Overview

URL nes.nexxtech.fr/assets/apps/css/dixi.grup.zakaz.zip
IP163.172.104.96
ASNAS12876 ONLINE S.A.S.
Location United Kingdom
Report completed2019-02-13 16:09:27 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-13 2 nes.nexxtech.fr/assets/apps/css/dixi.grup.zakaz.zip Malware
DNS-BH  No alerts detected
mnemonic secure dns
Added / Verified Severity Host Comment
2019-02-13 2 nexxtech.fr Blacklisted


Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 163.172.104.96

Date UQ / IDS / BL URL IP
2019-02-14 23:47:06 +0100
0 - 0 - 2 alax.nexxtech.fr/images/dixi.grup.zakaz.zip 163.172.104.96
2019-02-14 05:07:33 +0100
0 - 0 - 2 alax.nexxtech.fr/images/dixi.grup.zakaz.zip 163.172.104.96
2019-02-13 19:34:41 +0100
0 - 0 - 2 alax.nexxtech.fr/images/dixi.grup.zakaz.zip 163.172.104.96
2019-02-12 01:13:08 +0100
0 - 0 - 4 nexxtech.fr/css/fonts/font-awesome/css/ashan. (...) 163.172.104.96
2019-02-10 11:14:42 +0100
0 - 0 - 2 www.nexxtech.fr/css/fonts/font-awesome/css/as (...) 163.172.104.96
2019-02-10 05:20:28 +0100
0 - 0 - 2 www.nexxtech.fr/css/fonts/font-awesome/css/as (...) 163.172.104.96

Last 10 reports on ASN: AS12876 ONLINE S.A.S.

Date UQ / IDS / BL URL IP
2019-03-24 05:59:52 +0100
0 - 3 - 0 comboire3.epok.network/ 163.172.55.41
2019-03-24 05:48:55 +0100
0 - 0 - 3 mother-eagle.com/bigshuju 62.210.132.55
2019-03-24 05:35:01 +0100
0 - 0 - 46 metaplat.eu/ 212.83.164.31
2019-03-24 05:11:50 +0100
0 - 0 - 1 www.planetadiversion.com.co/beachten/x.zip 163.172.114.139
2019-03-24 05:11:44 +0100
0 - 0 - 2 planetadiversion.com.co/beachten/x.zip 163.172.114.139
2019-03-24 05:07:19 +0100
0 - 2 - 0 https://www.the4redirectvideoperfectly.icu/?t (...) 62.210.7.195
2019-03-24 02:25:18 +0100
0 - 1 - 32 poscielpoduszki.pl/ 195.154.46.234
2019-03-24 02:23:41 +0100
0 - 0 - 1 liczarkibanknotow.com/ 195.154.46.234
2019-03-24 02:14:20 +0100
0 - 5 - 0 youliuyuwdksjhfscjudjfgd.tk/ 212.83.154.169
2019-03-24 01:33:54 +0100
0 - 0 - 1 tosplay.qqwho.cc/apk/2017/04/24/16237Po7pal17.apk 62.210.247.99

No other reports on domain: nexxtech.fr



JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (1)


Request Response
                                        
                                            GET /assets/apps/css/dixi.grup.zakaz.zip HTTP/1.1 
Host: nes.nexxtech.fr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         163.172.104.96
HTTP/1.1 200 OK
Content-Type: application/zip
                                        
Date: Wed, 13 Feb 2019 15:08:54 GMT
Server: Apache
Last-Modified: Thu, 07 Feb 2019 15:17:51 GMT
Etag: "d11-5814f588c0a73"
Accept-Ranges: bytes
Content-Length: 3345
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Zip archive data, at least v2.0 to extract
Size:   3345
Md5:    a4dcbfdd67c4e93142d6cf2bd62f8b94
Sha1:   7404e84f6b8eeea1e3fc41b7b014413964369ecd
Sha256: ac296ac030559e534b75aa454a3c8f867301159ad9485f2a0bedd4c977354f5d

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted