urlquery.net - Free url scanner

Overview

URL	http://cvuci.vjyvbnwe.tk/update.exe?ts=53c84951
IP	5.104.106.56
ASN	AS24961 myLoc managed IT AG
Location	Germany
Report completed	2012-11-06 23:38:53 CET
Status	Loading report..
urlQuery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Adobe Reader	8.0
Java	1.6.0_26

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Source IP	Destination IP	Severity	Alert
2012-11-06 23:38:16	urlQuery Client	Internal IP	2	ET CURRENT_EVENTS DNS Query to a .tk domain - Likely Hostile

Snort /w Sourcefire VRT

No alerts detected

Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 5.104.106.56

Date	Alerts / IDS	URL	IP
2013-03-14 00:22:58	0 / 0	http://5.104.106.56	5.104.106.56
2013-03-10 11:53:55	0 / 0	http://5.104.106.56	5.104.106.56
2013-03-10 01:55:17	1 / 0	http://fbblu.kfelet.mooo.com/get_soft_demo.php?ts=60e44be4802d679688935370e99c70dec6e (...)	5.104.106.56
2013-03-10 01:38:02	1 / 0	http://qrgtd.kfelet.mooo.com/get_soft_demo.php?ts=c2fe402da1bf604354f29d577d6ef599b4c (...)	5.104.106.56
2013-03-10 01:36:51	1 / 0	http://qfjnl.kfelet.mooo.com/get_soft_demo.php?ts=c2fe402da1bf604354f29d577d6ef599b4c (...)	5.104.106.56
2013-03-04 17:17:52	0 / 0	http://iitxo.slweel.ignorelist.com/get_soft_demo.php	5.104.106.56

Last 6 reports on ASN: AS24961 myLoc managed IT AG

Date	Alerts / IDS	URL	IP
2013-03-23 12:10:51	1 / 2	http://zimmer-minden.de/16/7-wedgie-types	46.20.43.210
2013-03-23 11:50:02	2 / 2	http://kraft-tattoo.de/index.php/2012-09-17-20-38-25/1-jozsef/detail/86-galerie.html?tmpl=compo (...)	46.20.42.106
2013-03-23 09:24:46	2 / 1	http://kraft-tattoo.de/index.php/2012-09-17-20-38-25/1-jozsef/detail/109-galerie.html?tmpl=comp (...)	46.20.42.106
2013-03-23 09:10:32	2 / 2	http://kraft-tattoo.de/index.php/2012-09-17-20-38-25/1-jozsef/detail/94-galerie.html?tmpl=compo (...)	46.20.42.106
2013-03-23 09:02:42	2 / 1	http://kraft-tattoo.de/index.php/2012-09-17-20-38-25/1-jozsef/detail/19-galerie.html?tmpl=compo (...)	46.20.42.106
2013-03-23 09:01:12	2 / 1	http://kraft-tattoo.de/index.php/2012-09-17-20-38-25/1-jozsef/detail/113-galerie.html?tmpl=comp (...)	46.20.42.106

JavaScript

Executed Scripts (2)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (1)

Request	Response
GET /update.exe?ts=53c84951 HTTP/1.1 Host: cvuci.vjyvbnwe.tk User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive

Request

Response

GET /update.exe?ts=53c84951 HTTP/1.1

Host: cvuci.vjyvbnwe.tk


User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive