Report Overview

  1. Visited public
    2024-07-19 15:59:52
    Tags
    Submit Tags
  2. URL

    jteen1.com/dl/aHR0cHM6Ly9rZW5maWxlcy5jb20va3cwdnJpMTQybHdoLzJsaWh6NDgwcC5tcDQuaHRtbA==

  3. Finishing URL

    kenfiles.com/kw0vri142lwh/2lihz480p.mp4.html

  4. IP / ASN
    172.67.184.30

    #13335 CLOUDFLARENET

    Title
    (1) New Message!
Detections
urlquery
0
Network Intrusion Detection
9
Threat Detection Systems
2

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
r10.o.lencr.orgunknown2020-06-292024-06-06 21:45:112024-07-18 18:12:17
xadsmart.com858742020-04-182020-04-19 22:24:062024-07-17 10:15:09
cdn.jsdelivr.net4392012-05-162012-09-30 02:15:092024-07-18 18:29:13
syndication.exdynsrv.com342432015-10-202016-04-20 20:35:152024-07-16 16:53:46
r11.o.lencr.orgunknown2020-06-292024-06-07 07:43:572024-07-18 18:12:20
cdn.creative-bars1.comunknown2022-11-012022-11-15 17:46:222024-07-18 18:47:32
a.exdynsrv.com406632015-10-202019-05-21 07:34:422024-07-17 15:42:06
4.adsco.re:2087unknownunknownNo dataNo data
o.pki.googunknown2016-06-132024-04-24 13:44:572024-07-18 18:34:38
ocsp.r2m03.amazontrust.comunknown2007-05-112023-02-21 01:06:242024-07-19 16:57:25
proftrafficcounter.comunknown2023-11-162023-11-21 09:55:142024-07-18 21:39:08
cdn.barscreative1.com256482021-09-082021-09-16 13:14:422024-07-19 15:23:47
e5.o.lencr.orgunknown2020-06-292024-06-07 07:39:252024-07-19 09:01:05
blackedacquit.comunknownunknownNo dataNo data
fonts.gstatic.comunknown2008-02-112014-09-09 02:40:212024-07-18 21:12:02
unseenreport.comunknown2022-03-302022-03-30 16:33:172024-07-18 20:04:34
6.adsco.re:2087unknownunknownNo dataNo data
4.adsco.re191792017-02-142021-01-04 17:47:522024-07-18 18:51:39
illusiondramaexploration.comunknown2024-06-292024-07-02 08:30:272024-07-17 17:41:20
fonts.googleapis.com88772005-01-252013-06-10 22:14:262024-07-19 14:25:24
kenfiles.comunknown2014-04-062014-10-29 23:11:442024-03-02 14:27:27
jteen1.comunknown2024-04-122024-04-12 17:17:192024-04-18 05:51:01
e6.o.lencr.orgunknown2020-06-292024-06-07 08:35:092024-07-18 18:12:03
ez7umpgxigqz.s4.adsco.reunknownunknownNo dataNo data
www.googletagmanager.com752011-11-112013-05-22 04:07:372024-07-18 18:37:13
adsco.re85412017-02-142017-04-03 05:11:302024-07-18 18:51:39
cdn.kenfiles.comunknown2014-04-062024-01-14 16:33:492024-01-14 16:33:50
recordedthereby.comunknown2024-05-082024-05-14 07:24:532024-07-19 11:05:56
6.adsco.re178122017-02-142018-01-15 05:15:292024-07-18 18:51:39
ez7umpgxigqz.l4.adsco.reunknownunknownNo dataNo data

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
lowClient IP 185.200.118.90
ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
lowClient IP 38.132.109.186
ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
lowClient IP 185.200.116.90
ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
lowClient IP 185.200.118.90
ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
lowClient IP 38.132.109.186
ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
lowClient IP 185.200.116.90
ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
lowClient IP 185.200.118.90
ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
lowClient IP 38.132.109.186
ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
lowClient IP 185.200.116.90
ET INFO Session Traversal Utilities for NAT (STUN Binding Request)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
mediumunseenreport.comSinkholed

ThreatFox

No alerts detected


JavaScript (161)

HTTP Transactions (82)

URLIPResponseSize
r10.o.lencr.org/
23.36.77.32 504 B
r10.o.lencr.org/
23.36.77.32 504 B
r10.o.lencr.org/
23.36.77.32 504 B
r10.o.lencr.org/
23.36.77.32 504 B
6.adsco.re/
104.17.167.186 45 B
6.adsco.re:2087/
104.17.167.186 45 B
4.adsco.re:2087/
162.252.214.5 62 B
4.adsco.re/
162.252.214.5 62 B
e5.o.lencr.org/
23.33.119.27 346 B
ez7umpgxigqz.l4.adsco.re/
185.200.118.51 0 B
e5.o.lencr.org/
23.33.119.27 345 B
6.adsco.re/
104.17.166.186 45 B
r10.o.lencr.org/
23.36.76.226 504 B
r10.o.lencr.org/
23.36.76.226 504 B
r10.o.lencr.org/
23.36.76.226 504 B
r10.o.lencr.org/
23.36.76.226 504 B
r10.o.lencr.org/
23.36.76.226 504 B
GET jteen1.com/dl/aHR0cHM6Ly9rZW5maWxlcy5jb20va3cwdnJpMTQybHdoLzJsaWh6NDgwcC5tcDQuaHRtbA==
104.21.68.7200 OK14 kB
e6.o.lencr.org/
23.36.77.32 345 B
adsco.re/p
162.252.214.5 907 B
xadsmart.com/vzmfwpysdahwhpllm?vdIoBczZ=BQNSAAAAAAAACZUAAqKM42Lu7d9Na1B5hZmbQ2kd78m1OPfvO3s9P1okzihxlxNKeS-q2Jr46PRnE6M0rwKgn2F4i1sQhFXtPO_19hQvXGYfFjmVsIYhyLlLJAkBBabYetW6kdA56cMsmGPeNmai36UWxGjV3HP4rEgpzCdMcCalVSh9Nxsqk1E1RjnuVW3G2Z2WCzHLqYan8ZeSSeKxUGMQ9enFfuLEEp2ggwWSvz2pWb--YjM4dgdPK0V3bD0EvIL0tCyZzlnxcp1lz1AxUC_EC_IJ1xdUIg9yOstPkm7YnE6NN6sb7Q67FP1hx8M2-Jqlmp9vzpgxo0VPJlFng7C17X6A6jSm1ajVUczPyTNWmcZdn93l_PAwARxW9vD55vRphqBu0vXn9JZKA4_KsaYTCNKtOgIHApGBZk7CqyH1NOAKIpeAI9FkWRjt36Bd0WDppVXXA92-u7t3dsGPr_oX8q8mM-rnEBoZ2xZATvUhY2eOW-yCVwoyMqkajhfkxEhukaKVj_NL9uW6KSmuYyxRYs1Z3H8uUYGm6JYTWnhzD6RBRUZoZTeAvr47rhcs8w8FTa1yjAQTR3wvBn3W_3M-Nyo4Kyw04qA6vizfalceKxvSMaOQJk-Hp2NUNGDtxteFj4_aT26gK8pdWzm2XEccppiY6Ek3T_lAPZPtJ9oZdR1t3OMr0nAARmkusxsnhsPLjdpTu6bBUkxbdYbZKBXzIL7ADpVCw2CJMAzYVoa78Mu5wWleTs63-vkMO-yVBoHSvGQMxgvcRJ3IYoX3VZYYxe5vem0z1CaZV7yX2XXAhbUfngmO-sKxy6fDYK0neD4NGVVC-PEfK5ATXtOyqLw995yb8bCsdssR4NnQ4CJgrg4tMA2-5IqHoDcvjaDLk1wrYzRL3PULJ8t5AVYZusuQXP73jPz4bD3H2yX7JIiAv2pnKTCJFPZIoq0B22F0RCA5v9Uxz9C9cHQnfWvrENPduuccQs81A5AugYt2SlMNTUqrR6jGRqpOslnjUToSJpWo04YDKVCnB9z_OV2O0m2aCQQJTUdzZkpAEZqa7e8DlCvAZWL60D_mYE_cb2vhAFMlpUrdCtt050jEEcV-H5hBylie4S8rO9V18wIQUDD52_jsY0Vm1_clhWr9&qFYIdMhR=4&fpqLCUAl=5091402&gYITjKxH=&bfGJvLxk=2,2,0&JHjqPlaR=&nWrQXtDA=&s=1280,1024,1,1280,1024,0
104.153.197.251 44 B
ez7umpgxigqz.s4.adsco.re/
185.200.116.51 0 B
r10.o.lencr.org/
23.36.76.226 504 B
GET cdn.jsdelivr.net/npm/js-cookie@3.0.1/dist/js.cookie.min.js
151.101.193.229200 OK841 B
o.pki.goog/wr2
216.58.207.195 471 B
GET www.googletagmanager.com/gtag/js?id=G-15R1WCXN4T
142.250.74.168200 OK100 kB
ocsp.r2m03.amazontrust.com/
143.204.53.97 471 B
ocsp.r2m03.amazontrust.com/
143.204.53.97 471 B
GET cdn.kenfiles.com/js/share.js?ver=3.4b2701
54.240.174.81200 OK354 B
o.pki.goog/wr2
216.58.207.195 471 B
ocsp.r2m03.amazontrust.com/
143.204.53.97 471 B
o.pki.goog/wr2
216.58.207.195 472 B
r10.o.lencr.org/
23.36.76.226 504 B
o.pki.goog/wr2
216.58.207.195 472 B
ocsp.r2m03.amazontrust.com/
143.204.53.97 471 B
ocsp.r2m03.amazontrust.com/
143.204.53.97 471 B
GET blackedacquit.com/3e/12/28/3e1228cd32241dca36e27cbd0333dac5.js
192.243.59.13200 OK16 kB
ocsp.r2m03.amazontrust.com/
143.204.53.97 471 B
GET cdn.kenfiles.com/xfsdl/frontend3.2.1/dist/assets/fonts/Nioicon.ttf?yvwlt8
54.240.174.81200 OK298 kB
ocsp.r2m03.amazontrust.com/
143.204.53.97 471 B
GET cdn.kenfiles.com/images/flags.png
54.240.174.81 16 kB
GET cdn.kenfiles.com/xfsdl/frontend3.2.1/dist/assets/js/init_scripts.js?3.4b2701
54.240.174.81200 OK2.1 kB
GET proftrafficcounter.com/stats
18.184.181.242200 OK40 B
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.67200 OK16 kB
GET fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.67200 OK16 kB
GET fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2
142.250.74.67200 OK39 kB
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.67200 OK16 kB
GET fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2
142.250.74.67200 OK39 kB
POST syndication.exdynsrv.com/v1/api.php
95.211.229.245200 OK78 B
o.pki.goog/wr2
216.58.207.195 471 B
r11.o.lencr.org/
23.36.76.226 504 B
GET unseenreport.com/pxf.gif?uuid=dc268f94-d254-49ab-b095-acfabdf51cc5&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=3e1228cd32241dca36e27cbd0333dac5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=15
192.243.61.225200 OK1 B
GET illusiondramaexploration.com/sbar.json?key=3e1228cd32241dca36e27cbd0333dac5&uuid=dc268f94-d254-49ab-b095-acfabdf51cc5%3A1%3A1
192.243.59.12200 OK6.5 kB
r10.o.lencr.org/
23.36.76.226 504 B
GET illusiondramaexploration.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujgFZhAVlQVDEOSgomEn%2FmOmZcQ9ijFmicbPsKooXqa6qnpRT3dVUdU9PgofgguxFGDx66nyTbFCD6B%2FgKpMFkYCQ8RTF%2FA2CuHiUGaPDPuh%2BP7734Hvfq0%2F2inPio6Bnq2%2FpHakUXW7W3doL73ne1dqGTItBbdAOPwgbV2um%2F3InrLsv1q4J1tPLvuu5rud6tTVpRKwHy1MQMjvqePWOW2%2F4da%2FZwMA8nNvCgaUOeP%2BcPAHJJ4v3nSuQbIw0%2BWZV2F6us5deTwpFc23Q54fvpL1UlymSeRgbB3F6eNENbU%2FX7kGnBzO60P3%2FGyM5Ic6P9xClhxckEfX3ZzwjBZEi4o%2Bh7I8h1BiSjsH0bUh%2BSgDGcX0TaXL3ujYl3f4XpVN0QhYf%2FAlZTsji71eQJl%2BvKDmo3dKqyKVOLQZxBTkYQ3bHyIpj5DsLkOUxWP4xJP%2BZLD%2FYQJrsb1qlIfnZc5z5YTvuNJa432wsNTo0WorcTnOJsphGPG56jDVnAkk5hozHUGIIah0U0086KGIHReYg4Wc15nley%2BWMuu0OYwFviSjkrkdbsUc9N2yjYNMdhsizIZgagpldZGYXPTmEKX6A3apguQObE%2FR5hVIQlJagpASlJChzgrJfHXBlfVvd5coWkXfh%2FQsfVCOdd%2Ffogc67IiWgZgjDq73snDw%2BFdB5%2F9I19MRZLRCe77cZD3y%2F4XFGg1D4LRZxNwgCTlkTVlaQdmG27o6ckGd%2FfQOZnJBLH%2F2GiB7DqmMw%2BTxo8QxoWYFuVdhJj3oijaUSts50Aq4rZPki8m1nT52Tp2cnrP%2B9BMFOyIWBmQqZqfChvE%2FQVXdGN3VJ9m%2Fq0pJvN7NcJnKHTs97K6e5cL58U2yX2vD1VTv84lU2Babh0dvC5hs05TLtWvLViuRcmDVtmCDfrdt3RXSjsFsrhUmLbOPGa2vrSWaEtVKnY1B5evkymJyQR3%2F6a%2FZunzx%2FCtKMYYoKSTFnKvUxWLYLm81rVhMYNc%2BjzEFZVCPjR%2FOikgRKzHMaVbDi5Ps%2F%2FhuaxyNDp9NUVnv2DrpmATS%2FjTSp0DcV%2BqoCVUPY4pFRnpmTV34JZoZILYwiZRb2I2XUZzORp78AVp7VWkHg0rDT9FotKlpRw2%2FHoccp9RuhH4Y0QG4n8eefRv8AAAD%2F%2FwEAAP%2F%2F9vp08JEEAAA%3D
192.243.59.12200 OK7 B
GET illusiondramaexploration.com/pixel/sbls?bv=24.22.2032&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Ffinanceskipper%2Fmessage_redcircle2%2F16%2Findex.html&l=1545&fd=85
192.243.59.12200 OK0 B
GET cdn.kenfiles.com/xfsdl/frontend3.2.1/dist/images/logo-dark.png?3.4b2701
54.240.174.81 73 kB
GET illusiondramaexploration.com/pixel/sbls?bv=24.22.2032&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Ffinanceskipper%2Fmessage_redcircle2%2F16%2Fcss%2Fstyle.css&l=3664&fd=57
192.243.59.12200 OK0 B
GET cdn.creative-bars1.com/sb/notifications/utility/default/us/blog/financeskipper/message_redcircle2/16/css/animate.css
172.67.141.24200 OK4.9 kB
GET illusiondramaexploration.com/pixel/sbls?bv=24.22.2032&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Ffinanceskipper%2Fmessage_redcircle2%2F16%2Fjs%2Fscript.js&l=386&fd=59
172.240.127.234200 OK0 B
GET fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.67200 OK16 kB
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.67200 OK16 kB
GET illusiondramaexploration.com/pixel/sbs?c=1
172.240.127.234200 OK0 B
GET illusiondramaexploration.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSy2sk1Re%2BlV%2FgxyAMKAOCIvZCQcF06tFPZyGOY4bROBlmFMWN3Fd1rn2rbnFvVVcnuAgOyGyExqWrytfJBDWI%2FgGO0hkQCQhpV1HM3yCIg0vpNtp4oOo8vnPgO9%2B5H%2B0WZyREQU%2BvvmG2ldZ0tVn3a8%2B9EwSXa%2BsqLYa1Yaf1XqtxuWYHL3Zbdf%2F52jXJ%2B2Y19APfD%2FygtqasjM1wdQZCZYfdoN71642wHjQbGNr%2F5q7w4KgHMTgjj0GJ6fID7xIUnyBNvroqXT832QuvJoWmubEYiIO30n5qyhTJIoythzg9OO%2BGcSdr92HS%2FTldmMG%2FjUxNiff9fbD04Jwk2GBvzpNpyBRMPIJyMIHUEyg6ATd3oMQJAbjAjQ2kyb0bxpZ062%2BUztApWX74O1Q5Jcu%2FXkKafHlFq2HtttFFrkzqMIwrqOEEqjdBVhwh316CKo%2FA8w%2BhxI9k9eE60mRvw2kDJU6fETxsdeJuY0WEzcZKo0vZCvO7zRXKY8pE3Aw4b84FUmoCFU%2Bg5QjUeShmn%2FJQxB6KzEMiTms8CIK2Lzj1O13OI9GWrCX8gLbjgAZ%2Bq4OCz3YYIc9G4HoEbneQ2R301Qi2%2BA5us4ITHlxOMBAVSklQOoKSEpSKoMwJykG1L7QLXXVPaFew4NyH5z6qxibv7dJ9k%2FdkSkDtCFZUu9kZeXQmoPfuhWvoy9NaJIMw7HARhWEjEJxGLRm2ORN%2BFEWC8iacqqDc0nzdbTUlT%2F%2F8GjI1JRc%2B%2BAWMHsHpI3D1LGjxFGhZgW5W2E4P%2BzKNlZauzk0CYSpk%2BTLyLW9Xn5En5yes%2F7kCyY%2FJuYHbCpmt8L56QNDTd8e3TEn2bpnSka83slwlapvOzns7p7n0Pn9dbpXGiutX3eizl%2FkMmIWHb0qXr9NUqLTnyBdXlBDSrhnLJfnmuntbspuF27xS2LTI1m%2B%2BsnY9yax0Tpl0AqpOLl4EV1Py%2Fx%2F%2BmL%2Fbx8%2BegLIT2KJCUiyYKnMEnu3AZYuaMwRWL3KWeSiLamxDtihqRaDlIqesgpPH3%2F72z9AiHls6m6aq2nV30bNLoPkdpEmFga0w0BWoHsEV%2FxvnmT1%2B6adobmB6acy0Xdpj2upP5iLPfhGcOq1FvmgzGcs2k41mI5ZcsGaT%2BTzmLBKdDkfupvGnH7O%2FAAAA%2F%2F8BAAD%2F%2F3YuoRiRBAAA
192.243.59.12200 OK7 B
GET kenfiles.com/favicon.ico
108.62.106.198200 OK4.0 kB
GET recordedthereby.com/sfp.js
172.67.208.217200 OK34 kB
GET cdn.kenfiles.com/xfsdl/frontend3.2.1/dist/assets/js/bundle.js?3.4b2701
54.240.174.81200 OK778 kB
GET cdn.creative-bars1.com/sb/notifications/utility/default/us/blog/financeskipper/message_redcircle2/16/css/style.css
172.67.141.24200 OK3.7 kB
GET cdn.kenfiles.com/xfsdl/frontend3.2.1/dist/assets/css/xfsdl.css?3.4b2701
54.240.174.81200 OK731 kB
GET cdn.kenfiles.com/css/style.ext.css?3.4b2701
54.240.174.81200 OK12 kB
GET kenfiles.com/kw0vri142lwh/2lihz480p.mp4.html
108.62.106.198200 OK33 kB
GET cdn.creative-bars1.com/sb/notifications/utility/default/us/blog/financeskipper/message_redcircle2/16/img/sale3.jpg
172.67.141.24200 OK65 kB
GET fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK7.0 kB
GET a.exdynsrv.com/ad-provider.js
185.76.9.26200 OK166 kB
GET cdn.creative-bars1.com/sb/notifications/utility/default/us/blog/financeskipper/message_redcircle2/16/js/script.js
172.67.141.24200 OK386 B
GET cdn.kenfiles.com/xfsdl/frontend3.2.1/dist/images/logo.png?3.4b2701
0.0.0.0 0 B
GET cdn.barscreative1.com/sb/notifications/utility/default/us/blog/financeskipper/message_redcircle2/16/index.html
45.133.44.3200 OK1.5 kB
GET fonts.googleapis.com/css2?family=Roboto:wght@300;400;500;700&display=swap
142.250.74.106200 OK9.3 kB
GET fonts.googleapis.com/css2?family=Nunito:wght@400;700&display=swap
142.250.74.106200 OK3.5 kB
GET cdn.kenfiles.com/xfsdl/frontend3.2.1/dist/assets/css/theme.css?3.4b2701
54.240.174.81200 OK1.9 kB
GET illusiondramaexploration.com/pixel/sbls?bv=24.22.2032&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Ffinanceskipper%2Fmessage_redcircle2%2F16%2Fcss%2Fanimate.css&l=78689&fd=295
192.243.59.12200 OK0 B
GET kenfiles.com/xfsdl/frontend3.2.1/dist/assets/js/scripts.js?3.4b2701
108.62.106.198200 OK20 kB