Report Overview
Visitedpublic
2025-10-13 15:41:48
Tags
Submit Tags
URL
bv2rest.icu/click?key=3abbbf757e41b64579df&click_id={click_id}&cost={cost}&site_id={site_id}&cr_id={creative_id}&cat={categories}&keyword={keyword}&referrer={referrer}&campid={campaign_id}&format={format}&ip={ip}&geo={geo}&price_model={price_model}
Finishing URL
www.watch4beauty.com/?nats=carbondream.2.1.2.41.0.0.0.0&clickid=d3mhr53qhnoc739j6t9g
IP / ASN
45.131.41.131
Title
W4B: Watch4beauty - Enter your dream world of erotica
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
1
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
free-at-assets.gammacdn.com | 2991034 | 2017-03-22 | 2020-11-21 | 2025-10-12 | 436 B | 1.1 kB |  54.240.174.47 |    |
bv2rest.icu 1 alert(s) on this Host | unknown | 2025-10-01 | 2025-10-06 | 2025-10-06 | 716 B | 356 kB | 45.131.41.131 | |
mh-c74b770de1.watch4beauty.com | unknown | 2005-08-10 | 2024-10-13 | 2025-10-09 | 6.2 kB | 9.2 MB |  185.76.9.11 |   |
static.cognitoforms.com | 394275 | 2013-11-04 | 2020-03-17 | 2025-10-07 | 11 kB | 840 kB | 13.107.246.54 |  |
www.cognitoforms.com | 79677 | 2013-11-04 | 2017-01-30 | 2025-10-07 | 4.1 kB | 75 kB | 20.246.218.104 | |
www.googletagmanager.com | 283 | 2011-11-11 | 2012-10-04 | 2025-10-12 | 441 B | 388 kB | 142.250.74.168 | |
mh-c75c2d6726.watch4beauty.com | unknown | 2005-08-10 | 2024-10-13 | 2025-10-09 | 78 kB | 51 MB | 185.76.9.12 | |
static.cloudflareinsights.com | 4073 | 2019-08-30 | 2019-09-24 | 2025-10-12 | 518 B | 20 kB |  104.16.80.73 | |
fonts.googleapis.com | 313 | 2005-01-25 | 2012-05-23 | 2025-10-12 | 1.4 kB | 32 kB | 216.58.211.10 | |
www.watch4beauty.com | 1336196 | 2005-08-10 | 2012-09-30 | 2025-10-09 | 13 kB | 843 kB | 172.67.199.119 |     |
services.cognitoforms.com | 1694168 | 2013-11-04 | 2017-02-01 | 2025-10-13 | 443 B | 1.9 kB | 20.246.218.104 | |
fonts.gstatic.com | unknown | 2008-02-11 | 2014-04-02 | 2025-10-12 | 5.6 kB | 599 kB | 142.250.74.3 |
Amazon S3 (CDN)
Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.Amazon Web Services (PaaS)
Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.Amazon CloudFront (CDN)
Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.CDN77 (CDN)
CDN77 is a content delivery network (CDN).Azure Front Door (Load balancers)
Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.Azure (PaaS)
Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.Express (Web frameworks, Web servers)
Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.Node.js (Programming languages)
Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.React (JavaScript frameworks)
React is an open-source JavaScript library for building user interfaces or UI components.Google Analytics (Analytics)
Google Analytics is a free web analytics service that tracks and reports website traffic.Cloudflare Browser Insights (Analytics, RUM)
Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | 172.18.0.14 | 45.131.41.131 | ET INFO Suspicious Domain (*.icu) in TLS SNI |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| DNS0 Zero | bv2rest.icu | malicious | Sinkholed |
JavaScript (72)
No JavaScripts
HTTP Transactions (167)
| URL | IP | Response | Size |
|---|