Overview

URL https://is.gd/mUrTEE
IP104.31.14.172
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-06-13 22:04:17 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-06-13 2 alselecsas.com.co/me/Indexxatt.htm Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.31.14.172

Date UQ / IDS / BL URL IP
2018-10-29 09:01:29 +0100
0 - 0 - 1 is.gd/e0u3TT?inf_contact_key=edbefca267e6b7f5 (...) 104.31.14.172
2018-10-17 19:46:36 +0200
2 - 0 - 0 https://is.gd/HHHEkE 104.31.14.172
2018-10-17 08:05:48 +0200
0 - 2 - 0 is.gd/Gat0jb 104.31.14.172
2018-10-16 21:21:24 +0200
0 - 0 - 4 is.gd/FVT6kD 104.31.14.172
2018-10-16 12:05:07 +0200
0 - 0 - 1 is.gd/d0HwqO 104.31.14.172
2018-10-16 11:09:05 +0200
0 - 1 - 0 is.gd/Gat0jb 104.31.14.172
2018-10-16 05:38:42 +0200
0 - 1 - 0 https://is.gd/HxkJXJ 104.31.14.172
2018-10-16 04:21:37 +0200
0 - 0 - 4 is.gd/FVT6kD 104.31.14.172
2018-10-16 02:07:54 +0200
0 - 1 - 0 is.gd/Gat0jb 104.31.14.172
2018-10-15 21:13:17 +0200
0 - 0 - 1 is.gd/d0HwqO 104.31.14.172

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2019-05-22 01:42:49 +0200
0 - 1 - 1 cpradof.darkwebrepo.gq/apk/TuneIn%20Radio_mod (...) 104.28.2.96
2019-05-22 01:41:35 +0200
0 - 0 - 11 thepiratebay.blue/torrent/19219084/DefDist_DE (...) 104.31.18.30
2019-05-22 01:38:39 +0200
0 - 0 - 2 techstatic.top/2c98c432365a1a4b66ccf66addd831 (...) 104.27.146.228
2019-05-22 01:37:52 +0200
0 - 0 - 1 youtubecards.com/license.exe 104.24.116.216
2019-05-22 01:37:50 +0200
0 - 0 - 1 csc-server.ru/ChangerVersions/ALL/36.zip 104.27.130.49
2019-05-22 01:37:21 +0200
0 - 0 - 5 akashshukla.in/Beast.rar 104.24.107.225
2019-05-22 01:36:21 +0200
0 - 0 - 2 dl.softservers.net/111000920/u10277vtqyu646k3 (...) 104.24.106.203
2019-05-22 01:34:04 +0200
0 - 0 - 1 cpradof.darkwebrepo.gq/apk/TerrariumTVPremium (...) 104.28.2.96
2019-05-22 01:28:07 +0200
0 - 0 - 1 csc-server.ru/ChangerVersions/ALL/61.zip 104.27.130.49
2019-05-22 01:26:57 +0200
0 - 1 - 2 techstatic.top/57537ba247d6006b03f3ce9dae46c0 (...) 104.27.146.228

Last 10 reports on domain: is.gd

Date UQ / IDS / BL URL IP
2019-05-19 14:46:13 +0200
0 - 1 - 0 is.gd/Pns2GM 104.25.23.21
2019-05-17 23:57:18 +0200
0 - 0 - 0 https://is.gd/6Lmt6K 104.25.23.21
2019-05-17 17:03:44 +0200
0 - 0 - 1 https://is.gd/dWK4XF 104.25.23.21
2019-05-16 01:59:06 +0200
0 - 0 - 0 https://is.gd/EDTCnO#NotaFiscal-0000074483100 (...) 104.25.22.21
2019-05-12 05:48:19 +0200
0 - 0 - 0 is.gd/AjkD7x 104.25.22.21
2019-05-08 15:06:06 +0200
0 - 0 - 0 https://is.gd/6WFPeF 104.25.23.21
2019-05-07 11:02:51 +0200
0 - 0 - 3 is.gd/9zOgTu 104.25.22.21
2019-05-06 23:47:46 +0200
0 - 0 - 0 https://is.gd/dff33r 104.25.23.21
2019-05-06 20:41:53 +0200
0 - 1 - 0 https://is.gd/b7l31i 104.27.2.35
2019-05-05 12:03:19 +0200
0 - 0 - 0 https://is.gd/W8dSc7 104.27.2.35


JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (4)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 13 Jun 2018 04:42:52 GMT
Etag: 00594483A603FDC8C2D1D9A1BC93F0B325CF1F3E
X-OCSP-Responder-ID: rmdccaocsp17
Content-Length: 279
Cache-Control: public, no-transform, must-revalidate, max-age=1800
Expires: Wed, 13 Jun 2018 20:33:46 GMT
Date: Wed, 13 Jun 2018 20:03:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   279
Md5:    661e076ec74d81d81047f6e800133661
Sha1:   00594483a603fdc8c2d1d9a1bc93f0b325cf1f3e
Sha256: cb4956699dc5dafefb7c8e045f5353a76698e918c793193190d72073b120f314
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 12 Jun 2018 01:16:20 GMT
Etag: 5C5063D02D7F0CC9E2FEDB13F269E70D01D6D352
X-OCSP-Responder-ID: rmdccaocsp17
Content-Length: 313
Cache-Control: public, no-transform, must-revalidate, max-age=1572
Expires: Wed, 13 Jun 2018 20:29:58 GMT
Date: Wed, 13 Jun 2018 20:03:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   313
Md5:    2d854403e13826e5d83f8ece896ea3e2
Sha1:   5c5063d02d7f0cc9e2fedb13f269e70d01d6d352
Sha256: 126a9c178e1d62caace2fa38037ce4cd73efe1dbab6e05e9b3145f2219f27d38
                                        
                                            GET /mUrTEE HTTP/1.1 
Host: is.gd
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.31.14.172
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Wed, 13 Jun 2018 20:03:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d2ff6aa03e94c624e3d1cfec2917829211528920226; expires=Thu, 13-Jun-19 20:03:46 GMT; path=/; domain=.is.gd; HttpOnly
X-Powered-By: PHP/5.5.9-1ubuntu4.16
Location: https://alselecsas.com.co/me/Indexxatt.htm
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 42a729973a1642a9-OSL


--- Additional Info ---
                                        
                                            GET /me/Indexxatt.htm HTTP/1.1 
Host: alselecsas.com.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing