Overview

URL 646250.vps-10.com/links/ByoB464hz/rkcpjYVnz/SyGwDpFV3f/B1VwNpNhf
IP46.32.249.10
ASNAS20738 Webfusion Internet Solutions
Location United Kingdom
Report completed2018-04-18 15:47:13 CEST
StatusLoading report..
urlQuery Alerts Suspicious javascript obfuscation


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-04-18 15:46:24 CEST 1  50.87.151.146 Client IP ETPRO CURRENT_EVENTS Generic JS Phishing Redirect Oct 13 2017
2018-04-18 15:46:26 CEST 1  50.87.151.146 Client IP ETPRO CURRENT_EVENTS Successful Apple Phishing M1 Mar 1 2016
2018-04-18 15:46:24 CEST 1  50.87.151.146 Client IP ETPRO CURRENT_EVENTS Apple Phishing Landing M1 Feb 13 2017
2018-04-18 15:46:24 CEST 1  50.87.151.146 Client IP ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing
2018-04-18 15:46:24 CEST 1  50.87.151.146 Client IP ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing M1 Dec 28 2015


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 3 reports on IP: 46.32.249.10

Date UQ / IDS / BL URL IP
2018-04-20 22:06:16 +0200
0 - 0 - 0 646250.vps-10.com/links/ByoB464hz/rkcpjYVnz/S (...) 46.32.249.10
2018-04-18 17:20:39 +0200
2 - 5 - 0 646250.vps-10.com/links/ByoB464hz/rkcpjYVnz/B (...) 46.32.249.10
2018-04-18 15:47:17 +0200
2 - 5 - 0 646250.vps-10.com/links/ByoB464hz/rkcpjYVnz/S (...) 46.32.249.10

Last 10 reports on ASN: AS20738 Webfusion Internet Solutions

Date UQ / IDS / BL URL IP
2018-10-18 20:49:19 +0200
0 - 0 - 0 web301.extendcp.co.uk 176.32.230.45
2018-10-18 18:07:43 +0200
0 - 0 - 0 79.170.44.91/sherwoodstemp.co.uk/wp-content/u (...) 79.170.44.91
2018-10-17 20:29:27 +0200
0 - 0 - 0 web301.extendcp.co.uk 176.32.230.45
2018-10-17 15:42:10 +0200
0 - 0 - 0 aviva.pl 46.32.252.2
2018-10-17 14:45:18 +0200
0 - 0 - 0 absolutepleasureyacht.com 37.122.210.189
2018-10-17 10:46:34 +0200
0 - 0 - 0 best-network.co.uk 94.136.40.82
2018-10-17 07:51:16 +0200
0 - 0 - 3 familylawbarrister.org/ 176.32.230.24
2018-10-16 17:31:47 +0200
0 - 0 - 0 powertransmissiondistribution.co.uk 94.136.40.51
2018-10-16 11:25:29 +0200
0 - 0 - 0 79.170.44.95/geens.co.uk/wp-content/uploads/u (...) 79.170.44.95
2018-10-15 21:44:35 +0200
0 - 0 - 0 www.burningtheclocks.co.uk/wp-content/plugins (...) 217.199.187.198

No other reports on domain: vps-10.com



JavaScript

Executed Scripts (12)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 4857, repeated: 1) - SHA256: 6f5b1c41200f18b22e7756eac96c6cadea2a6adef4a1fc4ee61c3e0eba210d89

                                        < !DOCTYPE html >
    < html >
    < head >
    < meta content = "text/html; charset=utf-8"
http - equiv = "Content-Type" >
    < meta content = "width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no"
name = "viewport" >
    < title > Sign In < /title> < link href = "assets/img/favicon.ico"
rel = "shortcut icon"
type = "image/x-icon" >
    < link href = "assets/css/First.css"
media = "all"
rel = "stylesheet"
type = "text/css" >
    < link href = "assets/css/Second.css"
rel = "stylesheet"
type = "text/css" >
    < link href = "assets/css/Fonts.css"
rel = "stylesheet"
type = "text/css" >
    < /head> < body id = "pagecontent" >
    < div id = "content" >
    < div class = "bdd45" >



    < nav id = "xdsfv54"
class = "js no-touch svg no-ie7 no-ie8" >
    < div class = "HeaderObjHolder" >
    < ul class = "MobHeader" >
    < li class = "HeaderObj MobMenIconH" >
    < label class = "MobMenHol" >
    < span class = "MobMenIcon MobMenIcon-top" >
    < span class = "MobMenIcon-crust MobMenIcon-crust-top" > < /span> </span > < span class = "MobMenIcon MobMenIcon-bottom" >
    < span class = "MobMenIcon-crust MobMenIcon-crust-bottom" > < /span> </span >
    < /label> < /li> < li class = "HeaderObj" >
    < a class = "Item1"
href = "#"
style = "display: inline-block;margin-left:50%;margin-top:11px"
id = "ac-gn-firstfocus-small" > < span class = "ac-gn-link-text" > & nbsp; < /span> </a >
< a class = "Item10"
style = "display: inline-block;float:right;margin-top:11px"
href = "#" > < span class = "ac-gn-link-text" > & nbsp; < /span> <span class="ac-gn-bag-badge"></span > < /a> <span class="ac-gn-bagview-caret ac-gn-bagview-caret-large"></span >
< /li> < /ul> < ul class = "HeaderObjList" >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item1"
href = "#" > < /a></li >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item2"
href = "#" > < /a></li >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item3"
href = "#" > < /a></li >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item4"
href = "#" > < /a></li >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item5"
href = "#" > < /a></li >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item6"
href = "#" > < /a></li >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item7"
href = "#" > < /a></li >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item8"
href = "#" > < /a></li >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item9"
href = "#" > < /a></li >
    < li class = "HeaderObj HeaderItem" > < a class = "HeaderLink Item10"
href = "#" > < /a></li >
    < /ul> < /div> < /nav>









< div class = "subnav" >
    < div class = "container" >
    < div class = "title pull-left" > Apple & nbsp;
ID < /div> < div class = "menu-wrapper pull-right" >
    < ul class = "menu" >
    < li class = "item active" > < a class = "btn btn-link btn-signin"
href = "#" > Sign In < /a></li >
    < li class = "item" > < a class = "btn btn-link btn-create"
href = "#" > Create Your Apple & nbsp;
ID < /a></li >
    < li class = "item" > < a class = "btn btn-link btn-faq"
href = "#" > FAQ < /a></li >
    < /ul> < /div> < /div> < /div> < div class = "paws signin" >
    < h1 class = "LoginTitle" > Apple & nbsp;
ID < /h1> < div class = "LoginIframe"
id = "auth-container"
style = "position: relative;" >
    < iframe width = "100%"
height = "100%"
name = "login"
id = "login"
src = "assets/signin.php"
frameborder = "0"
scrolling = "no" > < /iframe> < /div> < /div> < div id = "flow" >
    < div class = "flow-body signin clearfix"
role = "main" >
    < div class = "container" >
    < div class = "forgot"
id = "forgot-link" > < a href = "#" > Forgot Apple & nbsp;
ID or password ? < /a></div >
    < div class = "flex home-content" >
    < h2 id = "Title"
class = "title separator" > Your account
for & nbsp;
everything & nbsp;
Apple. < /h2> < div id = "TitleMsg"
class = "intro" > A single Apple & nbsp;
ID and password gives you access to all Apple services. < /div> < div id = "LearnMore"
class = "intro" > < a class = "button faq-link"
href = "#" > Learn more about Apple & nbsp;
ID & nbsp; < i class = "icon Righty" > < /i></a > < /div> < div id = "AppIconsWrapper"
class = "apps text-center" > < img class = "ApplicationIcons"
src = "assets/img/icons.jpg"
height = "68"
width = "656" > < /div> < div id = "CreateAccount"
class = "intro create show" > < a class = "button create-link"
href = "#" > Create your Apple & nbsp;
ID < i class = "icon Righty" > < /i></a > < /div> < /div> < /div> < /div> < /div> < footer >
    < div class = "container" >
    < div class = "footer" >
    < div class = "footer-wrap" >
    < div class = "FooterLine1" >
    < div class = "line-level" > Shop the < a href = "#" > Apple Online Store < /a> (0800 048 0408), visit an <a href="#">Apple Retail Store</a > , or find a < a href = "#" > reseller < /a>.</div >
    < /div> < div class = "FooterLine2" >
    < ul class = "menu" >
    < li class = "item" > < a href = "#" > Apple Info < /a></li >
    < li class = "item" > < a href = "#" > Site Map < /a></li >
    < li class = "item" > < a href = "#" > Hot News < /a></li >
    < li class = "item" > < a href = "#" > RSS Feeds < /a></li >
    < li class = "item" > < a href = "#" > Contact Us < /a></li >
    < li class = "item" > < a class = "choose"
href = "#" > < img height = "22"
src = "assets/img/us.png"
width = "22" > < /a></li >
    < /ul> < /div> < div class = "FooterLine3" > Copyright´┐Ż 2017 Apple Inc.All rights reserved. < ul class = "menu" >
    < li class = "item" > < a href = "#" > Terms of Use < /a></li >
    < li class = "item" > < a href = "#" > Privacy Policy < /a></li >
    < /ul> < /div> < /div> < /div> < /div> < /footer> < /div> < /div> < /body> < /html>
                                    


HTTP Transactions (38)


Request Response
                                        
                                            GET /links/ByoB464hz/rkcpjYVnz/SyGwDpFV3f/B1VwNpNhf HTTP/1.1 
Host: 646250.vps-10.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         46.32.249.10
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Location: http://iu970.cx/9swk
Vary: Accept, Accept-Encoding
Content-Length: 84
Date: Wed, 18 Apr 2018 13:46:22 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   84
Md5:    fb3273e2d8bb7cdc50b0ec07d8385ea5
Sha1:   50611a7ade1ed68c362b11cac19a26d9e57795ec
Sha256: 98188748b39ba17398bf06d2a0475d20a9085e54cc504a30279211be8cedbffa
                                        
                                            GET /9swk HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         50.87.151.146
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:23 GMT
Content-Length: 287
Connection: keep-alive
Location: http://iu970.cx/9swk/


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   287
Md5:    cbf633cc4a42dc36caecdcef13072d7c
Sha1:   d5a3988b200c06a3be3bb235e2f2a97e52d021be
Sha256: 83a5240a7a28843f1d015a9278145463fb2dc0d8f1de0687bba4e9e5bfdb12be
                                        
                                            GET /9swk/ HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0; path=/
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   204
Md5:    8cad63a4c3bde1ee27026411666e307d
Sha1:   f6ccd51602f074586b1ebdf54f0f6ce33e3d2bac
Sha256: 176c6a2e1144d49235037ef7ac49cac71376b8cd873eed9c92a8b148eec4aa2d

Alerts:
  IDS:
    - ETPRO CURRENT_EVENTS Generic JS Phishing Redirect Oct 13 2017
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:24 GMT
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 22 May 2013 10:08:37 GMT
Accept-Ranges: bytes


--- Additional Info ---
                                        
                                            GET /9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5524
Md5:    1afff8da6ab485dc9eb4147c766d67da
Sha1:   a7fe1c02efcc403b01876d32abcf10518f5abff9
Sha256: e54d7c71a7fc69c6069413bbbcb57e298b21ebf1de195ba9492eb50f408bad32

Alerts:
  urlquery:
    - Suspicious javascript obfuscation
  IDS:
    - ETPRO CURRENT_EVENTS Apple Phishing Landing M1 Feb 13 2017
    - ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing
    - ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing M1 Dec 28 2015
                                        
                                            GET /9swk/assets/js/Valid.AU.js HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Jan 2016 03:44:22 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5104
Md5:    c58867a7b21f64ef66acd016f0d91c25
Sha1:   93c0255e246ce0ff91cebd5b828417c1d2ff05dd
Sha256: 71cbd3f95d137c7b908789c6720085e1004576f4e53a7e4d78297069d6ecc65a
                                        
                                            GET /9swk/assets/js/jquery.maskedinput.js HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Jan 2016 03:45:42 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2339
Md5:    ae5a568da2ab87c125ae0408bc36e97e
Sha1:   909d8eb39b9674523f0723bf3ec4dfd02253667c
Sha256: ca9a43d7940c02d2442fa082f10c144a8643701ea8009bedfbb153d43e39ffb5
                                        
                                            GET /9swk/assets/js/jquery.validate.min.js HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Jan 2016 03:45:00 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7210
Md5:    1d772a0d41b6f0cf1ee1ae7f9295fb8a
Sha1:   8a6630b3c0bdb87f54946423ed611e99441787bb
Sha256: 37a8ce2938ca6d8b4ec985364c3cdc054467c760deeee73123b5d479cac720cd
                                        
                                            GET /9swk/assets/js/jquery.payment.js HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Jan 2016 03:45:22 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3545
Md5:    8581047943f276eabd2f439aeb81998a
Sha1:   00ce1ae00af6af7375092b693b68046c071b5a19
Sha256: e0c53520cda285525477f4fcbcd83b936198a27e5c3457a44134f59d32a82f2f
                                        
                                            GET /9swk/assets/js/additional-methods.min.js HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Aug 2017 01:00:10 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5454
Md5:    213cf154d919ff7bc702b10bcc3d2ede
Sha1:   e15099a220f96dc51499c71af3ad95e0ff73ad60
Sha256: 50eaec27c0201a6729a55d3683a25e5f458889e4e4e66d75bd9bff2aa3b443d5
                                        
                                            GET /9swk/assets/js/jquery-1.9.1.js HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Jan 2016 03:44:48 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   49526
Md5:    4de1e6cffbe66afdc1b7103def22f334
Sha1:   1d35e4de2cf3455059374258139ac2d6afa92e0c
Sha256: 41705f77e2846d53f6700e3c5398f949535a944b257d4730801855617c054010
                                        
                                            GET /9swk/assets/js/enc.js HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Jan 2016 03:46:10 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2997
Md5:    5cbe0e5bc360f38f5df3c9031db20a63
Sha1:   4988ea330858de87d126e7fe7b9198cad512a732
Sha256: ccbaef7bfba63f974ba847771b55902661c23d7b9de2222b02b47a0575f1eaf4
                                        
                                            GET /9swk/assets/img/us.png HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:25 GMT
Content-Length: 5153
Connection: keep-alive
Last-Modified: Thu, 31 Dec 2015 02:01:36 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 60 x 60, 8-bit/color RGBA, non-interlaced
Size:   5153
Md5:    058fa46a2ac00f78090352eec8b480cf
Sha1:   01c74b308b02f66e7ffc85a3bc226ec64afa7756
Sha256: 45cc3a70de8db3fde81b3228c0a9a5f81764225bb58668ce29ad4862854e5df5
                                        
                                            GET /9swk/assets/css/Second.css HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Jan 2016 03:14:08 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12694
Md5:    7c80e5e55ba7eb24f4ad417af20f6a50
Sha1:   ca337be3f29b5888356d50a211226283e2232c32
Sha256: e02a8fe212e0a7e0a5b14a3043b492d01a446d7951a350b8a95b69394c525872
                                        
                                            GET /9swk/assets/css/Fonts.css HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 01 Jan 2016 06:38:36 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   375
Md5:    683dfdb3ddfcdd9d46afe331b113d2cd
Sha1:   1a3d7788abeea9c871c05768dbf55a268a2eb923
Sha256: 6d70e773ec230ce4980f0326d9e82646dfdede097297c8d289bacdf9058d8ddc
                                        
                                            GET /9swk/assets/signin.php HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1033
Md5:    30c8d5264474c4ad552acb5099ad950b
Sha1:   d9a75321b6a45f79ec7c6c7277bc51530000b760
Sha256: c72ec7aa9f1e8092156e505dfe8f71049a38563d785c81ba369760e608a5d656

Alerts:
  IDS:
    - ETPRO CURRENT_EVENTS Successful Apple Phishing M1 Mar 1 2016
                                        
                                            GET /9swk/assets/css/First.css HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 01 Jan 2016 06:15:34 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33346
Md5:    c96995358ea139670072dda8043149de
Sha1:   bee9b8a97d56ddbbb483cbd41e21737e03bdb1cd
Sha256: 6388707627fc8bb5860e296b5d5420d5717660b42402ca9d8d67009c4715d691
                                        
                                            GET /9swk/assets/img/favicon.ico HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 9062
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 08:00:24 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 4 icons, 32x32, 256-colors
Size:   9062
Md5:    28ec4eaba5ae210b98a11257caf5bade
Sha1:   6164148a39d6a27286641896fce3b76f439aeab1
Sha256: 3f5086612aae9363c9fb02949219cef19854c18fe5ad4eda78aa1aefcc79cc71
                                        
                                            GET /9swk/assets/img/icons.jpg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/Login.php?sslchannel=true&sessionid=CTjkG6S3IBpkflWcW0pMPpSNzOKC79NOQYDEG921At5t2eDIXCDTc9PgBgO47h55utyc6PHYGhprzoMr
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:25 GMT
Content-Length: 106063
Connection: keep-alive
Last-Modified: Mon, 21 Dec 2015 05:13:26 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   106063
Md5:    6f971b65ad225a37aa744db8c6e9b657
Sha1:   a776484ed5a6be72ce7b9f964fad31d142adc765
Sha256: bd5f4ed541a56a96e91ac8419bac78377be866769be15787f78e0d242a15b0b6
                                        
                                            GET /9swk/assets/img/app.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 1860
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:46:46 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   1860
Md5:    daaed59106db7f383f672c229ac26639
Sha1:   a339941baabc1a87488bc6bbb2ce72df7964b8bc
Sha256: f674d38daae4a3e966f218fbd0c6384af4ac3996f6797952b264e495e740152f
                                        
                                            GET /9swk/assets/img/mac.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 2063
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:47:52 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   2063
Md5:    f3d6241e417cf9ffa2d954628870ec22
Sha1:   007375f3a6b968a5d95d4d38349e253542b4373e
Sha256: 906318c73e943ef3237b440672d6c4705960df54848b3b78bf054b4a7e5b6b7f
                                        
                                            GET /9swk/assets/img/ipad.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 2737
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:51:26 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   2737
Md5:    d21b88813ffcdc291ae76349a637e0f3
Sha1:   205afc41aeb9a533e834cfaba0610b2ff57a36fb
Sha256: ed15e498ec051e9de631324421d91c3393995cda446ba386dec4dd74416f7800
                                        
                                            GET /9swk/assets/fonts/icons.woff HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/First.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/x-font-woff
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 7944
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 07:09:24 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  data
Size:   7944
Md5:    5e01630de5d0dad02c927c49d22436f1
Sha1:   1f991fe5eaaf73408294818725ec9dac5b978568
Sha256: 3d12586b3d24efe92df696c5b7a9aab33d89deee147f9ff1a6e957db6a962abd
                                        
                                            GET /9swk/assets/img/iphone.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 3382
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:51:36 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   3382
Md5:    ba45c666521221bb5af7c6dba4041069
Sha1:   b1d499fd6fbc631cd55f44dc9898f3b93e4744f3
Sha256: 66d7f49a9737a52b802c927111b04a9d65aa78fd7df3964073a9afe96124b2c2
                                        
                                            GET /9swk/assets/fonts/four.woff HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Fonts.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/x-font-woff
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 99004
Connection: keep-alive
Last-Modified: Fri, 01 Jan 2016 06:28:04 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  data
Size:   99004
Md5:    10cb80db4057609d400e88b5339a3203
Sha1:   328585783da592700869fa237ef33dea6b35a244
Sha256: 70ac3b8e12ae9b91cc6f1debab3d550d6fbed88a1f5e0beb2ef1be412b18d378
                                        
                                            GET /9swk/assets/img/watch.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 2706
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:51:50 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   2706
Md5:    85d0f235a5b7ce92e5b084ec486a54e8
Sha1:   b9329c3c09b72d7283f01d7f6ad8cef063efac44
Sha256: 42addfd791864c6c1f2238af878e415cdf806557cda87e38317a05865748df11
                                        
                                            GET /9swk/assets/img/tv.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 1112
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:52:00 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   1112
Md5:    0afb0f748ede625ab66479504b50e761
Sha1:   ba72101812daffa7521d8ba351923b80893ca350
Sha256: d3b80bdf24f467de9715610976d2edad86b653ca19693df20c8d8a0836280983
                                        
                                            GET /9swk/assets/fonts/ten.woff HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Fonts.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/x-font-woff
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 98640
Connection: keep-alive
Last-Modified: Fri, 01 Jan 2016 06:37:22 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  data
Size:   98640
Md5:    d66aa0f8a52c4eaf37cce0eda65d761e
Sha1:   11f5ae89c96e68db3a37876787774b9fdd77db2d
Sha256: 933e7bd58b0dd458c7e3c28e9c57d3eb6570f44c264229a08e9d9c1e442961b6
                                        
                                            GET /9swk/assets/fonts/one.woff HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Fonts.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: application/x-font-woff
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 95780
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:58:42 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  data
Size:   95780
Md5:    7700078e989b388b8d054a01a7cbe979
Sha1:   e2983a9eece81d944c71faa2b12661d822e10266
Sha256: f80e626d759fa2aa8b9d4335ad5e4a5aac0f9452a86d6272ec69103b4c82dc12
                                        
                                            GET /9swk/assets/img/music.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 3347
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:52:10 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   3347
Md5:    0d495f5fb10df3bdc2681ab6eb2890b7
Sha1:   8e073847d0e500f108f5a0bf310707fa55531804
Sha256: 8107f593e897a12304343d2c48ac62b13680dedc633037e973d1dfd3152573be
                                        
                                            GET /9swk/assets/img/support.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 4200
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:52:30 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   4200
Md5:    cd4980b3b006fc78e8429b8a74959cc9
Sha1:   5f6c8085f799bcd7d4d617925b85cab57f69d151
Sha256: 49018ee23ef15a07b75966c5e449dfc02974348ba93426e16589c1ac38342a1b
                                        
                                            GET /9swk/assets/img/bag.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 464
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:52:58 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   464
Md5:    010ab7085e42687f82bf92df4e1e9d42
Sha1:   1930e203289043c3d40e8d7f2e17a628469feb5f
Sha256: 2b00b7da17f4f98eb6a5e85cadff1b7dcf089842136c1d8fc2f73071cb135e9f
                                        
                                            GET /9swk/assets/img/search.svg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Second.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 1031
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:53:04 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   1031
Md5:    f4b098fa112a1cb9e2e0174f1b2bcf85
Sha1:   801fce1e2f3b97456f5f2e5820f3fae2dd74915d
Sha256: 98e256b4b96b4c80754ee598e4724e736d6241714f2c2bb1a4b88dac0cbf02c1
                                        
                                            GET /9swk/assets/css/Login.css HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/signin.php
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 10:00:42 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   16270
Md5:    15e50c097e914b8f0f65ca60cd3a4b5c
Sha1:   0dcc75b770080c2b3e4b8826e3ce5452e15150bd
Sha256: 1ab9b741248c1059f28825887bec6dd0bdcd59be77f18c1afc322c4faccf081d
                                        
                                            GET /9swk/assets/img/logo.png HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/signin.php
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 4690
Connection: keep-alive
Last-Modified: Mon, 21 Dec 2015 05:13:26 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 420 x 112, 8-bit colormap, non-interlaced
Size:   4690
Md5:    643a1f9fc2aa09799472c39031456af5
Sha1:   70f89834a607b4a00e5c1e8ff2bd66b798db04df
Sha256: c691a459c75691e086dfbbacf08d2f4591a8316f11484ff99a5ca500a172e2b4
                                        
                                            GET /9swk/assets/img/spinner.gif HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/signin.php
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:27 GMT
Content-Length: 15552
Connection: keep-alive
Last-Modified: Fri, 01 Jan 2016 09:55:00 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 32 x 32
Size:   15552
Md5:    924e4f9ad419492f9245c77cd0e8a224
Sha1:   926061f876de03cac2739a5607e720f03ac7f6d4
Sha256: 6fe12a779788353e42cf3cc8663f52cd4a64a0c7d31407e6478f758b1ced7693
                                        
                                            GET /9swk/assets/fonts/ten.woff HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/Fonts.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /9swk/assets/img/bg.jpg HTTP/1.1 
Host: iu970.cx
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://iu970.cx/9swk/assets/css/First.css
Cookie: PHPSESSID=9f071d1b4018cebd4866cf282499e2e0

                                         
                                         50.87.151.146
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.12.2
Date: Wed, 18 Apr 2018 13:46:26 GMT
Content-Length: 741485
Connection: keep-alive
Last-Modified: Sun, 27 Dec 2015 04:37:42 GMT
Accept-Ranges: bytes


--- Additional Info ---