Overview

URLeu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
IP54.72.9.51
ASNAS16509 Amazon.com, Inc.
Location Ireland
Report completed2017-05-20 03:00:29 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Referer
Pool
Access Levelpublic


Intrusion Detection Systems

Snort /w Sourcefire VRT No alerts detected
Suricata /w Emerging Threats Pro No alerts detected


Blacklists

Fortinet's Web Filter / fortiguard.com
Added / Verified Severity Host Comment
2017-05-202eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exeMalware
2017-05-202parkingcrew.net/assets/scripts/js3.jsMalware
MDL / malwaredomainlist.com No alerts detected
DNS-BH / malwaredomains.com No alerts detected
mnemonic secure DNS / mnemonic.no No alerts detected
OpenPhish / openphish.com No alerts detected
PhishTank / phishtank.com No alerts detected
Spamhaus DBL / spamhaus.org No alerts detected


Files Captured



Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 54.72.9.51

Date UQ / IDS / BL URL IP
2017-05-25 15:13:410 - 0 - 1dl.downloadiechahrixiew.com/n/3.1.14.2/10668707/brothers%20in%20arms:%20earned%20in%2 (...)54.72.9.51
2017-05-25 15:10:590 - 0 - 1eu.springfiles.net/ritmo_bluetooth_driver_lan_downloader.exe54.72.9.51
2017-05-25 15:10:590 - 0 - 1eu.springfiles.net/ritmo_bluetooth_driver_station_downloader.exe54.72.9.51
2017-05-25 14:24:490 - 0 - 1dl.downloadiechahrixiew.com/n/3.1.18.1/10232310/windows%20live%20messenger.exe54.72.9.51
2017-05-25 13:09:250 - 0 - 1nycwj.com/mp3/%D9%83%D9%88%D9%83%D8%AA%D9%8A%D9%84--%D8%A7%D8%BA%D8%A7%D9%86%D9%89.ht (...)54.72.9.51
2017-05-25 12:28:060 - 0 - 1eu1.springfiles.net/bloomberg_data_license_request_builder_download_downloader.exe54.72.9.51

Last 6 reports on ASN: AS16509 Amazon.com, Inc.

Date UQ / IDS / BL URL IP
2017-05-25 16:11:380 - 0 - 0www.weezevent.comhttps:///vodlocker1-watch-baywatch-2017-full-hd-online-today54.72.106.112
2017-05-25 16:09:470 - 0 - 1ow.ly/yYFu30c1knb54.183.130.144
2017-05-25 16:08:240 - 0 - 1801.silu.masayoube.website/52.29.198.135
2017-05-25 16:08:010 - 0 - 0admin.pingone.comhttps:///web-portal/login52.24.175.201
2017-05-25 16:05:460 - 0 - 1luckyworld.net.rewardmemberships.faith/52.29.198.135
2017-05-25 16:01:400 - 0 - 18adorr.herokuapp.comhttps:///view.php?login=carl.johnson@staples.com54.217.214.224

Last 6 reports on domain: eu1.springfiles.net

Date UQ / IDS / BL URL IP
2017-05-25 12:28:060 - 0 - 1eu1.springfiles.net/bloomberg_data_license_request_builder_download_downloader.exe54.72.9.51
2017-05-25 12:26:290 - 0 - 1eu1.springfiles.net/download_edc_book_by_jb_gupta_downloader.exe54.72.9.51
2017-05-25 12:20:500 - 0 - 1eu1.springfiles.net/microsoft_rdp_error_code_2825_downloader.exe54.72.9.51
2017-05-25 11:06:140 - 0 - 1eu1.springfiles.net/the_theoreme_zero_ita_downloader.exe54.72.9.51
2017-05-25 10:54:020 - 0 - 1eu1.springfiles.net/cyberlink_powerdirector_12_ultimate_crack_key_full_version_downloader.exe54.72.9.51
2017-05-25 07:50:200 - 0 - 1eu1.springfiles.net/avengers_assemble_-_ultron_revolution_s03e01-04_x264_ita_eng_dlmux_download (...)54.72.9.51



JavaScript

Executed Scripts (8)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (24)


Request Response
GET /beko-volumax-5-user-manual_downloader.exe HTTP/1.1

Host: eu1.springfiles.net

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 54.72.9.51
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Sat, 20 May 2017 01:07:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
GET /assets/scripts/js3.js HTTP/1.1

Host: parkingcrew.net

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
 185.53.179.29
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Sat, 20 May 2017 00:59:25 GMT
Content-Length: 17915
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: "57df9bb5-45fb"
Accept-Ranges: bytes
GET /track.php?domain=springfiles.net&toggle=browserjs&uid=MTQ5NTI0MTk2NC44NzczOjRjZDIxYjhjMWI2ZGRlOTRhYjBiNjhmOGU3ZTE0MDJiYmZmNWQ4ZWY4OGRmOGMzMjUzMThiNTVjZjNlMGNhYzc6NTkxZjk0ZWNkNjMxYw%3D%3D HTTP/1.1

Host: eu1.springfiles.net
GET /track.php?domain=springfiles.net&toggle=browserjs&uid=MTQ5NTI0MTk2NC44NzczOjRjZDIxYjhjMWI2ZGRlOTRhYjBiNjhmOGU3ZTE0MDJiYmZmNWQ4ZWY4OGRmOGMzMjUzMThiNTVjZjNlMGNhYzc6NTkxZjk0ZWNkNjMxYw%3D%3D HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
 54.72.9.51
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Sat, 20 May 2017 01:07:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
GET /track.php?click=5b53ccd02792a79936184954fc4d1abe5dbbc818&domain=springfiles.net&uid=MTQ5NTI0MTk2NC44NzczOjRjZDIxYjhjMWI2ZGRlOTRhYjBiNjhmOGU3ZTE0MDJiYmZmNWQ4ZWY4OGRmOGMzMjUzMThiNTVjZjNlMGNhYzc6NTkxZjk0ZWNkNjMxYw%3D%3D&ts=fHx8ZDQxZDh8fHxidWNrZXQwNDB8fHx8NTkxZjk0ZWNkNWM0YXx8fDE0OTUyNDE5NjUuMzA3OHwxYTJhZTQ0NWVhZDU3ZDkzMjNjMDdmOGM0ZmI5YzFkZGFjMDYyZDM5fHx8fHwxfHx8MHw1OTFmOTRlZDkwMGI5ZWIxNzA4YjQ2MGV8fHx8fHx8fDB8MHx8fHx8fHx8fHwwfDF8NTkxZjk0ZWQ5MDBiOWViMTcwOGI0NjBl&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1

Host: eu1.springfiles.net
GET /track.php?click=5b53ccd02792a79936184954fc4d1abe5dbbc818&domain=springfiles.net&uid=MTQ5NTI0MTk2NC44NzczOjRjZDIxYjhjMWI2ZGRlOTRhYjBiNjhmOGU3ZTE0MDJiYmZmNWQ4ZWY4OGRmOGMzMjUzMThiNTVjZjNlMGNhYzc6NTkxZjk0ZWNkNjMxYw%3D%3D&ts=fHx8ZDQxZDh8fHxidWNrZXQwNDB8fHx8NTkxZjk0ZWNkNWM0YXx8fDE0OTUyNDE5NjUuMzA3OHwxYTJhZTQ0NWVhZDU3ZDkzMjNjMDdmOGM0ZmI5YzFkZGFjMDYyZDM5fHx8fHwxfHx8MHw1OTFmOTRlZDkwMGI5ZWIxNzA4YjQ2MGV8fHx8fHx8fDB8MHx8fHx8fHx8fHwwfDF8NTkxZjk0ZWQ5MDBiOWViMTcwOGI0NjBl&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
 54.72.9.51
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Sat, 20 May 2017 01:07:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
GET /favicon.ico HTTP/1.1

Host: eu1.springfiles.net

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 54.72.9.51
HTTP/1.1 200 OK
Content-Type: image/x-icon
Server: nginx
Date: Sat, 20 May 2017 01:08:00 GMT
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: "57df9bb5-0"
Accept-Ranges: bytes
POST / HTTP/1.1

Host: ocsp.sca1b.amazontrust.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 52.84.126.80
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Sat, 20 May 2017 00:59:26 GMT
Etag: "591f9072-1d7"
Expires: Fri, 26 May 2017 12:59:26 GMT
Last-Modified: Sat, 20 May 2017 00:40:18 GMT
Server: ECS (dca/24A0)
X-Cache: Miss from cloudfront
Via: 1.1 51c76241371dfc20d25094a51b4759eb.cloudfront.net (CloudFront)
X-Amz-Cf-Id: oSUc_KK3lPJc5Ob8ZYlZ9zkwqakBJAJwYw27LuQcc0e1vnh0098C6Q==
POST / HTTP/1.1

Host: ocsp.rootca1.amazontrust.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request
 52.84.126.64
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1426
Connection: keep-alive
Date: Sat, 20 May 2017 00:59:26 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.1/2016-04-26)
X-Cache: Miss from cloudfront
Via: 1.1 aacade9ab32f7d5ee52553d620cb3362.cloudfront.net (CloudFront)
X-Amz-Cf-Id: eydg8L8UFV4eAevb-Gt4oBL6gsda5GNPue0VWCT7LSC9ncbJ2kGTyw==
GET /tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA HTTP/1.1

Host: katie.tnctrx.com
GET /tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
 52.4.45.92
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Sat, 20 May 2017 00:59:27 GMT
P3P: CP="CUR NOI NID STA STP"
Server: nginx/1.11.10
Set-Cookie: checkme=d574f84101d642d537255e0544a4efbcb789; Path=/
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: noindex, nofollow
Content-Length: 1705
Connection: keep-alive
GET /trx?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&confirm=d574f84101d642d537255e0544a4efbc&size=911400&noframe=1 HTTP/1.1

Host: katie.tnctrx.com
GET /trx?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&confirm=d574f84101d642d537255e0544a4efbc&size=911400&noframe=1 HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://katie.tnctrx.com/tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA
Cookie: checkme=d574f84101d642d537255e0544a4efbcb789
 52.4.45.92
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Sat, 20 May 2017 00:59:27 GMT
P3P: CP="CUR NOI NID STA STP"
Server: nginx/1.11.10
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: noindex, nofollow
Content-Length: 85
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: katie.tnctrx.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: checkme=d574f84101d642d537255e0544a4efbcb789
 52.4.45.92
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Sat, 20 May 2017 00:59:27 GMT
Location: https://www.dntx.com/favicon.ico
Server: nginx/1.11.10
X-Frame-Options: SAMEORIGIN
Content-Length: 186
Connection: keep-alive
POST / HTTP/1.1

Host: ocsp.godaddy.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 108
Content-Type: application/ocsp-request
 72.167.239.239
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 May 2017 01:01:23 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=118731, public, no-transform, must-revalidate
Last-Modified: Fri, 19 May 2017 23:44:23 GMT
Expires: Sun, 21 May 2017 11:44:23 GMT
Etag: "e3d0efc81bb20b84da4bcfda8d2fcf40071d988f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1777
Connection: close
POST / HTTP/1.1

Host: ocsp.sca1b.amazontrust.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 52.84.126.80
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Sat, 20 May 2017 00:59:27 GMT
Etag: "591f5ab5-1d7"
Expires: Fri, 26 May 2017 12:59:27 GMT
Last-Modified: Fri, 19 May 2017 20:51:01 GMT
Server: ECS (dca/24D5)
X-Cache: Miss from cloudfront
Via: 1.1 51c76241371dfc20d25094a51b4759eb.cloudfront.net (CloudFront)
X-Amz-Cf-Id: jCb5riurW6iTwgCrRxwRf4agREJ29ZG_j_AxdEgzrdeWH7P2KZ33lQ==
GET /?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da HTTP/1.1

Host: nuj.sdsjweb.com
GET /?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://katie.tnctrx.com/tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA
 159.203.152.145
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Server: nginx/1.4.6 (Ubuntu)
Date: Sat, 20 May 2017 00:59:27 GMT
Transfer-Encoding: chunked
X-Powered-By: PHP/5.5.9-1ubuntu4.21
Location: /f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
GET /f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da HTTP/1.1

Host: nuj.sdsjweb.com
GET /f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://katie.tnctrx.com/tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA
 159.203.152.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: nginx/1.4.6 (Ubuntu)
Date: Sat, 20 May 2017 00:59:28 GMT
Content-Length: 1283
Set-Cookie: uuid=0fabc084-5af1-4de1-8ce3-15b210993560|1495241968; Expires=Mon, 18-May-2026 00:59:28 GMT; Path=/
POST / HTTP/1.1

Host: ocsp.comodoca4.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request
 178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 May 2017 00:59:28 GMT
Server: Apache
Last-Modified: Fri, 19 May 2017 19:46:13 GMT
Expires: Fri, 26 May 2017 19:46:13 GMT
Etag: 9CF018E96950CC656CD91A33AC7E1B7CC1EA981E
Cache-Control: max-age=585404,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp34
Content-Length: 472
Connection: close
POST / HTTP/1.1

Host: ocsp.comodoca4.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 May 2017 00:59:28 GMT
Server: Apache
Last-Modified: Tue, 16 May 2017 14:10:49 GMT
Expires: Tue, 23 May 2017 14:10:49 GMT
Etag: 161E3A764A0ACC65EB2D63C24E3B88C734AF1B05
Cache-Control: max-age=306080,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp33
Content-Length: 727
Connection: close
POST / HTTP/1.1

Host: ocsp.usertrust.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 May 2017 00:59:28 GMT
Server: Apache
Last-Modified: Tue, 16 May 2017 14:10:49 GMT
Expires: Tue, 23 May 2017 14:10:49 GMT
Etag: C2D35B6F5E9BAB29FC64AE63790134ED2BDBD2DC
Cache-Control: max-age=306080,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp33
Content-Length: 471
Connection: close
GET /static/favicon.ico HTTP/1.1

Host: nuj.sdsjweb.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: uuid=0fabc084-5af1-4de1-8ce3-15b210993560|1495241968
 159.203.152.145
HTTP/1.1 200 OK
Content-Type: image/x-icon
Server: nginx/1.4.6 (Ubuntu)
Date: Sat, 20 May 2017 00:59:28 GMT
Content-Length: 1150
Last-Modified: Fri, 10 Jun 2016 06:14:48 GMT
Etag: "575a5ad8-47e"
Accept-Ranges: bytes
GET /ajax/libs/twitter-bootstrap/3.3.6/css/bootstrap.min.css HTTP/1.1

Host: cdnjs.cloudflare.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://nuj.sdsjweb.com/f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
 104.19.193.102
HTTP/1.1 200 OK
Content-Type: text/css
Date: Sat, 20 May 2017 00:59:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:08:29 GMT
Expires: Thu, 10 May 2018 00:59:28 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare-nginx
CF-RAY: 361b5a7f29a942a3-OSL
GET /ajax/libs/twitter-bootstrap/3.3.6/css/bootstrap-theme.min.css HTTP/1.1

Host: cdnjs.cloudflare.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://nuj.sdsjweb.com/f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
 104.19.193.102
HTTP/1.1 200 OK
Content-Type: text/css
Date: Sat, 20 May 2017 00:59:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:08:29 GMT
Expires: Thu, 10 May 2018 00:59:28 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare-nginx
CF-RAY: 361b5a7f2c474267-OSL
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1

Host: cdnjs.cloudflare.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://nuj.sdsjweb.com/f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
 104.19.193.102
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Date: Sat, 20 May 2017 00:59:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:04:24 GMT
Expires: Thu, 10 May 2018 00:59:28 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare-nginx
CF-RAY: 361b5a7fcdc74273-OSL
GET /ajax/libs/twitter-bootstrap/3.3.6/js/bootstrap.min.js HTTP/1.1

Host: cdnjs.cloudflare.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://nuj.sdsjweb.com/f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
 104.19.193.102
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Date: Sat, 20 May 2017 00:59:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:08:29 GMT
Expires: Thu, 10 May 2018 00:59:28 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare-nginx
CF-RAY: 361b5a7fc9ba42a3-OSL
GET /favicon.ico HTTP/1.1

Host: katie.tnctrx.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: checkme=d574f84101d642d537255e0544a4efbcb789
 52.4.45.92
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Sat, 20 May 2017 00:59:29 GMT
Location: https://www.dntx.com/favicon.ico
Server: nginx/1.11.10
X-Frame-Options: SAMEORIGIN
Content-Length: 186
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: www.dntx.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 52.84.127.243
HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Accept-Ranges: bytes
Date: Sat, 20 May 2017 00:59:30 GMT
Etag: "5707bab0-10be"
Last-Modified: Fri, 08 Apr 2016 14:05:36 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 4ddddf0243e9305f37605c71001e5dd7.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 7OMgISG6wz2dcKy_X9Uo18AtpNdABkSQo6htoPCk0DFLcy9jHp2jIQ==