Overview

URL bit.ly/2sP7jxK
IP67.199.248.10
ASNAS3257 Tinet SpA
Location United States
Report completed2017-07-13 15:30:32 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-07-13 2 money.ynlanta.cn/ Phishing
2017-07-13 2 money.ynlanta.cn/lndex.php Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 67.199.248.10

Date UQ / IDS / BL URL IP
2017-10-17 22:59:23 +0200
0 - 0 - 0 bit.ly/2wOiGIj 67.199.248.10
2017-10-17 22:51:36 +0200
0 - 0 - 0 bit.ly/lxurwz 67.199.248.10
2017-10-17 20:39:05 +0200
0 - 0 - 0 bit.ly/2g2FugB 67.199.248.10
2017-10-17 19:46:45 +0200
1 - 0 - 0 bit.ly/2g00KU4 67.199.248.10
2017-10-17 18:55:33 +0200
0 - 0 - 0 bit.ly/2ycAWPo 67.199.248.10
2017-10-17 15:36:29 +0200
0 - 0 - 0 bit.ly/2hDc3Sz 67.199.248.10
2017-10-17 14:54:13 +0200
0 - 0 - 1 bit.ly/2y3pOUM 67.199.248.10
2017-10-17 14:43:25 +0200
0 - 0 - 2 bit.ly/2hBJmWf 67.199.248.10
2017-10-17 12:59:00 +0200
0 - 0 - 0 bit.ly/2hCNKEq 67.199.248.10
2017-10-17 10:59:53 +0200
0 - 0 - 0 bit.ly/2kFUMNB 67.199.248.10

Last 10 reports on ASN: AS3257 Tinet SpA

Date UQ / IDS / BL URL IP
2017-10-17 23:51:59 +0200
0 - 0 - 0 slate.me 67.199.248.12
2017-10-17 23:46:42 +0200
0 - 0 - 2 https://www.sendspace.com/file/jamktb 69.31.136.5
2017-10-17 23:09:59 +0200
0 - 0 - 0 bit.ly/RHCP100717 67.199.248.11
2017-10-17 22:59:23 +0200
0 - 0 - 0 bit.ly/2wOiGIj 67.199.248.10
2017-10-17 22:51:36 +0200
0 - 0 - 0 bit.ly/lxurwz 67.199.248.10
2017-10-17 22:45:16 +0200
0 - 0 - 4 bit.ly/2zaUiSF 67.199.248.11
2017-10-17 22:10:59 +0200
0 - 0 - 0 log.outbrain.com/loggerServices 64.202.112.28
2017-10-17 21:16:50 +0200
0 - 0 - 1 bit.ly/2ljuvUZ 67.199.248.11
2017-10-17 20:46:12 +0200
0 - 0 - 0 https://letsencrypt.org/repository/0 23.13.244.208
2017-10-17 20:39:05 +0200
0 - 0 - 0 bit.ly/2g2FugB 67.199.248.10

Last 10 reports on domain: bit.ly

Date UQ / IDS / BL URL IP
2017-10-17 23:09:59 +0200
0 - 0 - 0 bit.ly/RHCP100717 67.199.248.11
2017-10-17 22:59:23 +0200
0 - 0 - 0 bit.ly/2wOiGIj 67.199.248.10
2017-10-17 22:51:36 +0200
0 - 0 - 0 bit.ly/lxurwz 67.199.248.10
2017-10-17 22:45:16 +0200
0 - 0 - 4 bit.ly/2zaUiSF 67.199.248.11
2017-10-17 21:16:50 +0200
0 - 0 - 1 bit.ly/2ljuvUZ 67.199.248.11
2017-10-17 20:39:05 +0200
0 - 0 - 0 bit.ly/2g2FugB 67.199.248.10
2017-10-17 20:05:03 +0200
0 - 0 - 0 bit.ly/2idL9F3 67.199.248.11
2017-10-17 19:46:45 +0200
1 - 0 - 0 bit.ly/2g00KU4 67.199.248.10
2017-10-17 19:37:01 +0200
0 - 0 - 0 bit.ly/2yGosjP 67.199.248.11
2017-10-17 19:32:30 +0200
0 - 0 - 0 https://bit.ly/2gI7HtR 67.199.248.11


JavaScript

Executed Scripts (16)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (41)


Request Response
                                        
                                            GET /2sP7jxK HTTP/1.1 
Host: bit.ly
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         67.199.248.11
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:07:51 GMT
Content-Length: 117
Connection: keep-alive
Cache-Control: private, max-age=90
Location: http://rudecen001.ru/?wsegvjuy
Set-Cookie: _bit=h6dd7P-badc259a36684e0428-00W; Domain=bit.ly; Expires=Tue, 09 Jan 2018 13:07:51 GMT


--- Additional Info ---
Magic:  HTML document text
Size:   117
Md5:    2703ddfa5d8962487c102e96038cea81
Sha1:   dccf1ce8863e1be6b3a7c3716d5a89053b78d66b
Sha256: db3191c19a7888549db0368bce4fa392657889b5aebee5a39068ddf0e70f0331
                                        
                                            GET /?wsegvjuy HTTP/1.1 
Host: rudecen001.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         89.111.167.3
HTTP/1.1 200 OK
Content-Type: text/html; charset=cp1251
                                        
Server: nginx/0.6.32
Date: Thu, 13 Jul 2017 13:07:52 GMT
Connection: keep-alive
X-Powered-By: PHP/5.2.6
Set-Cookie: whitex=efcb9d72a38457fec0fd337f5d23e96c; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 196


--- Additional Info ---
Magic:  HTML document text
Size:   196
Md5:    313daa22f6145f3b72fdbe4011a80e1a
Sha1:   242a04d68a08c4bf6d829e3452187e4ec1209f53
Sha256: ff208ddb9770a1ac2a4fb528027e498b6b97ef1a0d4d0e5824d3adeac1d7fe8c
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: rudecen001.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: whitex=efcb9d72a38457fec0fd337f5d23e96c

                                         
                                         89.111.167.3
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=cp1251
                                        
Server: nginx/0.6.32
Date: Thu, 13 Jul 2017 13:07:52 GMT
Connection: keep-alive
X-Powered-By: PHP/5.2.6
Content-Length: 997


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   997
Md5:    f7f0887a9072ef3ef0631eaa89158400
Sha1:   a19f31e18f4a3e397b65f740f76d7f587e13db8c
Sha256: 232d2dcf2f0c8ff848770c3984b248f89ae7ab09136765d26d10a3fb3507f0bd
                                        
                                            GET / HTTP/1.1 
Host: money.ynlanta.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         171.35.182.14
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:08:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.5.38
Set-Cookie: userID=7cba22bac6c0efeccc45970c899862ce; expires=Sat, 12-Aug-2017 13:07:53 GMT; Max-Age=2592000 guestID=8a539a69c9ead565a4f27266b48d8cb5
X-Frame-Options: sameorigin
Location: /lndex.php


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: rudecen001.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: whitex=efcb9d72a38457fec0fd337f5d23e96c

                                         
                                         89.111.167.3
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=cp1251
                                        
Server: nginx/0.6.32
Date: Thu, 13 Jul 2017 13:07:55 GMT
Connection: keep-alive
X-Powered-By: PHP/5.2.6
Content-Length: 997


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   997
Md5:    f7f0887a9072ef3ef0631eaa89158400
Sha1:   a19f31e18f4a3e397b65f740f76d7f587e13db8c
Sha256: 232d2dcf2f0c8ff848770c3984b248f89ae7ab09136765d26d10a3fb3507f0bd
                                        
                                            GET /lndex.php HTTP/1.1 
Host: money.ynlanta.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: userID=7cba22bac6c0efeccc45970c899862ce; guestID=8a539a69c9ead565a4f27266b48d8cb5

                                         
                                         171.35.182.14
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:08:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.5.38
X-Frame-Options: sameorigin
Location: https://robingood.name/?aff_id=1&aff_sub=8a539a69c9ead565a4f27266b48d8cb5&params=YWR2ZXJ0Og==


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 13 Jul 2017 13:07:55 GMT
Server: Apache
Last-Modified: Mon, 10 Jul 2017 13:05:54 GMT
Expires: Mon, 17 Jul 2017 13:05:54 GMT
Etag: DD5AC2DD0313E6925E721FB9C027B012C5C99B8F
Cache-Control: max-age=344878,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp5
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    1453800497b414b7c873f6b65b0de08b
Sha1:   dd5ac2dd0313e6925e721fb9c027b012c5c99b8f
Sha256: d25ea82eb9d83ae40f454be9ef10f852a715f00baa72ced4aead40b8570a74e0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 13 Jul 2017 13:07:56 GMT
Server: Apache
Last-Modified: Wed, 12 Jul 2017 10:05:35 GMT
Expires: Wed, 19 Jul 2017 10:05:35 GMT
Etag: 45B69569F7EDC016C4D2F3BE83863CD65A7F4CF6
Cache-Control: max-age=506858,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp10
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    90474027e0387ca54263855d775ef504
Sha1:   45b69569f7edc016c4d2f3be83863cd65a7f4cf6
Sha256: 47936db5f89a81a3f6cbf9f1c490f15351714e1f32551c76bff5abaf35c53882
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 13 Jul 2017 13:07:56 GMT
Server: Apache
Last-Modified: Wed, 12 Jul 2017 10:05:35 GMT
Expires: Wed, 19 Jul 2017 10:05:35 GMT
Etag: A28CFA0502682FBF7A344B2D6E8D91FE05CBA669
Cache-Control: max-age=506858,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp10
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    35b22190f89fbd45c764ddbdd8549492
Sha1:   a28cfa0502682fbf7a344b2d6e8d91fe05cba669
Sha256: 15cf134820069980d847db27009b77ab06cc87f533bc53a3ff43d13319b88c60
                                        
                                            GET /?aff_id=1&aff_sub=8a539a69c9ead565a4f27266b48d8cb5&params=YWR2ZXJ0Og== HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         93.189.43.24
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.45
Set-Cookie: aff_id=1; expires=Sat, 12-Aug-2017 13:07:56 GMT aff_sub=8a539a69c9ead565a4f27266b48d8cb5; expires=Sat, 12-Aug-2017 13:07:56 GMT params=YWR2ZXJ0Og%3D%3D; expires=Sun, 13-Aug-2017 13:07:56 GMT
Location: /


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.45
X-Frame-Options: sameorigin
Set-Cookie: wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   18268
Md5:    47d2429f331dce3ab5f37e137a298f33
Sha1:   2cc2e6cf036fcdc0bcd46ca3a6e47d02c5acd00b
Sha256: 29601b4e1949d00bc49fc775afa85375b3ca3917b874194666ec9f60ca861c88
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 13 Jul 2017 13:07:58 GMT
Server: Apache
Last-Modified: Tue, 11 Jul 2017 12:04:41 GMT
Expires: Tue, 18 Jul 2017 12:04:41 GMT
Etag: 485881FF780B662ABC1340EDDF09CCE737EBB151
Cache-Control: max-age=427602,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp10
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f3cc5e37abd3e2830f4d483a4ef72d8c
Sha1:   485881ff780b662abc1340eddf09cce737ebb151
Sha256: 5bc69cc6f16e8ddd1195291e07e38e3e01a859ea72746e7f88e72aa8fd76f8dc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Thu, 13 Jul 2017 13:07:58 GMT
Etag: "59673461-1d7"
Expires: Thu, 20 Jul 2017 01:07:58 GMT
Last-Modified: Thu, 13 Jul 2017 08:50:41 GMT
Server: ECS (arn/469D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    8742e4d6c6e79aa7a76c4439734d66f3
Sha1:   e0cc50e1f8c26758b5029eb70a4cfcccd7b7423a
Sha256: 7bf465bce987d2add804a369550c72f48b9108127a3101205981a248c4e59977
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Thu, 13 Jul 2017 13:07:58 GMT
Etag: "59671152-1d7"
Expires: Thu, 20 Jul 2017 01:07:58 GMT
Last-Modified: Thu, 13 Jul 2017 06:21:06 GMT
Server: ECS (arn/459D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a73dc082952dce5e2367c85886c5b728
Sha1:   78e08959b16151bdcfa1ce0ab1f4dd3010d1ba59
Sha256: e0058d50d3497d718535df1092cef1d28bd4930854df752795a411a7440f3443
                                        
                                            GET /impression/48253dc5ee325b693e58455279df3f42?source=robin&aff_sub1=reg HTTP/1.1 
Host: pxl.leads.su
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/

                                         
                                         46.4.145.177
HTTP/1.1 301 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:07:58 GMT
Transfer-Encoding: chunked
Connection: close
Set-Cookie: session-impression-60=x%2By1uVurjQb4qrcI4AMxc2zTynLsxtQnqYfleIw87nHhEBhp9tUAsYmTOWNfAt1RnWwznRLCnE0jLUi9oijVQe1C4Izpd5ljhfF7vaJ4JASq%2FauxspGc0w0X7qR3kZFjKGO6dlyN1zUyWyFnbuZevVxlXYc03bOMBqr51fesOlWFCqR8UWMK2VyIrPturO7JrDaOJBOI4JX0WMTzlKourkgpdRvN5p%2FApTE3YtKvLRSV1Alj%2FnP9JTGOH6e7ZCX5IFMQFUAh9%2Bj4W3a0Q%2B0hL1RGfXj0xW2RvI7YRs%2FU6QwyD5kNsMr%2BO42N3BKYpylNDWppowNE89qsdqAhsmUdQA%3D%3D; expires=Thu, 07-Sep-2017 13:07:58 GMT; Max-Age=4838400; path=/; httponly
Cache-Control: no-cache, no-store, must-revalidate
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Pragma: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Location: https://s3-eu-west-1.amazonaws.com/resources.l20162016/60/16407/a5b4150de913de7c84d4562edd069997.gif


--- Additional Info ---
                                        
                                            GET /js.leads.su/ad.js HTTP/1.1 
Host: s3-eu-west-1.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/

                                         
                                         54.231.131.59
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
x-amz-id-2: Z0OYA7px7rbtc3sjYa0VA6GFrm9ktfSafoH0apqF1jFOOfMn5M/ZDRDrmvJJTTq3jvzBURyBtCQ=
x-amz-request-id: EB630C18D0FE7777
Date: Thu, 13 Jul 2017 13:07:59 GMT
Last-Modified: Wed, 12 Jul 2017 09:51:22 GMT
Etag: "fd96272bf2da0a1654f5bb1834dff9ed"
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Length: 669
Server: AmazonS3


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   669
Md5:    fd96272bf2da0a1654f5bb1834dff9ed
Sha1:   c95cf0ab03b312d9c7df3a501d5f5eed81b53d4c
Sha256: da43e9ba6ec303796bdf069c5acca75af67a6ebaaa6192aaa7a6b8278aca518f
                                        
                                            GET /data/robin/js/jquery.countdown360.min.js HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:36 GMT
Content-Length: 10400
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2016 11:13:33 GMT
Etag: "5824565d-28a0"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   10400
Md5:    fd93c0ab6f8fb69bd591de350096b655
Sha1:   3e1a7476b386488eb5625ce39fb7219f38fc0d93
Sha256: 48f7ecdf89b94cd3388d53be8c81754fd2739fbcef462d5c21df6de153290c15
                                        
                                            GET /data/robin/js/main.js HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:36 GMT
Content-Length: 4498
Connection: keep-alive
Last-Modified: Wed, 26 Apr 2017 15:13:53 GMT
Etag: "5900b931-1192"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines, with CRLF line terminators
Size:   4498
Md5:    1d96e1d31306504455332427e1cee96f
Sha1:   1b839935f580e87c49f5aa4904480d8195ac0f27
Sha256: aed50004d757a4718bd4f0705900703efadcaeced718d588ed51e4a3ad99bd90
                                        
                                            GET /data/robin/stylesheets/selectbox.css HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:36 GMT
Content-Length: 1592
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2016 04:37:15 GMT
Etag: "5822a7fb-638"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII assembler program text, with CRLF line terminators
Size:   1592
Md5:    b4c9c0e41725b943609fcf06129ded49
Sha1:   377f1a2e8c968906c41bbe8c490772bcc2664c50
Sha256: 52ea68dff8420a1175b7b1f063b738ef4bac94a47be0b05aadb15687a46a760c
                                        
                                            GET /resources.l20162016/60/16407/a5b4150de913de7c84d4562edd069997.gif HTTP/1.1 
Host: s3-eu-west-1.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/

                                         
                                         54.231.131.59
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: wGuHUk5HKjq/QnvM0y3bnJAGTEdBWRnQ10BVFG/9CDqtGVJm5ECIwjqr98OiBotpsKQuu33tV24=
x-amz-request-id: DF192E73768B299F
Date: Thu, 13 Jul 2017 13:07:59 GMT
Last-Modified: Mon, 11 Apr 2016 18:13:47 GMT
Etag: "12eb5e02f246e40b1ba7514895c851d4"
Accept-Ranges: bytes
Content-Length: 50800
Server: AmazonS3


--- Additional Info ---
Magic:  GIF image data, version 89a, 160 x 600
Size:   50800
Md5:    12eb5e02f246e40b1ba7514895c851d4
Sha1:   cca2763f72d120fe3fc98bb6aad302a37256d751
Sha256: 874734ccf1c053356a05f853a222e7d53e94ac7311a0468888a15f20c8132e2a
                                        
                                            GET /data/robin/stylesheets/main.css HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:36 GMT
Content-Length: 30625
Connection: keep-alive
Last-Modified: Mon, 20 Mar 2017 13:14:28 GMT
Etag: "58cfd5b4-77a1"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   30625
Md5:    0b6d69f70d83487cf232d16057697b10
Sha1:   4e4301ae2e0dc11e3237578b97f27d2b3b25164a
Sha256: cc04ed5589fdc5d520b488d3bfce3793b2efd7421153acc25a038d762837c986
                                        
                                            GET /data/robin/js/reg.js HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:36 GMT
Content-Length: 220
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2016 10:26:11 GMT
Etag: "583811c3-dc"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   220
Md5:    dce0bdac4a03fdd7a52dabc99a95ca28
Sha1:   daa5e4b86cbb9130b59fa71af60bc86009d5a678
Sha256: 4a5c0f7c812482ad5af6b15951d918964fa6672f83e8bfc859281c59e4e43347
                                        
                                            GET /data/robin/img/logo.png HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:36 GMT
Content-Length: 8468
Connection: keep-alive
Last-Modified: Tue, 01 Nov 2016 07:21:04 GMT
Etag: "58184260-2114"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 110 x 93, 8-bit/color RGBA, non-interlaced
Size:   8468
Md5:    f3f291194c006ce8aad5bc803defb741
Sha1:   236b7dac4e6a5c6a5917e13c7c21fdc97446f58c
Sha256: 1e56fb0df52dfcd34a583a077fd4279020ec929d111cee73575a808a850a34c0
                                        
                                            GET /data/robin/js/jquery.bxslider.js HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:36 GMT
Content-Length: 49471
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2016 10:59:46 GMT
Etag: "582edf22-c13f"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII English text
Size:   49471
Md5:    8fe4c71995e4887a26dbf8a946e3dc27
Sha1:   4a6066883e53f60f4b03e8dd07fb1432b11af462
Sha256: 9ccfd5f5b24894c159994ffbb33f7f43f3baff3d282bc7eb98ace627408b9e23
                                        
                                            GET /captcha.php HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.45
Set-Cookie: PHPSESSID=gvejrv35klnf8sib92ni46nab1; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache


--- Additional Info ---
Magic:  GIF image data, version 87a, 100 x 60
Size:   3541
Md5:    9342422455335635e540675f761e193e
Sha1:   c1209b4bb6a37f65173d9b2079b071b6649e5dec
Sha256: 07f1a84cc53e429cf5818a7fad832b0a1be170fbb7fdf0eaabaa717de36fa612
                                        
                                            GET /data/robin/js/jquery.selectbox.min.js HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:37 GMT
Content-Length: 3391
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2016 19:13:54 GMT
Etag: "581a3af2-d3f"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C program text, with very long lines, with CRLF line terminators
Size:   3391
Md5:    2e5362144da1bf20b0a28eb5890dbf58
Sha1:   1302e55375e49ab96389b9c7fc9b204999165915
Sha256: 46d8baeda54adbcaf4a3313f7b8d08a5ea74ea286b73188d4bb61a3ceb7944c4
                                        
                                            GET /data/robin/js/jquery.js HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:36 GMT
Content-Length: 95788
Connection: keep-alive
Last-Modified: Tue, 01 Nov 2016 12:50:48 GMT
Etag: "58188fa8-1762c"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   95788
Md5:    ee092541bc79668e3e0a7b76d2faf00c
Sha1:   464511ce4755e3c6acda7c719f27265805142c47
Sha256: 87981e8062814ca279922ee55276ad14bbdc29649f98e34b2d83c3afb5052a51
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 13 Jul 2017 13:08:00 GMT
Expires: Mon, 17 Jul 2017 13:08:00 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    9b7c5f69100e55758a6ff668eb417be0
Sha1:   79fd86c9ffc89cb3d085a84670a60d10d1e3abcb
Sha256: 6c3c2f62f6b53f747edcc92b680fdbc6fedeb214d809ea0b09ea248836abe036
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=378127, public, no-transform, must-revalidate
Last-Modified: Mon, 10 Jul 2017 22:08:13 GMT
Expires: Mon, 17 Jul 2017 22:08:13 GMT
Date: Thu, 13 Jul 2017 13:08:01 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    089586e87712f05e80742cf16dfc39c1
Sha1:   6460fe0ddb3c0c7728687fe4b45db10499e997bb
Sha256: e524471b9d1ade377ed3981b7174965a35d9877387c02a953100fa3de54ed890
                                        
                                            GET /data/robin/img/icon-s0c44be7a68.png HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/data/robin/stylesheets/main.css
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D; PHPSESSID=gvejrv35klnf8sib92ni46nab1

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:38 GMT
Content-Length: 6194
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2016 09:01:52 GMT
Etag: "58340980-1832"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 100 x 334, 8-bit/color RGBA, non-interlaced
Size:   6194
Md5:    cb5b180c3caa674b2985df0242ccf042
Sha1:   568de9a6386704084a9773d7f0b721afc9ca4a14
Sha256: 049355507575021134b0c0a8d8d51d3e0f161373af7e846324413aa5bcdf5257
                                        
                                            GET /data/robin/img/bg-big.jpg HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/data/robin/stylesheets/main.css
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D; PHPSESSID=gvejrv35klnf8sib92ni46nab1

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:38 GMT
Content-Length: 31205
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2016 16:13:40 GMT
Etag: "581a10b4-79e5"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   31205
Md5:    aaeb7f59b3230651b95ae8c9022bccd2
Sha1:   6df54552217b6dbdb23d5246688c907a5f764b1a
Sha256: 1c80bfc8d3a018dfb9a05f8b681cfd5dd847b8236992f10432e8f28052b799d2
                                        
                                            GET /impression/48253dc5ee325b693e58455279df3f42?source=robin&aff_sub1=reg HTTP/1.1 
Host: pxl.leads.su
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/
Cookie: session-impression-60=x%2By1uVurjQb4qrcI4AMxc2zTynLsxtQnqYfleIw87nHhEBhp9tUAsYmTOWNfAt1RnWwznRLCnE0jLUi9oijVQe1C4Izpd5ljhfF7vaJ4JASq%2FauxspGc0w0X7qR3kZFjKGO6dlyN1zUyWyFnbuZevVxlXYc03bOMBqr51fesOlWFCqR8UWMK2VyIrPturO7JrDaOJBOI4JX0WMTzlKourkgpdRvN5p%2FApTE3YtKvLRSV1Alj%2FnP9JTGOH6e7ZCX5IFMQFUAh9%2Bj4W3a0Q%2B0hL1RGfXj0xW2RvI7YRs%2FU6QwyD5kNsMr%2BO42N3BKYpylNDWppowNE89qsdqAhsmUdQA%3D%3D

                                         
                                         46.4.145.177
HTTP/1.1 301 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:08:01 GMT
Transfer-Encoding: chunked
Connection: close
Set-Cookie: session-impression-60=lo%2FRrxpwZZZ6DKGl6q7wUiDtYjC4SjrnVn3FaEuWyki7zSOx4v1LqXk%2BoBF138QQKgg65Xhu2HUJC4aAu8X97lypYvl5e%2BDLaiyKj1gnDS48C0tTNhrODiENa%2B7JFl3q8OzR1Sy2w0YtHNVI4Xy11zfGWeFg4q81XVjVm25%2BKbGCCmGxrz8pHz%2BS9wyTWLM8dgw%2FMyZ4L7Qt%2FKKYvb1VWC6YxhEaGFT3AakPlkMNtcZCCJCIBrVKVmYJCwa2cK%2BJhXq%2FF4qWq1BGuASLCmcygDPOPl8Zy5TOfbRVzozDM4VAxmJUykPr7R0ZfX3FpfnOYFAD7POXaIq%2Fe%2BfbpFemsA%3D%3D; expires=Thu, 07-Sep-2017 13:08:01 GMT; Max-Age=4838400; path=/; httponly
Cache-Control: no-cache, no-store, must-revalidate
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Pragma: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Location: https://s3-eu-west-1.amazonaws.com/resources.l20162016/60/16407/a5b4150de913de7c84d4562edd069997.gif


--- Additional Info ---
                                        
                                            GET /data/robin/img/favicon.ico HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D; PHPSESSID=gvejrv35klnf8sib92ni46nab1

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:39 GMT
Content-Length: 1364
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2016 13:05:42 GMT
Etag: "5821cda6-554"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGB, non-interlaced
Size:   1364
Md5:    ac6ca23741d6b0d833b2ab8791ad39b7
Sha1:   de343310b4dfcec95b8b1e06c9136ded3bf6c0d2
Sha256: 5795e4e3b016a06bcae96e9e97b469ed8dfc4be77b0dd91a138fa1f3a9ceb9c3
                                        
                                            GET /embed/iSuyrXMtkKY?rel=0&showinfo=0 HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block; report=https://www.google.com/appserve/security-bugs/log/youtube
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
Expires: Tue, 27 Apr 1971 19:44:06 EST
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Date: Thu, 13 Jul 2017 13:08:01 GMT
Server: YouTubeFrontEnd
Set-Cookie: VISITOR_INFO1_LIVE=GMIXBZWZoE4; path=/; domain=.youtube.com; expires=Wed, 14-Mar-2018 01:01:01 GMT; httponly PREF=f1=50000000; path=/; domain=.youtube.com; expires=Wed, 14-Mar-2018 01:01:01 GMT VISITOR_INFO1_LIVE=GMIXBZWZoE4; path=/; domain=.youtube.com; expires=Wed, 14-Mar-2018 01:01:01 GMT; httponly YSC=MjGYmty5kc4; path=/; domain=.youtube.com; httponly
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   13278
Md5:    af8c3b98b990b90b60a01af5b6ce8697
Sha1:   ce075ce4fc6aab1ddb3b58f960dca61f3155438f
Sha256: 6dcb7ed0d7627e0ee077df0723007afe71792c070829c86a6f6cf788f32d9a85
                                        
                                            GET /yts/cssbin/www-embed-player-vflKhwAh-.css HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.youtube.com/embed/iSuyrXMtkKY?rel=0&showinfo=0
Cookie: VISITOR_INFO1_LIVE=GMIXBZWZoE4; PREF=f1=50000000; YSC=MjGYmty5kc4

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Timing-Allow-Origin: https://www.youtube.com
Content-Length: 44106
Date: Tue, 11 Jul 2017 10:24:25 GMT
Expires: Wed, 11 Jul 2018 10:24:25 GMT
Last-Modified: Tue, 11 Jul 2017 09:15:06 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 182616
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   44106
Md5:    85b5e8686d603d01a854e54038ce48c0
Sha1:   4b96b574ddfda3d72a78811273ab328b6ba4023c
Sha256: 65b32e3397f5e52cb26047fc8160885ddee0ba8f2f2233bcbdac7c40e2a6c27c
                                        
                                            GET /yts/jsbin/www-embed-player-vfljro04c/www-embed-player.js HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.youtube.com/embed/iSuyrXMtkKY?rel=0&showinfo=0
Cookie: VISITOR_INFO1_LIVE=GMIXBZWZoE4; PREF=f1=50000000; YSC=MjGYmty5kc4

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Timing-Allow-Origin: https://www.youtube.com
Content-Length: 31873
Date: Thu, 13 Jul 2017 01:06:52 GMT
Expires: Fri, 21 Jul 2017 01:06:52 GMT
Last-Modified: Wed, 12 Jul 2017 20:47:30 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=691200
Age: 43269
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   31873
Md5:    c7002b9b95e00a41e5e105ffc3745815
Sha1:   9940e8b875d381a9f0d7b3630ca75bd536a18216
Sha256: 77c27f2ada8ce50a6574228f00c5f6f50c4c941599007a7394093b4cf9474d1e
                                        
                                            GET /data/robin/fonts/SignaSlabPro-Black.otf HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/data/robin/stylesheets/main.css
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D; PHPSESSID=gvejrv35klnf8sib92ni46nab1

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:38 GMT
Content-Length: 117944
Connection: keep-alive
Last-Modified: Wed, 27 Feb 2013 21:46:42 GMT
Etag: "512e7ec2-1ccb8"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  OpenType font data
Size:   117944
Md5:    1a3e92e929d423cfeaaa501163ed7bb2
Sha1:   73dcf5d081b0bb68c1b6e62779d5a9111872534a
Sha256: dfd21c0ce504db13262c77d4429ee6ae30eca92ffb1a2d432554a88011662774
                                        
                                            GET /s/roboto/v16/2UX7WLTfW3W8TclTUvlFyQ.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.youtube.com/embed/iSuyrXMtkKY?rel=0&showinfo=0
Origin: https://www.youtube.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18904
Date: Wed, 28 Jun 2017 22:29:58 GMT
Expires: Thu, 28 Jun 2018 22:29:58 GMT
Last-Modified: Mon, 17 Apr 2017 21:22:19 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1262284
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  data
Size:   18904
Md5:    a9fc51fd0214c75ee5953dda0f2a06a6
Sha1:   7a4ddb6733c33dfe9ec94c82a5e7f5da885f5182
Sha256: 8740f04a97202a2483d54a5781598c30cceac029a1522b6c5dd270250b9d1a17
                                        
                                            GET /yts/jsbin/player-vfl0FFFUT/en_US/base.js HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.youtube.com/embed/iSuyrXMtkKY?rel=0&showinfo=0
Cookie: VISITOR_INFO1_LIVE=GMIXBZWZoE4; PREF=f1=50000000; YSC=MjGYmty5kc4

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Timing-Allow-Origin: https://www.youtube.com
Content-Length: 423780
Date: Thu, 13 Jul 2017 01:06:52 GMT
Expires: Fri, 21 Jul 2017 01:06:52 GMT
Last-Modified: Wed, 12 Jul 2017 20:47:30 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=691200
Age: 43269
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   423780
Md5:    5ec9f3866f82c6940faae99ae1aa0ecd
Sha1:   3a5ba6041ff44004fadc09b2668175d1a022236d
Sha256: e9b518305261af2ff697933ff9e92c7217534775d4716d8359b75fdf30e44928
                                        
                                            GET /data/robin/fonts/RobotoSlab-Regular.ttf HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/data/robin/stylesheets/main.css
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D; PHPSESSID=gvejrv35klnf8sib92ni46nab1

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:38 GMT
Content-Length: 169064
Connection: keep-alive
Last-Modified: Tue, 09 Apr 2013 20:00:00 GMT
Etag: "51647340-29468"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  TrueType font data\012 raw G3 data, byte-padded
Size:   169064
Md5:    1ec06eed11bbcb1ee510b8f3522adea8
Sha1:   912895e6bb9e05af3a1e58a1da417e992a71a324
Sha256: 13aa5f54c6f2fa2e388fe0e675cdbcc6a81f6270a8bf9c03a5df8af9cb022810
                                        
                                            GET /data/robin/fonts/Roboto-Regular.ttf HTTP/1.1 
Host: robingood.name
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://robingood.name/data/robin/stylesheets/main.css
Cookie: aff_id=1; aff_sub=8a539a69c9ead565a4f27266b48d8cb5; params=YWR2ZXJ0Og%3D%3D; wons=%5B%2213457%22%2C%2213451%22%2C%2213466%22%2C%2213430%22%2C%2213461%22%2C%2213445%22%2C%2213434%22%2C%2213432%22%2C%2213446%22%2C%2213459%22%5D; PHPSESSID=gvejrv35klnf8sib92ni46nab1

                                         
                                         93.189.43.24
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 13 Jul 2017 13:03:38 GMT
Content-Length: 162876
Connection: keep-alive
Last-Modified: Sun, 25 Oct 2015 22:09:10 GMT
Etag: "562d5306-27c3c"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  TrueType font data\012 raw G3 data, byte-padded
Size:   162876
Md5:    ac3f799d5bbaf5196fab15ab8de8431c
Sha1:   cb0cb91a31f43293bd7042ddab945ce161c29d3d
Sha256: f0e5a21bf5c95e4c1bce2be98a3656ebcc6d42a21f41c4e3ebf69dd815702e54