URL User Request GET HTTP/2IP104.244.42.69:443
CertificateIssuerDigiCert Inc Subjectt.co FingerprintA7:2C:BA:32:AA:23:91:58:14:85:EF:CE:68:45:0A:0E:79:BF:14:70 ValidityMon, 16 Oct 2023 00:00:00 GMT - Mon, 14 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (302), with no line terminators Hash51e235f3d9e4eaf660bbcc29d72928c5 806f3c9e372fda87196ec54f279168b91b47dfd8 1d531d0cdc28f58fe50b83eb934f281d8221803122ad889f1f19ebf42c7dbc29
GET /ajrL6NkWa4 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:21:43 GMT
perf: 7402827104
vary: Origin
server: tsa_f
expires: Fri, 26 Apr 2024 03:26:44 GMT
set-cookie: muc=082a4c6a-564c-4562-852e-bfd970896db5; Max-Age=34214400; Expires=Tue, 27 May 2025 03:21:44 GMT; Domain=t.co; Secure; SameSite=None
content-type: text/html; charset=utf-8
cache-control: private,max-age=300
content-length: 206
referrer-policy: unsafe-url
content-encoding: gzip
x-transaction-id: e9dcfeabb6030c24
x-xss-protection: 0
content-security-policy: referrer always;
strict-transport-security: max-age=0
x-response-time: 198
x-connection-hash: a3a9363fe7e2f3bdc8205cda99dc8aebc2fa642a13af55d1a5f47c583e30a2dd
X-Firefox-Spdy: h2
|
IP104.244.42.69:443
CertificateIssuerDigiCert Inc Subjectt.co FingerprintA7:2C:BA:32:AA:23:91:58:14:85:EF:CE:68:45:0A:0E:79:BF:14:70 ValidityMon, 16 Oct 2023 00:00:00 GMT - Mon, 14 Oct 2024 23:59:59 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash864232b885e52799e6b0d1c37a4283a0 2c2500822c05b93cf169c338af2fdf7d04ea4260 2b56e0a792d9999e15f3ee39cabcba5cc3f88b4e640e71b3755c1424d8e12010
GET /favicon.ico HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t.co/ajrL6NkWa4
DNT: 1
Connection: keep-alive
Cookie: muc=082a4c6a-564c-4562-852e-bfd970896db5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:21:45 UTC
perf: 7402827104
server: tsa_f
content-type: image/x-icon
cache-control: no-cache, no-store, max-age=0
content-length: 675
x-transaction-id: 1d9be5a7bcb31938
strict-transport-security: max-age=0
x-response-time: 97
x-connection-hash: a3a9363fe7e2f3bdc8205cda99dc8aebc2fa642a13af55d1a5f47c583e30a2dd
X-Firefox-Spdy: h2
|
IP91.204.226.219:0 ASN#205960 Hdtidc Limited
Hashf0d79988b7772c003d04a28bd7417a62 58423a999eec2997bcfffb247e9ecd3dfd0abf44 30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain |
GET / HTTP/1.1
Host: kypmjgbyca.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 26 Apr 2024 03:21:48 GMT
Content-Length: 23
|
| kypmjgbyca.duckdns.org/?soeca | 0.0.0.0 | | 0 B |
URL User Request GET kypmjgbyca.duckdns.org/?soeca IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain |
GET /?soeca HTTP/1.1
Host: kypmjgbyca.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|