FLz%2Bl6pxH2hfvUh8Aw8tChCk3UUrn0jN0WG7K0VzKq%2FC%2FR9X8sa4PRkSpenvYIj6sQkkDF0Byt4tZG%2Fk0FL8dcdvgPt%2Bp7Ei5twtAYqeyHXuzkIVLMvC8B8OMEOdWfybKy18bRlBowb9qy6JzOt2XkYZ0faGdJfQU18DlSgvXb3mAiwy3tZPmvpnkIK%2F%2FACCVndiz62kzdHi8qorahhoPvhryg8m4bg3R7USSo17DnB43ZSPtxmgXztcGkXJxivyWUhsKizpavWE7mJmu%2FD%2B0bMoK15UgABBaLmtoaGbK%2FFrtpot0bt0F1QunH7oayKKAnri763tGJgktw6wCJTkj%2Bd66ZdjThGuHugn5vroHG3KsVHXZEMIuZq7EGOrIBb5p6rn39esTSuzKhM%2FX%2F4dL7iJ6zjT6mw5wTM64eYj4BIG%2FJDTSbbzXdxBuGFMmM4kxoyeu3WNlTOkfTAw6Rv1Oo0HpXIQZj3s6kkDIa2DHsfl%2B6ZmKpoQ%2FCwsLkgDSRs33%2FOaxMCfo0fkTpMJrUSNmlItpbsxAdq%2BxBKcRBpVVjXlMJd5B%2BNzCXy3z9PpahfP%2B8HI668%2FfTg21MIgay9%2BciYqj5ZVSRbNKPpiA2gszI7A%3D%3D&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20240425T210000Z&X-Amz-SignedHeaders=host&X-Amz-Expires=21600&X-Amz-Credential=ASIAZH6WM4PL4L2XRI4T%2F20240425%2Feu-central-1%2Fs3%2Faws4_request&X-Amz-Signature=f2944a54eb795051b3a7dc92cb7a38c09086974d7a037836c51d50797e3bd64e HTTP/1.1
Host: learn-eu-central-1-prod-fleet01-xythos.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3.66.134.204/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: image/jpeg
content-length: 2212977
cf-ray: 87a1b5846df256a5-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 610303
cache-control: private, max-age=2592000
content-disposition: inline; filename*=UTF-8''fondo01.jpg
etag: "5d509029d8bbe13efed2239459a981f9"
last-modified: Mon, 18 Jul 2022 06:11:30 GMT
vary: Accept-Encoding, Origin
cf-bgj: h2pri
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 | 0.0.0.0 | | 0 B |
URL GET dwr_open/interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /interface/MashupDWRFacade.js?v=3900.89.0-rel.31+520e1f0_3900.89.0-rel.31+520e1f0 HTTP/1.1
Host: dwr_open
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-regular.woff | 172.64.153.113 | 200 OK | 20 kB |
URL GET HTTP/3learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-regular.woff IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeWeb Open Font Format, TrueType, length 20216, version 1.1 Hashcb721d9fb2f39c4c5fa9d75dd46ce78d 1ae6eab90118f90e61bd2a03fe7462b043756ccf 615494a93f61434c21c6a35e51b508950d66d7784b2f4deb10b7a904b4cca17c
GET /3900.89.0-rel.31+520e1f0/themes/as_2015/fonts/open-sans/open-sans-regular.woff HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3.66.134.204
DNT: 1
Connection: keep-alive
Referer: https://learn.content.blackboardcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: font/woff
content-length: 20216
cf-ray: 87a1b5832d905688-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 649175
cache-control: public, max-age=2592000
etag: "cb721d9fb2f39c4c5fa9d75dd46ce78d"
last-modified: Tue, 16 Apr 2024 17:48:03 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cdn.js | 172.64.153.113 | 200 OK | 7.5 kB |
URL GET HTTP/2learn.content.blackboardcdn.com/3900.89.0-rel.31+520e1f0/javascript/cdn.js IP172.64.153.113:443
CertificateIssuerGoogle Trust Services LLC Subjectlearn.content.blackboardcdn.com FingerprintC2:61:8B:75:CE:2E:63:71:B3:EA:0D:72:B7:57:75:10:FD:2B:49:36 ValidityWed, 03 Apr 2024 23:44:39 GMT - Tue, 02 Jul 2024 23:44:38 GMT
File typeC source, ASCII text, with very long lines (7910), with no line terminators Hash092d8a76fe4d493135f405a0fa62a7e3 4d350445e38c6ec91fdd5652d340a0a9668192de 905073814295632313f3efd98acd952c1f37e253d61cae907a8fd9958e0e6ea6
GET /3900.89.0-rel.31+520e1f0/javascript/cdn.js HTTP/1.1
Host: learn.content.blackboardcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3.66.134.204/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:18:27 GMT
content-type: application/javascript
cf-ray: 87a1b57ebbc77127-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 650173
cache-control: public, max-age=2592000
etag: W/"7f298f32a138572408938fd65e61e1b9"
last-modified: Tue, 16 Apr 2024 17:47:57 GMT
vary: Accept-Encoding, Origin
x-worker-version: iW/tmK21arnNMMoDMStU832MRxDXRJtalnyNOSizCKM=
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|