Overview

URL lit.powerware.com/ll_download.asp?file=164201535_80upsABB_Rev%20E_Rel.pdf
IP40.143.173.102
ASNAS7349 Windstream Hosted Solutions, LLC
Location United States
Report completed2018-12-14 01:03:50 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-12-14 01:03:15 CET 2  40.143.173.102 Client IP ET POLICY PDF With Embedded File


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 5 reports on IP: 40.143.173.102

Date UQ / IDS / BL URL IP
2019-02-25 18:54:11 +0100
0 - 0 - 0 powerware.com 40.143.173.102
2018-12-14 01:04:48 +0100
0 - 1 - 0 lit.powerware.com/ll_download.asp?file=164201 (...) 40.143.173.102
2018-03-08 14:39:44 +0100
0 - 0 - 0 powerquality.eaton.com 40.143.173.102
2017-10-11 03:25:02 +0200
0 - 2 - 0 powerquality.eaton.com/Support/Software-Drive (...) 40.143.173.102
2017-08-08 14:19:30 +0200
0 - 0 - 0 powerware.com 40.143.173.102

Last 10 reports on ASN: AS7349 Windstream Hosted Solutions, LLC

Date UQ / IDS / BL URL IP
2019-06-26 06:36:21 +0200
0 - 0 - 0 e.christopherandbanks.com/t/o?ssid=35294&subs (...) 216.27.63.21
2019-06-25 21:32:54 +0200
0 - 0 - 0 paradata.com/ 208.86.240.235
2019-06-23 14:43:44 +0200
0 - 0 - 0 bm5150.com 216.27.63.18
2019-06-12 23:14:37 +0200
0 - 0 - 0 https://email.fsastore.com/t/l?ssid=28402&sub (...) 216.27.63.7
2019-06-10 06:33:25 +0200
0 - 0 - 0 e.christopherandbanks.com/t/o?ssid=35294&subs (...) 216.27.63.21
2019-06-07 08:07:08 +0200
0 - 0 - 3 allmemoryusa.com/g766d4ft 216.27.29.41
2019-05-28 14:48:44 +0200
0 - 0 - 0 virtual-coach.com 216.27.7.71
2019-05-28 14:45:28 +0200
0 - 0 - 0 www.barbaraling.com 216.27.29.35
2019-05-27 20:33:02 +0200
0 - 1 - 0 ftp.raxco.com/pub/download/PerfectDisk_Pro_Tr (...) 40.142.20.75
2019-05-26 13:51:21 +0200
0 - 0 - 0 216.27.63.9 216.27.63.9

No other reports on domain: powerware.com



JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (1)


Request Response
                                        
                                            GET /ll_download.asp?file=164201535_80upsABB_Rev%20E_Rel.pdf HTTP/1.1 
Host: lit.powerware.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         40.143.173.102
HTTP/1.1 200 OK
Content-Type: application/pdf
                                        
Cache-Control: private
Transfer-Encoding: chunked
Expires: Fri, 14 Dec 2018 00:02:12 GMT
Content-Disposition: attachment;Filename=164201535_80upsABB_Rev_E_Rel.pdf
Set-Cookie: ASPSESSIONIDCSDSDBCQ=KLGGFBMBPCBOGMLOCAPDFJGN; path=/
Date: Fri, 14 Dec 2018 00:03:12 GMT


--- Additional Info ---
Magic:  PDF document, version 1.4\012 Bio-Rad .PIC Image File 20517 x 17988, 12589 images in file
Size:   3734615
Md5:    5015100dea1760a6ff55ac1b9dfd25a9
Sha1:   bc6517d0cd3c6d8dc8f37aaf991cca75ad3e9853
Sha256: ba500933376963a869a60cd9cbaaa13b804eb1ca08dd486c29b630fee80829a5

Alerts:
  IDS:
    - ET POLICY PDF With Embedded File