Overview

URL t.co/PSlerifumw
IP199.16.156.75
ASNAS13414 Twitter Inc.
Location United States
Report completed2019-02-10 08:54:59 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-10 2 t.co/PSlerifumw Phishing
2019-02-10 2 t.co/PSlerifumw Phishing
2019-02-10 2 eie.edu.pe/3scu3l4/css/update/linkedin/home/ Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 199.16.156.75

Date UQ / IDS / BL URL IP
2019-02-13 03:17:45 +0100
0 - 0 - 0 https://t.co/1cbekCvDXB 199.16.156.75
2019-02-13 02:27:56 +0100
0 - 0 - 0 https://t.co/8xWLcQJnVs 199.16.156.75
2019-02-13 01:46:33 +0100
0 - 0 - 0 https://t.co/6aEtGviroN 199.16.156.75
2019-02-12 11:13:32 +0100
0 - 0 - 0 https://t.co/CODGD5v5e8 199.16.156.75
2019-02-12 10:19:27 +0100
0 - 0 - 0 t.co/yLk0CkuTIL 199.16.156.75
2019-02-11 18:23:31 +0100
0 - 0 - 0 t.co/nSgC5URCj4 199.16.156.75
2019-02-08 15:29:08 +0100
0 - 0 - 2 https://t.co/jwLGWT2DWW 199.16.156.75
2019-02-06 21:08:15 +0100
0 - 0 - 0 https://t.co/tTk629lcZC 199.16.156.75
2019-02-06 21:06:33 +0100
0 - 0 - 0 https://t.co/tTk629lcZC 199.16.156.75
2019-02-06 17:25:48 +0100
0 - 0 - 0 https://t.co/7P94okfgAr 199.16.156.75

Last 10 reports on ASN: AS13414 Twitter Inc.

Date UQ / IDS / BL URL IP
2019-07-01 10:57:30 +0200
0 - 0 - 0 https://twitter.com/spidermoviefree 104.244.42.1
2019-07-01 09:02:28 +0200
0 - 0 - 0 https://twitter.com/Crawl2019Mfull 104.244.42.129
2019-07-01 06:33:25 +0200
0 - 0 - 0 https://twitter.com/Movie_SpiderMan 104.244.42.129
2019-07-01 05:58:30 +0200
0 - 0 - 0 https://twitter.com/yesterday_free 104.244.42.65
2019-07-01 04:44:41 +0200
0 - 0 - 0 https://twitter.com/Full_Annabelle 104.244.42.129
2019-07-01 04:34:09 +0200
0 - 0 - 0 twitter.com 104.244.42.65
2019-07-01 01:03:23 +0200
0 - 0 - 0 https://twitter.com/Annabelle4Comes 104.244.42.129
2019-07-01 01:02:16 +0200
0 - 0 - 0 https://twitter.com/Annabelle3Films 104.244.42.129
2019-06-30 21:42:29 +0200
0 - 0 - 0 https://twitter.com/Movie21Star_HD/status/114 (...) 104.244.42.65
2019-06-30 19:37:05 +0200
0 - 0 - 0 https://twitter.com/laangpeenok 104.244.42.65

Last 10 reports on domain: t.co

Date UQ / IDS / BL URL IP
2019-06-30 11:36:56 +0200
0 - 0 - 0 https://t.co/PsgsNZLe28 104.244.42.5
2019-06-30 01:15:06 +0200
0 - 0 - 0 https://t.co/vWO7rUIrA6 104.244.42.197
2019-06-27 12:10:57 +0200
0 - 0 - 0 https://t.co/9e7vA7G3lm 104.244.42.5
2019-06-27 11:57:05 +0200
0 - 0 - 0 https://t.co/ptVFFYHeOB 104.244.42.5
2019-06-26 18:49:17 +0200
0 - 0 - 0 https://t.co/T8Liu8tFZl 104.244.42.133
2019-06-26 18:11:59 +0200
0 - 0 - 0 t.co/gfsvMc69zD?cmehbay2z 104.244.42.133
2019-06-26 17:08:52 +0200
0 - 0 - 0 https://t.co/ixFnYEKv6j 104.244.42.69
2019-06-25 10:07:43 +0200
0 - 0 - 0 https://t.co/MoJaFfxO96 104.244.42.5
2019-06-20 19:32:55 +0200
0 - 0 - 0 t.co/Sj3oxikGsp?scanqbaz4 104.244.42.5
2019-06-20 19:30:16 +0200
0 - 0 - 0 t.co/1P7IYKNKS1?0cqlucw 104.244.42.5


JavaScript

Executed Scripts (3)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (9)


Request Response
                                        
                                            GET /PSlerifumw HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         199.16.156.75
HTTP/1.1 301 Moved Permanently
                                        
Content-Length: 0
Date: Sun, 10 Feb 2019 07:54:27 GMT
Location: https://t.co/PSlerifumw
Server: tsa_b
x-connection-hash: dfe91d5a665d5967e3e4d44d4fd1e89d
x-response-time: 3


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=111170
Date: Sun, 10 Feb 2019 07:54:27 GMT
Etag: "5c5ebe74-1d7"
Expires: Mon, 11 Feb 2019 14:47:17 GMT
Last-Modified: Sat, 09 Feb 2019 11:50:12 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    135363a6caaea7e4cc5a04d580af2429
Sha1:   ef38be83dd7ba0439d85169d53a6e18c4e720b3d
Sha256: 2682042618f6cbe27451099daa7b7095e3f35d023e0ca1bda4d09535f8cfce66
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=115445
Date: Sun, 10 Feb 2019 07:54:27 GMT
Etag: "5c5ed39e-1d7"
Expires: Mon, 11 Feb 2019 15:58:32 GMT
Last-Modified: Sat, 09 Feb 2019 13:20:30 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    2d6a3fa066a8f6db8191119d3e1b7968
Sha1:   1cff8453a6571f10e5833bb3e179941419f17714
Sha256: b69d43f040106ab1e38392b0619ddefae89ecba48c1356ead97aa44ca4ffe7c3
                                        
                                            GET /PSlerifumw HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         199.16.156.75
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private,max-age=300
Content-Encoding: gzip
Content-Length: 205
Date: Sun, 10 Feb 2019 07:54:27 GMT
Expires: Sun, 10 Feb 2019 07:59:27 GMT
Server: tsa_b
Set-Cookie: muc=eb87957b-fa7a-4dc3-bbb2-b8bde8da7d0e; Max-Age=63072000; Expires=Tue, 9 Feb 2021 07:54:27 GMT; Domain=t.co
strict-transport-security: max-age=0
Vary: Origin
x-connection-hash: 7f7d577614a06435b1f7d70ea093b85b
x-response-time: 17
x-xss-protection: 1; mode=block; report=https://twitter.com/i/xss_report


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   205
Md5:    bd2c664bbf34dc314bcb00475b19fb78
Sha1:   642f9f70a840f4f078ba0a3ed94a11c8a95e16a4
Sha256: 480a502c257fe46650300ad1194ae4ae86aff220c713fa955640ea24aff99d21

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: muc=eb87957b-fa7a-4dc3-bbb2-b8bde8da7d0e

                                         
                                         199.16.156.75
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Content-Length: 1150
Date: Sun, 10 Feb 2019 07:54:28 GMT
Server: tsa_b
strict-transport-security: max-age=0
x-connection-hash: 7f7d577614a06435b1f7d70ea093b85b
x-response-time: 4


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    630d203cdeba06df4c0e289c8c8094f6
Sha1:   eee14e8a36b0512c12ba26c0516b4553618dea36
Sha256: bbce71345828a27c5572637dbe88a3dd1e065266066600c8a841985588bf2902
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "EBA65874A015A9C81E9B2FB42FAE1D37CC3DB4B1E98583D65863DFAABF2FD385"
Last-Modified: Sun, 10 Feb 2019 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43200
Expires: Sun, 10 Feb 2019 19:54:28 GMT
Date: Sun, 10 Feb 2019 07:54:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    5609b2750884f4e53ab6e6eace054131
Sha1:   892a32a8030a613b35417745c2c0c5f39ef04ed1
Sha256: eba65874a015a9c81e9b2fb42fae1d37cc3db4b1e98583d65863dfaabf2fd385
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.121
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Thu, 07 Feb 2019 23:53:47 GMT
Etag: "754baecaff1e4cc46efed783aba3a38f54c5a8f3"
Content-Length: 1396
Cache-Control: public, no-transform, must-revalidate, max-age=23565
Expires: Sun, 10 Feb 2019 14:27:13 GMT
Date: Sun, 10 Feb 2019 07:54:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1396
Md5:    1b9bd35751b0a7d1c5bb4232a72f6c40
Sha1:   754baecaff1e4cc46efed783aba3a38f54c5a8f3
Sha256: 3c0c37ec7efc7c305085e0db2235a48d50ac087af6c5df82503387a77a02f27f
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: muc=eb87957b-fa7a-4dc3-bbb2-b8bde8da7d0e

                                         
                                         199.16.156.75
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Content-Length: 1150
Date: Sun, 10 Feb 2019 07:54:31 GMT
Server: tsa_b
strict-transport-security: max-age=0
x-connection-hash: 7f7d577614a06435b1f7d70ea093b85b
x-response-time: 3


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    630d203cdeba06df4c0e289c8c8094f6
Sha1:   eee14e8a36b0512c12ba26c0516b4553618dea36
Sha256: bbce71345828a27c5572637dbe88a3dd1e065266066600c8a841985588bf2902
                                        
                                            GET /3scu3l4/css/update/linkedin/home/ HTTP/1.1 
Host: eie.edu.pe
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://t.co/PSlerifumw

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing