Overview

URL weirdopals.com/manhardconsultant/
IP108.167.140.126
ASNAS20013 CyrusOne LLC
Location United States
Report completed2018-06-13 20:44:39 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-06-13 2 weirdopals.com/manhardconsultant/ Phishing
2018-06-13 2 weirdopals.com/manhardconsultant/Office%20365_files/GeminiHome.js Phishing
2018-06-13 2 weirdopals.com/manhardconsultant/Office%20365_files/UpsellControl.js Phishing
2018-06-13 2 weirdopals.com/manhardconsultant/icc.ico Phishing
2018-06-13 2 weirdopals.com/manhardconsultant/Office%20365_files/O365ShellG2Plus.js Phishing
2018-06-13 2 weirdopals.com/manhardconsultant/Office%20365_files/shellwofficons_f991c945.woff Phishing
2018-06-13 2 weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm Phishing
2018-06-13 2 weirdopals.com/manhardconsultant/Office%20365_files/shellttficons_9739c58c.ttf Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 3 reports on IP: 108.167.140.126

Date UQ / IDS / BL URL IP
2018-06-18 05:12:43 +0200
0 - 0 - 8 dressesforwomen.org/wp-content/plugins/smile/ (...) 108.167.140.126
2018-06-06 18:36:04 +0200
0 - 0 - 0 weirdopals.com/manhardconsult 108.167.140.126
2018-05-04 04:20:33 +0200
1 - 0 - 1 readytrade.co.uk/binary-options 108.167.140.126

Last 10 reports on ASN: AS20013 CyrusOne LLC

Date UQ / IDS / BL URL IP
2018-06-19 04:21:16 +0200
2 - 0 - 7 marvelwallpaper.in/glass-films 192.185.36.10
2018-06-19 03:41:59 +0200
0 - 0 - 4 clasirepuestos.com/servicios-mantenimiento-y- (...) 108.167.140.123
2018-06-19 03:27:24 +0200
0 - 0 - 14 netfor.com.co/ 108.167.140.151
2018-06-19 02:54:16 +0200
2 - 1 - 1 zigma-technologies.com/ 192.185.156.218
2018-06-19 02:12:32 +0200
0 - 1 - 14 www.buscamais.net/videogame/ 192.185.52.145
2018-06-19 01:53:59 +0200
2 - 0 - 33 www.agrisuper.it/categoria-prodotto/prodotti/ (...) 192.185.89.173
2018-06-19 01:33:08 +0200
0 - 0 - 33 per-immobilien.at/dropboxfix/dropbox/document (...) 192.185.52.163
2018-06-19 01:32:57 +0200
0 - 0 - 1 www.ensdemos.com/images/ckd/c469360108760965b (...) 192.185.91.48
2018-06-19 01:32:50 +0200
0 - 0 - 1 lakepartycove.com/ 192.185.108.48
2018-06-19 01:32:26 +0200
0 - 0 - 1 www.ctmconsulting.pk/tls/box3Drenewal.php/?email= 192.185.28.173

Last 1 reports on domain: weirdopals.com

Date UQ / IDS / BL URL IP
2018-06-06 18:36:04 +0200
0 - 0 - 0 weirdopals.com/manhardconsult 108.167.140.126


JavaScript

Executed Scripts (45)


Executed Evals (0)


Executed Writes (6)

#1 JavaScript::Write (size: 519, repeated: 1) - SHA256: cd85b3353fa838607fb88ed9f673c7fbc0d42bb8277ec7dcdd207f8be4cbb8ac

                                        < !doctype html > < html > < body > < iframe style = "display:none"
data - ad - client = "ca-pub-1717546068004722"
id = "google_esf"
name = "google_esf"
src = "https://googleads.g.doubleclick.net/pagead/html/r20180611/r20180604/zrt_lookup.html#" > < /iframe><script>google_pub_vars=window.parent['google_sv_map']['aswift_0'];google_sl_win=window.parent;google_iframe_start_time=new Date().getTime();google_async_iframe_id="aswift_0";</script > < script > window.parent.google_sa_impl({
    iframeWin: window,
    pubWin: window.parent
}); < /script></body > < /html>
                                    

#2 JavaScript::Write (size: 315, repeated: 1) - SHA256: b9163dc3be8f728d24e04823b1c804c0ea5f2cfcdd5ab4604a0d60b7b08a1e0a

                                        < !doctype html > < html > < body > < script > google_pub_vars = window.parent['google_sv_map']['aswift_1'];
google_sl_win = window.parent;
google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_1"; < /script><script>window.parent.google_sa_impl({iframeWin: window, pubWin: window.parent});</script > < /body></html >
                                    

#3 JavaScript::Write (size: 232, repeated: 1) - SHA256: a7dfd232c90ec90bec8f05654abc4858bcb4a0c5d654ed51535acaf89a802b0e

                                        < !doctype html > < html > < body > < script > google_sl_win = window.parent;
google_async_iframe_id = 'google_shimpl'; < /script><script src="http:/ / pagead2.googlesyndication.com / pagead / js / r20180611 / r20180604 / show_ads_impl.js "></script></body></html>
                                    

#4 JavaScript::Write (size: 1394, repeated: 1) - SHA256: 8602ad8fabdaddd2bf4f8c4c38dba7787627531430e8817afb223fb67deaecea

                                        < iframe id = "google_ads_frame1"
name = "google_ads_frame1"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1717546068004722&amp;output=html&amp;adk=1812271804&amp;adf=1061399144&amp;plat=1%3A1081352%2C2%3A1082376%2C8%3A32776%2C9%3A32776%2C16%3A8388608%2C26%3A32768%2C30%3A1048576&amp;guci=1.2.0.0.2.2.0&amp;format=0x0&amp;url=http%3A%2F%2Fweirdopals.com%2Fmanhardconsultant%2F&amp;ea=0&amp;flash=10.0.45&amp;pra=5&amp;wgl=0&amp;adsid=NT&amp;dt=1528915453789&amp;bpp=1152&amp;fdt=1155&amp;idt=150&amp;shv=r20180611&amp;cbv=r20180604&amp;saldr=aa&amp;prev_fmts=320x50&amp;correlator=1849534833620&amp;frm=23&amp;ife=1&amp;pv=1&amp;ga_vid=339407860.1528915454&amp;ga_sid=1528915454&amp;ga_hid=220739572&amp;ga_fc=0&amp;icsg=0&amp;nhd=1&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=0&amp;ady=0&amp;biw=1176&amp;bih=754&amp;isw=0&amp;ish=0&amp;ifk=521285223&amp;scr_x=0&amp;scr_y=0&amp;eid=368226401%2C21070015%2C21061122&amp;oid=3&amp;rx=0&amp;eae=6&amp;fc=1808&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C0%2C0&amp;vis=0&amp;rsz=%7C%7Cr%7C&amp;abl=CS&amp;ppjl=u&amp;fu=1044&amp;bc=1&amp;ifi=1&amp;dtd=1181"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#5 JavaScript::Write (size: 1336, repeated: 1) - SHA256: 68aac42f274f00452ecf5f57933656428748960cd64cb7bcda132a3adca9adef

                                        < iframe id = "google_ads_frame1"
name = "google_ads_frame1"
width = "320"
height = "50"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1717546068004722&amp;output=html&amp;h=50&amp;slotname=8177967021&amp;adk=1273963275&amp;adf=1061399144&amp;w=320&amp;guci=1.2.0.0.2.2.0&amp;format=320x50&amp;url=http%3A%2F%2Fweirdopals.com%2Fmanhardconsultant%2F&amp;ea=0&amp;flash=10.0.45&amp;wgl=0&amp;adsid=NT&amp;dt=1528915453789&amp;bpp=8&amp;fdt=158&amp;idt=150&amp;shv=r20180611&amp;cbv=r20180604&amp;saldr=aa&amp;correlator=1849534833620&amp;frm=23&amp;ife=1&amp;pv=2&amp;ga_vid=339407860.1528915454&amp;ga_sid=1528915454&amp;ga_hid=220739572&amp;ga_fc=0&amp;icsg=0&amp;nhd=1&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=0&amp;ady=0&amp;biw=1176&amp;bih=754&amp;isw=0&amp;ish=0&amp;ifk=521285223&amp;scr_x=0&amp;scr_y=0&amp;eid=368226401%2C21070015%2C21061122&amp;oid=3&amp;rx=0&amp;eae=6&amp;fc=1808&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C0%2C0&amp;vis=0&amp;rsz=%7C%7Cr%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=1044&amp;bc=1&amp;ifi=1&amp;dtd=634"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#6 JavaScript::Write (size: 151, repeated: 1) - SHA256: 7b371770afca193dddba9c95a4932a7de5ea8a4a67cc6127b84009acf8b18247

                                        < ins class = "adsbygoogle"
style = "display:inline-block;width:320px;height:50px"
data - ad - client = "ca-pub-1717546068004722"
data - ad - slot = "8177967021" > < /ins>
                                    


HTTP Transactions (84)


Request Response
                                        
                                            GET /manhardconsultant/ HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8321
Md5:    07c200454203160610699496c24ab8cb
Sha1:   131fa4518819b5341f585840ee1046e96513cd24
Sha256: d5b68b1d8f2df63470f77f5342ed13b947f951cde5556b5d4f9b151e97fadbe8

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /manhardconsultant/Office%20365_files/GeminiHomeV2.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   724
Md5:    589452d8b7eedbf48d76990136f1d22f
Sha1:   dcb76e11664e88fdca9d8ae3ee4092d469b8dd7b
Sha256: ed12ff3b02c870a65a6788842520bef571cbf2d10589c50783ddad68d391a5f2
                                        
                                            GET /manhardconsultant/Office%20365_files/AppTile.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   546
Md5:    a2e206d9c0ca5344ef09245a82c245e2
Sha1:   60332a5ec3fcf249c7e189ebb26cddf6581ac673
Sha256: 0156e76294c30362f4a71e57db184d97468efb42b830444c29ac6070434d4857
                                        
                                            GET /manhardconsultant/Office%20365_files/shellg2coremincss_ba45585d.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7660
Md5:    cf22892401f974e3184886417b3ec8bf
Sha1:   219309106c1c5913c86ee41d15e5c3d197749a89
Sha256: c16ce635cf32c7e6b1abd332dcc3eda7324efaed6b079ae4600a8eced73ec0c6
                                        
                                            GET /manhardconsultant/Office%20365_files/conciergehelper.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1562
Md5:    ad719f7a86f9b8bf0079d3fa7c0f6b2f
Sha1:   167ee5a4430b4ef05471dc6033b7b342e02e3cb1
Sha256: f2fedab2e09e33cb7bcad77bae00fcb68c2f4f53faad450bc6da246a96e331da
                                        
                                            GET /manhardconsultant/Office%20365_files/EmbeddedFonts.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   420
Md5:    4e8e8650424466bd7c388b0d1439bdfb
Sha1:   bce32ee2bb85532a0ddb63712fb40a44619c9a78
Sha256: d1368bd55413181b25b935e1e907fdc2aa190d4288ab66925f43e61fbc206371
                                        
                                            GET /manhardconsultant/Office%20365_files/data.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2275
Md5:    e4db31b686bdf0f2fe34b429181e3b78
Sha1:   3fed94aa4897a8e177eb14f45b867904a0cc53be
Sha256: 1fb11a5d8cfbb0f6081e4ee388ce441f51ef0b2cf31f7f310e287e33d6eab19c
                                        
                                            GET /manhardconsultant/Office%20365_files/MasterStyles15.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   29833
Md5:    e24f3250987ededeb9943ffb57d2b56d
Sha1:   d84d41eca3520db39c701b46550983be26e3ca35
Sha256: e57618fdd255e8b21b9a804646f066c6f6d24e71a74335c25244bbc922748e4f
                                        
                                            GET /manhardconsultant/Office%20365_files/GeminiHome.js HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1202
Md5:    11415d4c08a85bb043f086e5f63405ef
Sha1:   c7afd45f03e11ebd72c9a05b1d839ff4c3b848e5
Sha256: a942f47fa7e12d97624d4838d0e76a282dc6ef0836dbda07bfae8e0b9f0d7d0e

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /manhardconsultant/css/apple-touch-icon-72x72.png HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:09 GMT
Content-Length: 2404
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 225 x 225, 8-bit colormap, non-interlaced
Size:   2404
Md5:    229ffd84d7948d936c13a2f93b92ebb4
Sha1:   b7d8ec18857c7fc7fb1d8f166943bbf0e17771d2
Sha256: 81ae853e081f20dc40510a3cfc46fff7ad19e69aa391ee1284b8c9638f53247e
                                        
                                            GET /manhardconsultant/Office%20365_files/UpsellControl.js HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   301
Md5:    bb4e678ebb9cbb18b1df4f5b1eafea6c
Sha1:   da67bc2ada88e3d5d0589d5060c3e2d8b9152b76
Sha256: 40ee1ed998fe9314290f6469a93b13860cec4d9374e1a672e8a0f44b430ca7e8

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /manhardconsultant/Office%20365_files/shellg2corecss_11377998.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17308
Md5:    6c175329f8ff4f8f5725fc02501d10ca
Sha1:   b1669cf44253c80e9944f1e18ecef66489bbd56a
Sha256: 6ebbff0e6519296adc434cc86b75338b5a91eb5601bbd69bb59f80ade7a06223
                                        
                                            GET /manhardconsultant/Office%20365_files/shellg2pluscss_baae2042.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17309
Md5:    7d62c9dde730ab542edbf0e334c57b2c
Sha1:   7315fe759883950708ba02e308116273e7f33158
Sha256: 43406884c728abd16dd550718bb10e81b8657fc1938de36a47bf562e82c195ea
                                        
                                            GET /manhardconsultant/icc.ico HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:09 GMT
Content-Length: 285
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   285
Md5:    3e47d71cae18960fcd9772c836da50fd
Sha1:   8d22010afb8deb4e5e932061859db1c92193864b
Sha256: 902149b10f9e9875e84b2e7219a287390a4cdaf0e19a7ae6b0e4958efd08f8a1

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /manhardconsultant/Office%20365_files/MasterStyles15MVC.css HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17308
Md5:    16f9aea367fd56ef4fcaa301a87a9c1c
Sha1:   fb2343c0bd6f195711d36503aabb374fc4ff440a
Sha256: 66f074f69a0be3cbe168114da91b1b43014cd54574ff9649ca0521a054684d72
                                        
                                            GET /manhardconsultant/Office%20365_files/css/home_bkgd_1.png HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/GeminiHomeV2.css

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:10 GMT
Content-Length: 22035
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   22035
Md5:    ef4ac468dabdd214d220eec6be716215
Sha1:   1b9b21bed6c063265ff77c3077e60040072e1217
Sha256: b21a9de9414be9988efb7b56c4d2ab101aee02ebf6e80a16bfa43dfa7234da9b
                                        
                                            GET /manhardconsultant/Office%20365_files/css/banner.png HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/MasterStyles15.css

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:10 GMT
Content-Length: 4079
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4079
Md5:    854b0d32cf66f555e750bc7e2c5c99e7
Sha1:   bd9ea0561c4730a44c23fc33239979719a45c1ba
Sha256: 93ee4de61be217c38ee16a572de5b7ad5e5af581c24735388f6bd5917fa5bb0a
                                        
                                            GET /manhardconsultant/Office%20365_files/css/aol.png HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/MasterStyles15.css

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:10 GMT
Content-Length: 1452
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 80 x 70, 8-bit/color RGBA, non-interlaced
Size:   1452
Md5:    17ef4c1e36253395f769541243a027a7
Sha1:   7b2b5438e4c23e162d3a9de8d567e00e3de45b03
Sha256: bba1c4e890bde6f4c4531d1503e284d0e7e510b3b72940778750b19852b47ce4
                                        
                                            GET /manhardconsultant/Office%20365_files/css/oth.png HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/MasterStyles15.css

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:10 GMT
Content-Length: 16162
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:02:41 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16162
Md5:    e7e0afa65309105e24355344ac1b91c6
Sha1:   a55132115d60eca8d3a1bb1bdb9efc1147a0bf76
Sha256: 933099b34ed040d254b9f5b2fced95e76fad3f0fd933929c111259722d8ccd33
                                        
                                            GET /manhardconsultant/Office%20365_files/O365ShellG2Plus.js HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17309
Md5:    fc6d36aab6292d36fd1aaadcf1c2d275
Sha1:   f0ea419fe0df6a770e009e34eb9975f72ed862cc
Sha256: fc40c73a214b754ec0e77de8f5f154e3b27dd659cb049897da8d2f579e324b5b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         104.18.25.243
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 18:44:10 GMT
Content-Length: 1831
Connection: keep-alive
Set-Cookie: __cfduid=d27cfa423e4757d8be942350a7d0826111528915450; expires=Thu, 13-Jun-19 18:44:10 GMT; path=/; domain=.msocsp.com; HttpOnly
Last-Modified: Wed, 13 Jun 2018 17:41:04 GMT
Expires: Sun, 17 Jun 2018 17:41:04 GMT
Etag: "11958141ce23bfb49160f7ffef6732c461e9597e"
X-Cache: HIT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 42a6b4fe3180428b-OSL


--- Additional Info ---
Magic:  data
Size:   1831
Md5:    7288a7e410e1ca31a42343eb3810955f
Sha1:   11958141ce23bfb49160f7ffef6732c461e9597e
Sha256: 092fc048511ac2243dfe8e1c99e3158cd40a73e30f35cabd24cd75c69ea5bcd9
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-Regular-final.woff HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/EmbeddedFonts.css
Origin: http://weirdopals.com

                                         
                                         2.17.166.77
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/10.0
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Wed, 13 Jun 2018 18:44:11 GMT
Connection: keep-alive
Set-Cookie: s.SessID=25638eb2-cc72-4cc3-810b-317141582f73; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/PortalIcons.woff HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/MasterStyles15.css
Origin: http://weirdopals.com

                                         
                                         2.17.166.77
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/10.0
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Wed, 13 Jun 2018 18:44:11 GMT
Connection: keep-alive
Set-Cookie: s.SessID=843e0000-abf8-432e-80c0-6a3c625dff13; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-Light-final.woff HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/EmbeddedFonts.css
Origin: http://weirdopals.com

                                         
                                         2.17.166.77
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/10.0
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Wed, 13 Jun 2018 18:44:11 GMT
Connection: keep-alive
Set-Cookie: s.SessID=b5ac45cf-080b-44dd-a6c9-a22b31f787a9; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-SemiLight-final.woff HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/EmbeddedFonts.css
Origin: http://weirdopals.com

                                         
                                         2.17.166.77
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/10.0
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Wed, 13 Jun 2018 18:44:11 GMT
Connection: keep-alive
Set-Cookie: s.SessID=d7da78b6-2c40-4612-84c4-a6d32fcbdc92; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-Regular-final.ttf HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/EmbeddedFonts.css
Origin: http://weirdopals.com

                                         
                                         2.17.166.77
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/10.0
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Wed, 13 Jun 2018 18:44:11 GMT
Connection: keep-alive
Set-Cookie: s.SessID=13586d7b-a932-424c-b10f-2c7620f9459d; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/PortalIcons.ttf HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/MasterStyles15.css
Origin: http://weirdopals.com

                                         
                                         2.17.166.77
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/10.0
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Wed, 13 Jun 2018 18:44:11 GMT
Connection: keep-alive
Set-Cookie: s.SessID=41b3d1d1-9465-455d-8f5d-7bb075d20ee5; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-SemiLight-final.ttf HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/EmbeddedFonts.css
Origin: http://weirdopals.com

                                         
                                         2.17.166.77
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/10.0
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Wed, 13 Jun 2018 18:44:11 GMT
Connection: keep-alive
Set-Cookie: s.SessID=c1ac3f45-1cc0-4444-93ed-c14694568b32; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-Light-final.ttf HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/EmbeddedFonts.css
Origin: http://weirdopals.com

                                         
                                         2.17.166.77
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/10.0
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Wed, 13 Jun 2018 18:44:11 GMT
Connection: keep-alive
Set-Cookie: s.SessID=1c1552b6-8c2a-47f5-9707-c151b0a5d836; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /manhardconsultant/Office%20365_files/shellwofficons_f991c945.woff HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/shellg2coremincss_ba45585d.css

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17310
Md5:    11db07ad4862378732638e8e6431eefb
Sha1:   5122ca07fb16d64739440ef04dad2b834a62cd86
Sha256: 557ad4b85d5971f2c5a49ffc5d44b99cb7f636baf3e2f2497b93b03c4d9f4513

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /manhardconsultant/Office%20365_files/SuiteServiceProxy.htm HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17307
Md5:    68de1c6d14f32179b29ec7a39515c216
Sha1:   eadd8cbe93e7e9109936be19324c9f907664c8f4
Sha256: 7e55ecde9e7d1e4d2452bcc3a82377cc40520f066750758b830fceeb78b82f5c

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.6 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Wed, 13 Jun 2018 18:44:12 GMT
Date: Wed, 13 Jun 2018 18:44:12 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   488
Md5:    38601910649b7512dc15352c492b077c
Sha1:   bee33cedbaf7453c2cecac791cfbb840d8d8d89c
Sha256: 068ebed7211c73adc1d805c4c7210fc6d3669dc0753d221c6d1ac90a2f6fb13a
                                        
                                            GET /pagead/js/adsbygoogle.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Wed, 13 Jun 2018 18:44:12 GMT
Expires: Wed, 13 Jun 2018 18:44:12 GMT
Cache-Control: private, max-age=3600
Etag: 9274725552887247899
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 27262
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   27262
Md5:    695d7921f8f5d0c43550b135d83b0d7c
Sha1:   104be15a15425630336155441cd72fe278b1ddd7
Sha256: c64766ee3da99927df29849d1355d7c35e0d3197e0953bc9d8cde42c2b5d6500
                                        
                                            GET /pagead/js/adsbygoogle.js?ver=20150320 HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Wed, 13 Jun 2018 18:44:12 GMT
Expires: Wed, 13 Jun 2018 18:44:12 GMT
Cache-Control: private, max-age=3600
Etag: 9274725552887247899
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 27262
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   27262
Md5:    695d7921f8f5d0c43550b135d83b0d7c
Sha1:   104be15a15425630336155441cd72fe278b1ddd7
Sha256: c64766ee3da99927df29849d1355d7c35e0d3197e0953bc9d8cde42c2b5d6500
                                        
                                            GET /player_api?ver=20150320 HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
X-XSS-Protection: 1; mode=block; report=https://www.google.com/appserve/security-bugs/log/youtube
X-Content-Type-Options: nosniff
Cache-Control: no-cache
Expires: Tue, 27 Apr 1971 19:44:06 EST
Content-Length: 858
Date: Wed, 13 Jun 2018 18:44:12 GMT
Server: YouTube Frontend Proxy


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   858
Md5:    3229bc276b872948c00cb5a98c55b31d
Sha1:   4f89e52d1c934b673b4df8f3ab1119bf34f1714c
Sha256: 4b709250ef7e0df40a799bbddc5a053a5625e9a51bad0fe117670c5cf8094d6b
                                        
                                            GET /js/froogaloop2.min.js?ver=20150320 HTTP/1.1 
Host: f.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         151.101.130.109
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
X-GUploader-UploadID: AEnB2UqNWvykIRWJDZXgLN45bqnb75wO_gbNm0ktBc0RqliB_YP2WADhNAUsDmgvZHYHyaYE6VXDBC2fkw9viBsPan3qpFVNZQ
Last-Modified: Tue, 24 Apr 2018 17:56:20 GMT
Etag: "9e88961f49cefd7dd163c67f54e5fdac"
Content-Encoding: gzip
Server: UploadServer
Via: 1.1 varnish, 1.1 varnish
Cache-Control: max-age=1209600
Content-Length: 735
Accept-Ranges: bytes
Date: Wed, 13 Jun 2018 18:44:12 GMT
Age: 600636
Connection: keep-alive
X-Served-By: cache-iad2138-IAD, cache-bma1644-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 21402
X-Timer: S1528915453.597747,VS0,VE0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Tue Apr 24 19:47:13 2018
Size:   735
Md5:    9e88961f49cefd7dd163c67f54e5fdac
Sha1:   3809b42721a3748ebfd1012f703066028d6741cf
Sha256: 9079dbd235dfe45c6009ede7d6b4c831ea83e2161fad6e5f9858daa3d18453aa
                                        
                                            GET /wp-content/plugins/Video-Advertising-Addon-For-Visual-Composer/library/malihu/jquery.mCustomScrollbar.min.css?ver=3.1.13 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Feb 2018 23:25:31 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5523
Md5:    764bcb3b532b41f9c561cc672e7f9458
Sha1:   35c0044046cf7013eec8051d0d739802bb65a370
Sha256: 765599ed0ce1d71e6945004f8f75defac46d099c557e61220511f0ace12c4f59
                                        
                                            GET /wp-content/plugins/td-multi-purpose/style.css?ver=4.9.6 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Dec 2017 15:48:32 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14002
Md5:    daed60812976c555bfbeb68f839e0fd0
Sha1:   e5ab75b7c9386a7f21bf65745de22ec07e377557
Sha256: f7523eaa24ba603b1e38cab1eb605814ef7c658aa0d3a05e3cae34dbdbc72caf
                                        
                                            GET /all.js?ver=20150320 HTTP/1.1 
Host: api.dmcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         178.79.242.181
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: DMS/1.0.42
Cache-Control: max-age=43200, s-maxage=3600
Accept-Ranges: bytes
Etag: "5b1e538b-6d26"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 231
Date: Wed, 13 Jun 2018 18:44:12 GMT
Last-Modified: Mon, 11 Jun 2018 10:48:43 GMT
Expires: Wed, 13 Jun 2018 19:40:21 GMT
Content-Length: 9237
Connection: keep-alive
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9237
Md5:    fcb25f1e8d177e15628626b351555c6c
Sha1:   f71ff41a02742c2eb365ee20db12f8b9a38607a2
Sha256: f7e60258741d540d583ff303b683fb4437d27e34458f983d94ad9b86adf64a93
                                        
                                            GET /wp-content/plugins/Video-Advertising-Addon-For-Visual-Composer/library/vaafvc-min.css?ver=1.0.6 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Feb 2018 23:25:31 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4196
Md5:    d6e36e026871ab68467acd154b9e79a1
Sha1:   5270c073da00d501fc37f1ad662850bb95b13392
Sha256: 05a0d8e20a9c4ed136d1366fc1c51fc9a595c3f30f7b8a6f120df8023f2d6a7a
                                        
                                            GET /wp-content/plugins/jetpack/css/jetpack.css?ver=5.7.1 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 23 Jan 2018 21:18:56 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15006
Md5:    2b4b5668d7093480568cbafe0cde4373
Sha1:   e4a0552cacfd0ae4da9b4f468350f2e8c12a0422
Sha256: 2ca28754aeb9da3f0450500a9f6f71cc25ef49fe98ddb85a6abeb2ca6c821cea
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.4.5 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Dec 2017 15:47:50 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   58078
Md5:    9d6eb65dd9f7bb33d1495baa0740c1fe
Sha1:   c0f3ef394cd76dbf1558da780b469544737da20f
Sha256: 3796ba9aec637b9917b8bb1057c837d0435b494ec1cb652b61900277eefe5fff
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         50.63.243.230
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 18:44:12 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=122951, public, no-transform, must-revalidate
Last-Modified: Wed, 13 Jun 2018 18:41:15 GMT
Expires: Fri, 15 Jun 2018 06:41:15 GMT
Etag: "498b79c0385a48162ebe52ea4931846a12a2a4c0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1776
Connection: close


--- Additional Info ---
Magic:  data
Size:   1776
Md5:    ec9e42e49ea2abebf828afacf80403f3
Sha1:   498b79c0385a48162ebe52ea4931846a12a2a4c0
Sha256: 75b11f9f076f74425898d4c7c7574e3a9931128ee5ae1a95b34e835139e77d78
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 03 Aug 2017 17:23:50 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   39407
Md5:    52e2b84578787767c3c49a3b193b94a4
Sha1:   99a84318ca297a4d061b7008e1c3e3e806a79d3c
Sha256: d9a40b219cc9307378ddb0cd864a73518bb83a249abdf3ef0edbeb8c3eca79df
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 03 Aug 2017 17:23:50 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4306
Md5:    263da3c76e040de59141e13a36a27c8e
Sha1:   10bf87dfc02978dd1263fe427486376257f0d83c
Sha256: fa39bcd1ae1adf5df39a3e13c630e184f15ad85330112cb61e1ffcea4c55a376
                                        
                                            GET /wp-content/themes/Newspaper/style.css?ver=8.6 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Dec 2017 15:49:52 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   167459
Md5:    2961e6f72dde987f6c30d6ed684ac3d7
Sha1:   2ee915e08018fb0e6f650cc1f719a2e5696f2442
Sha256: 78e7f48a6068915a0c30e29efd54b6f72a45b98b2b31ecb82b010137935e031d
                                        
                                            GET /16.00.1279.006/en-US/css/Fabric/0.10.3/fonts/office365icons.woff? HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/EmbeddedFonts.css

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17306
Md5:    1c7e818017c4d5178fd30daa4e23cd8d
Sha1:   620be81f9f3237b80e93108a0dca8753ba1867da
Sha256: 72a851d1dc8313749b38e1d7a3912d2582a53a922cfac394eb297f2dc0cdad41
                                        
                                            GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20130122 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 23 Jan 2018 21:18:55 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   364
Md5:    6c1f4ed1e9b3198893e742a8466c877d
Sha1:   5b30e994b5ec5fb33dc29670850d82163c7a4788
Sha256: 396c237df37af98355ebf1567f2d46d6710d8ab154a2dcd6d217e55498a564b4
                                        
                                            GET /wp-content/js/devicepx-jetpack.js?ver=201824 HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.32
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5841a56f-52b6"
Content-Encoding: gzip
Expires: Mon, 10 Jun 2019 00:22:35 GMT
Cache-Control: max-age=31536000
X-ac: 4.arn _dca
X-nc: HIT arn 32


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3163
Md5:    844b0e2ae8eba4159dd5edd8efbde50c
Sha1:   757861da25bea58b1bc03203f65ae93673cfc065
Sha256: ef84d445c23339e2c3742857d7e020c89d639f1ddc434b6f6a585ac9907bbb92
                                        
                                            GET /wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=8.6 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Dec 2017 15:49:28 GMT
X-Acc-Exp: 600
X-Proxy-Cache: MISS weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   59942
Md5:    a5695ada8bd9964d3e4ed627c767956c
Sha1:   b18ff21a08beab0298f51a9909017a6e33eaec4f
Sha256: f0367c18aeba504afb92019cacdfdd861b69445c66def7f55133521469e99676
                                        
                                            GET /wp-content/plugins/jetpack/_inc/build/facebook-embed.min.js HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 23 Jan 2018 21:18:55 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   411
Md5:    ef278210427705ad17e4f6190e6475bd
Sha1:   75a34404be092c74c4dfe3ab336471da212b9e12
Sha256: 050d4fffeba1b607c3a39126d0ec03faa4af76b544ed5d42517c11ade292d176
                                        
                                            GET /wp-content/plugins/Video-Advertising-Addon-For-Visual-Composer/library/init.js?ver=1.0 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Feb 2018 23:25:31 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1064
Md5:    67aa52aa5c900e6d0ca21bea2550f8ec
Sha1:   7fb5bdcd890678907192e2045ca8afe094a514de
Sha256: 9357024c923b91878b1d2bca269ddbd5705bc25cc236fe42ae2ba9db1d377a99
                                        
                                            GET /wp-content/plugins/Video-Advertising-Addon-For-Visual-Composer/library/screenfull.min.js?ver=3.0.0 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Feb 2018 23:25:31 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   721
Md5:    960f1b9d18a92c50fa0fe4b7da87c941
Sha1:   9d492db9d5c531ea8be59f2de1c35b675b1a2546
Sha256: 8cdd217d6dfcc2a8136654279d5faf042179ca6cb9a775ce95c342448804c0f2
                                        
                                            GET /wp-content/plugins/Video-Advertising-Addon-For-Visual-Composer/library/malihu/jquery.mCustomScrollbar.concat.min.js?ver=3.1.13 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Feb 2018 23:25:31 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14869
Md5:    836dcd4f7f19e81605dcca20cfa92ba6
Sha1:   d50c25875f83e6ed8c4a51ef59cf6cfad75abd35
Sha256: 721a2bce5a76ce57c9247fa6a0c99ad259930db956fc19a2332da84878b1c416
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.9.6 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 03 Aug 2017 17:23:50 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   765
Md5:    36d31e5e90ecad1726b083b201f01ac2
Sha1:   a932a9781ee6d270e4505dc5ed28e3108f9ee851
Sha256: c141ad9f1aa165b8ed384d8a8b755e763ea6b1696163e405d717af7ba2783f80
                                        
                                            GET /weirdopals.com/wp-content/uploads/2018/01/blog06-1.jpg?resize=324%2C160 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 11527
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:27:41 GMT
Expires: Sat, 06 Jun 2020 04:27:41 GMT
Cache-Control: public, max-age=63115200
Link: <http://weirdopals.com/wp-content/uploads/2018/01/blog06-1.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "def872663b296c33"
X-Bytes-Saved: 80
Vary: Accept
X-nc: HIT arn 17


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11527
Md5:    8cd6b6857ace34742a56102ebff8b1a7
Sha1:   089cf2d503965b5382a6a96cc472ce9afa7b97dd
Sha256: f0f68ca91f4f54a4e1601bb730f8f490b435c63a70c73d5a0b2593eb03469e91
                                        
                                            GET /weirdopals.com/wp-content/uploads/2018/01/blog06-1.jpg?resize=100%2C70 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 2465
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:27:41 GMT
Expires: Sat, 06 Jun 2020 04:27:41 GMT
Cache-Control: public, max-age=63115200
Link: <http://weirdopals.com/wp-content/uploads/2018/01/blog06-1.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "b27c2983206b43b6"
Vary: Accept
X-nc: HIT arn 17


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2465
Md5:    ea50db51eff7e2a0ca7977c3be4a6dde
Sha1:   7d797216e4bf8325a62d9e5e4175769c2140e96b
Sha256: 61bcd1c95501eda73c8a03c917fe9b56913f98d85af1af8296c103951b4fbd67
                                        
                                            GET /weirdopals.com/wp-content/uploads/2018/02/1-1.jpg?resize=324%2C160 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 6241
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 15:18:30 GMT
Expires: Sat, 06 Jun 2020 03:18:30 GMT
Cache-Control: public, max-age=63115200
Link: <http://weirdopals.com/wp-content/uploads/2018/02/1-1.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "1f9e02463a3bd420"
Vary: Accept
X-nc: HIT arn 20


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "Lavc55.18.102\377"
Size:   6241
Md5:    c0684791fc800c1f923dbd2f375176aa
Sha1:   3ff8afba1e352cf618564fde5807aad86b79429a
Sha256: e1c2d282c634e5d5afff6e53f628b290bb6619e67b6d51b3ba41640d2e5c078e
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 18:44:13 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    c3015b5e841e79ff8fa29de55492a4e3
Sha1:   1b2a55c2d09185d5a47adb5608ec745a39e2e9f8
Sha256: a60d64b50c8076350f42e0889b21f73049caa1ddccca6eae46d2a8a6501de98e
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 18:44:13 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /wp-content/plugins/Video-Advertising-Addon-For-Visual-Composer/library/vaafvc-min.js?ver=1.0.6 HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Feb 2018 23:25:31 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5162
Md5:    4bb78050dc1f92d8d091257bf3242155
Sha1:   a8ea1af3927064ad9cae7657b8ebabfca93992a1
Sha256: 98515f72348ff6374d30e21966e863fe9b386e3d60a9d2def768f36b3b3d18ec
                                        
                                            GET /wp-content/uploads/2017/11/web-site-logo-01-1-300x78.png HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         108.167.140.126
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 5548
Connection: keep-alive
Last-Modified: Sun, 28 Jan 2018 22:27:25 GMT
X-Acc-Exp: 600
X-Proxy-Cache: HIT weirdopals.com
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 300 x 78, 8-bit/color RGBA, non-interlaced
Size:   5548
Md5:    2c666e46bfd940c5089e01c81e5a1f64
Sha1:   8e0e30fb8e6496c3312225da854c502951af8629
Sha256: e5922b7adecf8de1e3d7651d2ee4a837bfe0ac8315d619b51dbe31ad9cf908ff
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 18:44:13 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    6dcd55ee3be377509e7ab1074bcfbfcc
Sha1:   984038f25c8b096b8c9ccc180133695dbb1d7544
Sha256: c2294d285b251750ed43f7a3aa7c921958c193c5b3ca09afab2a2bc64e1b17aa
                                        
                                            GET /adsid/integrator.js?domain=weirdopals.com HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Wed, 13 Jun 2018 18:44:13 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="43,42,41,39,35",quic=":443"; ma=2592000; v="43,42,41,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /weirdopals.com/wp-content/uploads/2018/02/ffd.jpg?resize=324%2C160 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 12562
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:27:41 GMT
Expires: Sat, 06 Jun 2020 04:27:41 GMT
Cache-Control: public, max-age=63115200
Link: <http://weirdopals.com/wp-content/uploads/2018/02/ffd.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "c3ed5a88f50ddb11"
X-Bytes-Saved: 1059
Vary: Accept
X-nc: HIT arn 16


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12562
Md5:    d736ce0dce8e4f8990acd57553715e40
Sha1:   9428b4329c734bd1463f957b28fb2f0b6f0ca33c
Sha256: 9704d9f02963b28ed08a83ff9d9d5b0642bacad1348f6bbd24e2fe6aa5933e3c
                                        
                                            GET /weirdopals.com/wp-content/uploads/2018/02/1061622596.jpg?resize=324%2C160 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 10755
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:27:41 GMT
Expires: Sat, 06 Jun 2020 04:27:41 GMT
Cache-Control: public, max-age=63115200
Link: <http://weirdopals.com/wp-content/uploads/2018/02/1061622596.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "a9c2377d21f4cb53"
X-Bytes-Saved: 25
Vary: Accept
X-nc: HIT arn 20


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10755
Md5:    b9949d9d42a1fa53d78583c2b038f97b
Sha1:   8185e26a6c366fd8de2eb6bcd4d4e10885887ecb
Sha256: f79c247faef92de8144fb0c2c53b8c297bb59ac855267ff5a18b3c39a21dcab7
                                        
                                            GET /weirdopals.com/wp-content/uploads/2018/01/bascofinefoods.jpg?resize=100%2C70 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 4159
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:27:41 GMT
Expires: Sat, 06 Jun 2020 04:27:41 GMT
Cache-Control: public, max-age=63115200
Link: <http://weirdopals.com/wp-content/uploads/2018/01/bascofinefoods.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "4a9cd13301d42cbc"
X-Bytes-Saved: 4
Vary: Accept
X-nc: HIT arn 21


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4159
Md5:    e332d7c0560dc76ddbcb5757b6ae6a62
Sha1:   d7f8fbe1322470a3cc79acb669e51f69c6fe7885
Sha256: eb678620c277b77e0118d2e33d96d74b7654a07d89caeb32f6a1efe3a5cc7510
                                        
                                            GET /weirdopals.com/wp-content/uploads/2018/01/bascofinefoods.jpg?resize=324%2C160 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 18068
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 15:30:43 GMT
Expires: Sat, 06 Jun 2020 03:30:43 GMT
Cache-Control: public, max-age=63115200
Link: <http://weirdopals.com/wp-content/uploads/2018/01/bascofinefoods.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "6b5e4d78e37146f5"
X-Bytes-Saved: 778
Vary: Accept
X-nc: HIT arn 21


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18068
Md5:    48752f4e4a2f7e8f34fb13fc1f821fa6
Sha1:   9aafe4f16ae21a86a34a8e49de923a2288766aa7
Sha256: 9d80515a0617bad48583be4a5628ed16c709e260f72e656523db3b621568e204
                                        
                                            GET /weirdopals.com/wp-content/uploads/2018/01/mcmahon-xfl.jpg?resize=100%2C70 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 3251
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 16:27:41 GMT
Expires: Sat, 06 Jun 2020 04:27:41 GMT
Cache-Control: public, max-age=63115200
Link: <http://weirdopals.com/wp-content/uploads/2018/01/mcmahon-xfl.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "dd8c3180abce9cda"
Vary: Accept
X-nc: HIT arn 20


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3251
Md5:    5ecda87da9407de034e7b224081d29b5
Sha1:   47eed8a46b96cd973943435985ceb2ce52cb160a
Sha256: f6299c41d45701bb198b1d7b3d35fdc188501b7ff7286abd151a5b9e39590619
                                        
                                            GET /adsid/integrator.js?domain=weirdopals.com HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Wed, 13 Jun 2018 18:44:13 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="43,42,41,39,35",quic=":443"; ma=2592000; v="43,42,41,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /e-201824.js HTTP/1.1 
Host: stats.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5abc2267-32a7"
Content-Encoding: gzip
Expires: Fri, 07 Jun 2019 10:57:43 GMT
Cache-Control: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2892
Md5:    cfa9e9af1ab5a31efabccf051d345999
Sha1:   d06f971730222dac1e055b6951437a10c59a8c20
Sha256: 25f90d28ef3c41ea5940f2db37013b71cc6dfdc3fec7e47fbf28b3511e459803
                                        
                                            GET /weirdopals.com/wp-content/uploads/2018/02/36houres-mascara.jpg?resize=324%2C160 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:13 GMT
Content-Length: 13302
Connection: keep-alive
Last-Modified: Wed, 06 Jun 2018 15:18:29 GMT
Expires: Sat, 06 Jun 2020 03:18:29 GMT
Cache-Control: public, max-age=63115200
Link: <http://weirdopals.com/wp-content/uploads/2018/02/36houres-mascara.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "a7a3e4dddaf823ca"
X-Bytes-Saved: 3700
Vary: Accept
X-nc: HIT arn 17


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13302
Md5:    edcfcef6cb77b7f5a9a74141b2cde72f
Sha1:   2585f90de766b18facd726a7d3f2bc4d95905c45
Sha256: 44156df48b2e8c886b0dfcdd9092a233cc1c1fa7f0447a003dbaa90273220865
                                        
                                            GET /pagead/js/r20180611/r20180604/show_ads_impl.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Wed, 13 Jun 2018 18:44:13 GMT
Expires: Wed, 13 Jun 2018 18:44:13 GMT
Cache-Control: private, max-age=1209600
Etag: 14101629880484540636
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 70164
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   70164
Md5:    aa40ab075a0bdbc66e9f0ab5c64abfb4
Sha1:   842ce1cc21d3013102fdb7c3258edb686aa1af6a
Sha256: d7ce2c66464d1b49ec820ab457a88389a97ef63cea31770994d80a8718704d1b
                                        
                                            GET /manhardconsultant/Office%20365_files/shellttficons_9739c58c.ttf HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/shellg2coremincss_ba45585d.css

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17310
Md5:    6f0fe79734d88039c1234f9a49b43c8c
Sha1:   41269fde6b0348c56e7f1a7236dbf1882efa7bb7
Sha256: 756f5264829c2bfb939f500becf5565be070eb495b5d6a64a4d19712dde6fdd9

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 18:44:14 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    de323b14e46f5db34962d90fe4b7e8d8
Sha1:   1733cbb8b675232edf41287dba54d2a8cd647886
Sha256: 3e40e1db5434d2312cb969fb0c7f9482e74c9183665867b87109713635c6a575
                                        
                                            GET /pub-config/r20160913/ca-pub-1717546068004722.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 125
Date: Wed, 13 Jun 2018 18:44:14 GMT
Expires: Thu, 14 Jun 2018 06:44:14 GMT
Cache-Control: public, max-age=43200
Last-Modified: Fri, 08 Jun 2018 21:20:30 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="43,42,41,39,35",quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   125
Md5:    21aea2dae0239adff4f9f063cdacfc76
Sha1:   ce64c497ac1dd86393da79e8cea239de113c1de7
Sha256: a59ee78166b8467dd7dd8c7acb03d8df7d16cf4a04f45c8558366df1c33b868f
                                        
                                            GET /pagead/js/r20180611/r20180604/osd.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Tue, 12 Jun 2018 02:16:04 GMT
Expires: Tue, 26 Jun 2018 02:16:04 GMT
Etag: 274352813981526987
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 26561
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 145690
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="43,42,41,39,35",quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   26561
Md5:    07f7f48721c133d6aa4d970d83de8228
Sha1:   3512b4e7fbcd7e1e6393184f2b811b61652a9348
Sha256: 87891c09a14c6a66eb04a176177cbe0d58350e465d63970ee5b33a33b1870f14
                                        
                                            GET /pagead/html/r20180611/r20180604/zrt_lookup.html HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Tue, 12 Jun 2018 02:16:02 GMT
Expires: Tue, 26 Jun 2018 02:16:02 GMT
Etag: 4726315756816018096
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
Content-Length: 6958
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 145692
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="43,42,41,39,35",quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6958
Md5:    10e890f6add5412ceb6551110efc6a5a
Sha1:   2931281ad4cc4612fc4f51d293476b6447d24df0
Sha256: 7b9de2bf9579846089a25c5cc861e2de3e7b91f3867e528478a7badb2f6da1f0
                                        
                                            GET /pagead/ads?client=ca-pub-1717546068004722&output=html&h=50&slotname=8177967021&adk=1273963275&adf=1061399144&w=320&guci=1.2.0.0.2.2.0&format=320x50&url=http%3A%2F%2Fweirdopals.com%2Fmanhardconsultant%2F&ea=0&flash=10.0.45&wgl=0&adsid=NT&dt=1528915453789&bpp=8&fdt=158&idt=150&shv=r20180611&cbv=r20180604&saldr=aa&correlator=1849534833620&frm=23&ife=1&pv=2&ga_vid=339407860.1528915454&ga_sid=1528915454&ga_hid=220739572&ga_fc=0&icsg=0&nhd=1&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=0&ady=0&biw=1176&bih=754&isw=0&ish=0&ifk=521285223&scr_x=0&scr_y=0&eid=368226401%2C21070015%2C21061122&oid=3&rx=0&eae=6&fc=1808&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C0%2C0&vis=0&rsz=%7C%7Cr%7C&abl=CS&ppjl=u&pfx=0&fu=1044&bc=1&ifi=1&dtd=634 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Wed, 13 Jun 2018 18:44:14 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 13-Jun-2018 18:59:14 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="43,42,41,39,35",quic=":443"; ma=2592000; v="43,42,41,39,35"
Expires: Wed, 13 Jun 2018 18:44:14 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   380
Md5:    0e950bc8174922244442c269a61a1a06
Sha1:   c43619abd8f063994f2f6c185b6cb1cd499c86c6
Sha256: 596be18f41a55a6bb13bbb1756a743c2a873db166dba35aa791509a244f0634d
                                        
                                            GET /yts/jsbin/www-widgetapi-vflnjBBxk/www-widgetapi.js HTTP/1.1 
Host: s.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Timing-Allow-Origin: https://www.youtube.com
Content-Length: 7696
Date: Tue, 05 Jun 2018 23:22:40 GMT
Expires: Wed, 13 Jun 2018 23:22:40 GMT
Last-Modified: Tue, 05 Jun 2018 21:01:59 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=691200
Age: 674494


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   7696
Md5:    006cee3e6bc8122096bd28bfc637f0be
Sha1:   e7e03aa9e3eaa4c51eb35013aa04b0cd7074e2fe
Sha256: 4b796bf374277980ba29a6d44de10319b4b5beb4e6f4e0e8e98054989703d9e8
                                        
                                            GET /g.gif?v=ext&j=1%3A5.7.1&blog=139879528&post=0&tz=0&srv=weirdopals.com&host=weirdopals.com&ref=http%3A%2F%2Fweirdopals.com%2Fmanhardconsultant%2F&rand=0.30205775917405564 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 18:44:14 GMT
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
                                        
                                            GET /pagead/ads?client=ca-pub-1717546068004722&output=html&adk=1812271804&adf=1061399144&plat=1%3A1081352%2C2%3A1082376%2C8%3A32776%2C9%3A32776%2C16%3A8388608%2C26%3A32768%2C30%3A1048576&guci=1.2.0.0.2.2.0&format=0x0&url=http%3A%2F%2Fweirdopals.com%2Fmanhardconsultant%2F&ea=0&flash=10.0.45&pra=5&wgl=0&adsid=NT&dt=1528915453789&bpp=1152&fdt=1155&idt=150&shv=r20180611&cbv=r20180604&saldr=aa&prev_fmts=320x50&correlator=1849534833620&frm=23&ife=1&pv=1&ga_vid=339407860.1528915454&ga_sid=1528915454&ga_hid=220739572&ga_fc=0&icsg=0&nhd=1&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=0&ady=0&biw=1176&bih=754&isw=0&ish=0&ifk=521285223&scr_x=0&scr_y=0&eid=368226401%2C21070015%2C21061122&oid=3&rx=0&eae=6&fc=1808&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C0%2C0&vis=0&rsz=%7C%7Cr%7C&abl=CS&ppjl=u&fu=1044&bc=1&ifi=1&dtd=1181 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/SuiteServiceProxy.htm

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Wed, 13 Jun 2018 18:44:15 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 13-Jun-2018 18:59:15 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="43,42,41,39,35",quic=":443"; ma=2592000; v="43,42,41,39,35"
Expires: Wed, 13 Jun 2018 18:44:15 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   64
Md5:    0781e865abae44cf8b10dc725d63f539
Sha1:   c9f5024f2a546880e819749c32e23830fef111cb
Sha256: 24a7e2c0a5b68aec6126a39465b792b761aab892d7060d78fbab1e14a4cf3363
                                        
                                            GET /16.00.1279.006/en-US/css/Fabric/0.10.3/fonts/office365icons.ttf? HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/Office%20365_files/EmbeddedFonts.css

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17308
Md5:    10b620b29be75cc6f8fd538e6bddd06b
Sha1:   1728526214f7d7008af968fe42414f7ae271f05f
Sha256: 5e3690b2673d91328e4234bb14a5c19edba7d114366b701c4ec300222bacc5fd
                                        
                                            GET /pp.l?CID=4d282929-551c-4ee1-998d-17a012b75264&pageId=home&d={B:{S:%27L%27,LT:7861,UT:-1,MT:2902},C:{LT:1528915455395}} HTTP/1.1 
Host: weirdopals.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://weirdopals.com/manhardconsultant/

                                         
                                         108.167.140.126
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 18:44:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://weirdopals.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17298
Md5:    9f0e68b64fce63a43fcd2a9ed73ff25c
Sha1:   a79b3d56529c1388b3d8bdfa28fe1d2924322aff
Sha256: 583f49f95df95c20b9bb59eeef23911ba13ffa67a1b6c1753b5ce34178e743d3