Domain > qa.p2g.link

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2019-05-31	52.84.134.181 (ClassC)
2019-06-25	99.84.41.26 (ClassC)
2019-06-25	99.84.41.63 (ClassC)
2019-06-25	99.84.41.79 (ClassC)
2019-06-25	99.84.41.22 (ClassC)
2024-09-07	204.246.191.36 (ClassC)
2025-04-19	18.238.217.61 (ClassC)

HTTP/1.1 403 ForbiddenServer: CloudFrontDate: Sat, 07 Sep 2024 12:21:09 GMTContent-Type: text/htmlContent-Length: 915Connection: keep-aliveX-Cache: Error from cloudfrontVia: 1.1 4e4146a38d6d3f79964fdb

!DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.01 Transitional//EN http://www.w3.org/TR/html4/loose.dtd>HTML>HEAD>META HTTP-EQUIVContent-Type CONTENTtext/html; charsetiso-8859-1>TITLE>ERROR: The request could not be satisfied/TITLE>/HEAD>BODY>H1>403 ERROR/H1>H2>The request could not be satisfied./H2>HR noshade size1px>Bad request.We cant connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner.BR clearall>If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation.BR clearall>HR noshade size1px>PRE>Generated by cloudfront (CloudFront)Request ID: H3j6KUVS736SXPmLsJ1O_Y1G1VGFlJUQsgz6rwzReGoo7yCZ4Q2Vvg/PRE>ADDRESS>/ADDRESS>/BODY>/HTML>

Port 443

HTTP/1.1 200 OKContent-Type: text/htmlContent-Length: 5724Connection: keep-aliveDate: Sat, 07 Sep 2024 12:21:11 GMTLast-Modified: Mon, 19 Oct 2020 08:35:28 GMTETag: 39f156715354d2020356d60309b7eb28Acc

html>head>    script crossoriginanonymous srchttps://polyfill.io/v3/polyfill.min.js?featuresfetch>/script>    script>        const url  https://xjmftvtn41.execute-api.eu-west-1.amazonaws.com/prod/GetCFSignedCookie;        document.addEventListener(DOMContentLoaded, function () {            console.log(loaded);            document.getElementById(submit).addEventListener(click, function (e) {                console.log(clicked);                const token  document.getElementById(token).value;				if(token && token.length) {					setSignedCookie(token);				}				else {					displayError(Please enter a token);				}            });			if(window.location.hash) {				const token  window.location.hash.substring(1);				setSignedCookie(token);			}        });        function setSignedCookie(token) {			const frm  document.getElementById(form);			const lbl  document.getElementById(lblError);			frm.style.display  none;			loading.style.display  block;					            const options  {                method: POST,                headers: {                    Content-Type: application/json                },                body: JSON.stringify({ token: token })            };            fetch(url, options)                .then(function (response) { return response.json(); })                .then(setCookie)                .then(redirectUser)                .catch(function(ex) {                    console.log(ex);                    displayError(Something went wrong, please try again or contact your administrator.);                });        }        function setCookie(response) {            return new Promise(function(accept, reject) {                try {                    console.log(response);                    const time  new Date(0);                    time.setUTCSeconds(response.cookieCloudFront-Expires);                    document.cookie  CloudFront-Key-Pair-Id + response.cookieCloudFront-Key-Pair-Id +; expires + time.toUTCString() +;domain.qa.p2g.link;SameSiteNone;Secure;;                    document.cookie  CloudFront-Signature

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > qa.p2g.link

Is this malicious?

DNS Resolutions

Port 80

Port 443