Report - vk.com/away.php?to=https://jasonlozano.com/bl/ne/mkptcqb5r2//jbonet@slurpmail.net

Report Overview

Visited public
2024-10-09 02:55:39
Tags
Submit Tags
URL
vk.com/away.php?to=https://jasonlozano.com/bl/ne/mkptcqb5r2//jbonet@slurpmail.net
Finishing URL
about:neterror?e=dnsNotFound&u=https%3A//jasonlozano.com/bl/ne/mkptcqb5r2/jbonet%40slurpmail.net&c=UTF-8&d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20jasonlozano.com.
IP / ASN
93.186.225.194
#47541 VKontakte Ltd
Title
Server Not Found

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
away.vk.com	92855	1997-06-24	2017-04-11 13:32:47	2024-09-26 12:21:24	755 B	1.2 kB	87.240.132.67
jasonlozano.com	unknown	2018-02-02	2021-01-31 20:23:11	2023-11-07 09:21:18	540 B	0 B	0.0.0.0
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-10-07 19:37:44	327 B	887 B	23.36.77.32
vk.com	2243	1997-06-24	2012-05-21 17:01:19	2024-10-08 09:11:09	535 B	1.2 kB	87.240.132.67

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-10-09	medium	jasonlozano.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	about:neterror?e=dnsNotFound&u=https%3A//jasonlozano.com/bl/ne/mkptcqb5r2/jbonet%40slurpmail.net&c=UTF-8&d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20jasonlozano.com.	ScriptElement	0 B	0001-01-01	2025-07-02
Pretty URL about:neterror?e=dnsNotFound&u=https%3A//jasonlozano.com/bl/ne/mkptcqb5r2/jbonet%40slurpmail.net&c=UTF-8&d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20jasonlozano.com. IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-07-02 03:08 Times Seen5235690 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (4)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
33985775df7b619cb33f4050d88c5fb9
cf0b2ff92cd2f7e12ce788a164a73d75dea5da83
b6db380f5eeb73aa56abf90afa43b52cc9f51b01f33ad1eefeccc473a41ffb86

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B6DB380F5EEB73AA56ABF90AFA43B52CC9F51B01F33AD1EEFECCC473A41FFB86"
Last-Modified: Tue, 08 Oct 2024 11:18:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4602
Expires: Wed, 09 Oct 2024 04:11:55 GMT
Date: Wed, 09 Oct 2024 02:55:13 GMT
Connection: keep-alive

vk.com/away.php?to=https://jasonlozano.com/bl/ne/mkptcqb5r2//jbonet@slurpmail.net

87.240.132.67

20 B

URL
vk.com/away.php?to=https://jasonlozano.com/bl/ne/mkptcqb5r2//jbonet@slurpmail.net
IP
87.240.132.67:0
ASN
#47541 VKontakte Ltd

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /away.php?to=https://jasonlozano.com/bl/ne/mkptcqb5r2//jbonet@slurpmail.net HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: kittenx
date: Wed, 09 Oct 2024 02:55:14 GMT
content-type: text/html; charset=windows-1251
content-length: 20
location: https://away.vk.com/away.php?rh=5b36a3ea-a5cc-43ec-8e6c-18f6d98a4277
x-powered-by: KPHP/7.4.118746
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Tue, 07 Oct 2025 06:00:55 GMT; path=/; domain=.vk.com
remixstlid=9101819838229120824_dxaeyIu6pUEWZkyArN4ZUxytCNXpJzn9I5RZOPUrXkD; expires=Thu, 09 Oct 2025 02:55:14 GMT; path=/; domain=.vk.com; secure
remixsec_redir=https%3A%2F%2Fjasonlozano.com%2Fbl%2Fne%2Fmkptcqb5r2%2Fjbonet%40slurpmail.net; path=/; domain=.vk.com
remixua=-1%7C-1%7C332%7C3502452718; expires=Tue, 14 Oct 2025 01:46:23 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
x-frame-options: DENY
content-encoding: gzip
x-frontend: front923000
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
origin-agent-cluster: ?0
x-trace-id: Ka3dzFfCHlfpqkBBixWwAW1_GZ7nzQ
server-timing: tid;desc="Ka3dzFfCHlfpqkBBixWwAW1_GZ7nzQ",front;dur=0.308
X-Firefox-Spdy: h2

away.vk.com/away.php?rh=5b36a3ea-a5cc-43ec-8e6c-18f6d98a4277

87.240.132.67

449 B

URL
away.vk.com/away.php?rh=5b36a3ea-a5cc-43ec-8e6c-18f6d98a4277
IP
87.240.132.67:0
ASN
#47541 VKontakte Ltd

File type
HTML document, ASCII text, with very long lines (843), with no line terminators
Size
449 B (449 bytes)
Hash
227feed0e963affd9879a85e28438fb4
9d42c32a9982db30b1e04fcbd062a6ff860b5114
cce9123a695b91e1e3f8a6168be2f2d4aa5a249213e4e8b62bd44b8daf53a0d9

HTTP Headers

GET /away.php?rh=5b36a3ea-a5cc-43ec-8e6c-18f6d98a4277 HTTP/1.1
Host: away.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: remixlang=3; remixstlid=9101819838229120824_dxaeyIu6pUEWZkyArN4ZUxytCNXpJzn9I5RZOPUrXkD; remixsec_redir=https%3A%2F%2Fjasonlozano.com%2Fbl%2Fne%2Fmkptcqb5r2%2Fjbonet%40slurpmail.net; remixua=-1%7C-1%7C332%7C3502452718
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Wed, 09 Oct 2024 02:55:14 GMT
content-type: text/html; charset=windows-1251
content-length: 449
x-powered-by: KPHP/7.4.118746
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixsec_redir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; domain=.vk.com
remixsec_redir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=away.vk.com
remixsec_redir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/
cache-control: no-store
x-frame-options: DENY
content-encoding: gzip
x-frontend: front923000
access-control-expose-headers: X-Frontend
x-trace-id: KwfxpV98GZAC-018GzcBVNpcU77uiA
server-timing: tid;desc="KwfxpV98GZAC-018GzcBVNpcU77uiA",front;dur=0.472
X-Firefox-Spdy: h2

GET jasonlozano.com/bl/ne/mkptcqb5r2/jbonet@slurpmail.net

0.0.0.0

0 B

URL User Request GET
jasonlozano.com/bl/ne/mkptcqb5r2/jbonet@slurpmail.net
IP
0.0.0.0:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bl/ne/mkptcqb5r2/jbonet@slurpmail.net HTTP/1.1
Host: jasonlozano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://away.vk.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (4)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET

IP

ASN

File type

Size

Hash

Detections

HTTP Headers