Report Overview

  1. Submitted URL

    1wmdru.top/

  2. IP

    190.115.24.78

    ASN

    #262254 DDOS-GUARD CORP.

  3. Submitted

    2023-04-01 22:18:30

    Access

    public

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    2

  3. Threat Detection Systems

    16

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
1wmdru.topunknown2023-02-04T02:08:18Z2023-03-22T16:38:27Z
r3.o.lencr.org3442020-12-02T09:52:13Z2023-04-01T18:12:25Z
content-signature-2.cdn.mozilla.net11522020-11-03T13:26:46Z2023-04-01T17:56:08Z
push.services.mozilla.com21402014-10-24T10:27:06Z2023-04-01T18:14:35Z
api.amplitude.com12422019-01-27T16:02:28Z2023-04-02T20:29:32Z
mc.yandex.ru26722012-05-21T11:38:30Z2023-04-01T18:48:29Z
region1.google-analytics.comunknown2022-03-17T12:26:33Z2023-04-01T18:50:46Z
firefox.settings.services.mozilla.com8672020-06-04T22:08:41Z2023-04-01T18:13:29Z
1win-cdn.comunknown2022-12-12T13:37:00Z2023-04-02T06:37:52Z
www.googletagmanager.com752013-05-22T04:07:37Z2023-04-01T18:22:38Z
12688802.fls.doubleclick.netunknown2023-01-13T19:52:23Z2023-04-02T01:43:21Z
ocsp.globalsign.com20752012-07-20T19:46:16Z2023-04-01T18:13:33Z
imgproxy.1win-cdn.comunknown2022-12-22T23:56:11Z2023-04-02T01:43:21Z
contile.services.mozilla.com11142021-05-27T20:32:35Z2023-04-01T18:12:11Z
api.lab.amplitude.com131172020-10-31T14:21:39Z2023-04-02T20:20:00Z
ocsp.comodoca.com16962012-05-21T09:01:17Z2023-04-02T04:04:33Z
adservice.google.com762021-02-20T17:10:48Z2023-04-01T22:26:31Z
script.hotjar.com8872020-11-05T17:23:46Z2023-04-01T18:12:06Z
adservice.google.no969692018-06-20T01:38:38Z2023-04-01T18:12:30Z
ocsp.pki.goog1752018-07-01T08:43:07Z2023-04-01T18:12:04Z
12572451.fls.doubleclick.netunknown2022-11-11T19:14:49Z2023-04-02T01:43:21Z
1win.directunknown2022-08-16T12:27:23Z2023-04-02T01:43:20Z
img-getpocket.cdn.mozilla.net16312018-06-22T01:36:00Z2023-04-01T05:09:04Z
ps250.1win-service.comunknown2020-02-06T00:26:52Z2023-04-02T01:43:24Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IPInternal IP
mediumClient IP 190.115.24.78

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
medium1wmdru.top/Phishing
medium1wmdru.top/pwaNotFound.htmlPhishing
medium1wmdru.top/get-authorization?random=1680387496256-0.7535596242863966Phishing
medium1wmdru.top/1.txt?1680387496550Phishing
medium1wmdru.top/sw.7b67e677.jsPhishing
medium1wmdru.top/Phishing
medium1wmdru.top/firebase/8.1.1/firebase-app.jsPhishing
medium1wmdru.top/firebase/8.1.1/firebase-messaging.jsPhishing

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (38)

HTTP Transactions (242)

URLIPResponseSize
1wmdru.top/
190.115.24.78301 Moved Permanently175 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
push.services.mozilla.com/
34.117.65.55101 Switching Protocols0 B
1win-cdn.com/font/SFNSDisplay-latin.50a4eaff3.woff2
104.26.5.11200 OK33 kB
1win-cdn.com/font/SFNSText-latin.f09aa5229.woff2
104.26.5.11200 OK44 kB
1win-cdn.com/js/chunk-common.f1b48f749.js
104.26.5.11200 OK5.8 kB
1win-cdn.com/css/77202.cc5a0f04e.css
104.26.5.11200 OK33 kB
1wmdru.top/img/icons/favicon-16x16-darkmode.png
190.115.24.78200 OK410 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
www.googletagmanager.com/gtm.js?id=GTM-KGKQDC7
142.250.74.168200 OK60 kB
1wmdru.top/pwaNotFound.html
190.115.24.78200 OK2.8 kB
1wmdru.top/get-authorization?random=1680387496256-0.7535596242863966
190.115.24.78200 OK19 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
1wmdru.top/1.txt?1680387496550
190.115.24.78200 OK8 B
12688802.fls.doubleclick.net/activityi;src=12688802;type=actio0;cat=allpa0;ord=1;num=4046254839481;gtm=45He33t0;auiddc=130747707.1680387496;~oref=https%3A%2F%2F1wmdru.top%2F?
142.250.74.70200 OK235 B
1win-cdn.com/js/chunk-vendors.288bdb6f3.js
104.26.5.11200 OK136 kB
1win-cdn.com/css/35616.7f5925bbb.css
104.26.5.11200 OK14 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
12572451.fls.doubleclick.net/activityi;src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=7040658980612.209?
142.250.74.70200 OK274 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
12688802.fls.doubleclick.net/activityi;src=12688802;type=actio0;cat=allpa0;ord=1;num=2582624627619;gtm=45He33t0;auiddc=130747707.1680387496;~oref=https%3A%2F%2F1wmdru.top%2Fbets%2Fhome?
142.250.74.70200 OK245 B
12572451.fls.doubleclick.net/activityi;src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=5313735779699.452?
142.250.74.70200 OK274 B
ocsp.globalsign.com/gseccovsslca2018
151.101.194.133200 OK939 B
api.lab.amplitude.com/sdk/vardata
151.101.130.132200 OK2 B
1win-cdn.com/js/1883.ce7803cd3.js
104.26.5.11200 OK82 kB
1win.direct/socket.io/?Language=en&EIO=3&transport=websocket
134.122.54.186101 Switching Protocols0 B
ocsp.comodoca.com/
104.18.32.68200 OK472 B
ocsp.comodoca.com/
104.18.32.68200 OK472 B
1win-cdn.com/js/95765.3116a22f7.js
104.26.5.11200 OK5.5 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa56dcfe2-79ba-46e2-a5e5-2ea22b3f0188.jpeg
34.120.237.76200 OK8.2 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
34.120.237.76200 OK3.8 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8939ac-5249-469a-92a8-f7d39e16fd0c.jpeg
34.120.237.76200 OK10 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK9.9 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfa5d643-243c-4157-97e2-d929d9b82514.jpeg
34.120.237.76200 OK4.7 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
34.120.237.76200 OK6.0 kB
1win-cdn.com/js/80794.1b3c3f334.js
104.26.5.11200 OK2.7 kB
api.amplitude.com/
52.12.237.161200 OK7 B
1win-cdn.com/img/present-with-light.bd57fb068-151.png
104.26.5.11200 OK6.7 kB
1win-cdn.com/img/sprite-tvbet-frame@2.52cde99d0-256.png
104.26.5.11200 OK4.5 kB
1win-cdn.com/img/free-money-link-image.4433e4971-120.png
104.26.5.11200 OK6.3 kB
1win-cdn.com/img/sprite-roulette-frame@2.76ea5a241-256.png
104.26.5.11200 OK30 kB
1win-cdn.com/img/sprite-tvbet@2.888adc8ee-256.webp
104.26.5.11200 OK354 kB
1win-cdn.com/img/sprite-dice-frame@2.8e0d70675-256.png
104.26.5.11200 OK17 kB
1win-cdn.com/img/sprite-poker-frame@2.1caa31af7-256.png
104.26.5.11200 OK10 kB
1win-cdn.com/img/sprite-poker@2.a38733e7a-256.webp
104.26.5.11200 OK361 kB
1win-cdn.com/img/sprite-dice@2.6e1ac0ed1-256.webp
104.26.5.11200 OK430 kB
1win-cdn.com/img/sprite-roulette@2.255074856-256.webp
104.26.5.11200 OK720 kB
1win-cdn.com/img/pwa_android_en.b229a444a-690.png
104.26.5.11200 OK38 kB
1win-cdn.com/img/jetx.64787fc5c.svg
104.26.5.11200 OK45 kB
1win-cdn.com/img/home-poker-banner-bg.87d818974-600.webp
104.26.5.11200 OK12 kB
1win-cdn.com/img/aviator-game-logo.2fb50dc03.svg
104.26.5.11200 OK9.5 kB
imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif
104.26.5.11200 OK4.3 kB
1win-cdn.com/font/SFNSDisplay-cyrillic.e423f3776.woff2
104.26.5.11200 OK17 kB
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif
104.26.5.11200 OK5.3 kB
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif
104.26.5.11200 OK3.6 kB
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif
104.26.5.11200 OK4.3 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif
104.26.5.11200 OK3.3 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
1win.direct/microservice/ask
134.122.54.186200 OK2 B
1win-cdn.com/js/icons-pack-home.fc24cebca.js
104.26.5.11200 OK4.8 kB
1win.direct/microservice/ask
134.122.54.186200 OK2 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
1win.direct/microservice/ask
134.122.54.186200 OK2 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
1win.direct/microservice/ask
134.122.54.186200 OK2 B
1win-cdn.com/js/icons-pack-payment-full.bf64465a7.js
104.26.5.11200 OK22 kB
adservice.google.com/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=8397183268278;gtm=45He33t0;auiddc=130747707.1680387496;~oref=https%3A%2F%2F1wmdru.top%2F
142.250.74.162200 OK247 B
adservice.google.com/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=3816383103974.262;~oref=https://1wmdru.top/
142.250.74.162200 OK276 B
adservice.google.com/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=5313735779699.452;~oref=https://1wmdru.top/
142.250.74.162200 OK276 B
1win.direct/microservice/ask
134.122.54.186200 OK2 B
1win.direct/microservice/ask
134.122.54.186200 OK2 B
1win-cdn.com/img/flags/en.svg
104.26.5.11200 OK983 B
1win-cdn.com/img/lucky-jet.f927485da.svg
104.26.5.11200 OK2.0 kB
adservice.google.com/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=4046254839481;gtm=45He33t0;auiddc=130747707.1680387496;~oref=https%3A%2F%2F1wmdru.top%2F
142.250.74.162200 OK247 B
1win.direct/microservice/ask
134.122.54.186200 OK2.7 kB
1win.direct/microservice/ask
134.122.54.186200 OK2.7 kB
1win.direct/microservice/ask
134.122.54.186200 OK3.4 kB
1win.direct/microservice/ask
134.122.54.186200 OK3.4 kB
1win.direct/microservice/ask
134.122.54.186200 OK16 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
1win.direct/microservice/ask
134.122.54.186200 OK46 kB
1win.direct/microservice/ask
134.122.54.186200 OK45 kB
1win.direct/microservice/ask
134.122.54.186200 OK16 kB
1wmdru.top/common/title?path=bets&lang=en
190.115.24.78200 OK16 B
region1.google-analytics.com/g/collect?v=2&tid=G-548949LWLW&gtm=45je33t0&_p=1487818403&cid=75285944.1680387497&ul=en-us&sr=1280x1024&_s=1&sid=1680387497&sct=1&seg=0&dl=https%3A%2F%2F1wmdru.top%2Fbets%2Fhome&dt=1win%20-%20Loading&en=page_view&_fv=1&_nsi=1&_ss=1&up.platform_language=en
216.239.32.36204 No Content0 B
script.hotjar.com/modules.76304821fe35d593f0f4.js
54.230.111.44200 OK69 kB
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK43 B
api.amplitude.com/
52.12.237.161200 OK7 B
ps250.1win-service.com/push-server-v2/?Language=en&snapshot_time=1680387496254&shouldCompress=true&EIO=3&transport=websocket
104.21.53.47101 Switching Protocols0 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=8397183268278;gtm=45He33t0;auiddc=130747707.1680387496;~oref=https%3A%2F%2F1wmdru.top%2F
142.250.74.34200 OK85 B
adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=5313735779699.452;~oref=https://1wmdru.top/
142.250.74.34200 OK85 B
mc.yandex.ru/watch/92006234?wmode=7&page-url=https%3A%2F%2F1wmdru.top%2Fbets%2Fhome&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtqzj%3Afp%3A813%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A912799043802%3Ahid%3A1020009121%3Az%3A0%3Ai%3A20230401221817%3Aet%3A1680387497%3Ac%3A1%3Arn%3A16426529%3Arqn%3A1%3Au%3A1680387497828857380%3Aw%3A1274x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C263%2C115%2C0%2C296%2C0%2C%2C112%2C1%2C1775%2C1775%2C0%2C1344%3Aco%3A0%3Ans%3A1680387494665%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1680387497%3At%3A1win%20-%20Loading&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
93.158.134.119302 Found407 B
adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=3816383103974.262;~oref=https://1wmdru.top/
142.250.74.34200 OK85 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/3d4ea7ab-6715-4775-81a4-12ac18582d63.jpg@avif
104.26.5.11200 OK7.2 kB
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/endorphina/a9b37cba-3f6f-45bf-870f-1690a3fd15ac.jpg@avif
104.26.5.11200 OK5.9 kB
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/endorphina/c_43e8104bf8571b534d0d238b5f5e92eb.gif@avif
104.26.5.11200 OK5.8 kB