Report - db-interiordesign.com/

Report Overview

Submitted URL
db-interiordesign.com/
IP
66.81.203.198
ASN
#40676 AS40676
Submitted
2024-04-18 06:14:56
Access
public
Website Title
db-interiordesign.com/
Final URL
db-interiordesign.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sedoparking.com	50712	2001-09-18	2012-06-01	2019-03-28	494 B	881 B	64.190.63.136
db-interiordesign.com	unknown	2023-04-05	2023-06-03	2023-09-30	1.0 kB	2.9 kB	66.81.203.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	db-interiordesign.com	Sinkholed
2024-04-18	medium	db-interiordesign.com	Sinkholed
2024-04-18	medium	db-interiordesign.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	db-interiordesign.com/	0 B	2023-03-07	2024-05-01
Pretty URL db-interiordesign.com/ IP 66.81.203.133 ASN #40676 AS40676 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 11:35:38 Times Seen37243162 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	sedoparking.com/frmpark/db-interiordesign.com/Skenzor19/park.js?beforeBodyEndHTML=%3Cp%3EThis+domain+is+pending+renewal+or+has+expired.+Please+contact+the+domain+provider+with+questions.%3C%2Fp%3E	1.3 kB	2024-04-18	2024-04-18
Pretty URL sedoparking.com/frmpark/db-interiordesign.com/Skenzor19/park.js?beforeBodyEndHTML=%3Cp%3EThis+domain+is+pending+renewal+or+has+expired.+Please+contact+the+domain+provider+with+questions.%3C%2Fp%3E IP 64.190.63.136 ASN #47846 SEDO GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 08:14:56 Last Seen2024-04-18 08:14:56 Times Seen2 Hash 08379bc362db924922cf571059c6103c 6d6cd870d32cc4a5033164f7cd26d2f13a77a5bc 41fe2de96d3e01d03140d1be03af6f9587b6994a731aeae3dfe991bfe42a50b9 Loading...

		Size	First Seen	Last Seen
	#1 Write - 70855d792be88f949824ecd6fdf2a0ee	272 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 08:14:56 Last Seen2024-04-18 08:14:56 Times Seen1 Hash 70855d792be88f949824ecd6fdf2a0ee 0b90fe169523fe1c3f37c69f1a3c23812be2f4fc c728672101f4689dc9a9c50278c1d147240bc6671fc6fdb671557947a85b0d6b Loading...

HTTP Transactions (4)

URL IP Response Size

db-interiordesign.com/

66.81.203.133

200 OK

718 B

URL User Request GET HTTP/1.1
db-interiordesign.com/
IP
66.81.203.133:80
ASN
#40676 AS40676

File type
HTML document, ASCII text, with CRLF line terminators
Size
718 B (718 bytes)
Hash
a221f8b9402477234d3ed22ed972f8d1
d7f593cf70a3d28d1c4184978f02e22a5c380dbf
44ee974470d53661c420f8466cd7f2fa8718f5e28b5e1b9e98246291d5e9be40

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: db-interiordesign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Thu, 18 Apr 2024 06:14:34 GMT
Content-Type: text/html
Last-Modified: Mon, 20 Feb 2023 14:02:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63f37d78-574"
Content-Encoding: gzip

db-interiordesign.com/

66.81.203.133

200 OK

718 B

URL User Request GET HTTP/1.1
db-interiordesign.com/
IP
66.81.203.133:80
ASN
#40676 AS40676

File type
HTML document, ASCII text, with CRLF line terminators
Size
718 B (718 bytes)
Hash
a221f8b9402477234d3ed22ed972f8d1
d7f593cf70a3d28d1c4184978f02e22a5c380dbf
44ee974470d53661c420f8466cd7f2fa8718f5e28b5e1b9e98246291d5e9be40

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: db-interiordesign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Thu, 18 Apr 2024 06:14:35 GMT
Content-Type: text/html
Last-Modified: Mon, 20 Feb 2023 14:02:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63f37d78-574"
Content-Encoding: gzip

sedoparking.com/frmpark/db-interiordesign.com/Skenzor19/park.js?beforeBodyEndHTML=%3Cp%3EThis+domain+is+pending+renewal+or+has+expired.+Please+contact+the+domain+provider+with+questions.%3C%2Fp%3E

64.190.63.136

200 OK

614 B

URL GET HTTP/1.1
sedoparking.com/frmpark/db-interiordesign.com/Skenzor19/park.js?beforeBodyEndHTML=%3Cp%3EThis+domain+is+pending+renewal+or+has+expired.+Please+contact+the+domain+provider+with+questions.%3C%2Fp%3E
IP
64.190.63.136:80
ASN
#47846 SEDO GmbH

Requested by
http://db-interiordesign.com/

File type
ASCII text, with very long lines (987)
Size
614 B (614 bytes)
Hash
08379bc362db924922cf571059c6103c
6d6cd870d32cc4a5033164f7cd26d2f13a77a5bc
41fe2de96d3e01d03140d1be03af6f9587b6994a731aeae3dfe991bfe42a50b9

HTTP Headers

GET /frmpark/db-interiordesign.com/Skenzor19/park.js?beforeBodyEndHTML=%3Cp%3EThis+domain+is+pending+renewal+or+has+expired.+Please+contact+the+domain+provider+with+questions.%3C%2Fp%3E HTTP/1.1
Host: sedoparking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://db-interiordesign.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Thu, 18 Apr 2024 06:14:35 GMT
content-type: application/javascript; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
x-cache-miss-from: parking-d5776bf9c-q8865
server: NginX
content-encoding: gzip

db-interiordesign.com/favicon.ico

66.81.203.133

200 OK

718 B

URL GET HTTP/1.1
db-interiordesign.com/favicon.ico
IP
66.81.203.133:80
ASN
#40676 AS40676

Requested by
http://db-interiordesign.com/

File type
HTML document, ASCII text, with CRLF line terminators
Size
718 B (718 bytes)
Hash
a221f8b9402477234d3ed22ed972f8d1
d7f593cf70a3d28d1c4184978f02e22a5c380dbf
44ee974470d53661c420f8466cd7f2fa8718f5e28b5e1b9e98246291d5e9be40

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: db-interiordesign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://db-interiordesign.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Thu, 18 Apr 2024 06:14:35 GMT
Content-Type: text/html
Last-Modified: Mon, 20 Feb 2023 14:02:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63f37d78-574"
Content-Encoding: gzip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (4)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers