Report - camwhores.zip

Report Overview

Visited public
2025-04-13 15:16:42
Tags
URL
camwhores.zip
Finishing URL
www.camwhores.zip/
IP / ASN
162.255.119.115
#22612 NAMECHEAP-NET
Title
camwhores.zip - camwhores Ressurser og informasjon

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
camwhores.zip	unknown	2023-06-07	2024-12-31	2025-04-12	880 B	35 kB	0.0.0.0
www.camwhores.zip	unknown	2023-06-07	2024-12-31	2025-04-12	1.3 kB	36 kB	91.195.240.19
img.sedoparking.com	54200	2001-09-18	2013-04-22	2025-04-09	1.4 kB	78 kB	205.234.175.175

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-04-13 15:16:25	low	Client IP	162.255.119.115	ET INFO HTTP Request to a *.zip Domain
2025-04-13 15:16:26	low	Client IP	91.195.240.19	ET INFO HTTP Request to a *.zip Domain
2025-04-13 15:16:31	low	Client IP	162.255.119.115	ET INFO HTTP Request to a *.zip Domain
2025-04-13 15:16:36	low	162.255.119.115	Client IP	ET INFO Namecheap URL Forward
2025-04-13 15:16:41	low	162.255.119.115	Client IP	ET INFO Namecheap URL Forward

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	www.camwhores.zip/	ScriptElement	3.4 kB	2025-04-13	2025-04-13
Pretty URL www.camwhores.zip/ IP 91.195.240.19 ASN #47846 SEDO GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-13 15:16 Last Seen2025-04-13 15:16 Times Seen1 Hash 696bdc7ec68d696f1f0eb0639b14399f 90b3057a0989f98cdb3f447b636d734c1447b6bb ef3d7645279db5967a9fe7c39aba1d39ff65cc32b9747f2d93f7cb06ed358bbd Loading...

	www.camwhores.zip/	ScriptElement	916 B	2024-05-24	2025-05-10
Pretty URL www.camwhores.zip/ IP 91.195.240.19 ASN #47846 SEDO GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-24 00:49 Last Seen2025-05-10 21:27 Times Seen752 Hash cbb3d2ae8e9948970837ce73e3f47ef8 26a24bc9b9af1b731d839ddda11d87665c2f894f 9b8e88ae70dfa4837c62be1a9365b23b059a034f76554ad476098e72c1fd8a71 Loading...

HTTP Transactions (7)

URL IP Response Size

camwhores.zip/

0.0.0.0

0 B

URL User Request GET
camwhores.zip/
IP
0.0.0.0:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	low	ET INFO HTTP Request to a *.zip Domain
suricata	low	ET INFO HTTP Request to a *.zip Domain
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward

HTTP Headers

GET / HTTP/1.1
Host: camwhores.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

camwhores.zip/

162.255.119.115

302 Found

35 kB

URL User Request GET
camwhores.zip/
IP
162.255.119.115:80
ASN
#22612 NAMECHEAP-NET

File type

Size
35 kB (34826 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	low	ET INFO HTTP Request to a *.zip Domain
suricata	low	ET INFO HTTP Request to a *.zip Domain
suricata	low	ET INFO Namecheap URL Forward
suricata	low	ET INFO Namecheap URL Forward

HTTP Headers

GET / HTTP/1.1
Host: camwhores.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Sun, 13 Apr 2025 15:16:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 48
Connection: keep-alive
Location: http://www.camwhores.zip/
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx

www.camwhores.zip/

91.195.240.19

200 OK

35 kB

URL User Request GET
www.camwhores.zip/
IP
91.195.240.19:443
ASN
#47846 SEDO GmbH

Certificate
IssuerDigiCert Inc
Subjectwww.camwhores.zip
Fingerprint48:01:B3:A3:FB:7C:A5:BF:35:00:BA:EF:85:AC:41:33:6B:96:DD:AD
ValidityTue, 31 Dec 2024 00:00:00 GMT - Wed, 31 Dec 2025 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (10836)
Size
35 kB (34826 bytes)
Hash
5f606df52286e88a24600c1d9e1cfc4a
fafa08050c9b3674c42c6d45db775b482f724aac
450eb952a80f1d85245bf899e2cc871c27d33ac80eff3d28d0dff70f0ab18a93

Detections

NIDS	Severity	Alert
suricata	low	ET INFO HTTP Request to a *.zip Domain

HTTP Headers

GET / HTTP/1.1
Host: www.camwhores.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 13 Apr 2025 15:16:31 GMT
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Sun, 13 Apr 2025 15:16:31 GMT
pragma: no-cache
server: Parking/1.0
vary: Accept-Encoding
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_BPuXqqU1NCoMEfKduXZ1GyoHNNvwx33JI/PLYhGf7nFT0dtnLwKCzLcEollNfjlAAn1rnnZZ/ncIv9WHC76Spg==
x-cache-miss-from: parking-6bd8db5ff7-vj4dr
X-Firefox-Spdy: h2

img.sedoparking.com/templates/bg/arrows-curved.png

205.234.175.175

200 OK

14 kB

URL GET
img.sedoparking.com/templates/bg/arrows-curved.png
IP
205.234.175.175:443
ASN
#30081 CACHENETWORKS

Requested by
https://www.camwhores.zip/
Certificate
IssuerGlobalSign nv-sa
Subject*.cachefly.net
FingerprintE3:21:BF:A0:AC:70:6E:19:F1:83:A3:CB:83:F9:6F:0F:E0:46:F1:3C
ValidityTue, 12 Nov 2024 20:01:06 GMT - Sun, 14 Dec 2025 20:01:05 GMT

File type
PNG image data, 413 x 594, 8-bit/color RGBA, non-interlaced
Size
14 kB (13502 bytes)
Hash
107694ee1e94990d97b7e58651ffd6a0
7dd9ae7badf78be01ea0623df1e90171348716ff
7aa2a3e9a9575a27f5593c3b0357423128c468a46ed20d284ce5a21555ee67bc

HTTP Headers

GET /templates/bg/arrows-curved.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.camwhores.zip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 13 Apr 2025 15:16:32 GMT
content-type: image/png
content-length: 13502
access-control-allow-origin: *
cache-control: max-age=604800
expires: Sun, 20 Apr 2025 15:16:32 GMT
x-cfhash: "107694ee1e94990d97b7e58651ffd6a0"
x-cff: B
last-modified: Tue, 12 Oct 2021 05:19:02 GMT
x-cf3: H
cf4age: 0
x-cf-tsc: 1735941001
cf4ttl: 31536000.000
x-cf2: H
server: CFS 1124
x-cf-reqid: 4e9e6755c9a129d797fb092ec4b2bfdf
x-cf1: 11696:fB.arn1:cf:nom:cacheN.arn1-01:H
accept-ranges: bytes
X-Firefox-Spdy: h2

img.sedoparking.com/templates/images/hero_nc.svg

205.234.175.175

200 OK

48 kB

URL GET
img.sedoparking.com/templates/images/hero_nc.svg
IP
205.234.175.175:443
ASN
#30081 CACHENETWORKS

Requested by
https://www.camwhores.zip/
Certificate
IssuerGlobalSign nv-sa
Subject*.cachefly.net
FingerprintE3:21:BF:A0:AC:70:6E:19:F1:83:A3:CB:83:F9:6F:0F:E0:46:F1:3C
ValidityTue, 12 Nov 2024 20:01:06 GMT - Sun, 14 Dec 2025 20:01:05 GMT

File type
SVG Scalable Vector Graphics image
Size
48 kB (48097 bytes)
Hash
5a2c392e7acdf6e9de6e00129500503c
c8d0f80381e4ce180b5eb3c4c98539907292a7bb
878da09a057ec8f1775cdc522e5f7ec44966df547a87a9c29826ba114833c24b

HTTP Headers

GET /templates/images/hero_nc.svg HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.camwhores.zip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 13 Apr 2025 15:16:32 GMT
content-type: image/svg+xml
content-length: 20346
access-control-allow-origin: *
cache-control: max-age=604800
expires: Sun, 20 Apr 2025 15:16:32 GMT
x-cfhash: "5a2c392e7acdf6e9de6e00129500503c"
x-cff: B
last-modified: Thu, 05 Oct 2023 09:16:15 GMT
vary: Accept-Encoding
x-cf3: H
cf4age: 0
x-cf-tsc: 1742134150
cf4ttl: 31536000.000
content-encoding: gzip
x-cf2: H
server: CFS 1124
x-cf-reqid: 659d8406f4a0d56aefb7b74ca361fd28
x-cf1: 11696:fB.arn1:cf:nom:cacheN.arn1-01:H
accept-ranges: bytes
X-Firefox-Spdy: h2

www.camwhores.zip/search/tsc.php?ses=ogco4MK48KWW4hLGpb2dbNbWAhONC8oLvoqZpAvZ1FNWaFuOH-YsCwo8DBSjIR1Y3T7yXEpJLYFCvKEsdbw0MiI-aMzl5gx7JbcpHATB4Pinf8vQJo9AAmvEZ9XZp706x6WuMZdQMbcjMT4rhDTx_ywOrJ30-QS6f5UuHPjso9C6Gx3Lz7e984yJvt53vgdXMNAGdd15Sx1EuhKCQvNF3rnRhxyENxIaBAF8OeYiR9FnW_OL7FW2hVoNWRIySoMJ8C3PhRDMEPxTFu5Tq3KG12f05siHaDiiAS0JdvOjFT0Bj1Yt0xagKhMzop5hu7K7PzVB_wydCSyPiukpNN0ZiURT3j-4PjPfKnA32yOreQbavJFVHLPk0GohGmTdA&cv=2

91.195.240.19

200 OK

0 B

URL GET
www.camwhores.zip/search/tsc.php?ses=ogco4MK48KWW4hLGpb2dbNbWAhONC8oLvoqZpAvZ1FNWaFuOH-YsCwo8DBSjIR1Y3T7yXEpJLYFCvKEsdbw0MiI-aMzl5gx7JbcpHATB4Pinf8vQJo9AAmvEZ9XZp706x6WuMZdQMbcjMT4rhDTx_ywOrJ30-QS6f5UuHPjso9C6Gx3Lz7e984yJvt53vgdXMNAGdd15Sx1EuhKCQvNF3rnRhxyENxIaBAF8OeYiR9FnW_OL7FW2hVoNWRIySoMJ8C3PhRDMEPxTFu5Tq3KG12f05siHaDiiAS0JdvOjFT0Bj1Yt0xagKhMzop5hu7K7PzVB_wydCSyPiukpNN0ZiURT3j-4PjPfKnA32yOreQbavJFVHLPk0GohGmTdA&cv=2
IP
91.195.240.19:443
ASN
#47846 SEDO GmbH

Requested by
https://www.camwhores.zip/
Certificate
IssuerDigiCert Inc
Subjectwww.camwhores.zip
Fingerprint48:01:B3:A3:FB:7C:A5:BF:35:00:BA:EF:85:AC:41:33:6B:96:DD:AD
ValidityTue, 31 Dec 2024 00:00:00 GMT - Wed, 31 Dec 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /search/tsc.php?ses=ogco4MK48KWW4hLGpb2dbNbWAhONC8oLvoqZpAvZ1FNWaFuOH-YsCwo8DBSjIR1Y3T7yXEpJLYFCvKEsdbw0MiI-aMzl5gx7JbcpHATB4Pinf8vQJo9AAmvEZ9XZp706x6WuMZdQMbcjMT4rhDTx_ywOrJ30-QS6f5UuHPjso9C6Gx3Lz7e984yJvt53vgdXMNAGdd15Sx1EuhKCQvNF3rnRhxyENxIaBAF8OeYiR9FnW_OL7FW2hVoNWRIySoMJ8C3PhRDMEPxTFu5Tq3KG12f05siHaDiiAS0JdvOjFT0Bj1Yt0xagKhMzop5hu7K7PzVB_wydCSyPiukpNN0ZiURT3j-4PjPfKnA32yOreQbavJFVHLPk0GohGmTdA&cv=2 HTTP/1.1
Host: www.camwhores.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.camwhores.zip/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 13 Apr 2025 15:16:32 GMT
server: Parking/1.0
x-cache-miss-from: parking-6bd8db5ff7-qxxxr
content-length: 0
X-Firefox-Spdy: h2

img.sedoparking.com/templates/logos/sedo_logo.png

205.234.175.175

200 OK

15 kB

URL GET
img.sedoparking.com/templates/logos/sedo_logo.png
IP
205.234.175.175:443
ASN
#30081 CACHENETWORKS

Requested by
https://www.camwhores.zip/
Certificate
IssuerGlobalSign nv-sa
Subject*.cachefly.net
FingerprintE3:21:BF:A0:AC:70:6E:19:F1:83:A3:CB:83:F9:6F:0F:E0:46:F1:3C
ValidityTue, 12 Nov 2024 20:01:06 GMT - Sun, 14 Dec 2025 20:01:05 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15086 bytes)
Hash
def00c11b1596db4efee6a9fbe64fc27
bd298981e6d8d7e4ffa18abcf687041f4246672d
95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4

HTTP Headers

GET /templates/logos/sedo_logo.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.camwhores.zip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 13 Apr 2025 15:16:32 GMT
content-type: image/png
content-length: 15086
access-control-allow-origin: *
cache-control: max-age=604800
expires: Sun, 20 Apr 2025 15:16:32 GMT
x-cfhash: "def00c11b1596db4efee6a9fbe64fc27"
x-cff: B
last-modified: Mon, 11 Jan 2021 07:44:34 GMT
x-cf3: H
cf4age: 0
x-cf-tsc: 1735940836
cf4ttl: 31536000.000
x-cf2: H
server: CFS 1124
x-cf-reqid: f146d3e51eea9e3b8cfc477a3ce6d171
x-cf1: 11696:fB.arn1:cf:nom:cacheN.arn1-01:H
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (7)

URL User Request GET

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET