Report - www.google.ae/amp/grhu4355.odns.fr/5.php

Report Overview

Visited public
2025-01-28 19:50:56
Tags
URL
www.google.ae/amp/grhu4355.odns.fr/5.php
Finishing URL
grhu4355.odns.fr/5.php
IP / ASN
142.250.178.99
#15169 GOOGLE
Title
Performing security verification on your browser.

Detections

urlquery

0

Network Intrusion Detection

0

Threat Detection Systems

0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.google.ae	23447	unknown	2012-05-22	2025-01-17	575 B	1.4 kB	142.250.178.99
grhu4355.odns.fr	unknown	2014-09-23	2025-01-28	2025-01-28	764 B	998 B	109.234.166.101

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	grhu4355.odns.fr/5.php	ScriptElement	0 B	0001-01-01	2025-06-22
Pretty URL grhu4355.odns.fr/5.php IP 109.234.166.101 ASN #50474 O2switch SAS Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-22 04:25 Times Seen5062623 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (3)

	URL	IP	Response	Size
	GET www.google.ae/amp/grhu4355.odns.fr/5.php	142.250.178.99	302 Found	226 B
URL User Request GET HTTP/2 www.google.ae/amp/grhu4355.odns.fr/5.php IP 142.250.178.99:443 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services Subject.google.ae FingerprintE3:EE:CC:DC:86:8B:8F:60:06:ED:75:5F:D6:26:05:EC:81:05:BB:A9 ValidityMon, 06 Jan 2025 08:38:07 GMT - Mon, 31 Mar 2025 08:38:06 GMT File type HTML document, ASCII text, with CRLF, LF line terminators Size 226 B (226 bytes) Hash 05b1e253fca75fd4ca6c02fcd44c239c e6c56cf421824fe35543de94a768e04c36718338 86a5e600ba3af7a0bbafc38f17b491521aa36bd9f74ceef86b0773160d652ff1 HTTP Headers GET /amp/grhu4355.odns.fr/5.php HTTP/1.1 Host: www.google.ae User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found location: http://grhu4355.odns.fr/5.php cache-control: private x-robots-tag: noindex content-type: text/html; charset=UTF-8 content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-z1VmjltBz5y2YnDJ-5eoIw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]} p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." date: Tue, 28 Jan 2025 19:50:32 GMT server: gws content-length: 226 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: __Secure-ENID=25.SE=kkjxfFucmBlhBEhBznReujGgIKDOLNDXjxlMrVjibkXPbvDRCfh3o3Uc-xf_AwrOcxbeAeX_KZWwtR6gcFZkuVfIJ9heI3YcwrgmprP6qSb7JezNvbmP6y_sQSyMwyElTExloBJBHbWbvBggRWk7R92nSKo8ayLHaf7XKFdt7xt4erQWHHD3FeCC1LDzXe0oTX7YzWK08gC8FdL7_eoXRFpzfhzufpKcHlPnD-yeO97uu3ab; expires=Sat, 28-Feb-2026 12:08:50 GMT; path=/; domain=.google.ae; Secure; HttpOnly; SameSite=lax alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET grhu4355.odns.fr/5.php	109.234.166.101	200 OK	604 B
URL User Request GET HTTP/1.1 grhu4355.odns.fr/5.php IP 109.234.166.101:80 ASN #50474 O2switch SAS File type HTML document, ASCII text, with CRLF line terminators Size 604 B (604 bytes) Hash b62db7740c1dd33202a0ee88b7527cee 66672dc60fa3a975f1c0b6a03c15d1f8cec8cbb7 8655c7dc2de4ad89d45961a3b0ff2ec4cb395e48229fc3562d95302e7e42fc68 HTTP Headers `GET /5.php HTTP/1.1 Host: grhu4355.odns.fr User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Tue, 28 Jan 2025 19:50:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Server: o2switch-PowerBoost-v3 Content-Encoding: gzip`

	GET grhu4355.odns.fr/favicon.ico	109.234.166.101	200 OK	0 B
URL GET HTTP/1.1 grhu4355.odns.fr/favicon.ico IP 109.234.166.101:80 ASN #50474 O2switch SAS Requested by http://grhu4355.odns.fr/5.php File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: grhu4355.odns.fr User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://grhu4355.odns.fr/5.php Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Tue, 28 Jan 2025 19:50:32 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Connection: keep-alive Server: o2switch-PowerBoost-v3`