Report Overview
-
URL
www.tg-me.com/us/GypsyCrusader+News+Network/com.gypsycrusader
-
IP
188.114.96.1ASN
#13335 CLOUDFLARENET
-
Submitted
2023-02-03T23:45:10Z
Access
-
Tags
None
-
urlquery detections
No alerts detected
Detections
-
urlquery
0
-
Network Intrusion Detection
0
-
Threat Detection Systems
6
Domain Summary
| Domain | Rank | First Seen | Last Seen | Sent | Received | IP |
|---|---|---|---|---|---|---|
| intorterraon.com (3) | unknown | 2022-08-02T13:41:34Z | 2023-03-13T08:01:01Z | 1888 | 77693 |  139.45.197.239 |
| connect.facebook.net (2) | 139 | 2012-05-22T04:51:28Z | 2023-03-13T05:09:29Z | 840 | 91129 |  31.13.72.12 |
| acceptable.a-ads.com (1) | 109567 | 2017-07-05T09:01:45Z | 2023-03-13T03:52:07Z | 474 | 407 |  144.76.28.254 |
| cdn.innity.net (2) | 28850 | 2012-05-21T16:13:30Z | 2023-03-13T09:01:33Z | 720 | 4181 | 23.32.97.102 |
| knlrfijhvch.com (3) | unknown | 2022-12-07T11:04:59Z | 2023-02-21T10:05:09Z | 1377 | 2806 |  62.122.171.6 |
| ocsp.sectigo.com (4) | 487 | 2019-11-29T12:50:24Z | 2023-03-13T08:22:43Z | 1360 | 17610 |  172.64.155.188 |
| ocsp.digicert.com (2) | 86 | 2012-05-21T09:02:23Z | 2023-03-13T06:00:13Z | 682 | 1474 | 93.184.220.29 |
| api-public.addthis.com (6) | 4111 | 2012-05-21T15:44:35Z | 2023-03-13T05:19:27Z | 3178 | 6112 |  2.18.172.123 |
| r3.o.lencr.org (11) | 344 | 2020-12-02T09:52:13Z | 2023-03-13T05:09:07Z | 3718 | 10380 | 95.101.11.115 |
| my.rtmark.net (1) | 9054 | 2015-02-04T10:54:57Z | 2023-03-13T05:11:40Z | 420 | 742 | 139.45.195.8 |
| www.tg-me.com (2) | 662678 | 2021-12-12T14:48:12Z | 2023-03-09T17:41:27Z | 882 | 1374 | 188.114.97.1 |
| region1.google-analytics.com (1) | unknown | 2022-03-17T12:26:33Z | 2023-03-13T05:09:18Z | 726 | 444 | 216.239.32.36 |
| z.moatads.com (1) | 374 | 2014-02-11T17:19:47Z | 2023-03-13T05:10:11Z | 388 | 1431 | 2.18.173.140 |
| optimize.innity.com (4) | 37523 | 2012-05-23T05:16:01Z | 2023-03-13T09:30:22Z | 1660 | 1740 |  119.81.3.35 |
| www.facebook.com (1) | 99 | 2012-05-21T02:23:41Z | 2021-02-04T00:31:35Z | 913 | 2464 | 31.13.72.36 |
| e1.o.lencr.org (2) | 6159 | 2021-08-20T09:36:30Z | 2023-03-13T05:21:46Z | 676 | 1456 | 95.101.11.115 |
| s7.addthis.com (5) | 1504 | 2012-05-21T05:34:04Z | 2023-03-13T05:11:56Z | 1959 | 198149 | 2.18.172.123 |
| push.services.mozilla.com (1) | 2140 | 2014-10-24T10:27:06Z | 2023-03-13T05:09:14Z | 606 | 127 | 54.212.170.166 |
| grid.bidswitch.net (1) | 1211 | 2018-12-10T23:55:42Z | 2023-03-13T04:59:33Z | 367 | 212 | 18.194.21.26 |
| content-signature-2.cdn.mozilla.net (1) | 1152 | 2020-11-03T13:26:46Z | 2023-03-13T05:09:35Z | 413 | 5844 | 34.160.144.191 |
| www.googletagmanager.com (1) | 75 | 2013-05-22T04:07:37Z | 2023-03-13T08:28:24Z | 381 | 77667 | 142.250.74.40 |
| as.innity.com (4) | 23995 | 2012-05-23T05:15:58Z | 2023-03-13T09:34:01Z | 2364 | 4030 |  149.129.240.178 |
| v1.addthisedge.com (2) | 1721 | 2019-05-22T20:56:22Z | 2023-03-13T05:11:57Z | 870 | 1680 | 2.18.172.123 |
| m.addthis.com (1) | 1448 | 2013-11-06T21:12:22Z | 2023-03-13T08:48:31Z | 835 | 361 | 2.18.172.123 |
| firefox.settings.services.mozilla.com (2) | 867 | 2020-06-04T22:08:41Z | 2023-03-13T05:09:10Z | 782 | 2372 | 35.241.9.150 |
| contile.services.mozilla.com (1) | 1114 | 2021-05-27T20:32:35Z | 2023-03-13T05:09:13Z | 333 | 391 | 34.117.237.239 |
| ocsp.pki.goog (2) | 175 | 2018-07-01T08:43:07Z | 2023-03-13T05:09:47Z | 686 | 1400 | 142.250.74.163 |
| img-getpocket.cdn.mozilla.net (6) | 1631 | 2018-06-22T01:36:00Z | 2023-03-13T05:09:16Z | 3246 | 58038 | 34.120.237.76 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
OpenPhish
No alerts detected
PhishTank
No alerts detected
Fortinet's Web Filter
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2023-02-03 | medium | knlrfijhvch.com | Sinkholed |
| 2023-02-03 | medium | intorterraon.com | Sinkholed |
| 2023-02-03 | medium | knlrfijhvch.com | Sinkholed |
| 2023-02-03 | medium | intorterraon.com | Sinkholed |
| 2023-02-03 | medium | knlrfijhvch.com | Sinkholed |
| 2023-02-03 | medium | intorterraon.com | Sinkholed |
ThreatFox
No alerts detected
JavaScript (60)
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
Pretty
Loading...
HTTP Transactions (73)
| URL | IP | Response | Size | |||||||
|---|---|---|---|---|---|---|---|---|---|---|
www.tg-me.com/us/GypsyCrusader+News+Network/com.gypsycrusader |
188.114.97.1 |
301 Moved Permanently | 0 | |||||||
HTTP Headers
|
||||||||||
r3.o.lencr.org/ |
95.101.11.115 |
200 OK | 503 | |||||||
HTTP Headers
|
||||||||||
r3.o.lencr.org/ |
95.101.11.115 |
200 OK | 503 | |||||||
HTTP Headers
|
||||||||||
firefox.settings.services.mozilla.com/v1/ |
35.241.9.150 |
200 OK | 939 | |||||||
HTTP Headers
|
||||||||||
r3.o.lencr.org/ |
95.101.11.115 |
200 OK | 503 | |||||||
HTTP Headers
|
||||||||||
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain |
34.160.144.191 |
200 OK | 5348 | |||||||
HTTP Headers
|
||||||||||
e1.o.lencr.org/ |
95.101.11.115 |
200 OK | 345 | |||||||
HTTP Headers
|
||||||||||
contile.services.mozilla.com/v1/tiles |
34.117.237.239 |
200 OK | 12 | |||||||
HTTP Headers
|
||||||||||
e1.o.lencr.org/ |
95.101.11.115 |
200 OK | 345 | |||||||
HTTP Headers
|
||||||||||
s7.addthis.com/js/300/addthis_widget.js |
2.18.172.123 |
200 OK | 116423 | |||||||
HTTP Headers
|
||||||||||
ocsp.pki.goog/gts1c3 |
142.250.74.163 |
200 OK | 472 | |||||||
HTTP Headers
|
||||||||||
cdn.innity.net/admanager.js |
23.32.97.102 |
200 OK | 3250 | |||||||
HTTP Headers
|
||||||||||
www.googletagmanager.com/gtag/js?id=G-H9DDVMTLKY |
142.250.74.40 |
200 OK | 77066 | |||||||
HTTP Headers
|
||||||||||
r3.o.lencr.org/ |
95.101.11.115 |
200 OK | 503 | |||||||
HTTP Headers
|
||||||||||
ocsp.pki.goog/gts1c3 |
142.250.74.163 |
200 OK | 472 | |||||||
HTTP Headers
|
||||||||||
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US |
35.241.9.150 |
200 OK | 329 | |||||||
HTTP Headers
|
||||||||||
r3.o.lencr.org/ |
95.101.11.115 |
200 OK | 503 | |||||||
HTTP Headers
|
||||||||||
push.services.mozilla.com/ |
54.212.170.166 |
101 Switching Protocols | 0 | |||||||
HTTP Headers
|
||||||||||
region1.google-analytics.com/g/collect?v=2&tid=G-H9DDVMTLKY>m=45je3210&_p=2041370825&cid=692671172.1675467933&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675467933&sct=1&seg=0&dl=https%3A%2F%2Fwww.tg-me.com%2Fus%2FGypsyCrusader%2BNews%2BNetwork%2Fcom.gypsycrusader&dt=GypsyCrusader%20News%20Network%20Telegram&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 |
216.239.32.36 |
204 No Content | 0 | |||||||
HTTP Headers
|
||||||||||
ocsp.sectigo.com/ |
172.64.155.188 |
200 OK | 471 | |||||||
HTTP Headers
|
||||||||||
ocsp.sectigo.com/ |
172.64.155.188 |
200 OK | 471 | |||||||
HTTP Headers
|
||||||||||
as.innity.com/synd/?cb=1675467932898&ver=1&pub=dc727151e5d55dde1e950767cf861ca5&zone=93380&output=js&flash=0&url=https%3A%2F%2Fwww.tg-me.com%2Fus%2FGypsyCrusader%2BNews%2BNetwork%2Fcom.gypsycrusader&width=*&height=*&vpw=1280&vph=939&auction=2d74aba-a6352ce |
149.129.240.178 |
200 OK | 296 | |||||||
HTTP Headers
|
||||||||||
as.innity.com/synd/?cb=1675467932886&ver=1&pub=dc727151e5d55dde1e950767cf861ca5&zone=93378&output=js&flash=0&url=https%3A%2F%2Fwww.tg-me.com%2Fus%2FGypsyCrusader%2BNews%2BNetwork%2Fcom.gypsycrusader&width=*&height=*&vpw=1280&vph=939&auction=2d74aba-a6352ce |
149.129.240.178 |
200 OK | 296 | |||||||
HTTP Headers
|
||||||||||
cdn.innity.net/analytics.js |
23.32.97.102 |
200 OK | 152 | |||||||
HTTP Headers
|
||||||||||
knlrfijhvch.com/solid.gif?z=1945070&abvar=2 |
62.122.171.6 |
200 OK | 43 | |||||||
Detections
HTTP Headers
|
||||||||||
z.moatads.com/addthismoatframe568911941483/moatframe.js |
2.18.173.140 |
200 OK | 948 | |||||||
HTTP Headers
|
||||||||||
intorterraon.com/5/5557327 |
139.45.197.239 |
200 OK | 50322 | |||||||
Detections
HTTP Headers
|
||||||||||
ocsp.digicert.com/ |
93.184.220.29 |
200 OK | 471 | |||||||
HTTP Headers
|
||||||||||
v1.addthisedge.com/live/boost/ra-61710efec007c081/_ate.track.config_resp |
2.18.172.123 |
200 OK | 526 | |||||||
HTTP Headers
|
||||||||||
connect.facebook.net/en_GB/sdk.js |
31.13.72.12 |
200 OK | 1687 | |||||||
HTTP Headers
|
||||||||||
knlrfijhvch.com/get/1945070?zoneid=1945070&jp=_cls2htb2pw27jq7ghe44ll&nojs=0&ix=0&abvar=2&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=954228396669095 |
62.122.171.6 |
200 OK | 7 | |||||||
Detections
HTTP Headers
|
||||||||||
ocsp.digicert.com/ |
93.184.220.29 |
200 OK | 471 | |||||||
HTTP Headers
|
||||||||||
r3.o.lencr.org/ |
95.101.11.115 |
200 OK | 1129 | |||||||
HTTP Headers
|
||||||||||
ocsp.sectigo.com/ |
172.64.155.188 |
200 OK | 14229 | |||||||
HTTP Headers
|
||||||||||
my.rtmark.net/gid.js?userId=bf78995502c646e0aaf4e82ea1eaef09 |
139.45.195.8 |
200 OK | 65 | |||||||
![URL knlrfijhvch.com/solid.gif?z=1945070&abvar=2](/search?q=http.url.addr:"knlrfijhvch.com%2fsolid.gif%3fz%3d1945070%26abvar%3d2"){kind=link}