| amazon-shoppings.com/ | 37.48.65.152 | | 11 B |
IP37.48.65.152:0 ASN#60781 LeaseWeb Netherlands B.V.
File typeASCII text, with no line terminators Hash32682312d17c7cbf18e73594f5570319 60e22121bdd0bc71cdb2bae2a3aa577006b2eae9 e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: amazon-shoppings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 11
date: Thu, 18 Apr 2024 05:53:38 GMT
location: http://iphig-fib.com/zclkvisitor/005bc175-fd48-11ee-b5ee-125f52cc9129/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=07811130-921d-11ee-b099-123af5e664ff
server: Cowboy
set-cookie: sid=0052c494-fd48-11ee-b65f-9771a29360fd; path=/; domain=.amazon-shoppings.com; expires=Tue, 06 May 2092 09:07:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
|
|
| iphig-fib.com/zclkvisitor/005bc175-fd48-11ee-b5ee-125f52cc9129/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=07811130-921d-11ee-b099-123af5e664ff | 18.233.80.6 | | 2.7 kB |
URL iphig-fib.com/zclkvisitor/005bc175-fd48-11ee-b5ee-125f52cc9129/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=07811130-921d-11ee-b099-123af5e664ff IP18.233.80.6:0
File typeHTML document, ASCII text, with very long lines (400) Hashf60ca38e72f6086a8cede9ef130281c8 f0c9bc60eadbf9805066464ef28adc1253171818 2d4f7c0dd41fb0dc3f5b6e77c34adfbd417dfa7094fcd3ca07451979e82ef442
GET /zclkvisitor/005bc175-fd48-11ee-b5ee-125f52cc9129/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=07811130-921d-11ee-b099-123af5e664ff HTTP/1.1
Host: iphig-fib.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 18 Apr 2024 05:53:38 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 2730
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
|
|
| iphig-fib.com/zclkredirect?visitid=005bc175-fd48-11ee-b5ee-125f52cc9129&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC | 34.239.34.67 | 200 | 1.6 kB |
URL User Request GET HTTP/1.1iphig-fib.com/zclkredirect?visitid=005bc175-fd48-11ee-b5ee-125f52cc9129&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC IP34.239.34.67:80
File typeHTML document, ASCII text, with very long lines (776) Hash8f7766cd1e31426a19aaf78637aff4e3 c6ec103d8d354ee01f657715f2a4675432700391 0c099e404e64118923187e6822ea972110fc0d9f913560a3048ece0c9fee6aa6
GET /zclkredirect?visitid=005bc175-fd48-11ee-b5ee-125f52cc9129&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC HTTP/1.1
Host: iphig-fib.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://iphig-fib.com/zclkvisitor/005bc175-fd48-11ee-b5ee-125f52cc9129/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=07811130-921d-11ee-b099-123af5e664ff
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 18 Apr 2024 05:53:39 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 1638
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
redirected: JS
|
|
| iphig-fib.com/favicon.ico | 34.239.34.67 | 404 | 653 B |
URL GET HTTP/1.1iphig-fib.com/favicon.ico IP34.239.34.67:80
Requested byhttp://iphig-fib.com/zclkredirect?visitid=005bc175-fd48-11ee-b5ee-125f52cc9129&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC
File typeHTML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators Hashba2732b1b2fa2626ffaa15f62f9e7d66 203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe 879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: iphig-fib.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://iphig-fib.com/zclkredirect?visitid=005bc175-fd48-11ee-b5ee-125f52cc9129&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404
Date: Thu, 18 Apr 2024 05:53:39 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Content-Language: en
|
|
| 2.ew-verlag-analytics.com/scripts/jump/track_generic_keyword.php?generic_keyword=electronics&country=NO&clickid=zr005bc175fd4811eeb5ee125f52cc912967b5cb048a624c47826408413925c494081485abd8d5804a2f&keyword=amazon-shoppings%2Camazon-shoppings.com%2Camazon%2Conline+shopping%2Celectronics%2Cwww+amazon%2Cxbox+one%2Camazon+black+friday%2Coffice+supplies&traffic_type=DOMAIN&visit_cost=0.023400&browser=Firefox&campaign_id=2281303&campaign_name=electronics+-+NO+-+GenericKeyword+-+CPC1&carrier=unknown&city=Oslo&device_id=&device=&geo=NO&keyword_match=broad&long_campaign_id=07811130-921d-11ee-b099-123af5e664ff&match=electronics&os=Linux®ion=OSLO&source=badious-buzzard&target=yankee-gas-kgj8n6d83m&visitor_type=NON-ADULT | 0.0.0.0 | | 0 B |
URL User Request GET 2.ew-verlag-analytics.com/scripts/jump/track_generic_keyword.php?generic_keyword=electronics&country=NO&clickid=zr005bc175fd4811eeb5ee125f52cc912967b5cb048a624c47826408413925c494081485abd8d5804a2f&keyword=amazon-shoppings%2Camazon-shoppings.com%2Camazon%2Conline+shopping%2Celectronics%2Cwww+amazon%2Cxbox+one%2Camazon+black+friday%2Coffice+supplies&traffic_type=DOMAIN&visit_cost=0.023400&browser=Firefox&campaign_id=2281303&campaign_name=electronics+-+NO+-+GenericKeyword+-+CPC1&carrier=unknown&city=Oslo&device_id=&device=&geo=NO&keyword_match=broad&long_campaign_id=07811130-921d-11ee-b099-123af5e664ff&match=electronics&os=Linux®ion=OSLO&source=badious-buzzard&target=yankee-gas-kgj8n6d83m&visitor_type=NON-ADULT IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scripts/jump/track_generic_keyword.php?generic_keyword=electronics&country=NO&clickid=zr005bc175fd4811eeb5ee125f52cc912967b5cb048a624c47826408413925c494081485abd8d5804a2f&keyword=amazon-shoppings%2Camazon-shoppings.com%2Camazon%2Conline+shopping%2Celectronics%2Cwww+amazon%2Cxbox+one%2Camazon+black+friday%2Coffice+supplies&traffic_type=DOMAIN&visit_cost=0.023400&browser=Firefox&campaign_id=2281303&campaign_name=electronics+-+NO+-+GenericKeyword+-+CPC1&carrier=unknown&city=Oslo&device_id=&device=&geo=NO&keyword_match=broad&long_campaign_id=07811130-921d-11ee-b099-123af5e664ff&match=electronics&os=Linux®ion=OSLO&source=badious-buzzard&target=yankee-gas-kgj8n6d83m&visitor_type=NON-ADULT HTTP/1.1
Host: 2.ew-verlag-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://iphig-fib.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|