Overview

URL qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php
IP52.218.128.119
ASN
Location United States
Report completed2019-04-26 00:37:24 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-04-26 2 qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php Phishing
2019-04-26 2 www.qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php Phishing
2019-04-26 2 www.qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 2 reports on IP: 52.218.128.119

Date UQ / IDS / BL URL IP
2018-12-19 18:37:50 +0100
0 - 0 - 0 chng.it/h6PvBDLTzp 52.218.128.119
2017-07-13 18:59:27 +0200
0 - 3 - 0 crux.farming.tonk.s3-website-us-west-2.amazon (...) 52.218.128.119

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-05-25 03:56:16 +0200
0 - 2 - 1 download.easyspeedpc.net/publishers/26/697/Ea (...) 143.204.51.52
2019-05-25 03:56:11 +0200
0 - 4 - 1 15040.url.246546.com/down/%E6%9C%89%E7%9C%8B% (...) 114.55.188.114
2019-05-25 03:56:08 +0200
0 - 4 - 1 11267.url.9xiazaiqi.com/down/%E4%BC%8A%E8%8B% (...) 114.55.188.114
2019-05-25 03:56:03 +0200
0 - 4 - 1 15061.url.246546.com/xiaz/android2pdf53mb@156 (...) 114.55.188.114
2019-05-25 03:56:03 +0200
0 - 4 - 1 15036.url.246546.com/down/%E6%AC%A7%E6%B4%B2% (...) 139.224.39.0
2019-05-25 03:56:02 +0200
0 - 4 - 1 11312.url.7wkw.com/down/%E4%B8%87%E8%83%BD%E7 (...) 139.224.39.0
2019-05-25 03:56:02 +0200
0 - 4 - 1 15031.url.7wkw.com/down/matlab2015%E4%B8%AD%E (...) 114.55.188.114
2019-05-25 03:55:55 +0200
0 - 4 - 1 15035.url.7wkw.com/down/coreldrawgraphicssuit (...) 114.55.188.114
2019-05-25 03:55:54 +0200
0 - 4 - 1 11217.url.7wkw.com/down/mysql%20server%20v5.5 (...) 139.224.39.0
2019-05-25 03:55:50 +0200
0 - 4 - 1 10836.url.7wkw.com/down/6pdf111MB@156_489931.exe 114.55.188.114

Last 1 reports on domain: qeturah.com

Date UQ / IDS / BL URL IP
2018-11-30 15:58:52 +0100
0 - 0 - 2 qeturah.com/includes/src/Queldorei/Shoppercat (...) 52.218.209.27


JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (14)


Request Response
                                        
                                            GET /includes/src/Queldorei/Shoppercategories/esco/tes/start.php HTTP/1.1 
Host: qeturah.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.218.244.179
HTTP/1.1 301 Moved Permanently
                                        
x-amz-id-2: dzHtIPD1oFzhiXb0wWQ0yPflt38U2UyvPeLhVxyW1ahcmlO1wA1uc/CUo0/5K2ESi79M5+N9rEk=
x-amz-request-id: 2B6522091B9F977F
Date: Thu, 25 Apr 2019 22:36:53 GMT
Location: http://www.qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php
Content-Length: 0
Server: AmazonS3


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /includes/src/Queldorei/Shoppercategories/esco/tes/start.php HTTP/1.1 
Host: www.qeturah.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.26.83.170
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 25 Apr 2019 22:36:52 GMT
Location: https://www.qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php
Server: nginx/1.8.1 + Phusion Passenger 4.0.60
Status: 301 Moved Permanently
X-Powered-By: Phusion Passenger 4.0.60
Content-Length: 0
Connection: keep-alive


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         143.204.51.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=87798
Date: Thu, 25 Apr 2019 22:36:53 GMT
Etag: "5cc0ea7b-1d7"
Expires: Fri, 26 Apr 2019 23:00:11 GMT
Last-Modified: Wed, 24 Apr 2019 23:00:11 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486b.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 9icUhndw2eii2_dtixtoijQIJ7NgzwwZH8PXIMLfDU1fZRyxtc3G-Q==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a21056d6a5d32f77a7dd5e7da89ce16d
Sha1:   28cfd32705d18a854c73869407d610c1e67fc0cc
Sha256: 50d11f8e7b19e8a713a8d41576d495bb946a2dca99576292c6d0d46ebac62aa8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.rootca1.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         143.204.51.72
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1426
Connection: keep-alive
Date: Thu, 25 Apr 2019 22:36:54 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.8/2018-10-18)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990971.cloudfront.net (CloudFront)
X-Amz-Cf-Id: OwSR79rnJGcT7Mn4YXQPQC_AmuHOpsNvxNEtqh9Irgo6lEM9TkKIxg==


--- Additional Info ---
Magic:  data
Size:   1426
Md5:    97cd46685363de754ec9e8415d49fbd0
Sha1:   09ff15144111037e8be0a902d2a94e881a34d444
Sha256: 30cdbcc63042c2bdcd7515c22cde9e34ed839fbf7a269cbcedffe550439cf42d
                                        
                                            GET /includes/src/Queldorei/Shoppercategories/esco/tes/start.php HTTP/1.1 
Host: www.qeturah.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.26.83.170
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Content-Encoding: gzip
Date: Thu, 25 Apr 2019 22:36:54 GMT
Server: nginx/1.8.1 + Phusion Passenger 4.0.60
Status: 404 Not Found
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
X-Powered-By: Phusion Passenger 4.0.60
X-Request-Id: ddea41fd-f9a1-4a45-9102-62fab22eeab9
X-Runtime: 0.003573
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Fri Apr 26 00:36:54 2019
Size:   3099
Md5:    caa492dd91b432b2265f0266b2f02665
Sha1:   542e7fcf389e069446567facc742e18808ae36f0
Sha256: 98755386677854e6857e775aed999b973bb61dae121f46f1aee3d76566240ef7

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 25 Apr 2019 22:36:54 GMT
Accept-Ranges: bytes
Last-Modified: Sat, 20 Apr 2019 07:57:04 GMT
Server: Apache
Etag: 2FCB8D91EC7CC2891208803326B8DC2C59F373B4
Cache-Control: max-age=303027,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp7
X-HW: 1556231814.cds021.sk1.h2,1556231814.cds043.sk1.c
Connection: keep-alive
Content-Length: 472


--- Additional Info ---
Magic:  data
Size:   472
Md5:    fa5a0ab34ca1aea0811670c658e543de
Sha1:   2fcb8d91ec7cc2891208803326b8dc2c59f373b4
Sha256: 773723f03d1a451e6d0f29351fe928263939d02bb792b7697b6e4755288c3808
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 25 Apr 2019 22:36:54 GMT
Accept-Ranges: bytes
Last-Modified: Sun, 21 Apr 2019 23:19:13 GMT
Server: Apache
Etag: 835A9662F400B926022C834EB15D1EA44B7E559A
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp12
X-HW: 1556231814.cds021.sk1.h2,1556231814.cds043.sk1.c
Connection: keep-alive
Content-Length: 727


--- Additional Info ---
Magic:  data
Size:   727
Md5:    bc0e5d4b9657a86a1059c085b0f74f69
Sha1:   835a9662f400b926022c834eb15d1ea44b7e559a
Sha256: f7e580cc194f380c1d6eaddf0da6bfee7526f40ee33643f3cc273ed8749f08f3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 21 Apr 2019 23:19:13 GMT
Etag: 760F2F62BDBA89CEDA65DAE9DE1B2C3EE764CEE7
X-OCSP-Responder-ID: mcdpcaocsp2
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=261085
Expires: Sun, 28 Apr 2019 23:08:19 GMT
Date: Thu, 25 Apr 2019 22:36:54 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0bc6113921a6eda37129f10534bef45f
Sha1:   760f2f62bdba89ceda65dae9de1b2c3ee764cee7
Sha256: 8c407b5f6c40bca6e156cdf952140eb6bbc54f55fd2ff2b4ea21c66f97ed411b
                                        
                                            GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php

                                         
                                         104.19.195.151
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 25 Apr 2019 22:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 17 May 2018 09:19:12 GMT
Etag: W/"5afd4910-7918"
Expires: Tue, 14 Apr 2020 22:36:54 GMT
Cache-Control: public, max-age=30672000
Vary: Accept-Encoding
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Served-In-Seconds: 0.001
CF-Cache-Status: HIT
Strict-Transport-Security: max-age=15780000; includeSubDomains
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4cd3cc6afa7c4273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7102
Md5:    f529ce613d8baf3f3cccfd46f03a084d
Sha1:   84ef851e9885ccc24911e5c03f1cc0d094959cd3
Sha256: ad0cc939bf160d744317828d29614b37cde0ba0ef08365d8f8b919fe89df3caf
                                        
                                            GET /logo2.png HTTP/1.1 
Host: www.qeturah.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php

                                         
                                         52.26.83.170
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Date: Thu, 25 Apr 2019 22:36:54 GMT
Etag: "5c6d3777-5ea"
Last-Modified: Wed, 20 Feb 2019 11:18:15 GMT
Server: nginx/1.8.1
Content-Length: 1514
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 38 x 41, 8-bit/color RGBA, non-interlaced
Size:   1514
Md5:    f9dcf5acf4ee384ef6a2fbc65e1dbe68
Sha1:   d144ff7c0753f7496ffdf6b4c408d8c0c50b3618
Sha256: 4beab92bffd7f568d6dad709f4765b4a57915e7dfd7b7f4e38315e7dfdf67420
                                        
                                            GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
Origin: https://www.qeturah.com

                                         
                                         104.19.195.151
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Date: Thu, 25 Apr 2019 22:36:55 GMT
Content-Length: 98024
Connection: keep-alive
Last-Modified: Thu, 17 May 2018 09:19:12 GMT
Etag: "5afd4910-17ee8"
Expires: Tue, 14 Apr 2020 22:36:55 GMT
Cache-Control: public, max-age=30672000
Vary: Accept-Encoding
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Served-In-Seconds: 0.016
CF-Cache-Status: HIT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=15780000; includeSubDomains
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4cd3cc6c28b942b5-OSL


--- Additional Info ---
Magic:  data
Size:   98024
Md5:    fee66e712a8a08eef5805a46892932ad
Sha1:   28b782240b3e76db824e12c02754a9731a167527
Sha256: ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
                                        
                                            GET /shopping-cart.png HTTP/1.1 
Host: www.qeturah.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php

                                         
                                         52.26.83.170
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Date: Thu, 25 Apr 2019 22:36:55 GMT
Etag: "5c6d3777-27d"
Last-Modified: Wed, 20 Feb 2019 11:18:15 GMT
Server: nginx/1.8.1
Content-Length: 637
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   637
Md5:    ec2d089524696891f15f1b70c8a1e40c
Sha1:   8a107720229171970c75b80c166af4a564c8c1cc
Sha256: 9b2f1a7a8c42fb807f06a52099234ea958719c50c976f3a40b60172245cb2f45
                                        
                                            GET /error.gif HTTP/1.1 
Host: www.qeturah.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.qeturah.com/includes/src/Queldorei/Shoppercategories/esco/tes/start.php

                                         
                                         52.26.83.170
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Date: Thu, 25 Apr 2019 22:36:55 GMT
Etag: "5c6d3777-28183"
Last-Modified: Wed, 20 Feb 2019 11:18:15 GMT
Server: nginx/1.8.1
Content-Length: 164227
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 313 x 428
Size:   164227
Md5:    089007e721e1f22809c0313b670a36f1
Sha1:   3ba6cda3bd24db9e77631ac03b4fa4671d27b840
Sha256: a61ddb94a3e5c0a604e32c7f51d3f2bc2fa7a5b2b9db52735f8a058767d98124
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.qeturah.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.26.83.170
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Accept-Ranges: bytes
Date: Thu, 25 Apr 2019 22:36:56 GMT
Etag: "5c6d3777-86be"
Last-Modified: Wed, 20 Feb 2019 11:18:15 GMT
Server: nginx/1.8.1
Content-Length: 34494
Connection: keep-alive


--- Additional Info ---
Magic:  MS Windows icon resource - 5 icons, 16x16, 256-colors
Size:   34494
Md5:    50f9657b04b4b995cb9d32b68f93c17d
Sha1:   1794e1b6868292f1dd8dc567afd1e0f94f20de45
Sha256: 62a6f79a5d83bcc2faa322a5811dbe4ce45c00f30be62072bdb94ddd5c544dfb