Report Overview
Visitedpublic
2026-02-12 21:19:55
Tags
Submit Tags
URL
resorttravelclub.com.co
Finishing URL
dexchangegenius.com/jump/next.php?r=9700482&pub_clickid=57c239f5f84a4c5ab7c6918a97c65daa28c5b&sub1=32606&sub2=12684244
IP / ASN
5.79.68.110
#60781 LeaseWeb Netherlands B.V.
Title
dexchangegenius.com/jump/next.php?r=9700482&pub_clickid=57c239f5f84a4c5ab7c6918a97c65daa28c5b&sub1=32606&sub2=12684244

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Host Summary

HostRankRegisteredFirst SeenLast Seen
dexchangegenius.com
6281112018-03-052019-07-092026-02-07
rmut-glo.mywebsafety.com
unknown2024-10-022024-11-302026-02-10
resorttravelclub.com.co
unknownunknown2020-03-012023-03-17
q1.quotes.com
39782621997-05-202022-09-192026-02-12
my.toruftuiov.com
9569862020-09-302020-10-012026-02-08
download.avastbrowser.com
unknown2015-04-072025-10-302026-02-08
cddtsecure.com
16962462021-12-082021-12-092026-02-06

Related reports

Threat Detection Systems
Detection SystemIndicatorVerdictAlert
Hagezi Threat Feeddexchangegenius.commalicious
Sinkholed
Cloudflare DNSdexchangegenius.commalicious
Sinkholed
DNS4EUresorttravelclub.com.comalicious
Sinkholed
Cloudflare DNSmy.toruftuiov.commalicious
Sinkholed
Cloudflare DNScddtsecure.commalicious
Sinkholed
DNS4EUcddtsecure.commalicious
Sinkholed

File detected

URL
download.avastbrowser.com/avast/avast_secure_browser_setup.exe?cid=6379&source_tag=47b09ff3-9fd5-49f6-85d5-9fdbbadf6040
IP / ASN
104.20.37.116
#13335 CLOUDFLARENET
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive, 5 sections
Size7.1 MB (7129824 bytes)
MD5163088f033e810c8d3b2bd7b80635f58
SHA196c9f3502f225d397d2cb94fb708157bb7e88d14

JavaScript (0)

HTTP Transactions (13)

URLIPResponseSize