Report - ssur.cc/BihJE

Report Overview

Visited public
2025-03-18 03:47:56
Tags
URL
ssur.cc/BihJE
Finishing URL
ssur.cc/BihJE
IP / ASN
104.21.14.33
#13335 CLOUDFLARENET
Title
網頁未找到 - 縮短網址工具服務-ssur

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-03-12	2.7 kB	97 kB	104.17.24.14
ssur.cc	unknown	2020-09-08	2020-09-10	2025-03-06	6.4 kB	339 kB	188.114.96.1
kdcl.pchome.com.tw	303897	1985-07-04	2013-08-24	2025-03-11	604 B	199 B	35.206.210.196
www.google.no	25607	2001-02-26	2012-06-26	2025-03-12	768 B	580 B	142.250.178.67
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2025-03-12	990 B	841 B	216.239.34.36
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-03-12	428 B	448 kB	142.250.74.168
kdpic.pchome.com.tw	431811	1985-07-04	2013-08-24	2025-03-11	419 B	12 kB	23.36.77.130

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed
2025-03-18	medium	ssur.cc	Sinkholed

ThreatFox

No alerts detected

JavaScript (24)

	URL	From	Size	First Seen	Last Seen
	ssur.cc/themes/cleanex/assets/js/main.js	ScriptElement	875 B	2023-03-07	2025-04-29
Pretty URL ssur.cc/themes/cleanex/assets/js/main.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11 Last Seen2025-04-29 06:49 Times Seen13 Hash 0e7a1ffa78e3902e6d8e058828cdfc2c eee1f810ed58d5d94a7c47476784c675fa48525d 255c959a449892e96dc9431af875aa2b33c30febfc0e0562c97305beca23ca9e Loading...

	cdnjs.cloudflare.com/ajax/libs/iCheck/1.0.1/icheck.min.js?v=1.0.1	ScriptElement	4.5 kB	2023-03-07	2025-05-14
Pretty URL cdnjs.cloudflare.com/ajax/libs/iCheck/1.0.1/icheck.min.js?v=1.0.1 IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16 Last Seen2025-05-14 17:02 Times Seen405 Hash 8011794c92c6e1476cc7c5811c5c2095 b5ae4e9efe2d42a55d0e01b2bbc43b9a518996c4 6102d725c22f9bf27ef542ceae070843153f3e0926b89820a75f29b107e33cb2 Loading...

	ssur.cc/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	ScriptElement	1.2 kB	2023-03-07	2025-05-18
Pretty URL ssur.cc/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-18 04:06 Times Seen69447 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	kdpic.pchome.com.tw/img/js/xpcadshow.js	ScriptElement	11 kB	2023-12-29	2025-04-29
Pretty URL kdpic.pchome.com.tw/img/js/xpcadshow.js IP 23.36.77.130 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-29 17:11 Last Seen2025-04-29 06:49 Times Seen12 Hash 44d8ee8bb71c6115abe45f2dfaf3311e 227cf3c9119a79b1d8ddf9bb34738facdc8245f7 f6472d994c1b32859fea6651c470c62ba1deb721f8f2cd13916170e28fc92fc5 Loading...

	ssur.cc/BihJE	Eval	11 kB	2025-03-06	2025-04-29
Pretty URL ssur.cc/BihJE IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-03-06 11:02 Last Seen2025-04-29 06:49 Times Seen3 Hash 9b9c1a2eabe0619dfc9470a05b0ebf6b 8bb7c682abccff3b895851a54bb2122a66d3edc7 8364661d65b963f15492e4d152a00322d602ec62a2b6fa24a567110bcea0ddd2 Loading...

	ssur.cc/BihJE	ScriptElement	93 B	2023-03-07	2025-04-29
Pretty URL ssur.cc/BihJE IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:11 Last Seen2025-04-29 06:49 Times Seen7 Hash b21c47f91b34c1d190720d695a7d8928 829c0d5e38959fb8efbdd1205b9600ce10e48e7d c3d8d895421d255f91f1f46f8e3c62760bdac7780058acb5b3404f08c1ffaf40 Loading...

	www.googletagmanager.com/gtag/js?id=G-3ZNZ24KLY8	ScriptElement	447 kB	2025-03-18	2025-03-18
Pretty URL www.googletagmanager.com/gtag/js?id=G-3ZNZ24KLY8 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-18 03:47 Last Seen2025-03-18 03:47 Times Seen1 Hash 7b99c12508855d57a52e728bed6ce6ec f68e39397cd5119b27b9a0051d337e2695437d54 4e328607fc4688828368e088b84fe570c7564d0a11295f82081b36a14fa53b98 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-18
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-18 04:35 Times Seen342894 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	ssur.cc/newjs/jquery.min.js?v=1	ScriptElement	84 kB	2023-03-07	2025-04-30
Pretty URL ssur.cc/newjs/jquery.min.js?v=1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11 Last Seen2025-04-30 20:01 Times Seen24 Hash c7fe76c01f5f79b7cadc37265a410cc6 a9e46273f3161bc876825ac2792f61f117eb7829 a4397817915681f0b58d362436d8bd97ce6f32168f40a3d16ac4607c38143ed2 Loading...

	ssur.cc/BihJE	ScriptElement	370 B	2023-03-13	2025-04-29
Pretty URL ssur.cc/BihJE IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 16:17 Last Seen2025-04-29 06:49 Times Seen13 Hash f5a46e4d6bfb56ada944aaf510663215 624c63d5c08104c6f272010acabc6c83b09585bf 1accc050c981352c789ddbf0a3054551ab7387efb7e5c51e81c3142616ee159b Loading...

	cdnjs.cloudflare.com/ajax/libs/clipboard.js/1.5.15/clipboard.min.js?v=1.5.15	ScriptElement	10 kB	2023-04-09	2025-04-29
Pretty URL cdnjs.cloudflare.com/ajax/libs/clipboard.js/1.5.15/clipboard.min.js?v=1.5.15 IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-09 11:04 Last Seen2025-04-29 06:49 Times Seen400 Hash c4084fa62872d4f2da2d584f7def61f7 cf47c8ebb2248c3850ee4abeab81dd18310a2a76 f5e3d1a49e9da1e47d735b121abbe9427c88334c7d753b99cdc7284e75a5ff72 Loading...

	ssur.cc/sandbox%20eval%20code		147 B	2023-04-11	2025-05-18
Pretty URL ssur.cc/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-18 04:35 Times Seen343714 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	about:blank	JavascriptURL	304 B	2025-03-18	2025-03-18
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by javascriptURL Embedded in HTML false Observations First Seen2025-03-18 03:47 Last Seen2025-03-18 03:47 Times Seen1 Hash 6b2e663c6c5c498dc66f98949b09c3cb 7d8cb986e2febdb7a853eddb3ee34aea6f6f43dd b0694664176ac8ea3d19b84aa880a90c3801dee298c50992ed818e2495a3b6ab Loading...

	ssur.cc/BihJE	ScriptElement	153 B	2023-07-01	2025-04-29
Pretty URL ssur.cc/BihJE IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-01 21:18 Last Seen2025-04-29 06:49 Times Seen7 Hash 212e0866627fc6716db6e33adef14dfd ebd6b5fa9ddaa290bf6efd303630bcbe66d5f92e 6cbeb89e02081233e433128504422d6de6143521ea7c37f395eefcb6dad34df7 Loading...

	ssur.cc/static/bootstrap.min.js?v=1	ScriptElement	3.2 kB	2023-03-07	2025-04-29
Pretty URL ssur.cc/static/bootstrap.min.js?v=1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11 Last Seen2025-04-29 06:49 Times Seen13 Hash a7690cf16699689d326079102d18256b 14c3f357c38e5c0b68b1b293b28b9db2ff0bfc45 c620b05f85e42c7a25ccfcc00896e113659d14e42752e3aa8042a04e5580b856 Loading...

	cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js?v=3.0.3	ScriptElement	20 kB	2023-03-07	2025-05-17
Pretty URL cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js?v=3.0.3 IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-17 23:08 Times Seen1917 Hash f2bc0804920974cdb94feca2936b668c 253b288316ee7bb62b0bc755d7834b14b265f18c af4c6683814aa527caf53bde3d021e6aafe00833b45f2dead043c87ed7864674 Loading...

	ssur.cc/BihJE	ScriptElement	102 B	2023-03-13	2025-04-29
Pretty URL ssur.cc/BihJE IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 16:17 Last Seen2025-04-29 06:49 Times Seen7 Hash 4418b74ea156f6d4797d7fef7176e840 a9287b8b3596ed4d4b7a305a2273c4639effb6cc af6f2d12abecd7b8f5cddc23dc08f31efca3ac96585e227d2803c9f45040e69c Loading...

	ssur.cc/static/application.js?v=1	ScriptElement	10 kB	2023-03-07	2025-04-29
Pretty URL ssur.cc/static/application.js?v=1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11 Last Seen2025-04-29 06:49 Times Seen13 Hash 60b3ca6ff91497a48b42e0fdd138c058 5805bb1bf79cb33c6d54913ea3cc44b76630a075 a5d8050019d42b53121c4615da8471d976ed0da9bdd5b73ae2b1e878df3e9735 Loading...

	ssur.cc/static/server.js?ver=10	ScriptElement	7.8 kB	2023-03-07	2025-04-29
Pretty URL ssur.cc/static/server.js?ver=10 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11 Last Seen2025-04-29 06:49 Times Seen13 Hash b3d101af289c5d1b0eb950cbf71b5ea5 9d9a74bdb713762486e2a59be3662571c2caa3f6 8495eede92572ea9f6e0b03e0abfc047214811d8cbebe05b73289c3f723e3f1b Loading...

	ssur.cc/static/application.fn.js?v=3	ScriptElement	4.2 kB	2023-03-07	2025-04-29
Pretty URL ssur.cc/static/application.fn.js?v=3 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11 Last Seen2025-04-29 06:49 Times Seen13 Hash d52fa194b4fe2733eccccffbe587f228 743079d0be7f50c7164f68bb6d65b222cc91bb84 8fdbd272a913b863dcf7aebaf63da9d08d91e223c95ef317c348f9966fcdd02a Loading...

	cdnjs.cloudflare.com/ajax/libs/chosen/1.1.0/chosen.jquery.min.js?v=1.1.0	ScriptElement	27 kB	2023-03-07	2025-05-16
Pretty URL cdnjs.cloudflare.com/ajax/libs/chosen/1.1.0/chosen.jquery.min.js?v=1.1.0 IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20 Last Seen2025-05-16 14:00 Times Seen241 Hash 4fabe14fb10d99c4b432db5ce9847c06 9dd6a493d2044e12fcf21addfe0cd93293568d69 5c7e07dfb2d7437793e8b1ed577739a8bd55558df14aa7234714675ba53f71ee Loading...

	ssur.cc/BihJE	ScriptElement	1.1 kB	2023-03-07	2025-04-29
Pretty URL ssur.cc/BihJE IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:11 Last Seen2025-04-29 06:49 Times Seen7 Hash aa2a16ae47a4f712556d0258e3ac2734 01b1cb527cd29f05b9ee8c561c24ef23f150f790 abf9485f658a467dbdc8a28a178662b6610a77448a6422b65b1d8f62a8e26149 Loading...

	cdnjs.cloudflare.com/ajax/libs/pace/0.4.17/pace.js?v=0.4.17	ScriptElement	25 kB	2023-03-07	2025-04-29
Pretty URL cdnjs.cloudflare.com/ajax/libs/pace/0.4.17/pace.js?v=0.4.17 IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20 Last Seen2025-04-29 06:49 Times Seen106 Hash 01c36a086a0f0c42ade1e315ab74e959 ec562b4c1aed67979857285515d0b0622424b0b6 a898f00aabf0e5632b47a59e092c4662c8cbda0c33ea6d0d424cbced57e3ee72 Loading...

		Size	First Seen	Last Seen
	#1 Write - f7ed2c196dc9cc2773c7a150afe65a8e	551 B	2025-03-18 03:47	2025-03-18 03:47
Pretty Observations First Seen2025-03-18 03:47 Last Seen2025-03-18 03:47 Times Seen1 Hash f7ed2c196dc9cc2773c7a150afe65a8e 1d0a285b0125f2265857e8a59ae1a1da3b0f8fcd 1736a49f156981ee5a732ae2659f179042b426ee6b4adb61f67c3c3bdab27b36 Loading...

HTTP Transactions (24)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/iCheck/1.0.1/icheck.min.js?v=1.0.1

104.17.24.14

200 OK

4.5 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/iCheck/1.0.1/icheck.min.js?v=1.0.1
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT

File type
JavaScript source, ASCII text, with very long lines (4740), with no line terminators
Size
4.5 kB (4516 bytes)
Hash
211c8dd8b81d74e81a717d8b703e0298
3c12fdcc8c290ab3293aafdeaa4709ea13f1e409
6e59664c34bd9ab70e0212c887da0033ddc10a85d36db3dd94c91b61a6da121e

HTTP Headers

GET /ajax/libs/iCheck/1.0.1/icheck.min.js?v=1.0.1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 1908
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65994988-774"
last-modified: Sat, 06 Jan 2024 13:37:28 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 7665265
expires: Sun, 08 Mar 2026 03:47:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JADaeY1%2FWXFJmvCW4lsjO8miLnI%2FFfIxOoLOeBPCnfAGvirdW5XQgBLPfAGpt8mW5ve7cwyJzpPwG%2B9FOZnUNaTLScuvWdW0QiN%2BfZTpBzNZtsrYjaY9Xwzz5Z04O82ovG7boToK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9221bfeed80c0b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/clipboard.js/1.5.15/clipboard.min.js?v=1.5.15

104.17.24.14

200 OK

10 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/clipboard.js/1.5.15/clipboard.min.js?v=1.5.15
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT

File type

Size
10 kB (10276 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ajax/libs/clipboard.js/1.5.15/clipboard.min.js?v=1.5.15 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 2906
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e29-2824"
last-modified: Mon, 04 May 2020 16:09:13 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 467054
expires: Sun, 08 Mar 2026 03:47:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B6xfTher1PH8Q%2FaunpkyLLqm61PCB5BrWNEXpD9%2FnTnCs0hehrmfT7Sbpl%2BcsKXFp45Prnmu%2BV80%2FaupexWWJtKD9MutfLjJMWJNuZRHB7tq2rEtRube9QOCYd2N%2FoKf9gvgcuTA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9221bfeec80b0b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ssur.cc/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

188.114.96.1

200 OK

1.2 kB

URL GET
ssur.cc/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript
last-modified: Tue, 11 Mar 2025 18:12:36 GMT
etag: W/"67d07d14-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=65YqYtUD0jbthaTFovHEazSb8Hs8m1rXUyKY5u%2FdtXRNMtU%2BaS9IjUPW4%2FLSQbIgtVIqjfSP5G13YflGKkxDdBYxkmXGQfa6zRkQUMVLVuVNnZ5gp2cz%2Fgjq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9221bfee9e327128-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 20 Mar 2025 03:47:37 GMT
cache-control: max-age=172800, public
content-encoding: gzip

kdcl.pchome.com.tw/adshow2.html?pfbxCustomerInfoId=PFBC20201127001&positionId=PFBP202011270001&padWidth=300&padHeight=250&keyword=&page=&precise=&_pa=xxx-708a72be-20f2-4af5-ba7d-102f1800530f&screenX=1280&screenY=1024&t=155&docurl=https://ssur.cc/BihJE

35.206.210.196

403 Forbidden

0 B

URL GET
kdcl.pchome.com.tw/adshow2.html?pfbxCustomerInfoId=PFBC20201127001&positionId=PFBP202011270001&padWidth=300&padHeight=250&keyword=&page=&precise=&_pa=xxx-708a72be-20f2-4af5-ba7d-102f1800530f&screenX=1280&screenY=1024&t=155&docurl=https://ssur.cc/BihJE
IP
35.206.210.196:443
ASN
#15169 GOOGLE

Requested by
https://ssur.cc/BihJE
Certificate
IssuerDigiCert Inc
Subject*.pchome.com.tw
Fingerprint4D:20:71:2E:B2:C9:BB:FA:A0:B6:60:F0:F7:D8:91:48:89:29:A5:07
ValidityTue, 24 Dec 2024 00:00:00 GMT - Sat, 24 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /adshow2.html?pfbxCustomerInfoId=PFBC20201127001&positionId=PFBP202011270001&padWidth=300&padHeight=250&keyword=&page=&precise=&_pa=xxx-708a72be-20f2-4af5-ba7d-102f1800530f&screenX=1280&screenY=1024&t=155&docurl=https://ssur.cc/BihJE HTTP/1.1
Host: kdcl.pchome.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
content-length: 134
content-type: text/html; charset=UTF-8
date: Tue, 18 Mar 2025 03:47:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ssur.cc/content/favicon.ico

188.114.96.1

200 OK

15 kB

URL GET
ssur.cc/content/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15406 bytes)
Hash
97acbdfa26294bf211d46042077a4cf1
38d12ca8a59a79d2cf08275ed2c9708e2bdc097f
662bb26bb1383f3f48edc442ce25a31e7486da7abaa61b32a088681e35546d7f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /content/favicon.ico HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8; _pat=J.1742269657852.0; _pa=xxx-708a72be-20f2-4af5-ba7d-102f1800530f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:38 GMT
content-type: image/x-icon
server: cloudflare
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=6,i=?0
etag: W/"621fa7d4-3c2e"
content-encoding: br
cf-ray: 9221bff2af977128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3ZNZ24KLY8&cid=80207038.1742269658&gtm=45je53d3v9128853927za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&z=40450898

142.250.178.67

200 OK

42 B

URL GET
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3ZNZ24KLY8&cid=80207038.1742269658&gtm=45je53d3v9128853927za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&z=40450898
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subject*.google.no
FingerprintF2:05:97:F0:57:2B:A2:B3:28:EF:72:32:F4:69:9F:14:E9:B2:3B:16
ValidityMon, 10 Mar 2025 08:38:47 GMT - Mon, 02 Jun 2025 08:38:46 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3ZNZ24KLY8&cid=80207038.1742269658&gtm=45je53d3v9128853927za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&z=40450898 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 18 Mar 2025 03:47:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ssur.cc/newjs/jquery.min.js?v=1

188.114.96.1

200 OK

84 kB

URL GET
ssur.cc/newjs/jquery.min.js?v=1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
JavaScript source, ASCII text, with very long lines (32023)
Size
84 kB (83487 bytes)
Hash
c7fe76c01f5f79b7cadc37265a410cc6
a9e46273f3161bc876825ac2792f61f117eb7829
a4397817915681f0b58d362436d8bd97ce6f32168f40a3d16ac4607c38143ed2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /newjs/jquery.min.js?v=1 HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
vary: Accept-Encoding
etag: W/"621fa7d4-1461f"
expires: Tue, 18 Mar 2025 08:42:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 25513
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jZRIH%2BBvqABqTJizcW%2Ba7tffO1rN%2F%2FvVEvnO0hf4V5x1BlhE0AnO%2F5%2BQWw3Cq0LMjfJBwjdabxPK5Bxo7Li8icY7yEp2uY4vKJh5lZ75XYdkSWDqJ5%2BmLyCO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9221bfee3e057128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4732&min_rtt=4357&rtt_var=2383&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16173&recv_bytes=2628&delivery_rate=86591&cwnd=12000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=453&x=1", cfExtPri, cfHdrFlush;dur=4

cdnjs.cloudflare.com/ajax/libs/chosen/1.1.0/chosen.jquery.min.js?v=1.1.0

104.17.24.14

200 OK

27 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/chosen/1.1.0/chosen.jquery.min.js?v=1.1.0
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT

File type
JavaScript source, ASCII text, with very long lines (26845)
Size
27 kB (26966 bytes)
Hash
4fabe14fb10d99c4b432db5ce9847c06
9dd6a493d2044e12fcf21addfe0cd93293568d69
5c7e07dfb2d7437793e8b1ed577739a8bd55558df14aa7234714675ba53f71ee

HTTP Headers

GET /ajax/libs/chosen/1.1.0/chosen.jquery.min.js?v=1.1.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 5483
cf-ray: 9221bfeea8060b3d-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e23-6956"
last-modified: Mon, 04 May 2020 16:09:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 259545
expires: Sun, 08 Mar 2026 03:47:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OpzH4h6NV1Cwcj6KzzGsKojyEYPR6P%2FzG1JQUJT4RhjmMKB3bCRrMk4QQ0RvFfbmlR%2FUe0PxaloejP9dFyLsPv9hvjyVZ1FVXJ3XqF75%2Fvzzy62RicFOLnrUyY7r2SwD620JJLGV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ssur.cc/static/css/components.min.css

188.114.96.1

200 OK

19 kB

URL GET
ssur.cc/static/css/components.min.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
ASCII text, with very long lines (18333), with CRLF line terminators
Size
19 kB (19244 bytes)
Hash
c6b1e270932488aff5e9966e2d280639
1eefaf2fa450a0db4f4e200de86c4bf750ea519d
d960570a3f32fc7c0cfecdb73fa3ade23c21ff38a0dbdf5af9ab6e6306d58114

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/components.min.css HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: text/css
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
vary: Accept-Encoding
etag: W/"621fa7d4-4b2c"
expires: Tue, 18 Mar 2025 08:42:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 25513
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4SEFOi5QnqoyGc5xj6916Dp9TPAftfrHSJGq8pEY3iL2WPNiP2KyWbRmF3jWM6HGnebkoTA4ineq%2Fuii%2F1r9jV%2BMcIggtgJaamDQZm1ObEdbmbFNBwUIsm0O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9221bfee3e047128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4732&min_rtt=4357&rtt_var=2383&sent=15&recv=11&lost=0&retrans=0&sent_bytes=4173&recv_bytes=2628&delivery_rate=86591&cwnd=12000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=452&x=1", cfExtPri, cfHdrFlush;dur=0

ssur.cc/themes/cleanex/style.css?ver=20210812.1

188.114.96.1

200 OK

58 kB

URL GET
ssur.cc/themes/cleanex/style.css?ver=20210812.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
ASCII text, with CRLF line terminators
Size
58 kB (57591 bytes)
Hash
100e371af5409dea9a0bd5c2ea84cd78
d7349680c849f2a3dc60b6d7178e271ade9f783b
14d61ad43b79e4206646131a26bee81f8ddf3a031898ee73e865bbfe04eb9f6c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /themes/cleanex/style.css?ver=20210812.1 HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: text/css
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
vary: Accept-Encoding
etag: W/"621fa7d4-e0f7"
expires: Tue, 18 Mar 2025 08:42:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 25513
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RrKl4LwRU27oYSfrU2U16t5TC4CVb0z6283i5sMj4dk7NsKld22q4eoBNTpMeweqEVe0yB7yxrdsy13w6ziQZDHsshLmd0ark3Ot6aQWE49Y9Niic8K%2Fd9DW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9221bfee3e037128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4732&min_rtt=4357&rtt_var=2383&sent=19&recv=11&lost=0&retrans=0&sent_bytes=8168&recv_bytes=2628&delivery_rate=86591&cwnd=12000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=452&x=1", cfExtPri, cfHdrFlush;dur=0

ssur.cc/static/server.js?ver=10

188.114.96.1

200 OK

7.8 kB

URL GET
ssur.cc/static/server.js?ver=10
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (8373), with no line terminators
Size
7.8 kB (7798 bytes)
Hash
ab3419fa60f6dd2ccfdb87c8cd454011
6636cb75cdf7b366fe86978b94aa84a52d742f3f
b7d58337502b8f9acfc239523f81753d8e646d203c80c39e176dec96d5639526

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/server.js?ver=10 HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
vary: Accept-Encoding
etag: W/"621fa7d4-1e76"
expires: Tue, 18 Mar 2025 08:42:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
age: 25512
cf-cache-status: HIT
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e5Ynb7gvkVc87At%2BR9cQyd5SZZPPzLJtAUCHPWVcR5i7Sm1YlLu2oi2yDIy9Be5UfcLy5U4GtvUpsf4QAGSdEVQGWX8M5W6%2BtIMGm2jNXvIy6XlB%2BMs1ijeS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9221bfee7e287128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5022&min_rtt=4357&rtt_var=1488&sent=83&recv=15&lost=0&retrans=0&sent_bytes=78641&recv_bytes=3305&delivery_rate=5687606&cwnd=48000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=494&x=1", cfExtPri, cfHdrFlush;dur=0

region1.analytics.google.com/g/collect?v=2&tid=G-3ZNZ24KLY8&gtm=45je53d3v9128853927za200&_p=1742269657650&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&cid=80207038.1742269658&ul=en-us&sr=1280x1024&ir=1&frm=0&pscdl=noapi&_eu=EA&_s=1&sid=1742269658&sct=1&seg=0&dl=https%3A%2F%2Fssur.cc%2FBihJE&dt=%E7%B6%B2%E9%A0%81%E6%9C%AA%E6%89%BE%E5%88%B0%20-%20%E7%B8%AE%E7%9F%AD%E7%B6%B2%E5%9D%80%E5%B7%A5%E5%85%B7%E6%9C%8D%E5%8B%99-ssur&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=4141

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-3ZNZ24KLY8&gtm=45je53d3v9128853927za200&_p=1742269657650&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&cid=80207038.1742269658&ul=en-us&sr=1280x1024&ir=1&frm=0&pscdl=noapi&_eu=EA&_s=1&sid=1742269658&sct=1&seg=0&dl=https%3A%2F%2Fssur.cc%2FBihJE&dt=%E7%B6%B2%E9%A0%81%E6%9C%AA%E6%89%BE%E5%88%B0%20-%20%E7%B8%AE%E7%9F%AD%E7%B6%B2%E5%9D%80%E5%B7%A5%E5%85%B7%E6%9C%8D%E5%8B%99-ssur&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=4141
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-3ZNZ24KLY8&gtm=45je53d3v9128853927za200&_p=1742269657650&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&cid=80207038.1742269658&ul=en-us&sr=1280x1024&ir=1&frm=0&pscdl=noapi&_eu=EA&_s=1&sid=1742269658&sct=1&seg=0&dl=https%3A%2F%2Fssur.cc%2FBihJE&dt=%E7%B6%B2%E9%A0%81%E6%9C%AA%E6%89%BE%E5%88%B0%20-%20%E7%B8%AE%E7%9F%AD%E7%B6%B2%E5%9D%80%E5%B7%A5%E5%85%B7%E6%9C%8D%E5%8B%99-ssur&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=4141 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ssur.cc/
Origin: https://ssur.cc
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://ssur.cc
date: Tue, 18 Mar 2025 03:47:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ssur.cc/static/bootstrap.min.js?v=1

188.114.96.1

200 OK

3.2 kB

URL GET
ssur.cc/static/bootstrap.min.js?v=1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
JavaScript source, ASCII text, with very long lines (3358), with no line terminators
Size
3.2 kB (3249 bytes)
Hash
2a6e9fa930dcaf5bb7fe40e5b1e465af
2c352a82a89df124c81641a4eae00d633702b48b
2d30bac19160a5fc713b650771eaac1424e623919ec0fed98f7858c113d1c1e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/bootstrap.min.js?v=1 HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
vary: Accept-Encoding
etag: W/"621fa7d4-cb1"
expires: Tue, 18 Mar 2025 08:42:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
age: 25512
cf-cache-status: HIT
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FVge6l%2B3AjYEgocPvfszYdRvoA9yRcKXXcYvE%2BtPdJ9JapDOU%2FCUZwJOSu4WrsjEoSmkdNm%2FsyZ3q%2B5xk%2FNOhuUK7HalbKcjz%2BA2qXniHIVyoVOrdZTWDkjd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9221bfee3e077128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4732&min_rtt=4357&rtt_var=2383&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16173&recv_bytes=2628&delivery_rate=86591&cwnd=12000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=453&x=1", cfExtPri, cfHdrFlush;dur=11

cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js?v=3.0.3

104.17.24.14

200 OK

20 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js?v=3.0.3
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT

File type
JavaScript source, ASCII text, with very long lines (19802), with no line terminators
Size
20 kB (19802 bytes)
Hash
f2bc0804920974cdb94feca2936b668c
253b288316ee7bb62b0bc755d7834b14b265f18c
af4c6683814aa527caf53bde3d021e6aafe00833b45f2dead043c87ed7864674

HTTP Headers

GET /ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js?v=3.0.3 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 5676
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e2d-4d5a"
last-modified: Mon, 04 May 2020 16:09:17 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 448426
expires: Sun, 08 Mar 2026 03:47:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d0ZkD%2BeJEu92ztGDbMe5dGD7q9ob2M%2FqZun7A%2Bn057cN15ZljZSCt7hcJd6Bec2Irgx37UjYBVCo2%2BVW7Exm2JIKHZhPz0cDp9P7ZLlLPfkBoQa%2BaoN5Lr5JbQje1CWAaczCUCdx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9221bfeed80d0b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ssur.cc/static/fonts/glyphicons-halflings-regular.woff

188.114.96.1

200 OK

23 kB

URL GET
ssur.cc/static/fonts/glyphicons-halflings-regular.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
Web Open Font Format, TrueType, length 23320, version 1.0
Size
23 kB (23320 bytes)
Hash
68ed1dac06bf0409c18ae7bc62889170
22037a3455914e5662fa51a596677bdb329e2c5c
fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/static/css/bootstrap.min.css?v=1
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8; _pat=J.1742269657852.0; _pa=xxx-708a72be-20f2-4af5-ba7d-102f1800530f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:38 GMT
content-type: font/woff
content-length: 23320
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
etag: "621fa7d4-5b18"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Nkb7FOJ1kdsyatonOkno0JAqBxPi00hag7PjcaE%2FdYVcR%2B3WOFHv%2FkhPc%2BzzcQq2Z8OwJkjenCCTdr9%2BzgaNETFXvTLj8Gx1IjudUJf3ww5cE5zJdJGnqKn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9221bff1bf3d7128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6027&min_rtt=4357&rtt_var=2643&sent=96&recv=20&lost=0&retrans=0&sent_bytes=88280&recv_bytes=4735&delivery_rate=112405&cwnd=48000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=1469&x=1", cfExtPri, cfHdrFlush;dur=0

www.googletagmanager.com/gtag/js?id=G-3ZNZ24KLY8

142.250.74.168

200 OK

447 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-3ZNZ24KLY8
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type
JavaScript source, ASCII text, with very long lines (17272)
Size
447 kB (447190 bytes)
Hash
7b99c12508855d57a52e728bed6ce6ec
f68e39397cd5119b27b9a0051d337e2695437d54
4e328607fc4688828368e088b84fe570c7564d0a11295f82081b36a14fa53b98

HTTP Headers

GET /gtag/js?id=G-3ZNZ24KLY8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Mar 2025 03:47:37 GMT
expires: Tue, 18 Mar 2025 03:47:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 144340
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ssur.cc/BihJE

188.114.96.1

200 OK

8.9 kB

URL User Request GET
ssur.cc/BihJE
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9435), with no line terminators
Size
8.9 kB (8946 bytes)
Hash
0c8b190cced013f769535e3ffe4c837c
72880c0b9aa5c0ea1691c5f33654372ccdfe5c09
bd5a81a98b48367d64431219d61cd5fcc5a00d5ad5c34c0c6874587026a70057

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /BihJE HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 03:47:36 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lIJb9glg75W9zdx0YMBaKIUpP9oHXJVcJph23bZG85c4%2BcJHwz6%2FBI40bFcc%2B25fjRxmjffxrVAWY2w4EUlxkhG4Xq7rJwS3uVDkEq6BCetu4P%2FCGxp7VQnt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9221bfda7e86569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6420&min_rtt=470&rtt_var=11879&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3261&recv_bytes=1243&delivery_rate=7240000&cwnd=254&unsent_bytes=0&cid=0362a9b3697757c7&ts=2743&x=0"
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/pace/0.4.17/pace.js?v=0.4.17

104.17.24.14

200 OK

25 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/pace/0.4.17/pace.js?v=0.4.17
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT

File type
JavaScript source, ASCII text, with very long lines (587)
Size
25 kB (25115 bytes)
Hash
01c36a086a0f0c42ade1e315ab74e959
ec562b4c1aed67979857285515d0b0622424b0b6
a898f00aabf0e5632b47a59e092c4662c8cbda0c33ea6d0d424cbced57e3ee72

HTTP Headers

GET /ajax/libs/pace/0.4.17/pace.js?v=0.4.17 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 5158
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f40-621b"
last-modified: Mon, 04 May 2020 16:13:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 439552
expires: Sun, 08 Mar 2026 03:47:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FgIB1h2%2F8svH6Wl1k2%2FhNhLG0v%2BoSTotwd11XsIlCcv44PYw6dyDHtrj19d51nJFwjV%2BrtP3fUg6CtWQkWsj29ZDA10vCNUYtqs1IKGT%2BbhQQcXdwZ%2FHaZ9f5nheIvD%2Fzd9vre4b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9221bfeee8100b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ssur.cc/static/application.js?v=1

188.114.96.1

200 OK

10 kB

URL GET
ssur.cc/static/application.js?v=1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
10 kB (10339 bytes)
Hash
60b3ca6ff91497a48b42e0fdd138c058
5805bb1bf79cb33c6d54913ea3cc44b76630a075
a5d8050019d42b53121c4615da8471d976ed0da9bdd5b73ae2b1e878df3e9735

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/application.js?v=1 HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
vary: Accept-Encoding
etag: W/"621fa7d4-2863"
expires: Tue, 18 Mar 2025 08:42:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 25513
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4R7kfxHKAhTf7KZG1ywQ6xZfUuDZbrz9eFB%2FFCX15463D%2BpvTdvV%2F0ErGrTsBEfzv3eUgOSi8VSQNYWfCjHJCd8%2F2YY2SdmsP0fvoVZy0eW4Mlhvu%2B5pbw5M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9221bfee7e277128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5022&min_rtt=4357&rtt_var=1488&sent=86&recv=15&lost=0&retrans=0&sent_bytes=81902&recv_bytes=3305&delivery_rate=5687606&cwnd=48000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=496&x=1", cfExtPri, cfHdrFlush;dur=0

ssur.cc/themes/cleanex/assets/js/main.js

188.114.96.1

200 OK

875 B

URL GET
ssur.cc/themes/cleanex/assets/js/main.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
JavaScript source, ASCII text, with very long lines (950), with no line terminators
Size
875 B (875 bytes)
Hash
89114a5a97b399163e84146cd1516cd4
33efa5b7cde32ab78489032f2c12c47257ece8fa
b9e9c28ce824f704b8f7fcef33f7758e79456c448d098f3b63bb1cc86fa1cc51

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /themes/cleanex/assets/js/main.js HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
etag: W/"621fa7d4-36b"
expires: Tue, 18 Mar 2025 08:42:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
age: 25512
cf-cache-status: HIT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ucg7zwi%2Far3wAA8CJdr%2BiSEnt6T9yDTUdVFcCIlCQE3FjMtZ64AcpN%2Bm3TSNMI8RUnBHj2JYXGxpED3vvtSByFxa5Jb1pSf2L6AeVHASCB%2F011aYlLre6sy1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9221bfee9e337128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5428&min_rtt=4357&rtt_var=1926&sent=92&recv=17&lost=0&retrans=0&sent_bytes=87276&recv_bytes=3902&delivery_rate=389054&cwnd=48000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=517&x=1", cfExtPri, cfHdrFlush;dur=0

ssur.cc/static/application.fn.js?v=3

188.114.96.1

200 OK

4.2 kB

URL GET
ssur.cc/static/application.fn.js?v=3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
JavaScript source, ASCII text, with very long lines (4512), with no line terminators
Size
4.2 kB (4190 bytes)
Hash
1f87506ab5127a3a17f1df87173379f3
5f617c2fd9492d34df0d52210d871d1d1ac943b6
71e9e4c16e6efa09d05243554176f617fd5fb1ee7d424ad0961fe3a9625990cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/application.fn.js?v=3 HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: application/javascript
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
vary: Accept-Encoding
etag: W/"621fa7d4-105e"
expires: Tue, 18 Mar 2025 08:42:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 25513
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tC3xBpjaRFxhi4ZEnz9B7mmCGfvada8qx%2BK5BCLXIWGcVWlY%2BuDZfWzaXHlkxBXhjIux7cb6mNPO%2FhB3srMLN5%2F2alPDbKoeXt2iMgZDr7ooTtGONGKtYt4U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9221bfee3e087128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4732&min_rtt=4357&rtt_var=2383&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16173&recv_bytes=2628&delivery_rate=86591&cwnd=12000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=453&x=1", cfExtPri, cfHdrFlush;dur=11

cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css?v=3.0.3

104.17.24.14

200 OK

3.9 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css?v=3.0.3
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT

File type
ASCII text, with very long lines (3943), with no line terminators
Size
3.9 kB (3938 bytes)
Hash
384a4b93bd57482709b0643210461b81
f7e9951c94a03fb902280c8d75ac2dbced5a8689
164da59a1a94eb4a4c98fc016e9f3ed08c0887c6a89051434680d54b1a6fdf6c

HTTP Headers

GET /ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css?v=3.0.3 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: text/css; charset=utf-8
content-length: 948
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942932-3b4"
last-modified: Thu, 22 Jun 2023 10:57:54 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 519846
expires: Sun, 08 Mar 2026 03:47:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p7SrsYXfIfW4dhDKNBPUJqeYiR%2BMK1whE53ksARBB45zCkUyLhjYpqMo7B%2ByDVntdMMhdI635jqHjjwPfASxsvNwrCi6NYO%2B4ONQyO%2FF3RNBEIH1rfVP8kmCVnyJ5pNebZiVZ3Kt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9221bfeed80e0b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ssur.cc/static/css/bootstrap.min.css?v=1

188.114.96.1

200 OK

91 kB

URL GET
ssur.cc/static/css/bootstrap.min.css?v=1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssur.cc/BihJE
Certificate
IssuerGoogle Trust Services
Subjectssur.cc
FingerprintCC:CE:26:A9:4E:43:CF:76:63:0E:6F:2F:3D:C3:37:B1:2A:6C:A7:05
ValidityMon, 03 Mar 2025 23:30:04 GMT - Mon, 02 Jun 2025 00:28:27 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
91 kB (90675 bytes)
Hash
86f6eb2e54451ddeeca417690234b46f
87d1613e51f0707a971463a74363cb5bc1d4cfc0
e6f9e8bbe91812a91558f970cbcd4e5dc8e46099a56e788bd2583be24ffd1f7d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/bootstrap.min.css?v=1 HTTP/1.1
Host: ssur.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/BihJE
Cookie: PHPSESSID=ikbkojs0kcakgiqn4i1p2al4e8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 03:47:37 GMT
content-type: text/css
last-modified: Wed, 02 Mar 2022 17:22:28 GMT
vary: Accept-Encoding
etag: W/"621fa7d4-16233"
expires: Tue, 18 Mar 2025 08:42:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 25513
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SwXTNHI1DJUEQJOkZMOCawFynQfuN0Y4iTL1WVb9Neo1Rl9CC49o8JtKdhh%2F14%2BwactTMqkJdxGlwN%2FrqcySwlrAIbfVrIyaTbmzZd5G%2FZi%2BQ42z0qe1cTth"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9221bfee3e027128-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4732&min_rtt=4357&rtt_var=2383&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16173&recv_bytes=2628&delivery_rate=86591&cwnd=12000&unsent_bytes=0&cid=82ba3ce660b681dc&ts=452&x=1", cfExtPri, cfHdrFlush;dur=5

kdpic.pchome.com.tw/img/js/xpcadshow.js

23.36.77.130

200 OK

11 kB

URL GET
kdpic.pchome.com.tw/img/js/xpcadshow.js
IP
23.36.77.130:443
ASN
#20940 Akamai International B.V.

Requested by
https://ssur.cc/BihJE
Certificate
IssuerLet's Encrypt
Subjectkdpic.pchome.com.tw
Fingerprint27:B7:B1:C9:C2:BA:9C:14:F0:5A:B0:7F:42:F0:C9:B3:A0:4C:6B:CF
ValidityWed, 26 Feb 2025 07:07:29 GMT - Tue, 27 May 2025 07:07:28 GMT

File type

Size
11 kB (11178 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/js/xpcadshow.js HTTP/1.1
Host: kdpic.pchome.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssur.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Accept-Ranges: bytes
ETag: "3848551763"
Last-Modified: Wed, 22 Nov 2023 03:39:07 GMT
Server: PChome Server
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=41604
Expires: Tue, 18 Mar 2025 15:21:01 GMT
Date: Tue, 18 Mar 2025 03:47:37 GMT
Content-Length: 4261
Connection: keep-alive

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML