Report - justinresults.com/

Report Overview

Visitedpublic

2024-01-09 14:11:19

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
play.google.com	34	1997-09-15	2013-05-31 01:24:35	2024-01-08 23:54:04	2.4 kB	1.1 MB	142.250.74.14
nowordshere.org	unknown	2023-11-30	2024-01-06 08:27:32	2024-01-08 19:27:56	412 B	648 B	45.11.27.62
910.hemelkeen.live	unknown	unknown	No data	No data	1.3 kB	2.1 kB	185.155.184.55
play-lh.googleusercontent.com	407	2008-11-17	2019-09-30 08:57:53	2024-01-08 17:42:39	11 kB	419 kB	142.250.74.86
justinresults.com	309899	unknown	No data	No data	5.4 kB	5.4 MB	104.21.1.107
biggerfun.org	unknown	unknown	No data	No data	410 B	648 B	45.11.27.62
machinetext.org	unknown	2023-09-01	2023-09-12 03:35:04	2023-11-19 18:07:33	1.4 kB	33 kB	45.11.27.62
greatbonushere.top	unknown	2023-10-14	2023-10-14 07:53:33	2024-01-02 11:30:04	559 B	38 kB	185.155.184.32
ssl.gstatic.com	unknown	2008-02-11	2012-05-23 08:57:57	2024-01-08 19:40:12	934 B	2.1 kB	142.250.74.99
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2024-01-09 14:45:49	26 kB	1.2 MB	142.250.74.99
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-01-09 11:41:51	897 B	172 kB	142.250.74.168
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-12-09 10:58:51	5.2 kB	53 kB	142.250.74.132
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2024-01-08 08:51:28	423 B	31 kB	151.101.130.137
bigbricks.org	unknown	2023-10-20	2023-10-29 18:59:40	2024-01-02 22:51:32	820 B	1.3 kB	45.11.27.62
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-01-09 11:35:21	555 B	32 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-01-09 05:30:35	5.5 kB	549 kB	216.58.207.227
treegreeny.org	unknown	2023-11-01	2023-11-19 08:10:22	2023-12-26 14:52:59	2.1 kB	3.2 kB	45.11.27.62

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (biggerfun .org)
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (biggerfun .org)
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (nowordshere .org)
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (nowordshere .org)
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (machinetext .org)
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (machinetext .org)
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (bigbricks .org)
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (bigbricks .org)
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (treegreeny .org)
2024-01-09 14:10:39	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (treegreeny .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (biggerfun .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (treegreeny .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (machinetext .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (machinetext .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (bigbricks .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (bigbricks .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (bigbricks .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (machinetext .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (treegreeny .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (nowordshere .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (treegreeny .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (treegreeny .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (treegreeny .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (treegreeny .org)
2024-01-09 14:10:41	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (biggerfun .org)
2024-01-09 14:10:42	high	Client IP	Internal IP	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in DNS Lookup (machinetext .org)
2024-01-09 14:10:43	high	Client IP	45.11.27.62	ET EXPLOIT_KIT TA569 Keitaro TDS Domain in TLS SNI (machinetext .org)
2024-01-09 14:10:44	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2024-01-09	medium	bigbricks.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	bigbricks.org	Sinkholed
2024-01-09	medium	machinetext.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	nowordshere.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	machinetext.org	Sinkholed
2024-01-09	medium	machinetext.org	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-01-09	medium	biggerfun.org	Sinkholed
2024-01-09	medium	bigbricks.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	bigbricks.org	Sinkholed
2024-01-09	medium	machinetext.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	nowordshere.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	treegreeny.org	Sinkholed
2024-01-09	medium	machinetext.org	Sinkholed
2024-01-09	medium	machinetext.org	Sinkholed
2024-01-09	medium	hemelkeen.live	Sinkholed
2024-01-09	medium	hemelkeen.live	Sinkholed

ThreatFox

Scan Date	Severity	Indicator	Alert
2023-12-22	medium	biggerfun.org	FAKEUPDATES
2024-01-08	medium	nowordshere.org/bjz1khVv	FAKEUPDATES

JavaScript (55)

HTTP Transactions (93)

	URL	IP	Response	Size