Overview

URLeu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
IP54.72.9.51
ASNAS16509 Amazon.com, Inc.
Location Ireland
Report completed2017-05-20 03:00:29 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Referer
Pool
Access Levelpublic


Intrusion Detection Systems

Snort /w Sourcefire VRT No alerts detected
Suricata /w Emerging Threats Pro No alerts detected


Blacklists

Fortinet's Web Filter / fortiguard.com
Added / Verified Severity Host Comment
2017-05-202eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exeMalware
2017-05-202parkingcrew.net/assets/scripts/js3.jsMalware
MDL / malwaredomainlist.com No alerts detected
DNS-BH / malwaredomains.com No alerts detected
mnemonic secure DNS / mnemonic.no No alerts detected
OpenPhish / openphish.com No alerts detected
PhishTank / phishtank.com No alerts detected
Spamhaus DBL / spamhaus.org No alerts detected


Files Captured



Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 54.72.9.51

Date UQ / IDS / BL URL IP
2017-06-27 23:41:090 - 0 - 154.72.9.5154.72.9.51
2017-06-27 17:54:300 - 0 - 154.72.9.5154.72.9.51
2017-06-27 13:20:190 - 0 - 154.72.9.5154.72.9.51
2017-06-27 09:58:500 - 0 - 0itsablogparty.com/wp-content/uploads/2010/06/ItsABlogPartyweb.jpg54.72.9.51
2017-06-27 09:55:340 - 0 - 0itsablogparty.com54.72.9.51
2017-06-27 06:44:510 - 0 - 0shutterfly.co54.72.9.51

Last 6 reports on ASN: AS16509 Amazon.com, Inc.

Date UQ / IDS / BL URL IP
2017-06-28 00:33:480 - 0 - 0kdp.amazon.comhttps:///community/thread.jspa?threadID=80785172.21.202.92
2017-06-28 00:31:060 - 0 - 0groups.diigo.comhttps:///group/universityofphonex/content/mager-vs-rola-live-stream-1629727054.148.192.94
2017-06-28 00:29:450 - 0 - 0d5nxst8fruw4z.cloudfront.nethttps:///atrk.gif?account=NDJ2p1IWx810L7216.137.61.202
2017-06-28 00:29:360 - 0 - 1app.dldash.com/DASH/284401/setup.exe54.230.15.128
2017-06-28 00:23:000 - 0 - 0kdp.amazon.comhttps:///community/thread.jspa?threadID=807698176.32.103.117
2017-06-28 00:22:400 - 0 - 0kdp.amazon.comhttps:///community/thread.jspa?threadID=807698176.32.103.117

Last 6 reports on domain: eu1.springfiles.net

Date UQ / IDS / BL URL IP
2017-06-27 22:46:240 - 0 - 1eu1.springfiles.net/Rams_2015_LIMITED_720p_BluRay_x264-USURY_downloader.exe185.53.178.6
2017-06-27 12:34:040 - 0 - 1eu1.springfiles.net/Black_and_White_Full_PC_Game_downloader.exe185.53.178.6
2017-06-27 12:33:440 - 0 - 1eu1.springfiles.net/Bosch_automotive_handbook_8th_edition_pdf_free_download_downloader.exe185.53.178.6
2017-06-27 00:37:460 - 0 - 1eu1.springfiles.net/Leica_Flexoffice_downloader.exe185.53.178.6
2017-06-26 07:12:540 - 0 - 1eu1.springfiles.net/Interspire_Shopping_Cart_6.1.8_-_Ultimate_Edition_Nulled_downloader.exe185.53.178.6
2017-06-26 04:54:180 - 0 - 1eu1.springfiles.net/64_Bit_Sentemul_2010_Full_Version_Download_downloader.exe185.53.178.6



JavaScript

Executed Scripts (8)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (24)


Request Response
GET /beko-volumax-5-user-manual_downloader.exe HTTP/1.1

Host: eu1.springfiles.net

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 54.72.9.51
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Sat, 20 May 2017 01:07:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
GET /assets/scripts/js3.js HTTP/1.1

Host: parkingcrew.net

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
 185.53.179.29
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Sat, 20 May 2017 00:59:25 GMT
Content-Length: 17915
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: "57df9bb5-45fb"
Accept-Ranges: bytes
GET /track.php?domain=springfiles.net&toggle=browserjs&uid=MTQ5NTI0MTk2NC44NzczOjRjZDIxYjhjMWI2ZGRlOTRhYjBiNjhmOGU3ZTE0MDJiYmZmNWQ4ZWY4OGRmOGMzMjUzMThiNTVjZjNlMGNhYzc6NTkxZjk0ZWNkNjMxYw%3D%3D HTTP/1.1

Host: eu1.springfiles.net
GET /track.php?domain=springfiles.net&toggle=browserjs&uid=MTQ5NTI0MTk2NC44NzczOjRjZDIxYjhjMWI2ZGRlOTRhYjBiNjhmOGU3ZTE0MDJiYmZmNWQ4ZWY4OGRmOGMzMjUzMThiNTVjZjNlMGNhYzc6NTkxZjk0ZWNkNjMxYw%3D%3D HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
 54.72.9.51
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Sat, 20 May 2017 01:07:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
GET /track.php?click=5b53ccd02792a79936184954fc4d1abe5dbbc818&domain=springfiles.net&uid=MTQ5NTI0MTk2NC44NzczOjRjZDIxYjhjMWI2ZGRlOTRhYjBiNjhmOGU3ZTE0MDJiYmZmNWQ4ZWY4OGRmOGMzMjUzMThiNTVjZjNlMGNhYzc6NTkxZjk0ZWNkNjMxYw%3D%3D&ts=fHx8ZDQxZDh8fHxidWNrZXQwNDB8fHx8NTkxZjk0ZWNkNWM0YXx8fDE0OTUyNDE5NjUuMzA3OHwxYTJhZTQ0NWVhZDU3ZDkzMjNjMDdmOGM0ZmI5YzFkZGFjMDYyZDM5fHx8fHwxfHx8MHw1OTFmOTRlZDkwMGI5ZWIxNzA4YjQ2MGV8fHx8fHx8fDB8MHx8fHx8fHx8fHwwfDF8NTkxZjk0ZWQ5MDBiOWViMTcwOGI0NjBl&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1

Host: eu1.springfiles.net
GET /track.php?click=5b53ccd02792a79936184954fc4d1abe5dbbc818&domain=springfiles.net&uid=MTQ5NTI0MTk2NC44NzczOjRjZDIxYjhjMWI2ZGRlOTRhYjBiNjhmOGU3ZTE0MDJiYmZmNWQ4ZWY4OGRmOGMzMjUzMThiNTVjZjNlMGNhYzc6NTkxZjk0ZWNkNjMxYw%3D%3D&ts=fHx8ZDQxZDh8fHxidWNrZXQwNDB8fHx8NTkxZjk0ZWNkNWM0YXx8fDE0OTUyNDE5NjUuMzA3OHwxYTJhZTQ0NWVhZDU3ZDkzMjNjMDdmOGM0ZmI5YzFkZGFjMDYyZDM5fHx8fHwxfHx8MHw1OTFmOTRlZDkwMGI5ZWIxNzA4YjQ2MGV8fHx8fHx8fDB8MHx8fHx8fHx8fHwwfDF8NTkxZjk0ZWQ5MDBiOWViMTcwOGI0NjBl&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
 54.72.9.51
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Sat, 20 May 2017 01:07:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
GET /favicon.ico HTTP/1.1

Host: eu1.springfiles.net

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 54.72.9.51
HTTP/1.1 200 OK
Content-Type: image/x-icon
Server: nginx
Date: Sat, 20 May 2017 01:08:00 GMT
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: "57df9bb5-0"
Accept-Ranges: bytes
POST / HTTP/1.1

Host: ocsp.sca1b.amazontrust.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 52.84.126.80
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Sat, 20 May 2017 00:59:26 GMT
Etag: "591f9072-1d7"
Expires: Fri, 26 May 2017 12:59:26 GMT
Last-Modified: Sat, 20 May 2017 00:40:18 GMT
Server: ECS (dca/24A0)
X-Cache: Miss from cloudfront
Via: 1.1 51c76241371dfc20d25094a51b4759eb.cloudfront.net (CloudFront)
X-Amz-Cf-Id: oSUc_KK3lPJc5Ob8ZYlZ9zkwqakBJAJwYw27LuQcc0e1vnh0098C6Q==
POST / HTTP/1.1

Host: ocsp.rootca1.amazontrust.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request
 52.84.126.64
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1426
Connection: keep-alive
Date: Sat, 20 May 2017 00:59:26 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.1/2016-04-26)
X-Cache: Miss from cloudfront
Via: 1.1 aacade9ab32f7d5ee52553d620cb3362.cloudfront.net (CloudFront)
X-Amz-Cf-Id: eydg8L8UFV4eAevb-Gt4oBL6gsda5GNPue0VWCT7LSC9ncbJ2kGTyw==
GET /tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA HTTP/1.1

Host: katie.tnctrx.com
GET /tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eu1.springfiles.net/beko-volumax-5-user-manual_downloader.exe
 52.4.45.92
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Sat, 20 May 2017 00:59:27 GMT
P3P: CP="CUR NOI NID STA STP"
Server: nginx/1.11.10
Set-Cookie: checkme=d574f84101d642d537255e0544a4efbcb789; Path=/
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: noindex, nofollow
Content-Length: 1705
Connection: keep-alive
GET /trx?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&confirm=d574f84101d642d537255e0544a4efbc&size=911400&noframe=1 HTTP/1.1

Host: katie.tnctrx.com
GET /trx?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&confirm=d574f84101d642d537255e0544a4efbc&size=911400&noframe=1 HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://katie.tnctrx.com/tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA
Cookie: checkme=d574f84101d642d537255e0544a4efbcb789
 52.4.45.92
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Sat, 20 May 2017 00:59:27 GMT
P3P: CP="CUR NOI NID STA STP"
Server: nginx/1.11.10
X-Frame-Options: SAMEORIGIN
X-Robots-Tag: noindex, nofollow
Content-Length: 85
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: katie.tnctrx.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: checkme=d574f84101d642d537255e0544a4efbcb789
 52.4.45.92
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Sat, 20 May 2017 00:59:27 GMT
Location: https://www.dntx.com/favicon.ico
Server: nginx/1.11.10
X-Frame-Options: SAMEORIGIN
Content-Length: 186
Connection: keep-alive
POST / HTTP/1.1

Host: ocsp.godaddy.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 108
Content-Type: application/ocsp-request
 72.167.239.239
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 May 2017 01:01:23 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=118731, public, no-transform, must-revalidate
Last-Modified: Fri, 19 May 2017 23:44:23 GMT
Expires: Sun, 21 May 2017 11:44:23 GMT
Etag: "e3d0efc81bb20b84da4bcfda8d2fcf40071d988f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1777
Connection: close
POST / HTTP/1.1

Host: ocsp.sca1b.amazontrust.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 52.84.126.80
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Sat, 20 May 2017 00:59:27 GMT
Etag: "591f5ab5-1d7"
Expires: Fri, 26 May 2017 12:59:27 GMT
Last-Modified: Fri, 19 May 2017 20:51:01 GMT
Server: ECS (dca/24D5)
X-Cache: Miss from cloudfront
Via: 1.1 51c76241371dfc20d25094a51b4759eb.cloudfront.net (CloudFront)
X-Amz-Cf-Id: jCb5riurW6iTwgCrRxwRf4agREJ29ZG_j_AxdEgzrdeWH7P2KZ33lQ==
GET /?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da HTTP/1.1

Host: nuj.sdsjweb.com
GET /?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://katie.tnctrx.com/tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA
 159.203.152.145
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Server: nginx/1.4.6 (Ubuntu)
Date: Sat, 20 May 2017 00:59:27 GMT
Transfer-Encoding: chunked
X-Powered-By: PHP/5.5.9-1ubuntu4.21
Location: /f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
GET /f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da HTTP/1.1

Host: nuj.sdsjweb.com
GET /f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da HTTP/1.1

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://katie.tnctrx.com/tr?id=016c808180644962c9b418985a3ecaa78a6050fe01.r&tk=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJwdWIiOiI1MDVjNmI4MTcxMzIwNDAyNTc1YjFkNmUiLCJ0cyI6IjA1MjAwMDU5IiwiZCI6InNwcmluZ2ZpbGVzLm5ldCJ9.CGRvZ1PxuOKkx5anG-ersN47Nc50egpGkIcE_XHA7SA
 159.203.152.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: nginx/1.4.6 (Ubuntu)
Date: Sat, 20 May 2017 00:59:28 GMT
Content-Length: 1283
Set-Cookie: uuid=0fabc084-5af1-4de1-8ce3-15b210993560|1495241968; Expires=Mon, 18-May-2026 00:59:28 GMT; Path=/
POST / HTTP/1.1

Host: ocsp.comodoca4.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request
 178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 May 2017 00:59:28 GMT
Server: Apache
Last-Modified: Fri, 19 May 2017 19:46:13 GMT
Expires: Fri, 26 May 2017 19:46:13 GMT
Etag: 9CF018E96950CC656CD91A33AC7E1B7CC1EA981E
Cache-Control: max-age=585404,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp34
Content-Length: 472
Connection: close
POST / HTTP/1.1

Host: ocsp.comodoca4.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 May 2017 00:59:28 GMT
Server: Apache
Last-Modified: Tue, 16 May 2017 14:10:49 GMT
Expires: Tue, 23 May 2017 14:10:49 GMT
Etag: 161E3A764A0ACC65EB2D63C24E3B88C734AF1B05
Cache-Control: max-age=306080,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp33
Content-Length: 727
Connection: close
POST / HTTP/1.1

Host: ocsp.usertrust.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 May 2017 00:59:28 GMT
Server: Apache
Last-Modified: Tue, 16 May 2017 14:10:49 GMT
Expires: Tue, 23 May 2017 14:10:49 GMT
Etag: C2D35B6F5E9BAB29FC64AE63790134ED2BDBD2DC
Cache-Control: max-age=306080,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp33
Content-Length: 471
Connection: close
GET /static/favicon.ico HTTP/1.1

Host: nuj.sdsjweb.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: uuid=0fabc084-5af1-4de1-8ce3-15b210993560|1495241968
 159.203.152.145
HTTP/1.1 200 OK
Content-Type: image/x-icon
Server: nginx/1.4.6 (Ubuntu)
Date: Sat, 20 May 2017 00:59:28 GMT
Content-Length: 1150
Last-Modified: Fri, 10 Jun 2016 06:14:48 GMT
Etag: "575a5ad8-47e"
Accept-Ranges: bytes
GET /ajax/libs/twitter-bootstrap/3.3.6/css/bootstrap.min.css HTTP/1.1

Host: cdnjs.cloudflare.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://nuj.sdsjweb.com/f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
 104.19.193.102
HTTP/1.1 200 OK
Content-Type: text/css
Date: Sat, 20 May 2017 00:59:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:08:29 GMT
Expires: Thu, 10 May 2018 00:59:28 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare-nginx
CF-RAY: 361b5a7f29a942a3-OSL
GET /ajax/libs/twitter-bootstrap/3.3.6/css/bootstrap-theme.min.css HTTP/1.1

Host: cdnjs.cloudflare.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://nuj.sdsjweb.com/f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
 104.19.193.102
HTTP/1.1 200 OK
Content-Type: text/css
Date: Sat, 20 May 2017 00:59:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:08:29 GMT
Expires: Thu, 10 May 2018 00:59:28 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare-nginx
CF-RAY: 361b5a7f2c474267-OSL
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1

Host: cdnjs.cloudflare.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://nuj.sdsjweb.com/f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
 104.19.193.102
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Date: Sat, 20 May 2017 00:59:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:04:24 GMT
Expires: Thu, 10 May 2018 00:59:28 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare-nginx
CF-RAY: 361b5a7fcdc74273-OSL
GET /ajax/libs/twitter-bootstrap/3.3.6/js/bootstrap.min.js HTTP/1.1

Host: cdnjs.cloudflare.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://nuj.sdsjweb.com/f1?s=dn-600&k=%5B%22springfiles%22%5D&d=568975bdcaf2762a6ce1b4da
 104.19.193.102
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Date: Sat, 20 May 2017 00:59:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:08:29 GMT
Expires: Thu, 10 May 2018 00:59:28 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare-nginx
CF-RAY: 361b5a7fc9ba42a3-OSL
GET /favicon.ico HTTP/1.1

Host: katie.tnctrx.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: checkme=d574f84101d642d537255e0544a4efbcb789
 52.4.45.92
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Sat, 20 May 2017 00:59:29 GMT
Location: https://www.dntx.com/favicon.ico
Server: nginx/1.11.10
X-Frame-Options: SAMEORIGIN
Content-Length: 186
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: www.dntx.com

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 52.84.127.243
HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Accept-Ranges: bytes
Date: Sat, 20 May 2017 00:59:30 GMT
Etag: "5707bab0-10be"
Last-Modified: Fri, 08 Apr 2016 14:05:36 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 4ddddf0243e9305f37605c71001e5dd7.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 7OMgISG6wz2dcKy_X9Uo18AtpNdABkSQo6htoPCk0DFLcy9jHp2jIQ==