Report - yukkyslime.com/0/0/0/828285d2a8d4860e717f70551fc65ff5/9/53-3216/954-47097-519533

Report Overview

Visited public
2025-03-03 18:12:46
Tags
URL
yukkyslime.com/0/0/0/828285d2a8d4860e717f70551fc65ff5/9/53-3216/954-47097-519533
Finishing URL
about:neterror?e=dnsNotFound&u=https%3A//beowu-fye.com/&c=UTF-8&d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20beowu-fye.com.
IP / ASN
69.16.230.165
#32244 LIQUIDWEB
Title
Server Not Found

Detections

urlquery

0

Network Intrusion Detection

1

Threat Detection Systems

0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
yukkyslime.com	unknown	2023-04-04	2023-04-05	2025-03-01	1.7 kB	3.7 kB	69.16.230.165
gauts-lwt.com	unknown	2024-10-16	2024-11-04	2025-02-26	2.1 kB	4.1 kB	52.0.6.21
beowu-fye.com	unknown	2024-03-28	2024-10-13	2025-02-25	482 B	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-03-03 18:12:37	high	222.141.105.76	Client IP	ET POLICY Executable and linking format (ELF) file download

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	yukkyslime.com/page/bouncy.php?&bpae=GbhGtL0GvUx79bvvPZxGUD8iPTa9giKXeeEy9jFVHsyXfTmS4aiPIqzhmNLt4w7inBnHfRWGPCEmyyKg8dXTfAyRIvFXG5pkq4NavRo0PVSoiW8LRdwxHQbr9wex%2FeSm8HoCZtaVWE%2BTcy01h9Ni3M%2FzulnA57mhkixIts5kYzOMEG4M8s8489kwE%2BcJBiQcTL%2FWA9Bb6zeaURATfhGpZVs72h6ZTx57pfB0n4ahvubJDMvUc2sCw4CcOaLws7MyGMRIz4LenBhNET7PuLbgVUwa9PGcIWLjJy4T%2FvFE4ivnJZ3p5Lcpdiak07188f4YcRD5GmSnJY4v2NTALCc0hrigAhfi8dOIMQRwtVwCmL75gQagRDf7%2BygZr0LlTQohLh4IuXKVq9TI9hAkrk6AxOzYi0Au9qK5N60CGZ50M5zaup64pgOW6ZwGnxvjH8SR6E3C43gqpiDuTVZITMpFL8r0y8BliJ5F7J%2BRvavHH4uA2Bwk5KNi5dCKc8EVS7EjTwCCni%2FbwI1O&redirectType=js&inIframe=false&inPopUp=false	ScriptElement	708 B	2025-03-03	2025-03-03
Pretty URL yukkyslime.com/page/bouncy.php?&bpae=GbhGtL0GvUx79bvvPZxGUD8iPTa9giKXeeEy9jFVHsyXfTmS4aiPIqzhmNLt4w7inBnHfRWGPCEmyyKg8dXTfAyRIvFXG5pkq4NavRo0PVSoiW8LRdwxHQbr9wex%2FeSm8HoCZtaVWE%2BTcy01h9Ni3M%2FzulnA57mhkixIts5kYzOMEG4M8s8489kwE%2BcJBiQcTL%2FWA9Bb6zeaURATfhGpZVs72h6ZTx57pfB0n4ahvubJDMvUc2sCw4CcOaLws7MyGMRIz4LenBhNET7PuLbgVUwa9PGcIWLjJy4T%2FvFE4ivnJZ3p5Lcpdiak07188f4YcRD5GmSnJY4v2NTALCc0hrigAhfi8dOIMQRwtVwCmL75gQagRDf7%2BygZr0LlTQohLh4IuXKVq9TI9hAkrk6AxOzYi0Au9qK5N60CGZ50M5zaup64pgOW6ZwGnxvjH8SR6E3C43gqpiDuTVZITMpFL8r0y8BliJ5F7J%2BRvavHH4uA2Bwk5KNi5dCKc8EVS7EjTwCCni%2FbwI1O&redirectType=js&inIframe=false&inPopUp=false IP 69.16.230.165 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-03 18:12 Last Seen2025-03-03 18:12 Times Seen1 Hash 79f671f6470bc50ce1d56d0fb9901c05 4311ba01174f7d50df30b357631ae6e9b0729516 997356b4543355ae79ea137ad80e1f46966aad889156b7ba31d42de7720082d6 Loading...

	gauts-lwt.com/zclkvisitor/108b9433-f85b-11ef-97c5-1288645ab8f3/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381	ScriptElement	2.8 kB	2025-03-03	2025-03-03
Pretty URL gauts-lwt.com/zclkvisitor/108b9433-f85b-11ef-97c5-1288645ab8f3/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 IP 52.0.6.21 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-03 18:12 Last Seen2025-03-03 18:12 Times Seen1 Hash ed409f62d89e9fce92c13967e8baac9a d0642cf522c857d4949e22275a0054561b311f7b c81d1864d35c55e55779cc0eb8edc01403839a44e48af52af18b87d9714b9b79 Loading...

	about:neterror?e=dnsNotFound&u=https%3A//beowu-fye.com/&c=UTF-8&d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20beowu-fye.com.	ScriptElement	111 B	2025-03-02	2025-05-16
Pretty URL about:neterror?e=dnsNotFound&u=https%3A//beowu-fye.com/&c=UTF-8&d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20beowu-fye.com. IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-02 08:59 Last Seen2025-05-16 07:16 Times Seen28172 Hash 1fc778fb81973516c7df9ee7caca05e6 7953945d192422cc2b1d8610d1b0fa1469bb5b7f a09c624476cbe1462a188d07d0ce0a20e258a5e9b7890f44b3c8b68a0a3b26eb Loading...

	yukkyslime.com/0/0/0/828285d2a8d4860e717f70551fc65ff5/9/53-3216/954-47097-519533	ScriptElement	1.6 kB	2025-03-03	2025-03-03
Pretty URL yukkyslime.com/0/0/0/828285d2a8d4860e717f70551fc65ff5/9/53-3216/954-47097-519533 IP 69.16.230.165 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-03 18:12 Last Seen2025-03-03 18:12 Times Seen1 Hash e6c89875ac0edba45e03c1e8b415fb81 0846627c6c59d7d0ee7eebf4afde8297a93cc6f8 8a0d9954b21bcea95233d3ac6d3f6a8f697b3c970a9c66e4bdbf6eda6108837b Loading...

HTTP Transactions (6)

	URL	IP	Response	Size
	yukkyslime.com/page/bouncy.php?&bpae=GbhGtL0GvUx79bvvPZxGUD8iPTa9giKXeeEy9jFVHsyXfTmS4aiPIqzhmNLt4w7inBnHfRWGPCEmyyKg8dXTfAyRIvFXG5pkq4NavRo0PVSoiW8LRdwxHQbr9wex%2FeSm8HoCZtaVWE%2BTcy01h9Ni3M%2FzulnA57mhkixIts5kYzOMEG4M8s8489kwE%2BcJBiQcTL%2FWA9Bb6zeaURATfhGpZVs72h6ZTx57pfB0n4ahvubJDMvUc2sCw4CcOaLws7MyGMRIz4LenBhNET7PuLbgVUwa9PGcIWLjJy4T%2FvFE4ivnJZ3p5Lcpdiak07188f4YcRD5GmSnJY4v2NTALCc0hrigAhfi8dOIMQRwtVwCmL75gQagRDf7%2BygZr0LlTQohLh4IuXKVq9TI9hAkrk6AxOzYi0Au9qK5N60CGZ50M5zaup64pgOW6ZwGnxvjH8SR6E3C43gqpiDuTVZITMpFL8r0y8BliJ5F7J%2BRvavHH4uA2Bwk5KNi5dCKc8EVS7EjTwCCni%2FbwI1O&redirectType=js&inIframe=false&inPopUp=false	69.16.230.165	200 OK	991 B
URL User Request GET yukkyslime.com/page/bouncy.php?&bpae=GbhGtL0GvUx79bvvPZxGUD8iPTa9giKXeeEy9jFVHsyXfTmS4aiPIqzhmNLt4w7inBnHfRWGPCEmyyKg8dXTfAyRIvFXG5pkq4NavRo0PVSoiW8LRdwxHQbr9wex%2FeSm8HoCZtaVWE%2BTcy01h9Ni3M%2FzulnA57mhkixIts5kYzOMEG4M8s8489kwE%2BcJBiQcTL%2FWA9Bb6zeaURATfhGpZVs72h6ZTx57pfB0n4ahvubJDMvUc2sCw4CcOaLws7MyGMRIz4LenBhNET7PuLbgVUwa9PGcIWLjJy4T%2FvFE4ivnJZ3p5Lcpdiak07188f4YcRD5GmSnJY4v2NTALCc0hrigAhfi8dOIMQRwtVwCmL75gQagRDf7%2BygZr0LlTQohLh4IuXKVq9TI9hAkrk6AxOzYi0Au9qK5N60CGZ50M5zaup64pgOW6ZwGnxvjH8SR6E3C43gqpiDuTVZITMpFL8r0y8BliJ5F7J%2BRvavHH4uA2Bwk5KNi5dCKc8EVS7EjTwCCni%2FbwI1O&redirectType=js&inIframe=false&inPopUp=false IP 69.16.230.165:443 ASN #32244 LIQUIDWEB Certificate IssuerLet's Encrypt Subjectwww.yukkyslime.com Fingerprint9A:02:15:D9:D7:F5:FC:FB:E9:99:81:36:32:6F:D1:E4:08:FD:A0:09 ValidityFri, 06 Dec 2024 14:01:53 GMT - Thu, 06 Mar 2025 14:01:52 GMT File type HTML document, ASCII text, with very long lines (1068), with no line terminators Size 991 B (991 bytes) Hash c452de6fee7e4879acc87bd2be7e8656 a99213085fa121508984bbf9a3706c2ebc846941 2ae5fd61345a8a410e446fcc419ed5f922ec08566fa78d485e5988f65fc4bbf0 HTTP Headers GET /page/bouncy.php?&bpae=GbhGtL0GvUx79bvvPZxGUD8iPTa9giKXeeEy9jFVHsyXfTmS4aiPIqzhmNLt4w7inBnHfRWGPCEmyyKg8dXTfAyRIvFXG5pkq4NavRo0PVSoiW8LRdwxHQbr9wex%2FeSm8HoCZtaVWE%2BTcy01h9Ni3M%2FzulnA57mhkixIts5kYzOMEG4M8s8489kwE%2BcJBiQcTL%2FWA9Bb6zeaURATfhGpZVs72h6ZTx57pfB0n4ahvubJDMvUc2sCw4CcOaLws7MyGMRIz4LenBhNET7PuLbgVUwa9PGcIWLjJy4T%2FvFE4ivnJZ3p5Lcpdiak07188f4YcRD5GmSnJY4v2NTALCc0hrigAhfi8dOIMQRwtVwCmL75gQagRDf7%2BygZr0LlTQohLh4IuXKVq9TI9hAkrk6AxOzYi0Au9qK5N60CGZ50M5zaup64pgOW6ZwGnxvjH8SR6E3C43gqpiDuTVZITMpFL8r0y8BliJ5F7J%2BRvavHH4uA2Bwk5KNi5dCKc8EVS7EjTwCCni%2FbwI1O&redirectType=js&inIframe=false&inPopUp=false HTTP/1.1 Host: yukkyslime.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://yukkyslime.com/0/0/0/828285d2a8d4860e717f70551fc65ff5/9/53-3216/954-47097-519533 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Mon, 03 Mar 2025 18:12:28 GMT content-type: text/html cache-control: no-cache pragma: no-cache access-control-allow-origin: * content-encoding: gzip X-Firefox-Spdy: h2`

	gauts-lwt.com/zclkvisitor/108b9433-f85b-11ef-97c5-1288645ab8f3/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381	52.0.6.21	200 OK	3.1 kB
URL User Request GET gauts-lwt.com/zclkvisitor/108b9433-f85b-11ef-97c5-1288645ab8f3/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 IP 52.0.6.21:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subjectgauts-lwt.com Fingerprint2E:5B:2D:AE:E1:7A:9D:83:73:CC:31:9E:27:C3:38:59:88:DF:43:0D ValidityMon, 04 Nov 2024 00:00:00 GMT - Wed, 03 Dec 2025 23:59:59 GMT File type HTML document, ASCII text, with very long lines (3164), with no line terminators Size 3.1 kB (3088 bytes) Hash 3f23087967bdb58c7ef29a2c422e2136 e221a13fa7d1510879fc0fd60c390c6c174c907d 127e1286df0e303b1bb4fec702e698ffcb37d72fc10add2f229d3b75df7bcd21 HTTP Headers GET /zclkvisitor/108b9433-f85b-11ef-97c5-1288645ab8f3/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 HTTP/1.1 Host: gauts-lwt.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://yukkyslime.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Mon, 03 Mar 2025 18:12:28 GMT content-type: text/html;charset=UTF-8 content-length: 3088 cache-control: no-store, no-cache, pre-check=0, post-check=0 content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' access-control-allow-origin: * access-control-allow-methods: GET,POST,OPTIONS access-control-allow-headers: X-Requested-With,Content-Type X-Firefox-Spdy: h2`

	gauts-lwt.com/favicon.ico	52.0.6.21	404 Not Found	82 B
URL GET gauts-lwt.com/favicon.ico IP 52.0.6.21:443 ASN #14618 AMAZON-AES Requested by https://gauts-lwt.com/zclkvisitor/108b9433-f85b-11ef-97c5-1288645ab8f3/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 Certificate IssuerAmazon Subjectgauts-lwt.com Fingerprint2E:5B:2D:AE:E1:7A:9D:83:73:CC:31:9E:27:C3:38:59:88:DF:43:0D ValidityMon, 04 Nov 2024 00:00:00 GMT - Wed, 03 Dec 2025 23:59:59 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 82 B (82 bytes) Hash c0ac13c773654a483a505ecdcb9fd94f 20d6cd2d4fde1155846321e4e212891c3fbc4c32 6d5a372cd8d85a9c7e1d04b530715de1434a30c4d9aa027a4c2155c1f56a17d3 HTTP Headers GET /favicon.ico HTTP/1.1 Host: gauts-lwt.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://gauts-lwt.com/zclkvisitor/108b9433-f85b-11ef-97c5-1288645ab8f3/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 404 Not Found date: Mon, 03 Mar 2025 18:12:29 GMT content-type: application/json X-Firefox-Spdy: h2`

	gauts-lwt.com/zclkredirect?visitid=108b9433-f85b-11ef-97c5-1288645ab8f3&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=Mesa%3B%20llvmpipe&timezone=UTC%2B00%3A00&timezoneName=UTC	52.0.6.21	302 Found	0 B
URL User Request GET gauts-lwt.com/zclkredirect?visitid=108b9433-f85b-11ef-97c5-1288645ab8f3&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=Mesa%3B%20llvmpipe&timezone=UTC%2B00%3A00&timezoneName=UTC IP 52.0.6.21:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subjectgauts-lwt.com Fingerprint2E:5B:2D:AE:E1:7A:9D:83:73:CC:31:9E:27:C3:38:59:88:DF:43:0D ValidityMon, 04 Nov 2024 00:00:00 GMT - Wed, 03 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /zclkredirect?visitid=108b9433-f85b-11ef-97c5-1288645ab8f3&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=Mesa%3B%20llvmpipe&timezone=UTC%2B00%3A00&timezoneName=UTC HTTP/1.1 Host: gauts-lwt.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://gauts-lwt.com/zclkvisitor/108b9433-f85b-11ef-97c5-1288645ab8f3/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found date: Mon, 03 Mar 2025 18:12:29 GMT content-length: 0 location: http://beowu-fye.com cache-control: no-store, no-cache, pre-check=0, post-check=0 content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' access-control-allow-origin: * access-control-allow-methods: GET,POST,OPTIONS access-control-allow-headers: X-Requested-With,Content-Type X-Firefox-Spdy: h2`

	beowu-fye.com/	0.0.0.0		0 B
URL User Request GET beowu-fye.com/ IP 0.0.0.0:0 ASN #0 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: beowu-fye.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`

	yukkyslime.com/0/0/0/828285d2a8d4860e717f70551fc65ff5/9/53-3216/954-47097-519533	69.16.230.165	200 OK	2.3 kB
URL User Request GET yukkyslime.com/0/0/0/828285d2a8d4860e717f70551fc65ff5/9/53-3216/954-47097-519533 IP 69.16.230.165:443 ASN #32244 LIQUIDWEB Certificate IssuerLet's Encrypt Subjectwww.yukkyslime.com Fingerprint9A:02:15:D9:D7:F5:FC:FB:E9:99:81:36:32:6F:D1:E4:08:FD:A0:09 ValidityFri, 06 Dec 2024 14:01:53 GMT - Thu, 06 Mar 2025 14:01:52 GMT File type HTML document, ASCII text, with very long lines (2349), with no line terminators Size 2.3 kB (2272 bytes) Hash 35cee5af025d1f72509a96673f67c694 954b0008e423bc23b356fc070965ef42c3fd5f66 9fe38a1b73911afc22f4a1a3dfbb196cc13e753e0fcf6817803da3821e05db93 HTTP Headers GET /0/0/0/828285d2a8d4860e717f70551fc65ff5/9/53-3216/954-47097-519533 HTTP/1.1 Host: yukkyslime.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Mon, 03 Mar 2025 18:12:27 GMT content-type: text/html cache-control: no-cache pragma: no-cache access-control-allow-origin: * content-encoding: gzip X-Firefox-Spdy: h2`