Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

aliexpress.com #26376

Closed
spirillen opened this issue Jan 13, 2025 · 1 comment
Closed

aliexpress.com #26376

spirillen opened this issue Jan 13, 2025 · 1 comment
Assignees
@spirillen
Labels
AdWare Any kind of ads, banners etc based on privacy violating behavior Tracking Basically the same as SpyWare but TrackWare is used to Track you're online habits TypoSquatting Domains used to misdirect typosquatted addresses
Milestone
Adware

Comments

@spirillen
Copy link
Contributor

spirillen commented Jan 13, 2025
edited
Loading

Comments

No response

Wildcard domain records

null

Sub-Domain records

adservice.aliexpress.com|adware
best.aliexpress.com|adware
campaign.aliexpress.com|adware
click.aliexpress.com|adware
s.click.aliexpress.com|adware
us-click.aliexpress.com|adware
acookie.aliexpress.com|tracking
fourier.aliexpress.com|tracking
gtreus.aliexpress.com|tracking
moduleanalysis.aliexpress.com|tracking
pcookie.aliexpress.com|tracking
wp.aliexpress.com|tracking
alimebot.aliexpress.com|Chat
de.aliexpress.com|?
fr.aliexpress.com|?
best.aliexpress.com|typosquatting

Hosts (RFC:952) specific records, not used by DNS RPZ firewalls

null

Safe Search records

null

Screenshots

Screenshot, click to expand

image

Links to external sources

DNS lookup

aliexpress.com. 2266    IN      NS      ns1.alibabadns.com.
aliexpress.com. 2266    IN      NS      ns2.alibabadns.com.

logs from uBlock Origin

Logger output
+3 de.aliexpress.com 3 get image https://ae01.alicdn.com/images/eng/wholesale/icon/aliexpress.ico
+3 ##[href^="https://www.facebook.com"] de.aliexpress.com get dom https://de.aliexpress.com/?gatewayAdapt=glo2deu
+3 ##[href^="https://twitter.com"] de.aliexpress.com get dom https://de.aliexpress.com/?gatewayAdapt=glo2deu
+3 ##[href^="https://play.google.com/store/"] de.aliexpress.com get dom https://de.aliexpress.com/?gatewayAdapt=glo2deu
+3 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Sd7cfb8345479453ba8323296a3692735L/40x40.png
+3 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/H6dea52a7c0df4bd4846cec6add0060acM.png
+3 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Heb2cbbfeb7bf407f9cbe7fdd8cdd82d5b.png
+3 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Hf5aa563a0e8e4c7e93b6340dd38ebd30B.png
+3 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/H92546404c05349bd9a64fa2eb268541e1.png
+3 ||alicdn.com/g/lzd_sec/lwsc-g/index.js -- de.aliexpress.com 3 get script https://assets.alicdn.com/g/lzd_sec/LWSC-G/index.js
+3 ||aliexpress-media.com/g/ae-fe/global/0.0.3/index.js -- de.aliexpress.com 3 get script https://assets.aliexpress-media.com/g/ae-fe/global/0.0.3/index.js
+3 de.aliexpress.com 3 get script https://assets.aliexpress-media.com/g/ae-fe/cosmos/0.0.331/pc/login-channel-update.js
+3 de.aliexpress.com 3 get font https://assets.aliexpress-media.com/g/ae-fe/static-ui/open-sans/mem5YaGs126MiZpBA-UNirkOUuhpKKSTjw.woff2
+3 de.aliexpress.com 3 get font https://assets.aliexpress-media.com/g/ae-fe/static-ui/tt-norms-pro/Medium.woff2
+3 de.aliexpress.com 3 get font https://assets.aliexpress-media.com/g/ae-fe/static-ui/open-sans/mem5YaGs126MiZpBA-UN7rgOUuhpKKSTjw.woff2
+3 de.aliexpress.com 3 get font https://assets.aliexpress-media.com/g/ae-fe/static-ui/tt-norms-pro/DemiBold.woff2
+3 de.aliexpress.com 3 get font https://assets.aliexpress-media.com/g/ae-fe/static-ui/open-sans/mem8YaGs126MiZpBA-UFVZ0bf8pkAg.woff2
+3 de.aliexpress.com 3 get font https://assets.aliexpress-media.com/g/ae-fe/static-ui/tt-norms-pro/Bold.woff2
+3 de.aliexpress.com 3 get font https://assets.aliexpress-media.com/g/ae-fe/static-ui/tt-norms-pro/Normal.woff2
+2 ||aliexpress-media.com/g/ae-fe/global/0.0.3/index.js -- de.aliexpress.com 3 get script https://assets.aliexpress-media.com/g/ae-fe/global/0.0.3/index.js
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Sf7c96fd2256e4c07b4e4ca44c4180108m/65x64.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Sceceb7881fb94e33ae4a4a0366a6312f7/65x64.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S608363f8a6b34a858ee02f2a0a3cfc51j.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S1509b6cd14fd472f86fc4dabc310985eg.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S2f43a2bc17e241fd90cca44b5f48c1fdx.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S789db90493814561942f816e48423b15I.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Sa260ea7e07174c75ace61c75425cf81eb.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S86ec4000aa664c38af03a34ca8411519y.png
+2 ||go-mpulse.net^ -- de.aliexpress.com 3 get script https://s.go-mpulse.net/boomerang/QNAFN-M5G8E-MTGE9-MRVZ4-ECB7Z
+2 behind-the-scene 0,3 get xhr https://[ff00::]/nscl/common/SyncMessage/request.json?id=86c4f646-53bf-43a0-b413-5b1358fc3d1a%3A5f645a14-ea88-4f3a-b684-501266c7be35
+2 ##+js(addEventListener-defuser, mouseleave) de.aliexpress.com get scriptlet https://de.aliexpress.com/?gatewayAdapt=glo2deu
+2 de.aliexpress.com 3 get script https://assets.aliexpress-media.com/g/ae-dida/home-pc/0.0.92/index.js
+2 de.aliexpress.com 3 get script https://assets.alicdn.com/g/code/npm/@alife/nano-cross-page-loader/0.0.28/_cross_page_loader_.js
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S80c180c9d9bd4f0eb29a647ee6c87d3bD/240x168.png
+2 de.aliexpress.com 3 get script https://assets.aliexpress-media.com/g/ae-fe/page-header-ui/0.0.46/js/index.js
+2 de.aliexpress.com 3 get css https://assets.aliexpress-media.com/g/ae-fe/page-header-ui/0.0.46/css/index.css
+2 ||alicdn.com/g/lzd_sec/lwsc-g/index.js -- de.aliexpress.com 3 get script https://assets.alicdn.com/g/lzd_sec/LWSC-G/index.js
+2 de.aliexpress.com 3 get script https://assets.aliexpress-media.com/g/ae-fe/cosmos/0.0.331/pc/index.js
+2 ||aliexpress-media.com/g/ae-fe/global/0.0.3/index.js -- de.aliexpress.com 3 get script https://assets.aliexpress-media.com/g/ae-fe/global/0.0.3/index.js
+2 de.aliexpress.com 3 get css https://assets.aliexpress-media.com/g/ae-fe/cosmos/0.0.331/pc/index.css
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S31035a5cab71465895c4d308f8e8d2acn/594x594.jpg
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Sab9a8d6874274290862257847f204fe92/231x102.png
+2 de.aliexpress.com 3 get image https://ae-pic-a1.aliexpress-media.com/kf/Sf0d09fcd895d498a96a12fa81c5e144bJ.jpg_480x480.jpg_.webp
+2 de.aliexpress.com 3 get image https://ae-pic-a1.aliexpress-media.com/kf/S99a2c28d6b334d30bd6abeb0cc2e0d3bE.jpg_480x480.jpg_.webp
+2 de.aliexpress.com 3 get image https://ae-pic-a1.aliexpress-media.com/kf/Sc8587bb28c5c45e5af98e22a92f199a4V.jpg_480x480.jpg_.webp
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S213f18d82e794cb580fc2b59738b061fQ.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S588971e0387446a4bcf202557655fc61t.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S1d5267d0fddd4213810e41ed1a4ebf247.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S8e54be2a880c48c88b7e50a5fc77654cB.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Sf04ecf10e8d54846b9f6e3c87a973602Z/201x62.png
+2 de.aliexpress.com 3 get image https://ae-pic-a1.aliexpress-media.com/kf/S182443522bfc43ffbbb072d89d470df5c.jpg_480x480.jpg_.webp
+2 de.aliexpress.com 3 get image https://ae-pic-a1.aliexpress-media.com/kf/A49def036434a4f5c908f32a6bfc16dc40.jpg_480x480.jpg_.webp
+2 de.aliexpress.com 3 get image https://ae-pic-a1.aliexpress-media.com/kf/S6d11be9c50b148f2928e924a3dd958a9N.jpg_480x480.jpg_.webp
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S1fa2ebed8eb04c4597523704c386ff5ag/48x48.gif
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S493ec270c78c4b8b90b8993ec0197d3a6/48x48.png
+2 de.aliexpress.com 3 get image https://ae-pic-a1.aliexpress-media.com/kf/S872f63d6fb6c4218aa7e61d9f95e1b0cJ.jpg_480x480.jpg_.webp
+2 de.aliexpress.com 3 get image https://ae-pic-a1.aliexpress-media.com/kf/Sbd513ab772cc40109bc43b628f21ca222.jpg_480x480.jpg_.webp
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S41f4d1d8fe7b4fe3a65c5450e45c4e9aT/14x14.png
+2 de.aliexpress.com 3 get image https://ae-pic-a1.aliexpress-media.com/kf/S11846384702046cfa9bc4ba5917e0bfeA.jpg_480x480.jpg_.webp
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S61f64cc53af44467a5c388a207f50a2ax/48x48.gif
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Sda7bc0f59e35491ea205477ad280916eq/48x48.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Saac25fb9678c45128bdb89420ecc36ad2/54x54.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/Sd90751bfe66c4204bbccff976925e2e88/54x54.png
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S2fcb9f97d7c0485391fe9455dd7a7b24K/54x54.png
+2 ##+js(addEventListener-defuser, mouseleave) de.aliexpress.com get scriptlet https://de.aliexpress.com/?gatewayAdapt=glo2deu
+2 de.aliexpress.com 3 get image https://ae01.alicdn.com/kf/S3a65bb384c96466f9e900867f05ade47e.png
+2 behind-the-scene 0,3 get other https://de.aliexpress.com/?gatewayAdapt=glo2deu
+1 behind-the-scene 0,3 get other https://www.aliexpress.com/
+1 de.aliexpress.com 1 get doc https://de.aliexpress.com/?gatewayAdapt=glo2deu
+0 www.aliexpress.com 1 get doc https://www.aliexpress.com/
@spirillen spirillen added AdWare Any kind of ads, banners etc based on privacy violating behavior Tracking Basically the same as SpyWare but TrackWare is used to Track you're online habits TypoSquatting Domains used to misdirect typosquatted addresses labels Jan 13, 2025
@spirillen spirillen added this to the Adware milestone Jan 13, 2025
@spirillen spirillen self-assigned this Jan 13, 2025
@spirillen
Copy link
Contributor Author

HTTP header

HTTP response, click to expand 
HTTP/2 301 
date: Mon, 13 Jan 2025 13:06:14 GMT
content-type: text/html
content-length: 357
location: https://www.aliexpress.com/
via: global-aserver033081230098.sg52[web,301]
server: Tengine/Aserver
eagleeye-traceid: 2151e66217367735739924877e7d28
strict-transport-security: max-age=31536000
timing-allow-origin: *

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 337
P3P: CP="CAO PSA OUR"
Location: https://de.aliexpress.com/?gatewayAdapt=glo2deu
Access-Control-Allow-Origin: https://hz.aliexpress.com
Server: Tengine/Aserver
EagleEye-TraceId: 210388c917367735749295511e36f5
Strict-Transport-Security: max-age=31536000
Timing-Allow-Origin: *
Date: Mon, 13 Jan 2025 13:06:14 GMT
Connection: keep-alive
Set-Cookie: ali_apache_id=33.3.136.201.1736773574934.043527.5; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
Set-Cookie: xman_us_f=x_locale=de_DE&x_l=0&x_c_chg=1&acs_rt=54f1b2eed8b74385b87f8661fef4d6d5; Domain=.aliexpress.com; Expires=Sat, 31-Jan-2093 16:20:21 GMT; Path=/
Set-Cookie: acs_usuc_t=x_csrf=_f2o1o5g2dnk&acs_rt=54f1b2eed8b74385b87f8661fef4d6d5; Domain=.aliexpress.com; Path=/
Set-Cookie: intl_locale=de_DE; Domain=.aliexpress.com; Path=/
Set-Cookie: aep_usuc_f=site=deu&c_tp=EUR&region=DE&b_locale=de_DE; Domain=.aliexpress.com; Expires=Sat, 31-Jan-2093 16:20:21 GMT; Path=/
Set-Cookie: xman_t=a6EoxnLDhOWgFw8AQgXaktyIn4VZpaj7QEbs79/4lei4/xX2mrEvbdC1xltXQsbU; Domain=.aliexpress.com; Expires=Sun, 13-Apr-2025 13:06:14 GMT; Path=/; HttpOnly
Set-Cookie: intl_common_forever=oP0qA8LuZ15yqjWUCsIjZWo6R/x/1UEhxd7Im+tqvLXsST1af3O5YQ==; Domain=.aliexpress.com; Expires=Sat, 31-Jan-2093 16:20:21 GMT; Path=/; HttpOnly
Set-Cookie: xman_f=mh5UQOR9Cf+WyXl1DylS97oWF+KyGyf3M/yJ/dgI4zgxa462rCtsbjq1fy3uBkiff078flUEp2UAYIDjT71gvbNWaGtbrHQC6ZzVzFemYa2K3fa6KmVzKA==; Domain=.aliexpress.com; Expires=Sat, 31-Jan-2093 16:20:21 GMT; Path=/; HttpOnly
X-Akamai-Fwd-Auth-SHA: B52445B7A43389F4327D8D4928F041D23F006D458D211B4E909759118E1DD911
X-Akamai-Fwd-Auth-Data: 469343336, 2.22.52.138, 1736773574, 185.220.101.105
X-Akamai-Fwd-Auth-Sign: JjNdf+3v9AKf5KLQdAscDAPsXhNFNzUzFf0aDqyWgotpD8A8FbwSRVYw3phLB+tbEQ2EGCSF66PmECpt13Xsui7k9jyIGYMqxRqUAWyxI6I=
Server-Timing: ak_p; desc="1736773574528_35009674_10332791_2643_9718_89_222_-";dur=1

HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
P3P: CP="CAO PSA OUR"
X-Application-Context: ae-fn-gateway-f:7001
Server: Tengine/Aserver
EagleEye-TraceId: 211b816617367735756103459e3b8f
Strict-Transport-Security: max-age=31536000
Timing-Allow-Origin: *
Cache-Control: max-age=60
Expires: Mon, 13 Jan 2025 13:07:16 GMT
Date: Mon, 13 Jan 2025 13:06:16 GMT
Connection: keep-alive
Set-Cookie: ali_apache_id=33.27.129.102.1736773575609.181259.6; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
Set-Cookie: xman_us_f=x_locale=de_DE&x_l=0&x_c_chg=1&acs_rt=afed9b03abc24bdfadb0a5c6f167f7a5; Domain=.aliexpress.com; Expires=Sat, 31-Jan-2093 16:20:22 GMT; Path=/
Set-Cookie: intl_common_forever=XalKdzWccMtPTk5DWjm3Rrw5FGWkY9x9GWoZfkFSBXI8+uwvTcnGjw==; Domain=.aliexpress.com; Expires=Sat, 31-Jan-2093 16:20:22 GMT; Path=/; HttpOnly
Set-Cookie: intl_locale=de_DE; Domain=.aliexpress.com; Path=/
Set-Cookie: xman_f=8lpHHHivHaiyujdiI+JnJhzY5OGMO76Bc92+D9zc9N31hSoYyLs1viqMh58j3yKwGSigBoVXOkNQtHP1UTT+a4xw4av+VbwGLyz20/fhtpNM2KsQxHo2EQ==; Domain=.aliexpress.com; Expires=Sat, 31-Jan-2093 16:20:22 GMT; Path=/; HttpOnly
Set-Cookie: acs_usuc_t=x_csrf=t56wwtjc8525&acs_rt=afed9b03abc24bdfadb0a5c6f167f7a5; Domain=.aliexpress.com; Path=/
Set-Cookie: xman_t=CCAEIEQeyZe1gSjv7t39y6qQW8e6Esg2CgeFIQ8z1kA0yO6N4BAH27Zzhn0BoIAd; Domain=.aliexpress.com; Expires=Sun, 13-Apr-2025 13:06:15 GMT; Path=/; HttpOnly
Set-Cookie: aep_usuc_f=site=deu&c_tp=EUR&region=DE&b_locale=de_DE; Domain=.aliexpress.com; Expires=Sat, 31-Jan-2093 16:20:22 GMT; Path=/
X-Akamai-Fwd-Auth-SHA: E3ABDDF519D1563ABDA4534AF81C32260246DECF2FB81C29C892F23CA039C4E2
X-Akamai-Fwd-Auth-Data: 953499338, 2.22.52.138, 1736773576, 185.220.101.105
X-Akamai-Fwd-Auth-Sign: 9vXLZiTjOzefykWX2bAvFcD8OeUJB6VtsWMy/n23xn7WeyJg1mHIb6H0p3oNiyx37U7OUCTjSB+sQCgkkolUTZKnVBVhor3Y/FGKbPxx3Sw=
Server-Timing: ak_p; desc="1736773575229_35009674_10333427_58314_8614_70_226_-";dur=1

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@spirillen spirillen

Labels
AdWare Any kind of ads, banners etc based on privacy violating behavior Tracking Basically the same as SpyWare but TrackWare is used to Track you're online habits TypoSquatting Domains used to misdirect typosquatted addresses
Projects
None yet
Milestone
Adware
Development

No branches or pull requests
1 participant
@spirillen