Report Overview

  1. Submitted URL

    www.anz-bank-on.line.pm/

  2. IP

    38.79.142.66

    ASN

    #174 COGENT-174

  3. Submitted

    2023-02-02 00:45:54

    Access

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    Suspicious - DynDNS domain

Detections

  2. urlquery

    3

  3. Network Intrusion Detection

    5

  4. Threat Detection Systems

    10

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
www.anz-bank-on.line.pmunknown2023-02-01T05:20:44Z2023-02-01T17:23:51Z
tpc.googlesyndication.com1262020-01-16T09:35:32Z2023-03-13T05:31:03Z
www.googletagmanager.com752013-05-22T04:07:37Z2023-03-13T08:28:24Z
www.google-analytics.com402012-10-03T03:04:21Z2023-03-13T07:36:03Z
content-signature-2.cdn.mozilla.net11522020-11-03T13:26:46Z2023-03-13T05:09:35Z
pagead2.googlesyndication.com1012021-02-20T16:52:05Z2023-03-13T08:39:15Z
zerossl.ocsp.sectigo.com40492020-05-09T21:05:29Z2023-03-13T05:14:15Z
dnsexit.com2125572017-02-01T21:18:31Z2023-03-13T05:33:31Z
www.google.no256072016-04-05T21:50:59Z2023-03-13T06:26:15Z
r3.o.lencr.org3442020-12-02T09:52:13Z2023-03-13T05:09:07Z
firefox.settings.services.mozilla.com8672020-06-04T22:08:41Z2023-03-13T05:09:10Z
contile.services.mozilla.com11142021-05-27T20:32:35Z2023-03-13T05:09:13Z
adservice.google.no969692018-06-20T01:38:38Z2023-03-13T05:09:46Z
adservice.google.com762021-02-20T17:10:48Z2023-03-13T08:49:52Z
push.services.mozilla.com21402014-10-24T10:27:06Z2023-03-13T05:09:14Z
www.google.com72015-05-10T13:11:19Z2023-03-13T06:40:43Z
img-getpocket.cdn.mozilla.net16312018-06-22T01:36:00Z2023-03-13T05:09:16Z
ocsp.pki.goog1752018-07-01T08:43:07Z2023-03-13T05:09:47Z
googleads.g.doubleclick.net422021-02-20T16:43:32Z2023-03-13T08:39:16Z
partner.googleadservices.com7982012-10-03T03:04:21Z2023-03-13T08:39:17Z
ka-f.fontawesome.com35982019-12-17T07:36:13Z2023-03-13T05:10:17Z
stats.g.doubleclick.net962013-06-10T22:21:11Z2023-03-13T08:02:41Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IPInternal IP
ET INFO DYNAMIC_DNS Query to a *.line .pm Domain
mediumClient IPInternal IP
ET INFO DYNAMIC_DNS Query to a *.line .pm Domain
mediumClient IP 38.79.142.66
ET INFO DYNAMIC_DNS HTTP Request to a *.line .pm Domain
mediumClient IP 38.79.142.66
ET INFO DYNAMIC_DNS HTTP Request to a *.line .pm Domain
low 38.143.181.10Client IP
ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

OpenPhish
SeverityIndicatorAlert
mediumwww.anz-bank-on.line.pm/Australia and New Zealand Banking Group
mediumwww.anz-bank-on.line.pm/Australia and New Zealand Banking Group

PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumwww.anz-bank-on.line.pm/Phishing

mnemonic secure dns

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
mediumline.pmSinkholed
mediumline.pmSinkholed

ThreatFox

No alerts detected


JavaScript (127)

HTTP Transactions (81)

URLIPResponseSize
www.anz-bank-on.line.pm/
38.79.142.66200 OK2.2 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.130200 OK52 kB
www.anz-bank-on.line.pm/favicon.ico
38.79.142.66200 OK2.2 kB
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
googleads.g.doubleclick.net/pagead/html/r20230125/r20190131/zrt_lookup.html
142.250.74.130200 OK4.2 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301120101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7953258386664708&plah=www.anz-bank-on.line.pm
142.250.74.130200 OK121 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
adservice.google.no/adsid/integrator.js?domain=www.anz-bank-on.line.pm
142.250.74.130200 OK100 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
adservice.google.com/adsid/integrator.js?domain=www.anz-bank-on.line.pm
216.58.207.194200 OK100 B
push.services.mozilla.com/
54.190.123.170101 Switching Protocols0 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
partner.googleadservices.com/gampad/cookie.js?domain=www.anz-bank-on.line.pm&callback=_gfp_s_&client=ca-pub-7953258386664708
216.58.207.226200 OK250 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.1200 OK6.4 kB
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.1200 OK5.0 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK511 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg
34.120.237.76200 OK11 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
34.120.237.76200 OK15 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc092e5e-3a14-4d43-9814-99fd9d49d6c8.jpeg
34.120.237.76200 OK7.5 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK9.6 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK5.4 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
34.120.237.76200 OK4.8 kB
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK728 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
dnsexit.com/domains/free-second-level-domains/?actioncode=2&subdomain=line.pm&domainname=www.anz-bank-on.line.pm
38.143.181.10200 20039 kB
www.googletagmanager.com/gtag/js?id=UA-112300179-1
142.250.74.168200 OK44 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
dnsexit.com/site/js/checkmobile.js
38.143.181.10200 OK520 B
dnsexit.com/domains/free-second-level-domains/?actioncode=2&subdomain=line.pm&domainname=www.anz-bank-on.line.pm
38.143.181.10200 20039 kB
dnsexit.com/js/jquery.js
38.143.181.10200 OK31 kB
dnsexit.com/stylesheet/5235e63bfa.js
38.143.181.10200 OK4.0 kB
dnsexit.com/ihome/ddmenu/ddmenu.css
38.143.181.10200 OK2.2 kB
dnsexit.com/stylesheet/home-ss.css
38.143.181.10200 OK3.0 kB
dnsexit.com/ihome/top-bar.css
38.143.181.10200 OK577 B
dnsexit.com/ihome/ddmenu/ddmenu.js
38.143.181.10200 OK4.5 kB
dnsexit.com/js/bootstrap-5.1.2-dist/css/bootstrap.min.css
38.143.181.10200 OK24 kB
dnsexit.com/js/bootstrap-5.1.2-dist/js/bootstrap.bundle.min.js
38.143.181.10200 OK23 kB
dnsexit.com/js/inc/bs-tooltip.js
38.143.181.10200 OK198 B
dnsexit.com/images/icann.gif
38.143.181.10200 OK3.3 kB
dnsexit.com/users/web_hosting/images/joomla.jpg
38.143.181.10200 OK4.9 kB
dnsexit.com/users/web_hosting/images/wordpress.jpg
38.143.181.10200 OK3.9 kB
dnsexit.com/ihome/images/group1/dyndns.png
38.143.181.10200 OK14 kB
dnsexit.com/images/bg-images/bg100.jpeg
38.143.181.10200 OK21 kB
ka-f.fontawesome.com/releases/v5.15.3/css/free-v4-font-face.min.css?token=5235e63bfa
172.64.168.22200 OK13 kB
ka-f.fontawesome.com/releases/v5.15.3/webfonts/free-fa-solid-900.woff2
172.64.168.22200 OK78 kB
dnsexit.com/ihome/images/button-orange.png
38.143.181.10200 OK144 B
dnsexit.com/images/bullet_orange.gif
38.143.181.10200 OK293 B
dnsexit.com/images/livechat/help-online.png
38.143.181.10200 OK68 kB
dnsexit.com/ihome/images/dns-logo-1.png
38.143.181.10200 OK94 kB
dnsexit.com/ihome/ddmenu/help.jpg
38.143.181.10200 OK7.4 kB
dnsexit.com/images/bg-images/fdbg.jpeg
38.143.181.10200 OK163 kB
dnsexit.com/ihome/ddmenu/support-center.jpg
38.143.181.10200 OK8.8 kB
dnsexit.com/users/web_hosting/images/drupal.jpg
38.143.181.10200 OK2.5 kB
www.google-analytics.com/analytics.js
142.250.74.110200 OK20 kB
dnsexit.com/favicon.ico
38.143.181.10200 OK3.3 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-112300179-1&cid=30252070.1675298774&jid=538669848&gjid=496415912&_gid=153378432.1675298774&_u=YEBAAUAAAAAAACAAI~&z=2045026409
64.233.162.154200 OK4 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-112300179-1&cid=30252070.1675298774&jid=538669848&_u=YEBAAUAAAAAAACAAI~&z=141728106
142.250.74.163200 OK42 B
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-112300179-1&cid=30252070.1675298774&jid=538669848&_u=YEBAAUAAAAAAACAAI~&z=141728106
142.250.74.164200 OK42 B
ka-f.fontawesome.com/releases/v5.15.3/css/free-v4-shims.min.css?token=5235e63bfa
172.64.168.22200 OK0 B
ka-f.fontawesome.com/releases/v5.15.3/css/free.min.css?token=5235e63bfa
172.64.168.22200 OK0 B