Overview

URL beverlymodels.com/category/custom-writing-helpers
IP66.96.160.130
ASNAS29873 The Endurance International Group, Inc.
Location United States
Report completed2019-04-25 18:01:12 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-04-25 2 beverlymodels.com/category/custom-writing-helpers Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 66.96.160.130

Date UQ / IDS / BL URL IP
2019-06-07 13:58:59 +0200
0 - 0 - 2 newhighway7.ca/wp-admin/locked.exe 66.96.160.130
2019-04-19 22:32:09 +0200
0 - 0 - 5 hwy11-17-hwy582tocoughlin.com/wp-includes/ima (...) 66.96.160.130
2019-04-19 22:32:02 +0200
0 - 0 - 5 hwy11-17-hwy582tocoughlin.com/wp-includes/ima (...) 66.96.160.130
2019-04-19 22:32:01 +0200
0 - 0 - 5 hwy11-17-hwy582tocoughlin.com/wp-includes/ima (...) 66.96.160.130
2019-04-19 22:32:00 +0200
0 - 0 - 5 hwy11-17-hwy582tocoughlin.com/wp-includes/ima (...) 66.96.160.130
2019-04-19 22:32:00 +0200
0 - 0 - 5 hwy11-17-hwy582tocoughlin.com/wp-includes/ima (...) 66.96.160.130
2019-04-19 22:32:00 +0200
0 - 0 - 5 hwy11-17-hwy582tocoughlin.com/wp-includes/ima (...) 66.96.160.130
2019-04-19 22:31:59 +0200
0 - 0 - 5 hwy11-17-hwy582tocoughlin.com/wp-includes/ima (...) 66.96.160.130
2019-04-19 22:31:58 +0200
0 - 0 - 5 hwy11-17-hwy582tocoughlin.com/wp-includes/ima (...) 66.96.160.130
2019-04-19 22:31:58 +0200
0 - 0 - 5 hwy11-17-hwy582tocoughlin.com/wp-includes/ima (...) 66.96.160.130

Last 10 reports on ASN: AS29873 The Endurance International Group, Inc.

Date UQ / IDS / BL URL IP
2019-07-01 10:28:18 +0200
0 - 0 - 0 www.arcireland.com/pos/ 66.96.149.1
2019-06-30 13:49:16 +0200
0 - 0 - 0 www.erikstormtrooper.com/stickerpage1.zip 65.254.227.224
2019-06-30 13:40:01 +0200
0 - 0 - 0 www.erikstormtrooper.com 65.254.227.224
2019-06-27 16:16:51 +0200
0 - 0 - 20 tdalpacafarm.com 65.254.227.240
2019-06-26 12:17:37 +0200
0 - 0 - 0 www.promptbuilders.ca/ 66.96.160.154
2019-06-26 02:08:19 +0200
0 - 0 - 0 carstoflorida.com/wp-content/uploads/2016/04/ (...) 66.96.147.159
2019-06-25 15:35:45 +0200
0 - 0 - 0 www.nicefind.online 66.96.147.101
2019-06-25 13:40:39 +0200
0 - 0 - 0 www.isaca.org.hk 66.96.146.129
2019-06-25 09:48:39 +0200
0 - 0 - 0 https://meetingreminder.com/j/937523737 207.148.248.143
2019-06-25 02:52:56 +0200
0 - 0 - 0 pacificcontours.com 66.96.146.102

Last 10 reports on domain: beverlymodels.com

Date UQ / IDS / BL URL IP
2019-03-24 18:35:25 +0100
0 - 0 - 1 beverlymodels.com/2013/04 66.96.160.130
2019-03-24 18:35:00 +0100
0 - 0 - 1 beverlymodels.com/2013/03 66.96.160.130
2018-12-04 23:31:08 +0100
0 - 0 - 1 beverlymodels.com/purchase-custom-made-analyz (...) 66.96.160.130
2018-11-20 22:55:33 +0100
0 - 0 - 5 www.beverlymodels.com/2013/07/ 66.96.160.130
2018-11-20 05:20:09 +0100
0 - 0 - 13 www.beverlymodels.com/leading-on-the-web-casi (...) 66.96.160.130
2018-11-20 02:12:26 +0100
0 - 0 - 5 www.beverlymodels.com/2017/12/ 66.96.160.130
2018-11-19 22:29:27 +0100
0 - 0 - 6 www.beverlymodels.com/2014/02/ 66.96.160.130
2018-11-05 17:08:36 +0100
0 - 0 - 5 www.beverlymodels.com/category/dataroom/ 66.96.160.130
2018-10-30 03:19:37 +0100
0 - 0 - 6 beverlymodels.com/category/thesis-writing-help 66.96.160.130
2018-10-24 16:16:25 +0200
0 - 0 - 4 www.beverlymodels.com/2013/03/ 66.96.160.130


JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 4, repeated: 1) - SHA256: 023e33504ab909cf87a6f4e4e545090e40bdc0a2153e5b68b19f7fad2b737904

                                        2019
                                    


HTTP Transactions (11)


Request Response
                                        
                                            GET /category/custom-writing-helpers HTTP/1.1 
Host: beverlymodels.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         66.96.160.130
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 25 Apr 2019 16:00:38 GMT
Content-Length: 6386
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 14 Aug 2013 16:26:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   6386
Md5:    101d2bd6f1cfb90662676e01c5adafda
Sha1:   dd94f9d368fde53bac2ca4de0ec2f95a2f897af7
Sha256: 0718e43c2d6b24ee6c0ea8a6ac1f6ab19b6d00f05e5d22b912fc1251613a5e8a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/templates/netfirms/badge-sitelock-verified.gif HTTP/1.1 
Host: www2.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://beverlymodels.com/category/custom-writing-helpers
Cookie: SESSION_ID=fe48ca02f0bf09d677bc6a04188fb6b7

                                         
                                         65.254.227.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 25 Apr 2019 16:00:39 GMT
Content-Length: 1466
Last-Modified: Wed, 23 Mar 2011 17:16:06 GMT
Connection: keep-alive
Expires: Thu, 25 Apr 2019 20:00:39 GMT
Cache-Control: max-age=14400
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 99 x 50
Size:   1466
Md5:    ae20b3390dfe0388ab5533ab8a805727
Sha1:   e01df3c09e570b06b072048b449cf214766a48b5
Sha256: f7a5e5120f374ff0235038dbca580939ca13d102cd9a5e2fad6dd24a4b71ba77
                                        
                                            GET /icons/16/email.png HTTP/1.1 
Host: images.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www2.netfirms.com/xslt/elements/generic_csscomponent.css
Cookie: SESSION_ID=fe48ca02f0bf09d677bc6a04188fb6b7

                                         
                                         65.254.227.17
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 25 Apr 2019 16:00:39 GMT
Content-Length: 530
Last-Modified: Mon, 11 Jan 2010 19:28:38 GMT
Connection: keep-alive
Expires: Thu, 25 Apr 2019 20:00:39 GMT
Cache-Control: max-age=14400
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   530
Md5:    b6af29512955d67841acadce0753debd
Sha1:   7ff7e238dcb6ebfc578df21730fa315d01fb8624
Sha256: b94316b53c9787945527f11bae8d510ed4dd921506c7c6c58110d2d1899fbd86
                                        
                                            GET /icons/16/help.png HTTP/1.1 
Host: images.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www2.netfirms.com/xslt/elements/generic_csscomponent.css
Cookie: SESSION_ID=fe48ca02f0bf09d677bc6a04188fb6b7

                                         
                                         65.254.227.17
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 25 Apr 2019 16:00:39 GMT
Content-Length: 761
Last-Modified: Mon, 11 Jan 2010 20:24:15 GMT
Connection: keep-alive
Expires: Thu, 25 Apr 2019 20:00:39 GMT
Cache-Control: max-age=14400
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   761
Md5:    291c6d49783ca0d930a55066fb45deca
Sha1:   16154dddaaecad7f36a6a7724eb86d6d33e797f7
Sha256: c83fabe32bc5e524a5817cf869ec375ce78b3fe35a88dc18d9f4b8cf5288a66b
                                        
                                            GET /icons/16/cog.png HTTP/1.1 
Host: images.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www2.netfirms.com/xslt/elements/generic_csscomponent.css
Cookie: SESSION_ID=fe48ca02f0bf09d677bc6a04188fb6b7

                                         
                                         65.254.227.17
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 25 Apr 2019 16:00:39 GMT
Content-Length: 777
Last-Modified: Mon, 11 Jan 2010 17:07:48 GMT
Connection: keep-alive
Expires: Thu, 25 Apr 2019 20:00:39 GMT
Cache-Control: max-age=14400
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   777
Md5:    3d04274979a97bdbeb73e7efbfafa919
Sha1:   d3e61bf146ee67047358d50ec4d7da9b657c7ae9
Sha256: 9b15c687dc9e4aebe320b6c8a8e44616657b3134ce2c29ffab0647322ef4d906
                                        
                                            GET /images/templates/netfirms/c_icann_sm.png HTTP/1.1 
Host: www2.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://beverlymodels.com/category/custom-writing-helpers
Cookie: SESSION_ID=fe48ca02f0bf09d677bc6a04188fb6b7

                                         
                                         65.254.227.16
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 25 Apr 2019 16:00:39 GMT
Content-Length: 1918
Last-Modified: Wed, 23 Mar 2011 17:16:08 GMT
Connection: keep-alive
Expires: Thu, 25 Apr 2019 20:00:39 GMT
Cache-Control: max-age=14400
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 69 x 61, 8-bit colormap, non-interlaced
Size:   1918
Md5:    8e395018ef5bdb5f8002228302b0ea87
Sha1:   13190d19912174d7539a109ad2097d59213b1584
Sha256: 7c54acfa8421d2f4229aaf800ee687496798cd2a961fc396f84289b0ed9d479c
                                        
                                            GET /templates/controlpanel/netfirms/hd-h1-logo.png HTTP/1.1 
Host: images.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www2.netfirms.com/xslt/elements/generic_csscomponent.css
Cookie: SESSION_ID=fe48ca02f0bf09d677bc6a04188fb6b7

                                         
                                         65.254.227.17
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 25 Apr 2019 16:00:39 GMT
Content-Length: 8683
Connection: keep-alive
Server: Apache
Vary: Host
Cache-Control: max-age=604800, public
Last-Modified: Mon, 17 Jan 2011 15:43:19 GMT
Etag: "9bd38663-21eb-4d346397"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 214 x 42, 8-bit/color RGB, non-interlaced
Size:   8683
Md5:    f4b303ec29f979c291333ecb1851a587
Sha1:   52418970edc529a7069f6bcf1c5826932766e49c
Sha256: eada739f2d6702fce9997c59aec9027bebc25c45550955862c44fde3cd372907
                                        
                                            GET /icons/favicon_nf.ico HTTP/1.1 
Host: images.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         65.254.227.17
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 25 Apr 2019 16:00:44 GMT
Content-Length: 1406
Connection: keep-alive
Server: Apache
Vary: Host
Last-Modified: Fri, 01 Apr 2011 13:39:07 GMT
Etag: "9bd7ab05-57e-4d95d57b"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1406
Md5:    64c52210394735e9907a0e5a9b668c15
Sha1:   89f9fc2839d197fc5f10009734feb50b3982b5fb
Sha256: 50404f87b0a40dcd638b3541c2747cd48e148263c4beac15df2abc4cba13fbad
                                        
                                            GET /xslt/elements/generic_csscomponent.css HTTP/1.1 
Host: www2.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://beverlymodels.com/category/custom-writing-helpers

                                         
                                         65.254.227.16
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 25 Apr 2019 16:00:39 GMT
Connection: close
Server: Apache
Set-Cookie: SESSION_ID=b7ae9fba24b299026ebc80ca5b634be3; domain=.netfirms.com; path=/
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
                                        
                                            GET /generalAppC/bugkicker/rekicker.css HTTP/1.1 
Host: www2.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://beverlymodels.com/category/custom-writing-helpers

                                         
                                         65.254.227.16
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 25 Apr 2019 16:00:39 GMT
Connection: close
Server: Apache
Set-Cookie: SESSION_ID=7dc7cefdec7595159d272ddfed15ef10; domain=.netfirms.com; path=/
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
                                        
                                            GET /generalAppC/scriptcat/87ae207201c55b84c5270851159260e1.1 HTTP/1.1 
Host: www2.netfirms.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://beverlymodels.com/category/custom-writing-helpers

                                         
                                         65.254.227.16
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 25 Apr 2019 16:00:39 GMT
Connection: close
Server: Apache
Content-Security-Policy: frame-ancestors 'self' https://*.impress.ly https://*.dragndropbuilder.com https://*.weeblycloud.com https://*.sitelock.com https://*.mojomarketplace.com https://*.ipage.com https://*.yourhostingaccount.com https://*.ecwid.com
X-Frame-Options: SAMEORIGIN ALLOW-FROM https://*.impress.ly https://*.dragndropbuilder.com https://*.weeblycloud.com https://*.sitelock.com https://*.mojomarketplace.com https://*.ipage.com https://*.yourhostingaccount.com https://*.ecwid.com
Cache-Control: max-age=3600, public, max-age=3600
Expires: Thu, 25 Apr 2019 17:00:38 GMT
Etag: 87ae207201c55b84c5270851159260e1-gzip
Content-Encoding: gzip
Set-Cookie: SESSION_ID=fe48ca02f0bf09d677bc6a04188fb6b7; domain=.netfirms.com; path=/


--- Additional Info ---