Report - cx69168.tw1.ru/web/depart.php

Report Overview

Visited public
2025-05-04 11:50:52
Tags
URL
cx69168.tw1.ru/web/depart.php
Finishing URL
cx69168.tw1.ru/web/depart.php
IP / ASN
188.225.23.151
#9123 TimeWeb Ltd.
Title
cx69168.tw1.ru/web/depart.php

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cx69168.tw1.ru	unknown	2006-06-29	2025-05-04	2025-05-04	5.4 kB	644 kB	188.225.23.151

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2025-05-03	medium	cx69168.tw1.ru/web/depart.php	Credit Agricole S.A.

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	cx69168.tw1.ru/web/depart.php	ScriptElement	305 B	2025-04-03	2025-05-08
Pretty URL cx69168.tw1.ru/web/depart.php IP 188.225.23.151 ASN #9123 TimeWeb Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-03 12:07 Last Seen2025-05-08 03:29 Times Seen7 Hash 6e4a96652181ae70e224292ae62f8ec0 c9e1999be7a7a68b59c58140a190e8dbfb5110dd 17808ebaa003b9a8b9868f9f12d14fffa8c4f1d1f264d4f01e0d3607713155c5 Loading...

	cx69168.tw1.ru/web/res/cdns/jq.js	ScriptElement	294 kB	2023-03-12	2025-05-08
Pretty URL cx69168.tw1.ru/web/res/cdns/jq.js IP 188.225.23.151 ASN #9123 TimeWeb Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:28 Last Seen2025-05-08 03:29 Times Seen531 Hash 1150e561f02aaa2a237a4f200face65d 6afaec62e997d0a42356c71521ef0d157b506757 9d02ee01919145c20b03ee9d3013af7118793dedf5d2c0696a773af90066c953 Loading...

HTTP Transactions (12)

URL IP Response Size

cx69168.tw1.ru/web/res/fonts.css

188.225.23.151

200 OK

147 B

URL GET
cx69168.tw1.ru/web/res/fonts.css
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
ASCII text, with CRLF line terminators
Size
147 B (147 bytes)
Hash
4120e6cc4fc73fb5086f4adade40359f
43dfd8388f198e735fe61d32b961da67216f96f0
1a0d94397022ccef8557d7c459cca9975496c73965368f2dd0fbf1529ef305a1

HTTP Headers

GET /web/res/fonts.css HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/depart.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: text/css
content-length: 147
last-modified: Sat, 20 Jan 2024 11:04:12 GMT
etag: "65aba8ac-93"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/res/style.css

188.225.23.151

200 OK

3.3 kB

URL GET
cx69168.tw1.ru/web/res/style.css
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
assembler source, ASCII text, with CRLF line terminators
Size
3.3 kB (3326 bytes)
Hash
ecbcb9d99b1707fa3510a8b6dcf50c0d
2336ea9a79e2be0f24f5c1c47d58c8a3a1643ec3
aa286e766c98a69180470965176e45b81673cbdb90ba1a84631762ac41c7668c

HTTP Headers

GET /web/res/style.css HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/depart.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: text/css
last-modified: Tue, 23 Jan 2024 06:16:38 GMT
vary: Accept-Encoding
etag: W/"65af59c6-cfe"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/res/menu.png

188.225.23.151

200 OK

311 B

URL GET
cx69168.tw1.ru/web/res/menu.png
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
PNG image data, 53 x 50, 8-bit/color RGBA, non-interlaced
Size
311 B (311 bytes)
Hash
212ab8ba0002cf0f2c79d7cac247926f
eae93b3c15073bc013acf51f8601f3a2f20f19c9
599e6ff8546fb8183657fba87d64bd6d4c20d642005754f3d05342b2d117ee35

HTTP Headers

GET /web/res/menu.png HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/depart.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: image/png
content-length: 311
last-modified: Sat, 20 Jan 2024 11:04:12 GMT
etag: "65aba8ac-137"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/res/pc-menu.png

188.225.23.151

200 OK

5.4 kB

URL GET
cx69168.tw1.ru/web/res/pc-menu.png
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
PNG image data, 559 x 67, 8-bit/color RGBA, non-interlaced
Size
5.4 kB (5433 bytes)
Hash
82d68cf5016464a60e6dd7c8e9094936
974b6e8f5de0e447063cae72fecf81f468d6a918
21063a036ce45e05fcbba86a2475f770fd06c3884011f1755e108a07cb673746

HTTP Headers

GET /web/res/pc-menu.png HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/depart.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: image/png
content-length: 5433
last-modified: Sat, 20 Jan 2024 11:04:12 GMT
etag: "65aba8ac-1539"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/res/Gotham-Light.woff2

188.225.23.151

200 OK

40 kB

URL GET
cx69168.tw1.ru/web/res/Gotham-Light.woff2
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40280, version 3.19726
Size
40 kB (40280 bytes)
Hash
7624ae091962735719fb82bf900c22b7
393477ccdcd62b914d90dd379dd7d677d761e416
e266d1f2bcf1da0faff6964637fdcd9a4e47c50a7a56be74424f409f30c83c5e

HTTP Headers

GET /web/res/Gotham-Light.woff2 HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/res/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: application/font-woff2
content-length: 40280
last-modified: Sat, 20 Jan 2024 11:04:12 GMT
etag: "65aba8ac-9d58"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/res/Gotham-Bold.woff2

188.225.23.151

200 OK

39 kB

URL GET
cx69168.tw1.ru/web/res/Gotham-Bold.woff2
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 39264, version 3.19726
Size
39 kB (39264 bytes)
Hash
003e90cf8cb3f8b4bef30d6764da18ed
512e44f40b54d0e5e081dda9fd5ea8a4429a508c
319881caca6f5f0d1e8e24040579d93386008e39dee1045965124b86303143e1

HTTP Headers

GET /web/res/Gotham-Bold.woff2 HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/res/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: application/font-woff2
content-length: 39264
last-modified: Sat, 20 Jan 2024 11:04:12 GMT
etag: "65aba8ac-9960"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

cx69168.tw1.ru/favicon.ico

188.225.23.151

404 Not Found

196 B

URL GET
cx69168.tw1.ru/favicon.ico
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
HTML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/depart.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/depart.php

188.225.23.151

200 OK

5.8 kB

URL User Request GET
cx69168.tw1.ru/web/depart.php
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2113), with CRLF line terminators
Size
5.8 kB (5836 bytes)
Hash
48fdebd6732e97a6ab1584fe31271c05
82bab2a1b226ac789888cab44b47912e4c1b4795
358e6dbf857a83f96a93a6472ebe130a5857df327ad04d35c735a2b2e3361ce6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Agricole S.A.

HTTP Headers

GET /web/depart.php HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/res/logo.png

188.225.23.151

200 OK

6.6 kB

URL GET
cx69168.tw1.ru/web/res/logo.png
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
PNG image data, 195 x 50, 8-bit/color RGBA, non-interlaced
Size
6.6 kB (6584 bytes)
Hash
d5aaa1735e76b896a2fcd37ca2183eae
6fdfd6f20623ea24a5c794f8728aef46c9b4b3bd
d4d7832cf0f0b869c483506c9bc2bd5985233f10c6f985add83f2a6a2a959cdd

HTTP Headers

GET /web/res/logo.png HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/depart.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: image/png
content-length: 6584
last-modified: Sat, 20 Jan 2024 11:04:12 GMT
etag: "65aba8ac-19b8"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/res/search.png

188.225.23.151

200 OK

1.5 kB

URL GET
cx69168.tw1.ru/web/res/search.png
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
PNG image data, 131 x 67, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1498 bytes)
Hash
6e46b573ac3bef44a92ef4a327897275
422f0046a603f3af8f11873d6367907380a37891
719c0a598c756a61795246b268553b0b45f9c42c831ffc77b3cbcbbea65f52a6

HTTP Headers

GET /web/res/search.png HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/depart.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: image/png
content-length: 1498
last-modified: Sat, 20 Jan 2024 11:04:12 GMT
etag: "65aba8ac-5da"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/res/cdns/jq.js

188.225.23.151

200 OK

294 kB

URL GET
cx69168.tw1.ru/web/res/cdns/jq.js
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
JavaScript source, ASCII text
Size
294 kB (293671 bytes)
Hash
1150e561f02aaa2a237a4f200face65d
6afaec62e997d0a42356c71521ef0d157b506757
9d02ee01919145c20b03ee9d3013af7118793dedf5d2c0696a773af90066c953

HTTP Headers

GET /web/res/cdns/jq.js HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/depart.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: application/x-javascript
last-modified: Sat, 20 Jan 2024 11:04:12 GMT
vary: Accept-Encoding
etag: W/"65aba8ac-47b27"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

cx69168.tw1.ru/web/res/back2.jpg

188.225.23.151

200 OK

244 kB

URL GET
cx69168.tw1.ru/web/res/back2.jpg
IP
188.225.23.151:443
ASN
#9123 TimeWeb Ltd.

Requested by
https://cx69168.tw1.ru/web/depart.php
Certificate
IssuerGlobalSign nv-sa
Subject*.tw1.ru
Fingerprint3B:17:7E:02:A9:75:7F:1C:3F:6E:02:20:9C:F3:D9:33:AF:59:66:F1
ValidityWed, 15 Jan 2025 07:43:20 GMT - Mon, 16 Feb 2026 07:43:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=791, bps=218, PhotometricInterpretation=RGB, description=Diverse culture people using mobile smartphone outdoor - Happy friends having fun with technology trends - Youth, new generatio, manufacturer=SONY, model=ILCE-7M2, orientation=upper-left, width=1326], progressive, precision 8, 960x960, components 3
Size
244 kB (243919 bytes)
Hash
b259c4797d838add41da1047021d2480
13de10f5a348efa8ff3d856f2e347eeff8a33579
c4966ab5e78e2270952b89576c4a0a386e8a7ea673c56f0f396d620abf4f81b8

HTTP Headers

GET /web/res/back2.jpg HTTP/1.1
Host: cx69168.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cx69168.tw1.ru/web/depart.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.26.3
date: Sun, 04 May 2025 11:50:31 GMT
content-type: image/jpeg
content-length: 243919
last-modified: Sat, 20 Jan 2024 11:04:12 GMT
etag: "65aba8ac-3b8cf"
expires: Mon, 04 May 2026 11:50:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash