This PHISHing or SPAM-site flagged?

[polonus]

L.S.,

See: https://urlscan.io/result/54482024-f86c-4a0e-b1fd-9364bc0c1790/

also https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=Xl19XW58dlt9dXNbbmZ7XnRbXW5oe2xwLm57dGA%3D~enc

Re: https://www.virustotal.com/gui/url/9f8b52d6c04a96ff47f0b6c46cc52bedb39a2de8f9eaac55e9e02e385473f36b/detection

2 engines flag that IP: https://www.virustotal.com/gui/ip-address/35.186.238.101/detection

Relations show more flagged covid-19 related spam sites on this Google IP :
https://www.virustotal.com/gui/ip-address/35.186.238.101/relations

What sites can you trust and what sites there you cannot trust through those dark days of being locked-down?
Mind your clicks, folks, check and contra-check.

Keep your distance also from fraud, malware, cyberspooks, cybercriminals and snake-oil pendlers.
Keep them cyber-criminals also at a six foot distance

polonus (volunteer 3rd party cold reconnaissance website security analyst and website error-hunter)

[polonus]

This is where we are being led through this site: -https://www.google.com/adsense/domains/caf.js
Results from scanning URL: -https://www.google.com/adsense/domains/caf.js
Number of sources found: 96
Number of sinks found: 51

Results from scanning URL: -https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
Number of sources found: 2
Number of sinks found: 2
&
Results from scanning URL: -https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
Number of sources found: 47
Number of sinks found: 8

also linking to: Results from scanning URL: -https://www.blogger.com/static/v1/widgets/3638369130-widgets.js
Number of sources found: 9
Number of sinks found: 11

&  : Results from scanning URL: -https://www.blogger.com/static/v1/widgets/3638369130-widgets.js
Number of sources found: 98
Number of sinks found: 41

Website on openresty server: https://www.shodan.io/host/35.186.238.101
 (parameter flaw: https://www.cvedetails.com/cve/CVE-2018-9230/)

cookies: * caf  & * country-IP-address with Host only attrib.
Re: https://urlscan.io/result/54482024-f86c-4a0e-b1fd-9364bc0c1790/#behaviour
No tracking ads and security threats detected. No 3rd party trackers on this site.
-> https://urlscan.io/result/54482024-f86c-4a0e-b1fd-9364bc0c1790/dom/

But this is certainly tracking from there: Heads up! ZenMate Web Firewall blocked this site from loading as it's classified under Tracking.
-https://d1hi41nc56pmug.cloudfront.net/static/js/main.5473c6d4.js
Why that is, see here: https://aw-snap.info/file-viewer/?protocol=secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=IzFoWzQxbl41NnBtdWcuXmxddSNmfV1udC5ue3Rgc3R8dFteYGpzYG18W24uNTQ3M142IzQuanM%3D~enc

because: DOM-XSS results from scanning URL: -https://d1hi41nc56pmug.cloudfront.net/static/js/main.5473c6d4.js
Number of sources found: 53
Number of sinks found: 26
&
Results from scanning URL: -https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
Number of sources found: 34
Number of sinks found: 15 ->  JS Copyright (C) Federico Zivolo 2019
&
Results from scanning URL: -https://cdnjs.cloudflare.com/ajax/libs/iCheck/1.0.2/icheck.min.js
Number of sources found: 36
Number of sinks found: 16

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)