Report - gregdsgfh.dns04.com/auth.php?screen/na/authorize?response_type=code&client_id=zc001&state=&scope=openid&_gl=11li7pmi_gamtc0njiwmte2ni4xnjy5mzy5mdg0_ga_bkkp87cx6tmty3nze1ndeync4xljaumty3nze1ndeyni41oc4wlja

Report Overview

Visitedpublic

2024-05-21 04:11:26

Tags

Submit Tags

URL

gregdsgfh.dns04.com/auth.php?screen/na/authorize?response_type=code&client_id=zc001&state=&scope=openid&_gl=11li7pmi_gamtc0njiwmte2ni4xnjy5mzy5mdg0_ga_bkkp87cx6tmty3nze1ndeync4xljaumty3nze1ndeyni41oc4wlja

Finishing URL

gregdsgfh.dns04.com/news?q=Invalid%20url!%20/auth.php?screen/na/authorize?response_type=code&client_id=zc001&state=&scope=openid&_gl=11li7pmi_gamtc0njiwmte2ni4xnjy5mzy5mdg0_ga_bkkp87cx6tmty3nze1ndeync4xljaumty3nze1ndeyni41oc4wlja

IP / ASN

198.55.123.185

#8100 ASN-QUADRANET-GLOBAL

Title

Fox News World RSS Feed - essejmxyc.octagram.eu.com

Suspicious - DynDNS domain

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
feeds.foxnews.com	160382	1995-06-21	2012-05-24 21:32:56	2024-04-18 14:10:59	440 B	556 B	151.101.194.132
moxie.foxnews.com	868145	1995-06-21	2022-02-24 13:15:58	2024-05-14 16:41:26	431 B	47 kB	23.52.23.45
gregdsgfh.dns04.com	unknown	2001-03-20	2023-06-15 03:24:13	2023-06-15 20:36:34	1.7 kB	4.5 kB	198.55.123.185

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-21 04:11:02	medium	Client IP	198.55.123.185	ETPRO INFO DYNAMIC_DNS HTTP Request to a *.dns04.com Domain
2024-05-21 04:11:02	medium	Client IP	198.55.123.185	ETPRO INFO DYNAMIC_DNS HTTP Request to a *.dns04.com Domain
2024-05-21 04:11:03	medium	Client IP	198.55.123.185	ETPRO INFO DYNAMIC_DNS HTTP Request to a *.dns04.com Domain
2024-05-21 04:11:03	medium	Client IP	198.55.123.185	ETPRO INFO DYNAMIC_DNS HTTP Request to a *.dns04.com Domain
2024-05-21 04:11:03	medium	Client IP	198.55.123.185	ETPRO INFO DYNAMIC_DNS HTTP Request to a *.dns04.com Domain
2024-05-21 04:11:03	medium	Client IP	198.55.123.185	ETPRO INFO DYNAMIC_DNS HTTP Request to a *.dns04.com Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

HTTP Transactions (5)

	URL	IP	Response	Size