smg.city/bud
103.101.52.69 0 B IP 103.101.52.69:0
ASN #136843 Dinas Komunikasi dan Informatika Pemerintah Kota Semarang
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bud HTTP/1.1
Host: smg.city
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx/1.17.2
Date: Sat, 02 Dec 2023 13:10:58 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Powered-By: PHP/7.0.8
Location: https://strksmnge-pmblianspasea.dynnamn.ru/?signtye
strksmnge-pmblianspasea.dynnamn.ru/?signtye
162.214.98.92 160 B URL strksmnge-pmblianspasea.dynnamn.ru/?signtye
IP 162.214.98.92:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash d0353385847a19e2899a826e49f144c9
cd8ec88d5292054102008badd13db9d4955f4647
98376e99ed88d2350b56fb1ec7f56245c292613c55657860f8aa19d951f7c537
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /?signtye HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:10:59 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
162.214.98.92200 OK 2.8 kB URL User Request GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (330)
Hash 807e2973673a19b9e521aa3302f8b0aa
b14ec812584c3dd0c1d2f561dc22fda03d00202e
c0ddea0330cdad8dd89d73860fcc2449cd2591c22af6e5352bf73229cbf035ff
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /account/?view=login&appIdKey=a964943ec381744&country=NO HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/?signtye
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:00 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
strksmnge-pmblianspasea.dynnamn.ru/assets/css/modal.css
162.214.98.92200 OK 18 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/css/modal.css
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type ASCII text, with very long lines (17803), with no line terminators
Hash 8ab65fdf5424038cafa42049fa73e7bf
cdfab6775ee409086d6387565c0c17680a3c8bfa
6097f6d2cbbb8780c006ccbc4914216ee8b449ea80a71e9cb2b0c93e9631f8d5
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/css/modal.css HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:01 GMT
Server: Apache
Last-Modified: Thu, 12 Jul 2018 00:56:28 GMT
Accept-Ranges: bytes
Content-Length: 17803
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
strksmnge-pmblianspasea.dynnamn.ru/assets/js/script-login-desktop.js
162.214.98.92200 OK 1.2 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/js/script-login-desktop.js
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type ASCII text, with CRLF line terminators
Hash ff0ecc2b70c9ad12b4043d00dc3d5d9e
5326d14cc8635c4a7ef10ad160b5d05d87a31cc0
42f3d2772f3df6542b9ff9db1684b27f2b7ffad066c329f3fff582a9e3074e7d
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/js/script-login-desktop.js HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:01 GMT
Server: Apache
Last-Modified: Tue, 26 Dec 2017 21:59:06 GMT
Accept-Ranges: bytes
Content-Length: 1240
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
strksmnge-pmblianspasea.dynnamn.ru/assets/css/style-login-desktop.css
162.214.98.92200 OK 8.0 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/css/style-login-desktop.css
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type ASCII text, with very long lines (7994), with no line terminators
Hash 53764a563e5fd4669b624b96adddbb9b
46dbc09333ba09f0125c3f2fd22677614dad2403
21716f423a763bdb240b136af1a9feba49f58e6fd2e5beeb55aa15037ff102c9
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/css/style-login-desktop.css HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:01 GMT
Server: Apache
Last-Modified: Thu, 12 Jul 2018 00:57:02 GMT
Accept-Ranges: bytes
Content-Length: 7994
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
strksmnge-pmblianspasea.dynnamn.ru/assets/js/jquery.js
162.214.98.92200 OK 86 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/js/jquery.js
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type ASCII text, with very long lines (32065), with CRLF line terminators
Hash adb784ef9dc257b32965a5da7ee82a8b
7a41c488d820ea08231d1d393e5f4daed4d25041
8e09aa31f396ea41d698f437dc5fc7125e931d400eb2873f5b68ef78c1e6f3a6
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/js/jquery.js HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:01 GMT
Server: Apache
Last-Modified: Mon, 12 Nov 2018 17:38:58 GMT
Accept-Ranges: bytes
Content-Length: 85580
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
strksmnge-pmblianspasea.dynnamn.ru/assets/js/jquery.validate.min.js
162.214.98.92200 OK 23 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/js/jquery.validate.min.js
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type Unicode text, UTF-8 text, with very long lines (23122), with CRLF line terminators
Hash c2e02460a0c2bb3c499009f8aa4297ab
7998a9786924b8222a46f05e0314b05862f7a713
788b4b14ec9f43877f386cc49c67218b664c545f048468334b493b7d238f89f4
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/js/jquery.validate.min.js HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:01 GMT
Server: Apache
Last-Modified: Mon, 12 Nov 2018 17:18:56 GMT
Accept-Ranges: bytes
Content-Length: 23264
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
strksmnge-pmblianspasea.dynnamn.ru/assets/css/bootstrap.min.css
162.214.98.92200 OK 110 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/css/bootstrap.min.css
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type ASCII text, with very long lines (65371)
Size 110 kB (109518 bytes)
Hash 385b964b68acb68d23cb43a5218fade9
58a360d7ef24d8d05737db1712dd5c086597e862
b5fd723750763ebb731f9221e413e7d64d58d5192dc040e42292ed3dcccca732
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/css/bootstrap.min.css HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:01 GMT
Server: Apache
Last-Modified: Wed, 25 Jun 2014 03:14:12 GMT
Accept-Ranges: bytes
Content-Length: 109518
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
strksmnge-pmblianspasea.dynnamn.ru/assets/img/logo.png
162.214.98.92200 OK 4.7 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/logo.png
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type PNG image data, 420 x 112, 8-bit colormap, non-interlaced\012- data
Hash 643a1f9fc2aa09799472c39031456af5
70f89834a607b4a00e5c1e8ff2bd66b798db04df
c691a459c75691e086dfbbacf08d2f4591a8316f11484ff99a5ca500a172e2b4
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/logo.png HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:02 GMT
Server: Apache
Last-Modified: Wed, 29 Nov 2017 22:29:44 GMT
Accept-Ranges: bytes
Content-Length: 4690
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
strksmnge-pmblianspasea.dynnamn.ru/assets/img/navbar-repeat-login.png
162.214.98.92200 OK 186 B URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/navbar-repeat-login.png
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type PNG image data, 1 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash 830a3bf9352f3c3b78865d529d72cee4
1b5d9f63eb347cee0e8a612e8af6adcfc3b929f3
e49898a9129afa7b491faa3cfe7e03667c7152e1aad867b3c910c9de8aad2ab7
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/navbar-repeat-login.png HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/assets/css/style-login-desktop.css
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:02 GMT
Server: Apache
Last-Modified: Wed, 29 Nov 2017 22:57:10 GMT
Accept-Ranges: bytes
Content-Length: 186
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
strksmnge-pmblianspasea.dynnamn.ru/assets/img/btn.png
162.214.98.92200 OK 711 B URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/btn.png
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type PNG image data, 29 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 72ae62bf41ef56795a918c54169c1243
ed438963479a897b970eb29f916f8b81c46d5cff
20561e3f883ab183123a6ef5a08a66fd701c6553766be53950034e487731b3fb
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/btn.png HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/assets/css/style-login-desktop.css
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:02 GMT
Server: Apache
Last-Modified: Sun, 27 Dec 2015 07:24:34 GMT
Accept-Ranges: bytes
Content-Length: 711
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
strksmnge-pmblianspasea.dynnamn.ru/assets/img/footer-login-desktop.png
162.214.98.92200 OK 68 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/footer-login-desktop.png
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type PNG image data, 1010 x 387, 8-bit/color RGBA, non-interlaced\012- data
Hash 03f050d044fa1712f4da42ba60c1bb57
980756aec61d0ada8dd224449bcb7ae6acee1d7e
63d0b4747b1208a82a115837bf59556c26a2bf4173bcf7a6cbb9254373a7c0f5
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/footer-login-desktop.png HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/assets/css/style-login-desktop.css
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:02 GMT
Server: Apache
Last-Modified: Wed, 27 Dec 2017 05:25:54 GMT
Accept-Ranges: bytes
Content-Length: 67831
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
strksmnge-pmblianspasea.dynnamn.ru/assets/img/navbar.png
162.214.98.92200 OK 20 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/navbar.png
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type PNG image data, 1000 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 3eec9a839c236164353015a4becf6310
ad05219c34d3a4dc026e708436701fe8ad6eb116
9d031ab45532cbbc836814405707597d04c0830d59c713fc26176c4e48e6a5cc
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/navbar.png HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/assets/css/style-login-desktop.css
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:02 GMT
Server: Apache
Last-Modified: Sat, 26 Dec 2015 04:19:08 GMT
Accept-Ranges: bytes
Content-Length: 20218
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
strksmnge-pmblianspasea.dynnamn.ru/assets/img/fot.png
162.214.98.92200 OK 70 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/fot.png
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type PNG image data, 1440 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d80f544e8f7a05371e52bc5784ff70b
ecb0ec62f563f26783005783e9f4ac97da1fe1ba
cca6d2243ce58776ece6442dad0c84d08621100b8b24c3c1e1cc6a45c2173b86
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/fot.png HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/assets/css/style-login-desktop.css
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:02 GMT
Server: Apache
Last-Modified: Fri, 12 Jan 2018 11:32:48 GMT
Accept-Ranges: bytes
Content-Length: 69666
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
strksmnge-pmblianspasea.dynnamn.ru/assets/img/footerbawah.png
162.214.98.92200 OK 33 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/footerbawah.png
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type PNG image data, 1440 x 79, 8-bit/color RGBA, non-interlaced\012- data
Hash c88ba03dad3bd3c0529c000a3fdeaed5
ed735e4c947cf88df178a99f0c1e25e5b7bee82d
dd5855892cf85af8d10519cd7a67b4295f1eeca6e7a5c5eecdcaabe9822c804e
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/footerbawah.png HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/assets/css/style-login-desktop.css
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:02 GMT
Server: Apache
Last-Modified: Fri, 01 Jul 2022 08:18:50 GMT
Accept-Ranges: bytes
Content-Length: 32656
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
strksmnge-pmblianspasea.dynnamn.ru/assets/css/31642.ttf
162.214.98.92200 OK 94 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/css/31642.ttf
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type OpenType font data\012- data
Hash b58491710f8752142d06a0cbae7f1c90
e7a9014ee08887c26aa8e16607fec3537d3b262b
ce14da853e7fd9c071f89a2f66ac447156ab0b799a5fdcafca174de85bb87936
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/css/31642.ttf HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/assets/css/style-login-desktop.css
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:02 GMT
Server: Apache
Last-Modified: Fri, 03 Jun 2016 22:29:00 GMT
Accept-Ranges: bytes
Content-Length: 93500
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/ttf
strksmnge-pmblianspasea.dynnamn.ru/assets/img/login-desktop.png
162.214.98.92200 OK 1.1 MB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/login-desktop.png
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, progressive, precision 8, 4628x1732, components 3\012- data
Size 1.1 MB (1080923 bytes)
Hash e2f376b6b058ff6c7c1e6f3b525a9157
5c50c1cd477de76e7b1e2c6437479664bb86ca7b
bca2ec8caf9eaaa75ed49a2f0de20067590b055d7457ae1f0c67acd394055fdc
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/login-desktop.png HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:02 GMT
Server: Apache
Last-Modified: Wed, 11 Jul 2018 12:32:34 GMT
Accept-Ranges: bytes
Content-Length: 1080923
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
strksmnge-pmblianspasea.dynnamn.ru/assets/img/favicon.ico
162.214.98.92200 OK 9.1 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/favicon.ico
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type MS Windows icon resource - 4 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 28ec4eaba5ae210b98a11257caf5bade
6164148a39d6a27286641896fce3b76f439aeab1
3f5086612aae9363c9fb02949219cef19854c18fe5ad4eda78aa1aefcc79cc71
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/favicon.ico HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:03 GMT
Server: Apache
Last-Modified: Sat, 26 Dec 2015 07:05:32 GMT
Accept-Ranges: bytes
Content-Length: 9062
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/x-icon
strksmnge-pmblianspasea.dynnamn.ru/assets/img/favicon.ico
162.214.98.92200 OK 9.1 kB URL GET HTTP/1.1 strksmnge-pmblianspasea.dynnamn.ru/assets/img/favicon.ico
IP 162.214.98.92:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Certificate IssuerLet's Encrypt
Subjectstrksmnge-pmblianspasea.dynnamn.ru
FingerprintAE:6D:EC:CA:B2:9F:88:43:36:0B:EB:BC:D2:18:80:28:E1:C9:B8:3C
ValidityThu, 30 Nov 2023 21:32:50 GMT - Wed, 28 Feb 2024 21:32:49 GMT
File type MS Windows icon resource - 4 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 28ec4eaba5ae210b98a11257caf5bade
6164148a39d6a27286641896fce3b76f439aeab1
3f5086612aae9363c9fb02949219cef19854c18fe5ad4eda78aa1aefcc79cc71
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery suspicious Suspicious - DynDNS domain
Quad9 DNS malicious Sinkholed
GET /assets/img/favicon.ico HTTP/1.1
Host: strksmnge-pmblianspasea.dynnamn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://strksmnge-pmblianspasea.dynnamn.ru/account/?view=login&appIdKey=a964943ec381744&country=NO
Cookie: PHPSESSID=161bcf19810eccdd584a5b186bac2b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 13:11:03 GMT
Server: Apache
Last-Modified: Sat, 26 Dec 2015 07:05:32 GMT
Accept-Ranges: bytes
Content-Length: 9062
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/x-icon