Report - www.adventuredexonline.com/Roof_Stand&v=NWA2Hbijtho

Report Overview

Visited public
2025-05-04 18:19:28
Tags
URL
www.adventuredexonline.com/Roof_Stand&v=NWA2Hbijtho
Finishing URL
about:neterror?e=dnsNotFound&u=https%3A//touta-whq.com/&c=UTF-8&d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20touta-whq.com.
IP / ASN
69.16.230.165
#32244 LIQUIDWEB
Title
Server Not Found

Detections

urlquery

0

Network Intrusion Detection

0

Threat Detection Systems

0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
touta-whq.com	unknown	2025-04-08	2025-04-16	2025-05-01	482 B	0 B	0.0.0.0
www.adventuredexonline.com	unknown	2015-09-03	2025-05-04	2025-05-04	1.7 kB	3.7 kB	69.16.230.165
netun-oum.com	unknown	2025-04-08	2025-04-16	2025-05-01	2.1 kB	4.1 kB	52.54.18.125

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	www.adventuredexonline.com/Roof_Stand&v=NWA2Hbijtho	ScriptElement	1.6 kB	2025-05-04	2025-05-04
Pretty URL www.adventuredexonline.com/Roof_Stand&v=NWA2Hbijtho IP 69.16.230.165 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-04 18:19 Last Seen2025-05-04 18:19 Times Seen1 Hash f3e13cbcb0020cf31e03244ec6b442ec 6817ff3cdf75d835c53956981f4d8b1cb33b944e 4cac28b6ee32bb737a155218aed2a2968080fc7d6c303eeb9c33c9b4e3a49933 Loading...

	www.adventuredexonline.com/page/bouncy.php?&bpae=GbhGtKsGvUx%2F9rvve3Fd%2BEH20sniA9Vmus41OhYwYn5PY8DrAz%2FD1axkkeVYtJjK1tenMiDDFRRBfowp9PG1q9oweBnigKE%2BoG9SfLpfRaRLbAe0RkAyIYAd9GoULQqEM4Jb6RXlVg%2BT8ZvdaZjMPzO60N8cB4voa21TvFqCkTv0S5InCzPCNygTZSL5P8RRgOD2KKfvwZla5HfqbREuYjRJf8DlbUoZhrHJfzLUIfrwVYw9Fe8DfOOJ8z2JmThj1V1x5jyER1v8H1xprcAXPKQuSeo9yeb1MffJmlN4SpJfj9gjlDzTjjNKMBcWWt65vrQaa4Gk4AE3EoQKlSWcmo2V0ukMdb3to8xtzI3TLOjsHcpoNkwZ7MAYFVDOypxewPNlKTlzW6RU4UFQS28pDLS2sKaJuLStGTPC7OZtmVaIF1enA7n4%2FcScdIgGnq6rfAnX%2B2i52eZtEsyix8vI%2BEcY%2FgAAHNaVI0FoQIeTKrXOBX3YIyhtnuXXh2zY2oRhUgVl0%2Fu2cZal9lg%3D&redirectType=js&inIframe=false&inPopUp=false	ScriptElement	708 B	2025-05-04	2025-05-04
Pretty URL www.adventuredexonline.com/page/bouncy.php?&bpae=GbhGtKsGvUx%2F9rvve3Fd%2BEH20sniA9Vmus41OhYwYn5PY8DrAz%2FD1axkkeVYtJjK1tenMiDDFRRBfowp9PG1q9oweBnigKE%2BoG9SfLpfRaRLbAe0RkAyIYAd9GoULQqEM4Jb6RXlVg%2BT8ZvdaZjMPzO60N8cB4voa21TvFqCkTv0S5InCzPCNygTZSL5P8RRgOD2KKfvwZla5HfqbREuYjRJf8DlbUoZhrHJfzLUIfrwVYw9Fe8DfOOJ8z2JmThj1V1x5jyER1v8H1xprcAXPKQuSeo9yeb1MffJmlN4SpJfj9gjlDzTjjNKMBcWWt65vrQaa4Gk4AE3EoQKlSWcmo2V0ukMdb3to8xtzI3TLOjsHcpoNkwZ7MAYFVDOypxewPNlKTlzW6RU4UFQS28pDLS2sKaJuLStGTPC7OZtmVaIF1enA7n4%2FcScdIgGnq6rfAnX%2B2i52eZtEsyix8vI%2BEcY%2FgAAHNaVI0FoQIeTKrXOBX3YIyhtnuXXh2zY2oRhUgVl0%2Fu2cZal9lg%3D&redirectType=js&inIframe=false&inPopUp=false IP 69.16.230.165 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-04 18:19 Last Seen2025-05-04 18:19 Times Seen1 Hash 4f1f683b9ed7bb14ffd9ccea1036f6b3 6fcc6c51fdf491ea3c0efac566e90c50dd92f211 58a39b924ae2907e5c85c57c8c692612edaa514da354f9fe5f7e9cd31de4bd83 Loading...

	netun-oum.com/zclkvisitor/44fd48a0-2914-11f0-99c8-125c0a40433b/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381	ScriptElement	2.8 kB	2025-05-04	2025-05-04
Pretty URL netun-oum.com/zclkvisitor/44fd48a0-2914-11f0-99c8-125c0a40433b/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 IP 52.54.18.125 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-04 18:19 Last Seen2025-05-04 18:19 Times Seen1 Hash 0e2225e1d18d3cdf3b1308db0ffad7c7 826352a5a002199b67e704ef9cb5abeb32e64cb0 79df98e16f5f52e2f488464402475216e62ae92ec29e46d61155d88698c5cb3c Loading...

	about:neterror?e=dnsNotFound&u=https%3A//touta-whq.com/&c=UTF-8&d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20touta-whq.com.	ScriptElement	111 B	2025-03-02	2025-05-09
Pretty URL about:neterror?e=dnsNotFound&u=https%3A//touta-whq.com/&c=UTF-8&d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20touta-whq.com. IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-02 08:59 Last Seen2025-05-09 04:36 Times Seen25573 Hash 1fc778fb81973516c7df9ee7caca05e6 7953945d192422cc2b1d8610d1b0fa1469bb5b7f a09c624476cbe1462a188d07d0ce0a20e258a5e9b7890f44b3c8b68a0a3b26eb Loading...

HTTP Transactions (6)

	URL	IP	Response	Size
	www.adventuredexonline.com/Roof_Stand&v=NWA2Hbijtho	69.16.230.165	200 OK	2.3 kB
URL User Request GET www.adventuredexonline.com/Roof_Stand&v=NWA2Hbijtho IP 69.16.230.165:443 ASN #32244 LIQUIDWEB Certificate IssuerLet's Encrypt Subjectwww.adventuredexonline.com Fingerprint08:65:E5:43:D7:C2:B5:D7:85:9F:4D:72:7A:66:7D:A0:22:4F:94:6E ValidityMon, 10 Mar 2025 23:28:53 GMT - Sun, 08 Jun 2025 23:28:52 GMT File type HTML document, ASCII text, with very long lines (640) Size 2.3 kB (2296 bytes) Hash e33fedd72c111cfa852d019d79c0e3d7 6fc57f09bfee1f41379f9d1b9f2d364f1fb88198 675544764c40399413b8a529c0f6ee635bcc93d17ceb4f7b9265592bd5f0bf56 HTTP Headers GET /Roof_Stand&v=NWA2Hbijtho HTTP/1.1 Host: www.adventuredexonline.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sun, 04 May 2025 18:19:08 GMT content-type: text/html cache-control: no-cache pragma: no-cache access-control-allow-origin: * content-encoding: gzip X-Firefox-Spdy: h2`

	www.adventuredexonline.com/page/bouncy.php?&bpae=GbhGtKsGvUx%2F9rvve3Fd%2BEH20sniA9Vmus41OhYwYn5PY8DrAz%2FD1axkkeVYtJjK1tenMiDDFRRBfowp9PG1q9oweBnigKE%2BoG9SfLpfRaRLbAe0RkAyIYAd9GoULQqEM4Jb6RXlVg%2BT8ZvdaZjMPzO60N8cB4voa21TvFqCkTv0S5InCzPCNygTZSL5P8RRgOD2KKfvwZla5HfqbREuYjRJf8DlbUoZhrHJfzLUIfrwVYw9Fe8DfOOJ8z2JmThj1V1x5jyER1v8H1xprcAXPKQuSeo9yeb1MffJmlN4SpJfj9gjlDzTjjNKMBcWWt65vrQaa4Gk4AE3EoQKlSWcmo2V0ukMdb3to8xtzI3TLOjsHcpoNkwZ7MAYFVDOypxewPNlKTlzW6RU4UFQS28pDLS2sKaJuLStGTPC7OZtmVaIF1enA7n4%2FcScdIgGnq6rfAnX%2B2i52eZtEsyix8vI%2BEcY%2FgAAHNaVI0FoQIeTKrXOBX3YIyhtnuXXh2zY2oRhUgVl0%2Fu2cZal9lg%3D&redirectType=js&inIframe=false&inPopUp=false	69.16.230.165	200 OK	991 B
URL User Request GET www.adventuredexonline.com/page/bouncy.php?&bpae=GbhGtKsGvUx%2F9rvve3Fd%2BEH20sniA9Vmus41OhYwYn5PY8DrAz%2FD1axkkeVYtJjK1tenMiDDFRRBfowp9PG1q9oweBnigKE%2BoG9SfLpfRaRLbAe0RkAyIYAd9GoULQqEM4Jb6RXlVg%2BT8ZvdaZjMPzO60N8cB4voa21TvFqCkTv0S5InCzPCNygTZSL5P8RRgOD2KKfvwZla5HfqbREuYjRJf8DlbUoZhrHJfzLUIfrwVYw9Fe8DfOOJ8z2JmThj1V1x5jyER1v8H1xprcAXPKQuSeo9yeb1MffJmlN4SpJfj9gjlDzTjjNKMBcWWt65vrQaa4Gk4AE3EoQKlSWcmo2V0ukMdb3to8xtzI3TLOjsHcpoNkwZ7MAYFVDOypxewPNlKTlzW6RU4UFQS28pDLS2sKaJuLStGTPC7OZtmVaIF1enA7n4%2FcScdIgGnq6rfAnX%2B2i52eZtEsyix8vI%2BEcY%2FgAAHNaVI0FoQIeTKrXOBX3YIyhtnuXXh2zY2oRhUgVl0%2Fu2cZal9lg%3D&redirectType=js&inIframe=false&inPopUp=false IP 69.16.230.165:443 ASN #32244 LIQUIDWEB Certificate IssuerLet's Encrypt Subjectwww.adventuredexonline.com Fingerprint08:65:E5:43:D7:C2:B5:D7:85:9F:4D:72:7A:66:7D:A0:22:4F:94:6E ValidityMon, 10 Mar 2025 23:28:53 GMT - Sun, 08 Jun 2025 23:28:52 GMT File type HTML document, ASCII text Size 991 B (991 bytes) Hash 6474d9b2f1560ebb44251e90ff7de684 3ce130ffa6d30c8e31ff085ffe10f83f33b72f3d d28d4c0df05b3ceb78cadfcfee22889221bb48200d912ae666039580f73418ae HTTP Headers GET /page/bouncy.php?&bpae=GbhGtKsGvUx%2F9rvve3Fd%2BEH20sniA9Vmus41OhYwYn5PY8DrAz%2FD1axkkeVYtJjK1tenMiDDFRRBfowp9PG1q9oweBnigKE%2BoG9SfLpfRaRLbAe0RkAyIYAd9GoULQqEM4Jb6RXlVg%2BT8ZvdaZjMPzO60N8cB4voa21TvFqCkTv0S5InCzPCNygTZSL5P8RRgOD2KKfvwZla5HfqbREuYjRJf8DlbUoZhrHJfzLUIfrwVYw9Fe8DfOOJ8z2JmThj1V1x5jyER1v8H1xprcAXPKQuSeo9yeb1MffJmlN4SpJfj9gjlDzTjjNKMBcWWt65vrQaa4Gk4AE3EoQKlSWcmo2V0ukMdb3to8xtzI3TLOjsHcpoNkwZ7MAYFVDOypxewPNlKTlzW6RU4UFQS28pDLS2sKaJuLStGTPC7OZtmVaIF1enA7n4%2FcScdIgGnq6rfAnX%2B2i52eZtEsyix8vI%2BEcY%2FgAAHNaVI0FoQIeTKrXOBX3YIyhtnuXXh2zY2oRhUgVl0%2Fu2cZal9lg%3D&redirectType=js&inIframe=false&inPopUp=false HTTP/1.1 Host: www.adventuredexonline.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.adventuredexonline.com/Roof_Stand&v=NWA2Hbijtho Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sun, 04 May 2025 18:19:08 GMT content-type: text/html cache-control: no-cache pragma: no-cache access-control-allow-origin: * content-encoding: gzip X-Firefox-Spdy: h2`

	netun-oum.com/zclkvisitor/44fd48a0-2914-11f0-99c8-125c0a40433b/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381	52.54.18.125	200 OK	3.1 kB
URL User Request GET netun-oum.com/zclkvisitor/44fd48a0-2914-11f0-99c8-125c0a40433b/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 IP 52.54.18.125:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subjectnetun-oum.com Fingerprint1B:63:95:9F:26:3E:5B:FB:1D:C8:11:A8:53:BB:6C:8A:3C:65:B8:9A ValidityWed, 16 Apr 2025 00:00:00 GMT - Fri, 15 May 2026 23:59:59 GMT File type HTML document, ASCII text, with very long lines (409) Size 3.1 kB (3088 bytes) Hash e57205afa8713d0e4e044b1fa5a11ef2 cc9802be0642ae148532b476de68d3ccfc53e1bc 281ca8a1a2970c3406204e108976765473b8607d627fbc9599c8a7ff24d568cf HTTP Headers GET /zclkvisitor/44fd48a0-2914-11f0-99c8-125c0a40433b/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 HTTP/1.1 Host: netun-oum.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.adventuredexonline.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sun, 04 May 2025 18:19:09 GMT content-type: text/html;charset=UTF-8 content-length: 3088 cache-control: no-store, no-cache, pre-check=0, post-check=0 content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' access-control-allow-origin: * access-control-allow-methods: GET,POST,OPTIONS access-control-allow-headers: X-Requested-With,Content-Type X-Firefox-Spdy: h2`

	netun-oum.com/favicon.ico	52.54.18.125	404 Not Found	82 B
URL GET netun-oum.com/favicon.ico IP 52.54.18.125:443 ASN #14618 AMAZON-AES Requested by https://netun-oum.com/zclkvisitor/44fd48a0-2914-11f0-99c8-125c0a40433b/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 Certificate IssuerAmazon Subjectnetun-oum.com Fingerprint1B:63:95:9F:26:3E:5B:FB:1D:C8:11:A8:53:BB:6C:8A:3C:65:B8:9A ValidityWed, 16 Apr 2025 00:00:00 GMT - Fri, 15 May 2026 23:59:59 GMT File type JSON text data Size 82 B (82 bytes) Hash 493c33dab9caa936f2709432cf2317b3 b28a5f1853e168461a37dde3db631db81036a833 ea9f03132896a55737414e2c2337117f22be827f817465262486185a340f3a17 HTTP Headers GET /favicon.ico HTTP/1.1 Host: netun-oum.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://netun-oum.com/zclkvisitor/44fd48a0-2914-11f0-99c8-125c0a40433b/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 404 Not Found date: Sun, 04 May 2025 18:19:09 GMT content-type: application/json X-Firefox-Spdy: h2`

	netun-oum.com/zclkredirect?visitid=44fd48a0-2914-11f0-99c8-125c0a40433b&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=Mesa%3B%20llvmpipe&timezone=UTC%2B00%3A00&timezoneName=UTC	52.54.18.125	302 Found	0 B
URL User Request GET netun-oum.com/zclkredirect?visitid=44fd48a0-2914-11f0-99c8-125c0a40433b&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=Mesa%3B%20llvmpipe&timezone=UTC%2B00%3A00&timezoneName=UTC IP 52.54.18.125:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subjectnetun-oum.com Fingerprint1B:63:95:9F:26:3E:5B:FB:1D:C8:11:A8:53:BB:6C:8A:3C:65:B8:9A ValidityWed, 16 Apr 2025 00:00:00 GMT - Fri, 15 May 2026 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /zclkredirect?visitid=44fd48a0-2914-11f0-99c8-125c0a40433b&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=Mesa%3B%20llvmpipe&timezone=UTC%2B00%3A00&timezoneName=UTC HTTP/1.1 Host: netun-oum.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://netun-oum.com/zclkvisitor/44fd48a0-2914-11f0-99c8-125c0a40433b/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=8e8e7c70-d8a9-11ef-ba7f-12832fc4c381 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found date: Sun, 04 May 2025 18:19:09 GMT content-length: 0 location: http://touta-whq.com cache-control: no-store, no-cache, pre-check=0, post-check=0 content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' access-control-allow-origin: * access-control-allow-methods: GET,POST,OPTIONS access-control-allow-headers: X-Requested-With,Content-Type X-Firefox-Spdy: h2`

	touta-whq.com/	0.0.0.0		0 B
URL User Request GET touta-whq.com/ IP 0.0.0.0:0 ASN #0 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: touta-whq.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`