Report Overview

  1. Submitted URL

    redir.findthewind.xyz/feed/click/?t1=128&tid=8&uid=3&subid=8.jp&id=a7a00d186162bb0324f83ddbb35e4aa6:cc81756fd8b55150925b22f650b58d84de94459f964506114e774a33dd06dc5ccad94586240672770ef1d7d92dbd9e5480211b9dc5c09dba5bc2f59b6d49260d1771f2d9359cb933b0d159119fa760e1725b4acf866b24499e4094b10b7a66187c83ef9f6feb2d816e69b3ad0a8b0c41b3d11bd421e8e7bc495faeb30c256be1ae66fb182dca288eb9c6ed8af77988e28b61136d2662e5afd95762cc5a1f84d990988be38d9501467e34cfce3fa7a9d1dc3fbe17b545e115662872f145beb28d128b8d6b12522c6f0d4ecc91bd9dc6930fe2192fe0324cdc8a217b48386c77ad56635b923c7247567217c6046433f32ee47fbefecf78c705855b1e2f2d69df6c3401504a60881ca05b7fa6ab28e3e6ccb9aea395c6766e37860ddbb8401b2ae38eb3ef26a6f3b38a99ca92923053930db24f86743782649e19f9dcbef8e58dc631a281015ae696abb22e3b7a47b70ba5079d4404f883da68356ef6a97beb16814f4c08e017762324294caf8b555aab199fd24363e09c78b7f0045b7aaff96d5fee2f83173809b085ee2ac57af765815bb9b39657a25234ec95c7251347cd116e&s1=6328caa40082d95fb7517e40

  2. IP

    198.211.113.186

    ASN

    #14061 DIGITALOCEAN-ASN

  3. Submitted

    2022-09-19 20:02:12

    Access

  4. Website Title

  5. Final URL

  6. Tags

    None

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    2

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
ps.popcash.net676920001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.googletagmanager.com750001-01-01T00:00:00Z0001-01-01T00:00:00Z
region1.google-analytics.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
push.services.mozilla.com21400001-01-01T00:00:00Z0001-01-01T00:00:00Z
heya.todayunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.pki.goog1750001-01-01T00:00:00Z0001-01-01T00:00:00Z
fonts.gstatic.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
r3.o.lencr.org3440001-01-01T00:00:00Z0001-01-01T00:00:00Z
miao.labtrffc.com878830001-01-01T00:00:00Z0001-01-01T00:00:00Z
popcash.net111040001-01-01T00:00:00Z0001-01-01T00:00:00Z
img-getpocket.cdn.mozilla.net16310001-01-01T00:00:00Z0001-01-01T00:00:00Z
fonts.googleapis.com88770001-01-01T00:00:00Z0001-01-01T00:00:00Z
content-signature-2.cdn.mozilla.net11520001-01-01T00:00:00Z0001-01-01T00:00:00Z
contile.services.mozilla.com11140001-01-01T00:00:00Z0001-01-01T00:00:00Z
mono.trffcsource.com1807460001-01-01T00:00:00Z0001-01-01T00:00:00Z
redir.findthewind.xyzunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
firefox.settings.services.mozilla.com8670001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.digicert.com860001-01-01T00:00:00Z0001-01-01T00:00:00Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumps.popcash.net/go/134600/426377Malware

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


JavaScript (6)

HTTP Transactions (47)

URLIPResponseSize
redir.findthewind.xyz/feed/click/?t1=128&tid=8&uid=3&subid=8.jp&id=a7a00d186162bb0324f83ddbb35e4aa6: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&s1=6328caa40082d95fb7517e40
198.211.113.186302 Found234 B
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK939 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK5.3 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
mono.trffcsource.com/z.php?p=c:9qopki6xxt24fkzm4&d=620239e89b29133e2933cceb&s=8
51.83.143.92302 Found0 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
miao.labtrffc.com/s.php?p=c:9qopki6xwqp07eckv&d=603611c5b7eaf46891533240&s=int-8
51.83.143.92200 OK490 B
miao.labtrffc.com/s.php?p=c:9qopki6xwqp07eckv&d=603611c5b7eaf46891533240&s=int-8&bv=1
51.83.143.92302 Found0 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK329 B
miao.labtrffc.com/favicon.ico
51.83.143.92200 OK20 B
popcash.net/world/go/134600/426377
172.67.194.203301 Moved Permanently162 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
ps.popcash.net/go/134600/426377
3.224.133.188200 OK270 B
push.services.mozilla.com/
54.189.35.180101 Switching Protocols0 B
ps.popcash.net/ad/ad?p=134600&w=426377&t=af3bc672bf83c26e&r=&vw=1280&vh=0
3.224.133.188303 See Other0 B
heya.today/1
99.192.224.70200 OK4.2 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
www.googletagmanager.com/gtag/js?id=G-TBR6YBVH1L
142.250.74.72200 OK75 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
34.120.237.76200 OK12 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
34.120.237.76200 OK11 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb78000d2-f83e-44e6-b5dd-092b2c37f6b8.jpeg
34.120.237.76200 OK4.8 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
34.120.237.76200 OK5.9 kB
fonts.googleapis.com/css2?family=Roboto+Slab:wght@400;600;700&family=Roboto:wght@400;500;700&display=swap
142.250.74.10200 OK5.9 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd6067cf-6392-4f3a-8543-a3861c83d1cd.jpeg
34.120.237.76200 OK9.1 kB
heya.today/css/dark.css
99.192.224.70200 OK49 kB
heya.today/css/animate.css
99.192.224.70200 OK90 kB
heya.today/css/magnific-popup.css
99.192.224.70200 OK7.3 kB
heya.today/css/custom.css
99.192.224.70200 OK268 B
heya.today/css/colors.php?color=FF8600
99.192.224.70200 OK9.4 kB
heya.today/demos/news/css/fonts.css
99.192.224.70200 OK1.0 kB
heya.today/demos/news/news.css
99.192.224.70200 OK13 kB
heya.today/css/font-icons.css
99.192.224.70200 OK123 kB
heya.today/img/icon.png
99.192.224.70200 OK68 B
heya.today/demos/HEYA.png
99.192.224.70200 OK9.1 kB
heya.today/style.css
99.192.224.70200 OK334 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK16 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
region1.google-analytics.com/g/collect?v=2&tid=G-TBR6YBVH1L&gtm=2oe9e0&_p=1759102570&cid=1712473449.1663617705&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663617704&sct=1&seg=0&dl=https%3A%2F%2Fheya.today%2F1&dr=http%3A%2F%2Fps.popcash.net%2F&dt=Heya%20Blog&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content0 B
heya.today/favicon.ico
99.192.224.70404 Not Found0 B