IOC Report
https://globalgrimmer.com/xxxj

loading gif

Files

File Path
Type
Category
Malicious
Chrome Cache Entry: 100
ASCII text, with very long lines (4179)
downloaded
Chrome Cache Entry: 101
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 102
Web Open Font Format (Version 2), TrueType, length 17920, version 1.0
downloaded
Chrome Cache Entry: 103
Web Open Font Format (Version 2), TrueType, length 11608, version 1.0
downloaded
Chrome Cache Entry: 104
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 105
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 106
ASCII text, with very long lines (2409), with no line terminators
downloaded
Chrome Cache Entry: 107
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 108
ASCII text, with very long lines (10160)
downloaded
Chrome Cache Entry: 109
ASCII text, with very long lines (2615), with no line terminators
downloaded
Chrome Cache Entry: 110
ASCII text, with very long lines (345)
downloaded
Chrome Cache Entry: 111
ASCII text, with very long lines (5400)
downloaded
Chrome Cache Entry: 112
PNG image data, 2160 x 175, 8-bit/color RGB, non-interlaced
dropped
Chrome Cache Entry: 113
PNG image data, 2160 x 175, 8-bit/color RGB, non-interlaced
downloaded
Chrome Cache Entry: 114
ASCII text, with very long lines (2614), with no line terminators
downloaded
Chrome Cache Entry: 115
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 116
ASCII text
downloaded
Chrome Cache Entry: 117
ASCII text, with very long lines (5140)
downloaded
Chrome Cache Entry: 118
ASCII text, with very long lines (2613), with no line terminators
downloaded
Chrome Cache Entry: 119
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 120
ASCII text, with very long lines (2614), with no line terminators
downloaded
Chrome Cache Entry: 121
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 122
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 123
ASCII text, with very long lines (2616), with no line terminators
downloaded
Chrome Cache Entry: 124
Web Open Font Format (Version 2), TrueType, length 13020, version 1.0
downloaded
Chrome Cache Entry: 125
ASCII text, with very long lines (19261), with no line terminators
downloaded
Chrome Cache Entry: 126
ASCII text, with very long lines (4179)
downloaded
Chrome Cache Entry: 127
ASCII text, with very long lines (3640)
downloaded
Chrome Cache Entry: 128
PNG image data, 860 x 130, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 129
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 130
ASCII text, with very long lines (7711)
downloaded
Chrome Cache Entry: 131
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 132
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 89
ASCII text, with very long lines (64347)
downloaded
Chrome Cache Entry: 90
ASCII text, with very long lines (65447)
downloaded
Chrome Cache Entry: 91
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 92
PNG image data, 860 x 130, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 93
ASCII text, with very long lines (2343)
downloaded
Chrome Cache Entry: 94
ASCII text, with very long lines (2654), with no line terminators
downloaded
Chrome Cache Entry: 95
ASCII text, with very long lines (32077)
downloaded
Chrome Cache Entry: 96
ASCII text, with very long lines (4179)
downloaded
Chrome Cache Entry: 97
Web Open Font Format (Version 2), TrueType, length 12852, version 1.0
downloaded
Chrome Cache Entry: 98
ASCII text, with very long lines (4179)
downloaded
Chrome Cache Entry: 99
ASCII text, with very long lines (2616), with no line terminators
downloaded
There are 35 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2260 --field-trial-handle=2024,i,15679915342265595539,6128884579569338529,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://globalgrimmer.com/xxxj"

URLs

Name
IP
Malicious
https://globalgrimmer.com/xxxj
https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-146859082-1&cid=630221053.1714155737&jid=892447600&_u=YEBAAUAAAAAAACAAI~&z=317188382
142.251.35.228
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155786655&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EA&_s=1&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dvirgo&dt=Get%20your%20FREE%20Moon%20Reading!&en=page_view&_ee=1&tfd=857
172.217.165.206
https://www.facebook.com/tr/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dgemini&rl=&if=false&ts=1714155768081&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155767931&coo=false&rqm=GET
157.240.14.35
https://stats.g.doubleclick.net/g/collect
unknown
https://www.moonreading.com/start/?hop=dragon040&hopId=72ccc26d-dbd7-45a5-84ae-5891ca4cc0c1
104.26.1.66
https://www.facebook.com/tr/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dleo&rl=&if=false&ts=1714155781782&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155781689&coo=false&rqm=GET
157.240.14.35
https://www.moonreading.com/start/1/?source=dragon040&hopId=72ccc26d-dbd7-45a5-84ae-5891ca4cc0c1
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155781594&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EEA&_s=2&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dleo&dt=Get%20your%20FREE%20Moon%20Reading!&en=scroll&epn.percent_scrolled=90&_et=5&tfd=6232
172.217.165.206
https://www.moonreading.com/css/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2
104.26.1.66
https://www.moonreading.com/img/bg-wavewhite.png
104.26.1.66
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F1%2F%3Fsource%3Ddragon040%26hopId%3D72ccc26d-dbd7-45a5-84ae-5891ca4cc0c1&rl=&if=false&ts=1714155734545&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155733570&coo=false&rqm=FGET
157.240.14.35
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155795632&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EEA&_s=2&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dlibra&dt=Get%20your%20FREE%20Moon%20Reading!&en=scroll&epn.percent_scrolled=90&_et=5&tfd=5988
216.239.34.181
https://ampcid.google.com/v1/publisher:getClientId
unknown
https://www.moonreading.com/start/2/?sign=virgo
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dcancer&rl=&if=false&ts=1714155772792&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155772719&coo=false&rqm=FGET
157.240.14.35
https://www.moonreading.com/img/white-back.png
104.26.1.66
https://0bef7y10siuwczdssj39pr-fbx.hop.clickbank.net/
35.80.252.204
https://connect.facebook.net/signals/config/2523922164511192?v=2.9.154&r=stable&domain=www.moonreading.com&hme=c3a545c63044e8e9102d4f32d84a1137594d024f28e801d670bc76dc5c075575&ex_m=67%2C112%2C99%2C103%2C58%2C3%2C93%2C66%2C15%2C91%2C84%2C49%2C51%2C158%2C161%2C172%2C168%2C169%2C171%2C28%2C94%2C50%2C73%2C170%2C153%2C156%2C165%2C166%2C173%2C121%2C14%2C48%2C178%2C177%2C123%2C17%2C33%2C38%2C1%2C41%2C62%2C63%2C64%2C68%2C88%2C16%2C13%2C90%2C87%2C86%2C100%2C102%2C37%2C101%2C29%2C25%2C154%2C157%2C130%2C27%2C10%2C11%2C12%2C5%2C6%2C24%2C21%2C22%2C54%2C59%2C61%2C71%2C95%2C26%2C72%2C8%2C7%2C76%2C46%2C20%2C97%2C96%2C9%2C19%2C18%2C81%2C53%2C79%2C32%2C70%2C0%2C89%2C31%2C78%2C83%2C45%2C44%2C82%2C36%2C4%2C85%2C77%2C42%2C39%2C34%2C80%2C2%2C35%2C60%2C40%2C98%2C43%2C75%2C65%2C104%2C57%2C56%2C30%2C92%2C55%2C52%2C47%2C74%2C69%2C23%2C105
31.13.67.20
https://www.google.com
unknown
https://www.youtube.com/iframe_api
unknown
https://www.moonreading.com/start/2/?sign=libra
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dtaurus&rl=&if=false&ts=1714155758561&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155758448&coo=false&rqm=FGET
157.240.14.35
https://www.moonreading.com/start/2/?sign=taurus
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dlibra&rl=&if=false&ts=1714155795861&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155795752&coo=false&rqm=FGET
157.240.14.35
https://www.moonreading.com/_api/timezone.php?timezone=Europe/Berlin
104.26.1.66
https://www.google.com/pagead/1p-user-list/590897327/?random
unknown
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155767833&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EA&_s=1&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dgemini&dt=Get%20your%20FREE%20Moon%20Reading!&en=page_view&_ee=1&tfd=1308
172.217.165.206
https://globalgrimmer.com/xxxj/
63.250.47.116
https://connect.facebook.net/en_US/fbevents.js
31.13.67.20
https://www.moonreading.com/img/moon-icon-16.png
104.26.1.66
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dleo&rl=&if=false&ts=1714155781782&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155781689&coo=false&rqm=FGET
157.240.14.35
https://globalgrimmer.com/xxxj
63.250.47.116
https://stats.g.doubleclick.net/j/collect
unknown
https://github.com/necolas/normalize.css/blob/master/LICENSE.md)
unknown
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155786655&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EEA&_s=2&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dvirgo&dt=Get%20your%20FREE%20Moon%20Reading!&en=scroll&epn.percent_scrolled=90&_et=4&tfd=5872
172.217.165.206
https://www.moonreading.com/cdn-cgi/rum?
104.26.1.66
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155758382&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EEA&_s=2&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dtaurus&dt=Get%20your%20FREE%20Moon%20Reading!&en=scroll&epn.percent_scrolled=90&_et=4&tfd=5971
172.217.165.206
https://www.moonreading.com/start?hop=dragon040&hopId=72ccc26d-dbd7-45a5-84ae-5891ca4cc0c1
104.26.1.66
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Daries&rl=&if=false&ts=1714155749504&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155749144&coo=false&rqm=FGET
157.240.14.35
https://www.moonreading.com/start/2/?sign=aries
https://www.moonreading.com/css/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcC-wLOj.woff2
104.26.1.66
https://www.moonreading.com/css/o-0OIpQlx3QUlC5A4PNr4ARCQ_mu72Bi.woff2
104.26.1.66
https://www.moonreading.com/css/o-0NIpQlx3QUlC5A4PNjOhBVZNyBx2pqPA.woff2
104.26.1.66
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dgemini&rl=&if=false&ts=1714155768081&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155767931&coo=false&rqm=FGET
157.240.14.35
https://www.facebook.com/privacy_sandbox/pixel/register/trigger/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dvirgo&rl=&if=false&ts=1714155786766&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155786705&coo=false&rqm=FGET
157.240.14.35
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155758382&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EA&_s=1&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dtaurus&dt=Get%20your%20FREE%20Moon%20Reading!&en=page_view&_ee=1&tfd=965
172.217.165.206
https://www.moonreading.com/start/2/?sign=cancer
https://www.moonreading.com/img/moon-reading-text-logo.png
104.26.1.66
https://www.facebook.com/tr/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dcancer&rl=&if=false&ts=1714155772792&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155772719&coo=false&rqm=GET
157.240.14.35
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155772654&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EA&_s=1&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dcancer&dt=Get%20your%20FREE%20Moon%20Reading!&en=page_view&_ee=1&tfd=902
172.217.165.206
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155772654&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EEA&_s=2&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dcancer&dt=Get%20your%20FREE%20Moon%20Reading!&en=scroll&epn.percent_scrolled=90&_et=4&tfd=5915
172.217.165.206
https://static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793
104.16.80.73
https://googleads.g.doubleclick.net
unknown
https://tagassistant.google.com/
unknown
https://www.moonreading.com/start/2/?sign=leo
https://stats.g.doubleclick.net/g/collect?v=2&tid=G-H802VRJEV8&cid=630221053.1714155737&gtm=45je44o0v895586847za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0
172.217.193.155
https://www.facebook.com/tr/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Daries&rl=&if=false&ts=1714155749504&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155749144&coo=false&rqm=GET
157.240.14.35
https://adservice.google.com/pagead/regclk
unknown
https://getbootstrap.com/)
unknown
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155748297&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EA&_s=1&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Daries&dt=Get%20your%20FREE%20Moon%20Reading!&en=page_view&_ee=1&tfd=3485
172.217.165.206
https://cct.google/taggy/agent.js
unknown
https://www.facebook.com/tr/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dtaurus&rl=&if=false&ts=1714155758561&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155758448&coo=false&rqm=GET
157.240.14.35
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155748297&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EEA&_s=2&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Daries&dt=Get%20your%20FREE%20Moon%20Reading!&en=scroll&epn.percent_scrolled=90&_et=16&tfd=8500
172.217.165.206
https://www.moonreading.com/css/fonts.css
104.26.1.66
https://www.facebook.com/tr/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F1%2F%3Fsource%3Ddragon040%26hopId%3D72ccc26d-dbd7-45a5-84ae-5891ca4cc0c1&rl=&if=false&ts=1714155734545&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155733570&coo=false&rqm=GET
157.240.14.35
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155795632&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EA&_s=1&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dlibra&dt=Get%20your%20FREE%20Moon%20Reading!&en=page_view&_ee=1&tfd=974
172.217.165.206
https://www.moonreading.com/start/2/?sign=gemini
https://www.moonreading.com/css/clean.css
104.26.1.66
https://www.google.com/ads/ga-audiences
unknown
https://www.google.%/ads/ga-audiences
unknown
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155730387&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EEA&_s=2&sid=1714155737&sct=1&seg=0&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F1%2F%3Fsource%3Ddragon040%26hopId%3D72ccc26d-dbd7-45a5-84ae-5891ca4cc0c1&dt=Request%20Your%20FREE%20Moon%20Reading!&en=scroll&epn.percent_scrolled=90&_et=23&tfd=22992
172.217.165.206
https://td.doubleclick.net
unknown
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155730387&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EA&_s=1&sid=1714155737&sct=1&seg=0&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F1%2F%3Fsource%3Ddragon040%26hopId%3D72ccc26d-dbd7-45a5-84ae-5891ca4cc0c1&dt=Request%20Your%20FREE%20Moon%20Reading!&en=page_view&_fv=1&_ss=1&_ee=1&tfd=17951
172.217.165.206
https://www.merchant-center-analytics.goog
unknown
https://www.facebook.com/tr/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dvirgo&rl=&if=false&ts=1714155786766&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155786705&coo=false&rqm=GET
157.240.14.35
https://github.com/twbs/bootstrap/blob/master/LICENSE)
unknown
https://stats.g.doubleclick.net/g/collect?v=2&
unknown
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155767833&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EEA&_s=2&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dgemini&dt=Get%20your%20FREE%20Moon%20Reading!&en=scroll&epn.percent_scrolled=90&_et=15&tfd=7300
172.217.165.206
https://analytics.google.com/g/collect?v=2&tid=G-H802VRJEV8&gtm=45je44o0v895586847za200&_p=1714155781594&gcd=13l3l3l3l1&npa=0&dma=0&cid=630221053.1714155737&ul=en-us&sr=1280x1024&ir=1&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&are=1&pae=1&pscdl=noapi&_eu=EA&_s=1&sid=1714155737&sct=1&seg=1&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dleo&dt=Get%20your%20FREE%20Moon%20Reading!&en=page_view&_ee=1&tfd=1012
172.217.165.206
https://www.moonreading.com/css/bootstrap-reboot.min.css
104.26.1.66
https://www.moonreading.com/css/icons.css
104.26.1.66
https://www.moonreading.com/js/jstz-1.0.4.min.js
104.26.1.66
https://stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-146859082-1&cid=630221053.1714155737&jid=892447600&gjid=466285172&_gid=337683595.1714155737&_u=YEBAAUAAAAAAACAAI~&z=133570130
172.217.193.155
https://www.facebook.com/tr/?id=2523922164511192&ev=PageView&dl=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dlibra&rl=&if=false&ts=1714155795861&sw=1280&sh=1024&ud[external_id]=5b953279082baba2a37d72157a4b0ba9f81ae6b3da4f1771bc9936e70c06a8c4&v=2.9.154&r=stable&ec=0&o=4126&fbp=fb.1.1714155734542.469568372&ler=empty&cdl=API_unavailable&it=1714155795752&coo=false&rqm=GET
157.240.14.35
https://google.com
unknown
There are 75 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
star-mini.c10r.facebook.com
157.240.14.35
www.moonreading.com
172.67.73.212
static.cloudflareinsights.com
104.16.80.73
fp2e7a.wpc.phicdn.net
192.229.211.108
stats.g.doubleclick.net
172.217.193.155
globalgrimmer.com
63.250.47.116
scontent.xx.fbcdn.net
31.13.67.20
analytics-alv.google.com
216.239.34.181
googleads.g.doubleclick.net
142.250.189.130
www.google.com
142.250.217.228
td.doubleclick.net
142.250.189.130
analytics.google.com
172.217.165.206
0bef7y10siuwczdssj39pr-fbx.hop.clickbank.net
35.80.252.204
www.facebook.com
unknown
connect.facebook.net
unknown
There are 5 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
172.217.165.206
analytics.google.com
United States
216.239.34.181
analytics-alv.google.com
United States
192.168.2.4
unknown
unknown
157.240.14.35
star-mini.c10r.facebook.com
United States
104.16.80.73
static.cloudflareinsights.com
United States
31.13.80.36
unknown
Ireland
172.217.165.194
unknown
United States
142.250.189.130
googleads.g.doubleclick.net
United States
173.194.212.157
unknown
United States
142.250.217.228
www.google.com
United States
104.26.1.66
unknown
United States
63.250.47.116
globalgrimmer.com
United States
172.217.193.155
stats.g.doubleclick.net
United States
142.250.217.196
unknown
United States
239.255.255.250
unknown
Reserved
142.251.35.228
unknown
United States
31.13.67.20
scontent.xx.fbcdn.net
Ireland
35.80.252.204
0bef7y10siuwczdssj39pr-fbx.hop.clickbank.net
United States
There are 8 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
https://www.moonreading.com/start/1/?source=dragon040&hopId=72ccc26d-dbd7-45a5-84ae-5891ca4cc0c1
https://td.doubleclick.net/td/rul/590897327?random=1714155734435&cv=11&fst=1714155734435&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44o0v895203738za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F1%2F%3Fsource%3Ddragon040%26hopId%3D72ccc26d-dbd7-45a5-84ae-5891ca4cc0c1&hn=www.googleadservices.com&frm=0&tiba=Request%20Your%20FREE%20Moon%20Reading!&npa=0&pscdl=noapi&auid=492570948.1714155734&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
https://www.moonreading.com/start/2/?sign=aries
https://td.doubleclick.net/td/rul/590897327?random=1714155749002&cv=11&fst=1714155749002&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44o0v895203738za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Daries&hn=www.googleadservices.com&frm=0&tiba=Get%20your%20FREE%20Moon%20Reading!&npa=0&pscdl=noapi&auid=492570948.1714155734&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
https://www.moonreading.com/start/2/?sign=taurus
https://td.doubleclick.net/td/rul/590897327?random=1714155758513&cv=11&fst=1714155758513&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44o0v895203738za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dtaurus&hn=www.googleadservices.com&frm=0&tiba=Get%20your%20FREE%20Moon%20Reading!&npa=0&pscdl=noapi&auid=492570948.1714155734&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
https://www.moonreading.com/start/2/?sign=gemini
https://td.doubleclick.net/td/rul/590897327?random=1714155767945&cv=11&fst=1714155767945&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44o0v895203738za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dgemini&hn=www.googleadservices.com&frm=0&tiba=Get%20your%20FREE%20Moon%20Reading!&npa=0&pscdl=noapi&auid=492570948.1714155734&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
https://www.moonreading.com/start/2/?sign=cancer
https://td.doubleclick.net/td/rul/590897327?random=1714155772736&cv=11&fst=1714155772736&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44o0v895203738za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dcancer&hn=www.googleadservices.com&frm=0&tiba=Get%20your%20FREE%20Moon%20Reading!&npa=0&pscdl=noapi&auid=492570948.1714155734&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
https://www.moonreading.com/start/2/?sign=leo
https://td.doubleclick.net/td/rul/590897327?random=1714155781702&cv=11&fst=1714155781702&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44o0v895203738za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dleo&hn=www.googleadservices.com&frm=0&tiba=Get%20your%20FREE%20Moon%20Reading!&npa=0&pscdl=noapi&auid=492570948.1714155734&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
https://www.moonreading.com/start/2/?sign=virgo
https://td.doubleclick.net/td/rul/590897327?random=1714155786721&cv=11&fst=1714155786721&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44o0v895203738za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dvirgo&hn=www.googleadservices.com&frm=0&tiba=Get%20your%20FREE%20Moon%20Reading!&npa=0&pscdl=noapi&auid=492570948.1714155734&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
https://www.moonreading.com/start/2/?sign=libra
https://td.doubleclick.net/td/rul/590897327?random=1714155795718&cv=11&fst=1714155795718&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be44o0v895203738za200&gcd=13l3l3l3l1&dma=0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.moonreading.com%2Fstart%2F2%2F%3Fsign%3Dlibra&hn=www.googleadservices.com&frm=0&tiba=Get%20your%20FREE%20Moon%20Reading!&npa=0&pscdl=noapi&auid=492570948.1714155734&fledge=1&data=event%3Dgtag.config
There are 6 hidden doms, click here to show them.