urlquery.net - Free url scanner

Overview

URL	http://gnhrr.kuywwjk.tk/getsoft.php?ts=258eeb5f
IP	5.104.106.56
ASN	AS24961 myLoc managed IT AG
Location	Germany
Report completed	2012-11-08 01:52:58 CET
Status	Loading report..
urlQuery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Adobe Reader	8.0
Java	1.6.0_26

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Source IP	Destination IP	Severity	Alert
2012-11-08 01:52:25	urlQuery Client	Internal IP	2	ET CURRENT_EVENTS DNS Query to a .tk domain - Likely Hostile

Snort /w Sourcefire VRT

No alerts detected

Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 5.104.106.56

Date	Alerts / IDS	URL	IP
2013-02-16 01:43:01	1 / 0	http://mbagd.urlsd.mooo.com/get_soft_demo.php?ts=0580f737bf4b5b679a95be7fd557852a0542 (...)	5.104.106.56
2013-02-16 00:47:30	1 / 0	http://btwli.urlsd.mooo.com/get_soft_demo.php?ts=0f2c3f8a68e1bd5800166868f37a7b9744ab (...)	5.104.106.56
2013-02-16 00:39:20	1 / 0	http://vwklh.urlsd.mooo.com/get_soft_demo.php?ts=45236ea5e798aa343cc0af18e308adc02289 (...)	5.104.106.56
2013-02-16 00:02:55	1 / 0	http://qnwij.muun.mooo.com/get_soft_demo.php?ts=979c34185afb3ca3d85bf668b5ac726900ca3 (...)	5.104.106.56
2013-02-15 23:52:11	1 / 0	http://klrli.muun.mooo.com/get_soft_demo.php?ts=ad732a656cc7cd96b8e8e89aadc9d05cf5534 (...)	5.104.106.56
2013-02-15 23:39:01	1 / 0	http://bimue.muun.mooo.com/get_soft_demo.php?ts=b25fb4f3d28fb42aa0dabce64d942a08ca720 (...)	5.104.106.56

Last 6 reports on ASN: AS24961 myLoc managed IT AG

Date	Alerts / IDS	URL	IP
2013-02-16 09:04:13	0 / 0	http://37.157.255.67/	37.157.255.67
2013-02-16 01:43:01	1 / 0	http://mbagd.urlsd.mooo.com/get_soft_demo.php?ts=0580f737bf4b5b679a95be7fd557852a0542b6f3	5.104.106.56
2013-02-16 00:47:30	1 / 0	http://btwli.urlsd.mooo.com/get_soft_demo.php?ts=0f2c3f8a68e1bd5800166868f37a7b9744abfc4c	5.104.106.56
2013-02-16 00:39:20	1 / 0	http://vwklh.urlsd.mooo.com/get_soft_demo.php?ts=45236ea5e798aa343cc0af18e308adc02289ce7f	5.104.106.56
2013-02-16 00:02:55	1 / 0	http://qnwij.muun.mooo.com/get_soft_demo.php?ts=979c34185afb3ca3d85bf668b5ac726900ca3b2c	5.104.106.56
2013-02-15 23:52:11	1 / 0	http://klrli.muun.mooo.com/get_soft_demo.php?ts=ad732a656cc7cd96b8e8e89aadc9d05cf5534ef7	5.104.106.56

JavaScript

Executed Scripts (2)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (1)

Request	Response
GET /getsoft.php?ts=258eeb5f HTTP/1.1 Host: gnhrr.kuywwjk.tk User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive

Request

Response

GET /getsoft.php?ts=258eeb5f HTTP/1.1

Host: gnhrr.kuywwjk.tk


User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive