urlscan.io logo urlscan.io
SecurityTrails logo

ctblc04.na1.hubspotlinks.com Open in urlscan Pro
2606:4700::6812:bc9  Public Scan

Go To Rescan Add Verdict Report
URL: https://ctblc04.na1.hubspotlinks.com/Ctc/GE+113/cTBLC04/VWZsQd489RQ-W6FbkLs5HsjxMW861hN75f5LwsN4Pt_MF3m2ndW6N1vHY6lZ3nnW4yF6pM8x-GH5W...
Submission: On May 16 via manual from IN — Scanned from DE
 Behaviour Indicators
Similar DOM Content API
Verdicts

Summary

This website contacted 2 IPs in 2 countries across 2 domains to perform 3 HTTP transactions. The main IP is 2606:4700::6812:bc9, located in United States and belongs to CLOUDFLARENET, US. The main domain is ctblc04.na1.hubspotlinks.com.
TLS certificate: Issued by E1 on May 15th 2024. Valid for: 3 months.
This is the only time ctblc04.na1.hubspotlinks.com was scanned on urlscan.io!

urlscan.io Verdict: No classification

Domain & IP information

IP Address AS Autonomous System
1 2 2606:4700::68... 13335 (CLOUDFLAR...)
2 188.114.97.3 13335 (CLOUDFLAR...)
3 2
Apex Domain
Subdomains		 Transfer
2 gtnus8w2s1.ru
onapproval-manage.gtnus8w2s1.ru
1 KB
2 hubspotlinks.com
ctblc04.na1.hubspotlinks.com
3 KB
3 2
Domain Requested by
2 onapproval-manage.gtnus8w2s1.ru ctblc04.na1.hubspotlinks.com
2 ctblc04.na1.hubspotlinks.com 1 redirects
3 2

This site contains no links.

Subject Issuer Validity Valid
hubspotlinks.com
E1		 2024-05-15 -
2024-08-13		 3 months crt.sh
gtnus8w2s1.ru
E1		 2024-05-08 -
2024-08-06		 3 months crt.sh

This page contains 1 frames:

Frame: https://onapproval-manage.gtnus8w2s1.ru/?utm_medium=email&_hsenc=p2ANqtz-9AjOGPAFmbSYNRntwaSXFjDU5ouYnmV4GbdWFdT0o0y8fz69tQDHXS8fjT2h58ViX2TV4v4T-naxgF5jiPXkindwJ6kw&_hsmi=2&utm_content=2&utm_source=hs_email
Frame ID: 75D53BF886DC1B23B2298E447CF6E543
Requests: 3 HTTP requests in this frame

Screenshot
Live screenshot
Full Image

Page Statistics

3
Requests

100 %
HTTPS

50 %
IPv6

2
Domains

2
Subdomains

2
IPs

2
Countries

4 kB
Transfer

8 kB
Size

0
Cookies

Redirected requests

There were HTTP redirect chains for the following requests:

Request Chain 0
  • https://ctblc04.na1.hubspotlinks.com/events/public/v1/encoded/track/tc/GE+113/cTBLC04/VWZsQd489RQ-W6FbkLs5HsjxMW861hN75f5LwsN4Pt_MF3m2ndW6N1vHY6lZ3nnW4yF6pM8x-GH5W6Px_MD8twqrDW7QpPf31Q-MTbW4dSWPW4WG5bsVS8LWq5CVKrLN6xWLGNDt7czW7lRM7V3NXk6MW7X8r9B6XByk6N3Jf86tqT2qNW52MsvH33yB1qW38hDNh4Lfh_BW7gL_2x7RT_s7N5y60yNYxkwnW7rDWgN35KdyWN2WrKyRRX4XhVmqwGv2vVpM9W5Y0hzW48yWNGW5mlXPS6yfqVpW53dFFc7Hjzg_W6-7yG06F-NkWW1QWkxP4WbxV7W1t6SNF2Z90G2d_Kr5q04?_ud=6ffe036d-1db1-413f-a33c-b3267617a1cb&_jss=1&_fl=8&_pl=5&_hc=12&_lg=en-US,en&_plt=Win32&_scr=1600,1200 HTTP 307
  • https://onapproval-manage.gtnus8w2s1.ru/?utm_medium=email&_hsenc=p2ANqtz-9AjOGPAFmbSYNRntwaSXFjDU5ouYnmV4GbdWFdT0o0y8fz69tQDHXS8fjT2h58ViX2TV4v4T-naxgF5jiPXkindwJ6kw&_hsmi=2&utm_content=2&utm_source=hs_email

3 HTTP transactions

Resource
Path		 Size
x-fer		 Type
MIME-Type
Primary Request VWZsQd489RQ-W6FbkLs5HsjxMW861hN75f5LwsN4Pt_MF3m2ndW6N1vHY6lZ3nnW4yF6pM8x-GH5W6Px_MD8twqrDW7QpPf31Q-MTbW4dSWPW4WG5bsVS8LWq5CVKrLN6xWLGNDt7czW7lRM7V3NXk6MW7X8r9B6XByk6N3Jf86tqT2qNW52MsvH33yB1qW38hDNh...
ctblc04.na1.hubspotlinks.com/Ctc/GE+113/cTBLC04/ 		8 KB
3 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://ctblc04.na1.hubspotlinks.com/Ctc/GE+113/cTBLC04/VWZsQd489RQ-W6FbkLs5HsjxMW861hN75f5LwsN4Pt_MF3m2ndW6N1vHY6lZ3nnW4yF6pM8x-GH5W6Px_MD8twqrDW7QpPf31Q-MTbW4dSWPW4WG5bsVS8LWq5CVKrLN6xWLGNDt7czW7lRM7V3NXk6MW7X8r9B6XByk6N3Jf86tqT2qNW52MsvH33yB1qW38hDNh4Lfh_BW7gL_2x7RT_s7N5y60yNYxkwnW7rDWgN35KdyWN2WrKyRRX4XhVmqwGv2vVpM9W5Y0hzW48yWNGW5mlXPS6yfqVpW53dFFc7Hjzg_W6-7yG06F-NkWW1QWkxP4WbxV7W1t6SNF2Z90G2d_Kr5q04
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2606:4700::6812:bc9 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
Security Headers
Name Value
X-Content-Type-Options nosniff

Request headers

Accept-Language
de-DE,de;q=0.9;q=0.9
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
sec-ch-ua-mobile
?0
sec-ch-ua-platform
"Win32"

Response headers

access-control-allow-credentials
false
cf-cache-status
DYNAMIC
cf-ray
8849b6b02df2fc63-WAW
content-encoding
br
content-type
text/html;charset=utf-8
date
Thu, 16 May 2024 07:39:23 GMT
referrer-policy
no-referrer
server
cloudflare
vary
origin
x-content-type-options
nosniff
x-envoy-upstream-service-time
8
x-evy-trace-listener
listener_https
x-evy-trace-route-configuration
listener_https/all
x-evy-trace-route-service-name
envoyset-translator
x-evy-trace-served-by-pod
iad02/event-tracking-td/envoy-proxy-544dd46489-2t5th
x-evy-trace-virtual-host
all
x-hubspot-correlation-id
950daeda-af2b-4ef0-b731-67f8c32bffd5
x-request-id
950daeda-af2b-4ef0-b731-67f8c32bffd5
x-robots-tag
none
/
onapproval-manage.gtnus8w2s1.ru/
Redirect Chain
  • https://ctblc04.na1.hubspotlinks.com/events/public/v1/encoded/track/tc/GE+113/cTBLC04/VWZsQd489RQ-W6FbkLs5HsjxMW861hN75f5LwsN4Pt_MF3m2ndW6N1vHY6lZ3nnW4yF6pM8x-GH5W6Px_MD8twqrDW7QpPf31Q-MTbW4dSWPW4W...
  • https://onapproval-manage.gtnus8w2s1.ru/?utm_medium=email&_hsenc=p2ANqtz-9AjOGPAFmbSYNRntwaSXFjDU5ouYnmV4GbdWFdT0o0y8fz69tQDHXS8fjT2h58ViX2TV4v4T-naxgF5jiPXkindwJ6kw&_hsmi=2&utm_content=2&utm_sourc...
0
474 B 		Document
General
Check archive.org
Download Go to
Full URL
https://onapproval-manage.gtnus8w2s1.ru/?utm_medium=email&_hsenc=p2ANqtz-9AjOGPAFmbSYNRntwaSXFjDU5ouYnmV4GbdWFdT0o0y8fz69tQDHXS8fjT2h58ViX2TV4v4T-naxgF5jiPXkindwJ6kw&_hsmi=2&utm_content=2&utm_source=hs_email
Requested by
Host: ctblc04.na1.hubspotlinks.com
URL: https://ctblc04.na1.hubspotlinks.com/Ctc/GE+113/cTBLC04/VWZsQd489RQ-W6FbkLs5HsjxMW861hN75f5LwsN4Pt_MF3m2ndW6N1vHY6lZ3nnW4yF6pM8x-GH5W6Px_MD8twqrDW7QpPf31Q-MTbW4dSWPW4WG5bsVS8LWq5CVKrLN6xWLGNDt7czW7lRM7V3NXk6MW7X8r9B6XByk6N3Jf86tqT2qNW52MsvH33yB1qW38hDNh4Lfh_BW7gL_2x7RT_s7N5y60yNYxkwnW7rDWgN35KdyWN2WrKyRRX4XhVmqwGv2vVpM9W5Y0hzW48yWNGW5mlXPS6yfqVpW53dFFc7Hjzg_W6-7yG06F-NkWW1QWkxP4WbxV7W1t6SNF2Z90G2d_Kr5q04
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

Accept-Language
de-DE,de;q=0.9;q=0.9
Referer
https://ctblc04.na1.hubspotlinks.com/Ctc/GE+113/cTBLC04/VWZsQd489RQ-W6FbkLs5HsjxMW861hN75f5LwsN4Pt_MF3m2ndW6N1vHY6lZ3nnW4yF6pM8x-GH5W6Px_MD8twqrDW7QpPf31Q-MTbW4dSWPW4WG5bsVS8LWq5CVKrLN6xWLGNDt7czW7lRM7V3NXk6MW7X8r9B6XByk6N3Jf86tqT2qNW52MsvH33yB1qW38hDNh4Lfh_BW7gL_2x7RT_s7N5y60yNYxkwnW7rDWgN35KdyWN2WrKyRRX4XhVmqwGv2vVpM9W5Y0hzW48yWNGW5mlXPS6yfqVpW53dFFc7Hjzg_W6-7yG06F-NkWW1QWkxP4WbxV7W1t6SNF2Z90G2d_Kr5q04
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
sec-ch-ua-mobile
?0
sec-ch-ua-platform
"Win32"

Response headers

alt-svc
h3=":443"; ma=86400
cf-cache-status
DYNAMIC
cf-ray
8849b6b4ac9892ce-CPH
content-encoding
br
content-type
text/html; charset=UTF-8
date
Thu, 16 May 2024 07:39:25 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eQzU4d6%2FxdAEbF3YJN%2Fv%2BlVPRvgNOF2xWWCG%2BslmnY6zuO0l2%2FhnKrQPVpaJ2KfHPbReUTlmS6SR5iady4VMt09mrqXcf%2FLHfLRHXL8auQsPDOU4GVq8KaZZZbcF8u%2Fc0FfP1XcBDdid0DSyR04pOM24"}],"group":"cf-nel","max_age":604800}
server
cloudflare
vary
Accept-Encoding

Redirect headers

access-control-allow-credentials
false
cf-cache-status
DYNAMIC
cf-ray
8849b6b2a8d8fc63-WAW
date
Thu, 16 May 2024 07:39:24 GMT
link
<https://onapproval-manage.gtnus8w2s1.ru/?utm_medium=email&_hsenc=p2ANqtz-9AjOGPAFmbSYNRntwaSXFjDU5ouYnmV4GbdWFdT0o0y8fz69tQDHXS8fjT2h58ViX2TV4v4T-naxgF5jiPXkindwJ6kw&_hsmi=2&utm_content=2&utm_source=hs_email>; rel="canonical"
location
https://onapproval-manage.gtnus8w2s1.ru/?utm_medium=email&_hsenc=p2ANqtz-9AjOGPAFmbSYNRntwaSXFjDU5ouYnmV4GbdWFdT0o0y8fz69tQDHXS8fjT2h58ViX2TV4v4T-naxgF5jiPXkindwJ6kw&_hsmi=2&utm_content=2&utm_source=hs_email
referrer-policy
no-referrer
server
cloudflare
vary
origin
x-content-type-options
nosniff
x-envoy-upstream-service-time
40
x-evy-trace-listener
listener_https
x-evy-trace-route-configuration
listener_https/all
x-evy-trace-route-service-name
envoyset-translator
x-evy-trace-served-by-pod
iad02/event-tracking-td/envoy-proxy-544dd46489-5xqls
x-evy-trace-virtual-host
all
x-hubspot-correlation-id
5a0ebde8-38b4-4e6b-ac1d-71c474b436d7
x-request-id
5a0ebde8-38b4-4e6b-ac1d-71c474b436d7
x-robots-tag
none
favicon.ico
onapproval-manage.gtnus8w2s1.ru/ 		315 B
669 B 		Other
General
Check archive.org
Download Go to
Full URL
https://onapproval-manage.gtnus8w2s1.ru/favicon.ico
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
188.114.97.3 Amsterdam, Netherlands, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Request headers

sec-ch-ua
"Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124"
Referer
https://onapproval-manage.gtnus8w2s1.ru/?utm_medium=email&_hsenc=p2ANqtz-9AjOGPAFmbSYNRntwaSXFjDU5ouYnmV4GbdWFdT0o0y8fz69tQDHXS8fjT2h58ViX2TV4v4T-naxgF5jiPXkindwJ6kw&_hsmi=2&utm_content=2&utm_source=hs_email
Accept-Language
de-DE,de;q=0.9;q=0.9
sec-ch-ua-mobile
?0
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
sec-ch-ua-platform
"Win32"

Response headers

date
Thu, 16 May 2024 07:39:25 GMT
content-encoding
br
cf-cache-status
EXPIRED
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ctN7J1B%2FIWoa3ALiWYxEst4m8mVZM%2FNVD%2FHMe8xtE5mGa9CLJv%2Foqe6WFBhySmfb2X%2Bwe1L98QiCwO4GjumtJwOA3ue%2BhlmK3%2BIQCljtZUfrIj2s4V1HtDqZr02REOUp%2FWhGKU%2Bd5yar4o4bUS74d1ch"}],"group":"cf-nel","max_age":604800}
content-type
text/html; charset=iso-8859-1
cache-control
max-age=14400
cf-ray
8849b6bb08b692ce-CPH
alt-svc
h3=":443"; ma=86400

Verdicts & Comments Add Verdict or Comment

0 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

0 Cookies

1 Console Messages

Source Level URL
Text
network error URL: https://onapproval-manage.gtnus8w2s1.ru/favicon.ico
Message:
Failed to load resource: the server responded with a status of 404 ()

Security Headers

This page lists any security headers set by the main page. If you want to understand what these mean and how to use them, head on over to this page

Header Value
X-Content-Type-Options nosniff

Indicators

This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.

ctblc04.na1.hubspotlinks.com
onapproval-manage.gtnus8w2s1.ru
188.114.97.3
2606:4700::6812:bc9
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855