Report Overview

  1. Submitted URL

    han.gl/tzlLU

  2. IP

    104.21.81.144

    ASN

    #13335 CLOUDFLARENET

  3. Submitted

    2023-01-07 18:44:56

    Access

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    1

  3. Threat Detection Systems

    28

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
ocsp.digicert.com860001-01-01T00:00:00Z0001-01-01T00:00:00Z
contile.services.mozilla.com11140001-01-01T00:00:00Z0001-01-01T00:00:00Z
push.services.mozilla.com21400001-01-01T00:00:00Z0001-01-01T00:00:00Z
img-getpocket.cdn.mozilla.net16310001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.pki.goog1750001-01-01T00:00:00Z0001-01-01T00:00:00Z
r3.o.lencr.org3440001-01-01T00:00:00Z0001-01-01T00:00:00Z
content-signature-2.cdn.mozilla.net11520001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.sectigo.com4870001-01-01T00:00:00Z0001-01-01T00:00:00Z
han.glunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
vallettaferryservices.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
fonts.gstatic.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
fonts.googleapis.com88770001-01-01T00:00:00Z0001-01-01T00:00:00Z
firefox.settings.services.mozilla.com8670001-01-01T00:00:00Z0001-01-01T00:00:00Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IP 192.169.69.26

Threat Detection Systems

OpenPhish
SeverityIndicatorAlert
mediumhan.gl/tzlLUCredit Agricole S.A.

PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumhan.gl/tzlLUPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/Phishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/angular.min.jsPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/jquery.CardValidator.jsPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/jquery.validate.min.jsPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/jquery.mask.jsPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/style.jsPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/jquery.min.jsPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/popper.min.jsPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/bootstrap.min.jsPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/main.jsPhishing
mediumvallettaferryservices.com/wp-admin/user/update/notification/home/style/js/fontawesome.jsPhishing

mnemonic secure dns

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
mediumhan.glSinkholed

JavaScript (10)

HTTP Transactions (50)

URLIPResponseSize
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
ocsp.digicert.com/
93.184.220.29200 OK279 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
push.services.mozilla.com/
34.215.56.181101 Switching Protocols0 B
ocsp.digicert.com/
93.184.220.29200 OK279 B
ocsp.sectigo.com/
172.64.155.188200 OK472 B
han.gl/tzlLU
188.114.97.1301 Moved Permanently0 B
vallettaferryservices.com/wp-admin/user/update/notification/home/
85.119.122.20200 OK3.6 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc669500c-8275-41bd-b6b4-d69a9275759e.jpeg
34.120.237.76200 OK9.8 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ef3a07b-bcd6-4039-8f1b-5315d2fe51c2.jpeg
34.120.237.76200 OK5.7 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
34.120.237.76200 OK5.6 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe337b2fa-7f8d-45d1-9c3b-36a6e16363af.webp
34.120.237.76200 OK14 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg
34.120.237.76200 OK10 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/angular.min.js
85.119.122.20200 OK58 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/jquery.CardValidator.js
85.119.122.20200 OK2.1 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/jquery.validate.min.js
85.119.122.20200 OK7.4 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/jquery.mask.js
85.119.122.20200 OK4.9 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/style.js
85.119.122.20200 OK834 B
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/jquery.min.js
85.119.122.20200 OK31 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/css/helpers.css
85.119.122.20200 OK4.6 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/css/fonts.css
85.119.122.20200 OK278 B
vallettaferryservices.com/wp-admin/user/update/notification/home/style/css/main.css
85.119.122.20200 OK2.3 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/popper.min.js
85.119.122.20200 OK7.2 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/bootstrap.min.js
85.119.122.20200 OK15 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/CADIF_logo_horizontal_rvb_v4.png
85.119.122.20200 OK19 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/main.js
85.119.122.20200 OK963 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.35200 OK48 kB
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK45 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
vallettaferryservices.com/wp-admin/user/update/notification/home//style/fermeture-agence-travaux-DAB_septembre2020.jpg
85.119.122.20200 OK165 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/js/fontawesome.js
85.119.122.20200 OK387 kB
vallettaferryservices.com/wp-admin/user/update/notification/home/style/favicon.png
85.119.122.20200 OK1.8 kB
fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800
142.250.74.106200 OK0 B