malicious

suspicious phishing

English

The domain 'kevin.gtfkd.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'kevin'. Count 5 characters in 'gtfkd' holding 0 vowels versus 5 consonants. Word splitting yields 3 words: g, tfk, d. Median word length comes out to 1 character. No strong language cues emerged from the frequency lists.

html/f8/f0/f8f0cddb-4d85-4b40-ae07-8cab2ae7d3d8.html.gz

e3e5f35d586c0e6a9a9d7187687be087580c40a5f8d0e52f0c4053bbc25c98db

ccc0ee783158d1ab3ae590ef8c982a827e38e8b82fd121551cdd4c20041fcd1b

70d73aa04b6c020ab0bf004b7d28d541efbe6f19d70e93f18bdaff825724aa4a

dea0ad62fcbcc6a3bc1ebbb8fe1f0d2ec4c5eb7af2f98c28e24a2fc3d600f45b

/kev?sort=date&order=desc&page=1&per_page=15

/kev?sort=severity&order=desc&page=1&per_page=15

/vuln/published?days=7&page=1&per_page=30

Access CISA's Known Exploited Vulnerabilities Catalog (KEV) and CVE Data through the KEVin API. Retrieve information about CVEs, KEVs, and more.

description

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

Tucows Domains Inc.

GTFKD.COM


    // Function to get the metrics
    function getMetrics() {
        fetch('/get_metrics') // Call the route that returns the metrics
            .then(response => response.json())
            .then(data => {
                document.getElementById('metrics-cves').innerText = Number(data.cves_count).toLocaleString();
                document.getElementById('metrics-kevs').innerText = Number(data.kevs_count).toLocaleString();
            })
            .catch(error => {
                console.error('Error fetching metrics:', error);
                document.getElementById('metrics-cves').innerText = 'Error fetching metrics';
                document.getElementById('metrics-kevs').innerText = 'Error fetching metrics';
            });
    }

    // Call the function when the page loads
    getMetrics();

    // Toggle Dark Theme
    const darkThemeToggle = document.getElementById('darkThemeToggle');
    const body = document.body;

    // Load the user's theme preference from Local Storage
    const userThemePreference = localStorage.getItem('darkTheme');
    if (userThemePreference === 'true') {
        body.classList.add('bg-dark');
        body.classList.add('text-light');
        darkThemeToggle.checked = true;
    }

    darkThemeToggle.addEventListener('change', () => {
        if (darkThemeToggle.checked) {
            body.classList.add('bg-dark');
            body.classList.add('text-light');
            localStorage.setItem('darkTheme', 'true'); // Store the preference
        } else {
            body.classList.remove('bg-dark');
            body.classList.remove('text-light');
            localStorage.setItem('darkTheme', 'false'); // Store the preference
        }
    });


Requests	IP Address	Location	AS Autonomous System
9	172.66.40.170	United States	AS13335CLOUDFLARENET
2	104.18.10.207	United States	AS13335CLOUDFLARENET
1	151.101.66.137	San Francisco, California, United States	AS54113FASTLY
1	104.16.175.226	United States	AS13335CLOUDFLARENET
0	172.66.43.86	United States	AS13335CLOUDFLARENET
0	104.16.174.226	United States	AS13335CLOUDFLARENET
0	104.18.11.207	United States	AS13335CLOUDFLARENET
0	2606:4700::6812:bcf	United States	AS13335CLOUDFLARENET
0	2a04:4e42:600::649	United States	AS54113FASTLY
0	2606:4700:3108::ac42:28aa	United States	AS13335CLOUDFLARENET
13	20	-	-

Security Scan Report: kevin.gtfkd.com

Summary

AI Security Verdict

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies5

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History