| | 188.114.96.1 | 301 Moved Permanently | 41 B |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerLet's Encrypt Subjectnyxfunnel.com FingerprintD8:32:73:53:4F:36:C5:76:40:87:C9:16:26:C5:C4:10:8E:E2:18:0F ValidityTue, 02 Apr 2024 13:18:32 GMT - Mon, 01 Jul 2024 13:18:31 GMT
File typeASCII text, with no line terminators Hash33a385611887128dfd71993795cc9f05 e8a52965e85e4f751c287a93aa7d1bac331bd151 2ab46e384d926c2e61449ac05686074c2374bdb1dce84f7da1174bb2406a566a
GET / HTTP/1.1
Host: nyxfunnel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 02 May 2024 18:41:02 GMT
content-type: text/plain; charset=utf-8
content-length: 41
location: https://www.nyxfunnel.com/
strict-transport-security: max-age=31536000
x-nf-request-id: 01HWX9R99HP4QQ9CDRG341ZCT4
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q61I6Qnnsd6YpPfqk2gEp5GQFS5pRce2cRCbFd9LsbVfOp55L1GnMl5jimyZNkFuuc%2FXMm%2B7OulXWU5eVsRSzfC5cI6h6C7IBxOIBxrUytgsWf%2FNgzrep%2F%2BI0OK9JEOC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87da24a73d10568b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| gauvaiho.net/zone?&pub=0&zone_id=6413299&is_mobile=false&domain=www.nyxfunnel.com&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=a34f1e7f-e11a-412f-91a7-80c65fd8d36b&action=prerequest | 139.45.197.251 | 200 OK | 0 B |
URL POST HTTP/2gauvaiho.net/zone?&pub=0&zone_id=6413299&is_mobile=false&domain=www.nyxfunnel.com&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=a34f1e7f-e11a-412f-91a7-80c65fd8d36b&action=prerequest IP139.45.197.251:443
Requested byhttps://www.nyxfunnel.com/ CertificateIssuerLet's Encrypt Subjectgauvaiho.net Fingerprint7A:BC:57:20:5D:99:49:16:5F:C9:C1:4F:27:AA:47:0F:D8:A8:FA:57 ValidityFri, 19 Apr 2024 05:44:25 GMT - Thu, 18 Jul 2024 05:44:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=6413299&is_mobile=false&domain=www.nyxfunnel.com&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=a34f1e7f-e11a-412f-91a7-80c65fd8d36b&action=prerequest HTTP/1.1
Host: gauvaiho.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nyxfunnel.com
DNT: 1
Connection: keep-alive
Referer: https://www.nyxfunnel.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 18:41:03 GMT
content-length: 0
x-trace-id: 21f4e4a4a0b1f2c6467ba7227b30b615
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.nyxfunnel.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://www.nyxfunnel.com/ CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.nyxfunnel.com/
Origin: https://www.nyxfunnel.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 18:41:03 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.nyxfunnel.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| gauvaiho.net/pfe/current/micro.tag.min.js?z=6413299&sw=/sw-check-permissions-f7361.js | 139.45.197.251 | 200 OK | 15 kB |
URL GET HTTP/2gauvaiho.net/pfe/current/micro.tag.min.js?z=6413299&sw=/sw-check-permissions-f7361.js IP139.45.197.251:443
Requested byhttps://www.nyxfunnel.com/ CertificateIssuerLet's Encrypt Subjectgauvaiho.net Fingerprint7A:BC:57:20:5D:99:49:16:5F:C9:C1:4F:27:AA:47:0F:D8:A8:FA:57 ValidityFri, 19 Apr 2024 05:44:25 GMT - Thu, 18 Jul 2024 05:44:24 GMT
File typegzip compressed data, max speed, from Unix Hash79ab4f5f20178d8996c060bb397118cb 1c4b2573fec4c28a0fabe5f38102b69cac5b9e97 05c6f230d524bab329e3cd7e74295e02df901851cc6350c1759b308d2ee09038
GET /pfe/current/micro.tag.min.js?z=6413299&sw=/sw-check-permissions-f7361.js HTTP/1.1
Host: gauvaiho.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nyxfunnel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 18:41:03 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:53 GMT
etag: W/"662a3515-9116"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://www.nyxfunnel.com/ CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 251
Origin: https://www.nyxfunnel.com
DNT: 1
Connection: keep-alive
Referer: https://www.nyxfunnel.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 18:41:03 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 0df3c9689b54464a26a58864df3a4649
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.nyxfunnel.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://www.nyxfunnel.com/ CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 252
Origin: https://www.nyxfunnel.com
DNT: 1
Connection: keep-alive
Referer: https://www.nyxfunnel.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 18:41:03 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 152e73cf70a508a0fe4f2971c7900c0b
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.nyxfunnel.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://www.nyxfunnel.com/ CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hash2d8bcb63243d845c985e1f79c886f86f a5430df4447085796d24e77c942850c983717b2e 7c50eb3db2db888ee395fb8350ca0f65a60d98e562b01775c5985c9e14716beb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nyxfunnel.com/
Content-Type: application/json
Content-Length: 869
Origin: https://www.nyxfunnel.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 18:41:03 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.nyxfunnel.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.nyxfunnel.com/sw-check-permissions-f7361.js?zoneId=6413299 | 188.114.96.1 | 200 OK | 566 B |
URL GET HTTP/3www.nyxfunnel.com/sw-check-permissions-f7361.js?zoneId=6413299 IP188.114.96.1:443
Requested byhttps://www.nyxfunnel.com/ CertificateIssuerLet's Encrypt Subjectnyxfunnel.com FingerprintD8:32:73:53:4F:36:C5:76:40:87:C9:16:26:C5:C4:10:8E:E2:18:0F ValidityTue, 02 Apr 2024 13:18:32 GMT - Mon, 01 Jul 2024 13:18:31 GMT
File typeASCII text, with very long lines (605), with no line terminators Hashf051beaee93394bdcc193da16e54e1a6 40f36163c9e6dab1c5e631f36b606cb7063c2361 87dc287ef0a201f2fe2bf47152456f620d54e2777b1db9fb460e5af75c0f4f09
GET /sw-check-permissions-f7361.js?zoneId=6413299 HTTP/1.1
Host: www.nyxfunnel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.nyxfunnel.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 18:41:03 GMT
content-type: application/javascript; charset=UTF-8
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
etag: W/"c01f69a23b01d687b4bfed62c7af554c-ssl"
x-nf-request-id: 01HWX9RA133NB9B6R0EWRJMBMV
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z4nudrrsWS6rnPgwanKxZ6tot9FSg9tLG7QFJCkCcdZ2fnQ1Tposb6aJvH9LnyvO5d%2FyoKVtwjZTXGEULCtqkHJXCbE5%2B0Fr9PQwIUk68B3MLMDLrzti4an9Lkkkm2mDMbGOww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87da24acbc6156cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.nyxfunnel.com/favicon.ico | 188.114.96.1 | 404 Not Found | 2.9 kB |
URL GET HTTP/3www.nyxfunnel.com/favicon.ico IP188.114.96.1:443
Requested byhttps://www.nyxfunnel.com/ CertificateIssuerLet's Encrypt Subjectnyxfunnel.com FingerprintD8:32:73:53:4F:36:C5:76:40:87:C9:16:26:C5:C4:10:8E:E2:18:0F ValidityTue, 02 Apr 2024 13:18:32 GMT - Mon, 01 Jul 2024 13:18:31 GMT
File typeHTML document, ASCII text, with very long lines (3012), with no line terminators Hash3bfd6116f2e78fc971f033ff7869efe1 2d3cd714c577803cee6d4fe67e750c8d5e1c5637 ca6f1a53770eab12684e7c81c3b15517ec2a605efaa5357641fa7ad1d613d2ba
GET /favicon.ico HTTP/1.1
Host: www.nyxfunnel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nyxfunnel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 02 May 2024 18:41:03 GMT
content-type: text/html; charset=utf-8
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
vary: Accept-Encoding
x-nf-request-id: 01HWX9R9WT0B6X3FNFJ73M3CHD
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tu5Ub8VWFN4%2FJ%2Fa7e490V8gXScVtkHJC6kZsFiIZLAcBUuU5LbCAzjo4vgL03eS%2B7xRcmCFZIqmSQ%2FqdWQ2iTqL0rU5ANN4yHPzX1dPEEtkMiS5uMaFxRDeS%2F0HeZcbcapub0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87da24ac1b3356cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 188.114.96.1 | 200 OK | 812 B |
URL User Request GET HTTP/3IP188.114.96.1:443
CertificateIssuerLet's Encrypt Subjectnyxfunnel.com FingerprintD8:32:73:53:4F:36:C5:76:40:87:C9:16:26:C5:C4:10:8E:E2:18:0F ValidityTue, 02 Apr 2024 13:18:32 GMT - Mon, 01 Jul 2024 13:18:31 GMT
File typeHTML document, ASCII text, with very long lines (843), with no line terminators Hash8bbe898d11546008b062a3c08b6fd05f 662091e95cf8ba150638bf8c362cd56e92768c4a fd60eaf79e6db0100a993b9d546bae29280c4f86243a4ecd7ceb62f0028b412c
GET / HTTP/1.1
Host: www.nyxfunnel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 18:41:03 GMT
content-type: text/html; charset=UTF-8
age: 28950
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
x-nf-request-id: 01HWX9R9H193VYHQMECYQNHFAK
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZLtAxORmuRr9vTeB2K%2BbTs3Mw3xU3Elg8VkHfoN5LRSQlzo4XW9rC0pO%2B1XyLkrQVfL3JC2Q%2B6MHB1n0XiHWaf4b6KxpVRs46KKA5WXLULgP3rJJw2cXW0qJXh0TJ1GAd1IVng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87da24a92f1c56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|