Report Overview

  1. Submitted URL

    zebra.wthelpdesk.com/QLJm0eQZ1/H/aCuAozdEUN66.htm

  2. IP

    185.107.56.198

    ASN

    #43350 NForce Entertainment B.V.

  3. Submitted

    2023-02-28 16:08:09

    Access

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    2

  3. Threat Detection Systems

    2

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
cynes-gwf.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.clkmg.com1127780001-01-01T00:00:00Z0001-01-01T00:00:00Z
r3.o.lencr.org3440001-01-01T00:00:00Z0001-01-01T00:00:00Z
zebra.wthelpdesk.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
cdn.clickmagick.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
mybettermb.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
qvikar.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
p54677.mybettermb.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.globalsign.com20750001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp2.globalsign.com15440001-01-01T00:00:00Z0001-01-01T00:00:00Z
contile.services.mozilla.com11140001-01-01T00:00:00Z0001-01-01T00:00:00Z
push.services.mozilla.com21400001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.sectigo.com4870001-01-01T00:00:00Z0001-01-01T00:00:00Z
img-getpocket.cdn.mozilla.net16310001-01-01T00:00:00Z0001-01-01T00:00:00Z
cdn.clkmg.com7629430001-01-01T00:00:00Z0001-01-01T00:00:00Z
firefox.settings.services.mozilla.com8670001-01-01T00:00:00Z0001-01-01T00:00:00Z
content-signature-2.cdn.mozilla.net11520001-01-01T00:00:00Z0001-01-01T00:00:00Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
highClient IPInternal IP
highClient IPInternal IP

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumzebra.wthelpdesk.com/QLJm0eQZ1/H/aCuAozdEUN66.htmMalware

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (3)

HTTP Transactions (39)

URLIPResponseSize
r3.o.lencr.org/
23.33.119.27200 OK503 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
zebra.wthelpdesk.com/QLJm0eQZ1/H/aCuAozdEUN66.htm
185.107.56.198302 Found11 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
cynes-gwf.com/zcvisitor/11948150-b782-11ed-8768-121d454a7587/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=11a6d0d1-b782-11ed-8768-121d454a7587
54.237.193.255200 1.1 kB
push.services.mozilla.com/
54.148.73.41101 Switching Protocols0 B
cynes-gwf.com/zcredirect?visitid=11948150-b782-11ed-8768-121d454a7587&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
54.237.193.255200 3.7 kB
cynes-gwf.com/favicon.ico
54.237.193.255404 653 B
ocsp.sectigo.com/
172.64.155.188200 OK472 B
mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XdKpm_iE5krR4Y6kwqRF86d73pnnDH6ohvzYfNFjJsKn06qgcpL4cAslfKdxj89gROsD6Hix4F-7W8_OsGPNCx1lVC9oF4FMmrbARTGkk3NUUOUcZEDwassk593LVzcv2RysndScI7A0hcu6hKn3wvsVWknfJjvzDZ6-4dIELvnxC9xVparN_tdtrxfn3z9MLvqQBjBuU-FyrSgQCFHQC5R6lreHW1hzFnpt0lm1N3UHkzS6A_HiiIKmWCau9TXvIkg_qjJ_F0nbGdnW-W7y35Xb1Ffm7pW4W2Qo2113gZBlm0Q9kJaDF9AWo7BP5_zLoxqcot3PdTKxWW13n0sOFfFiAFF-FgbPgTni4EJjNPjDvcoZu1VgfdrinapRJf2UifhdGIXEXD_K1tp4k8AeorO8bbHYg6Y4G3PSLqJuGE4h4g_COGDAKDbXYttsXhlYwKINabzkevjvqOapUSwLb3FAOkWZMbB9Mg7VYfyD1XKIfHP37u61yszbFyORoud7G8UcICulahL8TnUz89nfXvplOK49IDcyDZ6-4dIELvnxC9xVparN_tdtrxfn3z9MLvqQBjBuU-FyrSgQCFHQC5R6lreHW1hzUgz4ZZtLihzScf2sndzzRl5Z5pjBOfEx7VvZcws81DizImanAVr_rcIGSNmExBNs1z9U4KjkYAgZT2aereO6XsSZc1Vs3djEgYLv4YQov7AZrMaPyoXKzjhZ_vzGypHZxI34F5fhEVfJixMmkC0n7rEFU_8DgkglbqKiIgFvxPjh8qo-6qP9UsPPScGUzVjbwNiklWU4DOWaalOHdFoh72mwRE-ze-A6GbOg1Gh03GObcct_di23xJRpKKtwCnOoPlBd05ZCEQoBz_t7xxLqJB6a7vlPWTYykwRDUjGI3FENGwdiudlyclSFrVu4EUgOWch0g936617TLJr6AbV4ip-NAP5pT2krRaXFoks5HwnBpsz0OJQ8WfNuKfUNTREDvEV1Sa063313NaBjWgyzwOahulU_0nycMPeuo-0z4e6mu8yMRfZD9l_HBekHgsp9ZybIkDshrsbemUyZNX7HiHnaMzr4fK_SpbHq3qHI857eSKN13ofqu2Ogvy_jzm1mNfGm8cvV5G9k8YzB06BCxhh8FM1DolkmeDBEanPsRxxcTQtRPdux7U1T1CZWUCX4yGyWDkl85uKiI8MZMtHi2v37-fJM7zOJXpu9LghaUODi6QncpGn_khCWUY-LAvDj82PVf5OOC6EDfPogyyjf72Bcu8ws6YGaegGpXtHEzqcWV8Ovk2NWkwWhtc9OegwAm928jfRxQJo4kL7575u-0AG2kbYPHUTjjPKvQdta8BC1EiJAjF60C7ayXrNgOAFRXviB8qn7hQCte1VWtwz0kWaRbBPVESW6TkvyCTgTfO7yp21PpuPCWhfkRTb4KSAPfKL-JJS2RE6tygen2wFTeRZXw6-TY1aTL6yYf11unmu0oMnz0U9yxdX5464EfUFmI4XCXOQKRvPWXT_fxgbecCC9tYwrQn-gCYVIO79thtI4Zz0H8pTbHIB9SEZpYm8fMK3Rj8xBauoDCvHCve4NiZgwBukl0zc7NoMD1C-ZU3LPeHq9Xhh_HTU_Bb3g2c_dcmE0tLH4D3ZEyKRveVvzMq6AMcFvrxfUZZJCxAdeOqU
52.116.53.155302 Found0 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
r3.o.lencr.org/
23.33.119.27200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3522243-5d97-4af8-b226-ab57b3bee6ce.jpeg
34.120.237.76200 OK5.7 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1ed5953-9a52-48d8-8c04-773371481cfc.jpeg
34.120.237.76200 OK12 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e02c64-639c-4f05-b3cf-20409c83958f.png
34.120.237.76200 OK13 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ab89bda-b5ae-4fc9-ae25-9735e6a09253.jpeg
34.120.237.76200 OK9.0 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
34.120.237.76200 OK9.1 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe86c29cb-5fdc-45c6-ab49-fced44388b23.jpeg
34.120.237.76200 OK9.9 kB
r3.o.lencr.org/
23.33.119.27200 OK503 B
qvikar.com/symantec/security/445227519
192.254.234.214302 Found0 B
ocsp.globalsign.com/alphasslcasha256g4
104.18.21.226200 OK1.4 kB
www.clkmg.com/qvikar/symantec/security/445227519/
50.97.212.250302 Found252 B
www.clkmg.com/err/?u=qvikar&l=symantec&s=A&e=403
50.97.212.250200 OK1.4 kB
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK1.4 kB
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK1.4 kB
cdn.clickmagick.com/images/logo.gif
54.230.111.94200 OK4.3 kB
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK1.4 kB
cdn.clkmg.com/misc/css/style.css
143.204.55.114200 OK4.5 kB
cdn.clkmg.com/images/spacer.gif
143.204.55.114200 OK43 B
cdn.clickmagick.com/misc/fonts/website/v3/Inter-Regular.woff
54.230.111.94200 OK149 kB
cdn.clickmagick.com/misc/fonts/website/v3/Inter-Medium.woff
54.230.111.94200 OK158 kB
www.clkmg.com/favicon.ico
50.97.212.250200 OK78 B
p54677.mybettermb.com/adServe/domainClick?ai=zHPR75Zx-onygYaeN_ogCPKnbU-m48JaF-RFNvgpIA98ov4klLZETq3KB6fbAVN5FlfDr5NjVpMvrJh_XW6ea7SgyfPRT3LF1fnjrgR9QWYjhcJc5ApG89ZdP9_GBt5wIL21jCtCf6AJhUg7v22G0jhnPQfylNscDnHJCWTK0eBMDP1FhsCRVwCDFx3Qt8gL1MXD3USB7qIPdhGn3_C1PsWFI3yN4qDY4X9Qbw4-0SQG9_hEhxtCR4NkbxMK5NnqWwu1N9Eyadm4CvWmDAYJeYHLlDn_W9ZBAUgheKjLQ6KwCMoixrppYvKnbU-m48JaF-RFNvgpIA98ov4klLZETq3KB6fbAVN5FlfDr5NjVpO675vur6_432Gu5pO1GKRhhHkhXtwEIikb-ufT921Vsd347mfhgNbxZuDK-Dk20eQlVRFEktQBWBaf4XymfSdAQOGScGtJTvTwrHjoweW6kBTRhJTr31T6sz6E4fJKdEtrKCtj0Ed3D9R2p1wd5MDK1A3LQQeWyuAM6cRdns6hCZEWaA5Ezek0Lg4vWacia8T9PVemRXHa6iYNb-iWwdA0&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNmkWwT1RElupWgNAw5gU_X_vECO5NGsm-YPbSF4YyjXvJIWcfeHzsE3I9fVG5JokIViR0TwjbS6A&si=1&oref=c9ce1d5b18e6fdae7568ad65d872115d&optunit=QoejTycKR9qgGMBHu0qr2A&rb=LW_v4KVZAgI&rr=0&abtg=0
52.116.53.155200 OK0 B