Overview

URL www.wathspap.com/rc/23b297bb2f?affclick=5b10155751dd222cfe4589b3
IP104.18.37.137
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-05-31 17:36:26 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-05-31 2 www.wathspap.com/rc/23b297bb2f?affclick=5b10155751dd222cfe4589b3 Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.18.37.137

Date UQ / IDS / BL URL IP
2018-11-27 14:05:49 +0100
0 - 0 - 1 www.cdcovers.to/search.php?q=the%20hitman 104.18.37.137
2018-09-28 15:23:51 +0200
0 - 0 - 1 cdcovers.to/ 104.18.37.137
2018-06-01 09:28:55 +0200
0 - 0 - 1 www.wathspap.com/rc/67212a34f0?affclick=5b10f (...) 104.18.37.137
2018-06-01 09:19:47 +0200
0 - 0 - 1 www.wathspap.com/rc/23b297bb2f?affclick=5b10f (...) 104.18.37.137
2018-05-31 19:08:06 +0200
0 - 0 - 2 www.wathspap.com/cdn-cgi/l/chk_jschl?jschl_vc (...) 104.18.37.137
2018-05-31 15:47:43 +0200
0 - 0 - 1 www.wathspap.com/rc/23b297bb2f?affclick=5b0ff (...) 104.18.37.137
2018-05-31 09:08:28 +0200
0 - 0 - 1 www.wathspap.com/rc/67212a34f0?affclick=5b0f9 (...) 104.18.37.137
2018-05-31 07:08:45 +0200
0 - 0 - 1 www.wathspap.com/rc/23b297bb2f?affclick=5b0f8 (...) 104.18.37.137
2018-05-31 05:32:26 +0200
0 - 0 - 1 www.wathspap.com/rc/23b297bb2f?affclick=5b0f6 (...) 104.18.37.137
2018-05-31 05:32:04 +0200
0 - 0 - 1 www.wathspap.com/rc/67212a34f0?affclick=5b0f6 (...) 104.18.37.137

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2019-04-24 08:47:01 +0200
0 - 0 - 0 https://cinemavoir.co/movie/287947/shazam.html 104.31.83.201
2019-04-24 08:45:54 +0200
0 - 0 - 0 https://www.bitchute.com/video/pnZf51Ybl5a6/ 104.24.23.87
2019-04-24 08:45:43 +0200
0 - 0 - 2 gorillawalker.com/vicky-s-wild-weekend-cheati (...) 104.27.178.146
2019-04-24 08:45:02 +0200
0 - 0 - 0 https://www.bitchute.com/video/9kCfouLd9GAP/ 104.24.23.87
2019-04-24 08:44:38 +0200
0 - 0 - 0 https://medium.com/@Molohok1/regarder-after-a (...) 104.16.120.127
2019-04-24 08:44:29 +0200
0 - 0 - 0 https://medium.com/@triesadega/after-chapitre (...) 104.16.120.127
2019-04-24 08:44:24 +0200
0 - 0 - 0 https://medium.com/@triesadega/after-chapitre (...) 104.16.121.127
2019-04-24 08:44:20 +0200
0 - 0 - 0 imageprostyle-communication.fr 104.18.35.107
2019-04-24 08:44:08 +0200
0 - 0 - 0 https://www.bitchute.com/video/KJw3XRKj6gLE/ 104.24.23.87
2019-04-24 08:44:05 +0200
0 - 0 - 0 https://medium.com/@triesadega/after-i-apes-e (...) 104.16.121.127

No other reports on domain: wathspap.com



JavaScript

Executed Scripts (24)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (47)


Request Response
                                        
                                            GET /rc/23b297bb2f?affclick=5b10155751dd222cfe4589b3 HTTP/1.1 
Host: www.wathspap.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.18.36.137
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 31 May 2018 15:35:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=da5ce1dee428d64f9133037851a7dbd231527780949; expires=Fri, 31-May-19 15:35:49 GMT; path=/; domain=.wathspap.com; HttpOnly
Content-Language: en
Vary: Accept-Language,Cookie
Server: cloudflare
CF-RAY: 423a8336e3f44291-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1320
Md5:    422409544dc45bb326f66e0f183cb56e
Sha1:   7dec95a5e014ca2ff8f6371a3ac298834f441d67
Sha256: c8cc5ec7522e0e21ed97101e8ab38dcaf2237b8fed9c3e6464a81a2a24f1de24

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /snowflake.png HTTP/1.1 
Host: cdn.addlnk.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.18.46.192
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 31 May 2018 15:35:49 GMT
Content-Length: 8481
Connection: keep-alive
Set-Cookie: __cfduid=dee71be51af4d0cc7a9400397229058121527780949; expires=Fri, 31-May-19 15:35:49 GMT; path=/; domain=.addlnk.com; HttpOnly
x-amz-id-2: +U1BOVYLnDbMfUApo+fOEEaHYBc0R60B0zwVRTikBCREmQaXk5qTEybcwqHQtlbseNouIasWu9Q=
x-amz-request-id: 9FE4D180AF711762
Last-Modified: Wed, 10 Jan 2018 00:21:51 GMT
Etag: "711b701227cbfc5efe529f9ddccb218e"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 31 May 2019 15:35:49 GMT
Cache-Control: public, max-age=31536000
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 423a833861e842bb-OSL


--- Additional Info ---
Magic:  PNG image, 256 x 256, 8-bit/color RGBA, non-interlaced
Size:   8481
Md5:    711b701227cbfc5efe529f9ddccb218e
Sha1:   bca2f0139c25f7ba9573d520855663922b5a063b
Sha256: 5b6116b89006b35a1d1f82eaf75c3d9d14b83002e835166351770d02e64f690e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         13.33.103.102
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=151428
Date: Thu, 31 May 2018 15:35:50 GMT
Etag: "5b0fb0c0-1d7"
Expires: Sat, 02 Jun 2018 09:18:11 GMT
Last-Modified: Thu, 31 May 2018 08:22:24 GMT
Server: ECS (lga/1372)
X-Cache: Miss from cloudfront
Via: 1.1 24907b251f83ba88dffeea65895a7f98.cloudfront.net (CloudFront)
X-Amz-Cf-Id: pgGNToMAyTRtbnrk2MhyNcECP1N0mR7djDBI8BNuoyX1Dp3LytCKTA==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f2de386e9d2329df550bb0fa782336b5
Sha1:   1135c07f610f33791256ffdee2c690b3a5a8be5b
Sha256: 2ea8db16c8d662ab27a030c4adc019c1a1ecf232f2b14d4ff6ff6d86494f2e5b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.rootca1.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         13.33.103.193
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1426
Connection: keep-alive
Date: Thu, 31 May 2018 15:35:51 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.6/2017-12-14)
X-Cache: Miss from cloudfront
Via: 1.1 5cff1d1d173e3df63e9a43193891ff1b.cloudfront.net (CloudFront)
X-Amz-Cf-Id: TLePlv96I72FUngxhPXFapNJpjz158mK4KkDy_6UNHiCxKJo5h-c0A==


--- Additional Info ---
Magic:  data
Size:   1426
Md5:    3eeb106eaf415b6e050df855fefdb473
Sha1:   7e840519033d3e474d9bee4214cebaead9e3c05d
Sha256: 429436f0598866a7b8aaadd654a7b53949c4d1eaeb926caa7a73845f0ef5b8ad
                                        
                                            GET /ln/-O5zBjD4217?clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id= HTTP/1.1 
Host: www.9t5.me
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wathspap.com/rc/23b297bb2f?affclick=5b10155751dd222cfe4589b3

                                         
                                         52.25.208.173
HTTP/1.1 302 Found
Content-Type: text/plain
                                        
Date: Thu, 31 May 2018 15:35:50 GMT
Location: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=
Server: Apache-Coyote/1.1
Content-Length: 0
Connection: keep-alive


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         13.33.103.102
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154545
Date: Thu, 31 May 2018 15:35:52 GMT
Etag: "5b0fa987-1d7"
Expires: Sat, 02 Jun 2018 10:12:45 GMT
Last-Modified: Thu, 31 May 2018 07:51:35 GMT
Server: ECS (lga/1391)
X-Cache: Miss from cloudfront
Via: 1.1 24907b251f83ba88dffeea65895a7f98.cloudfront.net (CloudFront)
X-Amz-Cf-Id: l8kAvIVkd3cB_oJoUxUTEWgf87LgUbP30T__rKLb2uIeTX1RJY33Ww==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    88890be409cc15fa478768ed8dd0dc3c
Sha1:   207c79b09d1c629fa33b9d52582fa2db61876cf7
Sha256: dc9fcb5855e83e9c975639c452a36384202931d53f98329459bfbc05875f35be
                                        
                                            GET /welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id= HTTP/1.1 
Host: www.popcornvod.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wathspap.com/rc/23b297bb2f?affclick=5b10155751dd222cfe4589b3

                                         
                                         52.89.116.228
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Accept-Ranges: bytes
Date: Thu, 31 May 2018 15:35:52 GMT
Etag: W/"4088-1527507071000"
Last-Modified: Mon, 28 May 2018 11:31:11 GMT
Server: Apache-Coyote/1.1
Content-Length: 4088
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   4088
Md5:    a487e69e6a2decd03c8b7de9929b4374
Sha1:   72a192a3e1ca5684d003c3d24aa551ccec1f1642
Sha256: fbdee3ed8a0309f7fd36ecb194a57c1d709f6d8d1109119096383547d0afd3ca
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 31 May 2018 15:35:52 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    0fb600c2e8d36827af82e87e53160e71
Sha1:   6ee54d5ca4afbd50026826cb10e58e56aae8dcf5
Sha256: d397e843863a961a023a1b9ba6524bee5d4bb98a55f4e16a7f255e65c652b83d
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 31 May 2018 15:35:52 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    6bf50ec404fb4a8b4a94be8390d11938
Sha1:   0caaab7704d6221abc5e0342909a4928cee50b1c
Sha256: 63b592179b1e9a528344ce1d430b9479fc55f43420a468ec35aaeaa9dff911cf
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 31 May 2018 15:35:52 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    a02d919ec26d17760c341d5358b34007
Sha1:   065a1293755fe982c6a2a61f7742f677a5af38c5
Sha256: 2182e941b966b47586200d355bc595d2a318ecf5586cdba63e7f1113a7f9b8f0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 31 May 2018 15:35:52 GMT
Server: Apache
Last-Modified: Tue, 29 May 2018 08:38:09 GMT
Expires: Tue, 05 Jun 2018 08:38:09 GMT
Etag: B016B151AF6244FB08A8305D3F19F06F3EF8327E
Cache-Control: max-age=406336,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp33
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    273bcfeda1cd42fcd4ad5ec6a798a7fa
Sha1:   b016b151af6244fb08a8305d3f19f06f3ef8327e
Sha256: 5841f7241ec9adfe59d0cc1a8844539116a1b93f98cfe58bd7523ea7b0df7563
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 31 May 2018 15:35:52 GMT
Server: Apache
Last-Modified: Tue, 29 May 2018 09:10:02 GMT
Expires: Tue, 05 Jun 2018 09:10:02 GMT
Etag: 690686DECC62691850D17F1D814344E01B82D21C
Cache-Control: max-age=408249,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp33
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    74bfcf86d4882d06dfdbcf7244573234
Sha1:   690686decc62691850d17f1d814344e01b82d21c
Sha256: 28ca7eaed3c7ae5657adab94c1e44faa7757e2e644d50b51db3c43537fbd7bd4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 31 May 2018 15:35:53 GMT
Server: Apache
Last-Modified: Tue, 29 May 2018 09:10:02 GMT
Expires: Tue, 05 Jun 2018 09:10:02 GMT
Etag: 32E6AF8141A8E63A30A5C5A4E460C1D2AEB4B748
Cache-Control: max-age=408248,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp33
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d71d08e1617f511b0b6ac5894cf80279
Sha1:   32e6af8141a8e63a30a5c5a4e460c1d2aeb4b748
Sha256: 40f730f01e99f21e5dde7a2240a9b8e36a3114086223698632d319065cedcc12
                                        
                                            GET /gtm.js?id=GTM-P4LSJPZ HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.211.8
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Thu, 31 May 2018 15:35:52 GMT
Expires: Thu, 31 May 2018 15:35:52 GMT
Cache-Control: private, max-age=900
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   29836
Md5:    d08991e3c7de84694d5cc707bc5e8e9a
Sha1:   25114d86ef20ec743962a9f5a9fefad57cc14b4f
Sha256: 164c0959f560703407418647ed599e44bc75ba64247db85b7ddddadd567d28ad
                                        
                                            GET /css/numberedLoader.css HTTP/1.1 
Host: www.popcornvod.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         52.89.116.228
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Date: Thu, 31 May 2018 15:35:52 GMT
Etag: W/"49724-1527507071000"
Last-Modified: Mon, 28 May 2018 11:31:11 GMT
Server: Apache-Coyote/1.1
Content-Length: 49724
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   49724
Md5:    1ad09ccfe68802eaa89b3786c9af9244
Sha1:   62b0b5328a6870853b40dbfdf749c5424db1dab5
Sha256: 2ae6de1791cc1bb734b486e66abfe51380a6b89e4109d33cca4a4b4fff8cd171
                                        
                                            GET /icon?family=Material+Icons HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Thu, 31 May 2018 15:35:53 GMT
Date: Thu, 31 May 2018 15:35:53 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   289
Md5:    a0f80f5b85015bcc8d9ce1ddad31fafa
Sha1:   c4d2515fbf7e455d2ae1690f7a6cd47c95e3d656
Sha256: 0a3d24b761b94f071dd3122eef40c525d090400ce1a81471ed68b89751d15833
                                        
                                            GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Thu, 31 May 2018 15:35:53 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1519106275"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 19740
Last-Modified: Tue, 20 Feb 2018 05:57:55 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   19740
Md5:    79c26a3bec8c8195107cb0e69f211ea6
Sha1:   084edec110715186ed997205a4dc3db1c81f56e5
Sha256: 729259be1acde44ee426a5c1acde0512b16e534fdecfb022feebc7334c969029
                                        
                                            GET /css?family=Lato:100,300,400,700,900,100italic,300italic,400italic,700italic,900italic HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Thu, 31 May 2018 15:35:53 GMT
Date: Thu, 31 May 2018 15:35:53 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   373
Md5:    013e041141e5d57e5600f7e58f74fa9a
Sha1:   a229179c7aabb9a4f7f22193d107c4b040b1b4b2
Sha256: 68d596079939b23b24af0f092519511cb5f87b2c15b3f0e07cb37b30dcfa97ad
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Thu, 31 May 2018 14:58:51 GMT
Expires: Thu, 31 May 2018 16:58:51 GMT
Last-Modified: Fri, 18 May 2018 01:10:24 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14386
Cache-Control: public, max-age=7200
Age: 2222
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14386
Md5:    b3de885583a477d4e31568948d6bebd7
Sha1:   2ce8d853244dde551c41d5207d6f71c567bde8c6
Sha256: e1bb5aa555a0d875e2a67884ceaa0629e08994a8aabadc2fac5b6915793dbf75
                                        
                                            GET /js/controllers/stwController.js HTTP/1.1 
Host: www.popcornvod.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         52.89.116.228
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Accept-Ranges: bytes
Date: Thu, 31 May 2018 15:35:53 GMT
Etag: W/"2201-1527507071000"
Last-Modified: Mon, 28 May 2018 11:31:11 GMT
Server: Apache-Coyote/1.1
Content-Length: 2201
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII C++ program text, with CRLF line terminators
Size:   2201
Md5:    9ff654f2a28638626dd01af0295536ec
Sha1:   61bce5e109011993aaed8808a846f30e8e097006
Sha256: d3ee974c68a2d3474dd98db0e97efa6136717196e64c677b2a4b648a271444be
                                        
                                            GET /r/collect?v=1&_v=j68&a=1768195271&t=pageview&_s=1&dl=https%3A%2F%2Fwww.popcornvod.com%2Fwelcome.html%3Faff%3D4217%26theme%3D0921%26clickid%3Dpub38d293e0dd1344ca879593b4367c6849%26pub%3D961a9a85%26sub_pub_id%3D&dr=http%3A%2F%2Fwww.wathspap.com%2Frc%2F23b297bb2f%3Faffclick%3D5b10155751dd222cfe4589b3&ul=en-us&de=UTF-8&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=aEDAAEQCQ~&jid=71853953&gjid=1577907730&cid=1776812193.1527780954&tid=UA-79989177-1&_gid=1339780195.1527780954&_r=1&gtm=G5oP4LSJPZ&cd1=Default%204217&cd3=0921&cd4=961a9a85&z=936636541 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.211.14
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-79989177-1&cid=1776812193.1527780954&jid=71853953&_gid=1339780195.1527780954&gjid=1577907730&_v=j68&z=936636541
Access-Control-Allow-Origin: *
Date: Thu, 31 May 2018 15:35:54 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 417
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   417
Md5:    2bb83c485004e8941206202679a534b5
Sha1:   bf006cdaf3d15a74f26523895bd42512113c0017
Sha256: 2aeae0e372cbd328ced4966662184eb8f1ea420f8aa9549a36efc6d1bfe99cd3
                                        
                                            GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Thu, 31 May 2018 15:35:53 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1518903977"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 7050
Last-Modified: Sat, 17 Feb 2018 21:46:17 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7050
Md5:    0ebb760c7d229fd1d2b3a63493306569
Sha1:   58961c039962ea4f5215caa2e0127a8658bcf847
Sha256: 18eecad8f04af6784d466cd2cad0337dea530bef457e6a7b3da473eea589b134
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.17
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "74FC4257756FB5726B2FAFD96D99D7C6C2FA228824718C04A052858A43EE981D"
Last-Modified: Tue, 29 May 2018 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14351
Expires: Thu, 31 May 2018 19:35:05 GMT
Date: Thu, 31 May 2018 15:35:54 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    a0b652ce8f6cd6c38df0c5d2a66175c7
Sha1:   64b15f6c41806344728a1b37cc0c6f23011d0521
Sha256: 74fc4257756fb5726b2fafd96d99d7c6c2fa228824718c04a052858a43ee981d
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.17
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Wed, 30 May 2018 21:29:38 GMT
Etag: "e2bada7680d56f2c62a86cc157ed94f47116e59a"
Content-Length: 1396
Cache-Control: public, no-transform, must-revalidate, max-age=8965
Expires: Thu, 31 May 2018 18:05:19 GMT
Date: Thu, 31 May 2018 15:35:54 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1396
Md5:    20af6465aca1e1a4655ed32cc3970830
Sha1:   e2bada7680d56f2c62a86cc157ed94f47116e59a
Sha256: 1187d70d77528493664eed503abd976914f88e26c4b469293ff742bd922dc3ee
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 31 May 2018 15:35:54 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    06e270d7f654e6eb82d91e14b9dea70e
Sha1:   69d0d45de74f3a10f36e5461f975519ac1871f6d
Sha256: 6508a95c893ae67643e7b76b3522bbac566ce73f2cba0ab175e2ddadae552a84
                                        
                                            GET /js/controllers/welcomeController_v1.6.0.js HTTP/1.1 
Host: www.popcornvod.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         52.89.116.228
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Accept-Ranges: bytes
Date: Thu, 31 May 2018 15:35:54 GMT
Etag: W/"12039-1527581763000"
Last-Modified: Tue, 29 May 2018 08:16:03 GMT
Server: Apache-Coyote/1.1
Content-Length: 12039
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   12039
Md5:    6ca9ed17d7d9ea2110e25b34918beb1e
Sha1:   ff955d4641cb3db63bcbc3017725bc397afa6c0f
Sha256: 70c4632e56a067acf0c37cd52bd0cbc67b21849e16fe91305c78fe0a72b91311
                                        
                                            GET /js/services/api.js HTTP/1.1 
Host: www.popcornvod.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         52.89.116.228
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Accept-Ranges: bytes
Date: Thu, 31 May 2018 15:35:54 GMT
Etag: W/"5964-1527507071000"
Last-Modified: Mon, 28 May 2018 11:31:11 GMT
Server: Apache-Coyote/1.1
Content-Length: 5964
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   5964
Md5:    f9d511672cbfca58184d69447fe31d3e
Sha1:   cb87f6eb03c0f7cfe51df1c77b5116ef817c502d
Sha256: 2a51b21a70efb7e6e6b76f7deaa6eddd0ea9b7f947d988eabb11b860773da96c
                                        
                                            GET /js/welcomescript.js HTTP/1.1 
Host: www.popcornvod.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         52.89.116.228
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Accept-Ranges: bytes
Date: Thu, 31 May 2018 15:35:54 GMT
Etag: W/"2601-1527507071000"
Last-Modified: Mon, 28 May 2018 11:31:11 GMT
Server: Apache-Coyote/1.1
Content-Length: 2601
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   2601
Md5:    3f814862b9b92fada63fb57a124356d9
Sha1:   20e300b96afb76091dc5648b0e3e66ce89f10894
Sha256: fcf6090d2aaed361cf1403cf5ef3549979e310fb57022bfd85ad27c86648738b
                                        
                                            GET /ajax/libs/angularjs/1.5.8/angular-resource.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 2231
Date: Wed, 09 May 2018 16:36:02 GMT
Expires: Thu, 09 May 2019 16:36:02 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 1897192
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   2231
Md5:    edc6f9e8e91dd02a4c0f72e881ac7f8f
Sha1:   44f322fcbfea5d294758cc276dd9963ccb4afa21
Sha256: bb0600b04539183c8dd1ca8ed6c04529d0e06631b174dc9dcd88cb70eda53afc
                                        
                                            GET /js/services/commonServices.js HTTP/1.1 
Host: www.popcornvod.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         52.89.116.228
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Accept-Ranges: bytes
Date: Thu, 31 May 2018 15:35:54 GMT
Etag: W/"1938-1527507071000"
Last-Modified: Mon, 28 May 2018 11:31:11 GMT
Server: Apache-Coyote/1.1
Content-Length: 1938
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   1938
Md5:    1bf5bf3e1fe3baaca2df03687aa5e173
Sha1:   361e39703fd870833ee35204913eb5e85dc397ff
Sha256: a861c12a0bc4f5764ca7d370326683189f7baaeeb3692dc88f7eb718efd3cc7d
                                        
                                            GET /jquery-3.1.0.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         205.185.208.52
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 31 May 2018 15:35:54 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 35038
Last-Modified: Thu, 07 Jul 2016 21:45:52 GMT
Server: nginx
Vary: Accept-Encoding
Etag: W/"577ecd90-1514f"
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
X-HW: 1527780953.dop014.sk1.t,1527780954.cds034.sk1.shn,1527780954.dop014.sk1.t,1527780954.cds043.sk1.c


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   35038
Md5:    699313e554d88c82c47239f56f033e6e
Sha1:   74052a40998e3fb2b1115f802f67f2bb7f197419
Sha256: cf6ddd8144c5f5e589c4eee273bffced1944ed53ebd7cc68b85821f93a75b636
                                        
                                            GET /ajax/libs/angularjs/1.5.8/angular.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 56572
Date: Tue, 08 May 2018 20:44:07 GMT
Expires: Wed, 08 May 2019 20:44:07 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 1968707
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   56572
Md5:    701b776b7f28fd6cbe27902acf44bd2a
Sha1:   a1c97e8c0720fcfc67291cd53ae22441ea9282ab
Sha256: 70e1df888db0b269cb16f2b2e935d0e99f92bab235a8d155023fc952d79c6a7d
                                        
                                            GET /ajax/libs/angularjs/1.5.8/angular-sanitize.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 8207
Date: Tue, 29 May 2018 23:31:32 GMT
Expires: Wed, 29 May 2019 23:31:32 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 144262
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   8207
Md5:    e148b896ab2fdb65717dd871515f2ca5
Sha1:   d221591908cbf43617db7a047ef89a6167edf865
Sha256: a702e558f24120015e8235bed728aa895505cd897eaaeea1b7e59f8944ee0767
                                        
                                            GET /css/welcome.css HTTP/1.1 
Host: www.popcornvod.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         52.89.116.228
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Date: Thu, 31 May 2018 15:35:54 GMT
Etag: W/"1133-1527507071000"
Last-Modified: Mon, 28 May 2018 11:31:11 GMT
Server: Apache-Coyote/1.1
Content-Length: 1133
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1133
Md5:    5a89f03af791d6e8533c6ee25865de1e
Sha1:   35a68b24777e4a7cb4c3b5bbc178c2580eae8f85
Sha256: b249f1c868120d36ba76115b9e502f7a295c4e96642a57400089ff4851c4f26f
                                        
                                            GET /ajax/libs/angularjs/1.5.8/angular-animate.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 9274
Date: Wed, 09 May 2018 15:58:51 GMT
Expires: Thu, 09 May 2019 15:58:51 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 1899423
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   9274
Md5:    df157add8d73a21409e6973a59a64656
Sha1:   5b59dc757a93a466441b194aa82a73da568c52fa
Sha256: d9c63c7281d0a701fa985e0b76ecc36d1388c4f6388967fe2af53599dc802618
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-79989177-1&cid=1776812193.1527780954&jid=71853953&_gid=1339780195.1527780954&gjid=1577907730&_v=j68&z=936636541 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         64.233.164.154
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-79989177-1&cid=1776812193.1527780954&jid=71853953&_v=j68&z=936636541
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Thu, 31 May 2018 15:35:54 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 364
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   364
Md5:    9c2709fb388907a07bd1add35ea17c95
Sha1:   1d7a68a44cb8f3204d1459cbca6ebc48dbc48152
Sha256: 008c0486753aa29576dce1bef43a1c45c0d73c1eaf67c4b08f9191529833259c
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 31 May 2018 15:35:54 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    9455a7745c29573439da12eb21c71655
Sha1:   7538e38aef103b79fbb9750550ccb1271e8707e5
Sha256: 0d5d9b7bec8f9d79a15e91df55b70c282ec031eef666e2db838c31588a7084ea
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-79989177-1&cid=1776812193.1527780954&jid=71853953&_v=j68&z=936636541 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.211.4
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Thu, 31 May 2018 15:35:54 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-79989177-1&cid=1776812193.1527780954&jid=71853953&_v=j68&z=936636541&slf_rd=1&random=3397731517
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 0
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 31 May 2018 15:35:54 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    a40601d6cb71640caf4b155cb18adea7
Sha1:   ccdf074fdc36fb11f15d1deb71fe8471aa69a3a1
Sha256: ed6b0efcc44661be21e21210e73e137f927b72de75a4ece7b2bc076fc9ee962f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=161174
Date: Thu, 31 May 2018 15:35:54 GMT
Etag: "5b0fd93e-1d7"
Expires: Sat, 02 Jun 2018 12:22:08 GMT
Last-Modified: Thu, 31 May 2018 11:15:10 GMT
Server: ECS (arn/4598)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    87f34b16934895e78a27043b4dc52ddc
Sha1:   131db8e383a7b5d97e565b5245c5b27afb41edcb
Sha256: fbd8e9a4487487941711813e6be388caad8a8d08c7f44ac69a96f21facd433ff
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=143593
Date: Thu, 31 May 2018 15:35:54 GMT
Etag: "5b0f97f1-1d7"
Expires: Sat, 02 Jun 2018 07:12:06 GMT
Last-Modified: Thu, 31 May 2018 06:36:33 GMT
Server: ECS (arn/45C7)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    eeb9cf8a61f7df0b480c78e8c172b91b
Sha1:   68a248eb04c1b2c6e735df414b46f3c1c186d16a
Sha256: e52912e53481f69c482d3db4c9637e7bc497363df620014ba8aa0ff0c4e74f5e
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-79989177-1&cid=1776812193.1527780954&jid=71853953&_v=j68&z=936636541&slf_rd=1&random=3397731517 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Thu, 31 May 2018 15:35:54 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-Frame-Options: DENY
Cache-Control: public, max-age=1200
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Pragma: public
X-XSS-Protection: 0
Vary: Accept-Encoding
Content-Encoding: gzip
X-FB-Debug: Xd+KlkxYKAnpBfbhDR4u3VaX7yxM2iiTGzcBVYg6Pz3HH9kh9RN0JuVQc0bjxNubXGOIjRO/no/nTI08VeKfwQ==
Date: Thu, 31 May 2018 15:35:54 GMT
Connection: keep-alive
Content-Length: 12398


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12398
Md5:    86679a5d384f3adb3cb9c5b73acf4318
Sha1:   174ff7b3ab59522bb76f4ae59f34031457afadaf
Sha256: daa2a0b29d6293daefeaa11d9f9f5d6a0331455fd1e59f00cb0aecb8045f23c4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=156426
Date: Thu, 31 May 2018 15:35:54 GMT
Etag: "5b0fb4e5-1d7"
Expires: Sat, 02 Jun 2018 10:36:56 GMT
Last-Modified: Thu, 31 May 2018 08:40:05 GMT
Server: ECS (arn/45E2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    cb31399c8f7bf1d35c8019b701ceaf37
Sha1:   044460fcf6a5b05b86b652d7614bcb85b23e6f52
Sha256: 000b424245f8e754db6cf993b8da93da6ba5ce8c7a92fdac7c24e4c17b0cb413
                                        
                                            GET /wi/ytc.js HTTP/1.1 
Host: s.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         87.248.118.23
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 31 May 2018 15:35:55 GMT
Last-Modified: Thu, 17 May 2018 12:46:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4111
Age: 0
Strict-Transport-Security: max-age=15552000
Via: http/1.1 spdc0003.pbp.ir2.yahoo.com (ApacheTrafficServer), https/1.1 e19.ycpi.deb.yahoo.com (ApacheTrafficServer [cMsSf ])
Server: ATS
Connection: keep-alive
Expect-CT: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
Public-Key-Pins-Report-Only: max-age=2592000; pin-sha256="2fRAUXyxl4A1/XHrKNBmc8bTkzA7y4FB/GLJuNAzCqY="; pin-sha256="2oALgLKofTmeZvoZ1y/fSZg7R9jPMix8eVA6DH4o/q8="; pin-sha256="Gtk3r1evlBrs0hG3fm3VoM19daHexDWP//OCmeeMr5M="; pin-sha256="I/Lt/z7ekCWanjD0Cvj5EqXls2lOaThEA0H2Bg4BT/o="; pin-sha256="JbQbUG5JMJUoI6brnx0x3vZF6jilxsapbXGVfjhN8Fg="; pin-sha256="SVqWumuteCQHvVIaALrOZXuzVVVeS7f4FGxxu6V+es4="; pin-sha256="UZJDjsNp1+4M5x9cbbdflB779y5YRBcV6Z6rBMLIrO4="; pin-sha256="Wd8xe/qfTwq3ylFNd3IpaqLHZbh2ZNCLluVzmeNkcpw="; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="cAajgxHlj7GTSEIzIYIQxmEloOSoJq7VOaxWHfv72QM="; pin-sha256="dolnbtzEBnELx/9lOEQ22e6OZO/QNb6VSSX2XHA3E7A="; pin-sha256="i7WTqTvh0OioIruIfFR4kMPnBqrS2rdiVPl/s2uC/CY="; pin-sha256="iduNzFNKpwYZ3se/XV+hXcbUonlLw09QPa6AYUwpu4M="; pin-sha256="lnsM2T/O9/J84sJFdnrpsFp3awZJ+ZZbYpCWhGloaHI="; pin-sha256="r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E="; pin-sha256="uUwZgwDOxcBXrQcntwu+kYFpkiVkOaezL0WYEZ3anJc="; includeSubdomains; report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-hpkp-report-only"


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4111
Md5:    d186854392e331ddbfb3bec16dc4c731
Sha1:   49441cdb6028c23307c1e29039cf382c84102269
Sha256: 5f14d65852785d2d0385e66e0ee9d26d14ae2c24df3ce0a6a071a6821364fa86
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=155801
Date: Thu, 31 May 2018 15:35:55 GMT
Etag: "5b0fb778-1d7"
Expires: Sat, 02 Jun 2018 10:27:07 GMT
Last-Modified: Thu, 31 May 2018 08:51:04 GMT
Server: ECS (arn/4694)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    634c358be0b34a025f86af7fc6bdbf7e
Sha1:   89038b483c481b92fae48c6903c7aa4cfe458b17
Sha256: 77485867134180ad520cdee5330df0b780e6d0d647720b4c1f9a977e804b6cc6
                                        
                                            GET /sp.pl?a=10000&jsonp=YAHOO.ywa.I13N.handleJSONResponse&d=Thu%2C%2031%20May%202018%2015%3A35%3A55%20GMT&n=-2d&b=popcornvod.com&.yp=10050019&f=https%3A%2F%2Fwww.popcornvod.com%2Fwelcome.html%3Faff%3D4217%26theme%3D0921%26clickid%3Dpub38d293e0dd1344ca879593b4367c6849%26pub%3D961a9a85%26sub_pub_id%3D&e=http%3A%2F%2Fwww.wathspap.com%2Frc%2F23b297bb2f%3Faffclick%3D5b10155751dd222cfe4589b3&enc=UTF-8 HTTP/1.1 
Host: sp.analytics.yahoo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.popcornvod.com/welcome.html?aff=4217&theme=0921&clickid=pub38d293e0dd1344ca879593b4367c6849&pub=961a9a85&sub_pub_id=

                                         
                                         188.125.66.33
HTTP/1.1 204 No Content
                                        
Date: Thu, 31 May 2018 15:35:55 GMT
Server: ATS
Age: 0
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Via: http/1.1 spdc0018.pbp.ir2.yahoo.com (ApacheTrafficServer)
Expect-CT: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
Public-Key-Pins-Report-Only: max-age=2592000; pin-sha256="2fRAUXyxl4A1/XHrKNBmc8bTkzA7y4FB/GLJuNAzCqY="; pin-sha256="2oALgLKofTmeZvoZ1y/fSZg7R9jPMix8eVA6DH4o/q8="; pin-sha256="Gtk3r1evlBrs0hG3fm3VoM19daHexDWP//OCmeeMr5M="; pin-sha256="I/Lt/z7ekCWanjD0Cvj5EqXls2lOaThEA0H2Bg4BT/o="; pin-sha256="JbQbUG5JMJUoI6brnx0x3vZF6jilxsapbXGVfjhN8Fg="; pin-sha256="SVqWumuteCQHvVIaALrOZXuzVVVeS7f4FGxxu6V+es4="; pin-sha256="UZJDjsNp1+4M5x9cbbdflB779y5YRBcV6Z6rBMLIrO4="; pin-sha256="Wd8xe/qfTwq3ylFNd3IpaqLHZbh2ZNCLluVzmeNkcpw="; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="cAajgxHlj7GTSEIzIYIQxmEloOSoJq7VOaxWHfv72QM="; pin-sha256="dolnbtzEBnELx/9lOEQ22e6OZO/QNb6VSSX2XHA3E7A="; pin-sha256="i7WTqTvh0OioIruIfFR4kMPnBqrS2rdiVPl/s2uC/CY="; pin-sha256="iduNzFNKpwYZ3se/XV+hXcbUonlLw09QPa6AYUwpu4M="; pin-sha256="lnsM2T/O9/J84sJFdnrpsFp3awZJ+ZZbYpCWhGloaHI="; pin-sha256="r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E="; pin-sha256="uUwZgwDOxcBXrQcntwu+kYFpkiVkOaezL0WYEZ3anJc="; includeSubdomains; report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-hpkp-report-only"


--- Additional Info ---