urlquery - report: cdd.net.ua/apothecary/product_info.php?products_id=108&osCsid=1bf2529f6cdeb2d8469ea45a6a3e5898

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	Sent bytes	Received bytes	IP	Comment
cdd.net.ua (2)	0	2014-10-06 16:41:57	2023-05-26 10:40:02	882	724	89.184.88.6

Fully Qualifying Domain Name

Rank

First Seen

Last Seen

Sent bytes

Received bytes

Comment

cdd.net.ua (2)

2014-10-06 16:41:57

2023-05-26 10:40:02

882

724

89.184.88.6

Timestamp	Severity	Source IP	Destination IP	Alert
2023-05-26 14:28:18 UTC	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-05-26 14:28:18 UTC	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-05-26 14:28:18 UTC	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-05-26 14:28:19 UTC	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-05-26 14:28:19 UTC	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)

Timestamp

Severity

Source IP

Destination IP

Alert

2023-05-26 14:28:18 UTC

low

Client IP

Internal IP

ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)

2023-05-26 14:28:18 UTC

low

Client IP

Internal IP

ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)

2023-05-26 14:28:18 UTC

low

Client IP

Internal IP

ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)

2023-05-26 14:28:19 UTC

low

Client IP

Internal IP

ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)

2023-05-26 14:28:19 UTC

low

Client IP

Internal IP

ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)

Date	UQ / IDS / BL	URL	IP
2023-06-06 04:14:09 UTC	0 - 6 - 0	cdd.net.ua/apothecary/login.php?action=proces (...)	89.184.88.6
2023-06-05 16:41:56 UTC	0 - 5 - 0	cdd.net.ua/apothecary/index.php?cPath=24&osCs (...)	89.184.88.6
2023-06-05 11:38:04 UTC	0 - 5 - 0	cdd.net.ua/apothecary/images/m6.jpg?osCsid=55 (...)	89.184.88.6
2023-06-04 23:17:44 UTC	0 - 5 - 0	cdd.net.ua/apothecary/product_info.php?produc (...)	89.184.88.6
2023-06-04 21:41:15 UTC	0 - 5 - 0	cdd.net.ua/apothecary/products_new.php??id=61 (...)	89.184.88.6

Date

UQ / IDS / BL

URL

2023-06-06 04:14:09 UTC

0 - 6 - 0

cdd.net.ua/apothecary/login.php?action=proces (...)

89.184.88.6

2023-06-05 16:41:56 UTC

0 - 5 - 0

cdd.net.ua/apothecary/index.php?cPath=24&osCs (...)

89.184.88.6

2023-06-05 11:38:04 UTC

0 - 5 - 0

cdd.net.ua/apothecary/images/m6.jpg?osCsid=55 (...)

89.184.88.6

2023-06-04 23:17:44 UTC

0 - 5 - 0

cdd.net.ua/apothecary/product_info.php?produc (...)

89.184.88.6

2023-06-04 21:41:15 UTC

0 - 5 - 0

cdd.net.ua/apothecary/products_new.php??id=61 (...)

89.184.88.6

Date	UQ / IDS / BL	URL	IP
2023-06-06 04:14:09 UTC	0 - 6 - 0	cdd.net.ua/apothecary/login.php?action=proces (...)	89.184.88.6
2023-06-05 16:41:56 UTC	0 - 5 - 0	cdd.net.ua/apothecary/index.php?cPath=24&osCs (...)	89.184.88.6
2023-06-05 11:38:04 UTC	0 - 5 - 0	cdd.net.ua/apothecary/images/m6.jpg?osCsid=55 (...)	89.184.88.6
2023-06-05 09:48:04 UTC	0 - 3 - 0	www.microchip.ua/download/price/price.zip	89.184.74.32
2023-06-05 08:45:21 UTC	0 - 34 - 0	medglobal.in.ua/uk/procedures/nejropsihologic (...)	89.184.83.31

Date

UQ / IDS / BL

URL

2023-06-06 04:14:09 UTC

0 - 6 - 0

cdd.net.ua/apothecary/login.php?action=proces (...)

89.184.88.6

2023-06-05 16:41:56 UTC

0 - 5 - 0

cdd.net.ua/apothecary/index.php?cPath=24&osCs (...)

89.184.88.6

2023-06-05 11:38:04 UTC

0 - 5 - 0

cdd.net.ua/apothecary/images/m6.jpg?osCsid=55 (...)

89.184.88.6

2023-06-05 09:48:04 UTC

0 - 3 - 0

www.microchip.ua/download/price/price.zip

89.184.74.32

2023-06-05 08:45:21 UTC

0 - 34 - 0

medglobal.in.ua/uk/procedures/nejropsihologic (...)

89.184.83.31

Date	UQ / IDS / BL	URL	IP
2023-06-06 04:14:09 UTC	0 - 6 - 0	cdd.net.ua/apothecary/login.php?action=proces (...)	89.184.88.6
2023-06-05 16:41:56 UTC	0 - 5 - 0	cdd.net.ua/apothecary/index.php?cPath=24&osCs (...)	89.184.88.6
2023-06-05 11:38:04 UTC	0 - 5 - 0	cdd.net.ua/apothecary/images/m6.jpg?osCsid=55 (...)	89.184.88.6
2023-06-04 23:17:44 UTC	0 - 5 - 0	cdd.net.ua/apothecary/product_info.php?produc (...)	89.184.88.6
2023-06-04 21:41:15 UTC	0 - 5 - 0	cdd.net.ua/apothecary/products_new.php??id=61 (...)	89.184.88.6

Date

UQ / IDS / BL

URL

2023-06-06 04:14:09 UTC

0 - 6 - 0

cdd.net.ua/apothecary/login.php?action=proces (...)

89.184.88.6

2023-06-05 16:41:56 UTC

0 - 5 - 0

cdd.net.ua/apothecary/index.php?cPath=24&osCs (...)

89.184.88.6

2023-06-05 11:38:04 UTC

0 - 5 - 0

cdd.net.ua/apothecary/images/m6.jpg?osCsid=55 (...)

89.184.88.6

2023-06-04 23:17:44 UTC

0 - 5 - 0

cdd.net.ua/apothecary/product_info.php?produc (...)

89.184.88.6

2023-06-04 21:41:15 UTC

0 - 5 - 0

cdd.net.ua/apothecary/products_new.php??id=61 (...)

89.184.88.6

Date	UQ / IDS / BL	URL	IP
2023-06-06 06:41:45 UTC	0 - 0 - 1	dhl.7415963.wco-americaribe.org/tracking/trac (...)	185.236.228.120
2023-06-06 06:39:09 UTC	0 - 0 - 2	vulgarmilletappear.com/iqu1ddx0f3?iusyna=89&r (...)	173.233.137.60
2023-06-06 06:38:32 UTC	0 - 0 - 2	tricklesmartdiscourage.com/watch.150297801653 (...)	173.233.137.36
2023-06-06 06:38:32 UTC	0 - 0 - 2	playerstrivefascinated.com/watch.160020989291 (...)	192.243.61.225
2023-06-06 06:38:32 UTC	0 - 0 - 2	tricklesmartdiscourage.com/watch.158762280395 (...)	192.243.59.12

Date

UQ / IDS / BL

URL

2023-06-06 06:41:45 UTC

0 - 0 - 1

dhl.7415963.wco-americaribe.org/tracking/trac (...)

185.236.228.120

2023-06-06 06:39:09 UTC

0 - 0 - 2

vulgarmilletappear.com/iqu1ddx0f3?iusyna=89&r (...)

173.233.137.60

2023-06-06 06:38:32 UTC

0 - 0 - 2

tricklesmartdiscourage.com/watch.150297801653 (...)

173.233.137.36

2023-06-06 06:38:32 UTC

0 - 0 - 2

playerstrivefascinated.com/watch.160020989291 (...)

192.243.61.225

2023-06-06 06:38:32 UTC

0 - 0 - 2

tricklesmartdiscourage.com/watch.158762280395 (...)

192.243.59.12

HTTP Transactions (2)

Request	Response
GET /apothecary/product_info.php?products_id=108&osCsid=1bf2529f6cdeb2d8469ea45a6a3e5898 HTTP/1.1 Host: cdd.net.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache	89.184.88.6 HTTP/1.1 404 Not Found Content-Type: text/html; charset=iso-8859-1 Server: nginx Date: Fri, 26 May 2023 14:28:19 GMT Content-Length: 196 Connection: keep-alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 196 Md5: 62962daa1b19bbcc2db10b7bfd531ea6 Sha1: d64bae91091eda6a7532ebec06aa70893b79e1f8 Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /favicon.ico HTTP/1.1 Host: cdd.net.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://cdd.net.ua/apothecary/product_info.php?products_id=108&osCsid=1bf2529f6cdeb2d8469ea45a6a3e5898 Pragma: no-cache Cache-Control: no-cache	89.184.88.6 HTTP/1.1 404 Not Found Content-Type: text/html; charset=iso-8859-1 Server: nginx Date: Fri, 26 May 2023 14:28:19 GMT Content-Length: 196 Connection: keep-alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 196 Md5: 62962daa1b19bbcc2db10b7bfd531ea6 Sha1: d64bae91091eda6a7532ebec06aa70893b79e1f8 Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

Request

Response

                                        
                                            GET /apothecary/product_info.php?products_id=108&osCsid=1bf2529f6cdeb2d8469ea45a6a3e5898 HTTP/1.1 

                                        
                                            
Host: cdd.net.ua

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
DNT: 1 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             89.184.88.6

                                            
                                                HTTP/1.1 404 Not Found 

                                            
                                                
Content-Type: text/html; charset=iso-8859-1

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Fri, 26 May 2023 14:28:19 GMT 

                                            
                                                
Content-Length: 196 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text

                                                Size:   196

                                                Md5:    62962daa1b19bbcc2db10b7bfd531ea6

                                                Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8

                                                Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: cdd.net.ua

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
DNT: 1 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://cdd.net.ua/apothecary/product_info.php?products_id=108&osCsid=1bf2529f6cdeb2d8469ea45a6a3e5898 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             89.184.88.6

                                            
                                                HTTP/1.1 404 Not Found 

                                            
                                                
Content-Type: text/html; charset=iso-8859-1

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Fri, 26 May 2023 14:28:19 GMT 

                                            
                                                
Content-Length: 196 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text

                                                Size:   196

                                                Md5:    62962daa1b19bbcc2db10b7bfd531ea6

                                                Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8

                                                Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

URL	cdd.net.ua/apothecary/product_info.php?products_id=108&osCsid=1bf2529f6cdeb2d8469ea45a6a3e5898
IP	89.184.88.6 (Ukraine)
ASN	#28907 Internet Invest Ltd.
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access	public
Report completed	2023-05-26 14:28:36 UTC
Status	Loading report..
IDS alerts	5
Blocklist alert	0
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (1)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 89.184.88.6

Last 5 reports on ASN: Internet Invest Ltd.

Last 5 reports on domain: cdd.net.ua

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (0)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (2)

Overview

Domain Summary (1)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 89.184.88.6

Last 5 reports on ASN: Internet Invest Ltd.

Last 5 reports on domain: cdd.net.ua

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (0)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (2)

Network Intrusion Detection Systems