Report Overview

  1. Submitted URL

    s7.dosya.tc/server25/09npgb/gabz_catcafe.rar.html

  2. IP

    88.99.249.62

    ASN

    #24940 Hetzner Online GmbH

  3. Submitted

    2023-01-29 15:14:14

    Access

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  2. urlquery

    0

  3. Network Intrusion Detection

    1

  4. Threat Detection Systems

    6

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
r3.o.lencr.org3442020-12-02T09:52:13Z2023-03-13T05:09:07Z
my.rtmark.net90542015-02-04T10:54:57Z2023-03-13T05:11:40Z
adservice.google.com762021-02-20T17:10:48Z2023-03-13T08:49:52Z
img-getpocket.cdn.mozilla.net16312018-06-22T01:36:00Z2023-03-13T05:09:16Z
cdn.itskiddien.clubunknown2022-10-06T18:03:35Z2023-03-13T08:06:22Z
tpc.googlesyndication.com1262020-01-16T09:35:32Z2023-03-13T05:31:03Z
content-signature-2.cdn.mozilla.net11522020-11-03T13:26:46Z2023-03-13T05:09:35Z
www.google-analytics.com402012-10-03T03:04:21Z2023-03-13T07:36:03Z
googleads.g.doubleclick.net422021-02-20T16:43:32Z2023-03-13T08:39:16Z
push.services.mozilla.com21402014-10-24T10:27:06Z2023-03-13T05:09:14Z
stats.g.doubleclick.net962013-06-10T22:21:11Z2023-03-13T08:02:41Z
www.gstatic.comunknown2016-07-26T11:37:06Z2023-03-13T07:57:11Z
www.google.com72015-05-10T13:11:19Z2023-03-13T06:40:43Z
pagead2.googlesyndication.com1012021-02-20T16:52:05Z2023-03-13T08:39:15Z
s7.dosya.tcunknown2018-06-12T14:42:11Z2023-03-10T12:35:24Z
firefox.settings.services.mozilla.com8672020-06-04T22:08:41Z2023-03-13T05:09:10Z
phicmune.net1990642021-04-07T16:53:43Z2023-03-13T07:40:28Z
ocsp.pki.goog1752018-07-01T08:43:07Z2023-03-13T05:09:47Z
adservice.google.no969692018-06-20T01:38:38Z2023-03-13T05:09:46Z
contile.services.mozilla.com11142021-05-27T20:32:35Z2023-03-13T05:09:13Z
partner.googleadservices.com7982012-10-03T03:04:21Z2023-03-13T08:39:17Z
fonts.googleapis.com88772013-06-10T22:14:26Z2023-03-13T08:14:31Z
fonts.gstatic.comunknown2014-09-09T02:40:21Z2023-03-13T08:44:36Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IP 88.99.249.62
ET INFO HTTP Request to a *.tc domain

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumphicmune.net/customMalware
mediumphicmune.net/customMalware
mediumphicmune.net/customMalware

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (167)

HTTP Transactions (79)

URLIPResponseSize
s7.dosya.tc/server25/09npgb/gabz_catcafe.rar.html
88.99.249.62302 Found241 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
s7.dosya.tc/server25/09npgb/gabz_catcafe.rar.html
88.99.249.62200 OK5.1 kB
s7.dosya.tc/style/style.css
88.99.249.62200 OK2.0 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
s7.dosya.tc/style/bootstrap.css
88.99.249.62200 OK21 kB
s7.dosya.tc/images/footer-icon3.png
88.99.249.62200 OK1.7 kB
s7.dosya.tc/images/download-img.png
88.99.249.62200 OK6.8 kB
s7.dosya.tc/images/uye-girisi.png
88.99.249.62200 OK3.0 kB
s7.dosya.tc/images/footer-icon2.png
88.99.249.62200 OK850 B
s7.dosya.tc/images/logo.png
88.99.249.62200 OK7.2 kB
s7.dosya.tc/images/footer-icon1.png
88.99.249.62200 OK582 B
s7.dosya.tc/images/menu-ayrac.png
88.99.249.62200 OK125 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
s7.dosya.tc/images/background.webp
88.99.249.62200 OK113 kB
phicmune.net/zone?pub=0&zone_id=5030740&is_mobile=false&domain=s7.dosya.tc&var=&ymid=&var_3=
139.45.197.251200 OK755 B
s7.dosya.tc/apple-touch-icon.png
88.99.249.62200 OK6.6 kB
s7.dosya.tc/favicon-16x16.png
88.99.249.62200 OK1.6 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
www.google-analytics.com/analytics.js
142.250.74.46200 OK20 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
phicmune.net/pfe/current/universal.min.js?v=3.1.415
139.45.197.251200 OK84 kB
www.google-analytics.com/j/collect?v=1&_v=j99&a=1314340359&t=pageview&_s=1&dl=https%3A%2F%2Fs7.dosya.tc%2Fserver25%2F09npgb%2Fgabz_catcafe.rar.html&ul=en-us&de=windows-1254&dt=gabz_catcafe.rar%20dosyas%C4%B1n%C4%B1%20indir%20-%20download&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1826756643&gjid=560576054&cid=1233825945.1675005252&tid=UA-60205436-1&_gid=1585818634.1675005252&_r=1&_slc=1&z=401830152
142.250.74.46200 OK4 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
phicmune.net/custom
139.45.197.251200 OK0 B
s7.dosya.tc/sw.js
88.99.249.62200 OK2.4 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
phicmune.net/custom
139.45.197.251200 OK39 B
googleads.g.doubleclick.net/pagead/html/r20230124/r20190131/zrt_lookup.html
142.250.74.162200 OK4.2 kB
push.services.mozilla.com/
35.163.38.240101 Switching Protocols0 B
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-60205436-1&cid=1233825945.1675005252&jid=1826756643&gjid=560576054&_gid=1585818634.1675005252&_u=IEBAAEAAAAAAACAAI~&z=1595745349
209.85.233.154200 OK1 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
my.rtmark.net/gid.js?userId=b128f65f192240a2a73a6792ef0697ce
139.45.195.8200 OK65 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
adservice.google.no/adsid/integrator.js?domain=s7.dosya.tc
142.250.74.66200 OK100 B
adservice.google.com/adsid/integrator.js?domain=s7.dosya.tc
142.250.74.66200 OK100 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
partner.googleadservices.com/gampad/cookie.js?domain=s7.dosya.tc&callback=_gfp_s_&client=ca-pub-9775275426073837
216.58.207.226200 OK249 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
tpc.googlesyndication.com/pagead/js/r20230124/r20110914/abg_lite_fy2021.js
142.250.74.97200 OK8.9 kB
tpc.googlesyndication.com/pagead/js/r20230124/r20110914/client/qs_click_protection_fy2021.js
142.250.74.97200 OK7.5 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
www.gstatic.com/mysidia/8aec859a266e19fb42fee7f82edeac28.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.35200 OK14 kB
fonts.googleapis.com/css?family=Roboto%3A400%2C500
142.250.74.106200 OK4.8 kB
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK16 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK16 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
www.google.com/pagead/drt/ui
142.250.74.164302 Found0 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
34.120.237.76200 OK5.6 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK9.2 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK12 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK4.5 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg
34.120.237.76200 OK3.8 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK8.7 kB
phicmune.net/custom
139.45.197.251200 OK39 B
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230124&st=env
142.250.74.66200 OK11 kB
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvjvGaCtY1C3_3EI1oeWsfqaHIJwwgePVSe87ONjoRo0THTZoClZH_wZyWB3Nda1erOeBuynA3lt6QPMsifktnOTco8xra_TfsXtkbSq-crpvQQeiDpaJE_2Owcm4EQg_IFB3UGUg&sai=AMfl-YRd3y93131la5lAgMKbc1XvitT7KkHDVP0o5wI9eiZMnG8P1pZXzOaEmB_ri7gEC8iIUK8q7mak9Jep_1g&sig=Cg0ArKJSzOUN5YtKESGOEAE&cid=CAQSGwDUE5ymiOz_sxYHcrduS63vl7CNDx9BTzf2shgBIBM&id=lidar2&mcvt=1001&p=0,0,250,300&mtos=1001,1001,1001,1001,1001&tos=1001,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=3870207184&rs=2&la=0&cr=0&vs=4&r=v&rst=1675005252522&rpt=585&met=mue&wmsd=0&pbe=0&vae=0&spb=0
142.250.74.66200 OK42 B
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstOzr5CJ3_D_bR1BgUPyufZeZ9Xf08Jm-Q4KTASH0aSloyFQvJkGXH20YzUe0hW86vwQLU_bWF1MhpNcF2RZyeGBn3izw5gHMmA85fB9Hu-F3JaAywRS-yOXALBpjU9rttiCv5LAw&sai=AMfl-YSRep-X0fBf_BkGsE49MrMLE8yY9fQnNSA3UCycmdH6VO7FXt3mvxdU3HZxMhuNK_LUF3XWJ02lv7bZOEY&sig=Cg0ArKJSzL2JHgf-dqd_EAE&cid=CAQSGwDUE5ymsoI25sQmeoxXyyk2QcuG9MLYpooWIxgBIBM&id=lidar2&mcvt=1001&p=0,0,600,120&mtos=1001,1001,1001,1001,1001&tos=1001,0,0,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1812271803&rs=2&la=0&cr=0&vs=4&r=v&rst=1675005253018&rpt=494&met=mue&wmsd=0&pbe=0&vae=0&spb=0
142.250.74.66200 OK42 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
34.120.237.76200 OK10 kB
cdn.itskiddien.club/?rb=11Nrl-m3Tc7ZjQ98vy79COHPcm89_fTYrOzA5eXmzwgtyTjs8ELYAdFsZmAJgLXDKLxYlHxF5tN_8cH5Zs0M9ZJluYtO0r9wnRo1kADZsUi-luBQNCrWGRecIRoangYpbPZxUNeEPqFS8mYHyiKhUC3JjZMZ5fxzkBwBDfAhAtUGVkwgCyYLKB8wUXao241IiE5eFF0k27dpdO2KWIQVPhhs3QrDoRo2PFSmQg%3D%3D&request_ab2=0&zoneid=5426561&js_build=iclick-v1.474.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fs7.dosya.tc%2Fserver25%2F09npgb%2Fgabz_catcafe.rar.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.474.0&bs=8c48019a-58db-4e07-be06-d24f01416ea5&userId=b128f65f192240a2a73a6792ef0697ce&m=link
139.45.197.236200 OK0 B
phicmune.net/pfe/current/tag.min.js?z=5030740
139.45.197.251200 OK0 B
cdn.itskiddien.club/apu.php?zoneid=5426561
139.45.197.236200 OK0 B