Report - kristenaddison.shaniyaeyayala97.click/_meetups/?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user

Report Overview

Visited public
2025-01-05 22:40:45
Tags
URL
kristenaddison.shaniyaeyayala97.click/_meetups/?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT
Finishing URL
bgkqzz.calltogetprize.net/?s1=195508&s2=2039440&s3=ALCATRAS&s5=backuser&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&iexpp=1&j1=1&utm_source=da57dc555e50572d&ban=other
IP / ASN
68.66.226.117
#55293 A2HOSTING
Title
bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-01-01	449 B	6.8 kB	104.17.25.14
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-01-01	472 B	5.4 kB	142.251.9.95
www.gstatic.com	unknown	2008-02-11	2012-05-29	2025-01-01	438 B	12 kB	142.250.74.3
kristenaddison.shaniyaeyayala97.click	unknown	2024-08-21	2025-01-05	2025-01-05	2.5 kB	1.4 kB	68.66.226.117
bgkqzz.calltogetprize.net	unknown	2021-04-26	2024-08-01	2025-01-02	2.1 kB	32 kB	52.19.101.114
cdn-dimi.akamaized.net	unknown	2014-03-18	2022-07-07	2025-01-05	3.3 kB	987 kB	95.101.11.11
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-01-01	1.1 kB	104 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-01-05	medium	calltogetprize.net	Sinkholed
2025-01-05	medium	calltogetprize.net	Sinkholed
2025-01-05	medium	calltogetprize.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (17)

	URL	From	Size	First Seen	Last Seen
	bgkqzz.calltogetprize.net/?s1=195508&s2=2039440&s3=ALCATRAS&s5=backuser&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&iexpp=1&j1=1&utm_source=da57dc555e50572d&ban=other	ScriptElement	0 B	0001-01-01	2025-06-10
Pretty URL bgkqzz.calltogetprize.net/?s1=195508&s2=2039440&s3=ALCATRAS&s5=backuser&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&iexpp=1&j1=1&utm_source=da57dc555e50572d&ban=other IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-10 03:39 Times Seen4904478 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1	ScriptElement	2.3 kB	2025-01-05	2025-01-05
Pretty URL bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-05 22:40 Last Seen2025-01-05 22:40 Times Seen1 Hash 231371e976a3f7a6443970f1df33d2fa 2dd55e025a36f904b82bb3b19f70366f56c1ffd0 f8de4bf2200780d26659c11cf12e8c858e20c7085753dc91b57ff62757233f83 Loading...

	cdn-dimi.akamaized.net/landings/290389/1723020901/js/scripts.js?1723020901	ScriptElement	421 B	2024-08-20	2025-06-08
Pretty URL cdn-dimi.akamaized.net/landings/290389/1723020901/js/scripts.js?1723020901 IP 95.101.11.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 05:21 Last Seen2025-06-08 04:16 Times Seen118 Hash 8bf9e0404172038007f7454aded737a6 b8ae7ffa8c7f602d099c0eeba419faab58b42ef7 f8af39bb452432f459123ac6c1857f1c8ac602b89aba9bf9e1f9c5879de9cd36 Loading...

	bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1	ScriptElement	4.1 kB	2025-01-05	2025-01-05
Pretty URL bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-05 22:40 Last Seen2025-01-05 22:40 Times Seen3 Hash fb5ac4e2634d99040f129ee73fb4bc20 3d0817e5d9c150116d155034820fb158bd13fb82 955ff7ec310e5788d810aa887f339199e61deeadd7e2e0bf4f2623702f747e75 Loading...

	cdn-dimi.akamaized.net/landings/290389/1723020901/js/jquery.min.js?1723020901	ScriptElement	86 kB	2023-03-07	2025-06-10
Pretty URL cdn-dimi.akamaized.net/landings/290389/1723020901/js/jquery.min.js?1723020901 IP 95.101.11.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-10 03:39 Times Seen178738 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	bgkqzz.calltogetprize.net/sandbox%20eval%20code		123 B	2023-05-05	2025-06-09
Pretty URL bgkqzz.calltogetprize.net/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 23:38 Last Seen2025-06-09 21:31 Times Seen8447 Hash 239166f4d1bda569909c9af241098419 ad3987a93224de5c735c7c380daf5bfaecf60ac8 255566913e81e0587539abba68839777480779575271b734e817e7093f4dceec Loading...

	bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1	ScriptElement	4.0 kB	2025-01-05	2025-01-05
Pretty URL bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-05 22:40 Last Seen2025-01-05 22:40 Times Seen1 Hash 9bd1996b560d51ccaf5b98ebd347d03c d7105758bfb30b296007c5d1d3e1d22fa87173a0 8eb4b1abde2c84eee234f79ccfad667ebf6c8d884e2469dd203916d5bb763347 Loading...

	bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1	ScriptElement	14 kB	2025-01-05	2025-01-05
Pretty URL bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-05 22:40 Last Seen2025-01-05 22:40 Times Seen1 Hash 8175d7f804115b2f080b1b528ec43cef 0ba2210282a833a80a4d20761668a5cce9914dcf 0502022fbb9160bdc1474a77d03aeeca77e8b72e36bf82e2cc2bfe79ec6ec67c Loading...

	bgkqzz.calltogetprize.net/js/pushjs/1.0.0/subscriber.js	ScriptElement	14 kB	2024-08-13	2025-06-09
Pretty URL bgkqzz.calltogetprize.net/js/pushjs/1.0.0/subscriber.js IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-13 13:55 Last Seen2025-06-09 21:31 Times Seen767 Hash ac569ffc0beb63e3e3aa9bc96f034b00 cd26d911112f00087a6dd8c4a92fb858ec2d3bbd 197fbcbda196254842164e91f2f0873c08a569189262d335f82d05235f33cd23 Loading...

	bgkqzz.calltogetprize.net/js/pushjs/1.0.0/utils.js	ScriptElement	7.1 kB	2023-03-07	2025-06-09
Pretty URL bgkqzz.calltogetprize.net/js/pushjs/1.0.0/utils.js IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-09 21:31 Times Seen2287 Hash 711c7ecda710a342d24faef1dec76ede d1b38489603a2aecc2be5edb4fa4cd8d442fe727 41a5e34d6777a471d63211252ce51555815b728949dc81cec01414f4ffdb98eb Loading...

	moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/shims/firebase.js		2.3 kB	2023-05-05	2025-06-09
Pretty URL moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/shims/firebase.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 23:38 Last Seen2025-06-09 21:31 Times Seen10866 Hash 32d439c9ec8c789e843ae58b6774681c deb2c661dacf46eb3a1eacbba3e430dcf10cc395 f65e83801e16f98e150ae8843afb4c98c0b3ac0fa7fbe5a5ec687b08119732d6 Loading...

	bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1	ScriptElement	2.5 kB	2023-06-30	2025-06-09
Pretty URL bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 16:46 Last Seen2025-06-09 21:31 Times Seen2073 Hash 78a93fba834e51562cc0c1643de4a304 2bf106e16eb1752230a8499285b73ae6d8dcbcc2 d684c6105ece5706298f7778d19bc9881449a39196f92c000254f4ce6fdd368e Loading...

	cdn-dimi.akamaized.net/landings/290389/1723020901/js/translates.js?1723020901	ScriptElement	42 kB	2024-08-20	2025-06-08
Pretty URL cdn-dimi.akamaized.net/landings/290389/1723020901/js/translates.js?1723020901 IP 95.101.11.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 05:21 Last Seen2025-06-08 04:16 Times Seen150 Hash 5b7e1329b87e61452e1b93ca3632bef4 7beb240abc0ad9cedb4e74c2c5b21974878bd3fb 3a94e6a14d0dc6f2612bbb814bf3488960f562ebca2d51a27a4a9f92793c0eeb Loading...

	bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1	ScriptElement	858 B	2024-07-29	2025-06-09
Pretty URL bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-07-29 15:17 Last Seen2025-06-09 21:31 Times Seen875 Hash 9320f4c96e69f35f385a133e36bbd45b 1a8a6158a2943e5365e77252699c086679e59096 49b4b8d0ea6f5e9f18d0b2a583888720be163311f5c18203dec0d7dd23f2fddd Loading...

	cdnjs.cloudflare.com/ajax/libs/firebase/8.2.2/firebase-app.min.js	ScriptElement	20 kB	2024-08-13	2025-06-09
Pretty URL cdnjs.cloudflare.com/ajax/libs/firebase/8.2.2/firebase-app.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-13 13:55 Last Seen2025-06-09 21:31 Times Seen905 Hash 5e2898beab1505a629bf1254fbdf9ed8 f17ac22f600d694ae4341c4da46576e3fec0e6f4 00d770fea1249b4be3f55a037a9edd20c1fe55bda8ab1e4b6251e56cd74cd05b Loading...

	www.gstatic.com/firebasejs/8.2.2/firebase-messaging.js	ScriptElement	41 kB	2023-03-07	2025-06-09
Pretty URL www.gstatic.com/firebasejs/8.2.2/firebase-messaging.js IP 142.250.74.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-06-09 21:31 Times Seen991 Hash b183329c90af8d64337b925c208e7a14 9f5a49eab81c119d28416ba96f0390fdbc5a4565 8e494f1321a6b31f3f2c5b67d5ed2242260adae69ac403bf87daba0aa6f0d9cf Loading...

	bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1	ScriptElement	394 B	2025-01-05	2025-01-05
Pretty URL bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-05 22:40 Last Seen2025-01-05 22:40 Times Seen1 Hash 16b7b47853fcbea63b5bfd6f28e9f380 b9ab34762078ab6b8f149fdd6e7c44cb83007b5a f476dde76edb77e845d11e025f07cd064c7b1ad48d348db6aaac0d600723771b Loading...

HTTP Transactions (17)

URL IP Response Size

kristenaddison.shaniyaeyayala97.click/_meetups/?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT

68.66.226.117

302 Found

0 B

URL
kristenaddison.shaniyaeyayala97.click/_meetups/?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT
IP
68.66.226.117:0
ASN
#55293 A2HOSTING

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_meetups/?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT HTTP/1.1
Host: kristenaddison.shaniyaeyayala97.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
x-powered-by: PHP/7.4.33
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
location: /_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 05 Jan 2025 22:40:19 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

kristenaddison.shaniyaeyayala97.click/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT

68.66.226.117

200 OK

367 B

URL
kristenaddison.shaniyaeyayala97.click/_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT
IP
68.66.226.117:0
ASN
#55293 A2HOSTING

File type
HTML document, ASCII text, with very long lines (857), with no line terminators
Size
367 B (367 bytes)
Hash
4d9ffef732f2de362d027377c1642527
d0ad6df396afe8004e7e9c4d3d0dec9ca9edc73f
ce1dedbd2475478825c409e31e3762b52349c6b0d7f94ab5c80ad964bf8faa68

HTTP Headers

GET /_meetups/r.php?click_id=ALCATRAS&country_code=US&user_agent=WEB&ip_address=34.98.143.231&user_lp=IMONETIZEIT HTTP/1.1
Host: kristenaddison.shaniyaeyayala97.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
cache-control: no-cache
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 367
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Jan 2025 22:40:19 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1

52.19.101.114

200 OK

9.2 kB

URL User Request GET HTTP/2
bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
IP
52.19.101.114:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.calltogetprize.net
Fingerprint37:53:F4:10:4C:CB:63:E9:05:F9:CC:1E:9B:B2:2D:97:AC:6D:32:42
ValiditySat, 09 Nov 2024 23:32:20 GMT - Fri, 07 Feb 2025 23:32:19 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1591)
Size
9.2 kB (9172 bytes)
Hash
2566cda88ebc8ef01746b7804315c056
fdf84971c022d3eef670c2aaaf4aa3e0b8e8a309
2a63147058987418a28bcd16dab98a77c88b3d7eeca6a620fb4025339a90e906

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1 HTTP/1.1
Host: bgkqzz.calltogetprize.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 Jan 2025 22:40:19 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=677af7320006a535; Path=/; Expires=Thu, 06 Mar 2025 22:40:19 GMT; Secure; SameSite=None
unique_id2=677ade0a0006387e; Path=/; Expires=Sat, 05 Apr 2025 22:40:19 GMT; Secure; SameSite=None
677ade0a0006387e_c=1; Path=/; Expires=Sat, 05 Apr 2025 22:40:19 GMT; Secure; SameSite=None
ref_token=195508_224517; Path=/; Expires=Tue, 04 Feb 2025 22:40:19 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Sun, 05 Jan 2025 22:40:19 GMT; Secure; SameSite=None
677ade0a0006387e_sl=[290389]; Path=/; Expires=Sun, 19 Jan 2025 22:40:19 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2

cdn-dimi.akamaized.net/landings/290389/1723020901/css/style.css?1723020901

95.101.11.11

200 OK

1.1 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/290389/1723020901/css/style.css?1723020901
IP
95.101.11.11:443
ASN
#20940 Akamai International B.V.

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text
Size
1.1 kB (1083 bytes)
Hash
1322acde8fd65a629e2fc0be9b45026a
3ddaa06b4b960f649c89bffb22ff53ca5010faaf
e594008b2f1c6e9412ae54bd1b98f074b3e76befcd3b95847d3d52e12e41c399

HTTP Headers

GET /landings/290389/1723020901/css/style.css?1723020901 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: QAhSDrBsjdzBeRTsJmSzPmBrXQxHanmk3gA6nWzFCugVq5a0XAxgkRq7SbUkRrZABXrEXmdrMTvJ3gb2MchKsoMBcqwCAlrR
x-amz-request-id: FJVNSYHSKZ4R5XV0
Last-Modified: Thu, 12 Dec 2024 08:00:07 GMT
ETag: "1322acde8fd65a629e2fc0be9b45026a"
x-amz-server-side-encryption: AES256
x-amz-meta-ctime: 1733990406.262264383
x-amz-meta-mode: 33279
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 05 Jan 2025 22:40:20 GMT
Content-Length: 1083
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/290389/1723020901/js/scripts.js?1723020901

95.101.11.11

200 OK

421 B

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/290389/1723020901/js/scripts.js?1723020901
IP
95.101.11.11:443
ASN
#20940 Akamai International B.V.

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
421 B (421 bytes)
Hash
8bf9e0404172038007f7454aded737a6
b8ae7ffa8c7f602d099c0eeba419faab58b42ef7
f8af39bb452432f459123ac6c1857f1c8ac602b89aba9bf9e1f9c5879de9cd36

HTTP Headers

GET /landings/290389/1723020901/js/scripts.js?1723020901 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: dpxOTeruFg0gBhP9OHKX0sGw8kvNaPv0oVyGQ2qV9dG2xLsFGKP3o4tkdpN3flB+ov7HCAFHIXc=
x-amz-request-id: FJVPR43DJ1RQWMTJ
Last-Modified: Thu, 12 Dec 2024 08:00:10 GMT
ETag: "8bf9e0404172038007f7454aded737a6"
x-amz-server-side-encryption: AES256
x-amz-meta-ctime: 1733990408.975927412
x-amz-meta-mode: 33279
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 421
Server: AmazonS3
Date: Sun, 05 Jan 2025 22:40:20 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/290389/1723020901/js/jquery.min.js?1723020901

95.101.11.11

200 OK

30 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/290389/1723020901/js/jquery.min.js?1723020901
IP
95.101.11.11:443
ASN
#20940 Akamai International B.V.

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32065)
Size
30 kB (29855 bytes)
Hash
2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

HTTP Headers

GET /landings/290389/1723020901/js/jquery.min.js?1723020901 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: AYHCjhfP40UlGKGpRniw+uXxB2n6eZk9Su9o0EGdGv6lgwW095IPihWXnxKEq5Ij0rIXGUHHoZx+zTBIVXH4pSlxVm9t9Ujuq6jruJEouTU=
x-amz-request-id: FJVZ6ZD487W4M93K
Last-Modified: Thu, 12 Dec 2024 08:00:09 GMT
ETag: "2f6b11a7e914718e0290410e85366fe9"
x-amz-server-side-encryption: AES256
x-amz-meta-ctime: 1733990408.762525316
x-amz-meta-mode: 33279
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 05 Jan 2025 22:40:20 GMT
Content-Length: 29855
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/290389/1723020901/js/translates.js?1723020901

95.101.11.11

200 OK

15 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/290389/1723020901/js/translates.js?1723020901
IP
95.101.11.11:443
ASN
#20940 Akamai International B.V.

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
15 kB (15353 bytes)
Hash
5b7e1329b87e61452e1b93ca3632bef4
7beb240abc0ad9cedb4e74c2c5b21974878bd3fb
3a94e6a14d0dc6f2612bbb814bf3488960f562ebca2d51a27a4a9f92793c0eeb

HTTP Headers

GET /landings/290389/1723020901/js/translates.js?1723020901 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: xBIdvGgxFL4KJe6kuug1VXkIX/Xv+/fNcsozksh4kd65ud5FMOPM+vFwZSHoXgiRpvHLmKSzQpA=
x-amz-request-id: FJVPDC5FAMKHBZKQ
Last-Modified: Thu, 12 Dec 2024 08:00:10 GMT
ETag: "5b7e1329b87e61452e1b93ca3632bef4"
x-amz-server-side-encryption: AES256
x-amz-meta-ctime: 1733990409.183749532
x-amz-meta-mode: 33279
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 05 Jan 2025 22:40:20 GMT
Content-Length: 15353
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcviYwY.woff2

142.250.74.35

200 OK

73 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcviYwY.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 73080, version 1.0
Size
73 kB (73080 bytes)
Hash
b78b5c4671c26f1509dc6c7ff058398e
cdd970d25e7e6a1810e728f4fb6ee35d1b5ae00b
94ebe9c247ba14fd314a779358315f3e9dd2356c0e8070f42b208db2d5e21d6a

HTTP Headers

GET /s/inter/v18/UcCo3FwrK3iLTcviYwY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bgkqzz.calltogetprize.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 73080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Jan 2025 03:53:16 GMT
expires: Sun, 04 Jan 2026 03:53:16 GMT
cache-control: public, max-age=31536000
age: 154024
last-modified: Mon, 29 Jul 2024 22:45:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn-dimi.akamaized.net/landings/290389/1723020901/images/video-1.mp4

95.101.11.11

206 Partial Content

931 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/290389/1723020901/images/video-1.mp4
IP
95.101.11.11:443
ASN
#20940 Akamai International B.V.

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Size
931 kB (931352 bytes)
Hash
e6ea91a06ca748a1cb83a22219c47fd4
a184fdd3422f521fce725656bed8a3f7cbe37877
bd40dd957489d3e419c5c4dfc4fa2ef098d1f1f73f0517ce65dd5949ff744354

HTTP Headers

GET /landings/290389/1723020901/images/video-1.mp4 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 206 Partial Content
x-amz-id-2: uKkKbGPgdGg4WWYwBGyryTWHQCbOQH4aIRnc8z/0I7XUxZBRhfUZAEmcqA0B/GKguMkHxau0OrA=
x-amz-request-id: 4DREHKTTEWPP0JPB
Last-Modified: Thu, 12 Dec 2024 08:00:08 GMT
ETag: "e6ea91a06ca748a1cb83a22219c47fd4"
x-amz-server-side-encryption: AES256
x-amz-meta-ctime: 1733990407.478017844
x-amz-meta-mode: 33279
Accept-Ranges: bytes
Content-Type: video/mp4
Server: AmazonS3
Date: Sun, 05 Jan 2025 22:40:20 GMT
Content-Range: bytes 0-931351/931352
Content-Length: 931352
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcvmYwYL8g.woff2

142.250.74.35

200 OK

30 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcvmYwYL8g.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 29588, version 1.0
Size
30 kB (29588 bytes)
Hash
6d1c79015884cf5da3044fb1fe6523a7
b29b4dac362d47960ee54a500b46a5b9719d26ad
1e3ca90db51ad9fda114ef8ba6d0934102f7e94e9dfb0a7e727447ac741feb00

HTTP Headers

GET /s/inter/v18/UcCo3FwrK3iLTcvmYwYL8g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bgkqzz.calltogetprize.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Jan 2025 18:53:47 GMT
expires: Sat, 03 Jan 2026 18:53:47 GMT
cache-control: public, max-age=31536000
age: 186393
last-modified: Mon, 29 Jul 2024 22:55:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/firebase/8.2.2/firebase-app.min.js

104.17.25.14

200 OK

5.8 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/firebase/8.2.2/firebase-app.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (19780), with no line terminators
Size
5.8 kB (5762 bytes)
Hash
5e2898beab1505a629bf1254fbdf9ed8
f17ac22f600d694ae4341c4da46576e3fec0e6f4
00d770fea1249b4be3f55a037a9edd20c1fe55bda8ab1e4b6251e56cd74cd05b

HTTP Headers

GET /ajax/libs/firebase/8.2.2/firebase-app.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 Jan 2025 22:40:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 5762
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ff7ae08-4d44"
last-modified: Fri, 08 Jan 2021 00:57:44 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1457550
expires: Fri, 26 Dec 2025 22:40:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S3pB70xrHpPEg4dAc98xmbAm6qhVHMYtfp4566ALo8yQzIoY4T7UZ0yNr0kdsZl29BuElY2c5S2eD%2F478VurJdM9MoSQBmMC2u4RcXMJjNa%2FWy4ibfhawtxxd9m4NDrCZ%2BwaBjko"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8fd6f8326c747129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:opsz,wght@14..32,100..900&display=swap

142.251.9.95

200 OK

4.7 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:opsz,wght@14..32,100..900&display=swap
IP
142.251.9.95:443
ASN
#15169 GOOGLE

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint30:E5:7E:29:A5:A1:81:DB:C8:A8:49:80:67:40:12:AB:30:C0:34:8D
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT

File type
gzip compressed data, max compression
Size
4.7 kB (4703 bytes)
Hash
5b5c70375e463f4564cc3382055f3fc9
ce33d031e4f03983cacfd324757ad2d4a9881ced
fbe103d77d8cb1158504c24706b0bd7b20435e44f16868bd0f71ce635faed69d

HTTP Headers

GET /css2?family=Inter:opsz,wght@14..32,100..900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Jan 2025 22:40:20 GMT
date: Sun, 05 Jan 2025 22:40:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/8.2.2/firebase-messaging.js

142.250.74.3

200 OK

11 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/8.2.2/firebase-messaging.js
IP
142.250.74.3:443
ASN
#15169 GOOGLE

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT

File type
JavaScript source, ASCII text, with very long lines (40719)
Size
11 kB (10840 bytes)
Hash
b183329c90af8d64337b925c208e7a14
9f5a49eab81c119d28416ba96f0390fdbc5a4565
8e494f1321a6b31f3f2c5b67d5ed2242260adae69ac403bf87daba0aa6f0d9cf

HTTP Headers

GET /firebasejs/8.2.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Dec 2024 10:28:44 GMT
expires: Tue, 30 Dec 2025 10:28:44 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 07 Jan 2021 21:51:17 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 562297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bgkqzz.calltogetprize.net/js/pushjs/1.0.0/utils.js

52.19.101.114

200 OK

7.1 kB

URL GET HTTP/2
bgkqzz.calltogetprize.net/js/pushjs/1.0.0/utils.js
IP
52.19.101.114:443
ASN
#16509 AMAZON-02

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerLet's Encrypt
Subject*.calltogetprize.net
Fingerprint37:53:F4:10:4C:CB:63:E9:05:F9:CC:1E:9B:B2:2D:97:AC:6D:32:42
ValiditySat, 09 Nov 2024 23:32:20 GMT - Fri, 07 Feb 2025 23:32:19 GMT

File type
JavaScript source, ASCII text, with very long lines (7334), with no line terminators
Size
7.1 kB (7071 bytes)
Hash
7df62062a027cd25d5a179c520f38668
0ddaa8cd9090908d987e0299cef74fbf7f118738
cdf93aff990bae251f609ef00d7d2bdbb56a35f003c7184ba067b5948629faa3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/pushjs/1.0.0/utils.js HTTP/1.1
Host: bgkqzz.calltogetprize.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/?s1=195508&s2=2039440&s3=ALCATRAS&s5=backuser&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&iexpp=1&j1=1&utm_source=da57dc555e50572d&ban=other
Cookie: unique_id=677af7320006a535; unique_id2=677ade0a0006387e; 677ade0a0006387e_c=1; ref_token=195508_224517; 677ade0a0006387e_sl=[290389]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 Jan 2025 22:40:20 GMT
content-type: application/javascript
expires: Sun, 12 Jan 2025 22:40:20 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2

bgkqzz.calltogetprize.net/js/pushjs/1.0.0/subscriber.js

52.19.101.114

200 OK

14 kB

URL GET HTTP/2
bgkqzz.calltogetprize.net/js/pushjs/1.0.0/subscriber.js
IP
52.19.101.114:443
ASN
#16509 AMAZON-02

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerLet's Encrypt
Subject*.calltogetprize.net
Fingerprint37:53:F4:10:4C:CB:63:E9:05:F9:CC:1E:9B:B2:2D:97:AC:6D:32:42
ValiditySat, 09 Nov 2024 23:32:20 GMT - Fri, 07 Feb 2025 23:32:19 GMT

File type
JavaScript source, ASCII text, with very long lines (599)
Size
14 kB (14326 bytes)
Hash
ac569ffc0beb63e3e3aa9bc96f034b00
cd26d911112f00087a6dd8c4a92fb858ec2d3bbd
197fbcbda196254842164e91f2f0873c08a569189262d335f82d05235f33cd23

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1
Host: bgkqzz.calltogetprize.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/?s1=195508&s2=2039440&s3=ALCATRAS&s5=backuser&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&iexpp=1&j1=1&utm_source=da57dc555e50572d&ban=other
Cookie: unique_id=677af7320006a535; unique_id2=677ade0a0006387e; 677ade0a0006387e_c=1; ref_token=195508_224517; 677ade0a0006387e_sl=[290389]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 Jan 2025 22:40:20 GMT
content-type: application/javascript
expires: Sun, 12 Jan 2025 22:40:20 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2

cdn-dimi.akamaized.net/landings/290389/1723020901/css/reset.min.css?1723020901

95.101.11.40

200 OK

1.1 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/290389/1723020901/css/reset.min.css?1723020901
IP
95.101.11.40:443
ASN
#20940 Akamai International B.V.

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1197), with no line terminators
Size
1.1 kB (1071 bytes)
Hash
876b0eef78dbb83fadbfa8d5e6895d1d
6665ed482e49db6387aa4a32244280970f4c1431
5c1715f735ee99abbd856b8b0688f02e822dc8efac6e65d38caec26152b95126

HTTP Headers

GET /landings/290389/1723020901/css/reset.min.css?1723020901 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: X7a0i0gwsLejCIXD9kQ05iriV1bu76O3ElwtPKK65TZFrPvErodblEKAmgor9s4IN89HFwRWCFc=
x-amz-request-id: FJVMZ0STH1M5BKYT
Last-Modified: Thu, 12 Dec 2024 08:00:07 GMT
ETag: "36f11c31f5b3885dc017f41ed8f5817c"
x-amz-server-side-encryption: AES256
x-amz-meta-ctime: 1733990406.069358773
x-amz-meta-mode: 33279
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 05 Jan 2025 22:40:20 GMT
Content-Length: 527
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/images/favicon.ico

95.101.11.11

200 OK

4.1 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/images/favicon.ico
IP
95.101.11.11:443
ASN
#20940 Akamai International B.V.

Requested by
https://bgkqzz.calltogetprize.net/?utm_source=da57dc555e50572d&s1=195508&s2=2039440&s3=ALCATRAS&click_id=QUxDQVRSQVMsVVMsMzQuOTguMTQzLjIzMSxXRUIsSU1PTkVUSVpFSVQ&ban=other&j1=1
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
4.1 kB (4103 bytes)
Hash
4cdf3256cd7b8ec3917adb79d6bf457e
bc615337e9223183a126c8fb649774866fb53e69
fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bgkqzz.calltogetprize.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 2GM1RH+Oo7JIRLs/OPfJSrmls1pwWkrIufazLdJT5aWuDbgNABEKJmW/8rLlCMaF9QlDE8aTJ9E=
x-amz-request-id: Y5JJFAEXP3X803ZN
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 4103
Date: Sun, 05 Jan 2025 22:40:20 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML