Overview

URL www.taxcalculator.pk/tolk/sbc/Y7/index.php
IP104.28.22.137
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2017-09-14 13:52:36 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-09-14 2 www.taxcalculator.pk/tolk/sbc/Y7/index.php Phishing
2017-09-14 2 taxcalculator.pk/tolk/sbc/Y7/index.php Phishing
2017-09-14 2 taxcalculator.pk/tolk/sbc/Y7/assets/js/taxcalculator.js Phishing
2017-09-14 2 taxcalculator.pk/tolk/sbc/Y7/assets/js/all.min.js Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 9 reports on IP: 104.28.22.137

Date UQ / IDS / BL URL IP
2017-11-10 08:06:27 +0100
0 - 0 - 0 https://rxtestosteronesite.com/hdt-male-enhan (...) 104.28.22.137
2017-09-17 20:52:23 +0200
0 - 0 - 3 taxcalculator.pk/tolk/sbc/Y7/index.php 104.28.22.137
2017-09-17 09:53:22 +0200
0 - 0 - 4 www.taxcalculator.pk/tolk/sbc/Y7/index.php 104.28.22.137
2017-09-16 20:55:49 +0200
0 - 0 - 3 taxcalculator.pk/tolk/sbc/Y7/index.php 104.28.22.137
2017-09-16 17:54:29 +0200
0 - 0 - 3 taxcalculator.pk/tolk/sbc/Y7/index.php 104.28.22.137
2017-09-14 05:53:32 +0200
0 - 0 - 3 taxcalculator.pk/tolk/sbc/Y7/index.php 104.28.22.137
2017-09-14 05:45:19 +0200
0 - 0 - 3 taxcalculator.pk/tolk/sbc/Y7/index.php 104.28.22.137
2017-09-14 04:16:14 +0200
0 - 0 - 1 taxcalculator.pk/tolk/sbc/Y7/index.php 104.28.22.137
2017-09-13 03:57:16 +0200
0 - 0 - 3 taxcalculator.pk/tolk/sbc/Y7/index.php 104.28.22.137

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2017-11-21 03:23:52 +0100
0 - 0 - 1 www.yourmusics.club/track/michael-mcdonald-yo (...) 104.27.142.230
2017-11-21 03:22:07 +0100
0 - 0 - 1 ad2story.com/c1 104.18.59.116
2017-11-21 03:21:58 +0100
0 - 0 - 1 adscould.com/c1 104.31.90.28
2017-11-21 03:19:41 +0100
0 - 0 - 3 sbenny.pw/baycitycapital/verification.php 104.18.59.211
2017-11-21 03:16:52 +0100
0 - 5 - 3 sbenny.pw/baycitycapital/zVeXn2.php 104.18.59.211
2017-11-21 03:13:23 +0100
0 - 0 - 1 an2oceans.ru/ 104.27.134.157
2017-11-21 03:13:23 +0100
0 - 0 - 1 www.dovernewsnow.com/makers-of-slime-and-fixa (...) 104.27.162.201
2017-11-21 03:09:41 +0100
0 - 0 - 42 mediacpm.pl/v.php?user=10182 104.31.2.179
2017-11-21 03:10:18 +0100
0 - 1 - 0 adsdelivery.bid/ 104.28.25.240
2017-11-21 03:09:55 +0100
0 - 0 - 1 www.antalyabilgeticaret.com/logo.gif?1b801=563205 104.27.145.105

No other reports on domain: taxcalculator.pk



JavaScript

Executed Scripts (3)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (16)


Request Response
                                        
                                            GET /tolk/sbc/Y7/index.php HTTP/1.1 
Host: www.taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.28.23.137
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 14 Sep 2017 11:52:01 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920; expires=Fri, 14-Sep-18 11:52:00 GMT; path=/; domain=.taxcalculator.pk; HttpOnly
x-amz-id-2: jcUQ0WoZK9gZP3XQUmvhwEWNBM2ixCgT4zSXpHz1WTX4XT4FNu+XBCtmyn6PeElJlhVYBsgUNRI=
x-amz-request-id: E3547550672649E9
Location: http://taxcalculator.pk/tolk/sbc/Y7/index.php
Server: cloudflare-nginx
CF-RAY: 39e3233ce5314279-OSL


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /tolk/sbc/Y7/index.php HTTP/1.1 
Host: taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920

                                         
                                         104.28.22.137
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 11:52:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 Sep 2017 14:52:13 GMT
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: 78B1AEF9446B23DF
x-amz-id-2: fyaIJv1IPJFz85MM9koKAMIpC+hvaXA9uITTkGI7tp1who5k6jGUR2nfW3yKrmdh7PKLRF9cfsI=
Server: cloudflare-nginx
CF-RAY: 39e32340d2284255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5949
Md5:    18f6fad128ba15e62e10c716cb9a3b4c
Sha1:   9f105206bf83cd330732f4f0285c1fee38052a24
Sha256: e45021dbe7e09b6949de21738b1d4bafbb348414f4de4f75110362de3cceeb04

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /tolk/sbc/Y7/assets/css/all.min.css HTTP/1.1 
Host: taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://taxcalculator.pk/tolk/sbc/Y7/index.php
Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920

                                         
                                         104.28.22.137
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 11:52:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 Sep 2017 14:52:13 GMT
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: 0452C90661D609D0
x-amz-id-2: spEd6Bnvlq8T9vsy5fUrrx3EoHr62WuJ36nh6uS0TITfkK1jUPtal7G1y69wf8hRW+rzCDdP6/w=
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e3234480d342c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5955
Md5:    7f1bb6723d776cff402edd6d687c3f11
Sha1:   1f1f411968cc25c34a8d429f24a96926986f2db4
Sha256: 252b968704b7d2683c438fbabec965357360e263654b3795556529219bac2f71
                                        
                                            GET /tolk/sbc/Y7/assets/js/taxcalculator.js HTTP/1.1 
Host: taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://taxcalculator.pk/tolk/sbc/Y7/index.php
Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920

                                         
                                         104.28.22.137
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 11:52:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 Sep 2017 14:52:13 GMT
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: FDD224311EC3B51D
x-amz-id-2: YdLlF5n2RFI9bgXETAUp3YaDlyF/P0h5GVqWJWXFXN/x2TD5ORPe+pCnPV7nJnxo18kbCme/rQ0=
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e32344a60a429d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5956
Md5:    139001c35338829752aef569ce8b4f4e
Sha1:   69c4ee09ab4c859ec4bc7d634055626fd677d1df
Sha256: eac6066260f4897628a488727f4a96238d81b11aff65fe27a004f691f4b95207

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 11:52:03 GMT
Expires: Mon, 18 Sep 2017 11:52:03 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    b944ae1249f4448df9f0bb94914eb4fa
Sha1:   737f59b9889ca2a45c2aef19714090e4c839d441
Sha256: d906322d35cab594bfac9779782057ed005a2bd52d30fa6f31ef6c5985877b91
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=394520, public, no-transform, must-revalidate
Last-Modified: Tue, 12 Sep 2017 01:23:19 GMT
Expires: Tue, 19 Sep 2017 01:23:19 GMT
Date: Thu, 14 Sep 2017 11:52:03 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    775de2be162f21ece95211dfbf378ff2
Sha1:   5aa3f54491214e417e128fcc1b70119c2135565c
Sha256: 69abd56429cfa8fb3a69c040242457ab25397237c94b2f46ea2ce7b1848d55fe
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://taxcalculator.pk/tolk/sbc/Y7/index.php

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Thu, 14 Sep 2017 10:50:02 GMT
Expires: Thu, 14 Sep 2017 12:50:02 GMT
Last-Modified: Tue, 12 Sep 2017 04:27:56 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 13799
Cache-Control: public, max-age=7200
Age: 3721
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   13799
Md5:    5827420884775fa5bc59382422dad59a
Sha1:   d5751bad47ec2001b05a30a1c82080b73844ffc8
Sha256: d5c5aa6307e696c9daef278433687a98c58219ba85ada7b571bee81b84c0cc53
                                        
                                            GET /tolk/sbc/Y7/images/appstore.png HTTP/1.1 
Host: taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://taxcalculator.pk/tolk/sbc/Y7/index.php
Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920

                                         
                                         104.28.22.137
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 11:52:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 Sep 2017 14:52:13 GMT
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: 4EBD910A59DBA24D
x-amz-id-2: wcDWo1eFdpA6iPmMvhVWb9JCsUggl9h9LfqYh6zTTPBtmz4jGrIrfzJZomNUndFNI/ykURAoTU0=
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e3234964514255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5957
Md5:    b7272e0e98c36b27b9a7c518ff5c1691
Sha1:   63e3d78789b5e52ca1f835355636db71213814e5
Sha256: f991e900f63122c147016350eb2b3343f7fa6286dc4d7af17e36cf81ff736732
                                        
                                            GET /tolk/sbc/Y7/images/playstore.png HTTP/1.1 
Host: taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://taxcalculator.pk/tolk/sbc/Y7/index.php
Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920

                                         
                                         104.28.22.137
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 11:52:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 Sep 2017 14:52:13 GMT
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: 65B10E5756EA805E
x-amz-id-2: 0ySpvbnud+tydhDF+Q92QBQe/JMyc32Y6ClsCByRJfDg58BGWY0+o5RdprlJ6xml/gd0hLYys9A=
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e32349620a42c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5956
Md5:    f2dbb60b54db4629ca7243ad561afe52
Sha1:   d3a61b053a0bc1df5c5b8d3945110bafd6801149
Sha256: ff83230df80195e3cfe4b28df26a2163e5d9955ce6a3dc76cd7d169ba80085f9
                                        
                                            GET /tolk/sbc/Y7/assets/js/all.min.js HTTP/1.1 
Host: taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://taxcalculator.pk/tolk/sbc/Y7/index.php
Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920

                                         
                                         104.28.22.137
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 11:52:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 Sep 2017 14:52:13 GMT
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: 49FC303F76A2E20E
x-amz-id-2: LnFG79LtcyRiQ/EZPfTizTpzE9t9MObdI4QmO+qbdp4fbV/44SdQ2wWYS5osKxMXolC8ByHb5eg=
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e3234a7752429d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5953
Md5:    b803bdfee59cacf8a8966af84f883b91
Sha1:   b18fd2f147066993383dc1b93cb21aed2f94b7d3
Sha256: f355deadd6891afa27e0c03bc5df2a9f7d23d1535ae0fd76e8e3c6753eb94b9c

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /tolk/sbc/Y7/tax.jpg HTTP/1.1 
Host: taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920

                                         
                                         104.28.22.137
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 11:52:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 Sep 2017 14:52:13 GMT
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: FD8271B29F3EDF3E
x-amz-id-2: 2FQ9RwIbBQaoXbH96aEw3F6ej8hPYf/Ki2JtmAEPXEIqxXVwgE1LGDy0Ps0T8BgWfnRhVlyK3KM=
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e3234bf67842a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5954
Md5:    057e34a61ebbb8f46d39527779ab2c03
Sha1:   3763c1e8e8c0ba494ff441337cdd7432b7b10229
Sha256: def4d5ceb150e9d1bdbf9acb29e78a2fd0128112f26374088668b0f06094bc45
                                        
                                            GET /r/collect?v=1&_v=j62&a=257323766&t=pageview&_s=1&dl=http%3A%2F%2Ftaxcalculator.pk%2Ftolk%2Fsbc%2FY7%2Findex.php&ul=en-us&de=UTF-8&dt=Tax%20Calculator%20Pakistan&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IEBAAMQAI~&jid=881257885&gjid=1699699844&cid=1819118010.1505389924&tid=UA-101177043-1&_gid=2104828010.1505389924&_r=1&z=1655091947 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://taxcalculator.pk/tolk/sbc/Y7/index.php

                                         
                                         216.58.211.142
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-101177043-1&cid=1819118010.1505389924&jid=881257885&_gid=2104828010.1505389924&gjid=1699699844&_v=j62&z=1655091947
Access-Control-Allow-Origin: *
Date: Thu, 14 Sep 2017 11:52:03 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 420
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  HTML document text
Size:   420
Md5:    8de2e40b138295e0cfe08ba6ac8f13f9
Sha1:   c901b726b9ef735627c8c11f61febcce04b82e24
Sha256: be54f6c76ca3cd013cab4449a7ba1546746bb13769990e81258b2763ca605071
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 11:52:03 GMT
Expires: Mon, 18 Sep 2017 11:52:03 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    56940345e5f5e877a5e1443cdea626d9
Sha1:   7b42c553c9e5978f8ce26b746629867212dda269
Sha256: e8b85cb8c8b7492146d4bc99c0e512d21fbdec3b5e75568c986dbf37d1dbaf9d
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-101177043-1&cid=1819118010.1505389924&jid=881257885&_gid=2104828010.1505389924&gjid=1699699844&_v=j62&z=1655091947 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://taxcalculator.pk/tolk/sbc/Y7/index.php

                                         
                                         64.233.164.157
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Thu, 14 Sep 2017 11:52:04 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /tolk/sbc/Y7/tax.jpg HTTP/1.1 
Host: taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920; _ga=GA1.2.1819118010.1505389924; _gid=GA1.2.2104828010.1505389924; _gat=1

                                         
                                         104.28.22.137
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 11:52:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 Sep 2017 14:52:13 GMT
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: FD8271B29F3EDF3E
x-amz-id-2: 2FQ9RwIbBQaoXbH96aEw3F6ej8hPYf/Ki2JtmAEPXEIqxXVwgE1LGDy0Ps0T8BgWfnRhVlyK3KM=
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e3235166294255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5960
Md5:    47ba499c0ee12528585631a652dab97a
Sha1:   b6920fbe4ca06d60edc1864a0c7a5674b971d597
Sha256: dd4ffcc9032df11d7bbfc26068be77d76f0206b9c28652bbf3f2b2fb98bdbd89
                                        
                                            GET /tolk/sbc/Y7/tax.jpg HTTP/1.1 
Host: taxcalculator.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d724c661dc1b410eecafd4aed26fae0a01505389920; _ga=GA1.2.1819118010.1505389924; _gid=GA1.2.2104828010.1505389924; _gat=1

                                         
                                         104.28.22.137
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 11:52:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 Sep 2017 14:52:13 GMT
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: FD8271B29F3EDF3E
x-amz-id-2: 2FQ9RwIbBQaoXbH96aEw3F6ej8hPYf/Ki2JtmAEPXEIqxXVwgE1LGDy0Ps0T8BgWfnRhVlyK3KM=
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e3235ea76e42c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5957
Md5:    8b2e772611eca80c2c47d1565181dfb3
Sha1:   8444b0b6ff1eaf0c398388d26867e666e59d6bc2
Sha256: 0bd2feeaad9534fab5ba28b9b715fb7867c6e1c2e8a7185f4b7abcedc02ba04e