| t.carcampingmike.com/index.php/campaigns/wd749p3q8pe5e/track-url/wr870085psfca/3f22454681c7d3bf7294579cd45dd804f0b83dfe |  104.21.52.131 | 301 Moved Permanently | 9.5 kB |
URL User Request GET HTTP/2t.carcampingmike.com/index.php/campaigns/wd749p3q8pe5e/track-url/wr870085psfca/3f22454681c7d3bf7294579cd45dd804f0b83dfe IP104.21.52.131:443
CertificateIssuerGoogle Trust Services Subjectcarcampingmike.com FingerprintB7:7B:81:42:1B:EE:56:2E:80:6B:2B:FE:00:AA:27:E9:28:B5:23:D8 ValidityThu, 31 Oct 2024 15:21:38 GMT - Wed, 29 Jan 2025 15:21:37 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash2d29bc41b8ca806faf7998e92285f67d 5f5f58596a52ea7253bc70bc773d504ae445cc88 b1ddf61bbb0e2e034c0f9da595397f156ee78ad38ffeea4666a612888121e123
GET /index.php/campaigns/wd749p3q8pe5e/track-url/wr870085psfca/3f22454681c7d3bf7294579cd45dd804f0b83dfe HTTP/1.1
Host: t.carcampingmike.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 25 Dec 2024 09:47:21 GMT
content-type: text/html; charset=UTF-8
location: https://https://app.sendrush.com/index.php/lists/jr837vsp6o543/unsubscribe/wr870085psfca/wd749p3q8pe5e
x-powered-by: PHP/7.2.34
content-security-policy: frame-ancestors 'self';
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Wed, 25 Dec 2024 09:47:20 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iFtJTVQubIH%2BEObcnff7JICAprZchT7Sxb3nN1pxBvpdJBzFKba%2FMwFdnnon7W%2BDB3fn4wyok%2BgLKK%2Bj%2BkNhFSzqFskyn%2BpobL5T0aZsK%2FGKxnapNkcrzz8Qc76FjPvduNAn%2FIeyFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f77e8bbe97bb521-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5999&min_rtt=449&rtt_var=11077&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3291&recv_bytes=1324&delivery_rate=6745341&cwnd=254&unsent_bytes=0&cid=1519d7ab90d7074b&ts=731&x=0"
X-Firefox-Spdy: h2
|
| https//app.sendrush.com/index.php/lists/jr837vsp6o543/unsubscribe/wr870085psfca/wd749p3q8pe5e | 0.0.0.0 | | 0 B |
URL User Request GET https//app.sendrush.com/index.php/lists/jr837vsp6o543/unsubscribe/wr870085psfca/wd749p3q8pe5e IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET //app.sendrush.com/index.php/lists/jr837vsp6o543/unsubscribe/wr870085psfca/wd749p3q8pe5e HTTP/1.1
Host: https
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
0.0.0.0