Overview

URL medcheck.co.za/
IP154.0.164.74
ASNAS2905 TICSA-ASN
Location South Africa
Report completed2017-08-22 17:44:07 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2017-08-22 17:43:53 CEST 1  107.164.192.131 Client IP ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
2017-08-22 17:43:53 CEST 1  107.164.192.131 Client IP ET TROJAN PE EXE or DLL Windows file download Text
2017-08-22 17:43:53 CEST 1  107.164.192.131 Client IP ET TROJAN RAMNIT.A M2


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 154.0.164.74

Date UQ / IDS / BL URL IP
2018-05-24 04:13:15 +0200
0 - 0 - 1 heedcapital.com/ 154.0.164.74
2018-05-21 17:10:19 +0200
1 - 0 - 0 sarejess.co.za/ 154.0.164.74
2018-05-19 13:39:17 +0200
0 - 1 - 0 designaslidas.co.za/ 154.0.164.74
2018-05-18 14:39:19 +0200
0 - 1 - 0 designaslidas.co.za/ 154.0.164.74
2018-05-16 17:39:13 +0200
0 - 1 - 0 designaslidas.co.za/ 154.0.164.74
2018-05-15 16:29:13 +0200
1 - 0 - 0 sarejess.co.za/ 154.0.164.74
2018-05-11 06:28:50 +0200
0 - 0 - 2 siyathuthukap.org.za/ 154.0.164.74
2017-08-21 21:03:27 +0200
0 - 1 - 0 prestigeagencies.co.za/ 154.0.164.74
2017-08-10 10:17:45 +0200
0 - 3 - 0 altonelectronics.co.za/ 154.0.164.74
2017-08-10 08:36:20 +0200
0 - 4 - 0 fuzetest.co.za/ 154.0.164.74

Last 10 reports on ASN: AS2905 TICSA-ASN

Date UQ / IDS / BL URL IP
2018-05-24 04:13:15 +0200
0 - 0 - 1 heedcapital.com/ 154.0.164.74
2018-05-23 22:00:52 +0200
0 - 0 - 1 98h95.eaajc.cn/ 154.95.153.75
2018-05-23 21:59:38 +0200
0 - 0 - 1 s92eh.eaajc.cn/ 154.95.153.75
2018-05-23 11:46:04 +0200
0 - 0 - 1 vhalungu.co.za/gustoreids/us/b493c9c549fe5a40 (...) 197.242.144.124
2018-05-23 10:14:54 +0200
0 - 0 - 1 vhalungu.co.za/gustoreids/us/1cf9501e1ec476e2 (...) 197.242.144.124
2018-05-23 08:58:25 +0200
0 - 0 - 1 onlineeast3.bankofamerica.com.jesusred.com/cg (...) 154.0.175.94
2018-05-23 08:08:30 +0200
0 - 0 - 1 www.thekrissshop.co.za/secure/login.htm 154.0.173.80
2018-05-23 08:08:29 +0200
0 - 0 - 1 www.thekrissshop.co.za/secure/login.htm3 154.0.173.80
2018-05-23 06:54:42 +0200
0 - 0 - 2 eaajc.cn/soy/82673.html 154.95.153.75
2018-05-23 06:23:52 +0200
0 - 0 - 1 www.eaajc.cn/soy/82673.html 154.95.153.75

No other reports on domain: .



JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (14)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: medcheck.co.za
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         154.0.164.74
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Tue, 22 Aug 2017 15:43:33 GMT
Content-Length: 3414


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   3414
Md5:    c7b5c031aeb3172c70b6e2c7eac57c8d
Sha1:   c737f79570d21e76c42b3b1891d5d948d5a4d1fe
Sha256: bb42c0cbc41169024cac300589145478425208194ec22c18fa50848a290f7bbe
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 22 Aug 2017 15:43:35 GMT
Expires: Sat, 26 Aug 2017 15:43:35 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    f7c5f7fb4c4cde84aae08b3bd51f4127
Sha1:   25f816f815171b5985c97bd28def65509710f59e
Sha256: b5ea6f7f07751f6a51ce97cd1031cf97bbddb771cade07ccb8624f50cf2ce615
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=536269, public, no-transform, must-revalidate
Last-Modified: Mon, 21 Aug 2017 20:37:41 GMT
Expires: Mon, 28 Aug 2017 20:37:41 GMT
Date: Tue, 22 Aug 2017 15:43:35 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    b0ddde9c1c935ee8f4d2f0c947b2a36a
Sha1:   90d0820166b6fb052885d2aafbc89db803bd40dc
Sha256: 83ac1aea948ade3b30b9ff5964550baa71bee7637d57f42dacffb9451f6c503b
                                        
                                            GET /css?family=Roboto:300,400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://medcheck.co.za/

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Tue, 22 Aug 2017 15:43:35 GMT
Date: Tue, 22 Aug 2017 15:43:35 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   288
Md5:    4800e75ec6985af70853127eff5de563
Sha1:   4c942f4aedc832ca80d6f4bbd10ad054e043cd6b
Sha256: 36643820e739f54f9294131b0cd55707787000a539a55d05ffa91c4b68ef96d0
                                        
                                            GET /parked_domain/img/parked-logo.png HTTP/1.1 
Host: www.axxess.co.za
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://medcheck.co.za/

                                         
                                         197.96.139.133
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 22 Aug 2017 15:43:25 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips
Location: https://www.axxess.co.za/parked_domain/img/parked-logo.png
Content-Length: 242
Keep-Alive: timeout=2, max=50
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   242
Md5:    6c969c29f4b4db763343588dda944822
Sha1:   aef57f128c113e92fd49d9ba85272d929940637c
Sha256: 60103de954897038ccc3d72a709ed94089a1c993a624e30bf2fb9aa711c403a9
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 22 Aug 2017 15:43:35 GMT
Expires: Sat, 26 Aug 2017 15:43:35 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    ed935181601bcb8c0771ef881f2f4463
Sha1:   a93a99cb4b0e83915999d89069b533009e9d685c
Sha256: c39d242dad28c7d37fbae0e5b12302318c64c590df5d3074f95ac3eb1c348f15
                                        
                                            GET /s/roboto/v16/2UX7WLTfW3W8TclTUvlFyQ.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400,700
Origin: http://medcheck.co.za

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18904
Date: Mon, 21 Aug 2017 20:17:04 GMT
Expires: Tue, 21 Aug 2018 20:17:04 GMT
Last-Modified: Mon, 17 Apr 2017 21:22:19 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 69991
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   18904
Md5:    a9fc51fd0214c75ee5953dda0f2a06a6
Sha1:   7a4ddb6733c33dfe9ec94c82a5e7f5da885f5182
Sha256: 8740f04a97202a2483d54a5781598c30cceac029a1522b6c5dd270250b9d1a17
                                        
                                            GET /parked_domain/img/parked-bg.jpg HTTP/1.1 
Host: www.axxess.co.za
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://medcheck.co.za/

                                         
                                         197.96.139.133
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 22 Aug 2017 15:43:26 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips
Location: https://www.axxess.co.za/parked_domain/img/parked-bg.jpg
Content-Length: 240
Keep-Alive: timeout=2, max=50
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   240
Md5:    8edae81216b4f2db3626e37ec8ff36fe
Sha1:   70e307016d3fe7458ddb31a3bb2155bbe706001f
Sha256: 7fbde5e69581b08d6ec9484935fb93e8d53b0660e9c9db802c0d712101583612
                                        
                                            GET /s/roboto/v16/d-6IYplOFocCacKzxwXSOD8E0i7KZn-EPnyo3HZu7kw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400,700
Origin: http://medcheck.co.za

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18944
Date: Mon, 14 Aug 2017 15:55:30 GMT
Expires: Tue, 14 Aug 2018 15:55:30 GMT
Last-Modified: Mon, 17 Apr 2017 21:22:31 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 690485
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   18944
Md5:    89b469433216121ca9d12c1aef1353d1
Sha1:   2fc9bb16fbfee39e2559e5cbf5f90b225e0a8b92
Sha256: 8c615f8bcc28a0293b56f2b33be4d62985f9e1938e37b96f40231b2259bdd6b9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Tue, 22 Aug 2017 15:43:36 GMT
Etag: "599bcf74-1d7"
Expires: Tue, 29 Aug 2017 03:43:36 GMT
Last-Modified: Tue, 22 Aug 2017 06:30:12 GMT
Server: ECS (arn/459B)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    cea3e4082030825775414548d02c3692
Sha1:   7e16b1913a6e350f7f7aebbc472c614b5f080d7d
Sha256: d375a2530ca9d6321b5198144be88082ebb67cee633c029a9f31afbfce3f63d6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Tue, 22 Aug 2017 15:43:36 GMT
Etag: "599c1d0c-1d7"
Expires: Tue, 29 Aug 2017 03:43:36 GMT
Last-Modified: Tue, 22 Aug 2017 12:01:16 GMT
Server: ECS (arn/45E2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    8244e3e15953c316b1210bb0bb958c8b
Sha1:   c8a5f80e1bee2effd7b61612533572d58b21981e
Sha256: 65ba3f0ed3aab0e01bfb5213d584361b4910ba063c32928359caed0a05138b46
                                        
                                            GET /parked_domain/img/parked-logo.png HTTP/1.1 
Host: www.axxess.co.za
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://medcheck.co.za/

                                         
                                         197.96.139.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 22 Aug 2017 15:43:26 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Wed, 11 May 2016 13:44:32 GMT
Etag: "11e7-532913dcc5000"
Accept-Ranges: bytes
Content-Length: 4583
Cache-Control: max-age=604800, public
Expires: Tue, 29 Aug 2017 15:43:26 GMT
Keep-Alive: timeout=2, max=50
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 290 x 94, 8-bit colormap, non-interlaced
Size:   4583
Md5:    a0550ce9e5e2a8430980d4203fa6e1d5
Sha1:   bd19e346e73b8534a3b0fefe49a85ec0753b7571
Sha256: eb96fc1c260c900b263c6004512d36460b315d314c75240796008925556204ad
                                        
                                            GET /parked_domain/img/parked-bg.jpg HTTP/1.1 
Host: www.axxess.co.za
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://medcheck.co.za/

                                         
                                         197.96.139.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Tue, 22 Aug 2017 15:43:26 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Wed, 11 May 2016 13:44:32 GMT
Etag: "765c-532913dcc5000"
Accept-Ranges: bytes
Content-Length: 30300
Cache-Control: max-age=604800, public
Expires: Tue, 29 Aug 2017 15:43:26 GMT
Keep-Alive: timeout=2, max=50
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   30300
Md5:    fbeeec8aa25cb0f2fd808ac9d3a7a74f
Sha1:   2d49d1d6f4a28a5922370bd1042652c94641022d
Sha256: c6befcf236caaae1433e663244cff1e06b2464b20e6acdbc1a9eb4e7def06eb3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: medcheck.co.za
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         154.0.164.74
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Tue, 07 Feb 2017 13:24:41 GMT
Accept-Ranges: bytes
Etag: "b86e1894581d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Tue, 22 Aug 2017 15:43:34 GMT
Content-Length: 1150


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    987e42999b8c25b7cd6caa75fc51e220
Sha1:   95a93ef21f868fa0424ade2cd88993226eefa4b8
Sha256: ba3399783958c7c41ce1c79c7adce6cb3988b6e270c1941aa2fd09d5085d06af