Overview

URL apk.wdjcdn.com/1/e2
IP14.116.140.39
ASNAS4134 Chinanet
Location China
Report completed2019-01-03 21:50:25 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-01-03 2 apk.wdjcdn.com/1/e2 Malware
2019-01-03 2 ali-apk.wdjcdn.com/1/e2 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 14.116.140.39

Date UQ / IDS / BL URL IP
2019-02-16 11:20:06 +0100
0 - 0 - 2 apk.wdjcdn.com/d/50/47f1e233ce434a2b82d10e98b (...) 14.116.140.39
2019-02-14 06:17:32 +0100
0 - 0 - 2 apk.wdjcdn.com/0/cf/85ca774d848a43c9b5f1b9852 (...) 14.116.140.39
2019-02-12 11:36:29 +0100
0 - 0 - 2 apk.wdjcdn.com/d/20/29aeebb0e9a57974bc3947370 (...) 14.116.140.39
2019-02-12 11:06:58 +0100
0 - 0 - 2 apk.wdjcdn.com/f/31/95a933f549cda5f822e153ba2 (...) 14.116.140.39
2019-02-12 04:01:30 +0100
0 - 0 - 2 apk.wdjcdn.com/5/66/f952f2b31a8b9ff167c6f9556 (...) 14.116.140.39
2019-02-11 19:21:00 +0100
0 - 0 - 2 apk.wdjcdn.com/f/ed/2aa059f60a76e8a82de28caa2 (...) 14.116.140.39
2019-02-11 19:20:26 +0100
0 - 0 - 2 apk.wdjcdn.com/9/15/e3c0cf13a8dc8436d2d5cdd30 (...) 14.116.140.39
2019-02-11 19:20:02 +0100
0 - 0 - 2 apk.wdjcdn.com/4/d5/ed1f7eabbe891b67ce3a30f39 (...) 14.116.140.39
2019-02-11 19:17:16 +0100
0 - 0 - 2 apk.wdjcdn.com/c/3c/464ed7e029a57dce2547a9c69 (...) 14.116.140.39
2019-02-10 06:42:48 +0100
0 - 0 - 2 apk.wdjcdn.com/e/55/99bbd6bb53f2b8cc26c68cef7 (...) 14.116.140.39

Last 10 reports on ASN: AS4134 Chinanet

Date UQ / IDS / BL URL IP
2019-02-20 17:40:52 +0100
0 - 0 - 1 zhushou.52lishi.com/jiasuqi/yxbaobd/bd_4_18259.exe 218.75.153.33
2019-02-20 17:40:45 +0100
0 - 0 - 1 zhushou.52lishi.com/jiasuqi/yxbaobd/bd_4_40707.exe 218.75.153.33
2019-02-20 17:39:55 +0100
0 - 1 - 1 c.img001.com/re58/kele_20080053023.exe 220.170.48.77
2019-02-20 17:39:54 +0100
0 - 0 - 1 c.img001.com/re58/kele_23132007652.exe 220.170.48.77
2019-02-20 17:39:49 +0100
0 - 1 - 1 c.img001.com/re58/pingguo_22000023082.exe 220.170.48.76
2019-02-20 17:39:49 +0100
0 - 1 - 1 c.img001.com/re58/pingguo_22093818215.exe 220.170.48.84
2019-02-20 17:39:48 +0100
0 - 1 - 1 c.img001.com/re58/kele_20090196805.exe 220.170.48.76
2019-02-20 17:39:48 +0100
0 - 0 - 1 c.img001.com/re58/pingguo_21107073652.exe 220.170.48.77
2019-02-20 17:39:47 +0100
0 - 0 - 1 c.img001.com/re58/qixi_20090214050.exe 220.170.48.84
2019-02-20 17:39:46 +0100
0 - 1 - 1 c.img001.com/re58/pingguo_20090127087.exe 220.170.48.84

No other reports on domain: wdjcdn.com



JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (4)


Request Response
                                        
                                            GET /1/e2 HTTP/1.1 
Host: apk.wdjcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         14.116.140.39
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx/1.10.1
Date: Thu, 03 Jan 2019 20:49:53 GMT
Content-Length: 161
Connection: keep-alive
Location: http://ali-apk.wdjcdn.com/1/e2


--- Additional Info ---
Magic:  HTML document text
Size:   161
Md5:    563087198d40f30ca57159065ade2f5a
Sha1:   ecbd57810f291921057a409123869ccba39e9b26
Sha256: 301a5dc6af4eb623afe999cb4d0511a05f83850b1b7b434064b8ed534ead9109

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /1/e2 HTTP/1.1 
Host: ali-apk.wdjcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         195.59.70.250
HTTP/1.1 400 Bad Request
Content-Type: text/html;charset=iso-8859-1
                                        
Server: Tengine
Content-Length: 340
Connection: keep-alive
Date: Thu, 03 Jan 2019 20:49:54 GMT
Cache-Control: must-revalidate,no-cache,no-store
Ali-Swift-Global-Savetime: 1546548594
Via: cache23.l2de1[1229,400-1280,M], cache7.l2de1[1230,0], cache2.uk1[1258,400-1280,M], cache4.uk1[1260,0]
X-Swift-Error: orig response 4XX error, orig response 4XX error
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 03 Jan 2019 20:49:54 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: c33b46cc15465485935544139e


--- Additional Info ---
Magic:  HTML document text
Size:   340
Md5:    c8eb6ed71ae214c8e0ddb14b1749ac64
Sha1:   24c40d0cd98c81e8e4e98304911a1bc8295ff374
Sha256: c9b1c3866d0c81b45e448635bac851392e96d459e07013ce51116a8c23b9a1a2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ali-apk.wdjcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         195.59.70.250
HTTP/1.1 400 Bad Request
Content-Type: text/html;charset=iso-8859-1
                                        
Server: Tengine
Content-Length: 347
Connection: keep-alive
Date: Thu, 03 Jan 2019 20:49:55 GMT
Cache-Control: must-revalidate,no-cache,no-store
Ali-Swift-Global-Savetime: 1546548596
Via: cache63.l2de1[1237,400-1280,M], cache13.l2de1[1238,0], cache10.uk1[1266,400-1280,M], cache4.uk1[1269,0]
X-Swift-Error: orig response 4XX error, orig response 4XX error
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 03 Jan 2019 20:49:56 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: c33b46cc15465485949095883e


--- Additional Info ---
Magic:  HTML document text
Size:   347
Md5:    e5eaaa381999f3c76599bec7af6a580f
Sha1:   8b7d71f47074ef2223b24734182745f8d6eefb18
Sha256: 3ca648069cf795258956c5a1074e7ebe78af97d7555a86494971fb6fba4a99fe
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ali-apk.wdjcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         195.59.70.250
HTTP/1.1 400 Bad Request
Content-Type: text/html;charset=iso-8859-1
                                        
Server: Tengine
Content-Length: 347
Connection: keep-alive
Date: Thu, 03 Jan 2019 20:49:57 GMT
Cache-Control: must-revalidate,no-cache,no-store
Ali-Swift-Global-Savetime: 1546548598
Via: cache63.l2de1[308,400-1280,M], cache31.l2de1[309,0], cache10.uk1[337,400-1280,M], cache4.uk1[340,0]
X-Swift-Error: orig response 4XX error, orig response 4XX error
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 03 Jan 2019 20:49:58 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: c33b46cc15465485979101999e


--- Additional Info ---
Magic:  HTML document text
Size:   347
Md5:    e5eaaa381999f3c76599bec7af6a580f
Sha1:   8b7d71f47074ef2223b24734182745f8d6eefb18
Sha256: 3ca648069cf795258956c5a1074e7ebe78af97d7555a86494971fb6fba4a99fe