Report Overview
Visitedpublic
2026-02-06 10:51:35
Tags
Submit Tags
URL
casibom.icu
Finishing URL
casibom.icu/
IP / ASN
172.67.184.48
Title
Casibom - Most Popular Betting, Casino & Porn Site
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
4
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
aa.pornvideotop.com | unknown | 2015-07-22 | 2018-08-28 | 2026-02-06 | 2.1 kB | 612 B |  185.73.221.189 |  |
s.magsrv.com 8 alert(s) on this Host | 47665 | 2023-08-01 | 2023-08-04 | 2026-02-05 | 5.5 kB | 24 kB | 95.211.229.247 | |
tdska.cfd | 504966 | 2025-02-19 | 2025-03-03 | 2026-02-06 | 3.8 kB | 122 kB | 172.67.192.195 |  |
casibom.icu | unknown | 2026-02-03 | 2026-02-04 | 2026-02-04 | 3.8 kB | 294 kB | 172.67.184.48 |  |
thumbs1.casibom.icu | unknown | 2026-02-03 | 2026-02-04 | 2026-02-04 | 41 kB | 1.5 MB | 172.67.184.48 | |
s.pemsrv.com | 104334 | 2023-08-01 | 2023-08-04 | 2026-02-04 | 419 B | 251 B | 95.211.229.247 | |
a.magsrv.com 8 alert(s) on this Host | 51490 | 2023-08-01 | 2023-08-04 | 2026-02-04 | 1.6 kB | 748 kB |  95.173.205.14 |  |
s3t3d2y1.afcdn.net 14 alert(s) on this Host | unknown | 2022-06-27 | 2025-11-21 | 2026-01-31 | 7.0 kB | 9.5 MB | 95.173.205.14 | |
a.pemsrv.com | 181476 | 2023-08-01 | 2023-08-05 | 2026-01-31 | 400 B | 123 kB | 95.173.205.15 | |
Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.TrafficStars (Advertising)
TrafficStars is a self-served ad network and ad exchange that operates mainly in adult-related verticals.CDN77 (CDN)
CDN77 is a content delivery network (CDN).Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | Client IP | 172.67.184.48 | ET INFO Suspicious Domain (*.icu) in TLS SNI |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| Cloudflare DNS | a.magsrv.com | malicious | Sinkholed |
| Hagezi Threat Feed | a.magsrv.com | malicious | Sinkholed |
| Cloudflare DNS | s3t3d2y1.afcdn.net | malicious | Sinkholed |
| Cloudflare DNS | s.magsrv.com | malicious | Sinkholed |
JavaScript (28)
No JavaScripts
HTTP Transactions (129)
| URL | IP | Response | Size |
|---|