Report - tinyurl.com/mrx22efs?AIY=fOYGw8iZTU

Report Overview

Submitted URL
tinyurl.com/mrx22efs?AIY=fOYGw8iZTU
IP
172.67.1.225
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 09:15:31
Access
public
Website Title
globeapp.icu/gGbSAS?AIY=fOYGw8iZTU
Final URL
globeapp.icu/gGbSAS?AIY=fOYGw8iZTU
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
globeapp.icu	unknown	unknown	No data	No data	1.8 kB	1.1 kB	38.60.245.14
tinyurl.com	10084	2002-01-27	2012-05-21	2024-04-12	491 B	1.2 kB	104.20.138.65

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (5)

	URL	IP	Response	Size
	globeapp.icu/gGbSAS?AIY=fOYGw8iZTU	38.60.245.14	404 Not Found	9 B
URL User Request GET HTTP/1.1 globeapp.icu/gGbSAS?AIY=fOYGw8iZTU IP 38.60.245.14:443 ASN #138915 Kaopu Cloud HK Limited Certificate IssuerLet's Encrypt Subjectglobeapp.icu Fingerprint69:62:8F:E8:09:4B:61:69:47:BF:E1:05:FC:8B:AD:59:F7:A8:8C:3D ValidityMon, 15 Apr 2024 12:45:23 GMT - Sun, 14 Jul 2024 12:45:22 GMT File type ASCII text, with no line terminators Size 9 B (9 bytes) Hash 9d1ead73e678fa2f51a70a933b0bf017 d205cbd6783332a212c5ae92d73c77178c2d2f28 0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5 HTTP Headers `GET /gGbSAS?AIY=fOYGw8iZTU HTTP/1.1 Host: globeapp.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 404 Not Found Server: nginx/1.24.0 Date: Tue, 16 Apr 2024 09:15:07 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 9 Connection: keep-alive Access-Control-Allow-Origin: * ETag: W/"9-0gXL1ngzMqISxa6S1zx3F4wtLyg"`

	globeapp.icu/gGbSAS?AIY=fOYGw8iZTU	38.60.245.14	404 Not Found	169 B
URL User Request GET HTTP/1.1 globeapp.icu/gGbSAS?AIY=fOYGw8iZTU IP 38.60.245.14:443 ASN #138915 Kaopu Cloud HK Limited Certificate IssuerLet's Encrypt Subjectglobeapp.icu Fingerprint69:62:8F:E8:09:4B:61:69:47:BF:E1:05:FC:8B:AD:59:F7:A8:8C:3D ValidityMon, 15 Apr 2024 12:45:23 GMT - Sun, 14 Jul 2024 12:45:22 GMT File type HTML document, ASCII text, with CRLF line terminators Size 169 B (169 bytes) Hash 5584cd241a762d7a7488f14d5409293c a88c6560e46f39dca33a1bbbc74c319e89adfe2a 56fd937f2948b7fc1b223fc1da61e781a93f6b4c74cfd88e1115bb74418c7dff HTTP Headers `GET /gGbSAS?AIY=fOYGw8iZTU HTTP/1.1 Host: globeapp.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Server: nginx/1.24.0 Date: Tue, 16 Apr 2024 09:15:08 GMT Content-Type: text/html Content-Length: 169 Connection: keep-alive Location: https://globeapp.icu/gGbSAS?AIY=fOYGw8iZTU`

	globeapp.icu/gGbSAS?AIY=fOYGw8iZTU	38.60.245.14	404 Not Found	9 B
URL User Request GET HTTP/1.1 globeapp.icu/gGbSAS?AIY=fOYGw8iZTU IP 38.60.245.14:443 ASN #138915 Kaopu Cloud HK Limited Certificate IssuerLet's Encrypt Subjectglobeapp.icu Fingerprint69:62:8F:E8:09:4B:61:69:47:BF:E1:05:FC:8B:AD:59:F7:A8:8C:3D ValidityMon, 15 Apr 2024 12:45:23 GMT - Sun, 14 Jul 2024 12:45:22 GMT File type ASCII text, with no line terminators Size 9 B (9 bytes) Hash 9d1ead73e678fa2f51a70a933b0bf017 d205cbd6783332a212c5ae92d73c77178c2d2f28 0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5 HTTP Headers `GET /gGbSAS?AIY=fOYGw8iZTU HTTP/1.1 Host: globeapp.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 404 Not Found Server: nginx/1.24.0 Date: Tue, 16 Apr 2024 09:15:08 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 9 Connection: keep-alive Access-Control-Allow-Origin: * ETag: W/"9-0gXL1ngzMqISxa6S1zx3F4wtLyg"`

	globeapp.icu/favicon.ico	38.60.245.14	404 Not Found	9 B
URL GET HTTP/1.1 globeapp.icu/favicon.ico IP 38.60.245.14:443 ASN #138915 Kaopu Cloud HK Limited Requested by https://globeapp.icu/gGbSAS?AIY=fOYGw8iZTU Certificate IssuerLet's Encrypt Subjectglobeapp.icu Fingerprint69:62:8F:E8:09:4B:61:69:47:BF:E1:05:FC:8B:AD:59:F7:A8:8C:3D ValidityMon, 15 Apr 2024 12:45:23 GMT - Sun, 14 Jul 2024 12:45:22 GMT File type ASCII text, with no line terminators Size 9 B (9 bytes) Hash 9d1ead73e678fa2f51a70a933b0bf017 d205cbd6783332a212c5ae92d73c77178c2d2f28 0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: globeapp.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://globeapp.icu/gGbSAS?AIY=fOYGw8iZTU Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 404 Not Found Server: nginx/1.24.0 Date: Tue, 16 Apr 2024 09:15:09 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 9 Connection: keep-alive Access-Control-Allow-Origin: * ETag: W/"9-0gXL1ngzMqISxa6S1zx3F4wtLyg"`

	tinyurl.com/mrx22efs?AIY=fOYGw8iZTU	104.20.138.65	301 Moved Permanently	9 B
URL User Request GET HTTP/2 tinyurl.com/mrx22efs?AIY=fOYGw8iZTU IP 104.20.138.65:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjecttinyurl.com Fingerprint84:03:D8:A5:59:CC:8A:4A:44:A5:81:7D:68:AA:A0:B7:86:A6:AA:44 ValiditySun, 31 Mar 2024 23:28:39 GMT - Sat, 29 Jun 2024 23:28:38 GMT File type Size 9 B (9 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /mrx22efs?AIY=fOYGw8iZTU HTTP/1.1 Host: tinyurl.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently date: Tue, 16 Apr 2024 09:15:06 GMT content-type: text/html; charset=UTF-8 location: https://globeapp.icu/gGbSAS?AIY=fOYGw8iZTU referrer-policy: unsafe-url x-robots-tag: noindex x-tinyurl-redirect-type: redirect cache-control: max-age=0, must-revalidate, no-cache, no-store, private x-tinyurl-redirect: eyJpdiI6IlNLU1gwanNKRzd6d1pUT2VPM0hhNkE9PSIsInZhbHVlIjoiVUgwRFZ3anljakNLRXcxNWd6ais3L280dFF1b2ZrN3NVM3F5YmxES1JNVTJqdThUTUdJS3BGZ1RNWkZtRlMrTG9RalVxaHRZREdFbWlNbC9YZTRKRGc9PSIsIm1hYyI6ImZlNWNkMjM4N2QyYjEzMTNjZmVkYzUxMTkzNDMyYTkxMTFjYWIyN2Q0MTdmZGRkMjEyMjlmZDFmMmUxNzc0Y2EiLCJ0YWciOiIifQ== x-content-type-options: nosniff x-xss-protection: 1; mode=block cf-cache-status: HIT set-cookie: __cf_bm=WxT8OySp7tzFHEYRYje0Kma7q1M56x94uJenk.YIVKI-1713258906-1.0.1.1-jNFYJAE3nuzJUhlGjHmiYF3bsCZsq.XuALbhlf8AFrB.37QdkdrbTiq10pyFgROzkOOGFHhaYcGtmefJAnE5ow; path=/; expires=Tue, 16-Apr-24 09:45:06 GMT; domain=.tinyurl.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 875311a509f5b505-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2