Domain > cloud.testfit.io

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2024-07-14	3.161.163.63 (ClassC)
2026-02-13	3.169.173.30 (ClassC)

HTTP/1.1 301 Moved PermanentlyServer: CloudFrontDate: Fri, 13 Feb 2026 08:02:18 GMTContent-Type: text/htmlContent-Length: 167Connection: keep-aliveLocation: https://cloud.testfit.io/X-Cache: Redirect from cloudfrontVia: 1.1 93b50b5ce635a36621d7bd38d3b0d6da.cloudfront.net (CloudFront)X-Amz-Cf-Pop: HIO52-P4X-Amz-Cf-Id: WSxR1ai3lX7W0_CfapzYRp3VaqJw125kmn4zPIeEedIrPbkh_wt8eAContent-Security-Policy-Report-Only: default-src none; connect-src self https://api.testfit.io https://o4504016552984576.ingest.us.sentry.io https://api.mapbox.com; font-src self https://fonts.gstatic.com; img-src self; script-src self; style-src self; style-src-elem self; report-uri https://browser-intake-datadoghq.com/api/v2/logs?dd-api-keypub98aaa089743dcbe9edc8b3dd285a2ec3&dd-evp-origincontent-security-policy&ddsourcecsp-reportCross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-origin

html>head>title>301 Moved Permanently/title>/head>body>center>h1>301 Moved Permanently/h1>/center>hr>center>CloudFront/center>/body>/html>

Port 443

HTTP/1.1 200 OKContent-Type: text/htmlContent-Length: 2927Connection: keep-aliveDate: Fri, 13 Feb 2026 08:02:19 GMTLast-Modified: Wed, 11 Feb 2026 03:09:06 GMTETag: d2e287154c09578f6aa506bcfc3c431ex-amz-server-side-encryption: AES256x-amz-version-id: nullAccept-Ranges: bytesServer: AmazonS3X-Cache: Error from cloudfrontVia: 1.1 bc4e0a32a1893d7693b91555def3133e.cloudfront.net (CloudFront)X-Amz-Cf-Pop: HIO52-P4X-Amz-Cf-Id: _3yz9SxrZhZkgIcso2a9U9StAxf5QNOuWTVCv35u-2lIWG0KuSEryAStrict-Transport-Security: max-age63072000; includeSubDomains; preloadContent-Security-Policy-Report-Only: default-src none; connect-src self https://api.testfit.io https://o4504016552984576.ingest.us.sentry.io https://api.mapbox.com; font-src self https://fonts.gstatic.com; img-src self; script-src self; style-src self; style-src-elem self; report-uri https://browser-intake-datadoghq.com/api/v2/logs?dd-api-keypub98aaa089743dcbe9edc8b3dd285a2ec3&dd-evp-origincontent-security-policy&ddsourcecsp-reportCross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-origin

!DOCTYPE html>html langen>  head>    !-- Google Tag Manager -->    script>      window.loadGtm  function loadGTM(gtmId) {        (function (w, d, s, l, i) {          wl  wl || ;          wl.push({ gtm.start: new Date().getTime(), event: gtm.js });          var f  d.getElementsByTagName(s)0,            j  d.createElement(s),            dl  l ! dataLayer ? &l + l : ;          j.async  true;          j.src  https://www.googletagmanager.com/gtm.js?id + i + dl;          f.parentNode.insertBefore(j, f);        })(window, document, script, dataLayer, `${gtmId}`);      };    /script>    !-- End Google Tag Manager -->    meta charsetutf-8 />    link relicon href/favicon.ico />    meta nameviewport contentwidthdevice-width, initial-scale1 />    meta nametheme-color content#000000 />    meta namedescription contentTestFit />    link relpreconnect hrefhttps://fonts.googleapis.com crossoriginanonymous />    link relpreconnect hrefhttps://fonts.gstatic.com crossoriginanonymous />    link      hrefhttps://fonts.googleapis.com/css2?familyRoboto:wght@300;400;500;700&displayswap      relstylesheet      crossoriginanonymous    />    link      hrefhttps://fonts.googleapis.com/css2?familyInter:wght@400;500&displayswap      relstylesheet      crossoriginanonymous    />    !--      Notice the use of %PUBLIC_URL% in the tags above.      It will be replaced with the URL of the `public` folder during the build.      Only files inside the `public` folder can be referenced from the HTML.      Unlike /favicon.ico or favicon.ico, %PUBLIC_URL%/favicon.ico will      work correctly both with client-side routing and a non-root public URL.      Learn how to configure a non-root public URL by running `npm run build`.    -->    title>TestFit/title>    script typemodule crossorigin src/assets/index-CqkrMm8G.js>/script>    link relstylesheet crossorigin href/assets/index-Brw31wHM.css>  /head>  body>    noscript>You need to enable JavaScript to run this app./noscript>    !-- Google Tag Manager (noscript) -->    noscript      >iframe        srchttps://www.googletagmanager.com/ns.html?idGTM-KL8N9XNZ        height0        width0        styledisplay: none; visibility: hidden      >/iframe    >/noscript>    !-- End Google Tag Manager (noscript) -->    div idroot>/div>    !--      This HTML file is a template.      If you open it directly in the browser, you will see an empty page.      You can add webfonts, meta tags, or analytics to this file.      The build step will place the bundled scripts into the body> tag.      To begin the development, run `npm start` or `yarn start`.      To create a production bundle, use `npm run build` or `yarn build`.    -->  /body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > cloud.testfit.io

Is this malicious?

DNS Resolutions

Port 80

Port 443