phishing scam

English

GCLB

__cf_bm

JSESSIONID

Domain 'cw292.infusionsoft.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'cw292'. Count 12 characters in 'infusionsoft' holding five vowels versus 7 consonants. It segments into two words: infusion, soft. The median word length lands at six characters. Most frequently, 'infusion' shows up in English. Usage also turns up in Chinese (Pinyin) and German contexts. Net impression: English phrase.

html/ca/40/ca40f1b6-b8c6-4b50-9de4-3de91ec5ab70_fallback.html.gz

Powered by Keap

optOutId

optOutHash

token

emailSentId

emailSentHash

optingType

optOutOptions

feedbackComment

html/ca/40/ca40f1b6-b8c6-4b50-9de4-3de91ec5ab70.html.gz

frame-ancestors 'self' http://localhost:10239 http://local.infusiontest.com:10239 https://local.infusiontest.com:10239 https://app.intg.infusiontest.com https://app.stge.infusiontest.com https://app.infusionsoft.com

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

CSC Corporate Domains, Inc.

INFUSIONSOFT.COM

Amazon EC2 Abuse

IP Management

Amazon AWS Network Operations

Amazon Technologies Inc.

AWS RPKI Management POC

IP Routing

Amazon EC2 Network Operations

AT-88-Z

(function() {
                            var styleArray = ["/resources/stylesheets/global-customer-facing.css"];
                            if (window.Infusion) {
                                Inf

(function() {
                            var styleArray = ["/resources/emailoptstatus/OptOutUnsubscribe.css"];
                            if (window.Infusion) {
                                Infus


            function handleDecline() {
                var optOutForm = document.getElementById('optOutFormContainer');
                var declineMessage = document.getElementById('decline-message')

Script

PoweredBy

Cloudflare Bot Management

Google Cloud

HSTS

Google Cloud CDN

Cloudflare

✅ Low Risk - https://cw292.infusionsoft.com/app/optOut/noConfirm/58679197/8db7dbd19bda5f9c

Requests	IP Address	Location	AS Autonomous System
6	52.216.36.105	Ashburn, Virginia, United States	AS16509AMAZON-02
0	13.226.247.30	United States	AS16509AMAZON-02
0	104.18.7.143	United States	AS13335CLOUDFLARENET
0	16.182.69.113	Ashburn, Virginia, United States	AS16509AMAZON-02
0	104.18.6.143	United States	AS13335CLOUDFLARENET
0	2606:4700::6812:68f	United States	AS13335CLOUDFLARENET
0	13.226.247.142	United States	AS16509AMAZON-02
0	13.226.247.128	United States	AS16509AMAZON-02
0	52.216.216.81	Ashburn, Virginia, United States	AS16509AMAZON-02
0	54.231.232.113	Ashburn, Virginia, United States	AS16509AMAZON-02
6	16	-	-

Security Scan Report: cw292.infusionsoft.com

Summary

AI Security Verdict

Safe Website

Safety Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies5

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History