| use.fontawesome.com/releases/v5.0.6/css/all.css | 172.67.142.245 | 200 OK | 46 kB |
URL GET HTTP/2use.fontawesome.com/releases/v5.0.6/css/all.css IP172.67.142.245:443
Requested byhttps://poisontoolz.com/cgi-sys/suspendedpage.cgi CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeASCII text, with very long lines (34556) Hash42eaa52604673b64d6b356c2fd7f87e3 6b59cb703b2d4a7a2691f13008062b46a6bc7fdb ed0f122470c4d13d86bbabdc38046d743d0228204a56d786d2e17bd83fd358ce
GET /releases/v5.0.6/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poisontoolz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 23:28:36 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"42eaa52604673b64d6b356c2fd7f87e3"
last-modified: Fri, 22 Sep 2023 01:44:11 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2482019
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kr86EIi9E7dZXu8VptrNT7KFqHWpxV73PoMaZYvKm1naHuh9RwT5ebaPcNRBQi2%2FQy8TVBnVyuNY8As5zFi5N50Oh%2FmDW8j9DSmj7vDK1vzZy%2BRLzdXR6eSpFOPsb5eZDAVkR4hu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799dee6db8256cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| poisontoolz.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 188.114.96.1 | 200 OK | 1.2 kB |
URL GET HTTP/3poisontoolz.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP188.114.96.1:443
Requested byhttps://poisontoolz.com/cgi-sys/suspendedpage.cgi CertificateIssuerGoogle Trust Services LLC Subjectpoisontoolz.com Fingerprint12:EB:D9:D0:34:AA:62:E3:AA:C2:1B:00:BF:04:E0:27:6D:20:CF:FD ValiditySat, 30 Mar 2024 17:15:18 GMT - Fri, 28 Jun 2024 17:15:17 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: poisontoolz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poisontoolz.com/cgi-sys/suspendedpage.cgi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:28:36 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 20:54:07 GMT
etag: W/"6622d9ef-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tTrLov7kIazrlnzUXLpmkdEUskYGRXaGZizvJVwejnFvhEo2%2FyhEZlYockwL%2F%2BreQ0gM149rbrIitG48BSOuF3Vkl%2BXQa4zrx8buF9CWoAxY3Xgi4mQFcbmdkGY%2B3H9vJ4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799dee6cb8b712a-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 26 Apr 2024 23:28:36 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| use.fontawesome.com/releases/v5.0.6/webfonts/fa-solid-900.woff2 | 172.67.142.245 | 200 OK | 39 kB |
URL GET HTTP/2use.fontawesome.com/releases/v5.0.6/webfonts/fa-solid-900.woff2 IP172.67.142.245:443
Requested byhttps://poisontoolz.com/cgi-sys/suspendedpage.cgi CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 38784, version 1.0 Hashf9b85c9463af7103b9b24bbbf09a06ed d28d7222bcbeb8ea701a771e85f7efe006e62fb1 62554277d07b20c6bfae7c6267b3198b4846f604a37d4085bf9f54c392210b56
GET /releases/v5.0.6/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://poisontoolz.com
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 23:28:37 GMT
content-type: application/font-woff2
content-length: 38784
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "f9b85c9463af7103b9b24bbbf09a06ed"
last-modified: Fri, 22 Sep 2023 01:44:10 GMT
vary: Origin, Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZGl81OyPznR4q3binLhoBsy0UJBmPpVU8lSmoLXXYpqx9qaW7RBSVWNqn2xD7gif6q2D1Xp5sKvDWHWroI7vEwrZYw6Ws2cLMG92OrEYb0yrHRXiOZ%2BQSV8av9JlTfU58RQClVuh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799dee73efcb4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| poisontoolz.com/favicon.ico | 188.114.96.1 | 302 Found | 7.8 kB |
URL GET HTTP/3poisontoolz.com/favicon.ico IP188.114.96.1:443
Requested byhttps://poisontoolz.com/cgi-sys/suspendedpage.cgi CertificateIssuerGoogle Trust Services LLC Subjectpoisontoolz.com Fingerprint12:EB:D9:D0:34:AA:62:E3:AA:C2:1B:00:BF:04:E0:27:6D:20:CF:FD ValiditySat, 30 Mar 2024 17:15:18 GMT - Fri, 28 Jun 2024 17:15:17 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: poisontoolz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poisontoolz.com/cgi-sys/suspendedpage.cgi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 24 Apr 2024 23:28:37 GMT
content-type: text/html
location: https://poisontoolz.com/cgi-sys/suspendedpage.cgi
cache-control: no-cache, no-store, must-revalidate, max-age=0
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UjcJAVlCwZqEnNpTCzJnDrMPW9ddsexMtFlz6vQe9SaENOH1Y3VxxaJ8IkU3TS4edTFvdSAaUveV%2FAUYHdzuGkZWcoUF%2FeSL9nWqywgrob9Kz9I6hFrNpu2Fs5lJuFbDriM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799dee80c18712a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| poisontoolz.com/cgi-sys/suspendedpage.cgi | 188.114.96.1 | 200 OK | 7.8 kB |
URL GET HTTP/3poisontoolz.com/cgi-sys/suspendedpage.cgi IP188.114.96.1:443
Requested byhttps://poisontoolz.com/cgi-sys/suspendedpage.cgi CertificateIssuerGoogle Trust Services LLC Subjectpoisontoolz.com Fingerprint12:EB:D9:D0:34:AA:62:E3:AA:C2:1B:00:BF:04:E0:27:6D:20:CF:FD ValiditySat, 30 Mar 2024 17:15:18 GMT - Fri, 28 Jun 2024 17:15:17 GMT
File typeHTML document, ASCII text, with very long lines (7954), with no line terminators Hash9ed0cb5f3dca8bbd0e113e8c732781c9 3eb7caeef5281f3f558666e07ee50a3d0625b39d 32f6e267b78de40472e8a11bc3c9e5346c9be5524c9e5162543323a4e813136c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cgi-sys/suspendedpage.cgi HTTP/1.1
Host: poisontoolz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://poisontoolz.com/cgi-sys/suspendedpage.cgi
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:28:37 GMT
content-type: text/html
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0eJAKXi0MB2Z8U0uonNhWXWqXbWylbtCV4XbGRSTyv31CTyU%2Fus7ZbkPPW%2FmWg2OUXTY78DA6gz1K3ybqtKcasrVYdYS3kyws%2FH%2BM0on4DhJbjrknBS4NnjPDWlsbWpxZms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799dee85c32712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 188.114.96.1 | 302 Found | 7.8 kB |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectpoisontoolz.com Fingerprint12:EB:D9:D0:34:AA:62:E3:AA:C2:1B:00:BF:04:E0:27:6D:20:CF:FD ValiditySat, 30 Mar 2024 17:15:18 GMT - Fri, 28 Jun 2024 17:15:17 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: poisontoolz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 23:28:36 GMT
content-type: text/html
location: https://poisontoolz.com/cgi-sys/suspendedpage.cgi
cache-control: no-cache, no-store, must-revalidate, max-age=0
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=83DI%2FSkYjdRYfis8QZ3wCnpiTLHJ9xqscgzNMfEX7l%2FlUgZ%2FUCrMoZDsCQdKI%2F%2BT5XgbQ5U%2BFi7CmXux56lVcC1tFIsrN%2BauQcX98Vw02r2AuhgMebzAsA9PJncE8RabuIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799dee49ef7b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| poisontoolz.com/cgi-sys/suspendedpage.cgi | 188.114.96.1 | 200 OK | 7.8 kB |
URL User Request GET HTTP/2poisontoolz.com/cgi-sys/suspendedpage.cgi IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectpoisontoolz.com Fingerprint12:EB:D9:D0:34:AA:62:E3:AA:C2:1B:00:BF:04:E0:27:6D:20:CF:FD ValiditySat, 30 Mar 2024 17:15:18 GMT - Fri, 28 Jun 2024 17:15:17 GMT
File typeHTML document, ASCII text, with very long lines (7954), with no line terminators Hash04d94b3174be40c380003e5057fb4c77 62c168f892303b6d534fd55c4c410c3ffb8ee0e0 c63c85cf554b82ea2eaf982bec981c98a5c31e8d1a70803288cc9f156d21e069
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cgi-sys/suspendedpage.cgi HTTP/1.1
Host: poisontoolz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 23:28:36 GMT
content-type: text/html
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZneM2NPTm9mt0NbxgekbrXnIfxuDTrJnQ3Hr1X8YfFdwa7v6r926ZYlXsZoMo2R%2FrnoqizGzd8tHXM8AY4DICL0edaZJRms7CvzPAD%2B3l3p8KUKjemXj5fwqPKc9k6sEit4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799dee4ff1cb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|