Report Overview

  1. URL

    servpage-amz223.duckdns.org/cff83bb010339e40f105168e87c165de/8871ae790bbd23165ec50890df561a4f.aspx

  2. IP

    162.241.115.35

    ASN

    #46606 UNIFIEDLAYER-AS-1

  3. Submitted

    2023-02-07T22:10:31Z

    Access

  4. Tags

  5. urlquery detections

    Suspicious - DynDNS domain

Detections

  2. urlquery

    2

  3. Network Intrusion Detection

    5

  4. Threat Detection Systems

    0

Domain Summary

Domain Rank First Seen Last Seen
fonts.gstatic.com (1) unknown 2014-09-09T02:40:21Z 2023-03-13T08:44:36Z
cdn.omniconvert.com (1) 100092 2017-03-14T17:17:41Z 2023-03-13T09:48:19Z
cloudways-static-content.s3.amazonaws.com (1) unknown 2020-11-13T03:19:31Z 2023-03-13T00:54:45Z
ocsp.sectigo.com (1) 487 2019-11-29T12:50:24Z 2023-03-13T08:22:43Z
www.google.com (1) 7 2015-05-10T13:11:19Z 2023-03-13T06:40:43Z
cloudways.com (1) 137142 2013-11-16T04:52:22Z 2023-03-13T01:16:50Z
firefox.settings.services.mozilla.com (2) 867 2020-06-04T22:08:41Z 2023-03-13T05:09:10Z
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-22T01:36:00Z 2023-03-13T05:09:16Z
servpage-amz223.duckdns.org (1) unknown 2023-02-06T15:46:43Z 2023-02-07T23:10:20Z
www.cloudways.com (104) 393652 2014-04-30T09:18:16Z 2023-03-13T09:17:59Z
ocsp.pki.goog (2) 175 2018-07-01T08:43:07Z 2023-03-13T05:09:47Z
www.gstatic.com (1) unknown 2016-07-26T11:37:06Z 2023-03-13T07:57:11Z
r3.o.lencr.org (6) 344 2020-12-02T09:52:13Z 2023-03-13T05:09:07Z
contile.services.mozilla.com (1) 1114 2021-05-27T20:32:35Z 2023-03-13T05:09:13Z
push.services.mozilla.com (1) 2140 2014-10-24T10:27:06Z 2023-03-13T05:09:14Z
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03T13:26:46Z 2023-03-13T05:09:35Z
ocsp.digicert.com (1) 86 2012-05-21T09:02:23Z 2023-03-13T06:00:13Z
ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03T16:20:51Z 2019-03-27T05:05:54Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Severity Source IP Destination IP Alert
medium Client IP Internal IP
ET INFO DYNAMIC_DNS Query to a *.duckdns .org Domain
low Client IP Internal IP
ET INFO DYNAMIC_DNS Query to *.duckdns. Domain
medium Client IP Internal IP
ET INFO DYNAMIC_DNS Query to a *.duckdns .org Domain
low Client IP Internal IP
ET INFO DYNAMIC_DNS Query to *.duckdns. Domain
medium Client IP  162.241.115.35
ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (41)

HTTP Transactions (135)

URL IP Response Size
r3.o.lencr.org/
 23.36.76.226 200 OK 503
r3.o.lencr.org/
 23.36.76.226 200 OK 503
r3.o.lencr.org/
 23.36.76.226 200 OK 503
firefox.settings.services.mozilla.com/v1/
 35.241.9.150 200 OK 939
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
 34.160.144.191 200 OK 5348
contile.services.mozilla.com/v1/tiles
 34.117.237.239 200 OK 12
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
 35.241.9.150 200 OK 329
r3.o.lencr.org/
 23.36.76.226 200 OK 503
push.services.mozilla.com/
 35.164.216.3 101 Switching Protocols 0
r3.o.lencr.org/
 23.36.76.226 200 OK 503
r3.o.lencr.org/
 23.36.76.226 200 OK 503
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09b3928-4257-4aee-9978-7c13c20b5a23.jpeg
 34.120.237.76 200 OK 7183
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
 34.120.237.76 200 OK 4227
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg
 34.120.237.76 200 OK 11205
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8328b9-b592-4c76-9101-54f0b2e220d0.jpeg
 34.120.237.76 200 OK 14943
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
 34.120.237.76 200 OK 13390
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png
 34.120.237.76 200 OK 5634
servpage-amz223.duckdns.org/cff83bb010339e40f105168e87c165de/8871ae790bbd23165ec50890df561a4f.aspx
 162.241.115.35 302 Found 0
ocsp.sectigo.com/
 104.18.32.68 200 OK 471
ocsp.digicert.com/
 93.184.220.29 200 OK 280
www.cloudways.com/wp-content/plugins/quiz-maker/public/css/quiz-maker-public.css?ver=6.2.5.1
 104.22.61.124 200 OK 9696
www.cloudways.com/wp-content/uploads/2022/07/thumb_square_5940cf8165f3a39fda86a7cec8a21a40.jpg
 104.22.61.124 200 OK 11745
www.google.com/recaptcha/api.js?render=6Lfws5ggAAAAAEnQpJYtc8eZ1PP6gtxuk7kxEZFG
 216.58.207.228 200 OK 583
www.cloudways.com/wp-content/uploads/2022/07/thumb_square_1554322781.jpg
 104.22.61.124 200 OK 12952
www.cloudways.com/wp-content/uploads/2021/01/gabrieal.webp
 104.22.61.124 200 OK 5898
www.cloudways.com/wp-content/uploads/2021/07/trustpilot-rating-5-logo.webp
 104.22.61.124 200 OK 5668
www.cloudways.com/wp-content/uploads/2022/07/ZGD0P7HN_400x400.jpg
 104.22.61.124 200 OK 8275
www.cloudways.com/wp-content/uploads/2023/01/g2-badge-best-results-winter-2023.png
 104.22.61.124 200 OK 14778
www.cloudways.com/wp-content/uploads/2022/09/khaleej-times-logo-new.svg
 104.22.61.124 200 OK 4655
www.cloudways.com/wp-content/uploads/2022/07/tH0nj8K__400x400.jpg
 104.22.61.124 200 OK 22720
www.cloudways.com/wp-content/uploads/2022/07/IqkBFPLF_400x400.jpg
 104.22.61.124 200 OK 33158
www.cloudways.com/wp-content/uploads/2022/07/QYhehkYa_400x400.jpg
 104.22.61.124 200 OK 25092
www.cloudways.com/wp-content/uploads/2022/07/Zh8kDHNy_400x400.jpg
 104.22.61.124 200 OK 21756
www.cloudways.com/wp-content/uploads/2022/11/bfcm-40-percent-off.png
 104.22.61.124 200 OK 24167
www.cloudways.com/wp-content/themes/cw_multilingual/template/assets/css/widget_customContent/global_cmsFeatures_tab.css?ver=6.0.1
 104.22.61.124 200 OK 2425
www.cloudways.com/wp-content/uploads/2022/01/bet-hannon.png
 104.22.61.124 200 OK 47938
www.cloudways.com/wp-content/uploads/2022/07/walter.png
 104.22.61.124 200 OK 9565
www.cloudways.com/wp-content/uploads/2021/01/john-fazlon.webp
 104.22.61.124 200 OK 5994
www.cloudways.com/wp-content/uploads/2021/01/amit-kothari.webp
 104.22.61.124 200 OK 8822