Overview

URL https://urldefense.proofpoint.com/v2/url?u=https-3A__t2.ktrmr.com_secs.aspx-3Fi.project-3DADLSQV-26s-3DGEN24-26id-3D1-26chk-3Dna-26pid-3D319W1-2D1TSG3-2D38&d=DwMDaQ&c=Zl2T6vaIOSZ-iGixmidu-Jjpn1CKtCl7U5wJPI4UCTc&r=BBBtOJWYwPJ2kJewg9P4Xw&m=cTBkVdEjOWQidJInO7pHskKW1AmPCrb0KNQTS5UPzbM&s=2fiSTeM8WIF3TxtN9GzLvo0HjFlLuI59beHRKIy2EWY&e=
IP67.231.146.66
ASNAS26211 Proofpoint, Inc.
Location United States
Report completed2019-03-14 13:14:03 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 67.231.146.66

Date UQ / IDS / BL URL IP
2019-06-17 06:25:32 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-16 22:16:52 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 21:51:24 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 20:06:12 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 20:01:25 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 18:45:48 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 18:37:54 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 16:50:16 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 11:49:43 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-13 23:04:24 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66

Last 10 reports on ASN: AS26211 Proofpoint, Inc.

Date UQ / IDS / BL URL IP
2019-06-17 06:25:32 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-16 22:16:52 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 21:51:24 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 20:06:12 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 20:01:25 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 18:45:48 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 18:37:54 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 16:50:16 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-14 11:49:43 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66
2019-06-13 23:04:24 +0200
0 - 0 - 0 https://urldefense.proofpoint.com/v2/url?u=ht (...) 67.231.146.66

No other reports on domain: proofpoint.com



JavaScript

Executed Scripts (3)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (27)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=87657
Date: Thu, 14 Mar 2019 12:13:31 GMT
Etag: "5c87e0f1-1d7"
Expires: Fri, 15 Mar 2019 12:34:28 GMT
Last-Modified: Tue, 12 Mar 2019 16:40:17 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0033547a3f9e817dfc6445c19ab24f38
Sha1:   27994900f85df7257f6b931fe9d7a1c5939c8e3a
Sha256: 0b0988334de21361bfc9c9bd9b490feb9d5d5debfec6e1859c015c33cf9c342e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=163899
Date: Thu, 14 Mar 2019 12:13:31 GMT
Etag: "5c8a0c7d-1d7"
Expires: Sat, 16 Mar 2019 09:45:10 GMT
Last-Modified: Thu, 14 Mar 2019 08:10:37 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6a59a1be67306a98c9b756d173cd465b
Sha1:   58287265ac02a05fc40e90452db5a33416433383
Sha256: 4a1792cdf5ffb24973b79b0516cb458287e1fb149118309aa945fdc115e534fa
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=151940
Date: Thu, 14 Mar 2019 12:13:31 GMT
Etag: "5c89dff9-1d7"
Expires: Sat, 16 Mar 2019 06:25:51 GMT
Last-Modified: Thu, 14 Mar 2019 05:00:41 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9f72c080106677e8de87597b0d2b6fcf
Sha1:   486750bf9249b968d5823a9aca4c5e4a0081fb96
Sha256: 0b8a45020aeb06d567bb2d9b18891551813c295f8a90c9279c32c18669a56464
                                        
                                            GET /v2/url?u=https-3A__t2.ktrmr.com_secs.aspx-3Fi.project-3DADLSQV-26s-3DGEN24-26id-3D1-26chk-3Dna-26pid-3D319W1-2D1TSG3-2D38&d=DwMDaQ&c=Zl2T6vaIOSZ-iGixmidu-Jjpn1CKtCl7U5wJPI4UCTc&r=BBBtOJWYwPJ2kJewg9P4Xw&m=cTBkVdEjOWQidJInO7pHskKW1AmPCrb0KNQTS5UPzbM&s=2fiSTeM8WIF3TxtN9GzLvo0HjFlLuI59beHRKIy2EWY&e= HTTP/1.1 
Host: urldefense.proofpoint.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         67.231.146.66
HTTP/1.1 302 Found
                                        
Date: Thu, 14 Mar 2019 12:13:32 GMT
Content-Length: 0
Connection: keep-alive
Location: https://t2.ktrmr.com/secs.aspx?i.project=ADLSQV&s=GEN24&id=1&chk=na&pid=319W1-1TSG3-38
Set-Cookie: ppri=BBDFE748-7E85-4640-BC8B-F4852E55CF91;Version=0;Domain=.proofpoint.com;Path=/;Max-Age=315360000;Secure;HttpOnly;Expires=Fri, 01 Feb 2030 00:00:00 GMT


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=122378
Date: Thu, 14 Mar 2019 12:13:32 GMT
Etag: "5c8978bf-1d7"
Expires: Fri, 15 Mar 2019 22:13:10 GMT
Last-Modified: Wed, 13 Mar 2019 21:40:15 GMT
Server: ECS (ams/D1E5)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    cc8e1391da871c353da60d824c7b8e06
Sha1:   03a46fa6d5e0b0e091e68feac07026cfa9b6f164
Sha256: 817f44bca7edee612694769e4fc90bcaf58dd35f4017de2c471b5441aecb09dc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=165532
Date: Thu, 14 Mar 2019 12:13:32 GMT
Etag: "5c8a0564-1d7"
Expires: Sat, 16 Mar 2019 10:12:24 GMT
Last-Modified: Thu, 14 Mar 2019 07:40:20 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a4059cdc3de0e99276a4ff95ee2de475
Sha1:   e4e36132065ba283135711e662144bd8c1f38029
Sha256: f0d25bf4291edf5269e5989f95826c5912ea0efd4bb99b43fad214828471215c
                                        
                                            GET /secs.aspx?i.project=ADLSQV&s=GEN24&id=1&chk=na&pid=319W1-1TSG3-38 HTTP/1.1 
Host: t2.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.178.234.86
HTTP/1.1 302 Found
                                        
Cache-Control: private
Transfer-Encoding: chunked
Location: https://ss.ktrmr.com/mrIWeb/mrIWeb.srf?i.project=ADLSQV&s=GEN24&id=1&chk=na&pid=319W1-1TSG3-38&korsid=104A055A92F6DA4087993C3B019A09DD
Date: Thu, 14 Mar 2019 12:13:32 GMT


--- Additional Info ---
                                        
                                            GET /mrIWeb/mrIWeb.srf?i.project=ADLSQV&s=GEN24&id=1&chk=na&pid=319W1-1TSG3-38&korsid=104A055A92F6DA4087993C3B019A09DD HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Pragma: no-cache
Expires: -1
Date: Thu, 14 Mar 2019 12:13:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   2379
Md5:    cc706f698382d84a3d645d66aae5b5fe
Sha1:   e98dd4369c7e534ab663c94eb8d76f4975750d0f
Sha256: 748737d7645bfe5ac48f4a108512803d184ccf24328f647816ab7bd164c77dcf
                                        
                                            GET /mriweb/Images/auth_fail/styles/authfail.css HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mrIWeb/mrIWeb.srf?i.project=ADLSQV&s=GEN24&id=1&chk=na&pid=319W1-1TSG3-38&korsid=104A055A92F6DA4087993C3B019A09DD

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   282
Md5:    11d440210e961faaab2cafdebc552bac
Sha1:   41643b0831ca685de53717dbbc3c03c91e6aeab4
Sha256: 02c8bf87a55bfbd5e20f7e7bfbac8878db7c6d168ec846635f5a3104e5ca6853
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Wed, 04 Jun 2014 17:03:41 GMT
Accept-Ranges: bytes
Etag: "6ae570ef1680cf1:0"
Date: Thu, 14 Mar 2019 12:13:24 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   318
Md5:    cd182bb56b8cc783d8c1a051d8071189
Sha1:   01dcc5eef9afdf0d2efa583c2e0c7014eae4b025
Sha256: d2fe67e79360e2e3599fc2985d9b64137308a0620b931a82db581eb0935a9063
                                        
                                            GET /mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st= HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mrIWeb/mrIWeb.srf?i.project=ADLSQV&s=GEN24&id=1&chk=na&pid=319W1-1TSG3-38&korsid=104A055A92F6DA4087993C3B019A09DD
Cookie: ASPSESSIONIDSEADSASS=ELCKFCPANICGAELGJCFAPGBD

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Cache-Control: private
Set-Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN; secure; path=/
Date: Thu, 14 Mar 2019 12:13:34 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   943
Md5:    7a7a01d82931aa50df2f30ff0a61b614
Sha1:   e241e5cd3b48e7d989793b067cced0a8dc0c0ed4
Sha256: af9d0b8e88bc331530a5064a468a3471132237f26c31dac9725969d0730ff45f
                                        
                                            GET /mriweb/Images/auth_fail/images/flags_lrg.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 570 x 35
Size:   3487
Md5:    f2aefc0ce28df7ed56c91784fd9b9a7e
Sha1:   8aec5e24a31945b242ad5ebaa923988bdafbae9b
Sha256: e04018c802c818ca075db40155ad897d56e3c88393d533c903e9dac395547234
                                        
                                            GET /mriweb/Images/auth_fail/images/esp.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 119 x 15
Size:   230
Md5:    76b85facf6afe6fa0998f15b7900a338
Sha1:   1fa95fd5ef907618f2aac37b6730ab079f26a55e
Sha256: 5da919d39a42997552236a01554cc390e9955271ae725024cb0a59a60cf7bec5
                                        
                                            GET /mriweb/Images/auth_fail/images/csy.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 39 x 16
Size:   114
Md5:    3b49e954540e532dee0137afd873325e
Sha1:   c7ec7d2a395377a16a8198cf861250e3a7ab5112
Sha256: 2ce14d91497494159912c537d9a22a7076ded2837b8f6daed66c21cd4e2a82a9
                                        
                                            GET /mriweb/Images/auth_fail/images/fin.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 23 Jun 2016 12:11:27 GMT
Accept-Ranges: bytes
Etag: "8081115e48cdd11:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 45 x 15
Size:   114
Md5:    a1150455eb7d6a7e4fc1eeaba4dc54aa
Sha1:   071ec28f22b00ac6156730857c1ea1429224e8ac
Sha256: a45b11306c44954eebeeb8c2a9b361f5c1fe6f240b69ee9fcef5c6d611d2076f
                                        
                                            GET /mriweb/Images/auth_fail/images/chs.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 28 x 15
Size:   94
Md5:    1e62f9fc71927d740fc5c9a63298683d
Sha1:   ebb429b11fef092cc2d4b8e905d76eb1ea897a42
Sha256: 1c106c4ee8d8722a9389372490f4c65da08d995e31f20d7e90ad4e4f262287b2
                                        
                                            GET /mriweb/Images/auth_fail/images/dan.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 45 x 15
Size:   122
Md5:    3a1d1ecbb9d1998d78c104e6444a51bd
Sha1:   1679923048b694c1d382f129da3c969b93476b79
Sha256: 1c1afd8604f2c6e8e1c3ddce8d037995bdf998a885feedaa7a856fafc8e7669b
                                        
                                            GET /mriweb/Images/auth_fail/images/deu.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 50 x 15
Size:   130
Md5:    304cdc08356921ed5d81a41f9c39d712
Sha1:   cbb4c0ef95b4f99b0a21af424bfdf839fe0cb48b
Sha256: e63ccea495941547778d2d722c1f094e5c9e126a234f9a6f4ff69f6ba7d38221
                                        
                                            GET /mriweb/Images/auth_fail/images/enu.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 45 x 15
Size:   126
Md5:    076473985c1e409f6524c57032ac6daa
Sha1:   69bf15571dda583eb16a7f90a42c5bd6d64161a2
Sha256: 11e94e03794558af1e86ee3c68e75f2efc14920e3b7970de766cb3c816e3c838
                                        
                                            GET /mriweb/Images/auth_fail/images/gre.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 53 x 15
Size:   136
Md5:    798dc5abdbe1ae708c7e1c6dbd75a2e3
Sha1:   36b89c2637f59dab53e52ea33625f48a717fa1b3
Sha256: 75dd839f890bcaf0db66d2e3479a638c74e3231f604a194047e9cbb9ff5ee971
                                        
                                            GET /mriweb/Images/auth_fail/images/ita.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   296
Md5:    b3afe62d4bf6bed92baa5c8707caa743
Sha1:   96f61e762a7c3ecf2eb080b48bbf4a236065fd9b
Sha256: 8f905a6a0ca0554636d70ba66992449d7259535b9a4343981da5dcf07d2de504
                                        
                                            GET /mriweb/Images/auth_fail/images/fra.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 52 x 15
Size:   131
Md5:    0e06b35e3be519459360075386a77b76
Sha1:   53ed2740133fad7d2ccd2bc67f26759424db807b
Sha256: da23d1b20f892ea16f855eb11ce1144f777e53a8d9ecf27b3f68f594d6a87441
                                        
                                            GET /mriweb/Images/auth_fail/images/jpn.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 41 x 15
Size:   120
Md5:    308c1a18701b135f28cd0baa6cb701e1
Sha1:   11ad84ccb238e333d93d8f7658e42f2718e27b8c
Sha256: 1ee4ece51f80e12bc56d0b2ad35f75f7bd690bedd696f200a14e319da4823d81
                                        
                                            GET /mriweb/Images/auth_fail/images/kor.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 41 x 15
Size:   119
Md5:    a047e43dfd8e58504941243fd69cd771
Sha1:   95b4291fbedee607000676f0be64e765f7a77e01
Sha256: 3136eedad2d58e02d64aa1039d24fafe157c10dc94b7d34dd5408639489753c7
                                        
                                            GET /mriweb/Images/auth_fail/images/nld.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 69 x 15
Size:   160
Md5:    8a5c52a03dab30959380741cfa630eaa
Sha1:   0397c94b8d1ee69bb0ad43c193639cb078857401
Sha256: 518cb012f384ce11791a0637ce10068970e16ce2ae9d7fff20ce71e07d90ddb6
                                        
                                            GET /mriweb/Images/auth_fail/images/ptg.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 59 x 15
Size:   143
Md5:    f817ec116aaec05ae04962d3d7427fd0
Sha1:   aef99d37143305e9ca1c15f7540472afdc4f2109
Sha256: 8b58fac0d61616ebb1a67762911dc67fd0b16f633f4c176a4361859953207cbc
                                        
                                            GET /mriweb/Images/auth_fail/images/rus.gif HTTP/1.1 
Host: ss.ktrmr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ss.ktrmr.com/mriweb/Images/auth_fail/enu.asp?S=GEN24&PROJECT=ADLSQV&PID=319W1-1TSG3-38&R=700&L=&st=
Cookie: ASPSESSIONIDSEADSASS=FLCKFCPAOAJIOOENJMECLJNN

                                         
                                         198.178.234.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 05 Dec 2013 17:24:00 GMT
Accept-Ranges: bytes
Etag: "0f824c9def1ce1:0"
Date: Thu, 14 Mar 2019 12:13:35 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  GIF image data, version 89a, 45 x 15
Size:   122
Md5:    f1105abd7307b6cbb760cd967dbd48ec
Sha1:   30a8dd59a3f9ac87a3b31b6708973ffcc6add443
Sha256: 415bae7aff37aa852212cf1b91f696af66d0dcf201493de79dfb216f92815e69