https://firebasestorage.googleapis.com/v0/b/web-exch.appspot.com/o/index.html?alt=media&token=a9b2a292-30d6-4527-a159-b64ae0b38e64&id=merchants@americanexpress.com.sa

Last Checked: Jan 28, 2021, 05:12 EST

IP Address: 172.217.164.106
ASN #: AS15169 GOOGLE, US
Location: San Francisco, California, US
URL Reputation:
  • Unknown This URL is not identified as malicious in the PhishTank Database.
  • Unknown PhishCheck thinks this URL is likely not a phish.
  • Unknown OpenPhish: URL not in feed.

Other submissions on 172.217.164.106:

  • http://firebaseperusertopics-pa.googleapis.com/

  • http://firebasestorag.googleapis.com/

  • https://firebasestorage.googleapis.com/v0/b/lh02g0clp.appspot.com/o/index.htm?alt=media&token=6bc61c87-914c-4467-bd11-5a3ccb5fefae#adrian.redlich@merrickscapital.com

  • https://www.googleapis.com/auth/drive.file

  • https://firebasestorage.googleapis.com/v0/b/begrwe4t21425454133.appspot.com/o/index.html?alt=media&token=1f9ef938-cec4-4f2f-ab5f-f01b7d105bbe

  • https://firebasestorage.googleapis.com/v0/b/webmail-cb411.appspot.com/o/redirect.html?alt=media&token=0be638bd-a58f-4343-9879-109a3d41e9d1&email=walterl@winsted.com

  • https://firebasestorage.googleapis.com/v0/b/bjor-pop.appspot.com/o/rbte6a5ba0842a531163425dpayabl%2Findexpbrbtoa0842a531163425d.html?alt=media&token=62aeacff-44ad-420-1c5-a32gfmega.com

  • http://firebaseinstallations.googleapis.com/

  • https://firebasestorage.googleapis.com/v0/b/authentic-46561.appspot.com/o/index2%20copy%203.html?alt=media&token=1e12d19d-8baf-4db6-8a2d-c8f164eb02f4&email=mercedes@corporacionrcc.com

  • https://firebasestorage.googleapis.com/v0/b/euas-d9ee5.appspot.com/o/drdrop.html?alt=media&token=29422252-a8c6-4990-94b8-5665bf12f803

Other submissions on googleapis.com:

  • https://firebasestorage.googleapis.com/v0/b/authentic-46561.appspot.com/o/index2%20copy%203.html?alt=media&token=1e12d19d-8baf-4db6-8a2d-c8f164eb02f4&email=mercedes@corporacionrcc.com

  • https://firebasestorage.googleapis.com/v0/b/euas-d9ee5.appspot.com/o/drdrop.html?alt=media&token=29422252-a8c6-4990-94b8-5665bf12f803

  • https://storage.googleapis.com/fbbebbjebjkewbj.appspot.com/10710.html

  • https://ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js

  • https://storage.googleapis.com/topinal/go.html#i1snxmwxf4vyxajoiudi&email=tkimber@mobius.org.uk&c=sj444zhq4c9a4

  • https://storage.googleapis.com/akesel/akesel.html#/rd/c7011Ntyan614431YTtY43022aJm1578bWFa20

  • https://storage.googleapis.com/bionat/xbitco1.html

  • https://firebasestorage.googleapis.com/v0/b/e09yee6bc73hfbkc.appspot.com/o/!!%5D'%7B%7D%24ad%40%23!_%2B)%25%24%23%40!!.html?alt=media&token=4e67f421-62ba-4826-9cf5-b5f32abcd6e5

  • https://storage.googleapis.com/descargafactura/Descargar.htm

  • https://fonts.googleapis.com/css?family=Cabin:400,700

Previous checks:

                               fgets: Connection reset by peer

                             
  • GET
    200 OK

    https://tracking-protection.cdn.mozilla.net/social-tracking-protection-facebook-digest256/84.0/1608188613

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt

  • GET
    200 OK

    https://tracking-protection.cdn.mozilla.net/social-tracking-protection-linkedin-digest256/84.0/1608188613

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv4

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv6

  • GET
    200 OK

    https://tracking-protection.cdn.mozilla.net/social-tracking-protection-twitter-digest256/84.0/1608188613

  • GET
    200 OK

    https://firebasestorage.googleapis.com/v0/b/web-exch.appspot.com/o/index.html?alt=media&token=a9b2a292-30d6-4527-a159-b64ae0b38e64&id=merchants@americanexpress.com.sa

  • GET
    404 Not Found

    https://firebasestorage.googleapis.com/favicon.ico

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv4

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv6

<html><head><title>Redirecting to Secure Portal</title>
<script type="text/JavaScript">
var urlParams = new URLSearchParams(location.search);
var x = urlParams.get('id');
setTimeout(function () {
   window.location.replace("https://dempseygroup-au.com/?i="+x); 
}, 3000); 
</script>
</head><body><br><br><p style="text-align:center;">Redirecting to Webmail
Activation Portal..</p> 
</body></html>

                             

Screenshot: