Report Overview
Visitedpublic
2025-08-01 01:08:45
Tags
Submit Tags
URL
ugfkgc.blogspot.jp/
Finishing URL
gatavalen.cc/payouts/
IP / ASN
142.250.178.65
Title
Bitcoin Mining
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
7
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
getk100.cc 3 alert(s) on this Domain | unknown | 2025-06-04 | 2025-06-04 | 2025-07-25 | 1.4 kB | 3.2 kB |  185.208.156.66 |  |
ugfkgc.blogspot.jp | unknown | unknown | No data | No data | 487 B | 491 B | 142.250.178.33 |   |
get188.info 2 alert(s) on this Domain | unknown | 2025-02-23 | 2025-02-27 | 2025-07-26 | 1.1 kB | 775 B | 185.208.156.66 | |
ugfkgc.blogspot.com | unknown | unknown | No data | No data | 488 B | 82 kB | 142.250.74.161 |    |
gatavalen.cc 56 alert(s) on this Domain | unknown | 2025-02-04 | 2025-02-04 | 2025-07-26 | 17 kB | 3.9 MB |  193.233.86.34 |     |
images.unsplash.com | 4519 | 2013-05-29 | 2015-08-06 | 2025-07-29 | 2.7 kB | 78 kB | 151.101.130.208 | |
godprox.cc 2 alert(s) on this Domain | unknown | 2025-03-07 | 2025-03-13 | 2025-07-30 | 521 B | 3.2 kB | 193.233.86.34 |  |
sharkboss.top | unknown | 2023-09-07 | 2023-11-08 | 2025-07-25 | 440 B | 848 B |  172.67.129.154 |  |
api.coingecko.com | 17782 | 2014-03-26 | 2018-05-18 | 2025-07-31 | 1.3 kB | 4.0 kB | 104.20.41.132 | |
plus.unsplash.com | unknown | 2013-05-29 | 2022-07-20 | 2025-07-30 | 553 B | 14 kB | 151.101.130.208 |
LiteSpeed (Web servers)
LiteSpeed is a high-scalability web server.OpenGSE (Web servers)
OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.Java (Programming languages)
Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.Python (Programming languages)
Python is an interpreted and general-purpose programming language.Clipboard.js (JavaScript libraries)
Blogger (Blogs)
Blogger is a blog-publishing service that allows multi-user blogs with time-stamped entries.Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Nuxt.js (JavaScript frameworks, Web frameworks, Web servers, Static site generator)
Nuxt is a Vue framework for developing modern web applications.Node.js (Programming languages)
Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.Vue.js (JavaScript frameworks)
Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.PHP (Programming languages)
PHP is a general-purpose scripting language used for web development.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| medium | 185.208.156.66 | Client IP | ET DROP Spamhaus DROP Listed Traffic Inbound group 33 |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| Quad9 DNS | gatavalen.cc | malicious | Sinkholed |
| OpenPhish | gatavalen.cc | phishing | Phishing - Generic/Spear Phishing |
| PhishTank | gatavalen.cc/payouts/ | phishing | Phishing - Other |
| Quad9 DNS | getk100.cc | malicious | Sinkholed |
| Quad9 DNS | godprox.cc | malicious | Sinkholed |
| OpenPhish | godprox.cc | phishing | Phishing - Generic/Spear Phishing |
| Quad9 DNS | get188.info | malicious | Sinkholed |
JavaScript (7)
No JavaScripts
HTTP Transactions (44)
| URL | IP | Response | Size |
|---|