Report - shorturl.at/aelA7?QuV=ZKemB2E0Z7

Report Overview

Submitted URL
shorturl.at/aelA7?QuV=ZKemB2E0Z7
IP
104.26.9.129
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 11:49:11
Access
public
Website Title
404 Page Not Found
Final URL
www.shorturl.at/error.php
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-18	486 B	2.0 kB	142.250.74.74
www.shorturl.at	196091	unknown	2017-01-18	2024-04-16	3.6 kB	26 kB	104.26.9.129
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-18	2.1 kB	127 kB	142.250.74.163
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-18	422 B	101 kB	142.250.74.168
shorturl.at	83420	unknown	2016-11-12	2024-04-05	486 B	24 kB	104.26.9.129

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-18 11:48:45	low	Client IP	104.26.9.129	ET INFO Observed URL Shortening Service Domain (shorturl .at) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	www.shorturl.at/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-04-30
Pretty URL www.shorturl.at/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.26.9.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-30 23:35:30 Times Seen43330 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	unknown	247 B	2024-04-18	2024-04-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 13:49:11 Last Seen2024-04-18 13:49:11 Times Seen1 Hash d2f9d4ffff7d227232d11ee75c3dd434 f01dc6c7459c0aa54a02ecd23e60bbb4de77c687 7d1108080591cf9907af18e3555f2ff574719bb752bb6754abb09e4d2e88dc15 Loading...

	www.shorturl.at/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-04-18	2024-04-18
Pretty URL www.shorturl.at/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.9.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 13:43:58 Last Seen2024-04-18 14:10:51 Times Seen6 Hash 31996efbc1ee67655c0ca6c3ee3d288d 4e22eb79bb4dbf0066d4c5a025de6a4a9a5fd934 94d52c877df33ff9514c29a52d0947031d1c94fc099496695c255cab87426e4b Loading...

	www.googletagmanager.com/gtag/js?id=G-25YH9BB08G	302 kB	2024-04-18	2024-04-18
Pretty URL www.googletagmanager.com/gtag/js?id=G-25YH9BB08G IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 13:49:11 Last Seen2024-04-18 13:49:11 Times Seen2 Hash 4fd808866cfcbdec9dbaff0c16e1e711 a19fd4da667b745ca7d45cbad34c05ea18ad3708 8b136dedc305d1d0b1ee575b9226c95f15d5d35e6a72ad9ebc28a9c32bb545d7 Loading...

	www.shorturl.at/error.php	1.1 kB	2024-04-18	2024-04-18
Pretty URL www.shorturl.at/error.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 13:49:11 Last Seen2024-04-18 13:49:11 Times Seen1 Hash 85b7001f2821992ddbf028a2c5db4c91 27e0fb5f0d1856c5fdb0ac68ea5592125ee49072 d13ba8c8b94f6a725a3ebcfff89c3eef0a60ca76127fc6034596d5e475de35a5 Loading...

	www.shorturl.at/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.8 kB	2024-04-18	2024-04-18
Pretty URL www.shorturl.at/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.9.129 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 13:41:56 Last Seen2024-04-18 13:49:11 Times Seen6 Hash edbaf4ff294470faad33f7a15b912338 f0f9fe00affb2847c75d69807b311cf707af5f2c 771473de839462920380be7c680b6d1350d2d11130e30ef8eca76b13ac745ccc Loading...

	unknown	153 B	2023-10-28	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 03:16:32 Last Seen2024-04-29 22:57:15 Times Seen29 Hash cce7793508f58fc0eeb2278237b3158f 7e88b6f0070c3f85e357dee19f091c69330425b7 3568cfa39238b2457eef0864849d5e04e2427d80d162745abb6e10967b443dd8 Loading...

HTTP Transactions (14)

	URL	IP	Response	Size
	fonts.googleapis.com/css?family=Asap:400,700\|Lato:400,700,900\|Source+Sans+Pro:400,700&display=swap	142.250.74.74		1.4 kB
URL fonts.googleapis.com/css?family=Asap:400,700\|Lato:400,700,900\|Source+Sans+Pro:400,700&display=swap IP 142.250.74.74:0 ASN #15169 GOOGLE File type gzip compressed data, max compression Size 1.4 kB (1366 bytes) Hash dd50701c08b124fa0b1bbd145184d236 84daaeb8e369eca843156200dfb7a5a519b3228c 98069cfa4e2725fe30cdaa1c306253b4f1718085372081d2edff20591e488a04 HTTP Headers `GET /css?family=Asap:400,700\|Lato:400,700,900\|Source+Sans+Pro:400,700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.shorturl.at/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 18 Apr 2024 11:48:46 GMT date: Thu, 18 Apr 2024 11:48:46 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.shorturl.at/cdn-cgi/challenge-platform/scripts/jsd/main.js	104.26.9.129	302 Found	0 B
URL GET HTTP/2 www.shorturl.at/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.9.129:443 ASN #13335 CLOUDFLARENET Requested by https://www.shorturl.at/error.php Certificate IssuerGoogle Trust Services LLC Subjectshorturl.at FingerprintE6:B3:B9:89:FA:01:F0:B9:4C:C8:BE:5C:9B:A5:92:98:5A:14:A9:9A ValidityWed, 10 Apr 2024 11:26:54 GMT - Tue, 09 Jul 2024 11:26:53 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1 Host: www.shorturl.at User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 302 Found date: Thu, 18 Apr 2024 11:48:46 GMT content-length: 0 cache-control: max-age=300, public location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js access-control-allow-origin: * report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ez2Tl%2BerRogGn%2BPxp2%2FdBEzg3E7WclJJkhq256jyS5AmZqWCWdHgKRMnlVaGGQZN4K%2FrBKaLe43oZRwbLDFrKV1z0u4esYqSsW%2FeJZoLjF%2FAs%2BAqxkqM4HhQBKUO83mDxQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 87646d80fb2e569c-OSL X-Firefox-Spdy: h2

	fonts.gstatic.com/s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2	142.250.74.163	200 OK	43 kB
URL GET HTTP/2 fonts.gstatic.com/s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2 IP 142.250.74.163:443 ASN #15169 GOOGLE Requested by https://www.shorturl.at/error.php Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT File type Web Open Font Format (Version 2), TrueType, length 42616, version 1.0 Size 43 kB (42616 bytes) Hash 57716e51419e5143f8e1dd061d5cf8c2 d796688a0f3679b0536787315ee0386649c146ab b1128adb79c7208d410630c04fe6e8ac8886aeb778aafb3f4195fe735acc1d89 HTTP Headers GET /s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.shorturl.at DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 42616 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 11 Apr 2024 17:22:06 GMT expires: Fri, 11 Apr 2025 17:22:06 GMT cache-control: public, max-age=31536000 age: 584800 last-modified: Tue, 06 Jun 2023 20:38:36 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2	142.250.74.163	200 OK	43 kB
URL GET HTTP/2 fonts.gstatic.com/s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2 IP 142.250.74.163:443 ASN #15169 GOOGLE Requested by https://www.shorturl.at/error.php Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT File type Web Open Font Format (Version 2), TrueType, length 42616, version 1.0 Size 43 kB (42616 bytes) Hash 57716e51419e5143f8e1dd061d5cf8c2 d796688a0f3679b0536787315ee0386649c146ab b1128adb79c7208d410630c04fe6e8ac8886aeb778aafb3f4195fe735acc1d89 HTTP Headers GET /s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.shorturl.at DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 42616 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 11 Apr 2024 17:22:06 GMT expires: Fri, 11 Apr 2025 17:22:06 GMT cache-control: public, max-age=31536000 age: 584800 last-modified: Tue, 06 Jun 2023 20:38:36 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2	142.250.74.163		24 kB
URL fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0 Size 24 kB (23580 bytes) Hash e1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537 HTTP Headers `GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.shorturl.at DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23580 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 18 Apr 2024 02:45:31 GMT expires: Fri, 18 Apr 2025 02:45:31 GMT cache-control: public, max-age=31536000 age: 32595 last-modified: Tue, 02 May 2023 15:17:22 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=G-25YH9BB08G	142.250.74.168		101 kB
URL www.googletagmanager.com/gtag/js?id=G-25YH9BB08G IP 142.250.74.168:0 ASN #15169 GOOGLE File type JavaScript source, ASCII text, with very long lines (5955) Size 101 kB (100711 bytes) Hash 4fd808866cfcbdec9dbaff0c16e1e711 a19fd4da667b745ca7d45cbad34c05ea18ad3708 8b136dedc305d1d0b1ee575b9226c95f15d5d35e6a72ad9ebc28a9c32bb545d7 HTTP Headers `GET /gtag/js?id=G-25YH9BB08G HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.shorturl.at/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 18 Apr 2024 11:48:46 GMT expires: Thu, 18 Apr 2024 11:48:46 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 100711 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2	142.250.74.163		15 kB
URL fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT File type Web Open Font Format (Version 2), TrueType, length 14892, version 1.0 Size 15 kB (14892 bytes) Hash 9ec6deaf6bada919e20b98f9f7b718b1 501d36403ad8205e4644532600019ecb10f5cb0a 7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762 HTTP Headers GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.shorturl.at DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 14892 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 18 Apr 2024 02:59:00 GMT expires: Fri, 18 Apr 2025 02:59:00 GMT cache-control: public, max-age=31536000 age: 31786 last-modified: Thu, 01 Jun 2023 22:52:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	shorturl.at/aelA7?QuV=ZKemB2E0Z7	104.26.9.129		23 kB
URL shorturl.at/aelA7?QuV=ZKemB2E0Z7 IP 104.26.9.129:0 ASN #13335 CLOUDFLARENET File type data Size 23 kB (23292 bytes) Hash d897a3509d825b4d52a94c1d2db94405 79ed800900ff217aebae9ffec52543df3576ea03 55741ab6e3ad23abaa514b3b856e32b530ed2027497c9c26326f08e733f61dcf HTTP Headers `GET /aelA7?QuV=ZKemB2E0Z7 HTTP/1.1 Host: shorturl.at User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently date: Thu, 18 Apr 2024 11:48:46 GMT content-type: text/html; charset=iso-8859-1 location: https://www.shorturl.at/aelA7?QuV=ZKemB2E0Z7 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-nginx-upstream-cache-status: MISS x-server-powered-by: Engintron cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hyWhlejXvuoO%2BDo8mEzRonG1eiUPTIVcswko%2Bwdv05K54NK9wdOLoSbKSdbuZuth6M7y0Icw8oKKKMMiK5UbmEzoROfMTXN8EykBfH8MPkJgQL99FobawixjVmNm"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 87646d79bbff569c-OSL X-Firefox-Spdy: h2

	www.shorturl.at/cdn-cgi/challenge-platform/h/g/jsd/r/87646d7dbccd569c	104.26.9.129	200 OK	0 B
URL POST HTTP/2 www.shorturl.at/cdn-cgi/challenge-platform/h/g/jsd/r/87646d7dbccd569c IP 104.26.9.129:443 ASN #13335 CLOUDFLARENET Requested by https://www.shorturl.at/error.php Certificate IssuerGoogle Trust Services LLC Subjectshorturl.at FingerprintE6:B3:B9:89:FA:01:F0:B9:4C:C8:BE:5C:9B:A5:92:98:5A:14:A9:9A ValidityWed, 10 Apr 2024 11:26:54 GMT - Tue, 09 Jul 2024 11:26:53 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/jsd/r/87646d7dbccd569c HTTP/1.1 Host: www.shorturl.at User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 12157 Origin: https://www.shorturl.at DNT: 1 Connection: keep-alive Referer: https://www.shorturl.at/error.php Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Thu, 18 Apr 2024 11:48:47 GMT content-type: text/plain; charset=UTF-8 content-length: 0 set-cookie: cf_clearance=t5o.mhGAvJQBurORbDR63sD9BrWn1464MbnBZUeREBw-1713440927-1.0.1.1-4jSdVmLS8yQIIHrEWY6cXP_sEVtvVJkRgHwEinq1.9Iql1quvylmDTY1.xRL2S1QFmL__JtFbO60vU28TcPXDQ; path=/; expires=Fri, 18-Apr-25 11:48:47 GMT; domain=.shorturl.at; HttpOnly; Secure; SameSite=None report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GKI6PQPahD96Q53Wf5Xv4BcNNU4b362R%2B5j6WjynPOTIw9GKKBYZPgMsSw8m9AMhpz%2B28I7Qnq25NVhMaHy30W2YXJbfp4s8mTZWQFsA%2BK8yujAN%2FMjZw%2B2DzOG18jaluA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 87646d82beea569c-OSL X-Firefox-Spdy: h2

	www.shorturl.at/cdn-cgi/challenge-platform/scripts/jsd/main.js	104.26.9.129	302 Found	0 B
URL GET HTTP/2 www.shorturl.at/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.9.129:443 ASN #13335 CLOUDFLARENET Requested by https://www.shorturl.at/error.php Certificate IssuerGoogle Trust Services LLC Subjectshorturl.at FingerprintE6:B3:B9:89:FA:01:F0:B9:4C:C8:BE:5C:9B:A5:92:98:5A:14:A9:9A ValidityWed, 10 Apr 2024 11:26:54 GMT - Tue, 09 Jul 2024 11:26:53 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1 Host: www.shorturl.at User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: cf_clearance=t5o.mhGAvJQBurORbDR63sD9BrWn1464MbnBZUeREBw-1713440927-1.0.1.1-4jSdVmLS8yQIIHrEWY6cXP_sEVtvVJkRgHwEinq1.9Iql1quvylmDTY1.xRL2S1QFmL__JtFbO60vU28TcPXDQ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 302 Found date: Thu, 18 Apr 2024 11:48:47 GMT content-length: 0 cache-control: max-age=300, public location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js access-control-allow-origin: * report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3UNA1ju%2Bz7qNYb0fhVcSI4G4ts%2F8TXf5vr1AjmhN6RcR89uoVNZIa82x02syRJv%2F4K0LS%2Fc1pHzaJYqQeVrz59dFhXju81nxA9o6lz928NiM%2BMKSEMNrWOXd%2FvkzZq0Dxw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 87646d82ef4d569c-OSL X-Firefox-Spdy: h2

	www.shorturl.at/cdn-cgi/challenge-platform/h/g/jsd/r/87646d7dbccd569c	104.26.9.129	200 OK	0 B
URL POST HTTP/2 www.shorturl.at/cdn-cgi/challenge-platform/h/g/jsd/r/87646d7dbccd569c IP 104.26.9.129:443 ASN #13335 CLOUDFLARENET Requested by https://www.shorturl.at/error.php Certificate IssuerGoogle Trust Services LLC Subjectshorturl.at FingerprintE6:B3:B9:89:FA:01:F0:B9:4C:C8:BE:5C:9B:A5:92:98:5A:14:A9:9A ValidityWed, 10 Apr 2024 11:26:54 GMT - Tue, 09 Jul 2024 11:26:53 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/jsd/r/87646d7dbccd569c HTTP/1.1 Host: www.shorturl.at User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 12158 Origin: https://www.shorturl.at DNT: 1 Connection: keep-alive Referer: https://www.shorturl.at/error.php Cookie: cf_clearance=t5o.mhGAvJQBurORbDR63sD9BrWn1464MbnBZUeREBw-1713440927-1.0.1.1-4jSdVmLS8yQIIHrEWY6cXP_sEVtvVJkRgHwEinq1.9Iql1quvylmDTY1.xRL2S1QFmL__JtFbO60vU28TcPXDQ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Thu, 18 Apr 2024 11:48:47 GMT content-type: text/plain; charset=UTF-8 content-length: 0 set-cookie: cf_clearance=GxqTeKVYbHg8iMybJIkEkdA4Wxs3QHKoRZ7gVvTQpBY-1713440927-1.0.1.1-KDYdj1Xjewp0fdX03aiRwe9QmflnBzXhSz4oVGk_e.FH8bJGjTXOL5yGlDFPko5v5c0_o8sA2gY2GEvtTbAQzg; path=/; expires=Fri, 18-Apr-25 11:48:47 GMT; domain=.shorturl.at; HttpOnly; Secure; SameSite=None report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l%2BwZskd91L5Cjhdg8eh1uvdG8DA%2BVd1OSPvToogyg2cIFdwy%2FXkpS3BFxxyAuUKl%2Fbf8MtsdBZqg8AVdEw%2BZNd0otcOr3b97qxy8LyHaP0lxXp2l0iT%2FExYgiJQjRcMYTg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 87646d83d96c569c-OSL X-Firefox-Spdy: h2

	www.shorturl.at/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	104.26.9.129	200 OK	12 kB
URL GET HTTP/2 www.shorturl.at/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.26.9.129:443 ASN #13335 CLOUDFLARENET Requested by https://www.shorturl.at/error.php Certificate IssuerGoogle Trust Services LLC Subjectshorturl.at FingerprintE6:B3:B9:89:FA:01:F0:B9:4C:C8:BE:5C:9B:A5:92:98:5A:14:A9:9A ValidityWed, 10 Apr 2024 11:26:54 GMT - Tue, 09 Jul 2024 11:26:53 GMT File type gzip compressed data, from Unix Size 12 kB (12121 bytes) Hash 84ce4c4ee109938a9b3fe724fd907833 7d9cb51b699da3c5e17ec7d04ddb559708169e03 e4dc48799dc1852363a5389716a25d1a5ff6253f7ad4a02222ec5c31ed302330 HTTP Headers `GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1 Host: www.shorturl.at User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.shorturl.at/error.php Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Thu, 18 Apr 2024 11:48:46 GMT content-type: application/javascript last-modified: Tue, 16 Apr 2024 15:45:04 GMT etag: W/"661e9d00-302c" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QgMBYR%2F7xOKZ7aC5RZWoa0YmRz6vh2QQKV4TjguiMwF6YMPMZv7xMfI8m68Npmvi7AgDmG7zt2z0p57JSqWL1bRXHLDcjJum%2FEK0Ym2exa4mFrCAkWuhlh2kGUA5wUnZzg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 87646d80093c569c-OSL x-frame-options: DENY x-content-type-options: nosniff expires: Sat, 20 Apr 2024 11:48:46 GMT cache-control: max-age=172800, public content-encoding: gzip X-Firefox-Spdy: h2

	www.shorturl.at/favicon.ico	104.26.9.129	200 OK	1.2 kB
URL GET HTTP/2 www.shorturl.at/favicon.ico IP 104.26.9.129:443 ASN #13335 CLOUDFLARENET Requested by https://www.shorturl.at/error.php Certificate IssuerGoogle Trust Services LLC Subjectshorturl.at FingerprintE6:B3:B9:89:FA:01:F0:B9:4C:C8:BE:5C:9B:A5:92:98:5A:14:A9:9A ValidityWed, 10 Apr 2024 11:26:54 GMT - Tue, 09 Jul 2024 11:26:53 GMT File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Size 1.2 kB (1150 bytes) Hash c651d44f122dd752ab399838fd0b5a06 81585767215c1caf3ea92713a871651486532fe6 70214f63b7587f091a5177934a7de1be42ef361d20cbbc12c29aa8a3a847076b HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.shorturl.at User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.shorturl.at/error.php Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 18 Apr 2024 11:48:47 GMT content-type: image/x-icon vary: Accept-Encoding last-modified: Sat, 14 Oct 2023 19:26:22 GMT expires: Sat, 01 Jun 2024 20:53:47 GMT cache-control: max-age=5184000 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-nginx-upstream-cache-status: STALE x-server-powered-by: Engintron cf-cache-status: HIT age: 1349700 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LiDKWtZ7G54B7s%2FBUU0kLKmF8%2FPmidrnGs6tpRnIDDTr5BygXfsS%2B7RSWLMmwIls1k5ziGG%2FTMcBjWExJfCA26jrKA6WjHRTItwblAiuju7BlTOnSsckRTXiDMNJ%2BvvmGQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 87646d826e28569c-OSL content-encoding: br X-Firefox-Spdy: h2

	www.shorturl.at/cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js	104.26.9.129	200 OK	7.8 kB
URL GET HTTP/2 www.shorturl.at/cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js IP 104.26.9.129:443 ASN #13335 CLOUDFLARENET Requested by https://www.shorturl.at/error.php Certificate IssuerGoogle Trust Services LLC Subjectshorturl.at FingerprintE6:B3:B9:89:FA:01:F0:B9:4C:C8:BE:5C:9B:A5:92:98:5A:14:A9:9A ValidityWed, 10 Apr 2024 11:26:54 GMT - Tue, 09 Jul 2024 11:26:53 GMT File type JavaScript source, ASCII text, with very long lines (7782), with no line terminators Size 7.8 kB (7782 bytes) Hash edbaf4ff294470faad33f7a15b912338 f0f9fe00affb2847c75d69807b311cf707af5f2c 771473de839462920380be7c680b6d1350d2d11130e30ef8eca76b13ac745ccc HTTP Headers `GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js HTTP/1.1 Host: www.shorturl.at User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 18 Apr 2024 11:48:46 GMT content-type: application/javascript; charset=UTF-8 x-content-type-options: nosniff vary: accept-encoding content-encoding: br cache-control: max-age=14400, public report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xupm0D28QJ5A1Yu7ZBl86cavc9iyl5iGXAuvlPKtn%2Bi1GCBBqaRnsLFXkdAu3WJWA4UlXhwMuZUhre09UzfVT9bF0%2F%2BD2QOxxMHkGIPyHmzK7DeUR%2FpQQ9rTmK1daaSe3g%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 87646d811b75569c-OSL X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (14)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN