| promoil.bitrix24.ru/pub/mail/click.php?tag=crm.eyJ1cm4iOiIzNjM1MzAyLUlDMFZBTiJ9&url=https://https://promoil.com/?utm_source=hand_mail&sign=d0d6e82625ab88aac0288171ebbdf657ef238f9b389c6c6d0124d8428f204263 | 178.248.236.39 | 302 Found | 0 B |
URL User Request GET HTTP/2promoil.bitrix24.ru/pub/mail/click.php?tag=crm.eyJ1cm4iOiIzNjM1MzAyLUlDMFZBTiJ9&url=https://https://promoil.com/?utm_source=hand_mail&sign=d0d6e82625ab88aac0288171ebbdf657ef238f9b389c6c6d0124d8428f204263 IP178.248.236.39:443
CertificateIssuerGoDaddy.com, Inc. Subject*.bitrix24.ru Fingerprint10:4B:95:B4:A5:A9:AD:40:B3:F2:23:9E:37:0A:D6:19:6D:E6:1D:A2 ValidityMon, 20 Nov 2023 13:06:58 GMT - Sat, 21 Dec 2024 13:06:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pub/mail/click.php?tag=crm.eyJ1cm4iOiIzNjM1MzAyLUlDMFZBTiJ9&url=https://https://promoil.com/?utm_source=hand_mail&sign=d0d6e82625ab88aac0288171ebbdf657ef238f9b389c6c6d0124d8428f204263 HTTP/1.1
Host: promoil.bitrix24.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: QRATOR
date: Tue, 07 May 2024 08:35:23 GMT
content-type: text/html; charset=UTF-8
p3p: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
x-powered-cms: Bitrix Site Manager (bc2cad9153cb418bb2dfd5602c3c3754)
x-bitrix24-date: 1565075934
x-bitrix24-user: 0.
location: https://https://promoil.com/?utm_source=hand_mail
set-cookie: qmb=0.; path=/
BITRIX_SM_kernel=-crpt-kernel_0; expires=Tue, 07 May 2024 12:35:23 GMT; Max-Age=14400; path=/; secure; HttpOnly
BITRIX_SM_kernel_0=RISBMfUD6j7JiZnM3V_86-dX20xzZVR7L0KfI28Sd_C2XasuW6HTO0pMfR2HqIimdWdiy6c_gs-O0BkAT6qEB4zAjGAbf4lCIG0VDIKEZuqfFfEemrNcSb6ZI24yU3vdTgfz0-ns6MhptoZREO1yxjH2v5pPcBNYNFU8m-b15hiw28hkCKViSqsYyhhaK2a0CRNp7hh226XVe-pAqy24bkchzeof1FVZWDm8dOybWg9rcph5-r6UoEzXvoIfvIO4yIy-9-W8R5mZVuuAR7ImOrUKWc-61qlbTjb6kMICSvIN5NqaztKrm82qZI-s2iw5zyKCw_Vq1Enh5tNQzjE04PLATwhmLjB4K5bgz5N3HuZBbeleaLHFsNgbhAKgWvsYsO2pRf7oNXNaWD5EQRUgZgTwU4_Nvm1u6CFEo18aoLZ831KYhkSssuo-USHopngOjOTX5vy65eYmeCnpjJnLLh6fNl4jWqzMUZhFszrzQ61nl8bWZJs-e6l_Dt8KAvxC81bMvAfR16XmqPEFVpkyzRqXeGO8E1rtvyYGTeezyTfcH6LnML9Bgpi4bPZMDjSNkm3PAmo_fqZjJ8ATnTI41wHIJNeTVU6TIOUuSkygMHs7TCT-o03qAdmU1uOKEX4gaOnJj9NApKy595TY8xrGrpei4lmhUDk8Kh-sK6gF6tFBqbxKg26FLZ9QOryLV-MHBTFNT8qQH3vT-QVG3-9_N2UQNw; expires=Tue, 07 May 2024 12:35:23 GMT; Max-Age=14400; path=/; secure; HttpOnly
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains
server-timing: t1;dur=0.084, t2;dur=0.084, t3;dur=0.000, tc1;dur=45375, tc2;dur=1750, tc3;dur=44
x-bitrix-ri: 2893966c8123f7abf4bc025612ea78c2
x-bitrix-lb: lb-ru-03
X-Firefox-Spdy: h2
|
| https//promoil.com/?utm_source=hand_mail | 0.0.0.0 | | 0 B |
URL User Request GET https//promoil.com/?utm_source=hand_mail IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET //promoil.com/?utm_source=hand_mail HTTP/1.1
Host: https
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|