Report Overview
Visitedpublic
2025-11-29 13:28:03
Tags
Submit Tags
URL
a.pleasurefindyou.info/
Finishing URL
api.bytelift.icu/?qr=cp&zqs=54984116db1af075499edef73eddf508
IP / ASN
185.150.189.124
Title
Secure File Download
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
3
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
code.jquery.com | 4915 | 2005-12-10 | 2012-05-21 | 2025-11-23 | 460 B | 71 kB | 151.101.66.137 |   |
ipv6.whatismyip.akamai.com | 1637401 | 1998-08-17 | 2025-05-08 | 2025-11-28 | 446 B | 0 B |  0.0.0.0 | |
ipv6.ipecho.net | 1849833 | 2009-03-01 | 2025-05-08 | 2025-11-28 | 440 B | 253 B | 34.160.111.145 |   |
api.bytelift.icu | unknown | 2025-10-11 | 2025-11-27 | 2025-11-27 | 20 kB | 81 kB | 172.67.187.158 |      |
eastrk-dn.com 1 alert(s) on this Host | 550657 | 2021-11-26 | 2022-01-03 | 2025-11-26 | 525 B | 10 kB |  3.251.30.117 | |
ipv6.ident.me | 1684575 | 2012-12-30 | 2025-05-08 | 2025-11-28 | 433 B | 0 B | 0.0.0.0 | |
track.alinkif.com | 2037155 | 2024-12-20 | 2025-03-18 | 2025-11-22 | 577 B | 8.7 kB | 172.67.145.198 | |
q1.quotes.com | 3978262 | 1997-05-20 | 2022-09-19 | 2025-11-23 | 434 B | 8.0 kB |  5.79.68.236 | |
approximum.com 3 alert(s) on this Host | 4351759 | 2025-05-05 | 2025-06-06 | 2025-11-27 | 1.9 kB | 10 kB | 104.21.82.57 | |
bytelift.icu | unknown | 2025-10-11 | 2025-11-27 | 2025-11-27 | 598 B | 1.9 kB | 172.67.187.158 | |
a.pleasurefindyou.info 1 alert(s) on this Host | unknown | 2024-05-28 | 2025-11-29 | 2025-11-29 | 491 B | 8.1 kB | 185.150.189.124 |   |
cdnjs.cloudflare.com | 1222 | 2009-02-17 | 2012-05-23 | 2025-11-23 | 447 B | 1.5 MB | 104.17.25.14 | |
ipv6.icanhazip.com | 290974 | 2009-07-31 | 2016-03-02 | 2025-11-28 | 438 B | 0 B | 0.0.0.0 | |
fonts.googleapis.com | 313 | 2005-01-25 | 2012-05-23 | 2025-11-23 | 479 B | 13 kB | 142.251.38.106 | |
ipv4.icanhazip.com | 65266 | 2009-07-31 | 2013-10-09 | 2025-11-27 | 438 B | 596 B | 104.16.184.241 | |
ipv6.tnedi.me | 1690771 | 2022-02-17 | 2025-05-08 | 2025-11-28 | 433 B | 0 B | 0.0.0.0 | |
fonts.gstatic.com | unknown | 2008-02-11 | 2014-04-02 | 2025-11-23 | 2.2 kB | 198 kB | 216.58.207.227 | |
cdn.tailwindcss.com | 117330 | 2017-07-20 | 2018-07-09 | 2025-11-23 | 824 B | 816 kB | 104.26.3.143 |  |
Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Varnish (Caching)
Varnish is a reverse caching proxy.Google Cloud CDN (CDN)
Cloud CDN uses Google's global edge network to serve content closer to users.Google Cloud (IaaS)
Google Cloud is a suite of cloud computing services.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.cdnjs (CDN)
cdnjs is a free distributed JS library delivery service.Font Awesome (Font scripts)
Font Awesome is a font and icon toolkit based on CSS and Less.jQuery:3.7.1 (JavaScript libraries)
jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.jQuery CDN (CDN)
jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.Tailwind CSS (UI frameworks)
Tailwind is a utility-first CSS framework.Cowboy (Web servers)
Cowboy is a small, fast, modular HTTP server written in Erlang.Erlang (Programming languages)
Erlang is a general-purpose, concurrent, functional programming language, and a garbage-collected runtime system.Cloudflare Bot Management (Security)
Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.Vercel (PaaS)
Vercel is a cloud platform for static frontends and serverless functions.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | 172.18.0.33 | 172.67.187.158 | ET INFO Suspicious Domain (*.icu) in TLS SNI |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| DNS4EU | approximum.com | malicious | Sinkholed |
| DNS4EU | a.pleasurefindyou.info | malicious | Sinkholed |
| Hagezi Threat Feed | eastrk-dn.com | malicious | Sinkholed |
JavaScript (16)
No JavaScripts
HTTP Transactions (32)
| URL | IP | Response | Size |
|---|