Overview

URL bestadbid.com/afu.php?zoneid=1409812
IP194.187.98.176
ASNAS35415 Webzilla B.V.
Location Netherlands
Report completed2018-09-24 14:46:14 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-09-24 2 bestadbid.com/afu.php?zoneid=1409812 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 194.187.98.176

Date UQ / IDS / BL URL IP
2018-10-09 12:07:19 +0200
0 - 0 - 0 bestadbid.com 194.187.98.176
2018-09-26 22:40:38 +0200
0 - 0 - 0 https://bestadbid.com/afu.php?zoneid=1850667& (...) 194.187.98.176
2018-09-24 20:38:06 +0200
0 - 0 - 1 bestadbid.com 194.187.98.176
2018-09-19 14:34:43 +0200
0 - 0 - 4 bestadbid.com/afu.php?zoneid=1588797 194.187.98.176
2018-09-03 08:06:34 +0200
0 - 0 - 1 bestadbid.com/afu.php?zoneid=1748446 194.187.98.176
2018-09-01 11:22:06 +0200
0 - 0 - 3 bestadbid.com/afu.php?zoneid=1641883 194.187.98.176
2018-08-24 14:24:00 +0200
0 - 0 - 2 bestadbid.com/afu.php?zoneid=1543567 194.187.98.176
2018-08-24 02:17:55 +0200
0 - 0 - 4 bestadbid.com/afu.php?zoneid=1543567 194.187.98.176
2018-08-22 18:58:17 +0200
0 - 0 - 1 bestadbid.com/afu.php?zoneid=1543567 194.187.98.176
2018-08-22 15:26:54 +0200
0 - 0 - 1 bestadbid.com/afu.php?zoneid=1543567 194.187.98.176

Last 10 reports on ASN: AS35415 Webzilla B.V.

Date UQ / IDS / BL URL IP
2019-01-16 07:57:02 +0100
0 - 1 - 0 dmoid.top/ 88.85.93.143
2019-01-16 05:22:46 +0100
0 - 0 - 1 bodelen.com/apu.php?zoneid=1834828 88.85.66.195
2019-01-16 00:42:53 +0100
0 - 1 - 2 ucfcstealler.ml/eYQRSkEtL.exe 178.208.83.9
2019-01-16 00:01:25 +0100
0 - 0 - 1 https://brells.pro/ 88.85.94.227
2019-01-15 23:45:01 +0100
0 - 1 - 0 rclmc.top/ 88.85.93.34
2019-01-15 22:06:00 +0100
0 - 0 - 1 ads.shorte.st/ads.php?key=2ea5b261f06ca771033 (...) 78.140.188.188
2019-01-15 20:57:56 +0100
0 - 0 - 1 kidnepishlient.pro/ 88.85.94.227
2019-01-15 20:13:49 +0100
0 - 3 - 0 10consdinoc.pw/ 78.140.165.10
2019-01-15 20:03:31 +0100
0 - 0 - 1 c0f3235774d3ee.com/ 88.85.92.113
2019-01-15 19:21:55 +0100
0 - 0 - 1 exox.pro/DATA/TV/csrss.exe 94.103.80.138

Last 10 reports on domain: bestadbid.com

Date UQ / IDS / BL URL IP
2019-01-06 19:35:48 +0100
0 - 0 - 0 bestadbid.com 188.42.162.193
2018-10-12 16:37:19 +0200
0 - 0 - 0 https://bestadbid.com 188.42.162.193
2018-10-09 12:07:19 +0200
0 - 0 - 0 bestadbid.com 194.187.98.176
2018-10-01 18:33:35 +0200
0 - 0 - 0 bestadbid.com/afu.php?zoneid=1748446&var=1084 (...) 88.85.82.180
2018-09-26 22:40:38 +0200
0 - 0 - 0 https://bestadbid.com/afu.php?zoneid=1850667& (...) 194.187.98.176
2018-09-26 03:03:02 +0200
0 - 0 - 1 https://bestadbid.com/ 88.85.82.180
2018-09-26 02:37:00 +0200
0 - 0 - 1 bestadbid.com 188.42.162.193
2018-09-24 20:38:06 +0200
0 - 0 - 1 bestadbid.com 194.187.98.176
2018-09-21 00:01:52 +0200
0 - 0 - 1 bestadbid.com/afu.php?zoneid=1543567 188.42.162.193
2018-09-20 23:51:39 +0200
0 - 0 - 1 bestadbid.com/afu.php?zoneid=1543567 88.85.82.180


JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (3)


Request Response
                                        
                                            GET /afu.php?zoneid=1409812 HTTP/1.1 
Host: bestadbid.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         194.187.98.176
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 24 Sep 2018 12:45:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Timing-Allow-Origin: *
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: SeenToday=1; expires=Tue, 25-Sep-2018 12:45:41 GMT; Max-Age=86400; path=/ OAGEO5580f=13%7CNO%7C03%7COSLO%7CXDSL%7CBROADNET+AS%7C%7C11348%7C11093%7C%3F%7C578270; expires=Tue, 25-Sep-2018 12:45:41 GMT; Max-Age=86400; path=/ oaidts=1537793141; expires=Tue, 24-Sep-2019 12:45:41 GMT; Max-Age=31536000; path=/ OAID=e232d5d5a597a4a894ea802cf106d277; expires=Tue, 24-Sep-2019 12:45:41 GMT; Max-Age=31536000; path=/
X-FRAME-OPTIONS: DENY


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   7
Md5:    c0bd18b1ac042381c1a9372fe6bf5c6e
Sha1:   9b64bb1a7903211e28aade659d58c76e8fac7784
Sha256: 26078c0a33aa78f94b92a0da24325eac10db1090759836d177144b88179cabf9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: bestadbid.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: SeenToday=1; OAGEO5580f=13%7CNO%7C03%7COSLO%7CXDSL%7CBROADNET+AS%7C%7C11348%7C11093%7C%3F%7C578270; oaidts=1537793141; OAID=e232d5d5a597a4a894ea802cf106d277

                                         
                                         194.187.98.176
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Mon, 24 Sep 2018 12:45:41 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate
Pragma: public


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: bestadbid.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: SeenToday=1; OAGEO5580f=13%7CNO%7C03%7COSLO%7CXDSL%7CBROADNET+AS%7C%7C11348%7C11093%7C%3F%7C578270; oaidts=1537793141; OAID=e232d5d5a597a4a894ea802cf106d277

                                         
                                         194.187.98.176
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Mon, 24 Sep 2018 12:45:44 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate
Pragma: public


--- Additional Info ---