Overview

URL ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg200607181632031.rar
IP42.51.203.88
ASNAS56005 Henan Telcom Union Technology Co., LTD
Location China
Report completed2019-03-12 14:52:00 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-12 2 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg200607181632031.rar Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 42.51.203.88

Date UQ / IDS / BL URL IP
2019-03-12 14:54:46 +0100
0 - 0 - 1 ccdn.cn/jzsoft/sgtk/sg/yjg20067231524015.rar 42.51.203.88
2019-01-29 10:50:04 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2019-01-24 07:06:01 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2019-01-24 06:51:14 +0100
0 - 0 - 1 ccdn.cn/jzsoft/sgtk/sg/yjg20067231524015.rar 42.51.203.88
2019-01-24 06:51:11 +0100
0 - 0 - 1 ccdn.cn/jzsoft/sgtk/sg/yjg20067231527019.rar 42.51.203.88
2019-01-18 19:43:00 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2018-12-30 14:54:59 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2018-12-30 06:59:38 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2018-12-18 11:48:17 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2018-12-15 22:30:04 +0100
0 - 0 - 1 ccdn.cn/jzsoft/sgtk/sg/yjg20067231524015.rar 42.51.203.88

Last 10 reports on ASN: AS56005 Henan Telcom Union Technology Co., LTD

Date UQ / IDS / BL URL IP
2019-04-01 17:00:27 +0200
0 - 0 - 12 livemo.cn/archives/tag/%E6%84%8F%E5%9B%BE 42.51.10.164
2019-04-01 17:00:27 +0200
0 - 0 - 7 livemo.cn/archives/tag/price 42.51.10.164
2019-03-31 01:23:22 +0100
0 - 0 - 1 up.qo12.cn/hbjx.exe 42.51.208.64
2019-03-30 12:31:51 +0100
0 - 0 - 9 livemo.cn/archives/2004 42.51.10.164
2019-03-29 16:47:34 +0100
0 - 0 - 1 https://bbs.kafan.cn/ 42.51.45.138
2019-03-19 17:08:53 +0100
0 - 0 - 0 42.51.45.170 42.51.45.170
2019-03-19 08:38:23 +0100
0 - 0 - 1 cx-soft.cn/download/shdz1.0.exe 42.51.178.145
2019-03-14 01:57:35 +0100
0 - 0 - 0 42.51.34.150 42.51.34.150
2019-03-14 01:51:45 +0100
0 - 0 - 0 42.51.29.41 42.51.29.41
2019-03-13 10:15:12 +0100
0 - 0 - 0 42.51.34.69 42.51.34.69

Last 10 reports on domain: ccdn.cn

Date UQ / IDS / BL URL IP
2019-03-12 14:54:46 +0100
0 - 0 - 1 ccdn.cn/jzsoft/sgtk/sg/yjg20067231524015.rar 42.51.203.88
2019-01-29 10:50:04 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2019-01-24 07:06:01 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2019-01-24 06:51:14 +0100
0 - 0 - 1 ccdn.cn/jzsoft/sgtk/sg/yjg20067231524015.rar 42.51.203.88
2019-01-24 06:51:11 +0100
0 - 0 - 1 ccdn.cn/jzsoft/sgtk/sg/yjg20067231527019.rar 42.51.203.88
2019-01-18 19:43:00 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2018-12-30 14:54:59 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2018-12-30 06:59:38 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2018-12-18 11:48:17 +0100
0 - 0 - 1 ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg2006071816 (...) 42.51.203.88
2018-12-15 22:30:04 +0100
0 - 0 - 1 ccdn.cn/jzsoft/sgtk/sg/yjg20067231524015.rar 42.51.203.88


JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (6)


Request Response
                                        
                                            GET /block/index.htm HTTP/1.1 
Host: www.htuidc.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdn.cn/jzsoft/excel/sgzz/sgzz2/yjg200607181632031.rar

                                         
                                         42.51.199.6
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Tue, 12 Mar 2019 12:46:24 GMT
Content-Length: 2657
Last-Modified: Mon, 09 Oct 2017 01:42:38 GMT
Etag: "59dad40e-a61"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ISO-8859 HTML document text, with CRLF line terminators
Size:   2657
Md5:    01c72239919738272d152927ac776358
Sha1:   9b7425a71fde0d8578d4b06ecbacc2cff4807f9f
Sha256: ce7d4b598689a0937badacd4a78d0cc0b045e06aef31954a7428cd82c0185149
                                        
                                            GET /block/css/1.css HTTP/1.1 
Host: www.htuidc.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.htuidc.com/block/index.htm

                                         
                                         42.51.199.6
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 12 Mar 2019 12:46:25 GMT
Content-Length: 756
Last-Modified: Wed, 10 Aug 2016 09:43:40 GMT
Etag: "57aaf74c-2f4"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ISO-8859 text, with CRLF line terminators
Size:   756
Md5:    9389e3fa57b97023332d7a2852e209e3
Sha1:   17f1d209d0cc7a15bf1227f9a8cf5e341596d7b2
Sha256: daa754c0121f4cfa62c4545392e342f17a61958622e14633a9a5df8d341b8293
                                        
                                            GET /block/images/bg.jpg HTTP/1.1 
Host: www.htuidc.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.htuidc.com/block/css/1.css

                                         
                                         42.51.199.6
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Tue, 12 Mar 2019 12:46:25 GMT
Content-Length: 78327
Last-Modified: Wed, 10 Aug 2016 09:43:40 GMT
Etag: "57aaf74c-131f7"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   78327
Md5:    8f9a6af0a8f2905437c28e0acf58029e
Sha1:   70e0415e58dd915e2879beeff5589c0eab142661
Sha256: 1e94793416bd7c824d5822af99d7465993379bcb17f7f47540467ff92b5fd66d
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ccdn.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         42.51.203.88
HTTP/1.1 200 ok
Content-Type: text/html;charset=utf-8
                                        


--- Additional Info ---
                                        
                                            GET /jzsoft/excel/sgzz/sgzz2/yjg200607181632031.rar HTTP/1.1 
Host: ccdn.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         42.51.203.88
HTTP/1.1 200 ok
Content-Type: text/html;charset=utf-8
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ccdn.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         42.51.203.88
HTTP/1.1 200 ok
Content-Type: text/html;charset=utf-8
                                        


--- Additional Info ---