Overview

URL grettta.xtgem.com/index
IP54.36.158.42
ASN
Location United States
Report completed2018-12-13 15:59:59 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 54.36.158.42

Date UQ / IDS / BL URL IP
2019-02-18 05:42:46 +0100
0 - 0 - 1 aetmota.hexat.com/index 54.36.158.42
2019-01-25 15:25:17 +0100
0 - 0 - 0 emailupdatecenter.xtgem.com/index 54.36.158.42
2019-01-21 15:09:44 +0100
0 - 0 - 0 administradordelacuenta.xtgem.com/index 54.36.158.42
2019-01-12 02:08:11 +0100
0 - 4 - 0 romantic.hindi-sms.aarif4u.mywibes.com/?site= (...) 54.36.158.42
2018-11-22 07:31:32 +0100
0 - 0 - 0 mailaokagawauacjpwebmailsrcloginphp5.yn.lt 54.36.158.42
2018-11-16 04:50:42 +0100
0 - 0 - 0 wq.lt/32yP 54.36.158.42
2018-11-14 00:34:16 +0100
0 - 0 - 1 stevendie.xtgem.com/ 54.36.158.42
2018-10-24 17:49:36 +0200
0 - 2 - 0 divine.sextgem.com/ 54.36.158.42
2018-09-29 18:01:28 +0200
0 - 0 - 0 www999.sextgem.com 54.36.158.42
2018-09-28 04:26:36 +0200
0 - 0 - 1 f.xtbook.sextgem.com/index.html/__xtblog_entr (...) 54.36.158.42

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-02-19 00:27:30 +0100
0 - 2 - 0 help.maintree.com/ 52.168.110.187
2019-02-19 00:25:12 +0100
0 - 1 - 0 aif-kaz.kz/ 89.219.32.168
2019-02-19 00:23:55 +0100
0 - 1 - 0 www.autoshutdownpro.com/downloads/autosetup.exe 103.68.164.190
2019-02-19 00:22:57 +0100
0 - 1 - 0 de0678.pw/ 151.106.51.67
2019-02-19 00:20:55 +0100
0 - 2 - 0 instahookupxxx2.top/ 5.101.47.15
2019-02-19 00:18:34 +0100
0 - 0 - 3 https://www.herbalparade.com/aazSKz4SZu@http: (...) 185.230.62.161
2019-02-19 00:17:18 +0100
0 - 0 - 0 https://www.trepup.com/jonmichal 52.209.250.106
2019-02-19 00:15:13 +0100
0 - 0 - 8 www.klkungfu.com/default.php 45.3.62.41
2019-02-19 00:14:26 +0100
0 - 0 - 1 ittalents.pl/ 51.38.132.136
2019-02-19 00:12:43 +0100
0 - 2 - 0 sw.lemoniscool.pw/ 164.132.229.28

No other reports on domain: xtgem.com



JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (6)


Request Response
                                        
                                            GET /index HTTP/1.1 
Host: grettta.xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         54.36.158.42
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 13 Dec 2018 14:59:26 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 2267
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2267
Md5:    3fc936a33645a5ecf49f73f04c0e4830
Sha1:   7c05ed760f8b175d78ff18c9fe704661d59897fd
Sha256: adc5a47c4612221223b0471a803aa22b03d18af0f094d55a7655976af03f69cc
                                        
                                            GET /images/powered_by_xtgem.png HTTP/1.1 
Host: xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://grettta.xtgem.com/index

                                         
                                         178.33.123.218
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 13 Dec 2018 14:24:24 GMT
Last-Modified: Mon, 11 Dec 2017 13:05:49 GMT
Etag: "28b0-5601031744540"
Content-Length: 10416
Cache-Control: max-age=2592000
Expires: Sat, 12 Jan 2019 14:24:24 GMT
X-Ngz: 1
Age: 2102
X-Cache: HIT
X-Cache-Hits: 269
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  PNG image, 235 x 45, 8-bit/color RGBA, non-interlaced
Size:   10416
Md5:    1d7efb1ea26cd9d98d5d5e6c97a5ba9f
Sha1:   b174180a63db2679e650232dd1351d110d5f7270
Sha256: 4e99adbc172ae5f3d664308a109b0ad623f6f0fc869eb421b58c5e05578495bf
                                        
                                            GET /100/50/-/3b6c32f88af4658b12f405e98a802385/backtooldschool.xtgem.com/images/blog/pacman-rainbows-and-roller-ska-4284.jpg HTTP/1.1 
Host: 3.thumbs.xtstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://grettta.xtgem.com/index

                                         
                                         178.33.123.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 13 Dec 2018 14:57:52 GMT
Cache-Control: max-age=172800, pre-check=172800
Expires: Sat, 15 Dec 2018 14:57:52 GMT
Last-Modified: Sun, 28 Oct 2018 05:28:59 GMT
Sent-XS: 0.000
X-Ngz: 1
Etag: "750-0"
Content-Length: 1872
Age: 94
X-Cache: HIT
X-Cache-Hits: 24
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1872
Md5:    f1c2b86b92e3e1b961d3db92d6cdf4a8
Sha1:   0520594c2a6d513a30e4c618b1acfae7f8a71a04
Sha256: 417bc1845525cb09a8bb7450808c2fc0c1ac774a97483e412c2b77a3d6037bc4
                                        
                                            GET /quant.js HTTP/1.1 
Host: edge.quantserve.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://grettta.xtgem.com/index

                                         
                                         18.184.40.88
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: private, no-transform, must-revalidate, max-age=604800
Content-Encoding: gzip
Date: Thu, 13 Dec 2018 14:59:27 GMT
Etag: M0-e2b9884a
Expires: Thu, 20 Dec 2018 14:59:27 GMT
Last-Modified: Thu, 13-Dec-2018 14:59:27 GMT
Server: QS
Vary: Accept-Encoding
Content-Length: 5456
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5456
Md5:    ea55b8aade97737bdb3ac34239afe3e9
Sha1:   5bd3746efdffacbe0a0415d8760167834bb181ee
Sha256: d98cf4549e148788618a1ba008dc66d210d0063608b7c0acdfceb11430dd1579
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: grettta.xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         54.36.158.42
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 13 Dec 2018 14:59:27 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 2230
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2230
Md5:    4877aacac67c348c2ac7a879f714ab7c
Sha1:   476b9cfbc9e230653f2d9dacf58e7cf687de85f3
Sha256: 3747ed2995861ffba60280437cb12a0a216190181193a365f1cc06365136e2aa
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: grettta.xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         54.36.158.42
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 13 Dec 2018 14:59:27 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 2230
Age: 2
X-Cache: HIT
X-Cache-Hits: 1
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2230
Md5:    4877aacac67c348c2ac7a879f714ab7c
Sha1:   476b9cfbc9e230653f2d9dacf58e7cf687de85f3
Sha256: 3747ed2995861ffba60280437cb12a0a216190181193a365f1cc06365136e2aa