Report Overview
Visitedpublic
2026-02-20 21:02:25
Tags
Submit Tags
URL
ghekdshs.ru/back.html?traceID=361175038&tbReason=1
Finishing URL
www.yahoo.com/?guccounter=1
IP / ASN
159.253.19.140
Title
Yahoo | Mail, Weather, Search, Politics, News, Finance, Sports & Videos
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
www.yahoo.com | 1472 | 1995-01-18 | 2012-05-20 | 2026-02-19 | 41 kB | 2.7 MB |  87.248.119.251 |       |
noa.yahoo.com | 18745 | 1995-01-18 | 2023-09-19 | 2026-02-14 | 18 kB | 4.4 kB |  188.125.72.139 | |
edge-mcdn.secure.yahoo.com | 67381 | 1995-01-18 | 2019-03-13 | 2026-02-16 | 1.9 kB | 9.4 kB | 87.248.119.251 | |
wnsrvbjmeprtfrnfx.ay.delivery | 25334 | 2020-06-05 | 2024-08-01 | 2026-02-16 | 472 B | 476 kB |  172.67.149.20 |  |
opus.analytics.yahoo.com | 25593 | 1995-01-18 | 2019-06-04 | 2026-02-14 | 4.1 kB | 15 kB |  52.84.50.60 |   |
consent.cmp.oath.com | 25512 | 1996-02-24 | 2018-04-13 | 2026-02-14 | 427 B | 264 kB | 52.84.50.10 | |
pbs.yahoo.com | 5845 | 1995-01-18 | 2024-03-14 | 2026-02-20 | 8.0 kB | 29 kB | 87.248.119.251 | |
udc.yahoo.com | 20752 | 1995-01-18 | 2017-01-30 | 2026-02-18 | 16 kB | 5.3 kB | 188.125.72.139 | |
ups.analytics.yahoo.com | 4136 | 1995-01-18 | 2019-05-09 | 2026-02-13 | 9.0 kB | 2.6 kB | 87.248.119.251 | |
csync.loopme.me | 5343 | 2012-08-22 | 2017-10-10 | 2026-02-20 | 1.7 kB | 1.6 kB |  35.214.151.216 | |
s.seedtag.com | 6731 | 2013-09-04 | 2018-07-02 | 2026-02-20 | 484 B | 602 B | 104.16.55.62 |   |
s.yimg.com | 4553 | 1997-05-14 | 2012-05-20 | 2026-02-16 | 40 kB | 3.1 MB | 87.248.119.251 | |
i.clean.gg | 10789 | 2018-04-01 | 2018-05-23 | 2026-02-20 | 993 B | 1.0 kB | 34.95.69.49 |  |
geo.yahoo.com | 8380 | 1995-01-18 | 2012-05-25 | 2026-02-14 | 18 kB | 3.8 kB | 188.125.72.139 | |
c2shb-oao.ssp.yahoo.com | 19669 | 1995-01-18 | 2023-08-09 | 2026-02-14 | 18 kB | 7.1 kB | 34.254.68.77 | |
sync.cootlogix.com | 8649 | 2017-08-21 | 2022-08-31 | 2026-02-20 | 1.8 kB | 18 kB | 68.183.26.173 | |
www.googletagmanager.com | 283 | 2011-11-11 | 2012-10-04 | 2026-02-15 | 434 B | 456 kB | 172.217.19.232 | |
guce.yahoo.com | 23222 | 1995-01-18 | 2018-03-16 | 2026-02-20 | 2.7 kB | 1.6 MB | 18.200.216.11 | |
qsearch-a.akamaihd.net | 13022 | 2009-09-14 | 2014-02-27 | 2026-02-20 | 688 B | 296 B |  23.36.77.98 | |
consent.yahoo.com | 12070 | 1995-01-18 | 2019-02-20 | 2026-02-19 | 3.4 kB | 1.6 MB | 18.200.216.11 | |
ghekdshs.ru 1 alert(s) on this Host | unknown | 2025-05-07 | 2025-06-06 | 2026-02-18 | 518 B | 96 kB | 159.253.19.140 |  |
Envoy (Reverse proxies)
Envoy is an open-source edge and service proxy, designed for cloud-native applications.Express (Web frameworks, Web servers)
Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.Node.js (Programming languages)
Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.Apache Traffic Server (Web servers)
Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.Amazon Web Services (PaaS)
Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.Lightbox (JavaScript libraries)
Lightbox is small javascript library used to overlay images on top of the current page.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Amazon CloudFront (CDN)
Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.Amazon S3 (CDN)
Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.Google Cloud CDN (CDN)
Cloud CDN uses Google's global edge network to serve content closer to users.Google Cloud (IaaS)
Google Cloud is a suite of cloud computing services.Nginx:1.29.0 (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.PHP:8.1.29 (Programming languages)
PHP is a general-purpose scripting language used for web development.Nginx:1.28.0 (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Related reports
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| DNS4EU | ghekdshs.ru | malicious | Sinkholed |
JavaScript (57)
| HASH | FROM | Size | First Seen | Last Seen | |
|---|---|---|---|---|---|
| efd7a68b9d1673901985c18396dfb55b | DocumentWrite | 79 B | 2023-05-07 | 2026-02-20 | |
Introduced by DocumentWrite First Seen 2023-05-07 Last Seen 2026-02-20 Times Seen 3020 Size 79 B (79 bytes) MD5 efd7a68b9d1673901985c18396dfb55b SHA1 d12b4a7c36c6f1ed2a02b8e18e8387bfe1eb4052 Loading... | |||||
| f315f5f2c187a05af1ace62d5f6aa477 | DocumentWrite | 54 B | 2023-03-07 | 2026-02-20 | |
Introduced by DocumentWrite First Seen 2023-03-07 Last Seen 2026-02-20 Times Seen 30939 Size 54 B (54 bytes) MD5 f315f5f2c187a05af1ace62d5f6aa477 SHA1 47d77a2a1665cb6202028ecd89b50920287d9148 Loading... | |||||
HTTP Transactions (177)
| URL | IP | Response | Size |
|---|