| adclick.g.doubleclick.net/pcs/click?00k2Y41515N2435yMX419snVO7695-2024-McWAN324SCAN&&adurl=https://acebc.co.uk/.well-cgi/dGdyZWZmQGhhdGFuZHNvbnMuY29t | 216.58.207.194 | | 0 B |
URL adclick.g.doubleclick.net/pcs/click?00k2Y41515N2435yMX419snVO7695-2024-McWAN324SCAN&&adurl=https://acebc.co.uk/.well-cgi/dGdyZWZmQGhhdGFuZHNvbnMuY29t IP216.58.207.194:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/click?00k2Y41515N2435yMX419snVO7695-2024-McWAN324SCAN&&adurl=https://acebc.co.uk/.well-cgi/dGdyZWZmQGhhdGFuZHNvbnMuY29t HTTP/1.1
Host: adclick.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
location: https://acebc.co.uk/.well-cgi/dGdyZWZmQGhhdGFuZHNvbnMuY29t
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 14:05:03 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: IDE=AHWqTUke9CCRYht3hdGR3Ucs4tPCz8Hnhto_yuIyDoL9_Tmdeufv3idqWUPZbxs_; expires=Sat, 25-Apr-2026 14:05:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
| acebc.co.uk/.well-cgi/dGdyZWZmQGhhdGFuZHNvbnMuY29t | 91.238.164.172 | | 110 B |
URL acebc.co.uk/.well-cgi/dGdyZWZmQGhhdGFuZHNvbnMuY29t IP91.238.164.172:0
File typeHTML document, ASCII text Hash6f6870e051d1b2c42fc85e714e39f382 b9215da4594b806f8120523d141763bcc6083e0e 07aa8ec2380162430f64825806f0b99f4c136de3485a7aab52757d7fd2cc8418
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /.well-cgi/dGdyZWZmQGhhdGFuZHNvbnMuY29t HTTP/1.1
Host: acebc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
set-cookie: PHPSESSID=e80dd87e2ec8963107dfbd2b4acf0cfe; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 110
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:05:03 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
| ywx1mma1qu.santrypeap.store/?email=tgreff@hatandsons.com | 77.37.49.10 | 404 Not Found | 0 B |
URL User Request GET HTTP/1.1ywx1mma1qu.santrypeap.store/?email=tgreff@hatandsons.com IP77.37.49.10:443
CertificateIssuerLet's Encrypt Subjectywx1mma1qu.santrypeap.store Fingerprint0D:5E:ED:E4:6D:8A:38:87:74:0A:A1:74:D9:5D:25:07:E5:DE:ED:E6 ValidityTue, 23 Apr 2024 07:40:15 GMT - Mon, 22 Jul 2024 07:40:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?email=tgreff@hatandsons.com HTTP/1.1
Host: ywx1mma1qu.santrypeap.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://acebc.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 25 Apr 2024 14:05:04 GMT
Server: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
X-Powered-By: PHP/7.4.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=8b1b2ab075b9ea3e684e86fe89fd093a; path=/
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
| ywx1mma1qu.santrypeap.store/favicon.ico | 77.37.49.10 | 404 Not Found | 0 B |
URL GET HTTP/1.1ywx1mma1qu.santrypeap.store/favicon.ico IP77.37.49.10:443
Requested byhttps://ywx1mma1qu.santrypeap.store/?email=tgreff@hatandsons.com CertificateIssuerLet's Encrypt Subjectywx1mma1qu.santrypeap.store Fingerprint0D:5E:ED:E4:6D:8A:38:87:74:0A:A1:74:D9:5D:25:07:E5:DE:ED:E6 ValidityTue, 23 Apr 2024 07:40:15 GMT - Mon, 22 Jul 2024 07:40:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ywx1mma1qu.santrypeap.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ywx1mma1qu.santrypeap.store/?email=tgreff@hatandsons.com
Cookie: PHPSESSID=8b1b2ab075b9ea3e684e86fe89fd093a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 25 Apr 2024 14:05:05 GMT
Server: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
X-Powered-By: PHP/7.4.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|