urlquery - report: www1.lone1y.com/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	Sent bytes	Received bytes	IP	Comment
www1.lone1y.com (2)	848965	2022-06-02 14:47:24	2023-05-17 18:03:24	899	1279	172.67.143.19

Fully Qualifying Domain Name

Rank

First Seen

Last Seen

Sent bytes

Received bytes

Comment

www1.lone1y.com (2)

848965

2022-06-02 14:47:24

2023-05-17 18:03:24

899

1279

172.67.143.19

Scan Date	Severity	Indicator	Comment
2023-05-26	medium	www1.lone1y.com/	Phishing

Scan Date

Severity

Indicator

Comment

2023-05-26

medium

www1.lone1y.com/

Phishing

Date	UQ / IDS / BL	URL	IP
2023-05-26 14:21:47 UTC	0 - 0 - 1	www1.lone1y.com/	104.21.71.37
2023-05-07 04:48:08 UTC	0 - 1 - 8	eweelz.com/palu/	104.21.71.37
2023-02-25 11:00:42 UTC	0 - 0 - 7	www2.lone1y.com/click?pid=734&offer_id=25&sub (...)	104.21.71.37

Date

UQ / IDS / BL

URL

2023-05-26 14:21:47 UTC

0 - 0 - 1

www1.lone1y.com/

104.21.71.37

2023-05-07 04:48:08 UTC

0 - 1 - 8

eweelz.com/palu/

104.21.71.37

2023-02-25 11:00:42 UTC

0 - 0 - 7

www2.lone1y.com/click?pid=734&offer_id=25&sub (...)

104.21.71.37

Date	UQ / IDS / BL	URL	IP
2023-06-02 04:42:50 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/36120055018605 (...)	162.159.133.233
2023-06-02 04:42:47 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/38290515164148 (...)	162.159.130.233
2023-06-02 04:42:45 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/31805605104608 (...)	162.159.134.233
2023-06-02 04:42:39 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/52313467017153 (...)	162.159.130.233
2023-06-02 04:42:37 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/48980857865214 (...)	162.159.130.233

Date

UQ / IDS / BL

URL

2023-06-02 04:42:50 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/36120055018605 (...)

162.159.133.233

2023-06-02 04:42:47 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/38290515164148 (...)

162.159.130.233

2023-06-02 04:42:45 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/31805605104608 (...)

162.159.134.233

2023-06-02 04:42:39 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/52313467017153 (...)

162.159.130.233

2023-06-02 04:42:37 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/48980857865214 (...)

162.159.130.233

Date	UQ / IDS / BL	URL	IP
2023-05-26 14:21:47 UTC	0 - 0 - 1	www1.lone1y.com/	104.21.71.37
2022-09-16 17:41:20 UTC	0 - 0 - 5	www2.lone1y.com/click?pid=57346&offer_id=25&s (...)	172.67.143.19
2023-02-25 11:00:42 UTC	0 - 0 - 7	www2.lone1y.com/click?pid=734&offer_id=25&sub (...)	104.21.71.37
2023-02-07 12:13:45 UTC	0 - 0 - 4	www2.lone1y.com/click	172.67.143.19

Date

UQ / IDS / BL

URL

2023-05-26 14:21:47 UTC

0 - 0 - 1

www1.lone1y.com/

104.21.71.37

2022-09-16 17:41:20 UTC

0 - 0 - 5

www2.lone1y.com/click?pid=57346&offer_id=25&s (...)

172.67.143.19

2023-02-25 11:00:42 UTC

0 - 0 - 7

www2.lone1y.com/click?pid=734&offer_id=25&sub (...)

104.21.71.37

2023-02-07 12:13:45 UTC

0 - 0 - 4

www2.lone1y.com/click

172.67.143.19

Date	UQ / IDS / BL	URL	IP
2023-06-02 04:42:50 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/36120055018605 (...)	162.159.133.233
2023-06-02 04:42:47 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/38290515164148 (...)	162.159.130.233
2023-06-02 04:42:45 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/31805605104608 (...)	162.159.134.233
2023-06-02 04:42:39 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/52313467017153 (...)	162.159.130.233
2023-06-02 04:42:37 UTC	0 - 1 - 0	cdn.discordapp.com/attachments/48980857865214 (...)	162.159.130.233

Date

UQ / IDS / BL

URL

2023-06-02 04:42:50 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/36120055018605 (...)

162.159.133.233

2023-06-02 04:42:47 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/38290515164148 (...)

162.159.130.233

2023-06-02 04:42:45 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/31805605104608 (...)

162.159.134.233

2023-06-02 04:42:39 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/52313467017153 (...)

162.159.130.233

2023-06-02 04:42:37 UTC

0 - 1 - 0

cdn.discordapp.com/attachments/48980857865214 (...)

162.159.130.233

HTTP Transactions (2)

Request	Response
GET / HTTP/1.1 Host: www1.lone1y.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache	172.67.143.19 HTTP/2 200 OK content-type: text/html date: Fri, 26 May 2023 14:21:30 GMT last-modified: Thu, 26 May 2022 14:56:23 GMT cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6DmwzN9BfoRhfj0gVG78IBQt4Cg%2B4QLQrnw%2BUj9qEG9bayxB4EwB3mavFz2g6%2BZdaF9O6Cuj0X%2BvGnK3tXvqPtk%2FgxsVJH13vUb4im6fL%2FneP0graPjccOu61C%2B%2FGcXzwRU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7cd6aa38185db4ed-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: very short file (no magic) Size: 1 Md5: eccbc87e4b5ce2fe28308fd9f2a7baf3 Sha1: 77de68daecd823babbb58edb1c8e14d7106e83bb Sha256: 4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce Blocklists: - fortinet: Phishing
GET /favicon.ico HTTP/1.1 Host: www1.lone1y.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www1.lone1y.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache	172.67.143.19 HTTP/3 200 OK content-type: image/x-icon date: Fri, 26 May 2023 14:21:30 GMT content-length: 0 last-modified: Thu, 26 May 2022 14:56:24 GMT etag: "628f9518-0" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LYPX6LLbGc3DRrIDmmjiH3mFYNbfcGSc%2FMbJWjR3PyM1vY8xMWTeo2hCB%2BjxK8B3xjUwheJ3sddv2XHoUGI%2BvEoUxKFtyt4vvsvVfLILNJgtdwosDG%2B6qZOKNLWrQrr4pMQ%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7cd6aa3ae9680b4d-OSL alt-svc: h3=":443"; ma=86400 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request

Response

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: www1.lone1y.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
DNT: 1 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             172.67.143.19

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/html

                                            

                                            
                                                
date: Fri, 26 May 2023 14:21:30 GMT 

                                            
                                                
last-modified: Thu, 26 May 2022 14:56:23 GMT 

                                            
                                                
cf-cache-status: DYNAMIC 

                                            
                                                
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6DmwzN9BfoRhfj0gVG78IBQt4Cg%2B4QLQrnw%2BUj9qEG9bayxB4EwB3mavFz2g6%2BZdaF9O6Cuj0X%2BvGnK3tXvqPtk%2FgxsVJH13vUb4im6fL%2FneP0graPjccOu61C%2B%2FGcXzwRU%3D"}],"group":"cf-nel","max_age":604800} 

                                            
                                                
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                            
                                                
server: cloudflare 

                                            
                                                
cf-ray: 7cd6aa38185db4ed-OSL 

                                            
                                                
content-encoding: br 

                                            
                                                
alt-svc: h3=":443"; ma=86400 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  very short file (no magic)

                                                Size:   1

                                                Md5:    eccbc87e4b5ce2fe28308fd9f2a7baf3

                                                Sha1:   77de68daecd823babbb58edb1c8e14d7106e83bb

                                                Sha256: 4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce

                                        

                                        
                                            

                                            

                                            
                                                Blocklists:

                                                
                                                      - fortinet: Phishing

                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: www1.lone1y.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
DNT: 1 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www1.lone1y.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             172.67.143.19

                                            
                                                HTTP/3 200 OK 

                                            
                                                
content-type: image/x-icon

                                            

                                            
                                                
date: Fri, 26 May 2023 14:21:30 GMT 

                                            
                                                
content-length: 0 

                                            
                                                
last-modified: Thu, 26 May 2022 14:56:24 GMT 

                                            
                                                
etag: "628f9518-0" 

                                            
                                                
cache-control: max-age=14400 

                                            
                                                
cf-cache-status: MISS 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LYPX6LLbGc3DRrIDmmjiH3mFYNbfcGSc%2FMbJWjR3PyM1vY8xMWTeo2hCB%2BjxK8B3xjUwheJ3sddv2XHoUGI%2BvEoUxKFtyt4vvsvVfLILNJgtdwosDG%2B6qZOKNLWrQrr4pMQ%3D"}],"group":"cf-nel","max_age":604800} 

                                            
                                                
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
server: cloudflare 

                                            
                                                
cf-ray: 7cd6aa3ae9680b4d-OSL 

                                            
                                                
alt-svc: h3=":443"; ma=86400 

                                            
                                                
 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

URL	www1.lone1y.com/
IP	104.21.71.37 ()
ASN	#13335 CLOUDFLARENET
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access	public
Report completed	2023-05-26 14:21:47 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	1
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (1)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 104.21.71.37

Last 5 reports on ASN: CLOUDFLARENET

Last 4 reports on domain: lone1y.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (0)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (2)

Overview

Domain Summary (1)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 104.21.71.37

Last 5 reports on ASN: CLOUDFLARENET

Last 4 reports on domain: lone1y.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (0)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (2)

Network Intrusion Detection Systems