Overview

URL atakara.bid/
IP80.241.222.137
ASNAS51167 Contabo GmbH
Location Germany
Report completed2018-10-03 04:38:31 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-10-03 2 atakara.bid/ Malware
2018-10-03 2 atakara.bid/assets/b3ce30c2/yii.js Malware
2018-10-03 2 atakara.bid/assets/7030b3b9/js/bootstrap.js Malware
2018-10-03 2 atakara.bid/assets/7accac8c/jquery.js Malware
DNS-BH  No alerts detected
mnemonic secure dns
Added / Verified Severity Host Comment
2018-10-03 2 atakara.bid Blacklisted
2018-10-03 2 atakara.bid Blacklisted
2018-10-03 2 atakara.bid Blacklisted
2018-10-03 2 atakara.bid Blacklisted
2018-10-03 2 atakara.bid Blacklisted
2018-10-03 2 atakara.bid Blacklisted
2018-10-03 2 atakara.bid Blacklisted


Recent reports on same IP/ASN/Domain

No other reports on IP: 80.241.222.137


Last 10 reports on ASN: AS51167 Contabo GmbH

Date UQ / IDS / BL URL IP
2019-06-27 05:07:26 +0200
0 - 0 - 0 msyslearn.net/ 213.136.67.116
2019-06-26 21:49:30 +0200
0 - 0 - 0 https://mughalazam.com/QTOPaymentACHupi60j69i (...) 5.189.164.11
2019-06-26 04:16:27 +0200
0 - 0 - 0 https://tvsticksupport.com 185.2.103.2
2019-06-25 20:05:18 +0200
0 - 0 - 0 yourjavascript.com 5.189.183.184
2019-06-25 19:02:43 +0200
0 - 0 - 0 hrmaster.com.au 178.238.233.58
2019-06-21 03:08:35 +0200
0 - 0 - 0 https://residenceberah.com/mo/?email=sandra.b (...) 178.238.234.101
2019-06-20 21:24:35 +0200
0 - 0 - 0 5.189.183.184 5.189.183.184
2019-06-20 16:39:53 +0200
0 - 0 - 0 downloadwallpaperhd.xyz/wp-content/uploads/20 (...) 91.194.91.202
2019-06-20 09:21:54 +0200
0 - 0 - 0 www.bilder-upload.eu 5.189.128.54
2019-06-20 05:58:54 +0200
0 - 0 - 0 downloadwallpaperhd.xyz 91.194.91.202

Last 10 reports on domain: atakara.bid

Date UQ / IDS / BL URL IP
2019-04-14 00:57:50 +0200
0 - 0 - 2 atakara.bid/files/agents/6dbbdb9868788fdf720c (...) 193.56.28.125
2019-03-18 22:58:04 +0100
0 - 0 - 2 atakara.bid/files/agents/a65efd18c98f8e6e0e13 (...) 193.56.28.125
2019-03-13 12:29:03 +0100
0 - 0 - 2 atakara.bid/files/agents/bfd59d6893eb5f96bb59 (...) 193.56.28.125
2019-03-05 06:54:24 +0100
0 - 0 - 2 atakara.bid/files/agents/850d543b4b34e18258c2 (...) 193.56.28.125
2019-03-04 16:30:04 +0100
0 - 0 - 2 atakara.bid/files/agents/f0ee4fcfb94b67c90ddd (...) 193.56.28.125
2019-03-04 16:30:02 +0100
0 - 0 - 2 atakara.bid/files/agents/02097a30904dfde1cbd7 (...) 193.56.28.125
2019-03-02 08:06:21 +0100
0 - 0 - 2 atakara.bid/files/agents/447ffffeb6a5eb7741fe (...) 193.56.28.125
2019-02-27 07:07:25 +0100
0 - 0 - 2 atakara.bid/files/agents/9fa8ee5bfce74783978c (...) 193.56.28.125
2019-02-27 04:41:17 +0100
0 - 0 - 2 atakara.bid/files/commands/attachments/87c806 (...) 193.56.28.125
2019-02-25 07:20:28 +0100
0 - 0 - 2 atakara.bid/files/agents/e504a9d179b8e14358a9 (...) 193.56.28.125


JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (7)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: atakara.bid
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         80.241.222.137
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 03 Oct 2018 02:37:58 GMT
Server: Apache/2.4.6
X-Powered-By: PHP/7.2.10
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=bbul1e3h199k6dtoftp5o67rqv; path=/; HttpOnly _csrf=16b6389b580fce294c5894ecb1d8e3302b775406ea78e4a5593304d742a198dda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%221Az888pdRGqo-48jP-tXR9t97yHCPLDH%22%3B%7D; path=/; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 959
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   959
Md5:    53a18a9ce8e726a53d898aba7832d00c
Sha1:   557a7269e17ba77453f772295dce602e98e7d87e
Sha256: ff0500bcfafffeb2e9400bbd57e3ba2aa0d46aadd31f8685d7554cf30bad9ba8

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /css/site.css HTTP/1.1 
Host: atakara.bid
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://atakara.bid/
Cookie: PHPSESSID=bbul1e3h199k6dtoftp5o67rqv; _csrf=16b6389b580fce294c5894ecb1d8e3302b775406ea78e4a5593304d742a198dda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%221Az888pdRGqo-48jP-tXR9t97yHCPLDH%22%3B%7D

                                         
                                         80.241.222.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 03 Oct 2018 02:37:58 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 18 Feb 2018 22:35:59 GMT
Etag: "732-56584339451c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 711
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   711
Md5:    064918431bc42be6fd5cabdc091421ba
Sha1:   05187443eda8955f14ee0854a12e786a6c8b50e4
Sha256: 77335b3a21355455f00ff962c0b74ebf706f4d09167643c50666df759c8ecb0d

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /assets/7030b3b9/css/bootstrap.css HTTP/1.1 
Host: atakara.bid
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://atakara.bid/
Cookie: PHPSESSID=bbul1e3h199k6dtoftp5o67rqv; _csrf=16b6389b580fce294c5894ecb1d8e3302b775406ea78e4a5593304d742a198dda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%221Az888pdRGqo-48jP-tXR9t97yHCPLDH%22%3B%7D

                                         
                                         80.241.222.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 03 Oct 2018 02:37:58 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 09 Sep 2018 20:37:49 GMT
Etag: "23a5a-5757636c4a140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21330
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   21330
Md5:    4e08dba661588de17f27635d3112e003
Sha1:   4674f99506fdeeaf15e87759bd831562387118ed
Sha256: 8c7370d413f8e6cb80e37b9675b190e77ccf5fabc7b6cb99ffbccbf3c90e7fd2

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /assets/b3ce30c2/yii.js HTTP/1.1 
Host: atakara.bid
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://atakara.bid/
Cookie: PHPSESSID=bbul1e3h199k6dtoftp5o67rqv; _csrf=16b6389b580fce294c5894ecb1d8e3302b775406ea78e4a5593304d742a198dda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%221Az888pdRGqo-48jP-tXR9t97yHCPLDH%22%3B%7D

                                         
                                         80.241.222.137
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 03 Oct 2018 02:37:58 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 09 Sep 2018 20:37:49 GMT
Etag: "4eeb-5757636c4a140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5560
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5560
Md5:    7fe27516f6f085dd9f35ac3abb9b7d00
Sha1:   aa6ef4d41aa30df476613f9cb59d28a4051fdb84
Sha256: fd31823f6835da5cc770a79571b5e5a04b0e20a2673010d84e884913e9738035

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /assets/7030b3b9/js/bootstrap.js HTTP/1.1 
Host: atakara.bid
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://atakara.bid/
Cookie: PHPSESSID=bbul1e3h199k6dtoftp5o67rqv; _csrf=16b6389b580fce294c5894ecb1d8e3302b775406ea78e4a5593304d742a198dda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%221Az888pdRGqo-48jP-tXR9t97yHCPLDH%22%3B%7D

                                         
                                         80.241.222.137
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 03 Oct 2018 02:37:58 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 09 Sep 2018 20:37:49 GMT
Etag: "1104b-5757636c4a140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14444
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14444
Md5:    c5f41433a39073257f3ae274180a937e
Sha1:   d325f0d4d6becdea88b5203b8356226fd5fa9243
Sha256: d103b77d4ae931beb4dd2d8b997ab8d5c4dd8f79a58a9b0b43418593dd58e9ff

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /assets/7accac8c/jquery.js HTTP/1.1 
Host: atakara.bid
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://atakara.bid/
Cookie: PHPSESSID=bbul1e3h199k6dtoftp5o67rqv; _csrf=16b6389b580fce294c5894ecb1d8e3302b775406ea78e4a5593304d742a198dda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%221Az888pdRGqo-48jP-tXR9t97yHCPLDH%22%3B%7D

                                         
                                         80.241.222.137
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 03 Oct 2018 02:37:58 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 09 Sep 2018 20:37:49 GMT
Etag: "41707-5757636c4a140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   79456
Md5:    6e4331e15cd6b282342b52dfd57f4419
Sha1:   7f55fc42090d24fae6c73f17e2b350f1c3902f01
Sha256: 9b5ce01d3ded4f960b843dca082ab52cd38761d0118f1d61e6d8aa9b8579b719

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: atakara.bid
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=bbul1e3h199k6dtoftp5o67rqv; _csrf=16b6389b580fce294c5894ecb1d8e3302b775406ea78e4a5593304d742a198dda%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%221Az888pdRGqo-48jP-tXR9t97yHCPLDH%22%3B%7D

                                         
                                         80.241.222.137
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Wed, 03 Oct 2018 02:37:59 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 18 Feb 2018 22:35:59 GMT
Etag: "13e-56584339451c0"
Accept-Ranges: bytes
Content-Length: 318
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   318
Md5:    a976d227e5d1dcf62f5f7e623211dd1b
Sha1:   a2a9dc1abdd3d888484678663928cb024c359ee6
Sha256: 66332859bd8e3441a019e073a318b62a47014ba244121301034b510dc7532271

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted