Overview

URL patch2.51mag.com/newpatch24/gta4cdfix.rar
IP61.153.183.102
ASNAS4134 Chinanet
Location China
Report completed2018-12-06 16:33:26 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-12-06 2 patch2.51mag.com/newpatch24/gta4cdfix.rar Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 61.153.183.102

Date UQ / IDS / BL URL IP
2019-05-20 23:21:44 +0200
0 - 0 - 1 patch2.51mag.com/2012/syndicate_v1.0_tr12.rar 61.153.183.102
2019-05-20 23:17:04 +0200
0 - 0 - 1 patch2.51mag.com/2011/crysis2v12t22.rar 61.153.183.102
2019-05-20 23:16:17 +0200
0 - 0 - 1 patch2.51mag.com/newpatch20/O3tools.rar 61.153.183.102
2019-05-20 23:11:38 +0200
0 - 0 - 1 patch2.99ddd.com/2012/RIDGE.RACER.U.V1.04.PLU (...) 61.153.183.102
2019-05-20 23:10:04 +0200
0 - 0 - 1 patch2.51mag.com/2012/syndicate_v1.0_tr12.rar 61.153.183.102
2019-05-20 23:09:52 +0200
0 - 0 - 1 patch2.51mag.com/2011/crysis2v12t22.rar 61.153.183.102
2019-05-20 19:45:33 +0200
0 - 0 - 1 patch2.51mag.com/newpatch21/swd5trn2.rar 61.153.183.102
2019-05-20 19:44:13 +0200
0 - 0 - 1 patch2.51mag.com/2013/ALI213-Duke.Nukem.3d.ME (...) 61.153.183.102
2019-05-20 19:11:54 +0200
0 - 0 - 1 patch2.51lg.com/newpatch3/mdk-ra2t.rar 61.153.183.102
2019-05-20 17:46:08 +0200
0 - 0 - 1 patch2.51mag.com/newpatch11/tk4crack.rar 61.153.183.102

Last 10 reports on ASN: AS4134 Chinanet

Date UQ / IDS / BL URL IP
2019-05-20 23:32:12 +0200
0 - 0 - 1 jh.xcvftftech.xyz/exe/jihuo/20181214/baofengj (...) 61.147.101.48
2019-05-20 23:32:02 +0200
0 - 1 - 2 jh.01lm.com/jht/Happy88_B054_22691.exe 221.235.187.9
2019-05-20 23:32:00 +0200
0 - 0 - 1 wcy.xiaoshikd.com/28dashen.apk 58.223.172.35
2019-05-20 23:31:45 +0200
0 - 0 - 1 wdyouth.com/uploadfile/2013/0827/201308271005 (...) 61.183.35.125
2019-05-20 23:31:42 +0200
0 - 0 - 1 liim.3glamp.cn/zytyt037.apk 61.131.39.60
2019-05-20 23:30:57 +0200
0 - 1 - 2 jh.01lm.com/jht/Happy88_B004_877258.exe 221.235.187.9
2019-05-20 23:30:42 +0200
0 - 0 - 1 u5.innerpeer.com/pc3/matlab_keygen.zip 58.223.172.35
2019-05-20 23:29:30 +0200
0 - 0 - 1 xzc.198424.com/xiaojingweidaixz.apk 122.225.34.187
2019-05-20 23:29:15 +0200
0 - 1 - 2 jh.01lm.com/jht/Happy88_B033_193152.exe 221.235.187.9
2019-05-20 23:28:57 +0200
0 - 2 - 1 wdxz.riabest.com/yiwan/%E8%B0%83%E6%95%99%E5% (...) 171.11.231.37

No other reports on domain: 51mag.com



JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (1)


Request Response
                                        
                                            GET /newpatch24/gta4cdfix.rar HTTP/1.1 
Host: patch2.51mag.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         61.153.183.102
HTTP/1.1 200 OK
Content-Type: application/x-rar-compressed
                                        
Server: nginx
Date: Thu, 06 Dec 2018 15:32:57 GMT
Content-Length: 27686
Last-Modified: Mon, 19 Mar 2018 08:04:25 GMT
Connection: keep-alive
Etag: "5aaf6f09-6c26"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  RAR archive data, v1d, os: Win32
Size:   27686
Md5:    e5cfcfe84acf3a8d6d4d26bc8f9790e3
Sha1:   adfa642fe297daab415fd6440ec6d7e7658d0b83
Sha256: 3a569206550ca144fa26bda92803c5ab6b4407a10187c04d475efe0193d7d174

Alerts:
  Blacklists:
    - fortinet: Malware