Overview

URL eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/
IP104.27.160.199
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2017-07-30 11:28:20 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-07-30 2 eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/ Phishing
2017-07-30 2 eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/ Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 104.27.160.199

Date UQ / IDS / BL URL IP
2017-11-24 04:36:00 +0100
0 - 0 - 9 www.eu-spocs-starterkit.eu/building-blocks 104.27.160.199
2017-11-16 14:23:27 +0100
0 - 0 - 2 eu-spocs-starterkit.eu/https:_/www2.itau.com. (...) 104.27.160.199
2017-09-17 23:57:05 +0200
0 - 0 - 2 www.eu-spocs-starterkit.eu/https:_/www2.itau. (...) 104.27.160.199
2017-09-16 19:55:12 +0200
0 - 0 - 2 eu-spocs-starterkit.eu/https:_/www2.itau.com. (...) 104.27.160.199
2017-09-14 00:54:34 +0200
0 - 0 - 2 www.eu-spocs-starterkit.eu/https:_/www2.itau. (...) 104.27.160.199
2017-08-11 23:20:41 +0200
0 - 0 - 2 www.eu-spocs-starterkit.eu/https:/www2.itau.c (...) 104.27.160.199

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2017-11-24 12:09:50 +0100
2 - 0 - 2 corneey.com/q1ReXB 104.28.2.23
2017-11-24 12:08:39 +0100
0 - 0 - 0 https://www.fimfiction.net/blog/781538/1080pf (...) 104.20.175.25
2017-11-24 12:02:10 +0100
0 - 0 - 1 cheathappens.com/trainers/sc-apache51-afc5519 (...) 104.20.89.146
2017-11-24 11:58:39 +0100
0 - 0 - 0 www.gbmods.co/wp-content/uploads/Themes/GBWA_ (...) 104.25.127.37
2017-11-24 11:58:35 +0100
0 - 0 - 1 www.dhmeats.com/ 104.18.56.40
2017-11-24 11:54:53 +0100
0 - 0 - 44 https://www.angner.se/ 104.28.16.18
2017-11-24 11:47:44 +0100
0 - 0 - 20 www.can-ho-lexington-residence.com/wp-content (...) 104.28.29.237
2017-11-24 11:47:36 +0100
0 - 0 - 1 www.rue21.com/store/guys/_/N-97i?utm_source=c (...) 104.16.162.234
2017-11-24 11:45:04 +0100
0 - 0 - 0 https://bettercoloncleansingguide.com/quicktr (...) 104.24.99.254
2017-11-24 11:41:13 +0100
0 - 0 - 11 https://roi-socialmedia.com/css/apps/Mobile825/ 104.18.36.83

Last 7 reports on domain: .

Date UQ / IDS / BL URL IP
2017-11-24 04:36:00 +0100
0 - 0 - 9 www.eu-spocs-starterkit.eu/building-blocks 104.27.160.199
2017-11-16 14:23:27 +0100
0 - 0 - 2 eu-spocs-starterkit.eu/https:_/www2.itau.com. (...) 104.27.160.199
2017-10-18 14:26:05 +0200
0 - 0 - 2 eu-spocs-starterkit.eu/https:_/www2.itau.com. (...) 104.27.161.199
2017-09-17 23:57:05 +0200
0 - 0 - 2 www.eu-spocs-starterkit.eu/https:_/www2.itau. (...) 104.27.160.199
2017-09-17 16:54:50 +0200
0 - 0 - 2 eu-spocs-starterkit.eu/https:_/www2.itau.com. (...) 104.27.161.199
2017-09-16 19:55:12 +0200
0 - 0 - 2 eu-spocs-starterkit.eu/https:_/www2.itau.com. (...) 104.27.160.199
2017-09-14 00:54:34 +0200
0 - 0 - 2 www.eu-spocs-starterkit.eu/https:_/www2.itau. (...) 104.27.160.199


JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (11)


Request Response
                                        
                                            GET /https:/www2.itau.com.br/atendimento/ HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.27.161.199
HTTP/1.1 503 Service Temporarily Unavailable
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 30 Jul 2017 09:27:47 GMT
Transfer-Encoding: chunked
Connection: close
Set-Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867; expires=Mon, 30-Jul-18 09:27:47 GMT; path=/; domain=.eu-spocs-starterkit.eu; HttpOnly
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Server: cloudflare-nginx
CF-RAY: 386748ba918d428b-OSL


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   4513
Md5:    c2fb21c4b20d7319a439ca42957f38af
Sha1:   4a356f70448839ebad45526e6fb2fc6a00e36de7
Sha256: 781ddf1952873400f78912430b39933c99967449c7cd8373acf5b1a8dc708f6b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867

                                         
                                         104.27.161.199
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 30 Jul 2017 09:27:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 386748bc8251428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   247
Md5:    8bef991b36c9715500683efd50a9bbfb
Sha1:   183d9bdde200ad66df23e2ab7af0c960ef18b901
Sha256: 682a36bffc64bc684c232df9bc23af34f7c4eafade7b61e21ff2e240d39cc021
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867

                                         
                                         104.27.161.199
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 30 Jul 2017 09:27:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 386748cf319b428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   247
Md5:    8bef991b36c9715500683efd50a9bbfb
Sha1:   183d9bdde200ad66df23e2ab7af0c960ef18b901
Sha256: 682a36bffc64bc684c232df9bc23af34f7c4eafade7b61e21ff2e240d39cc021
                                        
                                            GET /cdn-cgi/l/chk_jschl?jschl_vc=17c6788357123254ba628811936e664e&pass=1501406871.615-cghoPGeO3L&jschl_answer=28823 HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867

                                         
                                         104.27.161.199
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Date: Sun, 30 Jul 2017 09:27:51 GMT
Content-Length: 165
Connection: keep-alive
Set-Cookie: cf_clearance=08f95ae38350410d6cb511ac2f5a31d6fed1f792-1501406871-14400; path=/; expires=Sun, 30-Jul-17 14:27:51 GMT; domain=.eu-spocs-starterkit.eu; HttpOnly
Location: http://eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/
Server: cloudflare-nginx
CF-RAY: 386748d553c2428b-OSL
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text
Size:   165
Md5:    a416e84052b8142f9401cc16dc9a4fa8
Sha1:   a0a66399195adcbea869e395b1ebcdccd7d20624
Sha256: b1fdb2af20656a321fce98ca65fdb828a1b462cee49948defb65d6b4e28c4917
                                        
                                            GET /https:/www2.itau.com.br/atendimento/ HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867; cf_clearance=08f95ae38350410d6cb511ac2f5a31d6fed1f792-1501406871-14400

                                         
                                         104.27.161.199
HTTP/1.1 404 Category not found
Content-Type: text/html; charset=utf-8
                                        
Date: Sun, 30 Jul 2017 09:27:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Cache-Control: no-cache
Pragma: no-cache
Set-Cookie: 42fc36a920825b28b3384924984b12cf=9gvrrs962hbnhvdnpip0qmo635; path=/
Server: cloudflare-nginx
CF-RAY: 386748d573d2428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1309
Md5:    0985cb43318512a2aa71423470e2d7db
Sha1:   3bb826485bd53e1002fcac84b935a83100948f38
Sha256: ad30a8fb6df3f0d3bd15770ef9d682d50fe12b8a471a9c55c91b61f00e51dd70

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /templates/starterkit/css/print.css HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867; cf_clearance=08f95ae38350410d6cb511ac2f5a31d6fed1f792-1501406871-14400; 42fc36a920825b28b3384924984b12cf=9gvrrs962hbnhvdnpip0qmo635

                                         
                                         104.27.161.199
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 30 Jul 2017 09:27:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 386748d7d46642af-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   261
Md5:    2ed822a1ba68501f572eb735ec7915d2
Sha1:   58a164a669716860a37cf21a3bff1b134ab40ea2
Sha256: 3097955258b9ca6fb058f137d914dfd5ca5cbf6e08b3c3f21557b9e2796de5cb
                                        
                                            GET /templates/starterkit/css/layout.css HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867; cf_clearance=08f95ae38350410d6cb511ac2f5a31d6fed1f792-1501406871-14400; 42fc36a920825b28b3384924984b12cf=9gvrrs962hbnhvdnpip0qmo635

                                         
                                         104.27.161.199
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 30 Jul 2017 09:27:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 386748d7c42b42a3-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   261
Md5:    75ba201464013c721bc33b35e6694a23
Sha1:   886a6fd8105939bd0e6320bf1eefe8c3c34a1354
Sha256: 83e9d52ed743e38e738d8f85825033e21bf114465c223ce5e88ef22224cf4fd8
                                        
                                            GET /templates/system/css/system.css HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867; cf_clearance=08f95ae38350410d6cb511ac2f5a31d6fed1f792-1501406871-14400; 42fc36a920825b28b3384924984b12cf=9gvrrs962hbnhvdnpip0qmo635

                                         
                                         104.27.161.199
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 30 Jul 2017 09:27:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 04 Jan 2013 09:01:28 GMT
Etag: W/"8e149c-380-4d272b98d6a00"
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Sun, 30 Jul 2017 13:27:52 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 386748d7b49b428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   428
Md5:    853b650c00fc6ba3aa4281e98640dd3f
Sha1:   e67ef59a7110fa109f3eb2b0943de9e1a4449cbe
Sha256: f946078c86af6eda17177c9dd45b67cce55e927db32d187645971d4402daee28
                                        
                                            GET /templates/starterkit/css/position.css HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867; cf_clearance=08f95ae38350410d6cb511ac2f5a31d6fed1f792-1501406871-14400; 42fc36a920825b28b3384924984b12cf=9gvrrs962hbnhvdnpip0qmo635

                                         
                                         104.27.161.199
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 30 Jul 2017 09:27:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 386748d7c0bb426d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   261
Md5:    d67b73630dcf59023962031c6a02db03
Sha1:   81e419b2786f965e85268bc6dacd38cdd3cde75c
Sha256: 93bc2b25acc2dbdf7e7211e571b5f762bbf80ffca3ba0cb8fe6402ac9e971d37
                                        
                                            GET /templates/starterkit/css/.css HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu-spocs-starterkit.eu/https:/www2.itau.com.br/atendimento/
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867; cf_clearance=08f95ae38350410d6cb511ac2f5a31d6fed1f792-1501406871-14400; 42fc36a920825b28b3384924984b12cf=9gvrrs962hbnhvdnpip0qmo635

                                         
                                         104.27.161.199
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 30 Jul 2017 09:27:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 386748d7d3674285-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   258
Md5:    43394cf68cde2b3fd655522e62b0235b
Sha1:   89e19fa2085707030107ceb7078348b621d1b2ad
Sha256: 49e03f0644366dbc46a9f07a7addab078095dd88b0957e53f618473f1a9567cd
                                        
                                            GET /media/system/css/system.css HTTP/1.1 
Host: eu-spocs-starterkit.eu
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu-spocs-starterkit.eu/templates/system/css/system.css
Cookie: __cfduid=d47f53c46f4980ebd022d1e9b4e53dceb1501406867; cf_clearance=08f95ae38350410d6cb511ac2f5a31d6fed1f792-1501406871-14400; 42fc36a920825b28b3384924984b12cf=9gvrrs962hbnhvdnpip0qmo635

                                         
                                         104.27.161.199
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 30 Jul 2017 09:27:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 04 Jan 2013 09:01:28 GMT
Etag: W/"601619-5a6-4d272b98d6a00"
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Sun, 30 Jul 2017 13:27:52 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 386748d8e4d742af-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   551
Md5:    18fc5429a856a43254bc02396ffe3c4b
Sha1:   0a9831879b41df951359bb57576b4d319c3bc5c4
Sha256: ba1da041ed87513f6686e3f59240f1911901c1cde47905319cd5355879ce8385