Domain > app-sandbox.columnapi.com

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2024-11-14	108.157.188.112 (ClassC)
2025-12-14	3.163.24.23 (ClassC)

HTTP/1.1 200 OKContent-Type: text/htmlContent-Length: 7522Connection: keep-aliveDate: Sat, 13 Dec 2025 08:18:38 GMTreferrer-policy: no-referrerServer: AmazonS3Accept-Ranges: bytesETag: 831828e19646ba46020b05c34870e356Last-Modified: Fri, 12 Dec 2025 22:19:22 GMTCache-Control: public, max-age0, s-maxage31536000content-security-policy: default-src self blob: data: https://static.zdassets.com https://ekr.zdassets.com https://ekr.zendesk.com https://*.zendesk.com https://api.smooch.io https://media.smooch.io https://zendesk-eu.my.sentry.io https://*.twilio.com wss://*.zendesk.com wss://api.smooch.io wss://voice-js.roaming.twilio.com; style-src self unsafe-inline https://accounts.google.com; style-src-elem self unsafe-inline https://*.fullview.io https://accounts.google.com; font-src self data: https://cdn.jsdelivr.net https://fonts.gstatic.com https://*.fullview.io; worker-src self blob:; img-src self blob: data: https://assets.columnapi.com https://*.gravatar.com https://static.zdassets.com https://accounts.zendesk.com https://*.zendesk.com https://media.smooch.io https://*.zdusercontent.com https://*.fullview.io; script-src-elem self sha256-BKBa1WDeDgFVkwrb7H6tpLWWvMsgKKk+zuuOrbTTn6A sha256-b/hAFnsn3rydwG96DiPFNiXl4Gakp+VlOJgob0emkXc https://accounts.google.com https://js-agent.newrelic.com https://browser.sentry-cdn.com https://js.sentry-cdn.com https://*.stripe.com https://snippet.meticulous.ai https://cdn.jsdelivr.net https://*.fullview.io https://*.daily.co https://static.zdassets.com https://ekr.zdassets.com https://ekr.zendesk.com https://*.zendesk.com https://api.smooch.io https://media.smooch.io https://zendesk-eu.my.sentry.io https://*.twilio.com wss://*.zendesk.com wss://api.smooch.io wss://voice-js.roaming.twilio.com https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com https://cdn.lr-in-prod.com https://cdn.lr-ingest.com https://cdn.ingest-lr.com https://cdn.lr-intake.com https://cdn.intake-lr.com; script-src self sha256-BKBa1WDeDgFVkwrb7H6tpLWWvMsgKKk+zuuOrbTTn6A sha256-b/hAFnsn3rydwG96DiPFNiXl4Gakp+VlOJgob0emkXc https://accounts.google.com https://js-agent.newrelic.com https://browser.sentry-cdn.com https://js.sentry-cdn.com https://*.stripe.com https://snippet.meticulous.ai https://cdn.jsdelivr.net https://*.fullview.io https://*.daily.co https://static.zdassets.com https://ekr.zdassets.com https://ekr.zendesk.com https://*.zendesk.com https://api.smooch.io https://media.smooch.io https://zendesk-eu.my.sentry.io https://*.twilio.com wss://*.zendesk.com wss://api.smooch.io wss://voice-js.roaming.twilio.com https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com https://cdn.lr-in-prod.com https://cdn.lr-ingest.com https://cdn.ingest-lr.com https://cdn.lr-intake.com https://cdn.intake-lr.com; frame-src self blob: https://accounts.google.com https://*.zendesk.com https://*.stripe.com https://snippet.meticulous.ai; connect-src self https://sandbox.columnapi.com https://sandbox.columnapi.com https://api.rollbar.com https://bam.nr-data.net https://accounts.google.com https://browser.sentry-cdn.com *.sentry.io *.s3.amazonaws.com https://ct-form-uploads-prod.s3.us-east-2.amazonaws.com https://cognito-identity.us-west-2.amazonaws.com https://*.s3-accelerate.amazonaws.com https://snippet.meticulous.ai https://api.meticulous.ai https://*.fullview.io wss://*.fullview.io https://*.daily.co wss://*.daily.co https://static.zdassets.com https://ekr.zdassets.com https://ekr.zendesk.com https://*.zendesk.com https://api.smooch.io https://media.smooch.io https://zendesk-eu.my.sentry.io https://*.twilio.com wss://*.zendesk.com wss://api.smooch.io wss://voice-js.roaming.twilio.com https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https://*.lr-in-prod.com https://*.lr-ingest.com https://*.ingest-lr.com https://*.lr-intake.com https://*.intake-lr.com https://*.logr-ingest.com https://*.lrkt-in.com; media-src https://*.fullview.io; object-src none; report-uri https://o4506707887325184.ingest.us.sentry.io/api/4508401362599936/security/?sentry_key8c947c6a80be66e876f042e7f3200085&sentry_environmentsandbox;report-to: {group:report-endpoint,max_age:5,endpoints:{url:https://o4506707887325184.ingest.us.sentry.io/api/4508401362599936/security/?sentry_key8c947c6a80be66e876f042e7f3200085&sentry_environmentsandbox}}reporting-endpoints: report-endpointhttps://o4506707887325184.ingest.us.sentry.io/api/4508401362599936/security/?sentry_key8c947c6a80be66e876f042e7f3200085&sentry_environmentsandboxaccess-control-allow-origin: *strict-transport-security: max-age63072000X-Cache: Hit from cloudfrontVia: 1.1 d220e3f3d93439a8c69225156c6ae800.cloudfront.net (CloudFront)X-Amz-Cf-Pop: HIO52-P2Alt-Svc: h3:443; ma86400X-Amz-Cf-Id: wcPmYolyrMl1aKB8dRidx9dLIF2U5KGHdJx4TOOvPYyrC7CxhsGQIAAge: 120865

!doctype html>html langen>  head>    meta http-equivPragma contentno-cache />    meta      http-equivcache-control      contentno-cache, no-store, must-revalidate    />    meta charsetutf-8 />    link relicon href/favicon.ico />    meta      nameviewport      contentwidthdevice-width, initial-scale1, viewport-fitcover    />    meta nametheme-color content#F9FAFB />    meta      nametheme-color      media(prefers-color-scheme: light)      contentwhite    />    meta      nametheme-color      media(prefers-color-scheme: dark)      contentwhite    />    meta      namedescription      contentEasy tax filing that gets you everything youre owed    />    link      relpreload      href/fonts/ProximaNova/ProximaNova-Regular.otf      asfont      typefont/otf      crossorigin    />    link      relpreload      href/fonts/ProximaNova/ProximaNova-Extrabold.otf      asfont      typefont/otf      crossorigin    />    link      relpreload      href/fonts/ProximaNova/ProximaNova-Bold.otf      asfont      typefont/otf      crossorigin    />    link      relpreload      href/fonts/ProximaNova/ProximaNova-Semibold.otf      asfont      typefont/otf      crossorigin    />    link relapple-touch-icon href/logo192.png />    !--      manifest.json provides metadata used when your web app is installed on a      users mobile device or desktop. See https://developers.google.com/web/fundamentals/web-app-manifest/    -->    link relmanifest href/manifest.json />    !--      Notice the use of  in the tags above.      It will be replaced with the URL of the `public` folder during the build.      Only files inside the `public` folder can be referenced from the HTML.      Unlike /favicon.ico or favicon.ico, /favicon.ico will      work correctly both with client-side routing and a non-root public URL.      Learn how to configure a non-root public URL by running `npm run build`.    -->    title>Column Tax/title>    style>      /* This stylesheet contains styles for the initial spinner. Keep it near      top of the head> section to make it load as one of the first resources */      :root {        --main-bg-color: #1570ef;      }      .spinner-wrapper {        height: 100vh;        display: flex;        justify-content: center;        align-items: center;      }      .spinner {        width: 48px;        height: 48px;        border: 4px solid var(--main-bg-color);        border-bottom-color: transparent;        border-radius: 50%;        display: inline-block;        box-sizing: border-box;        animation: rotation 0.8s linear infinite;      }      @keyframes rotation {        0% {          transform: rotate(0deg);        }        100% {          transform: rotate(360deg);        }      }    /style>    script      data-recording-tokenE6ag74Q70js633PdY2KAnlyzouZZipFki0ASVesk      data-is-production-environmentfalse      srchttps://snippet.meticulous.ai/v1/meticulous.js>    /script>    !-- script tag to load the apps js bundle -->    script typemodule crossorigin src/assets/index-kVrMCbdU.js>/script>    link relmodulepreload crossorigin href/assets/router-DzvbrRib.js>    link relmodulepreload crossorigin href/assets/chakra-B5wXMXb2.js>    link relstylesheet crossorigin href/assets/index-Dw3EWat8.css>  /head>  body>    noscript>You need to enable JavaScript to run this app./noscript>    div idroot styleheight: 100%; top: 50%>      div classspinner-wrapper>        div classspinner>/div>      /div>    /div>    !--      This HTML file is a template.      If you open it directly in the browser, you will see an empty page.      You can add webfonts, meta tags, or analytics to this file.      The build step will place the bundled scripts into the body> tag.      To begin the development, run `npm start` or `yarn start`.      To create a production bundle, use `npm run build` or `yarn build`.    -->  /body>  footer>    script typetext/javascript>      function asyncLoad(src, delay, func) {        window.addEventListener(load, (event) > {          setTimeout(() > {            const script  document.createElement(script);            script.type  text/javascript;            script.src  src;            script.onload  func;            document.body.appendChild(script);          }, delay);        });      }      asyncLoad(https://cdn.lr-in-prod.com/LogRocket.min.js, 3000, () > {        if (          window.location.href.indexOf(/tax-filing) > -1 &&          %REACT_APP_LR_ENABLED% ! false        ) {          window.LogRocket &&            window.LogRocket.init(5v0wos/column-tax, {              dom: {                inputSanitizer: false,              },              network: {                requestSanitizer: (request) > {                  request.body  undefined;                  request.headers  undefined;                  return request;                },                responseSanitizer: (response) > {                  response.body  undefined;                  response.headers  undefined;                  return response;                },              },              browser: {                urlSanitizer: (url) > {                  return url.replace(/params(^&*)/, params**redacted**);                },              },              rootHostname: columnapi.com,            });        }      });      // load Fullview      // Fullview is used by Support team to co-browse and screen-share      // see Settings in FullView (https://app.us1.fullview.io/settings/installation) for the correct org id      // We put a long delay here to avoid load issues and meet our performance requirements      // We dont expect users to need Fullview immediately      // Its possible that a smaller delay would work, too; can verify this with Lighthouse and our performance checks      asyncLoad(https://install.us1.fullview.io, 10000, () > {        const script  document.createElement(script);        script.async  true;        script.src  https://install.us1.fullview.io;        script.setAttribute(data-org, 61e79beb-c38e-4404-8727-7547e4ba5b69);        document.body.appendChild(script);      });      window.NREUM || (NREUM  {});      NREUM.init  {        distributed_tracing: {          enabled: true,          exclude_newrelic_header: true,          cors_use_newrelic_header: false,          cors_use_tracecontext_headers: true,          allowed_origins: https://sandbox.columnapi.com,        },        privacy: { cookies_enabled: false },      };      NREUM.loader_config  {        accountID: 3699620,        trustKey: 3699620,        agentID: 1120131233,        licenseKey: NRJS-34528c3ade9c102c2dc,        applicationID: 1072893564,      };      NREUM.info  {        beacon: bam.nr-data.net,        errorBeacon: bam.nr-data.net,        licenseKey: NRJS-34528c3ade9c102c2dc,        applicationID: 1072893564,        sa: 1,      };      asyncLoad(        https://js-agent.newrelic.com/nr-loader-spa-current.min.js,        1000,        () > {},      );    /script>    !-- Version 2025-12-12-0000000750-d9c23f0 -->  /footer>/html>

Subdomains

Date	Domain	IP
preview.columnapi.com	2025-09-29	3.163.24.14
app-sandbox.columnapi.com	2025-12-14	3.163.24.23

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > app-sandbox.columnapi.com

Is this malicious?

DNS Resolutions

Port 80

Port 443

Subdomains