Overview

URL avtosauna.com/templates/hcu/Bankofamerica
IP23.236.62.147
ASNAS15169 Google Inc.
Location United States
Report completed2018-12-18 19:12:14 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-12-18 2 avtosauna.com/templates/hcu/Bankofamerica Malware
2018-12-18 2 www.avtosauna.com/templates/hcu/Bankofamerica Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 23.236.62.147

Date UQ / IDS / BL URL IP
2019-06-19 00:36:12 +0200
0 - 0 - 0 wmcglobal.com 23.236.62.147
2019-06-17 21:22:22 +0200
0 - 0 - 2 mountainaction.net/ 23.236.62.147
2019-06-17 10:18:44 +0200
0 - 0 - 0 roza-mieczynscy.com/ 23.236.62.147
2019-06-16 17:48:29 +0200
0 - 0 - 2 mountainaction.net 23.236.62.147
2019-06-15 00:42:18 +0200
0 - 0 - 0 scureverify91psa.com 23.236.62.147
2019-06-13 17:07:01 +0200
0 - 0 - 0 redelephantmediagroup.com 23.236.62.147
2019-06-13 14:12:59 +0200
0 - 0 - 0 agenceblacksheep.com/ 23.236.62.147
2019-06-11 16:41:48 +0200
0 - 0 - 0 trewautomation.com 23.236.62.147
2019-06-11 00:11:47 +0200
0 - 0 - 2 mixmodels.sk/ 23.236.62.147
2019-06-11 00:04:35 +0200
0 - 0 - 2 fotorest.kz/ 23.236.62.147

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2019-06-19 03:25:13 +0200
0 - 0 - 0 https://universal-tvs.blogspot.com/2019/06/go (...) 216.58.207.193
2019-06-19 00:36:12 +0200
0 - 0 - 0 wmcglobal.com 23.236.62.147
2019-06-18 23:51:52 +0200
0 - 0 - 0 https://drive.google.com/file/d/14roM31m_KMpe (...) 172.217.21.174
2019-06-18 23:39:34 +0200
0 - 0 - 1 forsirescswif1983.blogspot.in 172.217.22.161
2019-06-18 23:31:20 +0200
0 - 0 - 1 centrtevunac1983.blogspot.nl 216.58.211.1
2019-06-18 23:04:15 +0200
0 - 0 - 1 https://epdirete1989.blogspot.fi/ 216.58.211.129
2019-06-18 22:49:14 +0200
0 - 0 - 0 172.217.10.70 172.217.10.70
2019-06-18 22:28:31 +0200
0 - 0 - 0 thehackettgroup.com 104.198.98.85
2019-06-18 21:53:53 +0200
0 - 0 - 1 login1and1.com/050774bfee0b0a1213811283cec510 (...) 216.239.38.21
2019-06-18 21:43:42 +0200
0 - 0 - 0 74.125.103.198 74.125.103.198

Last 3 reports on domain: avtosauna.com

Date UQ / IDS / BL URL IP
2019-04-03 08:36:19 +0200
0 - 0 - 2 avtosauna.com/templates/hcu 23.236.62.147
2017-09-16 05:03:22 +0200
0 - 0 - 1 avtosauna.com/templates/system/chaze/chaze/c/c 209.99.40.222
2017-08-28 08:56:00 +0200
0 - 0 - 1 avtosauna.com/templates/hcu/Bankofamerica/ind (...) 209.99.40.223


JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (14)


Request Response
                                        
                                            GET /templates/hcu/Bankofamerica HTTP/1.1 
Host: avtosauna.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         23.236.62.147
HTTP/1.1 301 Moved Permanently
                                        
Date: Tue, 18 Dec 2018 18:07:36 GMT
Connection: keep-alive
X-Wix-Server-Artifact-Id: wix-public-war
Expires: -1
X-Wix-Redirect-Reason: ProtocolSwitchingDispatchProcessor
X-Wix-Redirected-From: http://www.avtosauna.com/templates/hcu/Bankofamerica
Location: https://www.avtosauna.com/templates/hcu/Bankofamerica
X-Seen-By: BTzakfJUbU/4CBguyutVd2yM24MUp/cs5sqTkd+4hpI=,1wy2ILu/S4rlWT/R4rqCrUabbaXiwwzITT9x5v73Ivg=,LwsIp90Tma5sliyMxJYVEsDlh1h4AMQX7u4R8qzCokk=
Cache-Control: no-cache
Pragma: no-cache
Content-Language: en-US
X-Wix-Request-Id: 1545156456.0047555564220158782
Set-Cookie: TS01e85bed=01f0e93131c06d8067c54d96c33eb4719d5aaa93e60cd93554c4912962c9b22b4a9a1037019a66a95c61f7dcac98e3e2d15efc1375; Path=/
Transfer-Encoding: chunked


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "81FE39C4D7FC08217EFD3661853CD14B6F2E781AB517B57447BDDCF6BD5CD99C"
Last-Modified: Sat, 15 Dec 2018 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43200
Expires: Wed, 19 Dec 2018 06:07:36 GMT
Date: Tue, 18 Dec 2018 18:07:36 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    98272924ef9808a8dae945bfff0a4bc7
Sha1:   21ab0f34a19dbe5f0718e7936871d2f68a3d2716
Sha256: 81fe39c4d7fc08217efd3661853cd14b6f2e781ab517b57447bddcf6bd5cd99c
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.121
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Sun, 16 Dec 2018 15:46:11 GMT
Etag: "882d51f4a24d43946bd81397fc6dad1fc0e049f9"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=11099
Expires: Tue, 18 Dec 2018 21:12:35 GMT
Date: Tue, 18 Dec 2018 18:07:36 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    ee02a2cbfefe8eea6f6d8a8333e5c141
Sha1:   882d51f4a24d43946bd81397fc6dad1fc0e049f9
Sha256: 86f4aac73de9d1abefc156168b1b082150d29d85594eb536d678abd458ddc836
                                        
                                            GET /templates/hcu/Bankofamerica HTTP/1.1 
Host: www.avtosauna.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         185.230.62.181
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=utf-8
                                        
Date: Tue, 18 Dec 2018 18:07:36 GMT
Connection: keep-alive
X-Wix-Server-Artifact-Id: wix-public-war
X-Seen-By: BTzakfJUbU/4CBguyutVd+d6iJe9rzUR2p4mRq3dJUw=,1wy2ILu/S4rlWT/R4rqCrX5H5Sc8KewbGiNkhVF/gpM=,LwsIp90Tma5sliyMxJYVEpvu7MX3+qdZGpc5SDf3v8A=,I2ZOrNA1LIowGTY6Ll7mx3eBMSYxVEEbljWhsOqGqoY=,1wy2ILu/S4rlWT/R4rqCrSpMuzFG0ZrxzCCbekGCpVM=,Tw2AanFDQ+Wwo8Xxk6ZL7rHKeAJXtkPxqn+uc4aMlOA3H3FvoTKXfZE0/lJl8ORQ
Pragma: no-cache
Cache-Control: no-cache
Content-Language: en-US
Content-Encoding: gzip
X-Wix-Request-Id: 1545156456.59476781134391128595
Set-Cookie: TS01e85bed=0141ccf485d46d805a7e2daf7ed3061a12c38f02a823bdb0d341738b65677c9cfce1e2e5240567d58ba285f7dd18691debe038b6da; Path=/
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1010
Md5:    ad4f9ca891e97aeee43825ae49804965
Sha1:   d3e0d0babe5af5fc502e2af7e0766fa4c4d449f3
Sha256: c9b6120af20e4e08016191e4a08a7c1ef7c061e2ac4703e9d35eaf1b3e26e7ed

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.avtosauna.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: TS01e85bed=0141ccf485d46d805a7e2daf7ed3061a12c38f02a823bdb0d341738b65677c9cfce1e2e5240567d58ba285f7dd18691debe038b6da

                                         
                                         185.230.62.181
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Tue, 18 Dec 2018 18:07:36 GMT
Connection: keep-alive
Etag: W/"5b735b9e-abc"
X-Seen-By: BTzakfJUbU/4CBguyutVd+d6iJe9rzUR2p4mRq3dJUw=
X-Wix-Request-Id: 1545156456.90076781134392128595
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   990
Md5:    15aa4dab1f4faf4e00fcbb610689b8aa
Sha1:   e1a78c5ec05887bdc5cd03a22387873493cd63d4
Sha256: d00cda6cf1dba43da12123692c5a70d1ab6116eb5ebf5677565e6fabd659f70b
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.avtosauna.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: TS01e85bed=0141ccf485d46d805a7e2daf7ed3061a12c38f02a823bdb0d341738b65677c9cfce1e2e5240567d58ba285f7dd18691debe038b6da

                                         
                                         185.230.62.181
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Tue, 18 Dec 2018 18:07:39 GMT
Connection: keep-alive
Etag: W/"5b735b9e-abc"
X-Seen-By: BTzakfJUbU/4CBguyutVd+d6iJe9rzUR2p4mRq3dJUw=
X-Wix-Request-Id: 1545156459.89176781134393128595
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   990
Md5:    15aa4dab1f4faf4e00fcbb610689b8aa
Sha1:   e1a78c5ec05887bdc5cd03a22387873493cd63d4
Sha256: d00cda6cf1dba43da12123692c5a70d1ab6116eb5ebf5677565e6fabd659f70b
                                        
                                            GET /services/third-party/angularjs/1.2.28/angular.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.avtosauna.com/templates/hcu/Bankofamerica

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /services/wix-public/1.245.0/scripts/error-pages/locale/messages_en.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.avtosauna.com/templates/hcu/Bankofamerica

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /services/third-party/fonts/Helvetica/fontFace.css HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.avtosauna.com/templates/hcu/Bankofamerica

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /services/wix-public/1.245.0/styles/error-pages/styles.css HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.avtosauna.com/templates/hcu/Bankofamerica

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /services/third-party/jquery/2.0.3/jquery.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.avtosauna.com/templates/hcu/Bankofamerica

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /services/wix-public/1.245.0/scripts/error-pages/app.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.avtosauna.com/templates/hcu/Bankofamerica

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /services/wix-public/1.245.0/scripts/error-pages/locale/messages_en.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.avtosauna.com/templates/hcu/Bankofamerica

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /services/wix-public/1.245.0/scripts/error-pages/app.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.avtosauna.com/templates/hcu/Bankofamerica

                                         
                                         0.0.0.0
                                        


--- Additional Info ---