{"report_id":"24caa3d8-5792-43fc-a5c6-944edcc2f5bc","version":6,"status":"done","tags":[],"date":"2025-05-08T08:32:35Z","url":{"schema":"http","addr":"semsmanaging.ae/py/login.php","fqdn":"semsmanaging.ae","domain":"semsmanaging.ae","tld":"ae"},"ip":{"addr":"192.250.239.174","port":0,"asn":51713,"as":"WHG Hosting Services Ltd","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"semsmanaging.ae/py/login.php","fqdn":"semsmanaging.ae","domain":"semsmanaging.ae","tld":"ae"},"title":"PayLife | Anmelden"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-17T08:32:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"cdn.tailwindcss.com","ip":{"addr":"104.22.21.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-07-20","domain_rank":422202,"first_seen":"2018-07-09T05:46:13Z","last_seen":"2025-05-03T00:29:39.350621Z","alert_count":0,"request_count":2,"received_data":815356,"sent_data":822,"comment":"","tags":null,"fingerprints":null},{"fqdn":"semsmanaging.ae","ip":{"addr":"192.250.239.174","port":443,"asn":51713,"as":"WHG Hosting Services Ltd","country":"United Kingdom","country_code":"GB"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-05-08T08:32:35.726022Z","last_seen":"2025-05-08T08:32:35.726022Z","alert_count":1,"request_count":6,"received_data":624769,"sent_data":3122,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":[{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2025-05-07","alert":"Generic/Spear Phishing","trigger":"semsmanaging.ae/py/load.php","verdict":"phishing","severity":"medium","comment":"Generic/Spear Phishing","link":"https://openphish.com","meta":null}]},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"semsmanaging.ae/py/login.php","fqdn":"semsmanaging.ae","domain":"semsmanaging.ae","tld":"ae"},"ip":{"addr":"192.250.239.174","port":443,"asn":51713,"as":"WHG Hosting Services Ltd","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"ce738999f3fc9092c736d235d09901d6","sha1":"bfa4d4fc03d36ae07912aa7e3e5bcd223f39f89e","sha256":"53e6b108e44a6dd271e3d091be76ba4bed6b848a6b43b5ae02538cf2c6583ff9","sha512":"ccfff7564984b30300e5e21b1d1e296773f56306d84382e1e0050d474aef993ad9731567c9f0e9c1416e590ecfa988cbd73e1816297554125617c05112827ee2","ssdeep":"","tlshash":"7021ddae257b087246c15ab98fdfa042bc70d013500190283e8c82d96ff7b1c5bf4ea7","size":1331,"data":"","first_seen":"2025-05-08T08:32:41.437584Z","last_seen":"2025-08-09T07:09:00.901249Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.22.21.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2697bf25afb0982dfa17c73536f934c1","sha1":"7d7db122d0639cd1f1a53eb6018d6d713d312679","sha256":"fb798bb21731986940cf3a9950fbca386e03633e9a45497701e71f9b87d132ea","sha512":"658ee630973f04fa367b366c1ac838fa49fcff01682899f7480ed03201de5ab7b95420ddc5c2da116fe05b90a09ef1798b256628ab56d248a1618fdcdd0d79ca","ssdeep":"12288:fpgrZxSAoNEJb0Wie75aUXGuyQZhK4O0s:RCVoNE0Wie75aUWmnO0s","tlshash":"1b844aa57396702647eb51e850ea1042f2beaa38840c44bcf7edd4da39e5e4440fbf79","size":407279,"data":"","first_seen":"2024-12-07T03:18:13.420724Z","last_seen":"2026-03-31T17:49:56.654508Z","times_seen":4042,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"semsmanaging.ae/py/load.php","fqdn":"semsmanaging.ae","domain":"semsmanaging.ae","tld":"ae"},"ip":{"addr":"192.250.239.174","port":443,"asn":51713,"as":"WHG Hosting Services Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-08T08:32:02.381Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.semsmanaging.ae","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Mon, 28 Apr 2025 16:16:09 GMT","end":"Sun, 27 Jul 2025 16:16:08 GMT"},"fingerprint":{"sha1":"8A:7E:40:CC:A5:00:8C:41:8F:4B:53:9B:83:12:E3:DF:20:05:40:FA","sha256":"46:E4:B5:71:AD:E0:73:55:C8:01:0D:16:D8:21:8A:A0:50:60:AE:99:B8:69:A7:2E:F0:71:E4:DB:D1:75:B8:C5"}}},"request":{"raw":"GET /py/load.php HTTP/1.1\r\nHost: semsmanaging.ae\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=82fb9ae8a69efdc88f460e39aa8a7e20\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nlocation: login.php\r\nvary: User-Agent\r\ncontent-length: 0\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Thu, 08 May 2025 08:32:02 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":6016,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2025-05-07","alert":"Generic/Spear Phishing","trigger":"semsmanaging.ae/py/load.php","verdict":"phishing","severity":"medium","comment":"Generic/Spear Phishing","link":"https://openphish.com","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"semsmanaging.ae/py/login.php","fqdn":"semsmanaging.ae","domain":"semsmanaging.ae","tld":"ae"},"ip":{"addr":"192.250.239.174","port":443,"asn":51713,"as":"WHG Hosting Services Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-08T08:32:02.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.semsmanaging.ae","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Mon, 28 Apr 2025 16:16:09 GMT","end":"Sun, 27 Jul 2025 16:16:08 GMT"},"fingerprint":{"sha1":"8A:7E:40:CC:A5:00:8C:41:8F:4B:53:9B:83:12:E3:DF:20:05:40:FA","sha256":"46:E4:B5:71:AD:E0:73:55:C8:01:0D:16:D8:21:8A:A0:50:60:AE:99:B8:69:A7:2E:F0:71:E4:DB:D1:75:B8:C5"}}},"request":{"raw":"GET /py/login.php HTTP/1.1\r\nHost: semsmanaging.ae\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=82fb9ae8a69efdc88f460e39aa8a7e20\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 1708\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Thu, 08 May 2025 08:32:02 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6016,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"6c62ad600171627adfe2256fbf633634","sha1":"1e1aaa607590fffab6a6d212b100987a0f8461c9","sha256":"f1ecfa4868c80e1fd844dbb201b92541aba1eb3092f2efad350579efb1a3bad3","sha512":"8b1417a277ff1f4548d13be1f2946dd801e229e6435af7dcb1bfcc42dcf45f6c203426f0405e8d3db3e1baa3237c97d8703ce6f0a6052627bbb5ee7de7f32890","ssdeep":"96:2hV2OMm5Z9JwhJayJjUtKr3jj+ZAI2tP/TPC:2hvJ5Z9JEayJjUt0P5M","tlshash":"73c1652524f6087750c3c5b17e6aaa093e68c613c107896c37fc96e0afe3f45ce93665","first_seen":"2025-05-08T08:32:41.433289Z","last_seen":"2025-08-09T07:09:00.896123Z","times_seen":3,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.22.21.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://semsmanaging.ae/py/login.php","date":"2025-05-08T08:32:02.909Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Apr 2025 02:17:40 GMT","end":"Mon, 30 Jun 2025 03:17:37 GMT"},"fingerprint":{"sha1":"9B:3A:86:B2:34:9A:76:BF:85:6D:3A:86:E6:A9:39:2E:80:33:60:CF","sha256":"01:69:35:8E:13:2C:B2:23:C2:22:96:76:92:02:D6:8F:7C:01:E7:33:AA:C5:7C:56:83:DD:D0:02:4D:53:AD:34"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://semsmanaging.ae/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Thu, 08 May 2025 08:32:02 GMT\r\ncache-control: max-age=14400\r\nlocation: /3.4.16\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: cle1::iad1::x9tv9-1746692233209-0b458b69b80b\r\ncf-cache-status: HIT\r\nage: 250\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 93c79ab2781d0afe-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":407279,"size_decoded":0,"mime_type":"text/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":126,"timings":{"blocked":39,"dns":20,"connect":1,"send":0,"wait":43,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"semsmanaging.ae/favicon.ico","fqdn":"semsmanaging.ae","domain":"semsmanaging.ae","tld":"ae"},"ip":{"addr":"192.250.239.174","port":443,"asn":51713,"as":"WHG Hosting Services Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"","requested_by":"https://semsmanaging.ae/py/login.php","date":"2025-05-08T08:32:03.762Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.semsmanaging.ae","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Mon, 28 Apr 2025 16:16:09 GMT","end":"Sun, 27 Jul 2025 16:16:08 GMT"},"fingerprint":{"sha1":"8A:7E:40:CC:A5:00:8C:41:8F:4B:53:9B:83:12:E3:DF:20:05:40:FA","sha256":"46:E4:B5:71:AD:E0:73:55:C8:01:0D:16:D8:21:8A:A0:50:60:AE:99:B8:69:A7:2E:F0:71:E4:DB:D1:75:B8:C5"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: semsmanaging.ae\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://semsmanaging.ae/py/login.php\r\nCookie: PHPSESSID=82fb9ae8a69efdc88f460e39aa8a7e20\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-length: 315\r\ncontent-type: text/html; charset=iso-8859-1\r\ndate: Thu, 08 May 2025 08:32:03 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":315,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"a34ac19f4afae63adc5d2f7bc970c07f","sha1":"a82190fc530c265aa40a045c21770d967f4767b8","sha256":"d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3","sha512":"42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765","ssdeep":"","tlshash":"b0e0e75f41473347402252907dc110d1d505236b797161fd3d85b4ab501dc3dc99f7dc","first_seen":"2023-03-07T01:02:33Z","last_seen":"2026-04-04T15:41:39.128788Z","times_seen":143731,"resource_available":true,"data":null}},"time_used":43,"timings":{"blocked":19,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"semsmanaging.ae/py/login.php","fqdn":"semsmanaging.ae","domain":"semsmanaging.ae","tld":"ae"},"ip":{"addr":"192.250.239.174","port":443,"asn":51713,"as":"WHG Hosting Services Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-08T08:32:02.232Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.semsmanaging.ae","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Mon, 28 Apr 2025 16:16:09 GMT","end":"Sun, 27 Jul 2025 16:16:08 GMT"},"fingerprint":{"sha1":"8A:7E:40:CC:A5:00:8C:41:8F:4B:53:9B:83:12:E3:DF:20:05:40:FA","sha256":"46:E4:B5:71:AD:E0:73:55:C8:01:0D:16:D8:21:8A:A0:50:60:AE:99:B8:69:A7:2E:F0:71:E4:DB:D1:75:B8:C5"}}},"request":{"raw":"GET /py/login.php HTTP/1.1\r\nHost: semsmanaging.ae\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=82fb9ae8a69efdc88f460e39aa8a7e20; path=/\r\nlocation: load.php\r\nvary: User-Agent\r\ncontent-length: 0\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Thu, 08 May 2025 08:32:02 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":6016,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":221,"timings":{"blocked":80,"dns":30,"connect":20,"send":0,"wait":60,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"semsmanaging.ae/py/assets/paylife-logo.svg","fqdn":"semsmanaging.ae","domain":"semsmanaging.ae","tld":"ae"},"ip":{"addr":"192.250.239.174","port":443,"asn":51713,"as":"WHG Hosting Services Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"","requested_by":"https://semsmanaging.ae/py/login.php","date":"2025-05-08T08:32:02.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.semsmanaging.ae","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Mon, 28 Apr 2025 16:16:09 GMT","end":"Sun, 27 Jul 2025 16:16:08 GMT"},"fingerprint":{"sha1":"8A:7E:40:CC:A5:00:8C:41:8F:4B:53:9B:83:12:E3:DF:20:05:40:FA","sha256":"46:E4:B5:71:AD:E0:73:55:C8:01:0D:16:D8:21:8A:A0:50:60:AE:99:B8:69:A7:2E:F0:71:E4:DB:D1:75:B8:C5"}}},"request":{"raw":"GET /py/assets/paylife-logo.svg HTTP/1.1\r\nHost: semsmanaging.ae\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://semsmanaging.ae/py/login.php\r\nCookie: PHPSESSID=82fb9ae8a69efdc88f460e39aa8a7e20\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 19 Apr 2025 06:19:24 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 983\r\ncontent-type: image/svg+xml\r\ndate: Thu, 08 May 2025 08:32:02 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2348,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9aa7d917f0081345815f4dd8f3c29cbe","sha1":"34c32e3c0b7605a505985e0f015ae1059b3d2090","sha256":"941c1455561faa340608017e4a09cfef33188eac033f16ac012063005a056081","sha512":"cf9233e2faace179905b86f03bc00be5e3dc71b1dea4b4734dfd08b6489709418849356bc5c69dd94bb4419ffb820b163582d5a2ad66ec090c3cceb628d83b7f","ssdeep":"","tlshash":"3b4192dc0318cf6cfa4067fc0a1570a06996adee79f56354d2c6a033786d5a81ce89f7","first_seen":"2024-12-24T16:48:52.392112Z","last_seen":"2025-09-24T16:40:30.901389Z","times_seen":7,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/3.4.16","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.22.21.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://semsmanaging.ae/py/login.php","date":"2025-05-08T08:32:02.997Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 01 Apr 2025 02:17:40 GMT","end":"Mon, 30 Jun 2025 03:17:37 GMT"},"fingerprint":{"sha1":"9B:3A:86:B2:34:9A:76:BF:85:6D:3A:86:E6:A9:39:2E:80:33:60:CF","sha256":"01:69:35:8E:13:2C:B2:23:C2:22:96:76:92:02:D6:8F:7C:01:E7:33:AA:C5:7C:56:83:DD:D0:02:4D:53:AD:34"}}},"request":{"raw":"GET /3.4.16 HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://semsmanaging.ae/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 08 May 2025 08:32:03 GMT\r\ncontent-type: text/javascript\r\ncache-control: max-age=31536000\r\ncontent-encoding: br\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: cle1::iad1::gq8lt-1742894374190-208180a60008\r\nlast-modified: Tue, 25 Mar 2025 09:19:34 GMT\r\ncf-cache-status: HIT\r\nage: 2348721\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 93c79ab2b8690afe-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":407279,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (52853)","md5":"2697bf25afb0982dfa17c73536f934c1","sha1":"7d7db122d0639cd1f1a53eb6018d6d713d312679","sha256":"fb798bb21731986940cf3a9950fbca386e03633e9a45497701e71f9b87d132ea","sha512":"658ee630973f04fa367b366c1ac838fa49fcff01682899f7480ed03201de5ab7b95420ddc5c2da116fe05b90a09ef1798b256628ab56d248a1618fdcdd0d79ca","ssdeep":"12288:fpgrZxSAoNEJb0Wie75aUXGuyQZhK4O0s:RCVoNE0Wie75aUWmnO0s","tlshash":"1b844aa57396702647eb51e850ea1042f2beaa38840c44bcf7edd4da39e5e4440fbf79","first_seen":"2024-12-07T03:18:13.420724Z","last_seen":"2026-03-31T17:49:56.654508Z","times_seen":4042,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"semsmanaging.ae/py/assets/background.jpg","fqdn":"semsmanaging.ae","domain":"semsmanaging.ae","tld":"ae"},"ip":{"addr":"192.250.239.174","port":443,"asn":51713,"as":"WHG Hosting Services Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"","requested_by":"https://semsmanaging.ae/py/login.php","date":"2025-05-08T08:32:03.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.semsmanaging.ae","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Mon, 28 Apr 2025 16:16:09 GMT","end":"Sun, 27 Jul 2025 16:16:08 GMT"},"fingerprint":{"sha1":"8A:7E:40:CC:A5:00:8C:41:8F:4B:53:9B:83:12:E3:DF:20:05:40:FA","sha256":"46:E4:B5:71:AD:E0:73:55:C8:01:0D:16:D8:21:8A:A0:50:60:AE:99:B8:69:A7:2E:F0:71:E4:DB:D1:75:B8:C5"}}},"request":{"raw":"GET /py/assets/background.jpg HTTP/1.1\r\nHost: semsmanaging.ae\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://semsmanaging.ae/py/login.php\r\nCookie: PHPSESSID=82fb9ae8a69efdc88f460e39aa8a7e20\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 19 Apr 2025 06:19:48 GMT\r\naccept-ranges: bytes\r\ncontent-length: 602418\r\nvary: User-Agent\r\ncontent-type: image/jpeg\r\ndate: Thu, 08 May 2025 08:32:03 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":602418,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2340x3382, components 3","md5":"08757b50d1a26a69ba6edb1cb3e9e24d","sha1":"e3ce49b6bc694378490970aa546451cd4aeee1e4","sha256":"bd5ea6e6ef2a8e576dcd55e1a43bd2997aeaf44af363da6034e3791200e570a0","sha512":"976926a24f083b1e90298ecaa28ed8c7fd5d9a6e605895cc96afcf55b6fed13f786aef7725700dfaca1b23b286d09958bb50327eeb40b816d80e3396a6b742b5","ssdeep":"12288:ibfIQTSvqJZNNTHxQqqfhlrVWSBGTmfduy2jamwFaBzyR9VThRBz:idmiJZbNrq5yXezFFzR9pp","tlshash":"98d423471923e1a87e000ee28fd665faa25d8d123666e318774227f35b0ddbf54c1f8a","first_seen":"2024-12-24T16:48:52.396439Z","last_seen":"2025-09-24T16:40:30.89846Z","times_seen":7,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":46,"receive":125,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}