Report - isuconf.icu/

Report Overview

Visited public
2023-11-01 06:42:41
Tags
URL
isuconf.icu/
Finishing URL
isuconf.icu/
IP / ASN
45.91.203.142
#204601 Zomro B.V.
Title
Website isu-conference.icu is ready. The content is to be added

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
isuconf.icu	unknown	unknown	No data	No data	384 B	5.1 kB	45.91.203.142
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-10-31 05:09:09	1.7 kB	3.5 kB	142.250.74.131
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-10-31 12:15:47	1.0 kB	67 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-10-31 13:04:07	452 B	4.4 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-01 06:42:24	medium	Client IP	Internal IP	ET INFO DNS Query for Suspicious .icu Domain
2023-11-01 06:42:25	medium	Client IP	45.91.203.142	ET INFO Suspicious Domain (*.icu) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	isuconf.icu/	ScriptElement	769 B	2024-08-20	2024-08-20
Pretty URL isuconf.icu/ IP 45.91.203.142 ASN #204601 Zomro B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:32 Last Seen2024-08-20 21:32 Times Seen1 Hash 8f3791c047918dc335764e613a73c02a 7b77a89404adab8826b9dfea0cf07f008973199c 6a23776a2e4332ef2bb3651af2e86abbedb8ca6ecd289321b7c3a39a69ef255a Loading...

HTTP Transactions (9)

	URL	IP	Response	Size
	isuconf.icu/	45.91.203.142	200 OK	4.8 kB
URL User Request GET HTTP/1.1 isuconf.icu/ IP 45.91.203.142:80 ASN #204601 Zomro B.V. File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2331) Size 4.8 kB (4754 bytes) Hash db5ab2ef3ef7cca06a815ab977f382b9 f1689ee7b9ed493e2338ff85215ce3b0ae8c0056 3cfcf3eecceb8a6c6db3abef9fb2014297c5ffbde083a6ffa74adaf754c5efab HTTP Headers `GET / HTTP/1.1 Host: isuconf.icu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 01 Nov 2023 06:42:24 GMT Server: Apache/2.4.56 (Debian) Last-Modified: Fri, 15 Sep 2023 16:04:19 GMT ETag: "2f65-60567f1f1c542-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 4754 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a4afed570449fef4e34c5c994cd7506a 69c29c4d69ffdffaf06f712817825e962a746d9d 0365828a5aa0519f386757034db008647dce8a4780a7d9b3db0e49070efa3040 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Nov 2023 06:42:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a4afed570449fef4e34c5c994cd7506a 69c29c4d69ffdffaf06f712817825e962a746d9d 0365828a5aa0519f386757034db008647dce8a4780a7d9b3db0e49070efa3040 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Nov 2023 06:42:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash d408235a533f534ab67cc86f4b3541bc 5e0c537d01bcc340efc286cf1aa5a4e07fb0a232 d6e9007ef49b3214ad7ca371840f265a1743ed1b68b7b666ca4918b87dab59cb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Nov 2023 06:42:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash d408235a533f534ab67cc86f4b3541bc 5e0c537d01bcc340efc286cf1aa5a4e07fb0a232 d6e9007ef49b3214ad7ca371840f265a1743ed1b68b7b666ca4918b87dab59cb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Nov 2023 06:42:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2	216.58.207.227	200 OK	30 kB
URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://isuconf.icu/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60 ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT File type Web Open Font Format (Version 2), TrueType, length 30480, version 1.0\012- data Size 30 kB (30480 bytes) Hash 0e7e5f9d3a8ef121149827180b790b5c 0e9f9333078e5df9245630ff6f68ba1d9da3c403 e8e147e15907f25cad69b2bcf060213efad4ed04e0d36374715cbca17b2afc1c HTTP Headers GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://isuconf.icu DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 30480 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 26 Oct 2023 23:51:57 GMT expires: Fri, 25 Oct 2024 23:51:57 GMT cache-control: public, max-age=31536000 age: 456627 last-modified: Wed, 27 Apr 2022 16:04:03 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2	216.58.207.227	200 OK	35 kB
URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://isuconf.icu/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60 ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data Size 35 kB (34852 bytes) Hash 0e8eefb4549a2edf26c560cb9845952e 8d0b1718aacad934fd0043c87cbc54aa091396bf 7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a HTTP Headers `GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://isuconf.icu DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 34852 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 27 Oct 2023 21:51:35 GMT expires: Sat, 26 Oct 2024 21:51:35 GMT cache-control: public, max-age=31536000 age: 377449 last-modified: Wed, 27 Apr 2022 16:31:23 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash d408235a533f534ab67cc86f4b3541bc 5e0c537d01bcc340efc286cf1aa5a4e07fb0a232 d6e9007ef49b3214ad7ca371840f265a1743ed1b68b7b666ca4918b87dab59cb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Nov 2023 06:42:24 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css2?family=Ubuntu:wght@400;500&display=swap	142.250.74.106	200 OK	3.8 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Ubuntu:wght@400;500&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by http://isuconf.icu/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64 ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT File type ASCII text, with very long lines (3864), with no line terminators Size 3.8 kB (3756 bytes) Hash 11c585af3f84bbc30c49b60ceb2d3588 84808f51abefca4002735fe75268575cc2b6d0b4 09926ea8fcb949786b6d715be0c70c22a9a280032f21bd14c67c00c972008d06 HTTP Headers `GET /css2?family=Ubuntu:wght@400;500&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://isuconf.icu/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 01 Nov 2023 06:42:24 GMT date: Wed, 01 Nov 2023 06:42:24 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (9)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash