Overview

URL ciuruci.gq/hmh/office/confidential/365index365.php
IP195.20.51.171
ASNAS31624 Verotel International B.V.
Location Netherlands
Report completed2018-07-10 19:55:59 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-07-10 2 ciuruci.gq/hmh/office/confidential/365index365.php Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 1 reports on IP: 195.20.51.171

Date UQ / IDS / BL URL IP
2019-05-16 11:43:24 +0200
0 - 4 - 0 penurious-excite.ml 195.20.51.171

Last 10 reports on ASN: AS31624 Verotel International B.V.

Date UQ / IDS / BL URL IP
2019-06-25 21:24:52 +0200
0 - 1 - 0 globalpay.tk 195.20.44.70
2019-06-25 20:48:27 +0200
0 - 0 - 0 helene.ga 195.20.55.54
2019-06-20 21:45:49 +0200
0 - 0 - 1 oberthurcs.gq 195.20.49.195
2019-06-20 21:34:18 +0200
0 - 1 - 1 midweekswifts.ga 195.20.54.29
2019-06-20 21:33:11 +0200
0 - 0 - 1 hdhsjjfjdgd.ga 195.20.53.4
2019-06-20 08:08:39 +0200
0 - 0 - 4 www.streamers.gq/ 195.20.55.36
2019-06-19 21:26:18 +0200
0 - 2 - 0 novelhypertensiontreatment.gq 195.20.55.185
2019-06-19 16:47:45 +0200
0 - 2 - 0 fortunetent.tk/ 195.20.44.53
2019-06-19 16:37:39 +0200
0 - 1 - 0 balliwood.ml 195.20.54.105
2019-06-18 23:11:05 +0200
0 - 0 - 0 wecandothis.gq/ 195.20.49.111

Last 1 reports on domain: ciuruci.gq

Date UQ / IDS / BL URL IP
2018-01-23 09:34:09 +0100
0 - 0 - 1 ciuruci.gq/hmh/office/confidential/365index365.php 191.96.249.172


JavaScript

Executed Scripts (11)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (36)


Request Response
                                        
                                            GET /hmh/office/confidential/365index365.php HTTP/1.1 
Host: ciuruci.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         195.20.51.171
HTTP/1.1 203 Non-Authoritative Information
Content-Type: text/html;charset=UTF-8
                                        
Server: nginx
Date: Tue, 10 Jul 2018 17:55:27 GMT
Content-Length: 638
Connection: keep-alive
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Set-Cookie: JSESSIONID=2801D768B7A6EC1530B33E934F0020C2; Path=/; HttpOnly
X-Server: f22b00a5bc2b


--- Additional Info ---
Magic:  HTML document text
Size:   638
Md5:    111790bb40096bcdf6b7a46c0b9c7aef
Sha1:   7d987540e7422beb719f01c9814e91574478ee27
Sha256: aa3f9f768d9e9841ab40c3b6c9bebedae677c54522d8cb4caa034fcd6585fe31

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ciuruci.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: JSESSIONID=2801D768B7A6EC1530B33E934F0020C2

                                         
                                         195.20.51.171
HTTP/1.1 429 Too Many Requests
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Tue, 10 Jul 2018 17:55:27 GMT
Content-Length: 178
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    403214dab1dc8abd38496301eff419c1
Sha1:   b4c91f28fc64e602d63ae40f9e8ec23f2cd73c45
Sha256: ac061aeb038d56f49ccd10f7684c8f20b7a75d965279217bdd9665c65992bbc9
                                        
                                            GET /p/?d=CIURUCI.GQ&i=77.40.129.123&c=47&ro=0&ref=unknown&_=1531245327392 HTTP/1.1 
Host: domain.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ciuruci.gq/hmh/office/confidential/365index365.php

                                         
                                         217.115.151.99
HTTP/1.0 302 Found
Content-Type: text/html; charset=ISO-8859-1
                                        
Date: Tue, 10 Jul 2018 17:55:27 GMT
Server: Apache/1.3.41 (Unix) mod_perl/1.30
Location: http://www.dot.tk/
Content-Length: 0
Connection: close


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ciuruci.gq/hmh/office/confidential/365index365.php

                                         
                                         35.186.233.234
HTTP/1.1 302 Found
                                        
Server: nginx/1.11.9
Transfer-Encoding: chunked
Set-Cookie: mydottk_languagenr=0; domain=.dot.tk; path=/; expires=Wed, 11-Jul-2018 17:55:27 GMT dottyLn=en; domain=.dot.tk; path=/; expires=Wed, 11-Jul-2018 17:55:27 GMT wwwLn=en; domain=.dot.tk; path=/; expires=Wed, 11-Jul-2018 17:55:27 GMT
Date: Tue, 10 Jul 2018 17:55:27 GMT
Location: http://www.dot.tk/en/index.html?lang=en
Via: 1.1 google


--- Additional Info ---
                                        
                                            GET /en/index.html?lang=en HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ciuruci.gq/hmh/office/confidential/365index365.php
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.11.9
Date: Tue, 10 Jul 2018 17:23:42 GMT
Content-Length: 24164
X-GUploader-UploadID: AEnB2UoNt94DAwyr9C5W0m8J4yhc8f50-4waSf_48CcbNmc-95pm9_SY6WHOKCM21ioCST81MNVFL6G4EYVJf1Yv_2YXrB37jyxRAw0Lx-7hWZnskLwNeJY
Expires: Tue, 10 Jul 2018 18:23:42 GMT
Last-Modified: Wed, 08 Feb 2017 16:12:54 GMT
Etag: "c18547c6af07588201e6fb4c5c305553"
x-goog-generation: 1486570374609937
x-goog-metageneration: 4
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 24164
Content-Language: en
x-goog-hash: crc32c=A/RRCw==, md5=wYVHxq8HWIIB5vtMXDBVUw==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Age: 1905
Cache-Control: max-age=3600,public


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   24164
Md5:    c18547c6af07588201e6fb4c5c305553
Sha1:   9469da6afe1f452401d990e3f4b582cb3b530304
Sha256: 993dbb4fcd63aa077b64b6196526201741baa8d71e956c0db7930a1032fa5899
                                        
                                            GET /css/reset.css HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.11.9
Date: Tue, 10 Jul 2018 17:21:59 GMT
Content-Length: 3924
X-GUploader-UploadID: AEnB2UpS6V89M_MseSRnRyoSHTsK8dUkF-ljHBj0smeBcSDvASkvRW4DL2pY9pVCJH7jqFgbop11sLb0_MNzKKuxX5XZsmUmSGgo0VF6AQfiqxiobEb-Zys
Expires: Tue, 10 Jul 2018 18:21:59 GMT
Last-Modified: Thu, 09 Jun 2016 11:36:36 GMT
Etag: "8219336bd4c8c7266d6ee6d8cbbc57fd"
x-goog-generation: 1465472196758000
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3924
Content-Language: en
x-goog-hash: crc32c=Dlg3aQ==, md5=ghkza9TIxyZtbubYy7xX/Q==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Cache-Control: max-age=3600,public
Age: 2008


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   3924
Md5:    8219336bd4c8c7266d6ee6d8cbbc57fd
Sha1:   bfbd30e06fe1a5f4fcd84b3f77327d4bc32e4c0b
Sha256: a3216d8151c1701c2bb64a7c24f19e05a2e73eef994f3bfb54cc85d4fd093ef0
                                        
                                            GET /ajax/libs/jquery/2.0.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 29440
Date: Tue, 26 Jun 2018 12:04:39 GMT
Expires: Wed, 26 Jun 2019 12:04:39 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 1230648


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   29440
Md5:    28af7f5e92a03473c5dce4c935ce3050
Sha1:   33d1ea00351b34426b7cdab04c41038b403b2016
Sha256: ac81a37b4a51234bcd7d53ad9b26513ca6a07b50a9aa4060791d37e528984a0c
                                        
                                            GET /css/style.css HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.11.9
Date: Tue, 10 Jul 2018 17:33:52 GMT
Content-Length: 20287
X-GUploader-UploadID: AEnB2UpOhVdx3f8VnueaMwXcOy9nlB6j2znxjsE-YT5EyU-rQCAIeqI0MUGbF0DW_7t0-UygnRWuNDnVrqhQRROF30gjH-a6t8EG2i8SHS4noW5uMJGn-7w
Expires: Tue, 10 Jul 2018 18:33:52 GMT
Last-Modified: Wed, 08 Feb 2017 16:12:54 GMT
Etag: "1a4bc294c01009244e93bc9981945932"
x-goog-generation: 1486570374566291
x-goog-metageneration: 4
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 20287
Content-Language: en
x-goog-hash: crc32c=QtS1mQ==, md5=GkvClMAQCSROk7yZgZRZMg==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Age: 1295
Cache-Control: max-age=3600,public


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   20287
Md5:    1a4bc294c01009244e93bc9981945932
Sha1:   01a125067639cb5966291b33a5a77f2c38b4be33
Sha256: 14b25cff57af5967c41fd02971a342972037a5096f7c665b505e4b2e488ac333
                                        
                                            GET /css/availability.css HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.11.9
Date: Tue, 10 Jul 2018 17:07:23 GMT
Content-Length: 22354
X-GUploader-UploadID: AEnB2UoskWXAN6cJ6PdlDSv-lUbNcMfnBcJp_YOIy4nDqH5drLizPXpG4iLNOlDPZ3dFlofrQzojzGdmk470nQl8OBm_By75B9zC8eUo1zQ8qzJxLRiqjnM
Expires: Tue, 10 Jul 2018 18:07:23 GMT
Last-Modified: Thu, 09 Jun 2016 11:36:37 GMT
Etag: "86d246c9551d66a032950723f08ac7e1"
x-goog-generation: 1465472197621000
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 22354
Content-Language: en
x-goog-hash: crc32c=RNiRqw==, md5=htJGyVUdZqAylQcj8IrH4Q==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Age: 2884
Cache-Control: max-age=3600,public


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   22354
Md5:    86d246c9551d66a032950723f08ac7e1
Sha1:   3f1a791aaa19aa0e898c1a7aa74694f579d09a24
Sha256: 176859b8b2c7587c8f2f59fd68a1842641ca4bc3be58e2e15b88d162d1bdfada
                                        
                                            GET /js/rotatingbg.js HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.11.9
Date: Tue, 10 Jul 2018 17:08:32 GMT
Content-Length: 1751
X-GUploader-UploadID: AEnB2UomeWDjxJypznabd0B_GkT787rekkuUzXFDarbrPF0I-ivAXzqjYduyovRpRbJom-jRlHkChm_0dnFbjkONoJCNrdyJoW2YHZkN9Trb75Fbp9pls4U
Expires: Tue, 10 Jul 2018 18:08:32 GMT
Last-Modified: Wed, 08 Feb 2017 16:12:54 GMT
Etag: "313c0f5d884c7f780d69abc422ea0e44"
x-goog-generation: 1486570374978085
x-goog-metageneration: 4
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1751
Content-Language: en
x-goog-hash: crc32c=qQ23fg==, md5=MTwPXYhMf3gNaavEIuoORA==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Age: 2815
Cache-Control: max-age=3600,public


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1751
Md5:    313c0f5d884c7f780d69abc422ea0e44
Sha1:   a662cc07beded0473e46739737ce322f28442c19
Sha256: 0d0529bb9ba7a196880355c2f59828de90a09733065e08c98cd8e4f6f3758ffd
                                        
                                            GET /images.v2/logo.png HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.11.9
Date: Tue, 10 Jul 2018 17:10:14 GMT
Content-Length: 9309
X-GUploader-UploadID: AEnB2Uqk4E-67JmqIIVs1vrC2KtxS5gBe0kppZNXuJgqhaStRVahuhImif-pUHJSt_DURZWNOIjGufaXJ9gQmTgJZP6AHBfyZzPaexax9YdiaKuRplbUsuc
Expires: Tue, 10 Jul 2018 18:10:14 GMT
Last-Modified: Thu, 09 Jun 2016 11:36:46 GMT
Etag: "cf869c0a6dbfa71c1981c35d85fd8053"
x-goog-generation: 1465472206459000
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9309
Content-Language: en
x-goog-hash: crc32c=i689kw==, md5=z4acCm2/pxwZgcNdhf2AUw==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Age: 2713
Cache-Control: max-age=3600,public


--- Additional Info ---
Magic:  PNG image, 300 x 200, 8-bit/color RGBA, non-interlaced
Size:   9309
Md5:    cf869c0a6dbfa71c1981c35d85fd8053
Sha1:   b47d8e7d26cf0fc2989e79ada637ecf4a3df4328
Sha256: 8e03bc9d923ade686eb09696983c7a6961f75595178fda35681f5f561b03c5d1
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 10 Jul 2018 17:55:27 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    1a48a786cfbbc68a9781b363b6b6bf45
Sha1:   771287b0d8a602b75b3f5498c977a379afd72570
Sha256: 4b5a69a41142af1cf2d32579ad681efcfd5786d2779787fbcd13cfea0d0d91bb
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 10 Jul 2018 17:55:27 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 10 Jul 2018 17:55:28 GMT
Server: Apache
Last-Modified: Tue, 10 Jul 2018 08:38:02 GMT
Expires: Tue, 17 Jul 2018 08:38:02 GMT
Etag: 18D121F7FCF0157780C4B34D11913D4A3C849532
Cache-Control: max-age=570753,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp20
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    5ca46a3b4c1bbc91b8b392803237626f
Sha1:   18d121f7fcf0157780c4b34d11913d4a3c849532
Sha256: 293617932e125f13fa3019f8cb43b484c307c62c9f2417ea6d1b387da15bf74f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 10 Jul 2018 17:55:28 GMT
Server: Apache
Last-Modified: Sun, 08 Jul 2018 22:51:21 GMT
Expires: Sun, 15 Jul 2018 22:51:21 GMT
Etag: A901264DF7AE7302AEE57E32687A649CBEBD7F17
Cache-Control: max-age=449152,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp20
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    1baeb059a7ca9162b0532fcb5d4042c8
Sha1:   a901264df7ae7302aee57e32687a649cbebd7f17
Sha256: 44653fab612c7f906e6f616a3ff659c5b6eba19ff0f908f6cef5c2ba662d6325
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 10 Jul 2018 17:55:28 GMT
Server: Apache
Last-Modified: Sun, 08 Jul 2018 22:51:21 GMT
Expires: Sun, 15 Jul 2018 22:51:21 GMT
Etag: A0D281AAC018C84B67C7DC52834E6CFE90BCF91B
Cache-Control: max-age=449152,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp34
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9a2663fc385d6a7750361832372ac408
Sha1:   a0d281aac018c84b67c7dc52834e6cfe90bcf91b
Sha256: 5f456e82897e2da8ae64e00ba4bf4b794b45b309857417058118d936ed5148bd
                                        
                                            GET /ajax/libs/jquery/1.6.4/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 32222
Date: Mon, 02 Jul 2018 21:52:36 GMT
Expires: Tue, 02 Jul 2019 21:52:36 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 676972
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   32222
Md5:    a015b68cda88f520df0928508a54a7c0
Sha1:   a848deb0d23d4d7d9284713d63c166b83224ef79
Sha256: cbbe607200143bcb0190054543cd723ec1317aac43ab5f03a291dc9ab6163074
                                        
                                            GET /ui/1.11.2/jquery-ui.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         205.185.208.52
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Tue, 10 Jul 2018 17:55:28 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 143891
Last-Modified: Fri, 24 Oct 2014 00:16:08 GMT
Server: nginx
Vary: Accept-Encoding
Etag: W/"54499a48-7296c"
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
X-HW: 1531245328.dop001.sk1.t,1531245328.cds046.sk1.c


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   143891
Md5:    b16c26534e05df2834c69fba35b073a0
Sha1:   5fbce9a8b255a80d81bc75c0b283648e45892898
Sha256: 7eb74a6bab695443b33a2c66445e5b2543c5b03e17179f3125f7c4eae902b350
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 10 Jul 2018 17:55:28 GMT
Server: Apache
Last-Modified: Tue, 10 Jul 2018 13:31:12 GMT
Expires: Tue, 17 Jul 2018 13:31:12 GMT
Etag: 0B386B27703A0C0A02E4ACA741ACF93ECD37EAA0
Cache-Control: max-age=588343,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp34
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e01401c35899313a72d4697ad80789e5
Sha1:   0b386b27703a0c0a02e4aca741acf93ecd37eaa0
Sha256: 069d1ecf0448ec1e2626497d09c3dbfa7c1ed20e5ff878f65c53517dc9d874d4
                                        
                                            GET /css?family=Lato:400,300,100,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Tue, 10 Jul 2018 17:55:28 GMT
Date: Tue, 10 Jul 2018 17:55:28 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   267
Md5:    c19afbae780ee2fe8eac1f4df92c4430
Sha1:   2ea8d0445eb1f296ee6cef2adda4df8c87b25f5c
Sha256: 4f4a041e6f1e1576d1e9ee6e41de110a32ece8633b52d9a31edcdfacf9d70b60
                                        
                                            GET /includes/domains/fn-available.js HTTP/1.1 
Host: my.freenom.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         52.51.75.102
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3
Date: Tue, 10 Jul 2018 17:55:28 GMT
Content-Length: 3274
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: no-cache="set-cookie"
Content-Encoding: gzip
Etag: "4738-52fd0319366c0-gzip"
Last-Modified: Wed, 06 Apr 2016 12:35:15 GMT
Set-Cookie: AWSELB=BB755F330E44FE27E970EAECFCC78F629EB1F82E68C017F5DB0928A2C28B92661A762BEECA6F13770100F9C73722798C3D57C651D372F6E3F013AAB976C41977BA4D0359C4;PATH=/
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3274
Md5:    03953330cebf856bbbbbc2cca2903aad
Sha1:   473eb6841d3fe8e2236cdff333d6561534f08cd7
Sha256: c9e483ae5483b33f06ca62651b9aae16e762a331c47606dc0f6f5ed292b8b0ca
                                        
                                            GET /external/jsrender.min.js HTTP/1.1 
Host: my.freenom.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         52.51.75.102
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.10.3
Date: Tue, 10 Jul 2018 17:55:28 GMT
Content-Length: 16069
Connection: keep-alive
x-amz-id-2: tXjc5WLIBrR+PViD6p/xztT9F0Y8zU7whYdJRvCuxckuOU1heSZe3KjrF13lYCnt5YnwIhToPzA=
x-amz-request-id: 88226FF7A14E8A23
Last-Modified: Wed, 16 Mar 2016 12:40:52 GMT
Etag: "36e17e14ff43dfd5349677522b3821a3"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with very long lines
Size:   16069
Md5:    36e17e14ff43dfd5349677522b3821a3
Sha1:   1eef675b40347067eefb8fd55e9b899fa9cd4216
Sha256: 5bf5e6b88eefc8f7ef5f4c00f9496657f3be732fd74c10a895d9a24c9a753e48
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ciuruci.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: JSESSIONID=2801D768B7A6EC1530B33E934F0020C2

                                         
                                         195.20.51.171
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Tue, 10 Jul 2018 17:55:30 GMT
Content-Length: 2048
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Server: f22b00a5bc2b
Cache-Control: no-cache


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   2048
Md5:    9d88adf1b48d0395e690bd17e5625851
Sha1:   1874190d30c93ca117b3b1d65f150be38ec55a56
Sha256: 817d5d40f1addc3a4247e62aaf58400a7a81830addc9692b2ba65dd5068f02c8
                                        
                                            GET /font-awesome/4.0.3/css/font-awesome.css HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Tue, 10 Jul 2018 17:55:30 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1518903977"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 4292
Last-Modified: Sat, 17 Feb 2018 21:46:17 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4292
Md5:    18902a41533d4e631e65a8d0c1f61282
Sha1:   c956a0dc434b90d06c2528b76c4e5273a30f9ac0
Sha256: 09b434cbaea55c0879a0598d4e3ae8b7ecd3a3a1edd8a995e600f4064ceb5454
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
If-Modified-Since: Fri, 03 Oct 2014 00:48:42 GMT

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Tue, 10 Jul 2018 17:30:53 GMT
Expires: Tue, 10 Jul 2018 19:30:53 GMT
Last-Modified: Fri, 18 May 2018 01:10:24 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14386
Cache-Control: public, max-age=7200
Age: 1477


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14386
Md5:    b3de885583a477d4e31568948d6bebd7
Sha1:   2ce8d853244dde551c41d5207d6f71c567bde8c6
Sha256: e1bb5aa555a0d875e2a67884ceaa0629e08994a8aabadc2fac5b6915793dbf75
                                        
                                            GET /r/collect?v=1&_v=j68&a=1603816789&t=pageview&_s=1&dl=http%3A%2F%2Fwww.dot.tk%2Fen%2Findex.html%3Flang%3Den&dr=http%3A%2F%2Fciuruci.gq%2Fhmh%2Foffice%2Fconfidential%2F365index365.php&ul=en-us&de=UTF-8&dt=Dot%20TK%20-%20Find%20a%20new%20FREE%20domain&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=1171707069&gjid=568080791&cid=396446211.1531245332&tid=UA-29857775-3&_gid=999542888.1531245332&_r=1&z=27619269 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Tue, 10 Jul 2018 17:55:31 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 10 Jul 2018 17:55:31 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    52f090b87dc4f6eaaba2e1e468529d9e
Sha1:   0027a3fd438b4810af745fe21ef2cb2ae75c2c5a
Sha256: 4ddd0fe0db24c0964f524495f344d9b0fc599bafdd274e7ebc975731dff1bd32
                                        
                                            GET /images.v2/034.jpg HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.11.9
Date: Tue, 10 Jul 2018 17:34:43 GMT
Content-Length: 559468
X-GUploader-UploadID: AEnB2UoCcivrfCMYSX-W0ZpUaguxdUyv7Y6vIyhRm9zP-opoA9SQLSFoq06Yp34v7ly29s07rHkGpnW9oHU8r9Kx1E3X5OYl_FKF84gpV5fV8ImYO6ffCWI
Expires: Tue, 10 Jul 2018 18:34:43 GMT
Last-Modified: Thu, 09 Jun 2016 11:36:49 GMT
Etag: "23cbf8752bbf0c7a8cb667ed90fbdb61"
x-goog-generation: 1465472209043000
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 559468
Content-Language: en
x-goog-hash: crc32c=qkTzsg==, md5=I8v4dSu/DHqMtmftkPvbYQ==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Cache-Control: max-age=3600,public
Age: 1248


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   559468
Md5:    23cbf8752bbf0c7a8cb667ed90fbdb61
Sha1:   42daa0df3df37a56cdd81ab65d95f4f87c99cdb0
Sha256: 15082025d9baf8d2858ddc0bfc9a53356c32289fe58a5c3c138edeb58b47d2fe
                                        
                                            GET /s/lato/v14/S6u9w4BMUTPHh7USSwiPHw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:400,300,100,700
Origin: http://www.dot.tk

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 29852
Date: Fri, 22 Jun 2018 15:25:04 GMT
Expires: Sat, 22 Jun 2019 15:25:04 GMT
Last-Modified: Wed, 11 Oct 2017 18:24:02 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1564227
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  data
Size:   29852
Md5:    ba2452bdc790a4fee05202eac3c092b3
Sha1:   6382414b3b2df2fb2946e09d5909e27afdadb7dd
Sha256: 8084a57f30a2d3d730b5d25b8d2ccb18369d90d333144231704418d555c20c0f
                                        
                                            GET /s/lato/v14/S6u9w4BMUTPHh6UVSwiPHw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:400,300,100,700
Origin: http://www.dot.tk

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 27848
Date: Wed, 27 Jun 2018 11:07:42 GMT
Expires: Thu, 27 Jun 2019 11:07:42 GMT
Last-Modified: Wed, 11 Oct 2017 18:24:05 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1147670
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  data
Size:   27848
Md5:    96759e32fdc800c78b527a3e53fe2be6
Sha1:   e12403cfe60f852a8fbbe05d84d58d33c6c2a6b9
Sha256: 60c05ee47e768315541e487d11b92eec54a7f5336f84cecc8b5825c87bb70053
                                        
                                            GET /font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css
Origin: http://www.dot.tk

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Tue, 10 Jul 2018 17:55:32 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1518903988"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 44433
Last-Modified: Sat, 17 Feb 2018 21:46:28 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   44433
Md5:    122359bdfee05a5b4ce0f19b244e85bb
Sha1:   35d57f1553391ddfdb1525ffd37ca902f79d2d7e
Sha256: 3e8f404d881f687fdcc53a1a7f8c59d3bdfa201c14e3d8470fb55eb99c4fdc4a
                                        
                                            GET /s/lato/v14/S6uyw4BMUTPHjx4wWA.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:400,300,100,700
Origin: http://www.dot.tk

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 28412
Date: Mon, 02 Jul 2018 18:34:38 GMT
Expires: Tue, 02 Jul 2019 18:34:38 GMT
Last-Modified: Wed, 11 Oct 2017 18:23:15 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 688854
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  data
Size:   28412
Md5:    62fb51e9e645f63599238881b9de15dd
Sha1:   82b144e3c8b4ff40aeca34ddf7bc35985311b90e
Sha256: 5aeb07f9980663c2501c9620371e11ae7aa6e320d94dd753d0ef56d8308c74b3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en; _ga=GA1.2.396446211.1531245332; _gid=GA1.2.999542888.1531245332; _gat=1

                                         
                                         35.186.233.234
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.11.9
Date: Tue, 10 Jul 2018 17:55:32 GMT
Content-Length: 185
Location: http://www.dot.tk/
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text
Size:   185
Md5:    d1c1428bc0662ffe1841e05e006406f8
Sha1:   d78d57d3ef1731a52e3ca18e385980e3c5e9bdf1
Sha256: d93ecffa2aa7610bc7b83d9f7e0fa1f486055e8fb5751d9073058d60d8d16063
                                        
                                            GET / HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en; _ga=GA1.2.396446211.1531245332; _gid=GA1.2.999542888.1531245332; _gat=1

                                         
                                         35.186.233.234
HTTP/1.1 302 Found
                                        
Server: nginx/1.11.9
Transfer-Encoding: chunked
Set-Cookie: mydottk_languagenr=0; domain=.dot.tk; path=/; expires=Wed, 11-Jul-2018 17:55:32 GMT dottyLn=en; domain=.dot.tk; path=/; expires=Wed, 11-Jul-2018 17:55:32 GMT wwwLn=en; domain=.dot.tk; path=/; expires=Wed, 11-Jul-2018 17:55:32 GMT
Date: Tue, 10 Jul 2018 17:55:32 GMT
Location: http://www.dot.tk/en/index.html?lang=en
Via: 1.1 google


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en; _ga=GA1.2.396446211.1531245332; _gid=GA1.2.999542888.1531245332; _gat=1

                                         
                                         35.186.233.234
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.11.9
Date: Tue, 10 Jul 2018 17:55:35 GMT
Content-Length: 185
Location: http://www.dot.tk/
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text
Size:   185
Md5:    d1c1428bc0662ffe1841e05e006406f8
Sha1:   d78d57d3ef1731a52e3ca18e385980e3c5e9bdf1
Sha256: d93ecffa2aa7610bc7b83d9f7e0fa1f486055e8fb5751d9073058d60d8d16063
                                        
                                            GET / HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en; _ga=GA1.2.396446211.1531245332; _gid=GA1.2.999542888.1531245332; _gat=1

                                         
                                         35.186.233.234
HTTP/1.1 302 Found
                                        
Server: nginx/1.11.9
Transfer-Encoding: chunked
Set-Cookie: mydottk_languagenr=0; domain=.dot.tk; path=/; expires=Wed, 11-Jul-2018 17:55:35 GMT dottyLn=en; domain=.dot.tk; path=/; expires=Wed, 11-Jul-2018 17:55:35 GMT wwwLn=en; domain=.dot.tk; path=/; expires=Wed, 11-Jul-2018 17:55:35 GMT
Date: Tue, 10 Jul 2018 17:55:35 GMT
Location: http://www.dot.tk/en/index.html?lang=en
Via: 1.1 google


--- Additional Info ---