Overview

URL https://lnkd.in/gBnBcRh
IP108.174.10.10
ASNAS14413 LinkedIn Corporation
Location United States
Report completed2017-07-17 21:53:34 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 108.174.10.10

Date UQ / IDS / BL URL IP
2017-11-12 16:17:51 +0100
0 - 0 - 0 linkedin.com/in/ohngemach?trk=nav_responsive_ (...) 108.174.10.10
2017-11-07 17:39:34 +0100
0 - 0 - 0 https://lnkd.in/erjiG6F 108.174.10.10
2017-11-06 19:03:15 +0100
0 - 0 - 0 linkedin.com 108.174.10.10
2017-10-30 20:16:36 +0100
0 - 0 - 0 https://lnkd.in/eawfj8g 108.174.10.10
2017-10-27 16:29:37 +0200
0 - 0 - 0 https://linkedin.com/company/watch-boo-2-a-ma (...) 108.174.10.10
2017-10-26 16:00:44 +0200
0 - 0 - 0 Linkedin.com/elevate 108.174.10.10
2017-10-19 11:51:01 +0200
0 - 0 - 0 linkedin.com 108.174.10.10
2017-10-18 22:01:47 +0200
0 - 0 - 0 medical_marijuana@linkedin.com 108.174.10.10
2017-10-18 21:59:53 +0200
0 - 0 - 0 6SUXjP@linkedin.com 108.174.10.10
2017-10-18 11:11:56 +0200
0 - 0 - 0 https://lnkd.in/eiujdpx 108.174.10.10

Last 10 reports on ASN: AS14413 LinkedIn Corporation

Date UQ / IDS / BL URL IP
2017-11-23 14:54:44 +0100
0 - 0 - 0 https://fr.linkedin.com/in/marina-tatangelo-6 (...) 185.63.144.5
2017-11-22 23:16:50 +0100
0 - 0 - 0 https://www.linkedin.com/in/craig-clark-2b425143 185.63.144.1
2017-11-22 17:39:01 +0100
0 - 0 - 0 www.linkedin.com/in/smithkelly 185.63.144.1
2017-11-22 07:38:14 +0100
0 - 0 - 0 https://www.linkedin.com/pulse/advertising-ag (...) 185.63.144.1
2017-11-20 21:04:46 +0100
0 - 0 - 0 https://www.linkedin.com/comm/me/search-appea (...) 185.63.144.1
2017-11-20 20:45:55 +0100
0 - 0 - 0 https://www.linkedin.com/comm/me/search-appea (...) 185.63.144.1
2017-11-17 16:47:16 +0100
0 - 0 - 0 https://www.linkedin.com/in/mark-maier-278594b5/ 185.63.144.1
2017-11-14 15:22:39 +0100
0 - 0 - 0 https://www.linkedin.com/groups/2457313 185.63.144.1
2017-11-12 16:17:51 +0100
0 - 0 - 0 linkedin.com/in/ohngemach?trk=nav_responsive_ (...) 108.174.10.10
2017-11-12 06:48:21 +0100
0 - 0 - 0 www.linkedin.com/in/omar-saad-39553b128 185.63.144.1

Last 10 reports on domain: .

Date UQ / IDS / BL URL IP
2017-11-07 17:39:34 +0100
0 - 0 - 0 https://lnkd.in/erjiG6F 108.174.10.10
2017-11-06 20:16:59 +0100
0 - 0 - 0 pd.lnkd.in/0g7q3xs 34.199.95.252
2017-11-01 19:35:39 +0100
0 - 0 - 0 pd.lnkd.in/53qrf75 34.199.95.252
2017-10-30 20:16:36 +0100
0 - 0 - 0 https://lnkd.in/eawfj8g 108.174.10.10
2017-10-18 14:35:17 +0200
0 - 0 - 0 pd.lnkd.in/zmyi6mk 34.225.36.61
2017-10-18 11:11:56 +0200
0 - 0 - 0 https://lnkd.in/eiujdpx 108.174.10.10
2017-10-04 12:40:57 +0200
0 - 0 - 0 pd.lnkd.in/vfrfk5z 34.225.36.61
2017-10-02 20:44:12 +0200
0 - 0 - 0 https://lnkd.in/eJwczUu 108.174.10.10
2017-10-02 20:15:29 +0200
0 - 0 - 0 https://lnkd.in/eJwczUu 108.174.10.10
2017-09-25 09:23:11 +0200
0 - 0 - 0 pd.lnkd.in/bkc76p8 34.225.36.61


JavaScript

Executed Scripts (59)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (94)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 19:52:59 GMT
Etag: "596cce9e-1d7"
Expires: Mon, 24 Jul 2017 07:52:59 GMT
Last-Modified: Mon, 17 Jul 2017 14:50:06 GMT
Server: ECS (arn/459D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0d24e4db81a2ca621531453a7d5d88f1
Sha1:   79937a450cef20aae7682b17f569359017fbd7af
Sha256: 725b2ef61c9135865533d4d3ed39c30997df4aa388636e615f921f27a82a4b4f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 19:52:59 GMT
Etag: "596cab89-1d7"
Expires: Mon, 24 Jul 2017 07:52:59 GMT
Last-Modified: Mon, 17 Jul 2017 12:20:25 GMT
Server: ECS (arn/459B)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c7462804230739b8a3a680d91e34c24c
Sha1:   f4679e803503aa3d1a7f978506050f1abfadce15
Sha256: 389740783fc67db52f5d00a847ace391fe5b8cb6b07d882fe20604b7af6b0b4c
                                        
                                            GET /gBnBcRh HTTP/1.1 
Host: lnkd.in
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         108.174.10.10
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:52:59 GMT
Content-Length: 178
Location: https://www.linkedin.com/slink?code=gBnBcRh
X-Li-Fabric: prod-lva1
Connection: keep-alive
X-Li-Pop: prod-edc2
X-LI-Proto: http/1.1
X-LI-UUID: ScJr2ik20hRA90DtmCsAAA==
Set-Cookie: lidc="b=VGST08:g=380:u=1:i=1500321179:t=1500407579:s=AQFQyhFvOgWUQwK1FNeMSU0emH4-Wtoa"; Expires=Tue, 18 Jul 2017 19:52:59 GMT; domain=.linkedin.com; Path=/


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 19:52:59 GMT
Etag: "596ced1c-1d7"
Expires: Mon, 24 Jul 2017 07:52:59 GMT
Last-Modified: Mon, 17 Jul 2017 17:00:12 GMT
Server: ECS (arn/459B)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    af4d858bcb97904c20fb1ebb0eaa4c31
Sha1:   bf857f496a0c971cfadc8836245f0a7339861366
Sha256: 1733bb0ef5f175e8a14f75e125ffe1beb0881f77a69aac3b9e368d68054c762d
                                        
                                            GET /slink?code=gBnBcRh HTTP/1.1 
Host: www.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         185.63.144.1
HTTP/1.1 301 Moved Permanently
                                        
Server: Apache-Coyote/1.1
Location: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Mon, 17 Jul 2017 19:52:59 GMT
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Li-Fabric: prod-ltx1
Set-Cookie: bcookie="v=2&10ded7fe-309c-4f9c-814e-8900bc9f97ad"; domain=.linkedin.com; Path=/; Expires=Thu, 18-Jul-2019 07:30:31 GMT bscookie="v=1&201707171952591e5b0746-55e8-4b53-801f-d16586407a88AQH_OZdg4uN66ltFS-zJrBGLFCxty1RN"; domain=.www.linkedin.com; Path=/; Secure; Expires=Thu, 18-Jul-2019 07:30:31 GMT; HttpOnly lidc="b=TGST08:g=402:u=1:i=1500321179:t=1500407579:s=AQHE3cqWIkyVKFKfjo1ORjpdZJYEcN8W"; Expires=Tue, 18 Jul 2017 19:52:59 GMT; domain=.linkedin.com; Path=/
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache, no-store
Transfer-Encoding: chunked
Connection: keep-alive
X-Li-Pop: prod-tln1
X-LI-Proto: http/1.1
X-LI-UUID: FAFh5yk20hTAprnNHysAAA==


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   20
Md5:    3970e82605c7d109bb348fc94e9eecc0
Sha1:   e03849ea786b9f7b28a35c17949e85a93eb1cff1
Sha256: f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         195.159.219.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "1EA7C88FC487CE016F3B9F72BD5BB03339108A55FB2E45BA7DFB1C738FC18C8E"
Last-Modified: Sat, 15 Jul 2017 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43153
Expires: Tue, 18 Jul 2017 07:52:13 GMT
Date: Mon, 17 Jul 2017 19:53:00 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    4cb8abd30f6011597be5d722ee7aca8a
Sha1:   a96952a44663ff065b1f36f686c4e0eaf1d4bd2c
Sha256: 1ea7c88fc487ce016f3b9f72bd5bb03339108a55fb2e45ba7dfb1c738fc18c8e
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         192.35.177.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Content-Transfer-Encoding: Binary
Last-Modified: Mon, 17 Jul 2017 10:11:28 GMT
Etag: "f6971aa64f011e6b3178697fdc8b8ba87b150126"
Expires: Tue, 18 Jul 2017 10:11:28 GMT
Cache-Control: max-age=43200,public,no-transform,must-revalidate
Content-Length: 1398
Connection: close


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    42043664950cd6fcb7d18c423a749b24
Sha1:   f6971aa64f011e6b3178697fdc8b8ba87b150126
Sha256: 16cc5058bf74e28f812924283f7931bc556aab61a90a03c37e513be378b204ee
                                        
                                            GET /exploiting-chrome-attacks-to-educate-staff/ HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 17 Jul 2017 19:53:00 GMT
Server: Apache
Link: <https://theantisocialengineer.com/wp-json/>; rel="https://api.w.org/", <https://wp.me/p5CKyU-qE>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17290
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17290
Md5:    a31101648e94539a1c87e253af336709
Sha1:   b8b972f78cd051394a6098dea1dceec4d8ac5cb5
Sha256: 8daa4980c4e50bbc35a2290868718a42027cb004065dd2803125869c3b61f286
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Thu, 08 Jun 2017 15:26:25 GMT
Etag: "2e45-5517479d8c94e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4299
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4299
Md5:    b5eda7f4f7632c2ee3cf23c72b69af26
Sha1:   aefebf84c998202222a45fd89f2c48742ebd1825
Sha256: 4008c5d12e0bbe2b0d35bffb4f41323fa9e1abecf5ba6a343d4c66d538cde043
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Wed, 05 Jul 2017 00:42:38 GMT
Etag: "c4bd-5538746de950e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8679
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8679
Md5:    fab859c08cc3205f371705a9987341e1
Sha1:   3d9327490bc2d36133ccc3737157ec8b96b1fecf
Sha256: d888268b8e7473a51734d9441355e9c55feffa70b78ee25dc508870ebeec1f90
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Expires: Fri, 21 Jul 2017 19:53:02 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    e3a50e6d79fb63c4bc7d26b28e263c54
Sha1:   0113d82fd188c2d2e80a8169d5ba2d3a06f1fb98
Sha256: f2874059a51916c03cf74e54a31c9d7fe6192b1924b97105b99a05cf02f1eae0
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=309105, public, no-transform, must-revalidate
Last-Modified: Fri, 14 Jul 2017 09:41:26 GMT
Expires: Fri, 21 Jul 2017 09:41:26 GMT
Date: Mon, 17 Jul 2017 19:53:02 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    feec02a24095e65e818da9ac640e9e31
Sha1:   e36d560928fdf1e3add590a2b0752d028f70b75f
Sha256: ceaf2a49bd504b714de50c1b7d29ba6a7065705c26778bf0078a167f1a48d737
                                        
                                            GET /wp-content/plugins/wp-awesome-faq/jquery-ui.css?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Thu, 02 Mar 2017 11:16:07 GMT
Etag: "823b-549bd8e40ee8e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6315
Md5:    db4398e3542738e20562d639a92e461f
Sha1:   e3fa51e9257ed6f45eee97025d5bab9a8953efa5
Sha256: 886a598cb46594c24035a3abe813391f1e7bfdede567d8f6f3a823c766519a5d
                                        
                                            GET /wp-content/themes/arcade/library/css/font-awesome.css?ver=4.7.0 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Fri, 16 Jun 2017 19:44:17 GMT
Etag: "9226-5521902c15cae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7439
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7439
Md5:    57a8ee32de25312ab303210ef3c556a9
Sha1:   388f783ee7c84801442370bf8d3812213a1198f5
Sha256: 8bdd62fda01c7b19a4d2ee31cfb4d2fc6123a958cb23bf902c9fead7fc6a9c0d
                                        
                                            GET /wp-content/plugins/menu-icons/includes/library/icon-picker/css/types/font-awesome.min.css?ver=4.6.1 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Sun, 11 Dec 2016 14:09:55 GMT
Etag: "6fcc-543628aa516dc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6599
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6599
Md5:    3ba11b83552158bd2636267fd5b123e8
Sha1:   824815e0ea1f5d05e91cd350289ada9052a879a0
Sha256: e16ed8e0fdc2e92c394961fd393f8c23c6d148537f525bb05019fddd5c850d26
                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2016 23:27:39 GMT
Etag: "b51c-530661fad5b3a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 28612
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   28612
Md5:    c3deda3e7fece967f2ccbd284ea13582
Sha1:   97463a1c50f1c8975116d5498806f24791b23fef
Sha256: a7e9b2f080d9b676910cd9186c7f2ffd4066d61d0380a344c935fa349982aa10
                                        
                                            GET /wp-content/plugins/menu-icons/includes/library/icon-picker/css/types/genericons.min.css?ver=3.4 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Sun, 11 Dec 2016 14:09:55 GMT
Etag: "6836-543628aa516dc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16083
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   16083
Md5:    96f047f2d846f2ed046432a3db5efd25
Sha1:   8ffc1540379ba3303d4175a33bdd368f4b66c014
Sha256: a8c14a2183c5ae62eacf0eb3dd49b516826624c19059e6b6654ecb383abc2484
                                        
                                            GET /wp-content/plugins/menu-icons/css/extra.min.css?ver=0.10.2 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Sun, 11 Dec 2016 14:09:55 GMT
Etag: "32f-543628aa5361c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 351
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   351
Md5:    e4cdb51d915fd330b80c5bd5fa156c7e
Sha1:   47a13ae4070e6c9e8727a65ea4fa0563d6b3d372
Sha256: afb8a69497a027d927596f30d8210b014e3295c86c556c6164d309251dbbc476
                                        
                                            GET /wp-content/plugins/jetpack/_inc/social-logos/social-logos.min.css?ver=1 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:32 GMT
Etag: "6867-553ba9639472e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19000
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   19000
Md5:    cbddb0152679f106e9a9d091c313cffb
Sha1:   39e5b029eddd56cb00961241095c0c6a3481594f
Sha256: 570ec5773a1b02153d1f1f75685ac28812e949849c5538b2524a587f7739d25e
                                        
                                            GET /css?family=Megrim%7COpen+Sans%3A400%2C400italic%2C700%2C700italic%7CRaleway&ver=4.8 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         216.58.209.106
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 17 Jul 2017 19:53:02 GMT
Date: Mon, 17 Jul 2017 19:53:02 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   471
Md5:    1ef885ae9c483a28faeb7b6d65025a3e
Sha1:   701c6cf9cb9637e18c34f37d93027de51c40f44f
Sha256: 09c6e83acad44e7ba8fc96f746bb13adc9d855d29734f5ab0a5016cff0e92c44
                                        
                                            GET /wp-content/plugins/jetpack/css/jetpack.css?ver=5.1 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:33 GMT
Etag: "1025f-553ba963ea62e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11717
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   11717
Md5:    2b0323856cca4e71dc3deefc648cf099
Sha1:   297b64f7d94aa6330793a2c89dae4024e1d392a8
Sha256: 8c78a65cb904062a70b9b3c4cea07bd779c0c9ccdb2f38f945a2d1183b3ab95f
                                        
                                            GET /wp-content/plugins/about-me/stylesheet.css HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Fri, 16 Jan 2015 20:17:23 GMT
Etag: "6e-50ccaa91dd757-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 107
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   107
Md5:    268f0e5f0d14d2a72691f865597ac4fd
Sha1:   7a1ecb9ec17349d4c1a6d8e921ae034f0111b697
Sha256: e39a0c0f4840ae5501bed2593eaba654d4d6d68871c823da2f18b22779811416
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2016 19:30:31 GMT
Etag: "2748-535cedaa9302a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4014
Md5:    a6c81e2f02bd04160d2de88c4e8f3559
Sha1:   e3f3c91427d785820ca97dabe738f01faf041f36
Sha256: b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
                                        
                                            GET /wp-content/plugins/jetpack/modules/related-posts/related-posts.js?ver=20150408 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:33 GMT
Etag: "1fdd-553ba963b1bee-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2216
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2216
Md5:    006e3cd6abfb882a3dda57cbf04f40c1
Sha1:   fe27df8bc00b0b6dde15dc7be2dca2774482fd93
Sha256: 8efe8bad9ca32e6f88c031d1bbae5027ed0d980d91bd7c9e693b949c8894359b
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2016 19:30:31 GMT
Etag: "17ba0-535cedaa9302a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33766
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33766
Md5:    d417f4d673009b01654915bbf1f4f872
Sha1:   f432ea8e89e5f4ef50e506019899e539a068f415
Sha256: 24560d81ded58e8befabf32ff51f5b6ae6f21eead0a5f87c255e3b47b988d1cc
                                        
                                            GET /wp-content/themes/arcade/style.css?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Fri, 16 Jun 2017 19:44:17 GMT
Etag: "24a7d-5521902c18b8e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23848
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   23848
Md5:    3c28f352b79e31b71d906df8e121e64f
Sha1:   9dd6d68df50cbb7c9717cde789fb2194045b0a44
Sha256: 85d8979d70eb1053d1f901f3e282f5b6d9dc52a12bea894db93b43a7e8be869b
                                        
                                            GET /wp-content/uploads/2015/01/IMG_4195-2.jpg HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2015 02:01:14 GMT
Etag: "779a-52736a17d8b19"
Accept-Ranges: bytes
Content-Length: 30618
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   30618
Md5:    42e2b0629a20fcbeb734cafe443ba781
Sha1:   32039d0c2bf3a317a2d69643cea16020dc184cb4
Sha256: 5ad5d75a220190ea0650fc0e9b604cb823c8503af968f9b708f1de0a846c4363
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         72.167.239.239
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 17 Jul 2017 19:54:22 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=122054, public, no-transform, must-revalidate
Last-Modified: Mon, 17 Jul 2017 19:35:40 GMT
Expires: Wed, 19 Jul 2017 07:35:40 GMT
Etag: "963c0a9291e100af0c431c18f57cb5868d82b29b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1776
Connection: close


--- Additional Info ---
Magic:  data
Size:   1776
Md5:    00f752980327e0834cd66c7185be3f38
Sha1:   963c0a9291e100af0c431c18f57cb5868d82b29b
Sha256: e869542e84f9a5039734a217d85ac99512012e67aae4d47846b1c0ac7ee35891
                                        
                                            GET /wp-content/uploads/2017/02/White-Logo%C2%AE-HalfSize.png HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 17 Jul 2017 19:53:02 GMT
Server: Apache
Last-Modified: Fri, 17 Feb 2017 14:24:24 GMT
Etag: "10998-548baaba3a98e"
Accept-Ranges: bytes
Content-Length: 67992
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 620 x 273, 8-bit/color RGBA, non-interlaced
Size:   67992
Md5:    d3246228c90700358e5f4f54fa3bd721
Sha1:   bead678bb07df824e9af48097e96b5f109d88955
Sha256: f780c6c792422fd02ebf515c8e12d217eefa996a8e513aca59a10dea3a9058fb
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 17 Jul 2017 19:53:03 GMT
Expires: Fri, 21 Jul 2017 19:53:03 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    810164c27cad0bbcd4d9f981eeb9913d
Sha1:   0f82934e162815a7daa43b6a4ab4e01c35e6cc75
Sha256: acb9eaf252147d41045b966bcc8f6d4285dcf18bf2f91f16afa396728ea151c8
                                        
                                            GET /wp-content/plugins/jetpack/modules/photon/photon.js?ver=20130122 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:03 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:33 GMT
Etag: "562-553ba963b6a0e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 667
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   667
Md5:    c242cf8cb6043e4330d7d96c3cb664d6
Sha1:   ddc8eab2ad125afbdc32de54e3808c108bd1d612
Sha256: 9366f73b976482a92e57ec42fc9fd7c0af8a685e597e963478a6c01242f2f1fb
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2015/07/square-black-55b36382v1_site_icon.png?fit=192%2C192&ssl=1 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:03 GMT
Content-Length: 21184
Connection: keep-alive
Last-Modified: Thu, 13 Jul 2017 12:21:25 GMT
Expires: Sun, 14 Jul 2019 00:21:25 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2015/07/square-black-55b36382v1_site_icon.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "886d398f4659a890"
X-Bytes-Saved: 13559
Vary: Accept
X-nc: HIT arn 21


--- Additional Info ---
Magic:  PNG image, 192 x 192, 8-bit colormap, non-interlaced
Size:   21184
Md5:    54a47606e0ea616b7f6a8914d06f6ea8
Sha1:   575df9fcebb63199b47993cd575870d6ee4078cb
Sha256: c28ba01b823471f612aadac56180f952aa3d72aeff57716d85a46b586b1c8668
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:03 GMT
Server: Apache
Last-Modified: Wed, 05 Jul 2017 00:42:38 GMT
Etag: "c02-5538746dde92e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1487
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1487
Md5:    d9adcb83a6fe961d6a0af652dd950cf3
Sha1:   cf23a24562f4119a18e67cb4ff7b1617e466c225
Sha256: 5c83cfcbc57fced25f34b1de03258b124446522f2762e3702eef72ff4c9be0a5
                                        
                                            GET /s/raleway/v11/IczWvq5y_Cwwv_rBjOtT0w.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Megrim%7COpen+Sans%3A400%2C400italic%2C700%2C700italic%7CRaleway&ver=4.8
Origin: https://theantisocialengineer.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 24788
Date: Tue, 09 May 2017 10:13:00 GMT
Expires: Wed, 09 May 2018 10:13:00 GMT
Last-Modified: Thu, 19 May 2016 23:52:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 5996403
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  data
Size:   24788
Md5:    290ee38e3393e0064027cf7cfd8007cd
Sha1:   b856077dcedd4153172925439edd0bd32e999218
Sha256: de815057e0d9ef161312a40685e68a19678b0998965c28adb4e7d93bc671bc13
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:03 GMT
Server: Apache
Last-Modified: Wed, 05 Jul 2017 00:42:38 GMT
Etag: "2f18-5538746dde92e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4328
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4328
Md5:    cdf073603035026a4d55232f0dab2fbd
Sha1:   758f0bbceda5c83e7549e1834313c5e10609fe17
Sha256: daefd0d60e0781754a5ddb1b7601b1d38f53cbeb91120eeeaa7841bbc912cf46
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 19:53:03 GMT
Etag: "596cdcbd-1d7"
Expires: Mon, 24 Jul 2017 07:53:03 GMT
Last-Modified: Mon, 17 Jul 2017 15:50:21 GMT
Server: ECS (arn/45E2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    4c3544ecadaed75d836b9053dd5a5474
Sha1:   53207f4cc1d3d9b6d2b360799db2d91ae6212f3b
Sha256: bcee37ea4499fd5b7a94fedf0c31242becdaadd5642840366ebc86ad2c14f401
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:03 GMT
Server: Apache
Last-Modified: Wed, 05 Jul 2017 00:42:38 GMT
Etag: "5c0-5538746dde92e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 697
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   697
Md5:    c70c4639aa4137958f14f0e737fca12a
Sha1:   5cd2f746a4d799e5748e1fff720706bd9e092689
Sha256: 5474c08cf4933aa755055e15e16fbc675adf04975b9265b5f8bf878ca9bcc4b8
                                        
                                            GET /e-201729.js HTTP/1.1 
Host: stats.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"572909a0-16a6"
Content-Encoding: gzip
Expires: Mon, 16 Jul 2018 03:56:01 GMT
Cache-Control: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1459
Md5:    b2ce0b0ee5b0cb5957ce113e2a18817e
Sha1:   d7c1ff57e0466b8e08e39c8115a03c6bd455b22d
Sha256: 1553751aaca0e4e44c3dbde73abf5120e52ddc3209972fc5aa27861528d936cd
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2017/08/Screenshot-2017-07-16-at-10.43.27-AM.png?resize=750%2C308&ssl=1 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:03 GMT
Content-Length: 99439
Connection: keep-alive
Last-Modified: Sun, 16 Jul 2017 11:16:52 GMT
Expires: Tue, 16 Jul 2019 23:16:52 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2017/08/Screenshot-2017-07-16-at-10.43.27-AM.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "fae3d4e698b42466"
X-Bytes-Saved: 36
Vary: Accept
X-nc: MISS arn 17


--- Additional Info ---
Magic:  PNG image, 750 x 308, 8-bit/color RGB, non-interlaced
Size:   99439
Md5:    5c1863bbdf37681021098b8271c66ca3
Sha1:   9fea9b6913f7aa9e0e0e49e9d525d331294bca09
Sha256: 7f023772a6e3d0a4438536fbd280d4cabc4f11f28d57e7af34c9751a81646eab
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:03 GMT
Server: Apache
Last-Modified: Wed, 05 Jul 2017 00:42:38 GMT
Etag: "4542-5538746ddd98e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3505
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3505
Md5:    2dd50ec18190b577259ece71ec1662ca
Sha1:   f70c9eb776459aa31d7675939a1053b4f66952f8
Sha256: f148120ed56c27fc4d704e24f803d042a470d5ab5d3c28de370e70096a786a06
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 108
Content-Type: application/ocsp-request

                                         
                                         72.167.239.239
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 17 Jul 2017 19:52:49 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=121046, public, no-transform, must-revalidate
Last-Modified: Mon, 17 Jul 2017 19:16:26 GMT
Expires: Wed, 19 Jul 2017 07:16:26 GMT
Etag: "c08d11d3925950a2356f42ea6de232b393446da1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1777
Connection: close


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    f7eccd284d7d4a39ae61985de863ebec
Sha1:   c08d11d3925950a2356f42ea6de232b393446da1
Sha256: 94b867d77bb649068da09e1b90c1024d834606826fb7c4b68ffbc553eab62e89
                                        
                                            GET /wp-content/plugins/jetpack/modules/wpgroho.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:03 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:33 GMT
Etag: "3f7-553ba963e198e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 489
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   489
Md5:    e7310e3fcdaade0614b48b2154b4599b
Sha1:   6286153658b9dc345836e4b06f5f1993370acea6
Sha256: f0ecedd6a50945a0295fc3c92db1770a58ec16df95cc120eac718e684f200679
                                        
                                            GET /wp-content/themes/arcade/library/js/bootstrap.min.js?ver=3.0.3 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 16 Jun 2017 19:44:17 GMT
Etag: "5e42-5521902c13d6e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6229
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6229
Md5:    b43457f5427dc682610e18a7cc4743fb
Sha1:   fc0f86a928ef36a962655ef5de15b777ca6f516f
Sha256: ee65e770742578f59be37083c780d8229d4848635937c69f768c90899940fdf7
                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         104.16.19.35
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 26 Jun 2017 18:23:29 GMT
Etag: "560f3-552e10c2dca40"
Vary: Accept-Encoding
Content-Encoding: gzip
Timing-Allow-Origin: *
Surrogate-Key: client_dist
Cache-Control: public, no-check, max-age=600
CF-Cache-Status: HIT
X-Host: s7.addthis.com
X-Distribution: 99
Server: cloudflare-nginx
CF-RAY: 37ffbec7be8b86e5-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   112568
Md5:    be74bb4449fdf6acf086c363fdaad7f0
Sha1:   4ca9dadd7de5c0afe20ad2723d9674d37eab4763
Sha256: c35437d72486bb6b9900a2fcfd28c2b0abe926c3337120ecfee530360275499a
                                        
                                            GET /wp-content/themes/arcade/library/js/fillsize.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 16 Jun 2017 19:44:17 GMT
Etag: "8df-5521902c15cae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 996
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   996
Md5:    883e3cc4b4c3e9a6b1ae57bb1ffcf5f0
Sha1:   47af233b5c2b92f032603ef63171093c27c60e81
Sha256: 63cecc7b738bbd8be8198772d579d75c8b8cbcdd7b739cc82f96fbe455653f51
                                        
                                            GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Wed, 17 Aug 2016 03:26:29 GMT
Etag: "2188-53a3c07f381d4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2707
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2707
Md5:    487c49117b56742c222364c662b35650
Sha1:   66184692354c96d0bfd22dd0291d235b5b5ca89c
Sha256: b88beebf89515edfc9c2e509eb3c902dad05205d102566ed4a543b9cecf81849
                                        
                                            GET /js/gprofiles.js?ver=2017Julaa HTTP/1.1 
Host: secure.gravatar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.73.2
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 17 Sep 2015 14:13:14 GMT
Etag: W/"55faca7a-50aa"
Content-Encoding: gzip
Expires: Mon, 24 Jul 2017 19:53:04 GMT
Cache-Control: max-age=604800


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6790
Md5:    ff36b4357f0ea3917228ae97b5e6235e
Sha1:   74ccb81763373e358dc62e3289aaf53c11c2fdcc
Sha256: b1ad3f05ad77fb3147e88ac46f9af538ab7a79e072fd3b53a4c6017656980815
                                        
                                            GET /wp-content/themes/arcade/library/js/jquery.arctext.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 16 Jun 2017 19:44:17 GMT
Etag: "28b0-5521902c15cae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3510
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3510
Md5:    937df2701a6d3fe0659ffedbf96847a5
Sha1:   039e848515034e607f6649c521e5ea4732eca1cb
Sha256: d04c19e57c2949db79a6dfaa773071ec920ea1b136b78704fa70acb065612147
                                        
                                            GET /wp-content/themes/arcade/library/js/theme.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 16 Jun 2017 19:44:17 GMT
Etag: "b9f-5521902c15cae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1136
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1136
Md5:    a762b77107cb9bce5112035f219a7bb8
Sha1:   70d08fb8bd26bfce1e7825d75f04eab23e88eaf6
Sha256: 9cf7f54b92671fa0d77fd2b46aeac9571d7863198086639be6c1640a6360ba3a
                                        
                                            GET /wp-content/plugins/jetpack/_inc/twitter-timeline.js?ver=4.0.0 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:32 GMT
Etag: "157-553ba9639760e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 260
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   260
Md5:    63cdc5aedadbc565eeb7e53f076c259a
Sha1:   16a7714b0441ca4eb260d4153d1bae0481d928e2
Sha256: dc2cb5e406eec1fd4bc0dadc63f3e74cbd90257475d6f8b20ce200c036d5ce9b
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.8 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Sun, 11 Dec 2016 14:10:58 GMT
Etag: "576-543628e6c11bc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 751
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   751
Md5:    7542039ce963ffd18ad4fb7be13bd2be
Sha1:   8385e433e8e65739fc27b6bd16b1a7ae71b11084
Sha256: a70bca1336a4ac7592ce631cbb22c9ebb01d60461d221ac7a46f91a4ccfd1255
                                        
                                            GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Wed, 17 Aug 2016 03:26:29 GMT
Etag: "1afc-53a3c07f381d4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2599
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2599
Md5:    24ee35ca0d4dd9a145c9410488b1c437
Sha1:   982c556c82123a94f78e806a5e468c94c711193e
Sha256: ca41e151a9594fb5ee401818ac96cc6db69b353e2940478f22ab48ce78a5d3c9
                                        
                                            GET /wp-content/plugins/jetpack/_inc/spin.js?ver=1.3 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:32 GMT
Etag: "27d5-553ba9639184e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3808
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3808
Md5:    fbffaa6dcda4e19a7ac5cf067191b4c3
Sha1:   25333714fe3bac0bd608fbd6e4921e94d4dfd07f
Sha256: fb31d5b515aa7e48c7c5a70a067d6dca25a050c5390e936055b5e18fa146bf21
                                        
                                            GET /wp-content/plugins/jetpack/_inc/jquery.spin.js?ver=1.3 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:32 GMT
Etag: "d02-553ba9639472e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1156
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1156
Md5:    ea8e88c6a70d40551fed82a9a026ae32
Sha1:   70b78afd236ad9ef06459c9c9f58f414c40fd6e3
Sha256: d3e5ac1299380977ea0a9e0affce0a689a7633ea8a92d2b4bfa3c583fa8fb3d4
                                        
                                            GET /wp-content/plugins/jetpack/modules/sharedaddy/sharing.js?ver=5.1 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:33 GMT
Etag: "3c29-553ba963d8cee-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4134
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4134
Md5:    5e6c9d0ddcdf33368ea6d5e3524923c8
Sha1:   cee0b88d56c054d2bc8473c8d45fb063146c876d
Sha256: 4f750d1011a6641bde9e94ee3834753273e06e063ad5c3bad985f53c3e963633
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 19:53:04 GMT
Etag: "596cca0b-1d7"
Expires: Mon, 24 Jul 2017 07:53:04 GMT
Last-Modified: Mon, 17 Jul 2017 14:30:35 GMT
Server: ECS (arn/459B)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    38ab36126cee6bfb00d454e136da04d1
Sha1:   3edb2d3160a2d9b5826efe32158d68261f7ef2a7
Sha256: 0f136c1b60857967cd60144987fd56a914d1e9f0811bccf25d06e45e566eb3a2
                                        
                                            GET /wp-content/plugins/jetpack/_inc/social-logos/social-logos.ttf?51b607ee5b5cb2a0e4517176475a424c HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/wp-content/plugins/jetpack/_inc/social-logos/social-logos.min.css?ver=1

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:32 GMT
Etag: "2640-553ba9639472e"
Accept-Ranges: bytes
Content-Length: 9792
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  TrueType font data\012 raw G3 data, byte-padded
Size:   9792
Md5:    68276ca1a64ff1465a5fc16221bb371a
Sha1:   8f9a4df2ed2e19419d568a7af2018d179972fa56
Sha256: b8f106f79a100d07f928df53051abb29d7d31b913a954add7dd2f0a08ad7a389
                                        
                                            GET /wp-content/plugins/jetpack/modules/carousel/jetpack-carousel.js?ver=20170209 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:04 GMT
Server: Apache
Last-Modified: Fri, 07 Jul 2017 13:55:33 GMT
Etag: "d0c6-553ba963b2b8e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14368
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14368
Md5:    de74408096d7e8acbfd073e971708ecc
Sha1:   c12dfa18b877d10e590cfd3e2d02a38d44d446fc
Sha256: 04106b5b14b6676f971698b9136fd2e4a819c155e82bf2dcbc8a6a21e51375de
                                        
                                            GET /wp-content/js/devicepx-jetpack.js?ver=201729 HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.77.32
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5841a56f-52b6"
Content-Encoding: gzip
Expires: Mon, 16 Jul 2018 11:05:44 GMT
Cache-Control: max-age=31536000
X-ac: 4.arn _dca
X-nc: HIT arn 32


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3163
Md5:    844b0e2ae8eba4159dd5edd8efbde50c
Sha1:   757861da25bea58b1bc03203f65ae93673cfc065
Sha256: ef84d445c23339e2c3742857d7e020c89d639f1ddc434b6f6a585ac9907bbb92
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2017/08/Screenshot-2017-07-16-at-10.58.25-AM.png?resize=614%2C116&ssl=1 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:04 GMT
Content-Length: 6735
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 19:53:04 GMT
Expires: Thu, 18 Jul 2019 07:53:04 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2017/08/Screenshot-2017-07-16-at-10.58.25-AM.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "a3a657b1b0fc3d3e"
X-Bytes-Saved: 7298
Vary: Accept
X-nc: MISS arn 17


--- Additional Info ---
Magic:  PNG image, 614 x 116, 8-bit colormap, non-interlaced
Size:   6735
Md5:    97e79cbb926cbe15eb8496a4f5650c45
Sha1:   fa276e2a2d1019f5201f1458af3f5c0e019d110a
Sha256: 015fdbb9de2bab2daadb709860d5bdb4287eb00c41912c65fe9a63aff3c50747
                                        
                                            GET /in.js HTTP/1.1 
Host: platform.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/
Cookie: bcookie="v=2&10ded7fe-309c-4f9c-814e-8900bc9f97ad"; lidc="b=TGST08:g=402:u=1:i=1500321179:t=1500407579:s=AQHE3cqWIkyVKFKfjo1ORjpdZJYEcN8W"

                                         
                                         2.19.123.243
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Server: Apache-Coyote/1.1
P3P: CP="CAO CUR ADM DEV PSA PSD OUR"
Content-Encoding: gzip
Vary: Accept-Encoding
Expires: Tue, 18 Jul 2017 05:11:32 GMT
Cache-Control: max-age=86400
Content-Length: 1759
X-Li-Fabric: prod-ltx1
X-Li-Pop: prod-tln1
X-LI-Proto: http/1.1
X-LI-UUID: D89vHRAG0hTA9qUg/SoAAA==
Date: Mon, 17 Jul 2017 19:53:05 GMT
Connection: keep-alive
X-CDN: AKAM


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   1759
Md5:    2fa365e862b5c065dfe70d278c39e0b4
Sha1:   1b70a7782fd8b2ac1a9cd718414a80336073e29d
Sha256: 362320710c96c124e02fb181b36dc7d0aa7430336fc10840dd5a24ac19909b67
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:05 GMT
Server: Apache
Last-Modified: Wed, 17 Aug 2016 03:26:29 GMT
Etag: "fa0-53a3c07f381d4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1821
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1821
Md5:    4664a831e60a807962a0341122693831
Sha1:   0c582fa939884d543af617c2bad977157f8c319b
Sha256: f1320f1c4d030cd930d721d93ea112dc789295f06afc8a3381c922a92b077f0d
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2015/07/square-black-55b36382v1_site_icon.png?fit=192%2C192&ssl=1 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
If-None-Match: "886d398f4659a890"

                                         
                                         192.0.77.2
HTTP/1.1 304 Not Modified
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:05 GMT
Connection: keep-alive
Last-Modified: Thu, 13 Jul 2017 12:21:25 GMT
Expires: Sun, 14 Jul 2019 00:21:25 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2015/07/square-black-55b36382v1_site_icon.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "886d398f4659a890"
X-Bytes-Saved: 13559
Vary: Accept
X-nc: HIT arn 21


--- Additional Info ---
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2015/07/square-black-55b36382v1_site_icon.png?fit=32%2C32&ssl=1 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:05 GMT
Content-Length: 1428
Connection: keep-alive
Last-Modified: Mon, 10 Jul 2017 09:52:32 GMT
Expires: Wed, 10 Jul 2019 21:52:32 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2015/07/square-black-55b36382v1_site_icon.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "fb6ed1cc252f843c"
X-Bytes-Saved: 48
Vary: Accept
X-nc: HIT arn 21


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit colormap, non-interlaced
Size:   1428
Md5:    944906eeb6c7a7d651ef9420c38bb93d
Sha1:   fae9b4b233300cefbc2d7ace9f1cba5acab790e6
Sha256: 15e699ef5a2294cfcb8c5212ded571bd31051b5caea679458d1a86730485f79d
                                        
                                            GET /wp-content/plugins/jetpack/css/%22https://fonts.googleapis.com/css?family=Open+Sans%22 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/wp-content/plugins/jetpack/css/jetpack.css?ver=5.1

                                         
                                         178.62.24.161
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 17 Jul 2017 19:53:03 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: https://theantisocialengineer.com/wp-content/plugins/jetpack/css/%22https:/fonts.googleapis.com/css?family=Open+Sans%22
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 19:53:05 GMT
Etag: "596ca47e-1d7"
Expires: Mon, 24 Jul 2017 07:53:05 GMT
Last-Modified: Mon, 17 Jul 2017 11:50:22 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e63c24d05222d11bbfa06a55b3a01ef6
Sha1:   2bbf246baa231f08a4ff57a0619b765eb3f2b59a
Sha256: ad90e70c146df15cc3a877fc9daa78911fe07e08736e45698aa503f0d9b17431
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 19:53:05 GMT
Etag: "596ce888-1d7"
Expires: Mon, 24 Jul 2017 07:53:05 GMT
Last-Modified: Mon, 17 Jul 2017 16:40:40 GMT
Server: ECS (arn/459D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c25f663b669abbcb70d3fabb513d0dab
Sha1:   fdc7220bc1f895cfe5e42561dbcef45630737b65
Sha256: 6f187e378011a524b3847a1ef550e61c84504b864352a52ea950909094e034a4
                                        
                                            GET /s/opensans/v14/k3k702ZOKiLJc3WVjuplzHhCUOGz7vYGh680lGh-uXM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Megrim%7COpen+Sans%3A400%2C400italic%2C700%2C700italic%7CRaleway&ver=4.8
Origin: https://theantisocialengineer.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18408
Date: Wed, 14 Jun 2017 16:48:30 GMT
Expires: Thu, 14 Jun 2018 16:48:30 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:23 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2862275
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  data
Size:   18408
Md5:    15aa9eb56fc3628ba270a5e1edf45284
Sha1:   b0cdb11242b86872aaa6e53ef315d571f9cdd0af
Sha256: 60c1bc05d0e5f1a20b9b92e4186534932cfb9c8d9b9a897a6f56eb155d823c77
                                        
                                            GET /s/opensans/v14/xjAJXh38I15wypJXxuGMBobN6UDyHWBl620a-IRfuBk.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Megrim%7COpen+Sans%3A400%2C400italic%2C700%2C700italic%7CRaleway&ver=4.8
Origin: https://theantisocialengineer.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17004
Date: Wed, 14 Jun 2017 16:48:30 GMT
Expires: Thu, 14 Jun 2018 16:48:30 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:04 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2862275
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  data
Size:   17004
Md5:    26081a90cd53f71b68d1c4aa2ac41320
Sha1:   211d871fd80fec391ddff9f3d57daa25481d3f3d
Sha256: 0359909242f056be46e1530f53793e018951efcead18fc035176af0a54edbf53
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 17 Jul 2017 19:53:06 GMT
Expires: Fri, 21 Jul 2017 19:53:06 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    b2dfe0d7b60a46e53e06726eff5d032a
Sha1:   01d63613befeb0eff730161ac2488b62d9e3ae51
Sha256: 80988c09d05fb8e7af3bff9d33c74182b433068a9799c4903c31b28b50de4224
                                        
                                            GET /s/opensans/v14/PRmiXeptR36kaC0GEAetxjqR_3kx9_hJXbbyU8S6IN0.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Megrim%7COpen+Sans%3A400%2C400italic%2C700%2C700italic%7CRaleway&ver=4.8
Origin: https://theantisocialengineer.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17008
Date: Wed, 14 Jun 2017 16:48:30 GMT
Expires: Thu, 14 Jun 2018 16:48:30 GMT
Last-Modified: Wed, 14 Jun 2017 16:45:39 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2862275
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  data
Size:   17008
Md5:    a97a3aae80356b0497b7d24aa9bdfa27
Sha1:   605980616a66307a64e9c9bfb7f74a83bf09c547
Sha256: 557020dc10b288eed5b50b8e8b6602405aca4d27393c9378f754794eaf68c84d
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2017/07/Screenshot-2017-07-16-at-12.28.19-PM.png?resize=750%2C301&ssl=1 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:04 GMT
Content-Length: 86956
Connection: keep-alive
Last-Modified: Sun, 16 Jul 2017 14:29:00 GMT
Expires: Wed, 17 Jul 2019 02:29:00 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2017/07/Screenshot-2017-07-16-at-12.28.19-PM.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "da1a99bd4aad4c3f"
X-Bytes-Saved: 24
Vary: Accept
X-nc: MISS arn 16


--- Additional Info ---
Magic:  PNG image, 750 x 301, 8-bit/color RGB, non-interlaced
Size:   86956
Md5:    0eb6d18061b5fb279f2dd52c7422f51c
Sha1:   85b40a1ddc12fc79ac6851379d922096ff2e7710
Sha256: a6bde3f0a22ad89f8563078b770b3f9f541385f4946466efeb2eb5325922e24c
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2017/05/CCS-Logo.png?fit=500%2C206&ssl=1 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:06 GMT
Content-Length: 10633
Connection: keep-alive
Last-Modified: Fri, 14 Jul 2017 21:52:06 GMT
Expires: Mon, 15 Jul 2019 09:52:06 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2017/05/CCS-Logo.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "0f5543a990142bf9"
X-Bytes-Saved: 2457
Vary: Accept
X-nc: HIT arn 17


--- Additional Info ---
Magic:  PNG image, 500 x 206, 8-bit colormap, non-interlaced
Size:   10633
Md5:    d0adf2237e77ee1febe8b9f270402671
Sha1:   c62d1aee652c0ebcb9e79a8598ab5be34f04ddd0
Sha256: d6533bc3aab965f4833fcc638061760727cfc1ada0c7c36f5114672a4ee9d39e
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Mon, 17 Jul 2017 19:31:28 GMT
Expires: Mon, 17 Jul 2017 21:31:28 GMT
Last-Modified: Tue, 06 Jun 2017 00:25:39 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 12343
Cache-Control: public, max-age=7200
Age: 1298
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   12343
Md5:    3b6fd0342f2d611de1a19a9825be41c8
Sha1:   509935ecd4ab357ff19f57a8e94b4eb0ddc9d61b
Sha256: fa8b4948c750c32d20997c3b6901ea0cd507ae2e444447ad619ac461387f784c
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2015/01/icon_Download_pdf.png?resize=26%2C26&ssl=1 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:04 GMT
Content-Length: 1451
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 14:04:04 GMT
Expires: Thu, 18 Jul 2019 02:04:04 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2015/01/icon_Download_pdf.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "1760c89573327ba9"
Vary: Accept
X-nc: MISS arn 16


--- Additional Info ---
Magic:  PNG image, 26 x 26, 8-bit colormap, non-interlaced
Size:   1451
Md5:    fa47ff706f3c1bbe11ab40cc99df4932
Sha1:   3ae2f0c3c20042e63d39d22845f1bbd833c24f5a
Sha256: 5608e40d4a644307ca799d8dfc938485ab96ad75cb9f6c998d0d55b855a40cda
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2017/02/White-Logo%C2%AE-HalfSize.png?fit=620%2C273&ssl=1 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:04 GMT
Content-Length: 26366
Connection: keep-alive
Last-Modified: Sat, 15 Jul 2017 07:16:59 GMT
Expires: Mon, 15 Jul 2019 19:16:59 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2017/02/White-Logo%C2%AE-HalfSize.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "7801e983481f9eb6"
X-Bytes-Saved: 30870
Vary: Accept
X-nc: HIT arn 20


--- Additional Info ---
Magic:  PNG image, 620 x 273, 8-bit colormap, non-interlaced
Size:   26366
Md5:    23567f3b8c25a31c30e0ec3fa9e9bb7c
Sha1:   58b50f65dc8c3faa0def7468f40e2487c38ae1ee
Sha256: cc219cb1ff9bd83c5fd86912ced4c6af44809f2fc9c762006017b9864d3a9860
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2017/07/Screenshot-2017-07-16-14.58.10.png?resize=750%2C385&ssl=1 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:04 GMT
Content-Length: 44914
Connection: keep-alive
Last-Modified: Sun, 16 Jul 2017 14:29:01 GMT
Expires: Wed, 17 Jul 2019 02:29:01 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2017/07/Screenshot-2017-07-16-14.58.10.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "fe98d73847c2a047"
X-Bytes-Saved: 67672
Vary: Accept
X-nc: MISS arn 16


--- Additional Info ---
Magic:  PNG image, 750 x 385, 8-bit colormap, non-interlaced
Size:   44914
Md5:    a3af65f7592028cc00b49a8473c89354
Sha1:   794db05566131ade21a5dc0f022571980eadb346
Sha256: 3df2f51eb75f8884e5a77e4988903f27dc92207851f88121eaeafc9e1b79858b
                                        
                                            GET /r/collect?v=1&_v=j56&a=396447864&t=pageview&_s=1&dl=https%3A%2F%2Ftheantisocialengineer.com%2Fexploiting-chrome-attacks-to-educate-staff%2F&ul=en-us&de=UTF-8&dt=Exploiting%20Chrome%20Attacks%20to%20Educate%20Staff%20%7C%20The%20AntiSocial%20Engineer%20Limited&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IEBAAEQAI~&jid=60440911&gjid=1362302347&cid=1008583989.1500321187&tid=UA-58036976-2&_gid=407138295.1500321187&_r=1&z=539964947 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Mon, 17 Jul 2017 19:53:06 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /en_US/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         31.13.71.7
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: c11f1e2e2ae2cc0d12d17bce0617b82b
Etag: "35f46c2b150235005f6b8aa9ecaeeef9"
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=15552000; preload; includeSubDomains
X-XSS-Protection: 0
X-Frame-Options: DENY
Timing-Allow-Origin: *
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' fbstatic-a.akamaihd.net fbcdn-static-b-a.akamaihd.net *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* *.akamaihd.net wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
Expires: Sat, 15 Jul 2017 13:20:12 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-MD5: 4lGFJoIM4Bs+WZ/P2xLEGg==
X-FB-Debug: A1w1LKE0UNC8IBlUBIkzuEdQtmYsL52euUwCJQpG3G+/mqEijR+MTc5pIC/0oxyJDCl5qUBg5V8M4X4O6PlTFQ==
Date: Mon, 17 Jul 2017 19:53:06 GMT
Connection: keep-alive
Content-Length: 63403


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   63403
Md5:    e2518526820ce01b3e599fcfdb12c41a
Sha1:   e3ebd37f59e0a946e64df6a467d06e5d6fd8d492
Sha256: ab1512fd468ea2baf0c11504213dfa7af96e832ea8bf87ff541778c7651246b3
                                        
                                            GET /wp-content/themes/arcade/library/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/wp-content/themes/arcade/library/css/font-awesome.css?ver=4.7.0

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/x-font-woff
                                        
Date: Mon, 17 Jul 2017 19:53:06 GMT
Server: Apache
Last-Modified: Fri, 16 Jun 2017 19:44:17 GMT
Etag: "17ee8-5521902c16c4e"
Accept-Ranges: bytes
Content-Length: 98024
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  data
Size:   98024
Md5:    fee66e712a8a08eef5805a46892932ad
Sha1:   28b782240b3e76db824e12c02754a9731a167527
Sha256: ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
                                        
                                            GET /theantisocialengineer.com/wp-content/uploads/2015/01/Screenshot-2017-07-15-18.25.05.png?resize=170%2C153&ssl=1 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:07 GMT
Content-Length: 9887
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 19:53:07 GMT
Expires: Thu, 18 Jul 2019 07:53:07 GMT
Cache-Control: public, max-age=63115200
Link: <https://theantisocialengineer.com/wp-content/uploads/2015/01/Screenshot-2017-07-15-18.25.05.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "4bbf3e572203346d"
X-Bytes-Saved: 7369
Vary: Accept
X-nc: MISS arn 16


--- Additional Info ---
Magic:  PNG image, 170 x 153, 8-bit colormap, non-interlaced
Size:   9887
Md5:    127e7a6fec6794afeb4d5ec6d006040c
Sha1:   418df8b4b43f53be9198113f5428f8c8c1bc3880
Sha256: 48735b9a36602d60fd42094e875d4beb3d2f0432cf1f50dcc75bf7e683d716ad
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 17 Jul 2017 19:53:07 GMT
Expires: Fri, 21 Jul 2017 19:53:07 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    a94b41816d933cd4933ef35a0b029401
Sha1:   b1215b4147727b6ee47a2f8930782e9ae10b9535
Sha256: 3349ecb7eef921269e169c96b65043dd354e6fc791ae381a859fc3a03fbb9687
                                        
                                            GET /wp-content/plugins/jetpack/css/%22https:/fonts.googleapis.com/css?family=Open+Sans%22 HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/wp-content/plugins/jetpack/css/jetpack.css?ver=5.1

                                         
                                         178.62.24.161
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 17 Jul 2017 19:53:06 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://theantisocialengineer.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   49118
Md5:    4670de5e758132a6298d125054796c65
Sha1:   2f043c774759229fd677643727defe379d68c5aa
Sha256: 3e943b2104244108d0a9af1baebb38a8524bbe7cac307a895954946022cf270f
                                        
                                            GET /js/secureAnonymousFramework?v=0.0.2000-RC8.61320-1429&lang=en_US HTTP/1.1 
Host: platform.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/
Cookie: bcookie="v=2&10ded7fe-309c-4f9c-814e-8900bc9f97ad"; lidc="b=TGST08:g=402:u=1:i=1500321179:t=1500407579:s=AQHE3cqWIkyVKFKfjo1ORjpdZJYEcN8W"

                                         
                                         2.19.123.243
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Server: Apache-Coyote/1.1
Content-Encoding: gzip
Vary: Accept-Encoding
X-Li-Fabric: prod-ltx1
X-Li-Pop: PROD-IDB2
X-LI-Proto: http/1.1
X-LI-UUID: uk3zZrCmxhTAkMPJqCsAAA==
Content-Length: 45379
Date: Mon, 17 Jul 2017 19:53:07 GMT
Connection: keep-alive
X-CDN: AKAM


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   45379
Md5:    6a1998d41651684ce70fa12d4b5b0769
Sha1:   442c1c570ced6faf2186b2fb454011c8bc84f5f0
Sha256: 90b133a87c132d75f5d3a3ecdc0f210d0d12eb2978dedd990091ec27c5c60321
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "c976f400ce3d353a4b6e9efaae7fb32e"
Expires: Mon, 17 Jul 2017 19:53:07 GMT
Date: Mon, 17 Jul 2017 19:53:07 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
Strict-Transport-Security: max-age=10886400
P3P: CP="This is not a P3P policy! See https://support.google.com/accounts/answer/151657?hl=en for more info."
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=107=WNpCHGDJKaWj9RJShXESQ-ZbwzXTgFogE5KRM9iNNatNIw7yEyYo7WZoLTfCFwvwCDl_MizP9WpdfncoPk5XUj5_jumqmElGsmMMkR8Qfre_e5XtxFwImNxucpb9WSBK;Domain=.google.com;Path=/;Expires=Tue, 16-Jan-2018 19:53:07 GMT;HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   15993
Md5:    9cb1831db010b0a58369247325122c65
Sha1:   73d405898b339c50c48851e244ad66bad58b5ade
Sha256: 8c9d3dd07c18271984a54f410eb77ab29f42b855c1bd357443903418a1b5549c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 19:53:08 GMT
Etag: "596cda5a-1d7"
Expires: Mon, 24 Jul 2017 07:53:08 GMT
Last-Modified: Mon, 17 Jul 2017 15:40:10 GMT
Server: ECS (arn/459D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f628b564e729788056e40f1003b023c0
Sha1:   797a421c63eed23ef70d9d076d8828623ff84ef1
Sha256: 3569c4aeb4c7d465a30fe433ebff1d3ac03b5b51b749a60c6f99f27af9738a1f
                                        
                                            GET /js/plusone.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "8bf81446c40333e962f63bf3dba5010c"
Expires: Mon, 17 Jul 2017 19:53:08 GMT
Date: Mon, 17 Jul 2017 19:53:08 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
Strict-Transport-Security: max-age=10886400
P3P: CP="This is not a P3P policy! See https://support.google.com/accounts/answer/151657?hl=en for more info."
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=107=lil3vgEjagSP2Y5IaHLh5O-uTgnfSYn0QSKM-y0wcW8CVU5wHCr7-w5n-dJ1bcUhoHgKxx4csY1XIS6VM-9G7UBtpC86kPqI5dHHJ_lFYmUrjSlYoSzhzmrJo_DquqA2;Domain=.google.com;Path=/;Expires=Tue, 16-Jan-2018 19:53:08 GMT;HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   15995
Md5:    64efed25a6f78033295bf3dd428b6882
Sha1:   3e3805c7bfe88147e74753eae48197f4cdc5eed1
Sha256: 269bb8a34b10860e7fe7fbeef6e037c7aa34ed861c9e25979f0308937a9568bf
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.no.MR7_riSYvI8.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AQ/rs=AGLTcCOsrSEBJuvqrYkJkQmhyBcGuTh-qQ/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/
Cookie: NID=107=lil3vgEjagSP2Y5IaHLh5O-uTgnfSYn0QSKM-y0wcW8CVU5wHCr7-w5n-dJ1bcUhoHgKxx4csY1XIS6VM-9G7UBtpC86kPqI5dHHJ_lFYmUrjSlYoSzhzmrJo_DquqA2

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 41056
Date: Fri, 14 Jul 2017 19:03:38 GMT
Expires: Sat, 14 Jul 2018 19:03:38 GMT
Last-Modified: Fri, 14 Jul 2017 02:01:39 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 262170
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   41056
Md5:    b6ed55ca6291096b6ac569f4269b57cf
Sha1:   69319f227a90f684fa956738516a2948c0786724
Sha256: 1c899aa5c81953884e9cf563afcc5418b3e0f764f6af56205558af89b8abb1a7
                                        
                                            GET /impression.php/f1a91bbf61ba9a2/?lid=115&payload=%7B%22source%22%3A%22jssdk%22%7D HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         157.240.2.35
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' fbstatic-a.akamaihd.net fbcdn-static-b-a.akamaihd.net *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* *.akamaihd.net wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.facebook.com
Access-Control-Expose-Headers: X-FB-Debug, X-Loader-Length
Pragma: no-cache
Vary: Origin, Accept-Encoding
public-key-pins-report-only: max-age=500; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E="; pin-sha256="q4PO2G2cbkZhZ82+JgmRUyGMoAeozA+BSXVXQWB8XWQ="; report-uri="http://reports.fb.com/hpkp/"
access-control-allow-method: OPTIONS
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; preload
X-Content-Type-Options: nosniff
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Encoding: gzip
X-FB-Debug: YPUibXYQeUvsqkOc2ldXTiceN0DiNTs6EVqe9IHUM8t0UFLY2+/PxBjdLhH1P4EpfQWes8nwnp2rsToFmGNRlA==
Date: Mon, 17 Jul 2017 19:53:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   57
Md5:    9539fdb766538c525a3e11e03853b8c9
Sha1:   cd658fd453cb9e7af5aede2e9c6050d81c0e2fdc
Sha256: 88882a6963e4a4313761bf5e5be68a015ec125c023fba749a9ec0aca7a9124af
                                        
                                            GET /connect/xd_arbiter/r/XBwzv5Yrm_1.js?version=42 HTTP/1.1 
Host: staticxx.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         31.13.71.7
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Expires: Tue, 10 Jul 2018 19:27:26 GMT
Cache-Control: public,max-age=31536000,immutable
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' fbstatic-a.akamaihd.net fbcdn-static-b-a.akamaihd.net *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* *.akamaihd.net wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
X-XSS-Protection: 0
Strict-Transport-Security: max-age=15552000; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
X-FB-Debug: w+0V6tQx/v33CoWMpLICCt9fSsHMtXcSyLxGTY68v8yJNsk6QFNw2SfFxXk7fVfT3vTgyuDt37phKnRPP19okw==
Date: Mon, 17 Jul 2017 19:53:08 GMT
Connection: keep-alive
Content-Length: 14413


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14413
Md5:    11b17be84f248d3e9b485c516034e3f9
Sha1:   a468d20bc215f62674236178c1fa59dff0883613
Sha256: 4c3b32b9c02c77ea64b61fa3d47291f99ff8526f308193db7376fe17a39999c0
                                        
                                            GET /widgets.js HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         93.184.220.66
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Content-Encoding: gzip
Cache-Control: public, max-age=1800
Date: Mon, 17 Jul 2017 19:53:08 GMT
Etag: "ab1a87d8b7af389abe64b87f6ba1092e+gzip"
Last-Modified: Thu, 13 Jul 2017 17:16:44 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (arn/46CE)
Vary: Accept-Encoding
X-Cache: HIT
Content-Length: 33245


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Thu Jul 13 19:16:44 2017
Size:   33245
Md5:    4f80b58ea319e5b311e7627b209b36ef
Sha1:   97886418bb165796b8d0c0d89e449cc55c4ae132
Sha256: 67d1b44ea17c7ec2d1f39a9ad464107c12b655e4082cadfa6c512ebae45c8cd2
                                        
                                            GET /piwik/piwik.js HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/
Cookie: _ga=GA1.2.1008583989.1500321187; _gid=GA1.2.407138295.1500321187; _gat=1

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 19:53:09 GMT
Server: Apache
Last-Modified: Fri, 02 Jun 2017 14:52:05 GMT
Etag: "f56f-550fb4c008fee-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21462
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   21462
Md5:    28046a8250654aa8488f710406b4ec19
Sha1:   859c5764dd94c77f50bfdce8d2e636109a35a565
Sha256: e241a1a8f344a8513984bf988643cd17359eda7ef882fa53b0a3898e5bbb5af1
                                        
                                            GET /piwik/piwik.php?action_name=Exploiting%20Chrome%20Attacks%20to%20Educate%20Staff%20%7C%20The%20AntiSocial%20Engineer%20Limited&idsite=1&rec=1&r=526865&h=21&m=53&s=10&url=https%3A%2F%2Ftheantisocialengineer.com%2Fexploiting-chrome-attacks-to-educate-staff%2F&_id=a2061cc2d19a0867&_idts=1500321191&_idvc=1&_idn=0&_refts=0&_viewts=1500321191&send_image=1&pdf=1&qt=0&realp=0&wma=1&dir=0&fla=1&java=1&gears=0&ag=0&cookie=1&res=1176x885&pv_id=ePxGAa HTTP/1.1 
Host: theantisocialengineer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/
Cookie: _ga=GA1.2.1008583989.1500321187; _gid=GA1.2.407138295.1500321187; _gat=1; _pk_id.1.0e97=a2061cc2d19a0867.1500321191.1.1500321191.1500321191.; _pk_ses.1.0e97=*

                                         
                                         178.62.24.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 17 Jul 2017 19:53:10 GMT
Server: Apache
Content-Length: 43
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /g.gif?v=ext&j=1%3A5.1&blog=83117132&post=1652&tz=1&srv=theantisocialengineer.com&host=theantisocialengineer.com&ref=&rand=0.6213807170758802 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://theantisocialengineer.com/exploiting-chrome-attacks-to-educate-staff/

                                         
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Mon, 17 Jul 2017 19:53:11 GMT
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1