Overview

URL click.icptrack.com/icp/relay.php?r=19978313&msgid=228939&act=JVHI&c=1466543&destination=https%3A%2F%2Famzn.to%2F2yrMj4P&data=01|01|test@gmail.com|e6093773ebfa447d58fc08d64423f799|2e279aa3dba743a1a9c96df364726a59|0&sdata=yBWoqN1sBDi0uTH1L5u2aLQ9uSD/eJEowQ2CvPPZwjM=&reserved=0
IP216.27.93.64
ASNAS7349 Windstream Hosted Solutions, LLC
Location United States
Report completed2018-11-07 14:29:08 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 216.27.93.64

Date UQ / IDS / BL URL IP
2019-04-30 05:41:59 +0200
0 - 0 - 0 icptrack.com 216.27.93.64
2019-01-07 06:37:21 +0100
0 - 0 - 0 click.icptrack.com/icp/relay.php?r=55507131&m (...) 216.27.93.64
2018-12-12 13:55:58 +0100
0 - 0 - 0 click.icptrack.com/icp/relay.php?r=68406180&m (...) 216.27.93.64
2018-12-07 01:42:58 +0100
0 - 0 - 0 click.icptrack.com/icp/relay.php?r=60829342&m (...) 216.27.93.64
2018-11-29 20:07:49 +0100
0 - 0 - 0 click.icptrack.com/icp/relay.php?r=6496527&ms (...) 216.27.93.64
2018-11-19 19:12:43 +0100
0 - 0 - 0 click.icptrack.com/icp/track.php?msgid=58812& (...) 216.27.93.64
2018-11-16 12:56:33 +0100
0 - 0 - 0 click.icptrack.com/icp/relay.php?r=47473465&m (...) 216.27.93.64
2018-11-06 19:48:23 +0100
0 - 0 - 0 click.icptrack.com/icp/relay.php?r=40014281&m (...) 216.27.93.64
2018-11-05 22:00:02 +0100
0 - 0 - 0 click.icptrack.com/icp/relay.php?r=47154714&m (...) 216.27.93.64
2018-11-05 16:18:58 +0100
0 - 0 - 0 icptrack.com 216.27.93.64

Last 10 reports on ASN: AS7349 Windstream Hosted Solutions, LLC

Date UQ / IDS / BL URL IP
2019-06-26 06:36:21 +0200
0 - 0 - 0 e.christopherandbanks.com/t/o?ssid=35294&subs (...) 216.27.63.21
2019-06-25 21:32:54 +0200
0 - 0 - 0 paradata.com/ 208.86.240.235
2019-06-23 14:43:44 +0200
0 - 0 - 0 bm5150.com 216.27.63.18
2019-06-12 23:14:37 +0200
0 - 0 - 0 https://email.fsastore.com/t/l?ssid=28402&sub (...) 216.27.63.7
2019-06-10 06:33:25 +0200
0 - 0 - 0 e.christopherandbanks.com/t/o?ssid=35294&subs (...) 216.27.63.21
2019-06-07 08:07:08 +0200
0 - 0 - 3 allmemoryusa.com/g766d4ft 216.27.29.41
2019-05-28 14:48:44 +0200
0 - 0 - 0 virtual-coach.com 216.27.7.71
2019-05-28 14:45:28 +0200
0 - 0 - 0 www.barbaraling.com 216.27.29.35
2019-05-27 20:33:02 +0200
0 - 1 - 0 ftp.raxco.com/pub/download/PerfectDisk_Pro_Tr (...) 40.142.20.75
2019-05-26 13:51:21 +0200
0 - 0 - 0 216.27.63.9 216.27.63.9

No other reports on domain: icptrack.com



JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (8)


Request Response
                                        
                                            GET /icp/relay.php?r=19978313&msgid=228939&act=JVHI&c=1466543&destination=https%3A%2F%2Famzn.to%2F2yrMj4P&data=01|01|test@gmail.com|e6093773ebfa447d58fc08d64423f799|2e279aa3dba743a1a9c96df364726a59|0&sdata=yBWoqN1sBDi0uTH1L5u2aLQ9uSD/eJEowQ2CvPPZwjM=&reserved=0 HTTP/1.1 
Host: click.icptrack.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.27.93.64
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Wed, 07 Nov 2018 13:28:35 GMT
Server: Apache
Location: https://amzn.to/2yrMj4P
Content-Length: 0
X-Cnection: close


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "949EFE5C4266947F06872402FBD00A931131824C8306A11B897E6038A3687434"
Last-Modified: Tue, 06 Nov 2018 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4858
Expires: Wed, 07 Nov 2018 14:49:34 GMT
Date: Wed, 07 Nov 2018 13:28:36 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    5876615496c1c78d1776463a6297426a
Sha1:   32b2dbaf1a4d19b55bdaf1c6fc25c8c1af3e5afb
Sha256: 949efe5c4266947f06872402fbd00a931131824c8306a11b897e6038a3687434
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.113
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Mon, 05 Nov 2018 10:03:15 GMT
Etag: "f4e1c93dab6b42d8bc2ca6573d155c9f26376ba6"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=19465
Expires: Wed, 07 Nov 2018 18:53:01 GMT
Date: Wed, 07 Nov 2018 13:28:36 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    98ca9fe5f1a28f79c137b74ae2fe8d36
Sha1:   f4e1c93dab6b42d8bc2ca6573d155c9f26376ba6
Sha256: 62e1eccec222cdb2390f35ec6a80706e67d56ff4a82fbe5baaeab14533edf2b3
                                        
                                            GET /2yrMj4P HTTP/1.1 
Host: amzn.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         67.199.248.13
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private, max-age=90
Content-Length: 367
Content-Security-Policy: referrer always;
Date: Wed, 07 Nov 2018 13:28:37 GMT
Location: https://s.amazon-adsystem.com/click?d=forester-did&ex-fargs=%3Fsr%3DP%26m%3D1%26c%3D3838310301%26a%3D5661287601%26up%3DCS_1504293001&ex-fch=416619&rd=https://amazon.force.com/JobDetails%3Freqid%3Da0R0G000017DXoO%26ref%3DplaceholderABC123%26tag%3Dplaceholder-20&cb=
Referrer-Policy: unsafe-url
Server: nginx
Set-Cookie: _bit=ia7dsB-214a6aff00dcba6da7-00Y; Domain=amzn.to; Expires=Mon, 06 May 2019 13:28:37 GMT
Strict-Transport-Security: max-age=1209600
Connection: close


--- Additional Info ---
Magic:  HTML document text
Size:   367
Md5:    737f9011a853dfd28cb97dbd165e8a05
Sha1:   38f313444aa840bfc5c2abccbd27f1f95ca4cdaa
Sha256: acdf6c8156d25be71ab6e83b3960fc1a4de780f193735ca6d9d3285663cf686f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         52.85.182.140
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=162667
Date: Wed, 07 Nov 2018 13:28:37 GMT
Etag: "5be2a73d-1d7"
Expires: Fri, 09 Nov 2018 10:39:44 GMT
Last-Modified: Wed, 07 Nov 2018 08:50:05 GMT
Server: ECS (dca/53DB)
X-Cache: Miss from cloudfront
Via: 1.1 69ae15d1338b64299d3942a44fc1fb96.cloudfront.net (CloudFront)
X-Amz-Cf-Id: HYgyWETuR7MzM3rka7tUv8ao0lOuB_AQp3kAaiLSuz8q7L2eMNSNSw==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    4b2e0e6400a3bccb74f045f55d9ce6a8
Sha1:   833bcd273836df2ba144993a5e94861938c42d70
Sha256: 6850efbeca81249ede77b9509b2e666c12c6141c904f2d02811c69713757cd4b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.rootca1.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         52.85.182.49
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1426
Connection: keep-alive
Date: Wed, 07 Nov 2018 13:28:37 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.7/2018-03-28)
X-Cache: Miss from cloudfront
Via: 1.1 64150aec025f89247bcddad7c210f6cb.cloudfront.net (CloudFront)
X-Amz-Cf-Id: p1ro8kym8MLzyuh-Y8SgHasmkuX-vRd2Lqht36hWbdioYfEA3j4Uvw==


--- Additional Info ---
Magic:  data
Size:   1426
Md5:    e85952b13206d6a91f838689752d181d
Sha1:   da453397334703f49c53fc32f35412f5e147b0c9
Sha256: 7b1157e6372e31a7ddb35fb050777e2ec0c76045d9df40bc79f148a5a42793b0
                                        
                                            GET /click?d=forester-did&ex-fargs=%3Fsr%3DP%26m%3D1%26c%3D3838310301%26a%3D5661287601%26up%3DCS_1504293001&ex-fch=416619&rd=https://amazon.force.com/JobDetails%3Freqid%3Da0R0G000017DXoO%26ref%3DplaceholderABC123%26tag%3Dplaceholder-20&cb= HTTP/1.1 
Host: s.amazon-adsystem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         72.21.206.140
HTTP/1.1 302 Found
                                        
Server: Server
Date: Wed, 07 Nov 2018 13:28:38 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://amazon.force.com/JobDetails?reqid=a0R0G000017DXoO&ref=placeholderABC123&tag=placeholder-20
Set-Cookie: ad-id=A_RGbjROlUv4hpkoix1jbzk; Domain=.amazon-adsystem.com; Expires=Mon, 01-Jul-2019 13:28:38 GMT; Path=/
Vary: User-Agent


--- Additional Info ---
                                        
                                            GET /JobDetails?reqid=a0R0G000017DXoO&ref=placeholderABC123&tag=placeholder-20 HTTP/1.1 
Host: amazon.force.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---