Overview

URL mediadiskhostfiles1.ru/hbb
IP104.24.118.139
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2019-03-24 20:59:33 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-24 2 mediadiskhostfiles1.ru/hbb Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.24.118.139

Date UQ / IDS / BL URL IP
2019-03-24 21:14:34 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/hbb 104.24.118.139
2019-03-24 17:14:38 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/hbb 104.24.118.139
2018-10-31 03:24:08 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/!8cd8cfeb75d9d50f933b4 (...) 104.24.118.139
2017-12-30 20:57:04 +0100
0 - 0 - 2 mediadiskhostfiles1.ru/!a990c5748d6106a9700f3 (...) 104.24.118.139
2017-11-10 06:53:23 +0100
0 - 0 - 4 speedkeeper.com/ 104.24.118.139
2017-11-10 05:56:36 +0100
0 - 0 - 4 speedkeeper.com/ 104.24.118.139
2017-10-19 00:01:37 +0200
0 - 1 - 1 hsttshop.top/ 104.24.118.139
2017-08-02 13:52:30 +0200
0 - 0 - 13 mediadiskhostfiles1.ru/!2b86e3441a1a9f8771d92 (...) 104.24.118.139
2017-07-31 18:47:52 +0200
0 - 0 - 14 mediadiskhostfiles1.ru/!2534d3636e1082def737a (...) 104.24.118.139
2017-07-31 17:10:01 +0200
0 - 0 - 14 mediadiskhostfiles1.ru/!2534d3636e1082def737a (...) 104.24.118.139

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2019-07-04 10:47:28 +0200
0 - 0 - 0 https://www.bitchute.com/video/nGjzUqQzi423/ 104.24.23.87
2019-07-02 09:55:24 +0200
0 - 0 - 0 Finddreamjobs.com 104.17.47.14
2019-07-02 09:51:03 +0200
0 - 0 - 0 https://www.bitchute.com/video/ix3LoPLzjS8a/ 104.24.23.87
2019-07-02 09:50:01 +0200
0 - 0 - 0 https://www.bitchute.com/video/RNGAJQK1s8Qx/ 104.24.22.87
2019-07-02 09:49:59 +0200
0 - 0 - 0 https://www.bitchute.com/video/HUEWirPZXMOI/ 104.24.23.87
2019-07-02 09:49:58 +0200
0 - 0 - 0 https://www.bitchute.com/video/GRkaogicSTRt/ 104.24.23.87
2019-07-02 09:49:56 +0200
0 - 0 - 0 https://www.bitchute.com/video/0vPgxEoFvLs8/ 104.24.23.87
2019-07-02 09:49:34 +0200
0 - 0 - 0 https://www.bitchute.com/video/rhOuRaIOHJdb/ 104.24.22.87
2019-07-02 09:49:31 +0200
0 - 0 - 0 https://www.bitchute.com/video/0gdUIrC1FwTV/ 104.24.23.87
2019-07-02 09:49:30 +0200
0 - 0 - 0 https://www.bitchute.com/video/9TSaSoV97QZI/ 104.24.22.87

Last 10 reports on domain: mediadiskhostfiles1.ru

Date UQ / IDS / BL URL IP
2019-03-25 01:29:37 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/hbb 194.58.56.163
2019-03-25 00:14:32 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/hbb 104.24.119.139
2019-03-24 21:14:34 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/hbb 104.24.118.139
2019-03-24 17:14:38 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/hbb 104.24.118.139
2019-03-24 14:14:37 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/hbb 104.24.119.139
2019-03-24 12:59:32 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/hbb 104.24.119.139
2018-10-31 03:24:08 +0100
0 - 0 - 1 mediadiskhostfiles1.ru/!8cd8cfeb75d9d50f933b4 (...) 104.24.118.139
2017-12-30 20:57:04 +0100
0 - 0 - 2 mediadiskhostfiles1.ru/!a990c5748d6106a9700f3 (...) 104.24.118.139
2017-07-11 23:36:26 +0200
0 - 0 - 14 mediadiskhostfiles1.ru/!abf0f208265ad66a2ab95 (...) 104.24.119.139
2017-07-04 09:20:39 +0200
0 - 0 - 14 mediadiskhostfiles1.ru/!65063cbb0d8e61f3e7ac5 (...) 104.24.119.139


JavaScript

Executed Scripts (6)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 10, repeated: 2) - SHA256: ba52b7d8a568c1c857f5777e0127ca15888724a2f23a38aaeec39be63f29c53c

                                        Error 909 x
                                    


HTTP Transactions (10)


Request Response
                                        
                                            GET /hbb HTTP/1.1 
Host: mediadiskhostfiles1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.24.119.139
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 19:58:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=df433f015d7826ce99bfc8e7781eb69ea1553457539; expires=Mon, 23-Mar-20 19:58:59 GMT; path=/; domain=.mediadiskhostfiles1.ru; HttpOnly
X-Powered-By: PHP/5.6.40
X-Frame-Options: Sameorigin
Server: cloudflare
CF-RAY: 4bcb39187d80cad6-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   543
Md5:    7b1d72a817ef706ed97be87db62bf7fa
Sha1:   857cf535bbd78738bfdff0ace0e9a80a0f7f2cdd
Sha256: 6f3e883e03378b66be68839b4b8051273c8fda61bc91f06003f092bf0376556e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 19 Mar 2019 19:46:13 GMT
Etag: 1B89EE4FF0D7179775E1499E562DDC440054BB91
X-OCSP-Responder-ID: mcdpcaocsp11
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=171378
Expires: Tue, 26 Mar 2019 19:35:18 GMT
Date: Sun, 24 Mar 2019 19:59:00 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    1937c97588b0b69dba8f47b493e69e0e
Sha1:   1b89ee4ff0d7179775e1499e562ddc440054bb91
Sha256: 33a42faa340896382c4171ad951d5b17a42b4967241c7892896bbad5f5e626d6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 21 Mar 2019 11:19:13 GMT
Etag: B2F02E3D4E3F5174EDCE645DBD0CC92F5BF83AA6
X-OCSP-Responder-ID: mcdpcaocsp14
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=313828
Expires: Thu, 28 Mar 2019 11:09:28 GMT
Date: Sun, 24 Mar 2019 19:59:00 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    8d83c17822e803694f731626b7d74bbb
Sha1:   b2f02e3d4e3f5174edce645dbd0cc92f5bf83aa6
Sha256: e49dafb86d323982fee0d8fe6b0edb74c1c0944370e5b25d732484c4c2285522
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 21 Mar 2019 11:19:13 GMT
Etag: EF3F10350FEC2627247EFAD0AEF89041AB0703E0
X-OCSP-Responder-ID: mcdpcaocsp10
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=313825
Expires: Thu, 28 Mar 2019 11:09:25 GMT
Date: Sun, 24 Mar 2019 19:59:00 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    126bb0921e3b3c457356fa4ded6155d7
Sha1:   ef3f10350fec2627247efad0aef89041ab0703e0
Sha256: f9c32c302da1f77365ad251385087e1f68d30ca7c1f1969aea1e3fab6012f0a8
                                        
                                            GET /ajax/libs/jquery/2.2.1/jquery.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mediadiskhostfiles1.ru/hbb

                                         
                                         104.19.199.151
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 24 Mar 2019 19:59:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 17 May 2018 09:20:15 GMT
Etag: W/"5afd494f-14e7e"
Expires: Fri, 13 Mar 2020 19:59:00 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Served-In-Seconds: 0.004
CF-Cache-Status: HIT
Strict-Transport-Security: max-age=15780000; includeSubDomains
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb391aef8c4267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   30127
Md5:    ee45a95c4d06cd57557b51d0d5051920
Sha1:   df1764348b973af9ed56240b7b0146dbe9ec5452
Sha256: b110e743a387267fcc849b10e876a2158d33dfbe318951853b398a0a5cd2dc51
                                        
                                            GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mediadiskhostfiles1.ru/hbb

                                         
                                         104.19.199.151
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 24 Mar 2019 19:59:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 17 May 2018 09:20:12 GMT
Etag: W/"5afd494c-514"
Expires: Fri, 13 Mar 2020 19:59:00 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Served-In-Seconds: 0.000
CF-Cache-Status: HIT
Strict-Transport-Security: max-age=15780000; includeSubDomains
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb391b9b3e4261-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   697
Md5:    bac86a22d09cf057b53c6a659592ac0d
Sha1:   ef2ead822e3f5f7b7a7f02a42cd3827fa6d2a8de
Sha256: 2101ba9e0de744be0095602363ed2be7a6bef00d9961a78165ccea15be4b215f
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: mediadiskhostfiles1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=df433f015d7826ce99bfc8e7781eb69ea1553457539

                                         
                                         104.24.119.139
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 19:59:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
X-Frame-Options: Sameorigin
CF-Cache-Status: EXPIRED
Expires: Sun, 24 Mar 2019 23:59:00 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb391bec7ccad6-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   549
Md5:    514869ef6c984f3b690bea09ab6cab9d
Sha1:   d042e1a3115464f928ce12c3e1562f174a6f8969
Sha256: 5fe25dd2174590d69dc5c33b4043e58b7d11204af54f9b4a3f67b167fa8987b7
                                        
                                            GET /hbb&file_sharing=1 HTTP/1.1 
Host: mediadiskhostfiles1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mediadiskhostfiles1.ru/hbb
Cookie: __cfduid=df433f015d7826ce99bfc8e7781eb69ea1553457539

                                         
                                         104.24.119.139
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 19:59:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
X-Frame-Options: Sameorigin
Server: cloudflare
CF-RAY: 4bcb391c396ccb02-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   526
Md5:    d6cf5776759bfdd474255fe9fabc925c
Sha1:   6852db45428cdeb1232f00bb96aedec50e218bd1
Sha256: 207fc2a7652e2db63d8e2e38efa5502f8c4484f1caa56c31384785faf8f0851a
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: mediadiskhostfiles1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=df433f015d7826ce99bfc8e7781eb69ea1553457539

                                         
                                         104.24.119.139
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 19:59:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
X-Frame-Options: Sameorigin
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:59:00 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb391d4aabcad6-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   549
Md5:    514869ef6c984f3b690bea09ab6cab9d
Sha1:   d042e1a3115464f928ce12c3e1562f174a6f8969
Sha256: 5fe25dd2174590d69dc5c33b4043e58b7d11204af54f9b4a3f67b167fa8987b7
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: mediadiskhostfiles1.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=df433f015d7826ce99bfc8e7781eb69ea1553457539

                                         
                                         104.24.119.139
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 19:59:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
X-Frame-Options: Sameorigin
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:59:03 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb392eab5acb02-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   549
Md5:    514869ef6c984f3b690bea09ab6cab9d
Sha1:   d042e1a3115464f928ce12c3e1562f174a6f8969
Sha256: 5fe25dd2174590d69dc5c33b4043e58b7d11204af54f9b4a3f67b167fa8987b7