Overview

URL camtobfines.gq/ktb
IP141.8.224.221
ASNAS40034 Confluence Networks Inc
Location Switzerland
Report completed2019-05-22 00:48:15 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-05-22 2 camtobfines.gq/ktb Phishing
2019-05-22 2 ww8.camtobfines.gq/ Phishing
2019-05-22 2 ww8.camtobfines.gq/ Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 141.8.224.221

Date UQ / IDS / BL URL IP
2019-06-10 20:43:16 +0200
0 - 0 - 2 serviceupdate-quotamail.ml/ztt 141.8.224.221
2019-06-10 20:36:58 +0200
0 - 1 - 2 rsikckakuk.ml/IlOysTgNjFrGtHtEAwVo/index.php 141.8.224.221
2019-06-10 20:26:39 +0200
0 - 0 - 2 sombreelkontre.gq/ztt 141.8.224.221
2019-06-10 19:25:21 +0200
0 - 0 - 2 moduloseguranca.ml/recadastramento/computador (...) 141.8.224.221
2019-06-10 19:25:20 +0200
0 - 1 - 2 moduloseguranca.ml/confirmar/index.html.php 141.8.224.221
2019-06-10 19:25:06 +0200
0 - 1 - 2 douglasxxlake.cf/ 141.8.224.221
2019-06-10 19:07:13 +0200
0 - 1 - 0 eghwiu.gq/ 141.8.224.221
2019-06-10 18:51:09 +0200
0 - 1 - 2 exclusively.ga/ 141.8.224.221
2019-06-10 18:33:57 +0200
0 - 0 - 1 paypal.com-resolve-update.cf/webapps/90f2a/home 141.8.224.221
2019-06-10 18:33:21 +0200
0 - 1 - 1 paypal.com-supports.gq/webapps/9062841/home 141.8.224.221

Last 10 reports on ASN: AS40034 Confluence Networks Inc

Date UQ / IDS / BL URL IP
2019-06-16 20:37:30 +0200
0 - 0 - 7 airpaccleantech.com/index.htm 208.91.199.52
2019-06-16 18:49:01 +0200
0 - 0 - 0 advocatetaxsolutions.com 204.11.56.48
2019-06-16 18:48:22 +0200
0 - 0 - 0 advocatetaxsolutions.com 204.11.56.48
2019-06-16 12:09:51 +0200
0 - 0 - 0 www.omsaiart.com 103.21.59.21
2019-06-16 01:17:31 +0200
0 - 0 - 0 bancamia.com.co 162.210.70.23
2019-06-15 11:02:11 +0200
0 - 0 - 0 https://binarytradingfactory.com/unlock-your- (...) 199.79.63.26
2019-06-15 10:53:27 +0200
0 - 0 - 0 https://fingerfry.com/ 103.50.163.157
2019-06-15 08:04:50 +0200
0 - 0 - 0 Hangouts.com 208.91.197.27
2019-06-15 07:30:19 +0200
0 - 0 - 0 https://supplementdevotee.com/yantra-manifest (...) 207.174.213.19
2019-06-15 07:24:43 +0200
0 - 0 - 0 https://doubtfreesupplements.com/trenorol-review/ 199.79.63.26

Last 10 reports on domain: camtobfines.gq

Date UQ / IDS / BL URL IP
2019-05-31 06:52:48 +0200
0 - 0 - 2 camtobfines.gq/tnn 141.8.224.221
2019-05-31 03:32:47 +0200
0 - 1 - 2 camtobfines.gq/inter 141.8.224.221
2019-05-31 02:41:34 +0200
0 - 1 - 2 camtobfines.gq/sitemap.html 141.8.224.221
2019-05-31 02:03:31 +0200
0 - 1 - 2 camtobfines.gq/ztt 141.8.224.221
2019-05-31 01:21:36 +0200
0 - 1 - 2 camtobfines.gq/shujuku 141.8.224.221
2019-04-07 20:01:29 +0200
0 - 0 - 3 camtobfines.gq/ 141.8.224.221
2019-03-30 20:03:06 +0100
0 - 0 - 2 www.camtobfines.gq/ 141.8.224.221
2019-03-30 02:51:57 +0100
0 - 0 - 2 camtobfines.gq/fzz 141.8.224.221
2019-03-30 00:37:52 +0100
0 - 0 - 2 camtobfines.gq/557 141.8.224.221
2019-03-29 20:23:25 +0100
0 - 0 - 2 camtobfines.gq/IlOysTgNjFrGtHtEAwVo/indexx.php 141.8.224.221


JavaScript

Executed Scripts (18)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (27)


Request Response
                                        
                                            GET /ktb HTTP/1.1 
Host: camtobfines.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         141.8.224.221
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 21 May 2019 22:47:41 GMT
Server: Apache
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKrfIMFkSaoTSqKmC+BrghK0CpDHc0MuVzmMHin8LIORhpXbped+iYhSnZurWnEO0zcKcVIrzp026LVc5pMB9bUCAwEAAQ==_FkzCUNm92Da0SohuLVUU1TGloXC6PeWfADnnWZuyyZW3KTLfMhUNTAjdfGYJerlvyKj9Z4jtnnBx9hxdPbjF0g==
Content-Length: 1667
Keep-Alive: timeout=5, max=118
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text
Size:   1667
Md5:    87a9dec1f56cfb3c9ab2b8236f9d8606
Sha1:   17855f6078160b109806e733bf64207ea09e5ec1
Sha256: 3775725c556d195aaeef7ae602388ee178447fcaf9f420147114730b7f0a1c02

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /?ga=o65K2BO8XjRCu1AZ8IVpsuNhP%2BBYnRz%2FW8tYo7CmHLL%2FzC4t4xh9QCWz1HotvZeYkQpqEJjGI1jR8sILLn2xzF0ZdyFkWuYz4m3Jzvt5wmhGRAPNJoIjD1kV3%2FdHoLkk9wLWJHVyWWRio%2FxATJBuM7wajwEHexdX4QQ%2B3jI38XY%3D&gerf=%2B4Fwzxwpo%2BG67HnWBTE0E01k2tncJ3pgimaKgYd5Etc%3D&guro=9xO4mDQ5wnqj7n5EB0ONLGNRFXDHeUgtuIZkfqQKhEiGSaxYCGxc9T8EOHUy4rGA& HTTP/1.1 
Host: camtobfines.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://camtobfines.gq/ktb
Cookie: isframesetenabled=1

                                         
                                         141.8.224.221
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 21 May 2019 22:47:41 GMT
Server: Apache
Expires: Mon, 22 Jul 2002 11:12:01 GMT
Cache-Control: private, no-cache
Pragma: no-cache
Content-Length: 726
Keep-Alive: timeout=5, max=119
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   726
Md5:    00b2bab65eac412897618dcfad10e60f
Sha1:   5a1692109ead2ccfa8a1dcab168a4dccb6d21118
Sha256: 16dba5d706faae6fc04a8e92b58519523997b1d7af815ecf3186b9636385debf
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: camtobfines.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: isframesetenabled=1

                                         
                                         141.8.224.221
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 21 May 2019 22:47:42 GMT
Server: Apache
Content-Length: 10
Keep-Alive: timeout=5, max=116
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   10
Md5:    6608dd3e21ca3beabd4bdfa625a0b221
Sha1:   e926d0f8694a4bc4013308afaca7af51e4c9fd9f
Sha256: c75eb01138771bfb2a5517aeae882356733782767c4560cc9601c34d2591ca75
                                        
                                            GET / HTTP/1.1 
Host: ww8.camtobfines.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://camtobfines.gq/?ga=o65K2BO8XjRCu1AZ8IVpsuNhP%2BBYnRz%2FW8tYo7CmHLL%2FzC4t4xh9QCWz1HotvZeYkQpqEJjGI1jR8sILLn2xzF0ZdyFkWuYz4m3Jzvt5wmhGRAPNJoIjD1kV3%2FdHoLkk9wLWJHVyWWRio%2FxATJBuM7wajwEHexdX4QQ%2B3jI38XY%3D&gerf=%2B4Fwzxwpo%2BG67HnWBTE0E01k2tncJ3pgimaKgYd5Etc%3D&guro=9xO4mDQ5wnqj7n5EB0ONLGNRFXDHeUgtuIZkfqQKhEiGSaxYCGxc9T8EOHUy4rGA&

                                         
                                         68.178.213.99
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 21 May 2019 22:47:43 GMT
Server: Apache
Set-Cookie: COOKIE=10.22.16.235.1558478863254586; path=/ referrer=http://camtobfines.gq/?ga=o65K2BO8XjRCu1AZ8IVpsuNhP%2BBYnRz%2FW8tYo7CmHLL%2FzC4t4xh9QCWz1HotvZeYkQpqEJjGI1jR8sILLn2xzF0ZdyFkWuYz4m3Jzvt5wmhGRAPNJoIjD1kV3%2FdHoLkk9wLWJHVyWWRio%2FxATJBuM7wajwEHexdX4QQ%2B3jI38XY%3D&gerf=%2B4Fwzxwpo%2BG67HnWBTE0E01k2tncJ3pgimaKgYd5Etc%3D&guro=9xO4mDQ5wnqj7n5EB0ONLGNRFXDHeUgtuIZkfqQKhEiGSaxYCGxc9T8EOHUy4rGA&; path=/ t=71d921807c1a11e99b18fa163e1a384a; path=/ referrer=http://camtobfines.gq/?ga=o65K2BO8XjRCu1AZ8IVpsuNhP%2BBYnRz%2FW8tYo7CmHLL%2FzC4t4xh9QCWz1HotvZeYkQpqEJjGI1jR8sILLn2xzF0ZdyFkWuYz4m3Jzvt5wmhGRAPNJoIjD1kV3%2FdHoLkk9wLWJHVyWWRio%2FxATJBuM7wajwEHexdX4QQ%2B3jI38XY%3D&gerf=%2B4Fwzxwpo%2BG67HnWBTE0E01k2tncJ3pgimaKgYd5Etc%3D&guro=9xO4mDQ5wnqj7n5EB0ONLGNRFXDHeUgtuIZkfqQKhEiGSaxYCGxc9T8EOHUy4rGA&; path=/ caf_last_page_url=http://ww8.camtobfines.gq/; path=/ caf_remotehost=10.22.16.235; path=/ caf_referrer=http://camtobfines.gq/?ga=o65K2BO8XjRCu1AZ8IVpsuNhP%2BBYnRz%2FW8tYo7CmHLL%2FzC4t4xh9QCWz1HotvZeYkQpqEJjGI1jR8sILLn2xzF0ZdyFkWuYz4m3Jzvt5wmhGRAPNJoIjD1kV3%2FdHoLkk9wLWJHVyWWRio%2FxATJBuM7wajwEHexdX4QQ%2B3jI38XY%3D&gerf=%2B4Fwzxwpo%2BG67HnWBTE0E01k2tncJ3pgimaKgYd5Etc%3D&guro=9xO4mDQ5wnqj7n5EB0ONLGNRFXDHeUgtuIZkfqQKhEiGSaxYCGxc9T8EOHUy4rGA&; path=/ caf_ipaddr=77.40.129.123; path=/ caf_geolocation=Norway; path=/ visitorxcamtobfines.gq=1 Template--camtobfines.gq=Simple2C; path=/ FeedProvider--camtobfines.gq=Google; path=/
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ==_dRiVqzJILtACVxitqwIkQqhLSqG5F+z04DHbbd8aNM2hOgVQPSrOmf6pwamySajItttT4mPh2L8gBy61IZi5Iw==
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cartoon: lander-09-prod
Content-Length: 5481
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5481
Md5:    fe818fab2e28efc81e4ff9c47f850778
Sha1:   85d200da32d07d4a23c952cfbd5587b8372989d4
Sha256: 99fa6d2317ed27fa001dc99849f59935e1348cf948a90d4d477cba747046186b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 22:47:43 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    fbecfe9e5ac1fcf84c137a6f11ccda33
Sha1:   43bdd04c78cd42b88873f1c62d43bcb466a2455b
Sha256: 2460188b1c20b0a78d34019f11c50146b122586c77ba3df0e56b196bd898121a
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 22:47:43 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=126214
Date: Tue, 21 May 2019 22:47:43 GMT
Etag: "5ce3b972-1d7"
Expires: Thu, 23 May 2019 09:51:17 GMT
Last-Modified: Tue, 21 May 2019 08:40:18 GMT
Server: ECS (lcy/1D1F)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e55402356bcd3cd31c6aa415a31acba5
Sha1:   90d1f74a31e09896bb9e960af6eb1f43fff9579d
Sha256: ab3e378f198b6417fabb406d9116bab8c6cdd86d93e311e74da05d14b5ccee1e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=100705
Date: Tue, 21 May 2019 22:47:43 GMT
Etag: "5ce346bb-1d7"
Expires: Thu, 23 May 2019 02:46:08 GMT
Last-Modified: Tue, 21 May 2019 00:30:51 GMT
Server: ECS (lcy/1D5A)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    b2ce416ebc5915c9ecbf1be9d43d304d
Sha1:   da90782a4196a840a266115a905d2c03d215711d
Sha256: 3b99413d25eca41b89821a0678b491d92ab5bc0aeabddea36e5f0ec84191a837
                                        
                                            POST / HTTP/1.1 
Host: s.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.52.27.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.14.2
Content-Length: 1754
Content-Transfer-Encoding: binary
Cache-Control: max-age=427078, public, no-transform, must-revalidate
Last-Modified: Sun, 19 May 2019 21:25:08 +00:00
Expires: Sun, 26 May 2019 21:25:08 +00:00
Date: Tue, 21 May 2019 22:47:43 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1754
Md5:    bc69b3773bbd5e2acbbfa17775c4447a
Sha1:   4f7e651afeae296af114e5c11800bc65f485580f
Sha256: 36fd10b4c99d785171b95f8ae1fd330fa1fa05a388ea7e0db331e827c4a7d4b6
                                        
                                            GET /recaptcha/api.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         172.217.21.132
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Expires: Tue, 21 May 2019 22:47:43 GMT
Date: Tue, 21 May 2019 22:47:43 GMT
Cache-Control: private, max-age=300
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   463
Md5:    77e6f766b01a612c2af3a9c2fe96c788
Sha1:   c69df735dd3570e08c0b409a6324238d6385bb3b
Sha256: 2c1d11a1aa93dee5602e40bbafdedff5d0efaed600b08813aec69a198eea027b
                                        
                                            GET /scripts/frontend.js HTTP/1.1 
Host: d24cze5sab2jwg.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         143.204.51.181
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 3808
Connection: keep-alive
Last-Modified: Thu, 20 Sep 2018 18:12:29 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 21 May 2019 18:21:43 GMT
Etag: "0963e7d1630d93b9749f94e1a670222c"
Age: 15961
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0771.cloudfront.net (CloudFront)
X-Amz-Cf-Id: XiqpwoMeAZknNYkoz8oq-Jxykn7yg11PKs03Eg99Cxq8g_idBLd8xg==


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   3808
Md5:    0963e7d1630d93b9749f94e1a670222c
Sha1:   36b249ecdd5bc2e23dba55f3f1d85d2bd4fc8981
Sha256: c8ae9019aaf595676d41ad16932bef3e1c31e5418adfafb43abb3d8399d425c5
                                        
                                            GET /adsense/domains/caf.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         172.217.21.132
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Date: Tue, 21 May 2019 22:47:43 GMT
Expires: Tue, 21 May 2019 22:47:43 GMT
Cache-Control: private, max-age=3600
Etag: "3347526808435612985"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   56381
Md5:    e83f9899c771b61a894d8c9224571bc4
Sha1:   ed1ae74398c4073fb848f41c407f2457331c89fa
Sha256: c174e07951387433dac46339cfa8e5cd7e9d130faa11d05d7fb9148f25a900e2
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 22:47:43 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    060591c6e1f425192c736e9c21d3903b
Sha1:   f1da8738e6505e223766235cd5b2cfd930be529a
Sha256: 5456603daa36c44856c54ea2341efadbb36368f2d84a02ab7b649d1e0d1683fb
                                        
                                            GET /scripts/cookies.js HTTP/1.1 
Host: d24cze5sab2jwg.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         143.204.51.181
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 2606
Connection: keep-alive
Last-Modified: Thu, 20 Sep 2018 18:12:29 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 21 May 2019 18:21:43 GMT
Etag: "1759740abb448046353292a9304c3d47"
Age: 15961
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Id: F7S4nP7ZdthtvoiDovhPfi4rzp2RdW8XXDn_jRzdOs64bGpgYenxpA==


--- Additional Info ---
Magic:  ASCII English text
Size:   2606
Md5:    1759740abb448046353292a9304c3d47
Sha1:   d722e0a78d695c55cf0d72bb35d18ef947b19e03
Sha256: 959ba69a168af591be9576b8222501fcc2c8b521abb4918fa6f4b5e275fba7b0
                                        
                                            GET /scripts/nm_ga_top_20170727.js HTTP/1.1 
Host: d24cze5sab2jwg.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         143.204.51.181
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 848
Connection: keep-alive
Last-Modified: Thu, 20 Sep 2018 18:12:29 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 21 May 2019 18:21:43 GMT
Etag: "aa6050e3599af6a665217a0913ed2a9d"
Age: 15961
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e9.cloudfront.net (CloudFront)
X-Amz-Cf-Id: Iiyq1uqazPMzvI69XpZdlsP3l1ZdrA1gEnvE_EZwIjD8Z_LiXiUxhw==


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   848
Md5:    aa6050e3599af6a665217a0913ed2a9d
Sha1:   05fbb364d393f55ab194af4cf41f6e995fd1d34f
Sha256: 728f68a2acba52654d4dcda32b558e5a100de53b1d63953a75539f765fa2d180
                                        
                                            GET /scripts/nmads_caf_20170727.js HTTP/1.1 
Host: d24cze5sab2jwg.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         143.204.51.181
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1568
Connection: keep-alive
Last-Modified: Thu, 20 Sep 2018 18:12:29 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 21 May 2019 19:05:07 GMT
Etag: "adf1c9b6c49f96778479bc88bd15a515"
Age: 13358
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Id: mSdx1SRt9vDeZ2liMCdFJSKgVl_PebgeLuyIiUOw37aDORvMqjc6CA==


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   1568
Md5:    adf1c9b6c49f96778479bc88bd15a515
Sha1:   d2c8848e4dd7d47ff1a6b8ce8444a550055269e3
Sha256: 15e49655b52776dac5eb6a9e3ced19338b7e1a7137db37b54b03b6677f8abf91
                                        
                                            GET /scripts/nm_ga_bottom.js HTTP/1.1 
Host: d24cze5sab2jwg.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         143.204.51.181
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 395
Connection: keep-alive
Last-Modified: Thu, 20 Sep 2018 18:12:30 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 21 May 2019 18:21:43 GMT
Etag: "1b73190474553d00cdf09a21d3e01b23"
Age: 15960
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 5oDQqffjlwvF0T26pXsp6LwZxdZ_1-dNgT7w3N8syYH_NmZ45MTBXA==


--- Additional Info ---
Magic:  ASCII text
Size:   395
Md5:    1b73190474553d00cdf09a21d3e01b23
Sha1:   9ab005a28ccc70549bbceb07afe5b95ce87643ae
Sha256: d9b75b983115220e79e3b3bcdd6e5c29ea7f0c3df6a82acbd405baed54bd616f
                                        
                                            GET /recaptcha/api2/v1557729121476/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 93777
Date: Wed, 15 May 2019 21:21:04 GMT
Expires: Thu, 14 May 2020 21:21:04 GMT
Last-Modified: Tue, 14 May 2019 23:15:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 523600
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   93777
Md5:    7a3ce0aa56ce929b1d11098ffb512b17
Sha1:   8af873f363bb69d267f68d6f7fc5b42d81e006fa
Sha256: 7832d2e0b1764a9c9bb3693fa0bbbf5bd467e2c83fcedb2baceeef09927ce607
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: camtobfines.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: isframesetenabled=1

                                         
                                         141.8.224.221
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 21 May 2019 22:47:45 GMT
Server: Apache
Content-Length: 10
Keep-Alive: timeout=5, max=43
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   10
Md5:    6608dd3e21ca3beabd4bdfa625a0b221
Sha1:   e926d0f8694a4bc4013308afaca7af51e4c9fd9f
Sha256: c75eb01138771bfb2a5517aeae882356733782767c4560cc9601c34d2591ca75
                                        
                                            GET /styles/template/Simple2C_CAF.css HTTP/1.1 
Host: d24cze5sab2jwg.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         143.204.51.181
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 6841
Connection: keep-alive
Last-Modified: Thu, 03 Jan 2019 19:20:35 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 21 May 2019 22:24:07 GMT
Etag: "44221811bf07aa74a54df70102a178d5"
Age: 1421
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0771.cloudfront.net (CloudFront)
X-Amz-Cf-Id: DB67CWG_BEZbjHWkVmnnCz5sgiTp5INIXRbMRRs5sgRD03IXE82pzg==


--- Additional Info ---
Magic:  ASCII C program text, with very long lines, with CRLF line terminators
Size:   6841
Md5:    44221811bf07aa74a54df70102a178d5
Sha1:   6f1419cd721746e707ee91753c8275be8e58cac5
Sha256: 061bf4cffc54f899a03104eb7c6be44b0718968a046f068bf1add290ba4d44f0
                                        
                                            GET /smartname/images/favicon.ico HTTP/1.1 
Host: d24cze5sab2jwg.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         143.204.51.181
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Content-Length: 3638
Connection: keep-alive
Last-Modified: Thu, 20 Sep 2018 18:12:38 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 21 May 2019 20:54:31 GMT
Etag: "5907e2fe1cdde2e5258fa3d42bdccaa3"
Age: 6797
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Id: NjHOduPrr_HCTVR5-3r_uEamKX5n-cetj3bSZooDBYnLAHrskaeUEQ==


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 16x16, 256-colors
Size:   3638
Md5:    5907e2fe1cdde2e5258fa3d42bdccaa3
Sha1:   6dfe4b2079cfb5c664cb000948eabdf255bca292
Sha256: 7dc0ebf8083e053fae7b3c156ffce03024db01741cb47314018c61cf4f314d8b
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 22:47:48 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    212ca4c755d4f4c0c15e78a70362bbaa
Sha1:   95582a0969562b958700d7be27da19f2005aed02
Sha256: 5f5221d5674c41ca3997b741627b88d99696426442a0b957806cba4e5d8a3bed
                                        
                                            GET /css?family=Lato:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://d24cze5sab2jwg.cloudfront.net/styles/template/Simple2C_CAF.css

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Tue, 21 May 2019 22:47:48 GMT
Date: Tue, 21 May 2019 22:47:48 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   219
Md5:    d52e8b5452fcbc2af031a26c8ed68e53
Sha1:   dfb9b818ab5ac1cba65443050f6ec82c3751c908
Sha256: 9d21cfe29855ab23db6e3ac5a9f7e638ff11d19ad42615cd62fab4e52d5fcbff
                                        
                                            GET /ga.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Tue, 21 May 2019 21:20:36 GMT
Expires: Tue, 21 May 2019 23:20:36 GMT
Last-Modified: Thu, 02 May 2019 01:33:03 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17168
Cache-Control: public, max-age=7200
Age: 5232


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=339015056&utmhn=ww8.camtobfines.gq&utmcs=UTF-8&utmsr=1176x885&utmvp=1176x754&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmdt=camtobfines.gq&utmhid=775272743&utmr=http%3A%2F%2Fcamtobfines.gq%2F%3Fga%3Do65K2BO8XjRCu1AZ8IVpsuNhP%252BBYnRz%252FW8tYo7CmHLL%252FzC4t4xh9QCWz1HotvZeYkQpqEJjGI1jR8sILLn2xzF0ZdyFkWuYz4m3Jzvt5wmhGRAPNJoIjD1kV3%252FdHoLkk9wLWJHVyWWRio%252FxATJBuM7wajwEHexdX4QQ%252B3jI38XY%253D%26gerf%3D%252B4Fwzxwpo%252BG67HnWBTE0E01k2tncJ3pgimaKgYd5Etc%253D%26guro%3D9xO4mDQ5wnqj7n5EB0ONLGNRFXDHeUgtuIZkfqQKhEiGSaxYCGxc9T8EOHUy4rGA%26&utmp=%2F&utmht=1558478868395&utmac=UA-2201473-4&utmcc=__utma%3D152056511.2100406722.1558478868.1558478868.1558478868.1%3B%2B__utmz%3D152056511.1558478868.1.1.utmcsr%3Dcamtobfines.gq%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2F%3B&utmjid=1761972403&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww8.camtobfines.gq/

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Tue, 21 May 2019 22:47:48 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /s/lato/v15/S6uyw4BMUTPHjx4wWA.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:400,700
Origin: http://ww8.camtobfines.gq

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 28660
Date: Fri, 19 Apr 2019 15:24:14 GMT
Expires: Sat, 18 Apr 2020 15:24:14 GMT
Last-Modified: Mon, 25 Mar 2019 20:11:25 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2791414
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   28660
Md5:    b8ee546acd6cc0c49f42ad3d48ef244f
Sha1:   7d8bff4143a36aa9cc1c2801f60fa0e99969e3f6
Sha256: 04050bae4cc3b9ccd20d3c7f57f5b1ba249d4a54d6eff75a1e4df504362e8c00
                                        
                                            GET / HTTP/1.1 
Host: ww8.camtobfines.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://camtobfines.gq/?ga=o65K2BO8XjRCu1AZ8IVpsuNhP%2BBYnRz%2FW8tYo7CmHLL%2FzC4t4xh9QCWz1HotvZeYkQpqEJjGI1jR8sILLn2xzF0ZdyFkWuYz4m3Jzvt5wmhGRAPNJoIjD1kV3%2FdHoLkk9wLWJHVyWWRio%2FxATJBuM7wajwEHexdX4QQ%2B3jI38XY%3D&gerf=%2B4Fwzxwpo%2BG67HnWBTE0E01k2tncJ3pgimaKgYd5Etc%3D&guro=9xO4mDQ5wnqj7n5EB0ONLGNRFXDHeUgtuIZkfqQKhEiGSaxYCGxc9T8EOHUy4rGA&

                                         
                                         68.178.213.99
HTTP/1.1 302 Found
                                        
Connection: close
Pragma: no-cache
Cache-Control: no-cache
Location: /


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing