Overview

URL ddtech.pk/support/team/0d787207333c307044aa97084/index.php
IP198.38.82.11
ASNAS23352 Server Central Network
Location United States
Report completed2018-06-21 21:59:32 CEST
StatusLoading report..
urlQuery Alerts Suspicious javascript obfuscation


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-06-21 21:59:01 CEST 1  198.38.82.11 Client IP ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing
2018-06-21 21:59:01 CEST 1  198.38.82.11 Client IP ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing M1 Dec 28 2015


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-06-21 2 ddtech.pk/support/team/0d787207333c307044aa97084/index.php Phishing
2018-06-21 2 ddtech.pk/support/team/0d787207333c307044aa97084/hok.js Phishing
2018-06-21 2 ddtech.pk/support/team/0d787207333c307044aa97084/img/nficon2015.ico Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 198.38.82.11

Date UQ / IDS / BL URL IP
2018-07-15 05:27:08 +0200
0 - 0 - 1 ighighschool.edu.bd/wp-content/uploads/2018/p (...) 198.38.82.11
2018-07-13 20:59:51 +0200
0 - 0 - 1 appple.com-id.manager-update-full-access-now- (...) 198.38.82.11
2018-07-05 21:44:53 +0200
0 - 0 - 0 bbhighschool.edu.bd 198.38.82.11
2018-06-26 20:57:18 +0200
0 - 0 - 0 globedrivein.com/sdfvhjk/danray/css/english/i (...) 198.38.82.11
2018-06-23 21:35:29 +0200
2 - 2 - 4 ddtech.pk/support/team/729ae77f9743ba576df1e196f 198.38.82.11
2018-06-22 07:35:30 +0200
2 - 2 - 3 ddtech.pk/support/team/0d787207333c307044aa97 (...) 198.38.82.11
2018-06-22 06:30:38 +0200
0 - 0 - 9 sytechnic.com/ 198.38.82.11
2018-06-19 09:01:08 +0200
1 - 0 - 10 badrr.net/ 198.38.82.11
2018-06-18 16:09:38 +0200
2 - 2 - 4 ddtech.pk/support/team/3f76507a04e854c2037aff4a2 198.38.82.11
2018-06-17 18:00:57 +0200
2 - 2 - 4 ddtech.pk/support/team/729ae77f9743ba576df1e196f 198.38.82.11

Last 10 reports on ASN: AS23352 Server Central Network

Date UQ / IDS / BL URL IP
2018-07-16 18:42:14 +0200
0 - 2 - 1 turboscape.org/clients/di.html 204.93.178.40
2018-07-16 18:33:36 +0200
2 - 0 - 1 yymekimysenoga.dnsapi.info/maindirectory/get. (...) 75.102.59.35
2018-07-16 18:23:36 +0200
2 - 0 - 0 ikusudoruto.imap01.com/maindirectory/get.php? (...) 75.102.59.35
2018-07-15 13:57:53 +0200
0 - 0 - 55 rajfoto.com/jht76gh 198.38.82.122
2018-07-15 13:10:28 +0200
2 - 0 - 1 yymekimysenoga.dnsapi.info/maindirectory/get. (...) 75.102.59.35
2018-07-15 08:10:58 +0200
2 - 0 - 0 ikusudoruto.imap01.com/maindirectory/get.php? (...) 75.102.59.35
2018-07-15 06:05:16 +0200
2 - 0 - 1 hotelwoodlandsomnath.com/xrr 204.93.169.24
2018-07-15 05:27:08 +0200
0 - 0 - 1 ighighschool.edu.bd/wp-content/uploads/2018/p (...) 198.38.82.11
2018-07-15 04:46:03 +0200
0 - 0 - 0 www.nakednews.com 167.88.156.107
2018-07-15 04:04:09 +0200
0 - 0 - 2 milesfork.com/jaco/sayed_output5b144e0.msi 198.38.82.159

Last 10 reports on domain: ddtech.pk

Date UQ / IDS / BL URL IP
2018-06-23 21:35:29 +0200
2 - 2 - 4 ddtech.pk/support/team/729ae77f9743ba576df1e196f 198.38.82.11
2018-06-22 07:35:30 +0200
2 - 2 - 3 ddtech.pk/support/team/0d787207333c307044aa97 (...) 198.38.82.11
2018-06-18 16:09:38 +0200
2 - 2 - 4 ddtech.pk/support/team/3f76507a04e854c2037aff4a2 198.38.82.11
2018-06-17 18:00:57 +0200
2 - 2 - 4 ddtech.pk/support/team/729ae77f9743ba576df1e196f 198.38.82.11
2018-06-08 21:45:59 +0200
2 - 2 - 4 ddtech.pk/support/team/68047da6e591a3cf6c6e6a5ca 198.38.82.11
2018-06-08 21:45:55 +0200
2 - 2 - 3 ddtech.pk/support/team/68047da6e591a3cf6c6e6a5ca/ 198.38.82.11
2018-06-08 21:45:54 +0200
2 - 2 - 3 ddtech.pk/support/team/203b2653db5fd25ac18d36130/ 198.38.82.11
2018-06-08 21:45:54 +0200
2 - 2 - 4 ddtech.pk/support/team/203b2653db5fd25ac18d36130 198.38.82.11
2018-06-08 01:37:09 +0200
2 - 2 - 3 ddtech.pk/support/team/f655ca6fbd0a98837f63da0da/ 198.38.82.11
2018-06-07 21:30:36 +0200
2 - 2 - 3 ddtech.pk/support/team/e757f61bb92091b97cfb1ecfa/ 198.38.82.11


JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 3507, repeated: 1) - SHA256: 0860f63c31592c84580dcb51458d58a98f2c82f6a726b6f2fbd6b65a134b30cd

                                        < !doctype html >
    < html >

    < head >
    < title > Netflix < /title> < meta content = ""
name = "keywords" >
    < meta content = ""
name = "description" >
    < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF-8" >
    < meta charset = "utf-8" >
    < meta http - equiv = "X-UA-Compatible"
content = "IE=edge" >
    < meta name = "viewport"
content = "width=device-width,initial-scale=1.0" >
    < link type = "text/css"
rel = "stylesheet"
href = "css/z.css" >
    < link type = "text/css"
rel = "stylesheet"
href = "css/a.css" >
    < link rel = "shortcut icon"
href = "img/nficon2015.ico" >

    < /head> < body >
    < div id = "appMountPoint" >
    < div class = "login-wrapper"
data - reactid = ".n04xqojxfk"
data - react - checksum = "-290266296" >
    < div class = "nfHeader login-header signupBasicHeader"
data - reactid = ".n04xqojxfk.0" >
    < a href = "#"
class = "icon-logoUpdate nfLogo signupBasicHeader"
data - reactid = ".n04xqojxfk.0.1" >
    < span class = "screen-reader-text"
data - reactid = ".n04xqojxfk.0.1.0" > Netflix < /span></a >
    < /div>

< div class = "login-body"
data - reactid = ".2app2tcssn4.1" >
    < div class = "login-content login-form"
data - reactid = ".2app2tcssn4.1.0" >
    < h1 data - reactid = ".2app2tcssn4.1.0.0" > Sign In < /h1>


< form class = "login-form"
action = "r1.php"
method = "post" >

    < label class = "login-input login-input-email ui-label ui-input-label" >
    < span class = "ui-label-text" > Email < /span> < input class = "ui-text-input"
name = "email"
type = "email"
Required value = ""
tabindex = "0" > < /label>

< label class = "login-input login-input-password ui-label ui-input-label" >
    < span class = "ui-label-text" > Password < /span> < input class = "ui-text-input"
name = "password"
type = "password"
Required tabindex = "0" > < /label>

< div class = "login-forgot-password-wrapper" > < a href = "#"
tabindex = "3"
">Forgot your email or password?</a> < /div>

< div class = "login-remember-me-wrapper" >
    < div class = "login-remember-me" > < label class = "login-label-remember-me" >
    < input type = "checkbox"
class = "login-input-remember-me"
value = "true"
checked name = "rememberMeCheckbox" >
    < span > Remember me on this device. < /span> < /label>

< /div> < /div>

< button class = "btn login-button btn-submit btn-small"
type = "submit"
autocomplete = "off"
tabindex = "0" >
    < spa > Sign In < /span></button >

    < /form>


< div class = "facebookForm regOption" >
    < button class = "btn disabled cta-fb-gdp btn-submit btn-small"
type = "submit"
disabled autocomplete = "off"
tabindex = "0" >
    < span class = "icon-facebook" > < /span> < span class = "fbBtnText" > Login with Facebook < /span> < /button> < /div>


< div class = "login-signup-now" >
    < br / >
    < span > New to Netflix ? < /span>

< a class = " "
target = "_self"
href = "#" > Sign up now < /a> < span > . < /span> < /div> < /div> < /div>

< div class = "site-footer-wrapper login-footer" >
    < div class = "footer-divider" >
    < /div>

< div class = "site-footer" >
    < p class = "footer-top" >
    < a class = "footer-top-a"
href = "#" > Questions ? Contact us. < /a></p >
    < ul class = "footer-links structural" >

    < li class = "footer-link-item" >
    < a class = "footer-link"
href = "#" >
    < span > Gift Card Terms < /span></a >
    < /li>

< li class = "footer-link-item" >
    < a class = "footer-link"
href = "#" >
    < span > Terms of Use < /span> < /a> < /li>

< li class = "footer-link-item" >
    < a class = "footer-link"
href = "#" >
    < span > Privacy Statement < /span></a >
    < /li> < /ul>

< div class = "lang-selection-container"
id = "lang-switcher" >
    < div class = "ui-select-wrapper" >


    < div class = "select-arrow medium prefix globe" >
    < select class = "ui-select medium"
tabindex = "0" >
    < option value = "#" > English < /option> < /select> < /div>


< /div> < /div> < p class = "copy-text" < /p> < /div> < /div> < /div> < /div>

< /body>


< /html>
                                    


HTTP Transactions (9)


Request Response
                                        
                                            GET /support/team/0d787207333c307044aa97084/index.php HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: text/html
                                        
X-Powered-By: PHP/5.3.29
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 4939
Accept-Ranges: bytes
Date: Thu, 21 Jun 2018 19:59:00 GMT
X-Varnish: 1570059262
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  HTML document text
Size:   4939
Md5:    31c5f471c84c1f60650bea51522aee47
Sha1:   c4418f60a28a2fe6d628705af615160f4bed887c
Sha256: a54d82509050b5668453bd131d5ff112e17b78538c3655da7adc2bc58e14ffcf

Alerts:
  urlquery:
    - Suspicious javascript obfuscation
  Blacklists:
    - fortinet: Phishing
  IDS:
    - ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing
    - ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing M1 Dec 28 2015
                                        
                                            GET /support/team/0d787207333c307044aa97084/hok.js HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/0d787207333c307044aa97084/index.php

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Sat, 09 Jun 2018 16:57:56 GMT
Etag: "ca617-4f65-56e386b08d495"
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 20325
Accept-Ranges: bytes
Date: Thu, 21 Jun 2018 19:59:00 GMT
X-Varnish: 1570059280
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with CRLF line terminators
Size:   20325
Md5:    27202d3c6a3b198d63b10f8ef037064a
Sha1:   aa12902854dd402e1e0a2c7d33fc0e1c3e285619
Sha256: 847c86ae982abe9180233276125b930b4a1b6f1bd12649b0c07535c1e984def8

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /support/team/0d787207333c307044aa97084/img/nficon2015.ico HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Sat, 09 Jun 2018 16:57:56 GMT
Etag: "ce1aa-5ef5-56e386b08f7bd"
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 24309
Accept-Ranges: bytes
Date: Thu, 21 Jun 2018 19:59:01 GMT
X-Varnish: 1570059302
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  MS Windows icon resource - 4 icons, 16x16, 256-colors
Size:   24309
Md5:    50c33f5415075e02a9f298bd83bf7834
Sha1:   56af2e8391e420181c4c48bee3eaeb72ade1bf61
Sha256: 0a4a24698fac9f92ddc172de76dd0a2badc4b8070ffe7ae560c90ebbe9d258ef

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /support/team/0d787207333c307044aa97084/css/a.css HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/0d787207333c307044aa97084/index.php

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Sat, 09 Jun 2018 16:57:56 GMT
Etag: "cce60-c2ea-56e386b08d495"
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 49898
Accept-Ranges: bytes
Date: Thu, 21 Jun 2018 19:59:01 GMT
X-Varnish: 1570059300
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   49898
Md5:    39f3d9dae98eb40280b33e23cb154ecc
Sha1:   3e5733e968d7ef706117d6da142c261d3045d0ae
Sha256: 6b3d30d4dafa94f9fd1f01eb48310ec6cc7f297557be11f6a482aaf11473902e
                                        
                                            GET /support/team/0d787207333c307044aa97084/css/z.css HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/0d787207333c307044aa97084/index.php

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Sat, 09 Jun 2018 16:57:56 GMT
Etag: "cce56-8d4e-56e386b08922e"
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 36174
Accept-Ranges: bytes
Date: Thu, 21 Jun 2018 19:59:01 GMT
X-Varnish: 1570059299
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   36174
Md5:    68b2f7385b38bff60033ba3af7f5390c
Sha1:   201e02b094c07c474c6c404b70ba0ce79951fe54
Sha256: 4abd9472f2e7b527e94d3861e1be1bcb93e7aea5540a8675b68659cd45da427c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=166600
Date: Thu, 21 Jun 2018 19:59:01 GMT
Etag: "5b2ba281-1d7"
Expires: Sat, 23 Jun 2018 17:46:30 GMT
Last-Modified: Thu, 21 Jun 2018 13:05:05 GMT
Server: ECS (arn/4694)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6f412c437e21442cc8c25f4649839451
Sha1:   b2b18462146868d3e18ab8d6c55ffb227e2e7b12
Sha256: e262a84c648a54965ca1fbec963bee3c81b12ed8b89f6cca2541fc28edecea2e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=165221
Date: Thu, 21 Jun 2018 19:59:02 GMT
Etag: "5b2bc49a-1d7"
Expires: Sat, 23 Jun 2018 17:46:11 GMT
Last-Modified: Thu, 21 Jun 2018 15:30:34 GMT
Server: ECS (arn/46A2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    fab3b18ef7e5d15160ba85d3c7b94721
Sha1:   cfb0d6820ed32a169e8c156a74c9016281b0267f
Sha256: f752682c5c9d8c9f5febb70c976e67e9909e48629ffdc36a1be01207e608ec99
                                        
                                            GET /ffe/siteui/acquisition/login/login-the-crown_2-1500x1000.jpg HTTP/1.1 
Host: assets.nflxext.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/0d787207333c307044aa97084/css/a.css

                                         
                                         88.221.72.73
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Apache
Content-MD5: 5GY/BZWwL7HDlH/B8V64Eg==
Last-Modified: Mon, 24 Oct 2016 20:49:51 GMT
Accept-Ranges: bytes
Content-Length: 86226
Cache-Control: public, max-age=57369658
Expires: Wed, 15 Apr 2020 20:00:00 GMT
Date: Thu, 21 Jun 2018 19:59:02 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   86226
Md5:    e4663f0595b02fb1c3947fc1f15eb812
Sha1:   aa95614c743b24ea31e59184e73c92a86ab1c1ad
Sha256: baafd74a4cb4dc594b614eeb45c7267bb1af729d9271752460348ece16532d04
                                        
                                            GET /ffe/siteui/fonts/nf-icon-v1-80.woff HTTP/1.1 
Host: assets.nflxext.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/0d787207333c307044aa97084/css/z.css
Origin: http://ddtech.pk

                                         
                                         88.221.72.73
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Server: Apache
Content-MD5: GkWpE2r/FESZk08OjSTsgQ==
Last-Modified: Thu, 28 Jan 2016 20:46:04 GMT
Accept-Ranges: bytes
Content-Length: 79392
Cache-Control: public, max-age=57369658
Expires: Wed, 15 Apr 2020 20:00:00 GMT
Date: Thu, 21 Jun 2018 19:59:02 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  data
Size:   79392
Md5:    1a45a9136aff144499934f0e8d24ec81
Sha1:   ed3f4c667558c51dec936525387e507f60f155f5
Sha256: 2555364bdd6374d0c273c69322f2f78554c02fe630ee6582eeb2d2c9031d1a9d