Overview

URL nes.nexxtech.fr/assets/apps/css/dixi.grup.zakaz.zip
IP163.172.104.96
ASNAS12876 ONLINE S.A.S.
Location United Kingdom
Report completed2019-02-13 16:09:27 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-13 2 nes.nexxtech.fr/assets/apps/css/dixi.grup.zakaz.zip Malware
DNS-BH  No alerts detected
mnemonic secure dns
Added / Verified Severity Host Comment
2019-02-13 2 nexxtech.fr Blacklisted


Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 163.172.104.96

Date UQ / IDS / BL URL IP
2019-02-14 23:47:06 +0100
0 - 0 - 2 alax.nexxtech.fr/images/dixi.grup.zakaz.zip 163.172.104.96
2019-02-14 05:07:33 +0100
0 - 0 - 2 alax.nexxtech.fr/images/dixi.grup.zakaz.zip 163.172.104.96
2019-02-13 19:34:41 +0100
0 - 0 - 2 alax.nexxtech.fr/images/dixi.grup.zakaz.zip 163.172.104.96
2019-02-12 01:13:08 +0100
0 - 0 - 4 nexxtech.fr/css/fonts/font-awesome/css/ashan. (...) 163.172.104.96
2019-02-10 11:14:42 +0100
0 - 0 - 2 www.nexxtech.fr/css/fonts/font-awesome/css/as (...) 163.172.104.96
2019-02-10 05:20:28 +0100
0 - 0 - 2 www.nexxtech.fr/css/fonts/font-awesome/css/as (...) 163.172.104.96

Last 10 reports on ASN: AS12876 ONLINE S.A.S.

Date UQ / IDS / BL URL IP
2019-05-23 05:28:08 +0200
0 - 0 - 1 tennistartas.fr/wp-includes/ssh/index.php 62.210.196.169
2019-05-23 05:26:57 +0200
0 - 0 - 1 tosplay.qqwho.cc/apk/2017/04/24/4260Po25pal17.apk 62.210.247.99
2019-05-23 05:26:19 +0200
0 - 0 - 1 tosplay.qqwho.cc/apk/2017/04/25/40117Po56pal17.apk 62.210.247.99
2019-05-23 04:40:34 +0200
0 - 0 - 1 www.directapk.net/2EXo 163.172.19.193
2019-05-23 03:06:07 +0200
0 - 0 - 1 vracpeche.fr/css/frez4582/step2.php 195.154.154.148
2019-05-23 01:46:12 +0200
0 - 0 - 1 magento.cekwa.com/brands/kaemingk_decoration 212.83.185.229
2019-05-23 01:34:33 +0200
0 - 0 - 1 noobminer.newblackage.com/672C11AA6BE9427F8AE (...) 195.154.133.145
2019-05-23 01:29:53 +0200
0 - 1 - 1 alwaysup.main4playcontentsnet.icu/ 62.210.14.91
2019-05-23 01:27:36 +0200
0 - 1 - 1 sipeukanbonxer.gq/docusign9.zip 62.210.119.244
2019-05-23 01:25:55 +0200
0 - 0 - 1 hairblog.fr/blog/coloration-grise-tres-tendan (...) 212.83.135.158

No other reports on domain: nexxtech.fr



JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (1)


Request Response
                                        
                                            GET /assets/apps/css/dixi.grup.zakaz.zip HTTP/1.1 
Host: nes.nexxtech.fr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         163.172.104.96
HTTP/1.1 200 OK
Content-Type: application/zip
                                        
Date: Wed, 13 Feb 2019 15:08:54 GMT
Server: Apache
Last-Modified: Thu, 07 Feb 2019 15:17:51 GMT
Etag: "d11-5814f588c0a73"
Accept-Ranges: bytes
Content-Length: 3345
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Zip archive data, at least v2.0 to extract
Size:   3345
Md5:    a4dcbfdd67c4e93142d6cf2bd62f8b94
Sha1:   7404e84f6b8eeea1e3fc41b7b014413964369ecd
Sha256: ac296ac030559e534b75aa454a3c8f867301159ad9485f2a0bedd4c977354f5d

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted