Report Overview

  1. Submitted URL

    t.y1h1.com/visit/5d282e030142b6000661240f?type=lpkeyerror_type_1&srctrafficsource=redirect&srccampaign=0_autosmartlink_auto&srcpub=1962&srcoffer=ww_3592_smartlink_randompub&exid=1670190321-oxtdpy

  2. IP

    172.67.75.44

    ASN

    #13335 CLOUDFLARENET

  3. Submitted

    2022-12-05 05:31:25

    Access

  4. Website Title

  5. Final URL

  6. Tags

    None

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    10

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
fonts.gstatic.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
firefox.settings.services.mozilla.com8670001-01-01T00:00:00Z0001-01-01T00:00:00Z
rs.y1h1.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.google.com70001-01-01T00:00:00Z0001-01-01T00:00:00Z
gift6541.goggle.vipunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
translate.googleapis.com10050001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.digicert.com860001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.gstatic.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.pki.goog1750001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.googletagmanager.com750001-01-01T00:00:00Z0001-01-01T00:00:00Z
img-getpocket.cdn.mozilla.net16310001-01-01T00:00:00Z0001-01-01T00:00:00Z
t.y1h1.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
r3.o.lencr.org3440001-01-01T00:00:00Z0001-01-01T00:00:00Z
content-signature-2.cdn.mozilla.net11520001-01-01T00:00:00Z0001-01-01T00:00:00Z
contile.services.mozilla.com11140001-01-01T00:00:00Z0001-01-01T00:00:00Z
push.services.mozilla.com21400001-01-01T00:00:00Z0001-01-01T00:00:00Z
region1.google-analytics.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
translate.google.com11560001-01-01T00:00:00Z0001-01-01T00:00:00Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumgift6541.goggle.vip/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.jsPhishing

mnemonic secure dns

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
mediumgoggle.vipSinkholed
mediumgoggle.vipSinkholed
mediumgoggle.vipSinkholed
mediumgoggle.vipSinkholed

JavaScript (28)

HTTP Transactions (53)

URLIPResponseSize
t.y1h1.com/visit/5d282e030142b6000661240f?type=lpkeyerror_type_1&srctrafficsource=redirect&srccampaign=0_autosmartlink_auto&srcpub=1962&srcoffer=ww_3592_smartlink_randompub&exid=1670190321-oxtdpy
172.67.75.44301 Moved Permanently0 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK939 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
ocsp.digicert.com/
93.184.220.29200 OK279 B
t.y1h1.com/visit/5d282e030142b6000661240f?type=lpkeyerror_type_1&srctrafficsource=redirect&srccampaign=0_autosmartlink_auto&srcpub=1962&srcoffer=ww_3592_smartlink_randompub&exid=1670190321-oxtdpy
172.67.75.44200 OK279 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK329 B
t.y1h1.com/visit/61e55f98081ec20007c7f606?exid=1670218274-ZanFiL&srcTrafficSource=Redirect&srcCampaign=0_Redirect_Auto&srcPub=%7Bsub1%7D&type=Cloak
172.67.75.44200 OK432 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
ocsp.digicert.com/
93.184.220.29200 OK280 B
push.services.mozilla.com/
44.240.159.184101 Switching Protocols0 B
rs.y1h1.com/recaptcha.css
104.26.3.157200 OK28 B
rs.y1h1.com/confetti.css
104.26.3.157200 OK2.1 kB
www.google.com/recaptcha/api.js?render=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y
216.58.211.4200 OK584 B
gift6541.goggle.vip/sweeps/ww/iphonesurvey1/index_en-us.php?vid=1670218275-YgFsla&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink_Auto&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=169670b221d888c575&ck=2
104.26.12.100200 OK3.2 kB
gift6541.goggle.vip/sweeps/ww/iphonesurvey1/index_files/iphone13.png
104.26.12.100200 OK310 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.digicert.com/
93.184.220.29200 OK279 B
www.googletagmanager.com/gtag/js?id=G-37GE99Q100
142.250.74.168200 OK76 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
t.y1h1.com/update?eventSub3=view&event3=1
172.67.75.44200 OK2 B
gift6541.goggle.vip/favicon.ico
104.26.12.100200 OK11 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.35200 OK163 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.138200 OK3.6 kB
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main
142.250.74.138200 OK75 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
rs.y1h1.com/common.js
104.26.3.157200 OK7.5 kB
r3.o.lencr.org/
95.101.11.115200 OK503 B
rs.y1h1.com/checkbot.js
104.26.3.157200 OK12 kB
rs.y1h1.com/load.js
104.26.3.157200 OK13 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d81855b-98f7-4c0c-bfb4-78957d8c433d.jpeg
34.120.237.76200 OK7.0 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg
34.120.237.76200 OK11 kB
rs.y1h1.com/backbutton.js
104.26.3.157200 OK8.6 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d407108-e7e2-4672-80f5-d4b4c3e66151.jpeg
34.120.237.76200 OK6.2 kB
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK15 kB
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK16 kB
region1.google-analytics.com/g/collect?v=2&tid=G-37GE99Q100&gtm=2oebu0&_p=722319127&cid=953771596.1670218274&ul=en-us&sr=1280x1024&_s=1&sid=1670218273&sct=1&seg=0&dl=https%3A%2F%2Fgift6541.goggle.vip%2Fsweeps%2Fww%2Fiphonesurvey1%2Findex_en-us.php%3Fvid%3D1670218275-YgFsla%26utm_medium%3D%257Bsub1%257D%26utm_source%3DRedirect%26utm_campaign%3D0_AutoSmartlink_Auto%26utm_content%3DSmartlink_With_Push_RandomPub%26isp%3DBlix%2BGroup%2BAS%26city%3DOslo%26br%3D0%26sp%3D1%26iw%3DFalse%26checked%3D0%26trans%3D1%26ipp%3D0%26lpkey%3D169670b221d888c575%26ck%3D2&dt=%E2%98%91%EF%B8%8F%20iPhone%2013&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content0 B
rs.y1h1.com/trans.css
104.26.3.157200 OK0 B
rs.y1h1.com/push.js
104.26.3.157200 OK0 B
rs.y1h1.com/copy.js
104.26.3.157200 OK0 B
rs.y1h1.com/jquery-3.5.1.min.js
104.26.3.157200 OK0 B
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
216.58.211.14200 OK0 B
gift6541.goggle.vip/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
104.26.12.100200 OK0 B
rs.y1h1.com/trans.js
104.26.3.157200 OK0 B
t.y1h1.com/recaptcha/verify?token=03AEkXODDboY6OfjVgWpv5OptzRkhUgf2Xk18aWL6a72tI1dKMLRzZVsCV7p0mzxZdhKcq40SFV-GKyvFoNsi6tPnpGLm3A7QrlIQEsyqFOYFDcA5zryhSmGVs8WbzXrg_EDvN-HEmA_TjKyHpTwg5RYf_arvQPPSAKJ303U3VDyL45GMjYM8VO_x78nD_5BOdRPMqMg3Jukhkyed9QuF7T_jlQtoul2UL7IligT1zfOQthpbLtFlToLEKAY8RD9AM5XW8loIqMuGE338u5R_JyawJDorRCyaPMu5AUFzGmkJ8A3-Y7PhsV2b7SgeuqGGXum59Z5iAK-gSenimfenE7Ld_Oj99ofeCASh9b4WBp2GEK0Eln1m_N6W5ZkQGYl6K08V8qTjVZyak998sIZLSUdmAtyx3VzxIVDLkzp7smkrxJfSyJqrzOGiPRnvvNelJ75Blre_mwM7XfCPyGurxyHzHcAZa-Bg72NI1mwThg5jlFQdrwBCxZl-dOMR2NI0Y33dCt4gxWbFy&vid=1670218275-YgFsla&eventSubField=eventSub9&eventField=event9&botScore=0.5
172.67.75.44200 OK0 B