Overview

URL 19487.6a8ys.0q2y.men/7.html
IP115.126.110.192
ASN
Location Hong Kong
Report completed2018-12-12 01:51:07 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-12-12 2 19487.6a8ys.0q2y.men/7.html Malware
2018-12-12 2 19487.6a8ys.0q2y.men/common.php?nosafe Malware
2018-12-12 2 19487.6a8ys.0q2y.men/Scripts/search/SearchBox.js Malware
2018-12-12 2 19487.6a8ys.0q2y.men/ResourcePackages/Bootstrap/assets/dist/fonts/bootstrap (...) Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 2 reports on IP: 115.126.110.192

Date UQ / IDS / BL URL IP
2018-12-01 19:07:45 +0100
0 - 0 - 1 wws6.men/21936.html 115.126.110.192
2018-10-10 16:42:50 +0200
0 - 0 - 1 0yqs2.w0ym.men/53583.html 115.126.110.192

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-07-02 09:48:15 +0200
0 - 0 - 0 https://www.imdb.com/list/ls049696316/ 143.204.52.228
2019-07-02 09:48:17 +0200
0 - 0 - 0 https://www.imdb.com/list/ls049696333/ 143.204.52.228
2019-07-02 09:48:03 +0200
0 - 0 - 0 https://www.spreaker.com/show/ver-peru-x-urug (...) 52.51.101.146
2019-07-01 11:37:34 +0200
0 - 0 - 0 https://www.tig-uk.com/tts/nbn4298k3o7tvns8vp (...) 144.217.235.30
2019-07-01 11:37:22 +0200
0 - 0 - 0 https://www.tig-uk.com/tts/nbn4298k3o7tvns8vp (...) 144.217.235.30
2019-07-01 11:36:59 +0200
0 - 0 - 0 https://healthadviserpro.com/power-efficiency (...) 108.179.246.37
2019-07-01 11:35:37 +0200
0 - 0 - 0 https://www.imdb.com/list/ls049291106/ 143.204.52.228
2019-07-01 11:31:59 +0200
0 - 0 - 1 https://fp.bwjf.cn/downInvoice/98d3884f381b46 (...) 39.107.217.15
2019-07-01 11:28:01 +0200
0 - 0 - 0 https://d9.flashtalking.com/d9core 52.211.104.166
2019-07-01 11:27:51 +0200
0 - 0 - 0 https://www.launchora.com/story/123movies-wat (...) 52.38.238.5

No other reports on domain: 0q2y.men



JavaScript

Executed Scripts (22)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (49)


Request Response
                                        
                                            GET /ajax/libs/bootstrap-select/1.6.3/js/bootstrap-select.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         104.19.198.151
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 12 Dec 2018 00:50:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 17 May 2018 09:16:19 GMT
Etag: W/"5afd4863-aaf6"
Expires: Mon, 02 Dec 2019 00:50:34 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Served-In-Seconds: 0.001
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 487c3298643d4273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10263
Md5:    4af8e24edf2696a181f5b51847186aa7
Sha1:   2a3a1143096fb263f479341cee20bca2253d9582
Sha256: 1637c357595db9f8eab92890ca8fecf1e67598089bf677e7818a1d88c8e7d9b1
                                        
                                            GET /ajax/libs/bootstrap-select/1.6.3/css/bootstrap-select.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         104.19.198.151
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 12 Dec 2018 00:50:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 17 May 2018 09:16:19 GMT
Etag: W/"5afd4863-1636"
Expires: Mon, 02 Dec 2019 00:50:34 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Served-In-Seconds: 3.354
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 487c329865a34285-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1451
Md5:    ed1fab24f1cebe4e3f8aea5835274616
Sha1:   8cb53a7a1fa2cda061c99e1e8a86b6606b299212
Sha256: d463459aff06346c4860da9b77dfe824b985664b302631543d50edb41cc94e19
                                        
                                            GET /font-awesome/4.6.1/css/font-awesome.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Wed, 12 Dec 2018 00:50:34 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1544225803"
Content-Encoding: gzip
Content-Length: 6591
Last-Modified: Fri, 07 Dec 2018 23:36:43 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT
timing-allow-origin: *
Cache-Control: public, max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6591
Md5:    15725647270319ebe2999c03b703fbbc
Sha1:   25fa9b85019b3baa22e6a7d74c773bdee8f28f0b
Sha256: 8025e1a69ec1f9f4cf73d8c35520e34cfcf3dbdd86602a729b9d43379ab1479f
                                        
                                            GET /bootstrap/3.0.3/js/bootstrap.min.js HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Wed, 12 Dec 2018 00:50:34 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1544225706"
Content-Encoding: gzip
Content-Length: 7283
Last-Modified: Fri, 07 Dec 2018 23:35:06 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT
timing-allow-origin: *
Cache-Control: public, max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7283
Md5:    fe642f9077a16cdd27eab5224886fe33
Sha1:   3ad41d16ae0771962d7cacb8e328a19ce87aa256
Sha256: 265a8b703e3130e85f71a0e83c44c09ae375bd376bb7f12c8e0f0590473c6662
                                        
                                            GET /7.html HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10960
Md5:    1788a7f69657a52c6c9f9da6e699250c
Sha1:   74ae5e8ae6658aaf9d899f75a96747ed9aaa674b
Sha256: 3a69fe270965b8d8a3c7a4bd66c32b7ecc5aa2e118d91b93d5facc7ac36eac95

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /WebResource.axd?d=UktW3IoRL22eMKohtSKKXm_4Fx4ri3sfKwklTEIRl24fCLcH6zOKU37r_7FX4E3L66g4241ioKEbJNslPRxFiRjq9McesO2qkKaUJJ9SIlf37Fc_hS9xIYcmS4jy3ObNiXKDSDp9-cmaWjSqdJXGP-ssz4WTV5t6dwc8cxN8hmk1&t=636282970720000000 HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   718
Md5:    9ec86da109b0d3292bed1ee0c8312612
Sha1:   a0cb6c33a14e0972fbab69fcafa04ec607742198
Sha256: 3d6a229eaf3fde9f617577b31be61752bd9cfd48f474cc35da3efba9ea36ad81
                                        
                                            GET /Mvc/Scripts/LeftNavigation/LeftNavigationCtrl.js HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Mon, 19 Jun 2017 17:40:23 GMT
Accept-Ranges: bytes
Etag: "80ddc32023e9d21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:33 GMT
Content-Length: 1200


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1200
Md5:    343843e3e2b579879ec30eaac3fdc34a
Sha1:   0b7a7086263632accfec4c6ea40d3638b5d9df6e
Sha256: 897cfdd1b8b6d658988764182033f7eebf094fd1e36b51eb0f87049f41c647c4
                                        
                                            GET /images/default-source/logos/ds-logo.png?sfvrsn=b6d1a460_4 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 4764
Expires: Mon, 11 Mar 2019 23:50:34 GMT
Last-Modified: Mon, 22 Dec 2014 19:01:27 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=ds-logo.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:33 GMT


--- Additional Info ---
Magic:  PNG image, 184 x 54, 8-bit/color RGBA, non-interlaced
Size:   4764
Md5:    1223daeacdfb3b085c94738f2b350710
Sha1:   915f5d9e5062efc6b8125b0d5a2a1c8823f0ed49
Sha256: ba69f6ed7cb633d820eae777f54a1aa733d8288030ee2a04edfe61084aaf4d51
                                        
                                            GET /common.php?nosafe HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /WebResource.axd?d=UWnLPCKTIgub4zgg_rFgNMH4H8HHJuwVpxkRDbd5nO4UU0EziSow9eIaGPjydvoXz9h4uNE-VAW3G0wbnSDBw8NLrMY5K7PMVLw2vtI5iyQ1&t=635792883671809273 HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4675
Md5:    2cc34976d4cb88b50e1d5ae5a715e775
Sha1:   e29478fcb4073904ad03f63fe6ab85ce792c55ec
Sha256: b03ee41b6a1db5ceb12dd8bfc082ca2ee880c7b90823ac249214669fbcf9ba2d
                                        
                                            GET /Telerik.Web.UI.WebResource.axd?d=JXQqmgjXJvgDyR0-HSA0bS1RDEqqNKmxqAiuwzyBKAImf_9lln77Yo4Dt-bNJap8svVwd58sIiVXAk758s0rlJupMBb6-r-JnpNZnHNyO254Ps8rBPtJbnmq6rbf8xgPPBjog0oodat9G7cQwlAHmQ2&t=635307195853130836&compress=0&_TSM_CombinedScripts_=%3b%3bTelerik.Sitefinity.Resources%2c+Version%3d10.0.6403.0%2c+Culture%3dneutral%2c+PublicKeyToken%3db28c218413bdf563%3aen%3aa0dee8fd-b289-4c19-9a12-578f7111c82f%3a7a90d6a HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   523
Md5:    3d189cf77846ca604368b04821686fb1
Sha1:   16062fbb4f2d62a338d3aacf59f90a3ee2f1020e
Sha256: c43cd9a2567797c70d34d56a27cb5950ea3d4b826b8f6fedaa95c2bb0224f80e
                                        
                                            GET /css/dsc_custom.css HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2354
Md5:    36b1ab659d29ab0aa02e52f9b244757a
Sha1:   34084d9c678dd4ca6e44fb410615b580d6125358
Sha256: f81dccf4f8ef2893ab579f8a874a0a03f2f37d4b55498e83cb6f337726a67831
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 12 Dec 2018 00:50:35 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d6d8ca007fd4d7cbe27440609b872384f1544575835; expires=Thu, 12-Dec-19 00:50:35 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Tue, 11 Dec 2018 23:44:57 GMT
Expires: Sat, 15 Dec 2018 23:44:57 GMT
Etag: "3db15ee0d50e6020c59ae5b5a55602b5b67f256d"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 487c329c62674297-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    9e823897cc3f9d0e93271d5fd5f53b1f
Sha1:   3db15ee0d50e6020c59ae5b5a55602b5b67f256d
Sha256: bbb2261efb0d24bbb5663ece6f1ba47fd492be478246e731b90903086b6afd14
                                        
                                            GET /Telerik.Web.UI.WebResource.axd?_TSM_HiddenField_=ctl05_TSM&compress=0&_TSM_CombinedScripts_=%3b%3bTelerik.Sitefinity.Resources%3aen%3aa0dee8fd-b289-4c19-9a12-578f7111c82f%3ab162b7a1 HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3489
Md5:    07095fe96d9460854a928ffe16ae67e7
Sha1:   55f2096ab213da6daca0242c2f22bea481f2ad30
Sha256: 7f328421c863837a6da78935f3c005bc7ef24778fe90c4f4cbdb3d945a27eaff
                                        
                                            GET /ResourcePackages/Bootstrap/assets/dist/css/main.min.css HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   24727
Md5:    b4fd3be2c383f27186a97b78ef226234
Sha1:   3873b45fd232b7991aa78e37d56be2aa1cb6ab99
Sha256: 56116b435a3acc306c77dfeaa2d36136d195cc70c63b52460cb7cf2ec72fda39
                                        
                                            GET /Css/DaytonFrontend.min.css?package=Bootstrap HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Wed, 26 Apr 2017 16:14:47 GMT
Accept-Ranges: bytes
Etag: "80f52939a8bed21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:33 GMT
Content-Length: 95755


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   95755
Md5:    f88d652298e5ad6fde35ff043c77055c
Sha1:   dae5beb372f1b1b3ebe42757dd4abf863479884f
Sha256: 0470d81a56b0afb3104e65101bba2abbd32f126de0194830e07b3764ec526367
                                        
                                            GET /Telerik.Web.UI.WebResource.axd?_TSM_HiddenField_=ctl05_TSM&compress=0&_TSM_CombinedScripts_=%3b%3bSystem.Web.Extensions%2c+Version%3d4.0.0.0%2c+Culture%3dneutral%2c+PublicKeyToken%3d31bf3856ad364e35%3aen%3a93a6b8ed-f453-4cc5-9080-8017894b33b0%3aea597d4b%3ab25378d2 HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   35367
Md5:    d9eee40caf4a5eb1f57ffe0a80ca0c05
Sha1:   c89a47cb69c4f4795c7a4bb022bd74ad2336469e
Sha256: d303cacb39715387c005ac7693adeceac24063d89136d9c4f61f1ef33947219b
                                        
                                            GET /ScriptResource.axd?d=nR8XO1RdKVgLSkJgLjjx3wZfE3jEeFdGKrlHP8vNfR8VXW_-ohB6FJ1Zn8ymV6Nla5UT8YE9dPHvZH7Xuw8dzICBQDC4e0eZ41tkvcMZp33gNVaY3Pf1llw7dXNHYszUNxwf2B3esSvY1C0zxX7xphuiRhgjQAokF_mDGbAGwwqUUgrnvUXyY17gzHsPF1yEHsQxNmc_FpwSIzyhDRG5FA2&t=6eaf7876 HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33523
Md5:    6c0531904d694a05e2c49c3a90cb4441
Sha1:   e480b098bf559e6f9474be02ab0d5222d3d3846e
Sha256: d042f5c4dc5793d45fee8dc563c4fc0e54c178a39d363e19565258dde7c48fd0
                                        
                                            GET /hm.js?c329f73b09dca56a7c75672c4a9efa77 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9144
Date: Wed, 12 Dec 2018 00:50:36 GMT
Etag: 875498c34eb0ea9ae610eab727350d64
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=4B281DE808BD1D3A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9144
Md5:    21b92f3ba3ef415cb099ac1cc45834e5
Sha1:   33d5791b370506f80405cce7ff57735a812da04c
Sha256: 3ff5dbf5815467db26e976c1967cd0166c69df2c7267944201678f882ccaa536
                                        
                                            GET /images/default-source/site-images/warehouses-sm.png?sfvrsn=23b0a160_6 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 6255
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 19:52:58 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=warehouses-sm.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   6255
Md5:    e48f5604135a26641d5c3e6d26dbdba1
Sha1:   1499c496ff5d632064b5f9697f380b16b0618be3
Sha256: 21bd34f67a2772410b97931e9dcedec2acadcb3a7bd53e5fdf22e139562158cd
                                        
                                            GET /images/default-source/site-images/stadiums-sm.png?sfvrsn=11b0a160_6 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 5684
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 19:51:59 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=stadiums-sm.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   5684
Md5:    a7d51a0d07fa76b3de49b86239691213
Sha1:   86c3c4af562a6a8840164c5a9430757a77eed4fa
Sha256: f6f8de2e0a5d423bbef7a0d5c0cf25716e895ce94cc0e6564e2df894275f7233
                                        
                                            GET /Telerik.Web.UI.WebResource.axd?d=JXQqmgjXJvgDyR0-HSA0bS1RDEqqNKmxqAiuwzyBKAImf_9lln77Yo4Dt-bNJap8svVwd58sIiVXAk758s0rlJupMBb6-r-JnpNZnHNyO254Ps8rBPtJbnmq6rbf8xgPPBjog0oodat9G7cQwlAHmQ2&t=635307195853130836&compress=0&_TSM_CombinedScripts_=%3b%3bTelerik.Sitefinity.Resources%2c+Version%3d10.0.6403.0%2c+Culture%3dneutral%2c+PublicKeyToken%3db28c218413bdf563%3aen%3aa0dee8fd-b289-4c19-9a12-578f7111c82f%3a7a90d6a HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html
Cookie: Hm_lvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; Hm_lpvt_c329f73b09dca56a7c75672c4a9efa77=1544575838

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   523
Md5:    3d189cf77846ca604368b04821686fb1
Sha1:   16062fbb4f2d62a338d3aacf59f90a3ee2f1020e
Sha256: c43cd9a2567797c70d34d56a27cb5950ea3d4b826b8f6fedaa95c2bb0224f80e
                                        
                                            GET /Scripts/search/SearchBox.js HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html
Cookie: Hm_lvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; Hm_lpvt_c329f73b09dca56a7c75672c4a9efa77=1544575838

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   535
Md5:    b2f5f078f9f03da5f3840563ce225aaf
Sha1:   ed6a4b2ff46f3716b60e809efa222b36fcfe85d4
Sha256: 6fb80e76da4c2fd6044a13d1c3318f1c33c7607bb6daec8ab3dc09a435499388

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/default-source/site-images/garages-sm.png?sfvrsn=e8b1a160_6 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 8051
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 19:49:32 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=garages-sm.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   8051
Md5:    9ec600954e9ef44a9975763e2c369b8e
Sha1:   528c01c349142bb64a42fc26e09097bd99aa03bb
Sha256: da793450df02f423050208e826c1f626c5df9c012be4d30c18075ceb47d6bab5
                                        
                                            GET /Mvc/Scripts/MobileNavigation/MobileNavigation.js HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Mon, 19 Jun 2017 17:40:23 GMT
Accept-Ranges: bytes
Etag: "442bf72023e9d21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:37 GMT
Content-Length: 335


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   335
Md5:    c62d4e394bfc14762ce633203a6d7a5d
Sha1:   80a9fc87acf4d6e8a7a426c14b7fad2367934fbd
Sha256: 47c0a849b0efd4bee9508e6694c5175d7fe9aa7e77ba5a673504fa79cb8799a7
                                        
                                            GET /Mvc/Scripts/Shared/SpeclistManager.js HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Tue, 12 Jul 2016 20:47:44 GMT
Accept-Ranges: bytes
Etag: "0d8a5a37edcd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:37 GMT
Content-Length: 1248


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1248
Md5:    c67580a678b2e1149a9234801499dec5
Sha1:   5602164d6bbda1c30054831c845159e5135671b9
Sha256: 7ccdaaf8050bb05573a6845a0b694a4fcda871e8d809ef21a7c2d02ef11efb69
                                        
                                            GET /images/default-source/site-images/high-rises-sm.png?sfvrsn=e7b1a160_8 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 3125
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 19:55:08 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=high-rises-sm.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   3125
Md5:    0f7ace713e8412d7051dc037db9d07bb
Sha1:   f1547dca5f9a7574ab8bd61f164ef1faeca50b36
Sha256: c2e3f047eadd99ea5a15eb70ec42e050bf8a45945e5e74cba04d8a930281e503
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=176077939&si=c329f73b09dca56a7c75672c4a9efa77&v=1.2.34&lv=1&ct=!!&tt=404%20_%E8%B4%B8%E6%98%93%E5%85%AC%E5%8F%B8&sn=46958 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html
Cookie: HMACCOUNT=4B281DE808BD1D3A

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Wed, 12 Dec 2018 00:50:37 GMT
Pragma: no-cache
Server: apache
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /images/default-source/site-images/repair-sm.png?sfvrsn=14b0a160_6 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 2513
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 19:52:19 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=repair-sm.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   2513
Md5:    24a9fad0cec3d92ac246305d0b124c3b
Sha1:   afa59b722452e3b0e19e5d03ec8a994622df7637
Sha256: 0e34ac0bcaacb6ae6168d9ac6665e7124a027b2aab2e50c5c03a71b8a4880ce5
                                        
                                            GET /images/default-source/site-images/highways-bridges-sm.png?sfvrsn=fbb1a160_6 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 4422
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 19:49:55 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=highways-bridges-sm.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   4422
Md5:    4b5525a1cdcdd731ba18a7432dd58ea5
Sha1:   20fe93eb756dd989d8576be9ccbbd17be9d2ae74
Sha256: 03e16162bb4b1ccd20cc2dfedf277ac502a6ad806932108844abdd9947d47708
                                        
                                            GET /images/default-source/site-images/industrial-sm.png?sfvrsn=8b0a160_6 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 5717
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 19:50:06 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=industrial-sm.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   5717
Md5:    d54c859e1d211cd9813bc2f4f9708241
Sha1:   87bbc3751a33684ae8d5065345a931e9ed5cc468
Sha256: 50597185f66f6fffffea04dd51f63d464bd842075207e88f9e6dd40f105ac647
                                        
                                            GET /images/default-source/site-images/airports-sm.png?sfvrsn=ebb1a160_6 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 3351
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 19:49:43 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=airports-sm.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   3351
Md5:    67191cb5606e4e41e2185d972351913f
Sha1:   dd9131d54354b3898e0fa3090afed8295e414b62
Sha256: 7a907ccc53f3abd99fe39745646e4aba26af64d62d0d05a0496cab07e97cca9d
                                        
                                            GET /images/default-source/site-images/power-sm.png?sfvrsn=ab0a160_8 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 4066
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 19:55:22 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=power-sm.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   4066
Md5:    4f3dab6d963c615a7e1aa404d7a69427
Sha1:   eb89a3020a56515027204c55ae94a148e6878535
Sha256: a51e76df4ad8475c567cd2640c0d7f536075ddc2ab9fb972ddba5e105de42eae
                                        
                                            GET /images/default-source/site-images/tiltup-button-white.png?sfvrsn=ea5bb460_4 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=7776000
Content-Length: 4257
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Fri, 08 Sep 2017 20:00:07 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=tiltup-button-white.png
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  PNG image, 88 x 88, 8-bit/color RGBA, non-interlaced
Size:   4257
Md5:    94e4509ac8e8d1f76d2049d359ab78ce
Sha1:   492c090aa2947041e23d9914b73aa9328dd97941
Sha256: 7ad1ca819316e6a94fd3d56a0710609e502d52baf995490e35c7494e05437fe2
                                        
                                            GET /Mvc/Scripts/TopNavigation/TopNavigationCtrl.js?package=Bootstrap HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Tue, 12 Jul 2016 20:47:44 GMT
Accept-Ranges: bytes
Etag: "39db2ea47edcd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:37 GMT
Content-Length: 768


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   768
Md5:    d8d26a10190a24b7b912fcab70f87cde
Sha1:   b4583249fcc10ccabfee324fb9c1fdb3aacb4e13
Sha256: f84ef24f7fc731c406d8886269988876b48205cdcf769b3eea3d23f28768e86a
                                        
                                            GET /Css/images/header_bar.jpg HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.daytonsuperior.com/Css/DaytonFrontend.min.css?package=Bootstrap

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2678400
Last-Modified: Tue, 12 Jul 2016 20:47:48 GMT
Accept-Ranges: bytes
Etag: "a57510a67edcd11:0"
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:37 GMT
Content-Length: 7819


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   7819
Md5:    8aec353aad75bebdcf6298240878bff9
Sha1:   4bf125e7455c84410a6e617b36027fa3f2c09c3c
Sha256: 760aace9ef0b62af7e5b4e4a55bdf6cd36ab249a428bba4658178e3ecfd4c217
                                        
                                            GET /font-awesome/4.6.1/fonts/fontawesome-webfont.woff?v=4.6.1 HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/font-awesome/4.6.1/css/font-awesome.min.css
Origin: http://19487.6a8ys.0q2y.men

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Wed, 12 Dec 2018 00:50:38 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1544225830"
Content-Encoding: gzip
Content-Length: 88995
Last-Modified: Fri, 07 Dec 2018 23:37:10 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT
timing-allow-origin: *
Cache-Control: public, max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   88995
Md5:    ffb3d3a92fd953670596741fcfaa180e
Sha1:   93ccca4671687aa288b4953c474f77ec4521dbdd
Sha256: 77e719b3d8940a20391f58d7f1cf5041f1d8ccb6d8a42f502c586888f83a8a00
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; Hm_lpvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; sf-trckngckie=db113700-2024-447d-9adf-d9c6e41920cb

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.4


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    eb08b76c9f4ccc36c951186ea728a2a1
Sha1:   ec2bb9876c11f919f797cfe2f0851b1a1e54e2be
Sha256: dcd2eaf48e3d7ebb088e0fc27e35c1870da7f6bffd84e686bd5b392c9c7a82f4
                                        
                                            GET /images/default-source/call-out-images/404.jpg?Status=Master&sfvrsn=f269a160_6 HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=7776000
Content-Length: 23424
Expires: Mon, 11 Mar 2019 23:50:37 GMT
Last-Modified: Wed, 03 Dec 2014 19:55:24 GMT
Server: Microsoft-IIS/8.5
Content-Disposition: inline; filename=404.jpg
X-AspNet-Version: 4.0.30319
Date: Wed, 12 Dec 2018 00:50:37 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   23424
Md5:    ff3265130486c54360b5553ac24f2bc9
Sha1:   3140a92c06eea52d5158f3041eedde23e871ffbc
Sha256: eb01ea575493b90e84e825e63804cc87656410a4d0aea83875615cda91bcebac
                                        
                                            GET /Sitefinity/Public/Services/Statistics/Log.svc/?pageNodeId=1e04c041-ff67-61de-8c59-ff0000a369ff&trackingId=db113700-2024-447d-9adf-d9c6e41920cb&referrer=&pageUrl=http://19487.6a8ys.0q2y.men/7.html HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/7.html
Cookie: Hm_lvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; Hm_lpvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; sf-trckngckie=db113700-2024-447d-9adf-d9c6e41920cb

                                         
                                         115.126.110.145
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   255
Md5:    2f0d2954aa33443162f04050a3e73c5c
Sha1:   18b00be456a409fba0ebdf2fcdf81b4e80e05647
Sha256: bdca5b78100015059c66035f6e1db090332be89c909f80e5fade89808a930eed
                                        
                                            GET /css/fonts/Dayton-Superior.woff?zf1t4m HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.daytonsuperior.com/Css/DaytonFrontend.min.css?package=Bootstrap
Origin: http://19487.6a8ys.0q2y.men

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Cache-Control: max-age=2678400
Last-Modified: Tue, 12 Jul 2016 20:47:47 GMT
Accept-Ranges: bytes
Etag: "48f26a67edcd11:0"
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:37 GMT
Content-Length: 5660


--- Additional Info ---
Magic:  data
Size:   5660
Md5:    013a77929d74bfe35546326caa3d4be5
Sha1:   6cd2845b182f56bd7385b3c5bf8341d7e3d68527
Sha256: a46a352cdc4c72b2261ea194c812717179127a0570ac1c0c33ce869f6504909b
                                        
                                            GET /ResourcePackages/Bootstrap/assets/dist/fonts/bootstrap/glyphicons-halflings-regular.woff HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://19487.6a8ys.0q2y.men/ResourcePackages/Bootstrap/assets/dist/css/main.min.css
Cookie: Hm_lvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; Hm_lpvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; sf-trckngckie=db113700-2024-447d-9adf-d9c6e41920cb

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.2.4
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   23188
Md5:    9af33c30142c66cb800c81fc937c4fff
Sha1:   e70c1ee10fd1a29381c6f5078ffc51d1cc241011
Sha256: 8b1e278a728358db744a10440e1b47de647bf1449d738205fe10684d393f1022

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css/fonts/Dayton-Superior.ttf?zf1t4m HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.daytonsuperior.com/Css/DaytonFrontend.min.css?package=Bootstrap
Origin: http://19487.6a8ys.0q2y.men

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Cache-Control: max-age=2678400
Last-Modified: Tue, 12 Jul 2016 20:47:47 GMT
Accept-Ranges: bytes
Etag: "48f26a67edcd11:0"
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:38 GMT
Content-Length: 5584


--- Additional Info ---
Magic:  TrueType font data\012 raw G3 data, byte-padded
Size:   5584
Md5:    2b926bf9b8cb2a8c1fa27d5414e32e5d
Sha1:   2891df875eb596fef31cd982cbd3b6515f9b7999
Sha256: 41397fecbb1cb639932ae407a66ed810dd4c598fb3ae7986e6fc9785a038cc73
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; Hm_lpvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; sf-trckngckie=db113700-2024-447d-9adf-d9c6e41920cb

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.4


--- Additional Info ---
Magic:  TrueType font data\012 raw G3 data, byte-padded
Size:   18396
Md5:    4cd1b40b514b24dec04abb401f2b3bbc
Sha1:   ce0abea033f163f8d2b29c7b65919f60650098c9
Sha256: d72adb8b11a1b001496a61d027e82ddb5a7c88ff39efe4bcb37a6c6e0e68d67f
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 19487.6a8ys.0q2y.men
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; Hm_lpvt_c329f73b09dca56a7c75672c4a9efa77=1544575838; sf-trckngckie=db113700-2024-447d-9adf-d9c6e41920cb

                                         
                                         115.126.110.145
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: Tengine
Date: Wed, 12 Dec 2018 00:50:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.4


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    eb08b76c9f4ccc36c951186ea728a2a1
Sha1:   ec2bb9876c11f919f797cfe2f0851b1a1e54e2be
Sha256: dcd2eaf48e3d7ebb088e0fc27e35c1870da7f6bffd84e686bd5b392c9c7a82f4
                                        
                                            GET /css/fonts/2CB072_3_0.ttf HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.daytonsuperior.com/Css/DaytonFrontend.min.css?package=Bootstrap
Origin: http://19487.6a8ys.0q2y.men

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Cache-Control: max-age=2678400
Last-Modified: Tue, 12 Jul 2016 20:47:47 GMT
Accept-Ranges: bytes
Etag: "b7502a67edcd11:0"
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:38 GMT
Content-Length: 165896


--- Additional Info ---
                                        
                                            GET /css/fonts/2CB072_1_0.woff HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.daytonsuperior.com/Css/DaytonFrontend.min.css?package=Bootstrap
Origin: http://19487.6a8ys.0q2y.men

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Cache-Control: max-age=2678400
Last-Modified: Tue, 12 Jul 2016 20:47:47 GMT
Accept-Ranges: bytes
Etag: "3716fba57edcd11:0"
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:38 GMT
Content-Length: 80182


--- Additional Info ---
                                        
                                            GET /css/fonts/2CB072_2_0.woff HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.daytonsuperior.com/Css/DaytonFrontend.min.css?package=Bootstrap
Origin: http://19487.6a8ys.0q2y.men

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Cache-Control: max-age=2678400
Last-Modified: Tue, 12 Jul 2016 20:47:47 GMT
Accept-Ranges: bytes
Etag: "1d63fda57edcd11:0"
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:38 GMT
Content-Length: 64892


--- Additional Info ---
                                        
                                            GET /css/fonts/2CB072_0_0.ttf HTTP/1.1 
Host: www.daytonsuperior.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.daytonsuperior.com/Css/DaytonFrontend.min.css?package=Bootstrap
Origin: http://19487.6a8ys.0q2y.men

                                         
                                         12.107.187.230
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Cache-Control: max-age=2678400
Last-Modified: Tue, 12 Jul 2016 20:47:47 GMT
Accept-Ranges: bytes
Etag: "71e6f3a57edcd11:0"
Server: Microsoft-IIS/8.5
Date: Wed, 12 Dec 2018 00:50:38 GMT
Content-Length: 175080


--- Additional Info ---