URL User Request GET HTTP/2IP104.21.50.176:443
CertificateIssuerGoogle Trust Services LLC Subjecttwitterfon.net Fingerprint8A:7D:92:BC:81:D5:A8:A4:25:F6:DC:D4:23:12:A7:1A:37:B8:40:9C ValiditySat, 16 Mar 2024 04:55:28 GMT - Fri, 14 Jun 2024 04:55:27 GMT
File typeHTML document, ASCII text, with very long lines (394) Hash84cecf3ec10c50109ddf18f8c6c07218 406082ba8bda3f6932d4720a9b9da22f8b99c37a 9b3fdf561d349cf7b21ff1486fabfbe2e31a46b0bd68bac83b13c0455097d861
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: twitterfon.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 502 Bad Gateway
date: Wed, 24 Apr 2024 20:19:12 GMT
content-type: text/html; charset=UTF-8
content-length: 6320
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s%2FkUT6n6hkTG%2BqGDDGHtX5goo9ZjsvFVhZ9YhyTly%2BMXOe8ZljeIkTWIAn%2Faa4VH7d0%2F%2FizsWlckeTaPAovQ3Ln%2FfCW3sTJl9m1M0L4A%2FUnsDJdhWreX%2FTgiGbB3FIVLCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
server: cloudflare
cf-ray: 8798c96ba8230b31-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
URL User Request GET HTTP/2IP172.67.164.183:443
CertificateIssuerGoogle Trust Services LLC Subjecttwitterfon.net Fingerprint8A:7D:92:BC:81:D5:A8:A4:25:F6:DC:D4:23:12:A7:1A:37:B8:40:9C ValiditySat, 16 Mar 2024 04:55:28 GMT - Fri, 14 Jun 2024 04:55:27 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hashc6a5abb575f4c14729b299058539998f 90a8e0cfc7695944c9d28f3cf908ecbeb3367d0c 7271dd5c11fb9a1052a5e91a09afbe7d148fd3388dc51c338df62a0a16f06739
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: twitterfon.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 24 Apr 2024 20:19:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-powered-by: Niagahoster
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: User-Agent,Accept-Encoding,Accept-Encoding
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5HIjuBm3Ow5O%2FGIlW5VdVJWAJhVf2mMzpUae8TInsUIWutLyE%2FV%2BkwtTF0vwlB17WsxggRlkeGC5qWjWkKISw%2Blwos6dYs0u19h8iKK4A6HyuthDVs73Mj37H14n0YINUg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8798c970fa5d56b9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
| twitterfon.net/favicon.ico | 172.67.164.183 | 403 Forbidden | 0 B |
URL GET HTTP/2twitterfon.net/favicon.ico IP172.67.164.183:443
CertificateIssuerGoogle Trust Services LLC Subjecttwitterfon.net Fingerprint8A:7D:92:BC:81:D5:A8:A4:25:F6:DC:D4:23:12:A7:1A:37:B8:40:9C ValiditySat, 16 Mar 2024 04:55:28 GMT - Fri, 14 Jun 2024 04:55:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: twitterfon.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Referer: http://twitterfon.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Wed, 24 Apr 2024 20:19:13 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-powered-by: Niagahoster
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: User-Agent,Accept-Encoding,Accept-Encoding
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sfp%2BuXtE8EDZ3de1wAVhVb71t0cXaXOLsIxcrBNua2xNctq9bM4z%2BQyWcsQPdTGPk9E%2F%2B%2FJjH8QR10TJge1uJF%2BPeMwoGWkT%2Fsnl8SQcIYw2gNhCJlNAJVcw2ezPmZoYJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798c974bd555696-OSL
content-encoding: br
X-Firefox-Spdy: h2
|