Report Overview

  1. Submitted URL

    gdasaasnt.com/link?z=4356956&var={zoneid}&ymid=wffu1f4sqgjtnncli0rjrl3c

  2. IP

    139.45.197.239

    ASN

    #9002 RETN Limited

  3. Submitted

    2022-12-23 15:01:15

    Access

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  2. urlquery

    0

  3. Network Intrusion Detection

    1

  4. Threat Detection Systems

    6

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
www.google.com72015-05-10T13:11:19Z2023-03-09T13:38:50Z
fonts.googleapis.com88772013-06-10T22:14:26Z2023-03-09T12:17:45Z
e1.o.lencr.org61592021-08-20T09:36:30Z2023-03-09T05:14:34Z
rr2---sn-capm-vnae.googlevideo.comunknown2021-08-23T20:19:52Z2023-03-09T09:13:51Z
i.ytimg.com1092012-10-03T19:11:04Z2023-03-09T13:41:05Z
pagead2.googlesyndication.com1012021-02-20T16:52:05Z2023-03-09T13:41:04Z
cdntechone.com643712021-12-24T18:09:58Z2023-03-09T06:49:34Z
gdasaasnt.comunknown2022-09-07T14:02:23Z2023-03-09T05:34:53Z
my.rtmark.net90542015-02-04T10:54:57Z2023-03-09T10:18:28Z
datatechone.comunknown2015-06-17T15:52:19Z2023-03-09T13:40:21Z
ocsp.pki.goog1752018-07-01T08:43:07Z2023-03-09T05:09:50Z
accounts.google.com812016-03-20T13:44:49Z2023-03-09T06:20:40Z
jnn-pa.googleapis.com26402021-11-16T07:12:21Z2023-03-09T09:43:35Z
contile.services.mozilla.com11142021-05-27T20:32:35Z2023-03-09T05:09:48Z
ocsp.sectigo.com4872019-11-29T12:50:24Z2023-03-09T11:25:06Z
fonts.gstatic.comunknown2014-09-09T02:40:21Z2023-03-09T10:01:47Z
www.gstatic.comunknown2016-07-26T11:37:06Z2023-03-09T12:13:09Z
thaudray.com446462021-04-01T19:13:08Z2023-03-09T13:14:29Z
push.services.mozilla.com21402014-10-24T10:27:06Z2023-03-09T05:09:13Z
ocsp.digicert.com862012-05-21T09:02:23Z2023-03-09T11:52:10Z
www.youtube.com902013-04-13T09:43:20Z2023-03-09T05:09:30Z
rr1---sn-capm-vnae.googlevideo.comunknown2021-08-21T17:55:01Z2023-03-09T09:19:10Z
img-getpocket.cdn.mozilla.net16312018-06-22T01:36:00Z2023-03-09T10:04:36Z
tpc.googlesyndication.com1262020-01-16T09:35:32Z2023-03-09T11:36:12Z
yt3.ggpht.com2032014-01-15T17:55:17Z2023-03-09T05:09:42Z
r3.o.lencr.org3442020-12-02T09:52:13Z2023-03-09T05:09:05Z
content-signature-2.cdn.mozilla.net11522020-11-03T13:26:46Z2023-03-09T05:09:49Z
firefox.settings.services.mozilla.com8672020-06-04T22:08:41Z2023-03-09T05:09:18Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IP 139.45.197.237
ET ADWARE_PUP Win32/Adware.Agent.NSU CnC Activity M2

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
mediumgdasaasnt.comSinkholed
mediumgdasaasnt.comSinkholed
mediumdatatechone.comSinkholed

JavaScript (261)

HTTP Transactions (86)

URLIPResponseSize
gdasaasnt.com/link?z=4356956&var={zoneid}&ymid=wffu1f4sqgjtnncli0rjrl3c
139.45.197.239302 Found0 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK5.3 kB
e1.o.lencr.org/
23.36.77.32200 OK345 B
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
e1.o.lencr.org/
23.36.77.32200 OK345 B
ocsp.sectigo.com/
172.64.155.188200 OK471 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
gdasaasnt.com/link?z=4356956&var=null&ymid=wffu1f4sqgjtnncli0rjrl3c&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
139.45.197.239200 OK9.4 kB
ocsp.digicert.com/
93.184.220.29200 OK471 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
ocsp.sectigo.com/
172.64.155.188200 OK471 B
my.rtmark.net/img.gif?f=merge&userId=099a4278b2f34c42b9a96334db549a92
139.45.195.8200 OK43 B
datatechone.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.253200 OK2 B
thaudray.com/?z=4356957&syncedCookie=true&rhd=false
139.45.197.237302 Found0 B
push.services.mozilla.com/
52.39.94.191101 Switching Protocols0 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
www.youtube.com/s/player/21149d65/player_ias.vflset/en_US/base.js
216.58.207.238200 OK608 kB
www.youtube.com/s/desktop/451d4225/jsbin/desktop_polymer.vflset/desktop_polymer.js
216.58.207.238200 OK1.6 MB
www.youtube.com/s/desktop/451d4225/jsbin/web-animations-next-lite.min.vflset/web-animations-next-lite.min.js
216.58.207.238200 OK15 kB
www.youtube.com/s/desktop/451d4225/jsbin/webcomponents-sd.vflset/webcomponents-sd.js
216.58.207.238200 OK23 kB
www.youtube.com/s/desktop/451d4225/jsbin/custom-elements-es5-adapter.vflset/custom-elements-es5-adapter.js
216.58.207.238200 OK747 B
www.youtube.com/s/desktop/451d4225/jsbin/scheduler.vflset/scheduler.js
216.58.207.238200 OK2.6 kB
www.youtube.com/s/desktop/451d4225/cssbin/www-main-desktop-watch-page-skeleton.css
216.58.207.238200 OK949 B
www.youtube.com/s/desktop/451d4225/cssbin/www-main-desktop-player-skeleton.css
216.58.207.238200 OK505 B
www.youtube.com/s/desktop/451d4225/cssbin/www-onepick.css
216.58.207.238200 OK239 B
www.youtube.com/s/player/21149d65/www-player.css
216.58.207.238200 OK50 kB
www.youtube.com/s/_/ytmainappweb/_/ss/k=ytmainappweb.kevlar_base.hGmN5qE9Rbo.L.F4.O/am=AAM/d=0/br=1/rs=AGKMywEcSFJ0wbiRoV3rZ9li9HMP3I-6Wg
216.58.207.238200 OK6.5 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
rr1---sn-capm-vnae.googlevideo.com/generate_204
91.90.45.172204 No Content0 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
rr1---sn-capm-vnae.googlevideo.com/generate_204?conn2
91.90.45.172204 No Content0 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
www.youtube.com/s/desktop/451d4225/jsbin/intersection-observer.min.vflset/intersection-observer.min.js
216.58.207.238200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
i.ytimg.com/generate_204
142.250.74.118204 No Content0 B
i.ytimg.com/vi/Yzajr50_3Vg/hqdefault.jpg
142.250.74.118200 OK45 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK16 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg
34.120.237.76200 OK7.1 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdce5468-cf1b-4a55-968b-1aaa101e60d6.jpeg
34.120.237.76200 OK12 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg
34.120.237.76200 OK13 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F636d561f-4cac-46b6-9b12-799eb03be3f7.jpeg
34.120.237.76200 OK8.1 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg
34.120.237.76200 OK5.7 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg
34.120.237.76200 OK12 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1671829263&ei=r8KlY7qnBpOQ7QSC2IfQAg&ip=91.90.42.154&id=o-AI6zFWCKpzL7DnD4wy4p6jX4l7Qygbun6UDg7zPYfYn7&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=eD&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1393750&vprv=1&mime=video%2Fwebm&ns=t3bK19YSiYo8YB_2vJm9Mh8K&gir=yes&clen=144200753&dur=3086.819&lmt=1661332667125107&mt=1671807224&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB&txp=5316224&n=A3IBDIejlfN09A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgPghT7YP-Dpk63FruW9anBw20uHqCYdChQ2yDCVei5acCIE-q6Wmk9UiR0MkDHj0QaOBbVdwbzeD2FeQ5TLx82npQ&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgDIpwjHJ12Luqi8xl1BAEMtyjtbt77lq6bijmjuo-9zoCIGV9y7a0BAZN6qyysNdLBJD9c_D_OjFW5wxtoqHNo0vU&alr=yes&cpn=8AGaoFk8MQWeTqsq&cver=2.20221220.09.00&range=0-151070&rn=1&rbuf=0
91.90.45.173200 OK151 kB
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1671829263&ei=r8KlY7qnBpOQ7QSC2IfQAg&ip=91.90.42.154&id=o-AI6zFWCKpzL7DnD4wy4p6jX4l7Qygbun6UDg7zPYfYn7&itag=251&source=youtube&requiressl=yes&mh=eD&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1393750&vprv=1&mime=audio%2Fwebm&ns=t3bK19YSiYo8YB_2vJm9Mh8K&gir=yes&clen=53391563&dur=3086.841&lmt=1661332802840390&mt=1671807224&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB&txp=5311224&n=A3IBDIejlfN09A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgGef-ybKBTv36ypzjQn_TIfmldnDiqstDecTtU6f86DwCIQC52rvcgG3YWN6-PoX2tl-O43FD-KvB6paLPrfLIPHrkA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgDIpwjHJ12Luqi8xl1BAEMtyjtbt77lq6bijmjuo-9zoCIGV9y7a0BAZN6qyysNdLBJD9c_D_OjFW5wxtoqHNo0vU&alr=yes&cpn=8AGaoFk8MQWeTqsq&cver=2.20221220.09.00&range=0-71258&rn=2&rbuf=0
91.90.45.173200 OK71 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
tpc.googlesyndication.com/sodar/56-y-0RG.js
172.217.21.161200 OK15 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
www.youtube.com/watch?v=Yzajr50_3Vg&rdk=rk3
216.58.207.238200 OK170 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
accounts.google.com/ServiceLogin?service=youtube&uilel=3&passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Fsignin%3Faction_handle_signin%3Dtrue%26app%3Ddesktop%26hl%3Den%26next%3D%252Fsignin_passive%26feature%3Dpassive&hl=en
142.250.74.109302 Found451 B
www.gstatic.com/youtube/img/emojis/emojis-svg-9.json
142.250.74.35200 OK48 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
pagead2.googlesyndication.com/bg/3WpNOUgrN-_pxVw2NAHVNtofer_w6aLb3ZHXGHAM44Y.js
142.250.74.130200 OK16 kB
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK0 B
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK31 kB
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK0 B
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK112 B
fonts.gstatic.com/s/youtubesans/v16/Qw38ZQNGEDjaO2m6tqIqX5E-AVS5_rSejo46_PCTRspJ0OosolrBEJL3HO_T7fE.woff2
216.58.207.227200 OK25 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
yt3.ggpht.com/LsDD1gogWSs1cQDVECH7KHdPOZuYSsK_KknRk0VsIRymGnmCtAkxrFjfM9p6qTSyQAmdOpWc=s48-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK2.3 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83ec12d8-0f25-4455-b9fc-9581d059158b.jpeg
34.120.237.76200 OK9.2 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
142.250.74.164200 OK14 kB
cdntechone.com/r.html?axcid=e7ddf874-40d2-43d7-b8fd-56541bff0853&axtsid=4356956&axcusid1={zoneid}&clid={ymid}&r=http%3A%2F%2Fgdasaasnt.com%2Flink%3Fz%3D4356956%26var%3D%7Bzoneid%7D%26ymid%3Dwffu1f4sqgjtnncli0rjrl3c%26acb%3Dproxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
188.114.96.1200 OK0 B
fonts.googleapis.com/css2?family=Roboto:wght@300;400;500;700&family=YouTube+Sans:wght@300..900&display=swap
142.250.74.106200 OK0 B