Overview

URL sekayji.flywheelsites.com/
IP104.248.23.222
ASN
Location United States
Report completed2019-02-17 17:58:33 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-17 2 sekayji.flywheelsites.com/ Phishing
2019-02-17 2 sekayji.flywheelsites.com/wp-includes/js/wp-emoji-release.min.js?ver=5.0.3 Phishing
2019-02-17 2 sekayji.flywheelsites.com/wp-content/themes/twentynineteen/js/skip-link-foc (...) Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 104.248.23.222


Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-05-23 06:00:45 +0200
0 - 0 - 1 www.microsoft.com-maintaining-pc.live/tonic2/ 94.237.87.169
2019-05-23 05:56:46 +0200
0 - 0 - 4 tool.justshopping.xyz/990cefa8d5ed3bae3a85e31 (...) 143.204.47.124
2019-05-23 05:53:28 +0200
0 - 0 - 1 gojava.ir/vpp 159.69.90.47
2019-05-23 05:52:26 +0200
0 - 0 - 10 poolperfectusa.com/wp-content/uploads/2012/05 (...) 132.148.152.149
2019-05-23 05:51:54 +0200
0 - 0 - 1 prwmly.ltd/IlOysTgNjFrGtHtEAwVo/indexx.php 47.91.170.222
2019-05-23 05:51:43 +0200
0 - 0 - 1 mxjmbh.ltd/index.php 47.91.170.222
2019-05-23 05:51:42 +0200
0 - 0 - 1 qpmdch.ltd/IlOysTgNjFrGtHtEAwVo/index.php 47.91.170.222
2019-05-23 05:51:39 +0200
0 - 0 - 1 dbfljq.ltd/index.php 47.91.170.222
2019-05-23 05:51:37 +0200
0 - 0 - 1 gksklh.ltd/index.html 47.91.170.222
2019-05-23 05:50:36 +0200
0 - 4 - 4 www.tengb8.com/tbhgjyl/201525.html 103.81.168.20

No other reports on domain: flywheelsites.com



JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (10)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 17 Feb 2019 16:57:51 GMT
Vary: Accept-Encoding
Link: <http://sekayji.flywheelsites.com/index.php?rest_route=/>; rel="https://api.w.org/"
X-FW-Server: Flywheel/4.1.0
X-FW-Hash: 4heamdmp9f
Content-Encoding: gzip
Server: Flywheel/4.1.0
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: HIT
X-Hits: 1
X-FW-Static: NO
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 3584
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3584
Md5:    cb0799c71b3f57bc8c7e0e08146abfba
Sha1:   5395eb4ce0073f042f69b408ead1878963560690
Sha256: f1f505bd9a4194a8aadfb9921d0a70b670f218c52f4f35c7d0ecf58aefed9436

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.0.3 HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://sekayji.flywheelsites.com/

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 17 Feb 2019 16:57:52 GMT
Last-Modified: Thu, 10 Jan 2019 18:13:21 GMT
Vary: Accept-Encoding
Etag: W/"5c378b41-2efa"
X-FW-Server: Flywheel/4.1.0
Pragma: public
Content-Encoding: gzip
Server: Flywheel/4.1.0
Cache-Control: max-age=2592000, public
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: HIT
X-Hits: 2
X-FW-Static: YES
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 4421
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4421
Md5:    9b6103cba40a3d63e761089e4fae670e
Sha1:   2aa0b725626ddd922b5c6e52af67df56f150c86c
Sha256: 4837184ee4ab9f6a19734ff167e8602b2dc3aaf1b89c121588c0af9974590de6

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.0.3 HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://sekayji.flywheelsites.com/

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 17 Feb 2019 16:57:52 GMT
Last-Modified: Thu, 10 Jan 2019 18:13:21 GMT
Vary: Accept-Encoding
Etag: W/"5c378b41-643a"
X-FW-Server: Flywheel/4.1.0
Pragma: public
Content-Encoding: gzip
Server: Flywheel/4.1.0
Cache-Control: max-age=2592000, public
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: HIT
X-Hits: 2
X-FW-Static: YES
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 4370
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4370
Md5:    c3cf869fdf57a5517263a279051ce64a
Sha1:   40317f4ad822e2df9aae157f91d9ccb878bca8bd
Sha256: 3376cdda0ced1c55adf3a34b7c2b99418c8769024040e3ff63e602cea3c1968e
                                        
                                            GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.0.3 HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://sekayji.flywheelsites.com/

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 17 Feb 2019 16:57:52 GMT
Last-Modified: Thu, 10 Jan 2019 18:13:21 GMT
Vary: Accept-Encoding
Etag: W/"5c378b41-44e"
X-FW-Server: Flywheel/4.1.0
Pragma: public
Content-Encoding: gzip
Server: Flywheel/4.1.0
Cache-Control: max-age=2592000, public
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: HIT
X-Hits: 2
X-FW-Static: YES
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 452
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   452
Md5:    a1460de1169f35d25c609565927b5026
Sha1:   47c150c92eee79d97f857be1d63dab4858e80fb3
Sha256: 852bf85cafb830ae23656389d7ffd622d2682ddd0ef75ff1f203e025354a18f1
                                        
                                            GET /wp-content/themes/twentynineteen/print.css?ver=1.0 HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://sekayji.flywheelsites.com/

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 17 Feb 2019 16:57:52 GMT
Last-Modified: Tue, 08 Jan 2019 22:52:27 GMT
Vary: Accept-Encoding
Etag: W/"5c3529ab-f81"
X-FW-Server: Flywheel/4.1.0
Pragma: public
Content-Encoding: gzip
Server: Flywheel/4.1.0
Cache-Control: max-age=2592000, public
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: HIT
X-Hits: 2
X-FW-Static: YES
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 1237
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1237
Md5:    348598d078aa921c39d610d5e907192a
Sha1:   9aa1a80f662feeb88d98334f8f9c4a31d5c68893
Sha256: 5909f68e0d470f091843c0e5143fa59355687becfe941eb9b437224155a8df0c
                                        
                                            GET /wp-content/themes/twentynineteen/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://sekayji.flywheelsites.com/

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 17 Feb 2019 16:57:51 GMT
Last-Modified: Tue, 08 Jan 2019 22:52:27 GMT
Vary: Accept-Encoding
Etag: W/"5c3529ab-2ad"
X-FW-Server: Flywheel/4.1.0
Pragma: public
Content-Encoding: gzip
Server: Flywheel/4.1.0
Cache-Control: max-age=2592000, public
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: HIT
X-Hits: 2
X-FW-Static: YES
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 417
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   417
Md5:    73f7704398d8f6be9748d30791950984
Sha1:   3231f3786c364c7665cd7123d8fae0f42bbfd836
Sha256: c1d9b23aff05fb52e5d6e68aff86d808097185c6dbaac6c3fc3ec6e5bea31ef4

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/twentynineteen/style.css?ver=1.0 HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://sekayji.flywheelsites.com/

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 17 Feb 2019 16:57:52 GMT
Last-Modified: Tue, 08 Jan 2019 22:52:27 GMT
Vary: Accept-Encoding
Etag: W/"5c3529ab-1b082"
X-FW-Server: Flywheel/4.1.0
Pragma: public
Content-Encoding: gzip
Server: Flywheel/4.1.0
Cache-Control: max-age=2592000, public
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: HIT
X-Hits: 2
X-FW-Static: YES
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 19768
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   19768
Md5:    258d216094c2f9fddb8b0407d938d1d0
Sha1:   b3e88c06e341d29301d576a9774fbdd1fb3d9a4f
Sha256: 7e8be702699c9b0869db534c51267fb2edd8644c4adf9df2c8db87e4ee34435d
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.0.3 HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://sekayji.flywheelsites.com/

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 17 Feb 2019 16:57:52 GMT
Last-Modified: Thu, 10 Jan 2019 18:13:21 GMT
Vary: Accept-Encoding
Etag: W/"5c378b41-57b"
X-FW-Server: Flywheel/4.1.0
Pragma: public
Content-Encoding: gzip
Server: Flywheel/4.1.0
Cache-Control: max-age=2592000, public
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: HIT
X-Hits: 2
X-FW-Static: YES
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 753
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   753
Md5:    8151177dccb399a75164172bb63b0491
Sha1:   0a2a5bf7eaa29bb8690a657bbc982360802ab41b
Sha256: 71d58666e959b9ea4a90f83fa5926fced7f92c084a098ee23ec450054b7292a8
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Sun, 17 Feb 2019 16:58:01 GMT
X-FW-Server: Flywheel/4.1.0
X-FW-Hash: 4heamdmp9f
Server: Flywheel/4.1.0
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: MISS
X-FW-Static: NO
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 0
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: sekayji.flywheelsites.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.248.23.222
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Sun, 17 Feb 2019 16:58:01 GMT
X-FW-Server: Flywheel/4.1.0
X-FW-Hash: 4heamdmp9f
Server: Flywheel/4.1.0
X-Cacheable: YES
X-FW-Serve: TRUE
X-Cache: HIT
X-Hits: 1
X-FW-Static: NO
X-FW-Type: VISIT
Accept-Ranges: bytes
Content-Length: 0
Connection: keep-alive


--- Additional Info ---