Overview

URL https://is.gd/mUrTEE
IP104.31.14.172
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-06-13 22:04:17 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-06-13 2 alselecsas.com.co/me/Indexxatt.htm Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.31.14.172

Date UQ / IDS / BL URL IP
2018-10-29 09:01:29 +0100
0 - 0 - 1 is.gd/e0u3TT?inf_contact_key=edbefca267e6b7f5 (...) 104.31.14.172
2018-10-17 19:46:36 +0200
2 - 0 - 0 https://is.gd/HHHEkE 104.31.14.172
2018-10-17 08:05:48 +0200
0 - 2 - 0 is.gd/Gat0jb 104.31.14.172
2018-10-16 21:21:24 +0200
0 - 0 - 4 is.gd/FVT6kD 104.31.14.172
2018-10-16 12:05:07 +0200
0 - 0 - 1 is.gd/d0HwqO 104.31.14.172
2018-10-16 11:09:05 +0200
0 - 1 - 0 is.gd/Gat0jb 104.31.14.172
2018-10-16 05:38:42 +0200
0 - 1 - 0 https://is.gd/HxkJXJ 104.31.14.172
2018-10-16 04:21:37 +0200
0 - 0 - 4 is.gd/FVT6kD 104.31.14.172
2018-10-16 02:07:54 +0200
0 - 1 - 0 is.gd/Gat0jb 104.31.14.172
2018-10-15 21:13:17 +0200
0 - 0 - 1 is.gd/d0HwqO 104.31.14.172

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2019-01-18 07:35:25 +0100
0 - 0 - 3 https://primerewardz.com/go/to/e4a442/key/9f4 (...) 104.31.76.114
2019-01-18 07:33:47 +0100
1 - 0 - 6 computerharmfiles109.xyz/trojan-error-2555/ 104.27.142.174
2019-01-18 07:33:17 +0100
0 - 0 - 0 dapalan.com/21042289/id-8547 104.27.159.146
2019-01-18 07:29:08 +0100
0 - 0 - 0 https://thumb-v-cl2.xhcdn.com 104.18.85.14
2019-01-18 07:26:03 +0100
0 - 0 - 0 justdubs.org 104.27.188.3
2019-01-18 07:21:07 +0100
0 - 1 - 0 windexdi.ga/ 104.28.23.206
2019-01-18 07:18:34 +0100
0 - 0 - 30 hosting.presswizards.com/ 104.28.29.93
2019-01-18 07:04:34 +0100
0 - 0 - 1 xcamerahot.shop/ 104.28.11.25
2019-01-18 07:04:20 +0100
0 - 2 - 0 393335.ga/ 104.27.176.32
2019-01-18 06:59:22 +0100
0 - 0 - 1 https://mobilepro3.site/AVA/RS/3RS-no/ 104.28.13.190

Last 10 reports on domain: is.gd

Date UQ / IDS / BL URL IP
2019-01-17 16:57:34 +0100
0 - 0 - 0 https://is.gd/TbyBMk 104.31.15.159
2019-01-16 19:40:00 +0100
0 - 0 - 0 https://is.gd 104.31.15.159
2019-01-14 19:19:39 +0100
0 - 0 - 1 https://is.gd/37uqsy 104.31.14.159
2019-01-12 02:36:52 +0100
0 - 2 - 1 https://is.gd/37uqsy 104.31.15.159
2019-01-11 12:37:43 +0100
0 - 0 - 1 https://is.gd/Zk6c1T 104.31.14.159
2019-01-04 13:25:52 +0100
0 - 0 - 7 is.gd/bZV95g 104.31.15.159
2019-01-04 13:23:41 +0100
0 - 0 - 2 is.gd/4oVqEJ 104.31.15.159
2019-01-03 15:49:34 +0100
0 - 0 - 0 is.gd/6TsNRQ 104.31.14.159
2019-01-03 15:36:43 +0100
0 - 0 - 0 is.gd 104.31.14.159
2018-12-29 19:48:50 +0100
0 - 0 - 1 https://is.gd/dWK4XF 104.31.15.159


JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (4)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 13 Jun 2018 04:42:52 GMT
Etag: 00594483A603FDC8C2D1D9A1BC93F0B325CF1F3E
X-OCSP-Responder-ID: rmdccaocsp17
Content-Length: 279
Cache-Control: public, no-transform, must-revalidate, max-age=1800
Expires: Wed, 13 Jun 2018 20:33:46 GMT
Date: Wed, 13 Jun 2018 20:03:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   279
Md5:    661e076ec74d81d81047f6e800133661
Sha1:   00594483a603fdc8c2d1d9a1bc93f0b325cf1f3e
Sha256: cb4956699dc5dafefb7c8e045f5353a76698e918c793193190d72073b120f314
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 12 Jun 2018 01:16:20 GMT
Etag: 5C5063D02D7F0CC9E2FEDB13F269E70D01D6D352
X-OCSP-Responder-ID: rmdccaocsp17
Content-Length: 313
Cache-Control: public, no-transform, must-revalidate, max-age=1572
Expires: Wed, 13 Jun 2018 20:29:58 GMT
Date: Wed, 13 Jun 2018 20:03:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   313
Md5:    2d854403e13826e5d83f8ece896ea3e2
Sha1:   5c5063d02d7f0cc9e2fedb13f269e70d01d6d352
Sha256: 126a9c178e1d62caace2fa38037ce4cd73efe1dbab6e05e9b3145f2219f27d38
                                        
                                            GET /mUrTEE HTTP/1.1 
Host: is.gd
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.31.14.172
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Wed, 13 Jun 2018 20:03:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d2ff6aa03e94c624e3d1cfec2917829211528920226; expires=Thu, 13-Jun-19 20:03:46 GMT; path=/; domain=.is.gd; HttpOnly
X-Powered-By: PHP/5.5.9-1ubuntu4.16
Location: https://alselecsas.com.co/me/Indexxatt.htm
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 42a729973a1642a9-OSL


--- Additional Info ---
                                        
                                            GET /me/Indexxatt.htm HTTP/1.1 
Host: alselecsas.com.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing