Report - the-red-sands.space-forums.com/search.php

Report Overview

Submitted URL
the-red-sands.space-forums.com/search.php
IP
137.74.206.99
ASN
#16276 OVH SAS
Submitted
2024-05-10 19:16:19
Access
public
Website Title
Rechercher • The-Red-Sands
Final URL
the-red-sands.space-forums.com/search.php
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
42

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
the-red-sands.space-forums.com	unknown	unknown	No data	No data	10 kB	17 kB	137.74.206.99
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-05-09	444 B	35 kB	142.250.74.42
a01.adoptima.com	unknown	2018-02-19	2013-10-09	2024-02-15	343 B	149 B	3.130.204.160
script.affilizr.com	unknown	2020-09-07	2014-02-07	2024-02-17	341 B	362 B	207.244.67.215
ww1.affilizr.com	unknown	2020-09-07	2021-02-14	2024-02-17	324 B	257 B	15.197.204.56
www.hugedomains.com	50857	2003-10-31	2017-01-29	2024-05-07	443 B	780 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed
2024-05-10	medium	space-forums.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js	94 kB	2023-03-07	2024-05-23
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:53 Last Seen2024-05-23 06:03:01 Times Seen17412 Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf Loading...

	the-red-sands.space-forums.com/search.php	1.9 kB	2024-05-10	2024-05-10
Pretty URL the-red-sands.space-forums.com/search.php IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 21:16:25 Last Seen2024-05-10 21:16:25 Times Seen1 Hash 55986b358bd797da970183f5e400ce5d 30f1bf313adae785aed93d99c27ece9e96210393 dce362058468dffb1ce11cbe493a4331c8cb1da0328200a6bfc0104572b20dd0 Loading...

	the-red-sands.space-forums.com/styles/CSF1/template/ca_scripts.js	1.8 kB	2023-03-12	2024-05-14
Pretty URL the-red-sands.space-forums.com/styles/CSF1/template/ca_scripts.js IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:40:01 Last Seen2024-05-14 16:07:09 Times Seen15 Hash 5a2b51c60d7166bad5f81d1a2e65c5a2 5f66eca28986038b51b15dc550c18ed12e32fe93 f802b2ca5ca4bf8a26ab90552efe29f929afe276f9be40c381ab1ce73492f1c5 Loading...

	the-red-sands.space-forums.com/search.php	167 B	2023-03-10	2024-05-19
Pretty URL the-red-sands.space-forums.com/search.php IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 02:17:06 Last Seen2024-05-19 05:16:13 Times Seen54 Hash 9d397eaf2cd929eb27b2ffedb41ca217 50882a9335eec4af80dd325d13b8f830f612a25c 62492e5b9c9d377b31577758d0b06d78582bc98d87ca93005d04aea4413e1dce Loading...

	the-red-sands.space-forums.com/search.php	49 B	2023-03-10	2024-05-19
Pretty URL the-red-sands.space-forums.com/search.php IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 02:17:05 Last Seen2024-05-19 05:16:13 Times Seen57 Hash b50ceabec233310da089676cf5834b0f 96ad846fcef4d6c037adaf5bd0bd293ea832f4df 6916770cb7092ee8bb88605309e50b01fea73e8d882cbd437ed6d9336addc89e Loading...

	the-red-sands.space-forums.com/search.php	523 B	2023-03-10	2024-05-19
Pretty URL the-red-sands.space-forums.com/search.php IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 02:17:06 Last Seen2024-05-19 05:16:13 Times Seen53 Hash 2b2b9c47c802bb5892d74ecd57296514 5b4fa5853cedc5ca8306af771571db74cfbb4418 e168a06f74fd60ce1ef8ceb5e98791fd6ea43ecef71a87540019a04b376e8cc1 Loading...

	the-red-sands.space-forums.com/search.php	86 B	2023-03-08	2024-05-19
Pretty URL the-red-sands.space-forums.com/search.php IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 16:26:24 Last Seen2024-05-19 05:16:13 Times Seen75 Hash a375d4f0b74e9f0576dec8d57d5a6dec 3e8da426446ab152e26559eeb0b662b8a9b7ffdb 9e0d742ea6ef4530373ccab34b7c77d9f1b38ebde26e723ad047ad6d26fd2a50 Loading...

	the-red-sands.space-forums.com/includes/adfly.js	3.9 kB	2023-03-12	2024-05-19
Pretty URL the-red-sands.space-forums.com/includes/adfly.js IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 11:07:46 Last Seen2024-05-19 05:16:13 Times Seen88 Hash f3b4e660b95f6c34016f8024d4f44001 a6fdb7cb2409456147b480c859af9608b3a6edc6 1d2b69f812561d5611903ec87313fb6fb6541c0d60dbcbc119b213c273785044 Loading...

	the-red-sands.space-forums.com/search.php	67 B	2023-03-10	2024-05-19
Pretty URL the-red-sands.space-forums.com/search.php IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 02:17:05 Last Seen2024-05-19 05:16:13 Times Seen54 Hash 05f7da5e5dbb490a03fe8de0e28fc1ca 25726ce0db0d2c544e53025beb61eb28119cbfb9 685aac95169aa3ec57d8fee8a923c18b0d8cc6d02fd9236e756da3f7793894b0 Loading...

	the-red-sands.space-forums.com/search.php	22 B	2023-03-07	2024-05-23
Pretty URL the-red-sands.space-forums.com/search.php IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-23 06:02:57 Times Seen137 Hash 579968837bff17f86c84586a17527dbd 0e16728429a6466fcf171a3c3822b32309886ff7 42502f9312b4563f144a9fc288ef1726789045b7204b3835370dd7ba603ec4af Loading...

	the-red-sands.space-forums.com/search.php	73 B	2023-03-10	2024-05-19
Pretty URL the-red-sands.space-forums.com/search.php IP 137.74.206.99 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 02:17:05 Last Seen2024-05-19 05:16:13 Times Seen54 Hash d8d98c17061b4ee7b6a6fd6390925f52 61c9b3838da1354e81de3658bc175518b41163ef cd5a9bd6bec1ffcc8f097bcb7572445a2192c40d2114d9451c6399b6f17d5938 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ac76c8e1d0dda69ff0a2ee3c53d01da5	19 B	2023-03-12	2024-05-14
Pretty Observations First Seen2023-03-12 14:40:01 Last Seen2024-05-14 16:07:09 Times Seen10 Hash ac76c8e1d0dda69ff0a2ee3c53d01da5 69d6a32e6eef7eeecf49611a41c09d39701db0b7 33551b3bc1b74491dd56d5de8a80c173f79a52e0c6d117edfe62f8516aef9dae Loading...

HTTP Transactions (26)

URL IP Response Size

the-red-sands.space-forums.com/search.php

137.74.206.99

200 OK

5.2 kB

URL User Request GET HTTP/1.1
the-red-sands.space-forums.com/search.php
IP
137.74.206.99:80
ASN
#16276 OVH SAS

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1239)
Size
5.2 kB (5170 bytes)
Hash
e557ffae3b63f2587341a4fabcc7c410
2db9a8d414a900a500598a7ffdfe843fb8545b95
fab239895c42795adca0c34724db1a89c69f3adfbdc9dffbdb32053867d34b8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /search.php HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:54 GMT
Server: Apache/2.4.38
Cache-Control: private, no-cache="set-cookie"
Expires: 0
Pragma: no-cache
Set-Cookie: phpbb3_pbmeu_u=1; expires=Sat, 10-May-2025 19:15:54 GMT; path=/; domain=the-red-sands.space-forums.com; HttpOnly
phpbb3_pbmeu_k=; expires=Sat, 10-May-2025 19:15:54 GMT; path=/; domain=the-red-sands.space-forums.com; HttpOnly
phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb; expires=Sat, 10-May-2025 19:15:54 GMT; path=/; domain=the-red-sands.space-forums.com; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5170
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

the-red-sands.space-forums.com/styles/CSF1/theme/stylesheet.css

137.74.206.99

200 OK

58 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/styles/CSF1/theme/stylesheet.css
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
ASCII text
Size
58 B (58 bytes)
Hash
ebda390858df5c3f5de6722b32072745
4069cd09ccf5cf38fee72d7fbca018ccbadbee4d
483c460ce97c231d9e51561c70b5816752ba3c86dfa891d8b50c7326bfb055ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /styles/CSF1/theme/stylesheet.css HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:54 GMT
Server: Apache/2.4.38
Last-Modified: Mon, 02 Sep 2019 18:28:00 GMT
ETag: "a4-5919621bb4c2b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 58
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

the-red-sands.space-forums.com/includes/adfly.js

137.74.206.99

200 OK

1.6 kB

URL GET HTTP/1.1
the-red-sands.space-forums.com/includes/adfly.js
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
ASCII text, with very long lines (3867)
Size
1.6 kB (1637 bytes)
Hash
f3b4e660b95f6c34016f8024d4f44001
a6fdb7cb2409456147b480c859af9608b3a6edc6
1d2b69f812561d5611903ec87313fb6fb6541c0d60dbcbc119b213c273785044

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/adfly.js HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:54 GMT
Server: Apache/2.4.38
Last-Modified: Tue, 12 Mar 2019 10:30:12 GMT
ETag: "f54-583e32c8ff500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1637
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

the-red-sands.space-forums.com/styles/CSF1/template/ca_scripts.js

137.74.206.99

200 OK

606 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/styles/CSF1/template/ca_scripts.js
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
ASCII text
Size
606 B (606 bytes)
Hash
5a2b51c60d7166bad5f81d1a2e65c5a2
5f66eca28986038b51b15dc550c18ed12e32fe93
f802b2ca5ca4bf8a26ab90552efe29f929afe276f9be40c381ab1ce73492f1c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /styles/CSF1/template/ca_scripts.js HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:54 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:24:27 GMT
ETag: "6dc-4b330d7ca3cc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 606
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

the-red-sands.space-forums.com/styles/CSF1/theme/style.css

137.74.206.99

200 OK

58 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/styles/CSF1/theme/style.css
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
ASCII text
Size
58 B (58 bytes)
Hash
ebda390858df5c3f5de6722b32072745
4069cd09ccf5cf38fee72d7fbca018ccbadbee4d
483c460ce97c231d9e51561c70b5816752ba3c86dfa891d8b50c7326bfb055ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /styles/CSF1/theme/style.css HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:54 GMT
Server: Apache/2.4.38
Last-Modified: Mon, 02 Sep 2019 18:28:16 GMT
ETag: "a4-5919622a87aec-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 58
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js

142.250.74.42

200 OK

34 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
http://the-red-sands.space-forums.com/search.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (65483)
Size
34 kB (33593 bytes)
Hash
3576a6e73c9dccdbbc4a2cf8ff544ad7
06e872300088b9ba8a08427d28ed0efcdf9c6ff5
61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf

HTTP Headers

GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 17:59:29 GMT
expires: Mon, 05 May 2025 17:59:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 436585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

a01.adoptima.com/GP2416568cf32e64545

3.130.204.160

0 B

URL GET
a01.adoptima.com/GP2416568cf32e64545
IP
3.130.204.160:0
ASN
#16509 AMAZON-02

Requested by
http://the-red-sands.space-forums.com/search.php

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /GP2416568cf32e64545 HTTP/1.1
Host: a01.adoptima.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
content-length: 0
date: Fri, 10 May 2024 19:15:54 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=adoptima.com

the-red-sands.space-forums.com/images/iphone.png

137.74.206.99

200 OK

1.1 kB

URL GET HTTP/1.1
the-red-sands.space-forums.com/images/iphone.png
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
PNG image data, 13 x 23, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1069 bytes)
Hash
3bb78d80beb34f0a4b8c3dce9b95bebe
b35169f481a15972413247812bc8aab553b3b5bf
94d07af681c3f1bee72095da0efbc52c8a3a3cd004bf10fcf6e8e3ba46a3ea8b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/iphone.png HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Last-Modified: Thu, 11 Mar 2010 17:20:09 GMT
ETag: "42d-48189a06f6440"
Accept-Ranges: bytes
Content-Length: 1069
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

the-red-sands.space-forums.com/space5.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space5.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space5.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/space7.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space7.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space7.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/space8.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space8.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space8.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/space6.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space6.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space6.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/cron.php?cron_type=tidy_database&sid=0782c9c263f5a2b20fb44518066bcacb

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/cron.php?cron_type=tidy_database&sid=0782c9c263f5a2b20fb44518066bcacb
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cron.php?cron_type=tidy_database&sid=0782c9c263f5a2b20fb44518066bcacb HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Cache-Control: no-cache
Content-length: 43
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif

the-red-sands.space-forums.com/espace.gif

137.74.206.99

404 Not Found

196 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/espace.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
HTML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /espace.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Content-Length: 196
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

the-red-sands.space-forums.com/space9.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space9.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space9.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/space3.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space3.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space3.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/space13.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space13.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space13.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/space2.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space2.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space2.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/space11.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space11.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space11.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/images/chat.png

137.74.206.99

200 OK

1.0 kB

URL GET HTTP/1.1
the-red-sands.space-forums.com/images/chat.png
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced
Size
1.0 kB (1047 bytes)
Hash
7ed08af132b7758cac5dd6205c0ca77e
7560b733824955b090ca8a2e651efbe49ee76b98
fc6acca2cccbf3b31f3408f3ab0f7a8ffc538949b5cd6d13edf94e7f727de57d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/chat.png HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Last-Modified: Mon, 15 Mar 2010 10:35:33 GMT
ETag: "417-481d470d68740"
Accept-Ranges: bytes
Content-Length: 1047
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

the-red-sands.space-forums.com/space4.gif

137.74.206.99

200 OK

43 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/space4.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /space4.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

the-red-sands.space-forums.com/espace.gif

137.74.206.99

404 Not Found

196 B

URL GET HTTP/1.1
the-red-sands.space-forums.com/espace.gif
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
HTML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /espace.gif HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 10 May 2024 19:15:55 GMT
Server: Apache/2.4.38
Content-Length: 196
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

script.affilizr.com/js/affilizr.js

207.244.67.215

302 Found

11 B

URL GET HTTP/1.1
script.affilizr.com/js/affilizr.js
IP
207.244.67.215:80
ASN
#30633 LEASEWEB-USA-WDC

Requested by
http://the-red-sands.space-forums.com/search.php

File type
ASCII text, with no line terminators
Size
11 B (11 bytes)
Hash
32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47

HTTP Headers

GET /js/affilizr.js HTTP/1.1
Host: script.affilizr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Fri, 10 May 2024 19:15:55 GMT
location: http://ww1.affilizr.com
server: nginx
set-cookie: sid=b955d684-0f01-11ef-b24d-71f5f41b9356; path=/; domain=.affilizr.com; expires=Wed, 28 May 2092 22:30:02 GMT; max-age=2147483647; HttpOnly

ww1.affilizr.com/

15.197.204.56

200 OK

114 B

URL GET HTTP/1.1
ww1.affilizr.com/
IP
15.197.204.56:80
ASN
#16509 AMAZON-02

Requested by
http://the-red-sands.space-forums.com/search.php

File type
HTML document, ASCII text, with no line terminators
Size
114 B (114 bytes)
Hash
e89f75f918dbdcee28604d4e09dd71d7
f9d9055e9878723a12063b47d4a1a5f58c3eb1e9
6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023

HTTP Headers

GET / HTTP/1.1
Host: ww1.affilizr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://the-red-sands.space-forums.com/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Fri, 10 May 2024 19:15:55 GMT
Content-Type: text/html
Content-Length: 114
Connection: keep-alive

the-red-sands.space-forums.com/favicon.ico

137.74.206.99

200 OK

1.4 kB

URL GET HTTP/1.1
the-red-sands.space-forums.com/favicon.ico
IP
137.74.206.99:80
ASN
#16276 OVH SAS

Requested by
http://the-red-sands.space-forums.com/search.php

File type
MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel
Size
1.4 kB (1406 bytes)
Hash
25771d142316f29c820c7ee06a296053
1242c859c8e2b602ffc83251e57d768df825ccf7
90d3d777ef181682e46d1e8927af8ed9a93157a208912f221debe4b957a9cd41

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: the-red-sands.space-forums.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://the-red-sands.space-forums.com/search.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0782c9c263f5a2b20fb44518066bcacb
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 19:15:56 GMT
Server: Apache/2.4.38
Last-Modified: Fri, 30 Oct 2009 12:41:26 GMT
ETag: "57e-47726589d2980"
Accept-Ranges: bytes
Content-Length: 1406
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon

www.hugedomains.com/domain_profile.cfm?d=adoptima.com

0.0.0.0

0 B

URL GET
www.hugedomains.com/domain_profile.cfm?d=adoptima.com
IP
0.0.0.0:0
ASN
#0

Requested by
http://the-red-sands.space-forums.com/search.php
Certificate
IssuerGoogle Trust Services LLC
Subjecthugedomains.com
FingerprintB3:42:0C:1B:D3:31:FA:CD:55:02:73:F5:38:44:54:65:94:4A:FD:D4
ValiditySun, 17 Mar 2024 01:27:35 GMT - Sat, 15 Jun 2024 01:27:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /domain_profile.cfm?d=adoptima.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://the-red-sands.space-forums.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 19:15:55 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Mon, 05-May-2025 19:15:55 GMT; path=/
site_version=HDv3; expires=Mon, 05-May-2025 19:15:55 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd3
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ewHr9V7J%2BbLw5Wuz0APdvC0UWZraHMqC0C1u9YL8Uc6h6QPJm6paZfxNuqrFC3vmBcjlufznmqwxoXpPtO%2FdP7voydnSK9logdUYZd%2BhsuufLEMILr9LDzEqhPxZodU%2FpEwx%2BTo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881c42be3eeb712a-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML