Report Overview
Visitedpublic
2026-02-07 09:23:28
Tags
Submit Tags
URL
casibom.icu
Finishing URL
casibom.icu/
IP / ASN
104.21.40.100
Title
Casibom - Most Popular Betting, Casino & Porn Site
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
4
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
casibom.icu | unknown | 2026-02-03 | 2026-02-04 | 2026-02-04 | 3.8 kB | 294 kB | 172.67.184.48 |   |
s3t3d2y1.afcdn.net 8 alert(s) on this Host | unknown | 2022-06-27 | 2025-11-21 | 2026-02-07 | 4.0 kB | 1.7 MB |  95.173.205.15 |  |
tdska.cfd | 504966 | 2025-02-19 | 2025-03-03 | 2026-02-06 | 3.8 kB | 122 kB | 104.21.52.5 | |
aa.pornvideotop.com | unknown | 2015-07-22 | 2018-08-28 | 2026-02-06 | 2.1 kB | 612 B |  185.73.221.189 |  |
thumbs1.casibom.icu | unknown | 2026-02-03 | 2026-02-04 | 2026-02-04 | 49 kB | 1.8 MB | 172.67.184.48 | |
s.magsrv.com 8 alert(s) on this Host | 47665 | 2023-08-01 | 2023-08-04 | 2026-02-05 | 5.4 kB | 12 kB | 95.211.229.248 | |
a.magsrv.com 8 alert(s) on this Host | 51490 | 2023-08-01 | 2023-08-04 | 2026-02-04 | 1.6 kB | 747 kB | 95.173.205.15 | |
s.pemsrv.com | 104334 | 2023-08-01 | 2023-08-04 | 2026-02-04 | 419 B | 251 B | 95.211.229.245 | |
a.pemsrv.com | 181476 | 2023-08-01 | 2023-08-05 | 2026-02-07 | 400 B | 123 kB | 95.173.205.14 | |
Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.TrafficStars (Advertising)
TrafficStars is a self-served ad network and ad exchange that operates mainly in adult-related verticals.CDN77 (CDN)
CDN77 is a content delivery network (CDN).Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | Client IP | 172.67.184.48 | ET INFO Suspicious Domain (*.icu) in TLS SNI |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| Cloudflare DNS | s.magsrv.com | malicious | Sinkholed |
| Cloudflare DNS | s3t3d2y1.afcdn.net | malicious | Sinkholed |
| Hagezi Threat Feed | a.magsrv.com | malicious | Sinkholed |
| Cloudflare DNS | a.magsrv.com | malicious | Sinkholed |
JavaScript (24)
No JavaScripts
HTTP Transactions (138)
| URL | IP | Response | Size |
|---|