Overview

URL bc.vc/Na7Tv8L
IP104.18.42.124
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-10-05 07:41:48 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-10-05 2 logiccode.net/kok/index.php Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 3 reports on IP: 104.18.42.124

Date UQ / IDS / BL URL IP
2018-06-08 10:05:15 +0200
0 - 1 - 0 gipziknotjok.info/f/Terraria_RUS_BTAA7S.torre (...) 104.18.42.124
2018-06-08 10:01:08 +0200
0 - 1 - 0 gipziknotjok.info/f/Terraria_RUS_4T78O8.torre (...) 104.18.42.124
2017-11-16 13:14:41 +0100
0 - 2 - 0 extramovies.biz/ 104.18.42.124

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2018-11-15 05:45:08 +0100
0 - 0 - 4 nartsignaling.com/2012/10 104.28.24.92
2018-11-15 05:45:08 +0100
0 - 0 - 4 nartsignaling.com/table-1-inclusion-hrefhttpw (...) 104.28.25.92
2018-11-15 05:43:36 +0100
2 - 2 - 5 pinkertube.com/video/53154/juelz-ventura-cums (...) 104.28.30.4
2018-11-15 05:39:58 +0100
0 - 0 - 1 moraxdwed.ru/files/REBOOT_HACK_3.0_1CPAUR.exeee 104.24.111.194
2018-11-15 05:37:08 +0100
0 - 0 - 0 https://www.theknot.com/us/all-blacks-vs-irel (...) 104.16.208.249
2018-11-15 05:36:24 +0100
2 - 2 - 5 smut.space/video/58591/woodman-casting-ashley (...) 104.28.29.233
2018-11-15 05:29:19 +0100
0 - 0 - 14 www0.123hulu.bz/watch/awkward-season-2/episod (...) 104.31.85.150
2018-11-15 05:26:39 +0100
1 - 0 - 9 https://cabletvpack.com/rhodeisland 104.27.131.191
2018-11-15 05:26:25 +0100
0 - 0 - 0 https://www.bluetriangle.com/digital-experien (...) 104.24.5.111
2018-11-15 05:25:39 +0100
3 - 2 - 6 https://danden.com/?p=2498 104.27.175.91

Last 10 reports on domain: bc.vc

Date UQ / IDS / BL URL IP
2018-11-08 21:21:16 +0100
0 - 0 - 0 bc.vc/fly/ajax.php?wds=50f1cfb53414785befcbe0 (...) 172.64.202.12
2018-08-15 16:29:44 +0200
0 - 0 - 0 bc.vc/82Vtjs1 172.64.161.8
2018-08-02 18:10:46 +0200
0 - 0 - 0 bc.vc/82Vtjs1 104.27.129.229
2018-07-26 08:22:19 +0200
0 - 0 - 1 bc.vc/qlZN0E 172.64.136.7
2018-06-27 18:07:31 +0200
2 - 0 - 0 bc.vc/JfF1m3P 104.27.170.229
2018-06-08 16:57:01 +0200
0 - 0 - 0 bc.vc/ucyfJTW 104.28.30.81
2018-05-31 00:14:24 +0200
0 - 0 - 1 bc.vc/4847/http:/turbobit.net/edmsu3xrx5wo/id (...) 104.28.30.81
2018-05-30 18:57:53 +0200
0 - 0 - 1 bc.vc/F0745I 104.28.31.81
2018-05-29 22:47:15 +0200
0 - 0 - 1 bc.vc/YLS5c7 104.28.30.81
2018-05-29 14:05:32 +0200
0 - 0 - 1 bc.vc/oYEWFr 104.28.31.81


JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (2)


Request Response
                                        
                                            GET /Na7Tv8L HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.18.42.124
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 05 Oct 2018 05:41:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=de94ef3387438f6af2d4e8488612290171538718075; expires=Sat, 05-Oct-19 05:41:15 GMT; path=/; domain=.bc.vc; HttpOnly _kei_=1; expires=Fri, 05-Oct-2018 21:00:00 GMT; Max-Age=55252; path=/
X-Powered-By: PHP/5.6.30-0+deb8u1
Location: https://logiccode.net/kok/index.php
X-Frame-Options: allowall
Server: cloudflare
CF-RAY: 464d8ee6758f4273-OSL


--- Additional Info ---
Magic:  ASCII HTML document text
Size:   110
Md5:    620354bb12f550082d292de53f05442b
Sha1:   0822e8915cf5fa23fdf4b10679913cc2bb822935
Sha256: 78feef4acdad9593adc0f9527a97c15df6101ecd54eb15fbefb76e9385939fe7
                                        
                                            GET /kok/index.php HTTP/1.1 
Host: logiccode.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing