Report - emp.eduyield.com/el?aid=962445be-3c17-11ec-9620-0e45aa61dde5&rid=68730789&pid=564628&cid=497&dest=https%3A%2F%2Fgoogle.com/amp/avrancecorp.com/wp-web/onmicro22/January

Report Overview

Visited public
2025-01-15 20:10:15
Tags
URL
emp.eduyield.com/el?aid=962445be-3c17-11ec-9620-0e45aa61dde5&rid=68730789&pid=564628&cid=497&dest=https%3A%2F%2Fgoogle.com/amp/avrancecorp.com/wp-web/onmicro22/January
Finishing URL
www.google.com/url?q=avrancecorp.com/wp-web/onmicro22/January
IP / ASN
34.204.144.13
#14618 AMAZON-AES
Title
Viderekoblingsmerknad

Detections

urlquery

0

Network Intrusion Detection

0

Threat Detection Systems

0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
emp.eduyield.com	419809	2015-09-18	2018-12-21	2025-01-15	621 B	235 B	34.225.212.255
google.com	1	1997-09-15	2013-10-02	2025-01-15	578 B	1.1 kB	142.250.178.78
www.google.com	7	1997-09-15	2015-05-10	2025-01-15	3.1 kB	7.4 kB	142.250.74.68

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	www.google.com/url?q=avrancecorp.com/wp-web/onmicro22/January	ScriptElement	538 B	2025-01-15	2025-01-15
Pretty URL www.google.com/url?q=avrancecorp.com/wp-web/onmicro22/January IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-15 20:10 Last Seen2025-01-15 20:10 Times Seen1 Hash 98fc7d922eb0c32b5dcd084c1867b8a5 5cf6018113fa35c8e0657c14d6b8ffdb8dbab418 41e3f9e65e13669adcb2d25127f159cc5d2ee6a7f6158bbf9c552f815004dc2d Loading...

HTTP Transactions (6)

	URL	IP	Response	Size
	emp.eduyield.com/el?aid=962445be-3c17-11ec-9620-0e45aa61dde5&rid=68730789&pid=564628&cid=497&dest=https%3A%2F%2Fgoogle.com/amp/avrancecorp.com/wp-web/onmicro22/January	34.225.212.255	303 See Other	0 B
URL User Request GET HTTP/2 emp.eduyield.com/el?aid=962445be-3c17-11ec-9620-0e45aa61dde5&rid=68730789&pid=564628&cid=497&dest=https%3A%2F%2Fgoogle.com/amp/avrancecorp.com/wp-web/onmicro22/January IP 34.225.212.255:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subject.spectrumemp.com FingerprintD4:8D:E1:F7:96:54:71:EE:D3:55:E5:6D:9F:6E:E6:EE:5B:22:52:5E ValidityMon, 06 May 2024 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /el?aid=962445be-3c17-11ec-9620-0e45aa61dde5&rid=68730789&pid=564628&cid=497&dest=https%3A%2F%2Fgoogle.com/amp/avrancecorp.com/wp-web/onmicro22/January HTTP/1.1 Host: emp.eduyield.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 303 See Other date: Wed, 15 Jan 2025 20:09:52 GMT content-type: text/html; charset=UTF-8 content-length: 0 location: https://google.com/amp/avrancecorp.com/wp-web/onmicro22/January server: nginx/1.27.3 X-Firefox-Spdy: h2`

	google.com/amp/avrancecorp.com/wp-web/onmicro22/January	142.250.178.78	301 Moved Permanently	264 B
URL User Request GET HTTP/2 google.com/amp/avrancecorp.com/wp-web/onmicro22/January IP 142.250.178.78:443 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services Subject.google.com Fingerprint15:E2:48:E6:6F:85:45:68:E8:83:EA:14:E1:CE:84:66:EA:C7:F1:82 ValidityMon, 09 Dec 2024 08:36:18 GMT - Mon, 03 Mar 2025 08:36:17 GMT File type HTML document, ASCII text, with CRLF, LF line terminators Size 264 B (264 bytes) Hash e48f3ab8d2b9f39f09753cae648f778a 727f8d69be46d5f5a0360a5ec841ad2b357eb272 a399715664d983892928fde286ecdbb7302949ffd1c4fbfa6bd9e12cd5a8b3b8 HTTP Headers GET /amp/avrancecorp.com/wp-web/onmicro22/January HTTP/1.1 Host: google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 301 Moved Permanently location: https://www.google.com/amp/avrancecorp.com/wp-web/onmicro22/January content-type: text/html; charset=UTF-8 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-YEuQn_pP9JSJBN-HjGW98Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]} date: Wed, 15 Jan 2025 20:09:52 GMT expires: Fri, 14 Feb 2025 20:09:52 GMT cache-control: public, max-age=2592000 server: gws content-length: 264 x-xss-protection: 0 x-frame-options: SAMEORIGIN alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/amp/avrancecorp.com/wp-web/onmicro22/January	142.250.74.68	302 Found	273 B
URL User Request GET HTTP/2 www.google.com/amp/avrancecorp.com/wp-web/onmicro22/January IP 142.250.74.68:443 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services Subjectwww.google.com FingerprintA5:29:C3:F0:7E:27:39:CE:B4:61:E4:24:E5:AE:02:B7:5E:AB:5C:27 ValidityMon, 09 Dec 2024 08:38:06 GMT - Mon, 03 Mar 2025 08:38:05 GMT File type HTML document, ASCII text, with CRLF, LF line terminators Size 273 B (273 bytes) Hash 412774cec5e469f024e6f1147cf8a308 9e351e8c4b45a97d80b9447339c54ffeb20d9238 4c31b75d17bba1e795b16c75b275957e34c5b6b1533b9d020b6044cfb3397055 HTTP Headers GET /amp/avrancecorp.com/wp-web/onmicro22/January HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found location: https://www.google.com/url?q=http://avrancecorp.com/wp-web/onmicro22/January cache-control: private x-robots-tag: noindex content-type: text/html; charset=UTF-8 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-9Cja0BdcbJ6Fcko6dClFMA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]} p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." date: Wed, 15 Jan 2025 20:09:52 GMT server: gws content-length: 273 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: __Secure-ENID=25.SE=bkV1lGRL8JSSlkR5Jds78GGsMuxbKZU6xG7dCg34Ts9jjGMqzc-ygNUgkpsxGX9mgCZn9-1n2hhZh1xMHSvCnWvlKLT1MOBSWwR3eBVKwFPSBnE3THj45C1KFt2HiNXxdd6IxKhoQPtQ_fsrmp2PFayUXirSVukD8gMyP-L9R9Ci3cEA4KenLAQQ0quIz5qeISdNuCT-f9Qlnex9l1R8dNMwPjHYHmFYlrerEha82OxP; expires=Sun, 15-Feb-2026 12:28:10 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/url?q=http://avrancecorp.com/wp-web/onmicro22/January	142.250.74.68	200 OK	748 B
URL www.google.com/url?q=http://avrancecorp.com/wp-web/onmicro22/January IP 142.250.74.68:0 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services Subjectwww.google.com FingerprintA5:29:C3:F0:7E:27:39:CE:B4:61:E4:24:E5:AE:02:B7:5E:AB:5C:27 ValidityMon, 09 Dec 2024 08:38:06 GMT - Mon, 03 Mar 2025 08:38:05 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (1577), with no line terminators Size 748 B (748 bytes) Hash bb8215ae98b09483255f5b18add5944c f5eb2929138559f9557ce09363fcda62820100e1 5c7a7671c1ad4747f608170f748b8c6aec803916f17bab12d268078d04976037 HTTP Headers GET /url?q=http://avrancecorp.com/wp-web/onmicro22/January HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; __Secure-ENID=25.SE=bkV1lGRL8JSSlkR5Jds78GGsMuxbKZU6xG7dCg34Ts9jjGMqzc-ygNUgkpsxGX9mgCZn9-1n2hhZh1xMHSvCnWvlKLT1MOBSWwR3eBVKwFPSBnE3THj45C1KFt2HiNXxdd6IxKhoQPtQ_fsrmp2PFayUXirSVukD8gMyP-L9R9Ci3cEA4KenLAQQ0quIz5qeISdNuCT-f9Qlnex9l1R8dNMwPjHYHmFYlrerEha82OxP Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Wed, 15 Jan 2025 20:09:52 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: text/html; charset=UTF-8 strict-transport-security: max-age=31536000 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-RzwFo_vwAYnX7bgsEBDgpA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other accept-ch: Sec-CH-Prefers-Color-Scheme content-encoding: br server: gws content-length: 748 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/favicon.ico	142.250.74.68	200 OK	1.5 kB
URL GET HTTP/3 www.google.com/favicon.ico IP 142.250.74.68:443 ASN #15169 GOOGLE Requested by https://www.google.com/url?q=http://avrancecorp.com/wp-web/onmicro22/January Certificate IssuerGoogle Trust Services Subject.google.com Fingerprint15:E2:48:E6:6F:85:45:68:E8:83:EA:14:E1:CE:84:66:EA:C7:F1:82 ValidityMon, 09 Dec 2024 08:36:18 GMT - Mon, 03 Mar 2025 08:36:17 GMT File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Size 1.5 kB (1494 bytes) Hash f3418a443e7d841097c714d69ec4bcb8 49263695f6b0cdd72f45cf1b775e660fdc36c606 6da5620880159634213e197fafca1dde0272153be3e4590818533fab8d040770 HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/url?q=http://avrancecorp.com/wp-web/onmicro22/January Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; __Secure-ENID=25.SE=bkV1lGRL8JSSlkR5Jds78GGsMuxbKZU6xG7dCg34Ts9jjGMqzc-ygNUgkpsxGX9mgCZn9-1n2hhZh1xMHSvCnWvlKLT1MOBSWwR3eBVKwFPSBnE3THj45C1KFt2HiNXxdd6IxKhoQPtQ_fsrmp2PFayUXirSVukD8gMyP-L9R9Ci3cEA4KenLAQQ0quIz5qeISdNuCT-f9Qlnex9l1R8dNMwPjHYHmFYlrerEha82OxP Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 1494 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 14 Jan 2025 23:48:02 GMT expires: Wed, 22 Jan 2025 23:48:02 GMT cache-control: public, max-age=691200 last-modified: Tue, 22 Oct 2019 18:30:00 GMT content-type: image/x-icon vary: Accept-Encoding age: 73311 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.google.com/url?q=http://avrancecorp.com/wp-web/onmicro22/January	142.250.74.68	200 OK	1.6 kB
URL User Request GET HTTP/2 www.google.com/url?q=http://avrancecorp.com/wp-web/onmicro22/January IP 142.250.74.68:443 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services Subjectwww.google.com FingerprintA5:29:C3:F0:7E:27:39:CE:B4:61:E4:24:E5:AE:02:B7:5E:AB:5C:27 ValidityMon, 09 Dec 2024 08:38:06 GMT - Mon, 03 Mar 2025 08:38:05 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (1609), with no line terminators Size 1.6 kB (1584 bytes) Hash 1981537ced17ebeaf37594b78a5a78ea 307bd4b4cbe87d4b3668a0200d796b9a44e71547 f210d97e89fc7d6a54e41fb6a2a8c0c8174bb9b36f5707881e03490038994db9 HTTP Headers GET /url?q=http://avrancecorp.com/wp-web/onmicro22/January HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; __Secure-ENID=25.SE=bkV1lGRL8JSSlkR5Jds78GGsMuxbKZU6xG7dCg34Ts9jjGMqzc-ygNUgkpsxGX9mgCZn9-1n2hhZh1xMHSvCnWvlKLT1MOBSWwR3eBVKwFPSBnE3THj45C1KFt2HiNXxdd6IxKhoQPtQ_fsrmp2PFayUXirSVukD8gMyP-L9R9Ci3cEA4KenLAQQ0quIz5qeISdNuCT-f9Qlnex9l1R8dNMwPjHYHmFYlrerEha82OxP Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Wed, 15 Jan 2025 20:09:52 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: text/html; charset=UTF-8 strict-transport-security: max-age=31536000 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-RzwFo_vwAYnX7bgsEBDgpA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other accept-ch: Sec-CH-Prefers-Color-Scheme content-encoding: br server: gws content-length: 748 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2