| utbidet-ugeas.biz/d/N?0204A7492B04A7492B2AA7652B04A7F695B2D22D7605A7898300D57F05368970193497672B | 54.157.24.8 | | 142 B |
URL utbidet-ugeas.biz/d/N?0204A7492B04A7492B2AA7652B04A7F695B2D22D7605A7898300D57F05368970193497672B IP54.157.24.8:0
File typeHTML document, ASCII text, with CRLF line terminators Hash82c98e8e012b79c922655461171cc2fa 0828d79135573276005b04be42d79a8a3291292b 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /d/N?0204A7492B04A7492B2AA7652B04A7F695B2D22D7605A7898300D57F05368970193497672B HTTP/1.1
Host: utbidet-ugeas.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Fri, 19 Apr 2024 09:39:40 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Accept-CH: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
Location: http://ww99.utbidet-ugeas.biz/d/N?0204A7492B04A7492B2AA7652B04A7F695B2D22D7605A7898300D57F05368970193497672B
Cache-Control: no-store, max-age=0
|
|
| ww99.utbidet-ugeas.biz/d/N?0204A7492B04A7492B2AA7652B04A7F695B2D22D7605A7898300D57F05368970193497672B | 72.52.179.174 | | 2.3 kB |
URL ww99.utbidet-ugeas.biz/d/N?0204A7492B04A7492B2AA7652B04A7F695B2D22D7605A7898300D57F05368970193497672B IP72.52.179.174:0
File typeHTML document, ASCII text, with very long lines (656) Hash3f4e09ed6f17fbda80e49ba5c1f3bd85 a913e443ce124448138c28570cc4453d35f9b195 805719665bd6c46303ec74ffd8cf0a1828cbd248864d2cbc5e8c475dda6e8726
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /d/N?0204A7492B04A7492B2AA7652B04A7F695B2D22D7605A7898300D57F05368970193497672B HTTP/1.1
Host: ww99.utbidet-ugeas.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 09:39:40 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 2344
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| ww99.utbidet-ugeas.biz/page/bouncy.php?&bpae=GbhGtLnGtUx79LvvPR1MILXJSaVQzOvUKyu1NHSSAtBh336OrazmQ0gB%2BCavBpLvxy0gK84TDV5RoDj%2Bsa3POe%2FDiZIanwcevi%2FuA%2FlT4iFlnEYLgxuzc%2FzUcdhIBWaS89Ivz8TWqDPxKhKncpiMDkFFxIccQk%2BIrn88K62k9AgUhcTdKvQy7QBZyONjC3sTo6wdoz5EAa9niep5zSI%2BAjRJf7jdq5xe%2BrGpPzzSGPry1e090y%2BO%2BzVumQUyZeLEV0Tnc2pCj75R8z4C1pH6WW5I7x19QHP8VWjoRCG%2BkGmJrCI8QCNSqUnaEIOuumV56bx0Q61DEtWmh04hUWlwquEHd%2Fyjf1BFi6rMqdqmDPmgaYFgrINLXp71sj6tR%2BEewhPOOjJ8%2FJ8Nr5GZdKN02So2yI5GHhT1LrBhy%2BVHR%2FAlaJTTigrjl7mjvT%2B6B1XlK9QHtCZk8L%2FQzCvNwci01h%2F8khBiaEyfQWEKhmutIMafr6MyjCyzL5QgcfykpIFJ94aCbjpqvCQ%3D&redirectType=js&inIframe=false&inPopUp=false | 72.52.179.174 | | 991 B |
URL ww99.utbidet-ugeas.biz/page/bouncy.php?&bpae=GbhGtLnGtUx79LvvPR1MILXJSaVQzOvUKyu1NHSSAtBh336OrazmQ0gB%2BCavBpLvxy0gK84TDV5RoDj%2Bsa3POe%2FDiZIanwcevi%2FuA%2FlT4iFlnEYLgxuzc%2FzUcdhIBWaS89Ivz8TWqDPxKhKncpiMDkFFxIccQk%2BIrn88K62k9AgUhcTdKvQy7QBZyONjC3sTo6wdoz5EAa9niep5zSI%2BAjRJf7jdq5xe%2BrGpPzzSGPry1e090y%2BO%2BzVumQUyZeLEV0Tnc2pCj75R8z4C1pH6WW5I7x19QHP8VWjoRCG%2BkGmJrCI8QCNSqUnaEIOuumV56bx0Q61DEtWmh04hUWlwquEHd%2Fyjf1BFi6rMqdqmDPmgaYFgrINLXp71sj6tR%2BEewhPOOjJ8%2FJ8Nr5GZdKN02So2yI5GHhT1LrBhy%2BVHR%2FAlaJTTigrjl7mjvT%2B6B1XlK9QHtCZk8L%2FQzCvNwci01h%2F8khBiaEyfQWEKhmutIMafr6MyjCyzL5QgcfykpIFJ94aCbjpqvCQ%3D&redirectType=js&inIframe=false&inPopUp=false IP72.52.179.174:0
File typeHTML document, ASCII text Hash4bcd6105cb9d4d7e61ee165bdccadaa2 526f2cbb2047c9d5c9e012df68ed0e5b2bb2786d 1daceaf0a951a30e939f4158bdae7226426ae3a7b3d07c70b9f6819a66a328fd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /page/bouncy.php?&bpae=GbhGtLnGtUx79LvvPR1MILXJSaVQzOvUKyu1NHSSAtBh336OrazmQ0gB%2BCavBpLvxy0gK84TDV5RoDj%2Bsa3POe%2FDiZIanwcevi%2FuA%2FlT4iFlnEYLgxuzc%2FzUcdhIBWaS89Ivz8TWqDPxKhKncpiMDkFFxIccQk%2BIrn88K62k9AgUhcTdKvQy7QBZyONjC3sTo6wdoz5EAa9niep5zSI%2BAjRJf7jdq5xe%2BrGpPzzSGPry1e090y%2BO%2BzVumQUyZeLEV0Tnc2pCj75R8z4C1pH6WW5I7x19QHP8VWjoRCG%2BkGmJrCI8QCNSqUnaEIOuumV56bx0Q61DEtWmh04hUWlwquEHd%2Fyjf1BFi6rMqdqmDPmgaYFgrINLXp71sj6tR%2BEewhPOOjJ8%2FJ8Nr5GZdKN02So2yI5GHhT1LrBhy%2BVHR%2FAlaJTTigrjl7mjvT%2B6B1XlK9QHtCZk8L%2FQzCvNwci01h%2F8khBiaEyfQWEKhmutIMafr6MyjCyzL5QgcfykpIFJ94aCbjpqvCQ%3D&redirectType=js&inIframe=false&inPopUp=false HTTP/1.1
Host: ww99.utbidet-ugeas.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww99.utbidet-ugeas.biz/d/N?0204A7492B04A7492B2AA7652B04A7F695B2D22D7605A7898300D57F05368970193497672B
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
Cache-Control: no-cache
Content-Type: text/html; charset=UTF-8
Date: Fri, 19 Apr 2024 09:39:41 GMT
Pragma: no-cache
Connection: Keep-Alive
X-Powered-By: PHP/5.4.16
Content-Length: 991
|
|
| iuven-ojr.com/zclkvisitor/bedb9153-fe30-11ee-a82e-12c2f6031c51/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=77dd2610-928d-11ee-9bb7-0a4ababc2193 | 34.239.34.67 | | 2.7 kB |
URL iuven-ojr.com/zclkvisitor/bedb9153-fe30-11ee-a82e-12c2f6031c51/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=77dd2610-928d-11ee-9bb7-0a4ababc2193 IP34.239.34.67:0
File typeHTML document, ASCII text, with very long lines (401) Hash0cf927a3c10d74048e723d99bef63291 53cf213ff9ee3241ceb03da5af636448c1e5df8f e66f1d16f9d9410423fb2239a925786479b85f3646ad882ddb0c723276f64abb
GET /zclkvisitor/bedb9153-fe30-11ee-a82e-12c2f6031c51/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=77dd2610-928d-11ee-9bb7-0a4ababc2193 HTTP/1.1
Host: iuven-ojr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww99.utbidet-ugeas.biz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 09:39:42 GMT
content-type: text/html;charset=UTF-8
content-length: 2732
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
X-Firefox-Spdy: h2
|
|
| iuven-ojr.com/zclkredirect?visitid=bedb9153-fe30-11ee-a82e-12c2f6031c51&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC | 34.239.34.67 | | 1.6 kB |
URL iuven-ojr.com/zclkredirect?visitid=bedb9153-fe30-11ee-a82e-12c2f6031c51&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC IP34.239.34.67:0
File typeHTML document, ASCII text, with very long lines (751) Hash752b62aa2286265c9bb99310e3589c81 adaa81834608977b114f91cfe306c2075e17f541 375630639ce05874edcdce67c47b420b48dc4bc673a0c41f3e8baef7b00abbef
GET /zclkredirect?visitid=bedb9153-fe30-11ee-a82e-12c2f6031c51&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC HTTP/1.1
Host: iuven-ojr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iuven-ojr.com/zclkvisitor/bedb9153-fe30-11ee-a82e-12c2f6031c51/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=77dd2610-928d-11ee-9bb7-0a4ababc2193
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 09:39:42 GMT
content-type: text/html;charset=UTF-8
content-length: 1588
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
redirected: JS
X-Firefox-Spdy: h2
|
|
| api.shopfinder24.com/favicon.ico | 3.127.134.231 | | 0 B |
URL api.shopfinder24.com/favicon.ico IP3.127.134.231:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: api.shopfinder24.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.shopfinder24.com/r/dG89aHR0cHMlM0ElMkYlMkZyLmxpbmtzcHJmLmNvbSUyRnYxJTJGcmVkaXJlY3QlM0Z0eXBlJTNEbGlua0lkJTI2aWQlM0QzOTgzMGM1ZTUyZGU0ZTQ3OWVlZTkzOTc5ZGY0MzJkNSUyNmFwaV9rZXklM0RhZGY0MDdmZDEwODdhMWU1NmVhZGRlYzBmNTkxNDI2NyUyNnNpdGVfaWQlM0QyNzBjZDUzZWMyMzM0ZjExOGNlZDE0YTRlOGJjODQ5ZiUyNmRjaCUzRGZlZWQlMjZhZF90JTNEYWR2ZXJ0aXNlciUyNnlrX3RhZyUzRCU3QmNsaWNraWQlN0QmdD0wJnM9YjhjMGE1ZmI1Yzg3ZWNmOWI2MTAyOTY2YTU0ODQ4YTM=?c=w13vfvjtqqienpm0j3n2lp36&var10=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 19 Apr 2024 09:39:43 GMT
content-type: image/x-icon
content-length: 0
last-modified: Mon, 10 Jul 2023 10:16:37 GMT
etag: "64abda85-0"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| priverautional.com/redirect?target=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_Yz13MTN2ZnZqdHFxaWVucG0wajNuMmxwMzYmdmFyMTA9&ts=1713519582670&hash=HdaIGPvqff2Y-eBbfUX1hOD5k2rq4-2js8_OR5qRoJI&rm=D | 54.230.111.84 | | 775 B |
URL priverautional.com/redirect?target=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_Yz13MTN2ZnZqdHFxaWVucG0wajNuMmxwMzYmdmFyMTA9&ts=1713519582670&hash=HdaIGPvqff2Y-eBbfUX1hOD5k2rq4-2js8_OR5qRoJI&rm=D IP54.230.111.84:0
File typeHTML document, ASCII text, with very long lines (775), with no line terminators Hash90ba204fec1d550b7deb95412e0e5653 af7b96bf5938270708254288d0d89719098591f4 90c3587d9ee8f16e2f988e3806dfa2123099fd961dfcfcfd9a49951b1328c1f2
GET /redirect?target=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_Yz13MTN2ZnZqdHFxaWVucG0wajNuMmxwMzYmdmFyMTA9&ts=1713519582670&hash=HdaIGPvqff2Y-eBbfUX1hOD5k2rq4-2js8_OR5qRoJI&rm=D HTTP/1.1
Host: priverautional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: voluum-cid-v4=%7B%22cid%22%3A%22w13vfvjtqqienpm0j3n2lp36%22%2C%22caid%22%3A%2273dfb89c-fb2f-46bf-a7f7-c21ef6fbe4bf%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
date: Fri, 19 Apr 2024 09:39:42 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
server: nginx
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YBZtVtRD0YKob5XQ3GkANVu5iAQW4yYS7ctHtamF_d44JkFwnZa_fA==
X-Firefox-Spdy: h2
|
|
| r.linksprf.com/v1/redirect?type=linkId&id=39830c5e52de4e479eee93979df432d5&api_key=adf407fd1087a1e56eaddec0f5914267&site_id=270cd53ec2334f118ced14a4e8bc849f&dch=feed&ad_t=advertiser&yk_tag=w13vfvjtqqienpm0j3n2lp36 | 63.33.119.172 | 403 Forbidden | 64 B |
URL User Request GET HTTP/2r.linksprf.com/v1/redirect?type=linkId&id=39830c5e52de4e479eee93979df432d5&api_key=adf407fd1087a1e56eaddec0f5914267&site_id=270cd53ec2334f118ced14a4e8bc849f&dch=feed&ad_t=advertiser&yk_tag=w13vfvjtqqienpm0j3n2lp36 IP63.33.119.172:443
CertificateIssuerLet's Encrypt Subjectlinksprf.com FingerprintDB:93:13:3C:A9:5E:AA:80:AC:C9:C7:8A:95:AA:D6:54:DE:CB:0E:F6 ValidityFri, 19 Apr 2024 07:14:24 GMT - Thu, 18 Jul 2024 07:14:23 GMT
Hash2e6c311c0fac4a9c3730c64f4d457e9d 3992ec763d5a601c0984ab99556c123a303ca830 0f9970e96226e0750c72ea9b8bd0f6345bf29ef31696dbfbcba652d7b8d40237
GET /v1/redirect?type=linkId&id=39830c5e52de4e479eee93979df432d5&api_key=adf407fd1087a1e56eaddec0f5914267&site_id=270cd53ec2334f118ced14a4e8bc849f&dch=feed&ad_t=advertiser&yk_tag=w13vfvjtqqienpm0j3n2lp36 HTTP/1.1
Host: r.linksprf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.shopfinder24.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Fri, 19 Apr 2024 09:39:43 GMT
content-type: application/json
content-length: 64
set-cookie: ykuid=15ed023364ad4cdca686f5a59ebbab52; Path=/; Secure; Domain=.linksprf.com; Max-Age=31536000; SameSite=None
JSESSIONID=83F3198ABD7ABBEFA4AF153F23E64D01; Path=/; HttpOnly
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|