Overview

URL grettta.xtgem.com/index
IP54.36.158.42
ASN
Location United States
Report completed2018-12-13 15:59:59 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 54.36.158.42

Date UQ / IDS / BL URL IP
2019-03-22 23:00:02 +0100
0 - 1 - 0 arab-xxx.sextgem.com/ 54.36.158.42
2019-03-19 13:26:29 +0100
0 - 0 - 3 web4siegen.jw.lt/ 54.36.158.42
2019-02-26 02:04:16 +0100
0 - 0 - 0 horty.uiwap.com/index 54.36.158.42
2019-02-25 18:54:46 +0100
0 - 0 - 1 aetmota.hexat.com/index 54.36.158.42
2019-02-18 05:42:46 +0100
0 - 0 - 1 aetmota.hexat.com/index 54.36.158.42
2019-01-25 15:25:17 +0100
0 - 0 - 0 emailupdatecenter.xtgem.com/index 54.36.158.42
2019-01-21 15:09:44 +0100
0 - 0 - 0 administradordelacuenta.xtgem.com/index 54.36.158.42
2019-01-12 02:08:11 +0100
0 - 4 - 0 romantic.hindi-sms.aarif4u.mywibes.com/?site= (...) 54.36.158.42
2018-11-22 07:31:32 +0100
0 - 0 - 0 mailaokagawauacjpwebmailsrcloginphp5.yn.lt 54.36.158.42
2018-11-16 04:50:42 +0100
0 - 0 - 0 wq.lt/32yP 54.36.158.42

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-04-19 09:12:53 +0200
0 - 0 - 6 dev.upnewz.in/ 35.225.199.168
2019-04-19 09:12:33 +0200
0 - 0 - 7 upnewz.in/ 35.225.199.168
2019-04-19 09:10:57 +0200
0 - 0 - 1 down.zmnds.com/cx/180806/4/CaoPIXMAiP2780@151 (...) 163.171.133.123
2019-04-19 09:10:43 +0200
0 - 0 - 2 csgoskinsinfo.com/bitcoin/bitcoin/bitcoin/bit (...) 37.252.13.214
2019-04-19 09:09:28 +0200
0 - 0 - 1 f5.market.mi-img.com/download/AppStore/0327a5 (...) 163.171.140.206
2019-04-19 09:07:41 +0200
0 - 0 - 1 ri29n.cn/rll 110.42.1.40
2019-04-19 09:05:55 +0200
0 - 0 - 1 clickherenow.racing/monster-strike-the-animat (...) 5.45.84.69
2019-04-19 09:05:53 +0200
0 - 0 - 1 get-ether.gift/img-sys/powered_by_cpanel.svg 198.54.117.198
2019-04-19 09:04:50 +0200
0 - 0 - 3 news-china-ef-com.litedownloadseek.cn/646365.html 128.1.212.185
2019-04-19 09:02:18 +0200
0 - 0 - 1 nothave.com/product/product_detailed.asp-id=2 (...) 154.210.233.106

No other reports on domain: xtgem.com



JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (6)


Request Response
                                        
                                            GET /index HTTP/1.1 
Host: grettta.xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         54.36.158.42
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 13 Dec 2018 14:59:26 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 2267
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2267
Md5:    3fc936a33645a5ecf49f73f04c0e4830
Sha1:   7c05ed760f8b175d78ff18c9fe704661d59897fd
Sha256: adc5a47c4612221223b0471a803aa22b03d18af0f094d55a7655976af03f69cc
                                        
                                            GET /images/powered_by_xtgem.png HTTP/1.1 
Host: xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://grettta.xtgem.com/index

                                         
                                         178.33.123.218
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 13 Dec 2018 14:24:24 GMT
Last-Modified: Mon, 11 Dec 2017 13:05:49 GMT
Etag: "28b0-5601031744540"
Content-Length: 10416
Cache-Control: max-age=2592000
Expires: Sat, 12 Jan 2019 14:24:24 GMT
X-Ngz: 1
Age: 2102
X-Cache: HIT
X-Cache-Hits: 269
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  PNG image, 235 x 45, 8-bit/color RGBA, non-interlaced
Size:   10416
Md5:    1d7efb1ea26cd9d98d5d5e6c97a5ba9f
Sha1:   b174180a63db2679e650232dd1351d110d5f7270
Sha256: 4e99adbc172ae5f3d664308a109b0ad623f6f0fc869eb421b58c5e05578495bf
                                        
                                            GET /100/50/-/3b6c32f88af4658b12f405e98a802385/backtooldschool.xtgem.com/images/blog/pacman-rainbows-and-roller-ska-4284.jpg HTTP/1.1 
Host: 3.thumbs.xtstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://grettta.xtgem.com/index

                                         
                                         178.33.123.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 13 Dec 2018 14:57:52 GMT
Cache-Control: max-age=172800, pre-check=172800
Expires: Sat, 15 Dec 2018 14:57:52 GMT
Last-Modified: Sun, 28 Oct 2018 05:28:59 GMT
Sent-XS: 0.000
X-Ngz: 1
Etag: "750-0"
Content-Length: 1872
Age: 94
X-Cache: HIT
X-Cache-Hits: 24
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1872
Md5:    f1c2b86b92e3e1b961d3db92d6cdf4a8
Sha1:   0520594c2a6d513a30e4c618b1acfae7f8a71a04
Sha256: 417bc1845525cb09a8bb7450808c2fc0c1ac774a97483e412c2b77a3d6037bc4
                                        
                                            GET /quant.js HTTP/1.1 
Host: edge.quantserve.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://grettta.xtgem.com/index

                                         
                                         18.184.40.88
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: private, no-transform, must-revalidate, max-age=604800
Content-Encoding: gzip
Date: Thu, 13 Dec 2018 14:59:27 GMT
Etag: M0-e2b9884a
Expires: Thu, 20 Dec 2018 14:59:27 GMT
Last-Modified: Thu, 13-Dec-2018 14:59:27 GMT
Server: QS
Vary: Accept-Encoding
Content-Length: 5456
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5456
Md5:    ea55b8aade97737bdb3ac34239afe3e9
Sha1:   5bd3746efdffacbe0a0415d8760167834bb181ee
Sha256: d98cf4549e148788618a1ba008dc66d210d0063608b7c0acdfceb11430dd1579
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: grettta.xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         54.36.158.42
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 13 Dec 2018 14:59:27 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 2230
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2230
Md5:    4877aacac67c348c2ac7a879f714ab7c
Sha1:   476b9cfbc9e230653f2d9dacf58e7cf687de85f3
Sha256: 3747ed2995861ffba60280437cb12a0a216190181193a365f1cc06365136e2aa
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: grettta.xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         54.36.158.42
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 13 Dec 2018 14:59:27 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 2230
Age: 2
X-Cache: HIT
X-Cache-Hits: 1
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2230
Md5:    4877aacac67c348c2ac7a879f714ab7c
Sha1:   476b9cfbc9e230653f2d9dacf58e7cf687de85f3
Sha256: 3747ed2995861ffba60280437cb12a0a216190181193a365f1cc06365136e2aa