Report - premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012

Report Overview

Visited public
2023-09-27 04:46:53
Tags
URL
premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012
Finishing URL
premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY5NTc5NzE5NywiaWF0IjoxNjk1Nzg5OTk3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydTRhZzE0MTVrdDZoczhlMDAzN2h2OGciLCJuYmYiOjE2OTU3ODk5OTcsInRzIjoxNjk1Nzg5OTk3MDA1NDczfQ.rqu7r0XxF7__Al4QFFdM2dAxzAjtFe54dAguYwhOx-4&sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146
IP / ASN
37.48.65.136
#60781 LeaseWeb Netherlands B.V.
Title
premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY5NTc5NzE5NywiaWF0IjoxNjk1Nzg5OTk3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydTRhZzE0MTVrdDZoczhlMDAzN2h2OGciLCJuYmYiOjE2OTU3ODk5OTcsInRzIjoxNjk1Nzg5OTk3MDA1NDczfQ.rqu7r0XxF7__Al4QFFdM2dAxzAjtFe54dAguYwhOx-4&sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
premiumrewardsusa.com	unknown	2020-12-17	2016-04-17 20:43:55	2023-09-21 16:04:34	2.5 kB	1.6 kB	37.48.65.152

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (3)

	URL	IP	Response	Size
	premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012	37.48.65.152		550 B
URL premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012 IP 37.48.65.152:0 ASN #60781 LeaseWeb Netherlands B.V. File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (550), with no line terminators Size 550 B (550 bytes) Hash 07312d23140b1360c7f8947d875a35b9 520cef546d30c909d10b8eba2f3372dbe93cada5 b3a37ccd5cc89d6eefe3bf4d2cb0c19c727f6fac737c956c58b7f4f5ba80c722 HTTP Headers GET /go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012 HTTP/1.1 Host: premiumrewardsusa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile cache-control: max-age=0, private, must-revalidate content-length: 550 content-type: text/html; charset=utf-8 date: Wed, 27 Sep 2023 04:46:37 GMT server: Cowboy set-cookie: sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146; path=/; domain=.premiumrewardsusa.com; expires=Mon, 15 Oct 2091 08:00:44 GMT; max-age=2147483647; secure; HttpOnly X-Firefox-Spdy: h2`

	premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY5NTc5NzE5NywiaWF0IjoxNjk1Nzg5OTk3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydTRhZzE0MTVrdDZoczhlMDAzN2h2OGciLCJuYmYiOjE2OTU3ODk5OTcsInRzIjoxNjk1Nzg5OTk3MDA1NDczfQ.rqu7r0XxF7__Al4QFFdM2dAxzAjtFe54dAguYwhOx-4&sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146	37.48.65.152	429 Too Many Requests	17 B
URL User Request GET HTTP/2 premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY5NTc5NzE5NywiaWF0IjoxNjk1Nzg5OTk3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydTRhZzE0MTVrdDZoczhlMDAzN2h2OGciLCJuYmYiOjE2OTU3ODk5OTcsInRzIjoxNjk1Nzg5OTk3MDA1NDczfQ.rqu7r0XxF7__Al4QFFdM2dAxzAjtFe54dAguYwhOx-4&sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146 IP 37.48.65.152:443 ASN #60781 LeaseWeb Netherlands B.V. Certificate IssuerLet's Encrypt Subjectpremiumrewardsusa.com FingerprintF1:EA:31:B7:7C:EB:DC:42:AE:A9:C4:16:B5:75:37:17:A3:A5:F7:18 ValidityThu, 07 Sep 2023 17:19:58 GMT - Wed, 06 Dec 2023 17:19:57 GMT File type ASCII text, with no line terminators Size 17 B (17 bytes) Hash eeb13468b73d93fa8bcbe3ebae6df720 1f55c90d5ce61c6447e923443d496b137be35c63 802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca HTTP Headers GET /go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY5NTc5NzE5NywiaWF0IjoxNjk1Nzg5OTk3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydTRhZzE0MTVrdDZoczhlMDAzN2h2OGciLCJuYmYiOjE2OTU3ODk5OTcsInRzIjoxNjk1Nzg5OTk3MDA1NDczfQ.rqu7r0XxF7__Al4QFFdM2dAxzAjtFe54dAguYwhOx-4&sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146 HTTP/1.1 Host: premiumrewardsusa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012 Cookie: sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 429 Too Many Requests cache-control: max-age=0, private, must-revalidate content-length: 17 date: Wed, 27 Sep 2023 04:46:37 GMT server: Cowboy set-cookie: sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146; path=/; domain=.premiumrewardsusa.com; expires=Mon, 15 Oct 2091 08:00:44 GMT; max-age=2147483647; secure; HttpOnly X-Firefox-Spdy: h2`

	premiumrewardsusa.com/favicon.ico	37.48.65.152	429 Too Many Requests	17 B
URL GET HTTP/2 premiumrewardsusa.com/favicon.ico IP 37.48.65.152:443 ASN #60781 LeaseWeb Netherlands B.V. Requested by https://premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY5NTc5NzE5NywiaWF0IjoxNjk1Nzg5OTk3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydTRhZzE0MTVrdDZoczhlMDAzN2h2OGciLCJuYmYiOjE2OTU3ODk5OTcsInRzIjoxNjk1Nzg5OTk3MDA1NDczfQ.rqu7r0XxF7__Al4QFFdM2dAxzAjtFe54dAguYwhOx-4&sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146 Certificate IssuerLet's Encrypt Subjectpremiumrewardsusa.com FingerprintF1:EA:31:B7:7C:EB:DC:42:AE:A9:C4:16:B5:75:37:17:A3:A5:F7:18 ValidityThu, 07 Sep 2023 17:19:58 GMT - Wed, 06 Dec 2023 17:19:57 GMT File type ASCII text, with no line terminators Size 17 B (17 bytes) Hash eeb13468b73d93fa8bcbe3ebae6df720 1f55c90d5ce61c6447e923443d496b137be35c63 802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca HTTP Headers GET /favicon.ico HTTP/1.1 Host: premiumrewardsusa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://premiumrewardsusa.com/go/to/5g232f/key/1a7b2375f48968684ad2e5fa5b9f2bab/aid/16733/s1/4012?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY5NTc5NzE5NywiaWF0IjoxNjk1Nzg5OTk3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydTRhZzE0MTVrdDZoczhlMDAzN2h2OGciLCJuYmYiOjE2OTU3ODk5OTcsInRzIjoxNjk1Nzg5OTk3MDA1NDczfQ.rqu7r0XxF7__Al4QFFdM2dAxzAjtFe54dAguYwhOx-4&sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146 Cookie: sid=d72e4c84-5cf0-11ee-a3c6-f76969ede146 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 429 Too Many Requests cache-control: max-age=0, private, must-revalidate content-length: 17 date: Wed, 27 Sep 2023 04:46:38 GMT server: Cowboy X-Firefox-Spdy: h2`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (3)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers