| 185.160.182.120/~sixtowns/webapp/login.php | 185.160.182.120 | 200 OK | 162 B |
URL User Request GET HTTP/1.1185.160.182.120/~sixtowns/webapp/login.php IP185.160.182.120:443 ASN#61323 Ans Academy Limited
CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/login.php HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 07 May 2024 09:24:03 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://185.160.182.120/~sixtowns/webapp/login.php
|
|
| 185.160.182.120/~sixtowns/webapp/login.php | 185.160.182.120 | 200 OK | 12 kB |
URL User Request GET HTTP/1.1185.160.182.120/~sixtowns/webapp/login.php IP185.160.182.120:443 ASN#61323 Ans Academy Limited
CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hashc41c14e3b554e22fbfeed241916381e3 4127e9bb66dceb195c6e02f3e9ef3add06d1a42e afe54d91ee911d93bbc2f288fc0741823494f7ee2d25da89535191731eedde9b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/login.php HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4; path=/
MS-Author-Via: DAV
X-Powered-By: PHP/5.3.3, PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/fonts/font-awesome-4.7.0/css/font-awesome.min.css | 185.160.182.120 | 200 OK | 31 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/fonts/font-awesome-4.7.0/css/font-awesome.min.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/fonts/font-awesome-4.7.0/css/font-awesome.min.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 31000
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:10 GMT
ETag: "50073a-7918-586b624099887"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/forms.css | 185.160.182.120 | 200 OK | 11 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/forms.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (415) Hash0975840ac53dea2aca4a47c8f3ea4e03 973480da310ef06480eadf793065b11c093d011c f8962f817fbddcedfdb2c2e107bdabf62d033386d6dd1a30191e47f09627f3b6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/forms.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 11418
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:25 GMT
ETag: "50077e-2c9a-586b624f6cee0"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/screen.css | 185.160.182.120 | 200 OK | 2.7 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/screen.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
Hash62e597241a73bfa72241b1df76f9dc91 1df3f98ee54d0d1df353bd8dacb9c5bc3c87f614 fac66b8be65d464a40bf749a418ec67146c888e992f619fcf3a5de70ade8cdbd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/screen.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 2713
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:31 GMT
ETag: "50079f-a99-586b62552c5c2"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/nav.css | 185.160.182.120 | 200 OK | 7.5 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/nav.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
Hashadd576150bc6c813c5814507dd645015 e6c9ae89636df32eece324736c1ce91d7d4a5764 3445782f2d33c6e19616178376af6560cc49d3f0146d0f569938e33ccf647b25
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/nav.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 7476
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:14:49 GMT
ETag: "50079c-1d34-586b6514d1434"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/base.css | 185.160.182.120 | 200 OK | 10 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/base.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
Hash016e809fe883e1d9359cec62db59c584 0444f5185846955bb449ebcc4b7ac565805c5030 21c20f28e2453aec7d7729f6d8a34a7272c65b640891d55c0e939919d8ba1eb1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/base.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 9965
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:09 GMT
ETag: "500734-26ed-586b623fbb9c2"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/slider.css | 185.160.182.120 | 200 OK | 3.7 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/slider.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
Hashdba38f341b68d9616cc9a8eaaa519ce3 95fb7613b5f0e8677a9e5ad2a372738300b69835 c19fdb01d61be71ff4fb081080ea9c947a267875093be2a265e9ded8ff96cd9a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/slider.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 3676
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:15:28 GMT
ETag: "5007a1-e5c-586b653955dcd"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/jquery-ui-1.10.1.css | 185.160.182.120 | 200 OK | 22 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/jquery-ui-1.10.1.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeASCII text, with very long lines (1404) Hash603655bdb7537bacd5cc58f8ab3f6157 1de7584b7e4f91e27cc4117b4098d0dd6d8dfc3d 2b5cf1eeaf5bae7b2799e01fcaf026c9a28813c4849fedb6733e4657af82a750
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/jquery-ui-1.10.1.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 21853
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:30 GMT
ETag: "500798-555d-586b62541c636"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/melon2.datepicker.css | 185.160.182.120 | 200 OK | 2.2 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/melon2.datepicker.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
Hashbf34d82185c07b0334e39b82407b4611 0887284d98f26f0bb0ea3bcc76d6b302d30eb223 5c112f5c1eee3be0a7ddbf2296fa646e4c2de79491f15d347aa139957792fc57
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/melon2.datepicker.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 2189
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:31 GMT
ETag: "50079a-88d-586b62546a065"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/includes/jquery.validate.min.js | 185.160.182.120 | 200 OK | 23 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/includes/jquery.validate.min.js IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (22932) Hash9346ec27896981bc4c0b146cf327727a 21486194baa22eb1155fe98bf7af6314e7773cc7 50e497b00818378dcffe856b994f89947b620c66163768879c9b8a63d583f898
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/includes/jquery.validate.min.js HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/javascript
Content-Length: 23070
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:03:06 GMT
ETag: "500822-5a1e-586b62763bf3e"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/includes/validate-on-line.js | 185.160.182.120 | 200 OK | 2.6 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/includes/validate-on-line.js IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeASCII text, with very long lines (328) Hash4d0c95219ba99f95f9c6b8dce2a065d4 25cae0b64a95efd18ea7cf8fa9e8ab599481ec94 1f371cab341d5d56a3a045414b39517b9b2bcf3d20ed9103cf56e9cec70c1522
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/includes/validate-on-line.js HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/javascript
Content-Length: 2574
Connection: keep-alive
Last-Modified: Mon, 01 Jun 2020 13:56:50 GMT
ETag: "500992-a0e-5a7062a9dd0e8"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/grid.css | 185.160.182.120 | 200 OK | 34 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/grid.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
Hasha55f0b554d2df4f56d31aca00c3c2dc4 fedb2398e2ef9d07f3ee9b30406a730ff0fa9c9b 07388b5f3f6dc74330e1360a6a1e4c0a5adc51f5ebb15ccc903d4975c64fc931
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/grid.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 34303
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:26 GMT
ETag: "500782-85ff-586b62502967d"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/includes/slider-min.js | 185.160.182.120 | 200 OK | 19 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/includes/slider-min.js IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (19040) Hash697d69a48e5356f7106e38c09f7f19e0 b57160771fa597a5b56c5b12756c693e4829be07 bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/includes/slider-min.js HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/javascript
Content-Length: 19359
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:04:18 GMT
ETag: "500950-4b9f-586b62bb3b384"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/css/animate.css | 185.160.182.120 | 200 OK | 72 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/css/animate.css IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
Hashe7215e7a3fa459c1a76e594c046c5d62 5836d5d04c9b9c203100ef831407deb43085c344 6c329ffe436629036331e271fae92537a104c8c2025747d9f545c6deb7323e06
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/css/animate.css HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/css
Content-Length: 72311
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:09 GMT
ETag: "500732-11a77-586b623f6c823"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/includes/datemask.js | 185.160.182.120 | 200 OK | 16 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/includes/datemask.js IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeJavaScript source, ASCII text Hash9ae7e30099732f0bec486490be9e19cf e0e853d67e9afa8005cba8b3074836c9e75bf898 6a2f967ab83a1b16b06c60bbbbbe901f1719b620718f43ee6b7a48d7578cee67
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/includes/datemask.js HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/javascript
Content-Length: 16385
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:58 GMT
ETag: "5007fd-4001-586b626eef4ea"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/includes/jquery-2.1.4.min.js | 185.160.182.120 | 200 OK | 84 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/includes/jquery-2.1.4.min.js IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32025) Hashf2641794f7c8d7a32475ca53d87bd16a 8d7994297ccbe7c23067ac56a436a4f05e7151db 3eeeb135a5d976929543e9b31efabbf5ca037c5e0b6e869f85c87865f9b8138e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/includes/jquery-2.1.4.min.js HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: text/javascript
Content-Length: 84261
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:03:06 GMT
ETag: "500821-14925-586b62760bdb7"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/images/logo.png | 185.160.182.120 | 200 OK | 6.3 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/images/logo.png IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typePNG image data, 201 x 150, 8-bit/color RGBA, non-interlaced Hash66eba270ae9d48bd5ce3895af88cf91f 06ae1d0827d829d0599430c823e3cce4e5b2f3fb 5d4ba4ee7b20b300b21b08214b203ae2ebf41153317f632e9536ce51b7489d9f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/images/logo.png HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: image/png
Content-Length: 6302
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 09:02:44 GMT
ETag: "5007c5-189e-586b62616291c"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 | 142.250.74.163 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 IP142.250.74.163:443
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14712, version 1.0 Hash3afeae0d768769f5e5f30ac9805c5b70 3ada17c2b462db3e7a1fd85c3f4670dfe7704f4d 0d0a6262c545e8bbc895116e5afb22579c468d7abb77e378f377d6fed57c1dce
GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://185.160.182.120
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:53:43 GMT
expires: Fri, 02 May 2025 01:53:43 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 22:52:57 GMT
content-type: font/woff2
age: 459022
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 | 142.250.74.163 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 IP142.250.74.163:443
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14892, version 1.0 Hash9ec6deaf6bada919e20b98f9f7b718b1 501d36403ad8205e4644532600019ecb10f5cb0a 7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762
GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://185.160.182.120
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 04:42:49 GMT
expires: Sat, 03 May 2025 04:42:49 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 22:52:56 GMT
content-type: font/woff2
age: 362476
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 185.160.182.120/~sixtowns/webapp/images/favicons//favicon-16x16.png | 185.160.182.120 | 200 OK | 800 B |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/images/favicons//favicon-16x16.png IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hashd952ff6ff8cd247ba56c3cfc90416577 bcffdf9e3a85209627c3ebcd06758629a25cab0d 21c8c860090f5e4a273783889e1727d85ba9bad1068e2e11973218f5bada129c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/images/favicons//favicon-16x16.png HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: image/png
Content-Length: 800
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 10:11:52 GMT
ETag: "5007b9-320-586b71d576c20"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| 185.160.182.120/~sixtowns/webapp/images/favicons/apple-touch-icon.png | 185.160.182.120 | 200 OK | 9.4 kB |
URL GET HTTP/1.1185.160.182.120/~sixtowns/webapp/images/favicons/apple-touch-icon.png IP185.160.182.120:443 ASN#61323 Ans Academy Limited
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerSectigo Limited Subjectsecurecuserver.co.uk Fingerprint43:77:4F:FE:99:CD:42:CF:A6:20:35:B4:5E:FE:A8:FC:DF:81:13:0B ValidityWed, 26 Oct 2022 00:00:00 GMT - Fri, 03 Nov 2023 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash4927f27b2e0ce69ca7fb00b08ea921c7 1946df66ef0c53b831400a3b91d3af9db3fc54b5 892dd7c7ccbb9c27a008f973083cdf02dd50ddaf86f7d94bbe509d36b2d6875d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /~sixtowns/webapp/images/favicons/apple-touch-icon.png HTTP/1.1
Host: 185.160.182.120
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/~sixtowns/webapp/login.php
Cookie: PHPSESSID=8pmro9987cdhoevtt26q58cru4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:24:05 GMT
Content-Type: image/png
Content-Length: 9419
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2019 10:11:52 GMT
ETag: "5007b7-24cb-586b71d52dc29"
Accept-Ranges: bytes
MS-Author-Via: DAV
X-Powered-By: PleskLin
|
|
| fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,400i,600,600i,700,700i,900,900i | 142.250.74.106 | 200 OK | 22 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,400i,600,600i,700,700i,900,900i IP142.250.74.106:443
Requested byhttps://185.160.182.120/~sixtowns/webapp/login.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash4f5eb1933ceb1deb5c66d99dc44f832a e21a9da9d012c194a5e748cc61bffbe663972183 3d02cb9c437de96ef14bf838a5521ac3948b27d92abc8f93fd9e8e13722ec3ed
GET /css?family=Source+Sans+Pro:300,400,400i,600,600i,700,700i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://185.160.182.120/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 09:24:05 GMT
date: Tue, 07 May 2024 09:24:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|