Overview

URL attentionbenefit.club/
IP188.209.49.16
ASNAS60033 BlazingFast LLC
Location Netherlands
Report completed2019-02-22 03:44:47 CET
StatusLoading report..
urlquery Alerts Promotion scam / Brand infringement


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 188.209.49.16

Date UQ / IDS / BL URL IP
2019-06-04 00:51:13 +0200
0 - 0 - 2 bitgratuity.club/ 188.209.49.16
2019-05-24 18:50:03 +0200
0 - 0 - 2 hastegain.club/?_uu= 188.209.49.16
2019-05-23 08:33:27 +0200
0 - 0 - 2 hastegain.club/ 188.209.49.16
2019-04-07 21:54:22 +0200
2 - 0 - 0 delaterdestructively.club/ 188.209.49.16
2019-04-02 15:10:29 +0200
2 - 0 - 0 delaterdestructively.club/ 188.209.49.16
2019-03-26 20:43:05 +0100
2 - 0 - 0 asclepibloemfontein.club/ 188.209.49.16
2019-03-09 20:29:27 +0100
0 - 0 - 1 vexationhigher.club/ 188.209.49.16
2019-02-23 08:14:15 +0100
2 - 0 - 0 woukxystum.club/ 188.209.49.16
2019-02-15 20:50:01 +0100
2 - 0 - 0 passivatingpforzheim.club/ 188.209.49.16
2019-01-05 15:20:21 +0100
0 - 0 - 1 gloriousnessiwis.club/ 188.209.49.16

Last 10 reports on ASN: AS60033 BlazingFast LLC

Date UQ / IDS / BL URL IP
2019-06-30 18:51:31 +0200
0 - 0 - 0 pamz0x.xyz 185.11.145.5
2019-06-25 21:41:21 +0200
0 - 0 - 1 share.dmca.gripe/QpS0NEPTye4yXe2B.htm 185.62.189.68
2019-06-25 15:19:37 +0200
0 - 1 - 1 https://share.dmca.gripe/iOhPKMxr5CrKES9J.htm 185.62.189.68
2019-06-20 02:37:24 +0200
0 - 0 - 0 verifiedcarder.ws 185.61.137.107
2019-06-17 12:04:00 +0200
0 - 0 - 0 https://secnoti393kd.host/e1KZVxlLvnggrandee8 (...) 185.61.138.17
2019-06-12 18:01:43 +0200
0 - 0 - 0 https://notimaer.club/eGA5QyPCPolisaemekaBfd8 (...) 185.61.138.166
2019-06-10 22:32:11 +0200
0 - 1 - 0 alphasisnotgay.ga/ 188.209.49.72
2019-06-10 17:46:31 +0200
0 - 1 - 0 patch-exodius2.org/DF_new_Patcher/admin/DarkF (...) 188.209.52.51
2019-06-10 12:16:18 +0200
0 - 0 - 1 ms-support-htmt0.xyz/facebook/Shwq0 188.209.49.158
2019-06-10 12:07:48 +0200
0 - 0 - 1 ms-support-htqi5.xyz/facebook/TPxms 188.209.49.158

No other reports on domain: attentionbenefit.club



JavaScript

Executed Scripts (58)


Executed Evals (0)


Executed Writes (5)

#1 JavaScript::Write (size: 2, repeated: 1) - SHA256: c59dc4e44ff99288156d4dff2168f6ac7ddee6b1fc7ccc0754656ffaa6d351ea

                                        +1
                                    

#2 JavaScript::Write (size: 13, repeated: 2) - SHA256: e5e82e7883e0b3cb35f5ec2d0d2f5f66e343edcd81eb2cf11eb5612fd1e4fdb2

                                        77.40.129.123
                                    

#3 JavaScript::Write (size: 33, repeated: 1) - SHA256: 8c143cad2a74deb415da64cf32229dbde89fafef4b909ea24fb067a54a80be81

                                        Friday, February 22, 2019 3: 44 AM
                                    

#4 JavaScript::Write (size: 10, repeated: 2) - SHA256: 9e2abf1f47faabbc6d077205a39501466ec09e2f53a6e404ad85546f9d182ca9

                                        PC Cleanup
                                    

#5 JavaScript::Write (size: 9, repeated: 32) - SHA256: eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c

                                        undefined
                                    


HTTP Transactions (38)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: attentionbenefit.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         188.209.49.16
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 11 Feb 2019 15:08:29 GMT
Etag: W/"a5ac-5819fae6d1711"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14157
Md5:    18ccd8762ed9c34e5579414fc2985aec
Sha1:   d5a376c75d5374afea3473e96aec2cf85661e565
Sha256: 8dcc542d265c6803e2fb1896d97a0ed5b92982f781039f846c9b156990af0a0c

Alerts:
  urlquery:
    - Promotion scam / Brand infringement
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: attentionbenefit.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         188.209.49.16
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   290
Md5:    ea90ef5beb6f362a7380690d91aaca46
Sha1:   76b104415e1f85cd6d23451acec9e8283d520750
Sha256: 0a093b21c0e482b2a802b83a961b38e2d14d25826187c2edaa577846827d1dbe
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 16 Feb 2019 14:43:21 GMT
Etag: FB6444EAF5DD9F50509B25D2BF36778D0A0A6F77
X-OCSP-Responder-ID: mcdpcaocsp5
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=128930
Expires: Sat, 23 Feb 2019 14:32:57 GMT
Date: Fri, 22 Feb 2019 02:44:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    0e26ef27e6beee892d42b36c973d3c5a
Sha1:   fb6444eaf5dd9f50509b25d2bf36778d0a0a6f77
Sha256: ccd8e0b8441f8712b87e81c15d56f924c09666d16b8e7dff774190591fdbd846
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 17 Feb 2019 02:40:12 GMT
Etag: 371D91887CE41A530BA14B20321305335265EA84
X-OCSP-Responder-ID: mcdpcaocsp5
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=171971
Expires: Sun, 24 Feb 2019 02:30:18 GMT
Date: Fri, 22 Feb 2019 02:44:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    7b8ba0435e67a0f048314842b9f5b387
Sha1:   371d91887ce41a530ba14b20321305335265ea84
Sha256: 8f75d4dcbf5a54252385db9bc4ccf0a1df2a6f56d8ebcac373fca929419ca598
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 17 Feb 2019 02:40:12 GMT
Etag: 7945AAB37866CC6A8C1827B5A33E0D97CF0AD82B
X-OCSP-Responder-ID: mcdpcaocsp7
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=171926
Expires: Sun, 24 Feb 2019 02:29:33 GMT
Date: Fri, 22 Feb 2019 02:44:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    899d241d38d34071a61f14bcace0a952
Sha1:   7945aab37866cc6a8c1827b5a33e0d97cf0ad82b
Sha256: da84335a6fcffd04edfb14bc2604ba9c877a50d635c256a1823e0e5fdb575235
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: attentionbenefit.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         188.209.49.16
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   290
Md5:    ea90ef5beb6f362a7380690d91aaca46
Sha1:   76b104415e1f85cd6d23451acec9e8283d520750
Sha256: 0a093b21c0e482b2a802b83a961b38e2d14d25826187c2edaa577846827d1dbe
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 20 Feb 2019 05:58:45 GMT
Etag: BA48CAFA9F6568170A90ED12F66DB7D4C2F0CA9B
X-OCSP-Responder-ID: mcdpcaocsp13
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=443074
Expires: Wed, 27 Feb 2019 05:48:44 GMT
Date: Fri, 22 Feb 2019 02:44:10 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    ddc999adff8096ea8464e666e8ab50e9
Sha1:   ba48cafa9f6568170a90ed12f66db7d4c2f0ca9b
Sha256: da911ec7938e08b4a04af3a3ce74ce3881505e99ed0218a2c4fe4015995c920b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 17 Feb 2019 02:40:12 GMT
Etag: 031E60CD42611A93ADDA1716E0397BD341925218
X-OCSP-Responder-ID: mcdpcaocsp6
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=171938
Expires: Sun, 24 Feb 2019 02:29:48 GMT
Date: Fri, 22 Feb 2019 02:44:10 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    23eeade78b333f73b0042d6ae26c5be9
Sha1:   031e60cd42611a93adda1716e0397bd341925218
Sha256: 87f4064ef7eef2956ff1715741636f990e05eab92c218e62c507203af0ed89ac
                                        
                                            GET /3ded7ab2-4571-42ad-a707-5bda015febb1 HTTP/1.1 
Host: track.mobile-devices-only.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://attentionbenefit.club/

                                         
                                         35.157.125.133
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:10 GMT
Content-Length: 582
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Set-Cookie: 3ded7ab2-4571-42ad-a707-5bda015febb1-v4=3ded7ab2-4571-42ad-a707-5bda015febb1;domain=track.mobile-devices-only.com;path=/;HttpOnly cc-v4=rlZDyJTCFqtEvTFwUIQ0B7TLad868JrnsJkUVrpNcOq56%2BXEK1u3OvI2nxNpHdxYfdbRNLw7iPTOixXITf0Q9oufME2Q2rJU8wflGo0bWmnaSGFBY9S%2BtH7pNp21G3UB3bVyRbk7jn0lZ4W8qkvTeQ%3D%3D;Max-Age=31536000;Expires=Sat, 22-Feb-2020 02:44:10 GMT;domain=track.mobile-devices-only.com;path=/;HttpOnly


--- Additional Info ---
Magic:  HTML document text
Size:   582
Md5:    638a7decf1707f9496047131d4b907eb
Sha1:   d11740f013cc4a695d5985b85f8a7d03707d8d53
Sha256: b3817a52220e49eb96f5a8a738b550015cd43bc9929b171d46e924a0f711df01
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "B1D4C276302BE2B263FB16D9CB238444CABBE62809DB2F0CFA96590468BF7FCF"
Last-Modified: Tue, 19 Feb 2019 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43060
Expires: Fri, 22 Feb 2019 14:41:50 GMT
Date: Fri, 22 Feb 2019 02:44:10 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    76426b723082f036bad52c1e82a5afc2
Sha1:   7b8f1b396b371f58f142d5efa48300fcbb006b88
Sha256: b1d4c276302be2b263fb16d9cb238444cabbe62809db2f0cfa96590468bf7fcf
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.121
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Mon, 18 Feb 2019 11:15:13 GMT
Etag: "3181b9760fa132ea88992062f2c1560189951822"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=7923
Expires: Fri, 22 Feb 2019 04:56:13 GMT
Date: Fri, 22 Feb 2019 02:44:10 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    5bf45efbe92bfab383f4b8f8bd00d54f
Sha1:   3181b9760fa132ea88992062f2c1560189951822
Sha256: 54fb6a87e1186f5a1775b7383f39b345df6cdadf315d86329a52d28606d72e7e
                                        
                                            GET /?utm_medium=68ae8e33d8e9b002d6bca482a88447c03efb0fb2&utm_campaign=vAuto41&1=wIPH28FRBQ8LQAIK15AIRIFQ&cid=franz HTTP/1.1 
Host: track.next-level-track.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://track.mobile-devices-only.com/3ded7ab2-4571-42ad-a707-5bda015febb1

                                         
                                         198.143.165.222
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: u=5893d109b7d9baa56c265e71b74b3a4e; expires=Sat, 22-Feb-2020 02:44:11 GMT; Max-Age=31536000; path=/
Strict-Transport-Security: max-age=31536000; includeSubdomains;
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2317
Md5:    a3ea58dd83bbe59cb09310b0764932be
Sha1:   bd560e73844df72a23f5514be909f029b276b215
Sha256: 91761299e4919445060f075fc388cea7586332e30e744c8ae630dc46f2b21519
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: track.next-level-track.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: u=5893d109b7d9baa56c265e71b74b3a4e

                                         
                                         198.143.165.222
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:12 GMT
Content-Length: 1150
Last-Modified: Wed, 04 Oct 2017 19:16:17 GMT
Connection: keep-alive
Etag: "59d53381-47e"
Expires: Sat, 23 Feb 2019 02:44:12 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000; includeSubdomains;
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    91abe01116ab422c598e9c8af72cf4da
Sha1:   0f2815fe8e067d48537ad168225ab4674271fa27
Sha256: b1d7aef06456fe7431124129a28f0138bb5fccfa4f4161e3087de23c005e5edc
                                        
                                            GET /?utm_term=6660650104619270173&clickverify=1&utm_content=fdc2c69a9cafac9c939496a19e9291a58b8bb8ccbecabcbd83828787b68081818aa6beb98eb8b8b482b1b0b0b2b7b7b4ababa8aaa8aba49da3939091969794a7deebdaddeeefec99909685e1e6e7d5d4cdcdf8c1c6cafccdc2c6c0c1c2c1c1f5fafbf8f9fefdfefdf2f3a1f9f6fff4f5ab HTTP/1.1 
Host: track.next-level-track.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://track.next-level-track.com/?utm_medium=68ae8e33d8e9b002d6bca482a88447c03efb0fb2&utm_campaign=vAuto41&1=wIPH28FRBQ8LQAIK15AIRIFQ&cid=franz
Cookie: u=5893d109b7d9baa56c265e71b74b3a4e

                                         
                                         198.143.165.222
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=31536000; includeSubdomains;
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1750
Md5:    42ff889c2b8110e880450d9a2769cff2
Sha1:   e86bd5a0c462b841d762ca4ac11508f1dea2ec64
Sha256: e92a3717966b7ec0134b37f8c385fd88c2f931e625d21a6ba1eb0c37c4630168
                                        
                                            GET /proc.php?5f8a238bcc137dcff5a81d3ca508c5fab4608c65 HTTP/1.1 
Host: track.next-level-track.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://track.next-level-track.com/?utm_term=6660650104619270173&clickverify=1&utm_content=fdc2c69a9cafac9c939496a19e9291a58b8bb8ccbecabcbd83828787b68081818aa6beb98eb8b8b482b1b0b0b2b7b7b4ababa8aaa8aba49da3939091969794a7deebdaddeeefec99909685e1e6e7d5d4cdcdf8c1c6cafccdc2c6c0c1c2c1c1f5fafbf8f9fefdfefdf2f3a1f9f6fff4f5ab
Cookie: u=5893d109b7d9baa56c265e71b74b3a4e

                                         
                                         198.143.165.222
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://tracking.marketing/e7acd77b-6484-4010-bef0-64552b7907f1?partner_id=869&pid=869-89fe6822&payout=[[amount]]&clickid=6660650104619270173
Strict-Transport-Security: max-age=31536000; includeSubdomains;


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 17 Feb 2019 21:07:48 GMT
Etag: 9C720518C7BD04260B84239F36E4434C5CC68C6B
X-OCSP-Responder-ID: mcdpcaocsp12
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=238356
Expires: Sun, 24 Feb 2019 20:56:49 GMT
Date: Fri, 22 Feb 2019 02:44:13 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    7ca811cfa7d99329d80fde12a7b169db
Sha1:   9c720518c7bd04260b84239f36e4434c5cc68c6b
Sha256: b780fc1eb4a9ae57aa80840c012ff228f54b3e264b175b441683e7534f65c496
                                        
                                            GET /e7acd77b-6484-4010-bef0-64552b7907f1?partner_id=869&pid=869-89fe6822&payout=[[amount]]&clickid=6660650104619270173 HTTP/1.1 
Host: tracking.marketing
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://track.next-level-track.com/?utm_term=6660650104619270173&clickverify=1&utm_content=fdc2c69a9cafac9c939496a19e9291a58b8bb8ccbecabcbd83828787b68081818aa6beb98eb8b8b482b1b0b0b2b7b7b4ababa8aaa8aba49da3939091969794a7deebdaddeeefec99909685e1e6e7d5d4cdcdf8c1c6cafccdc2c6c0c1c2c1c1f5fafbf8f9fefdfefdf2f3a1f9f6fff4f5ab

                                         
                                         18.195.174.160
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173
Pragma: no-cache
Set-Cookie: e7acd77b-6484-4010-bef0-64552b7907f1-v4=e7acd77b-6484-4010-bef0-64552b7907f1;domain=tracking.marketing;path=/;HttpOnly cep-v4=Ee9NUavsFIqtvYm1vEHS8V1CfcJig927FRGtyGBL5MpqMM9VWu5SS9Z0AXDwRiPSeGzAvqMrsnnvWfhyHRFVTHedNKz5Mpf44I5ff8S74uFZlqj3g63Zl269_UPv3BwXInX91jpRxhgqd6LeDHrtq8QfMmNOQYcyYBoc7sEtJB5aIyKswgr-WCd7kWVwl3cNeLU_ywJjxPsE2fLqUT-IyxedQ8QPUvx7hRhtUCmNMcvAI8Npb00UKguXgcqvlwrDcOzZEhUwUUSDsvoYDm2y2A;Max-Age=86400;Expires=Sat, 23-Feb-2019 02:44:13 GMT;domain=tracking.marketing;path=/;HttpOnly


--- Additional Info ---
                                        
                                            GET /tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173 HTTP/1.1 
Host: www.microsoft.com-repair-windows.live
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.29.39.28
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Cache-Control: no-store, no-cache, private, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 0
Content-Length: 3292
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 22 Feb 2019 02:44:13 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3292
Md5:    9a44ed3729bc7d636b6c3fc63debfd9c
Sha1:   fe34e68f34df252cc94a526bbed464662a6e9f6a
Sha256: f04806c01e7e7a4a5554bb8d018c2a0356bf71fe0a51e8fe43313dee66a203f8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 17 Feb 2019 15:43:12 GMT
Etag: 44D314789A5A521BF72783F038E1FFADF087B79A
X-OCSP-Responder-ID: mcdpcaocsp15
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=218908
Expires: Sun, 24 Feb 2019 15:32:41 GMT
Date: Fri, 22 Feb 2019 02:44:13 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0fff76181e1f25fc3c58787cd51fb3d2
Sha1:   44d314789a5a521bf72783f038e1ffadf087b79a
Sha256: 24575006a2bd3c4c207a3d30ab4d16dfbe8e73c07f7191321a9df11b67dd920e
                                        
                                            GET /wintonic/language-set.js HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Oct 2018 11:12:28 GMT
Etag: W/"208002e-13e0a-5795c24ff6702"
Vary: Accept-Encoding
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Content-Encoding: gzip
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   24138
Md5:    955c152fdf7f07783bb010d86c59367d
Sha1:   d63eb6442bc7266ee4fc775e95fffb08879c5b3a
Sha256: 60ca343beb133bf12b2e0766f4ba6eec87f2a50eea2ad5cbe183c7d698e6a7c7
                                        
                                            GET /wintonic/language-version-1.js HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:37 GMT
Etag: W/"208002f-286-579291d6784dc"
Vary: Accept-Encoding
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Content-Encoding: gzip
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   212
Md5:    99aa3dc2bd39f45a7472c0a6973af2b0
Sha1:   1f8425f4af9d58b4a49d6dd79144e52c1ced1daf
Sha256: 771daba88988e9a490f757727de19bc9f650be684715b76c272d2209d4ab6813
                                        
                                            GET /wintonic/main.css HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:38 GMT
Etag: W/"2080033-312a-579291d7c7437"
Vary: Accept-Encoding
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Content-Encoding: gzip
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2466
Md5:    7427e7a218949ed8218d57dcdcb24bb6
Sha1:   a5aae4db265e649c1870799f0cfd448e845debd9
Sha256: 0cc321363ea5079dacf46d74881327bf2a35a18a9e40c5ee06c7f69e5c2b7ac0
                                        
                                            GET /wintonic/arrow_animation.gif HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 7944
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:36 GMT
Etag: "2080028-1f08-579291d5237c1"
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  GIF image data, version 89a, 52 x 81
Size:   7944
Md5:    191a79ed3fd7888397607c5c11d01c0a
Sha1:   42b787651fb505f62baa7bf1b6c3799a83545f01
Sha256: 5b51195b8674efdfbf920a779f9eb0ab2761a44c1d634ac7fb5bb0a19800aaa5
                                        
                                            GET /wintonic/moment-with-locales.min.js HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:42 GMT
Etag: W/"2080034-51e22-579291db6fc8a"
Vary: Accept-Encoding
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Content-Encoding: gzip
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   68191
Md5:    596d15e479c326934d94647d9124e7d9
Sha1:   c3474258724266af350dffde825ec737e86217f2
Sha256: c33b668e9f4f9962f3b96a701d25ccb005e039cf669228dc07fcef13f2d558ff
                                        
                                            GET /wintonic/arrow_animation2.gif HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 7948
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:35 GMT
Etag: "2080027-1f0c-579291d4f8842"
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  GIF image data, version 89a, 52 x 81
Size:   7948
Md5:    349b50e16935b94e57e41057242b027e
Sha1:   605040917d46275c90e32a4d8b8012a4f4f5fc0c
Sha256: 3daba949a682d184ffb892cd8b1a1ce4e4e9b13cb8d8e70334110a3c62a142cd
                                        
                                            GET /wintonic/icon_saf.png HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 487
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:37 GMT
Etag: "208002d-1e7-579291d60223e"
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  PNG image, 41 x 27, 8-bit colormap, non-interlaced
Size:   487
Md5:    49d5ea266773725cab19e0eb03ca4936
Sha1:   b4f649a30acac282306f1dff23323be70d72ef35
Sha256: 36f016b0cf55a9ec191762f78060fd203ee96aff86407e0612982f09a3b2faee
                                        
                                            GET /jquery-3.3.1.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         205.185.208.52
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 22 Feb 2019 02:44:13 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 30288
Last-Modified: Sat, 20 Jan 2018 17:26:44 GMT
Server: nginx
Etag: "5a637bd4-1538f"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1550803453.dop006.sk1.t,1550803453.cds016.sk1.shn,1550803453.cds016.sk1.c


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   30288
Md5:    d549b312f7a7d228b4ec229a6547dfdc
Sha1:   0766794582ad530ec0f8c2595f741086afffa312
Sha256: f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
                                        
                                            GET /wintonic/header-bar3.png HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 7774
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:36 GMT
Etag: "208002c-1e5e-579291d5eab3f"
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  PNG image, 2457 x 179, 8-bit colormap, non-interlaced
Size:   7774
Md5:    f70354c70bb1a712be321ad68f3af4c6
Sha1:   8a7f3e71d159b0addc52f76815ab6a27e13c8852
Sha256: 7aaa3cf934609efcc6c49030df4cfed6e05b3bd57efbb082418b268aed8e3407
                                        
                                            GET /wintonic/windows_warning.png HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 3766
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:41 GMT
Etag: "2080036-eb6-579291d9d9890"
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  PNG image, 104 x 100, 8-bit/color RGBA, non-interlaced
Size:   3766
Md5:    9c18b5b03e84cff76a11af8b38675412
Sha1:   264aaf0c3402af05c05da515647f4820bd010262
Sha256: 5b668e040f2a37da85988289b1ffab9689e1040261fd5ec83c75e2083ec225f0
                                        
                                            GET /wintonic/cross.png HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 344
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:36 GMT
Etag: "2080029-158-579291d550681"
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   344
Md5:    7d7f814263c715b2ee3751e2c6d371f0
Sha1:   33e7891bc6da95011d8e82196fc69ae8be920bb1
Sha256: 9b1192a77adc835c1665f249fd08384d10a447271925e6d81fcdc8fdfba7771e
                                        
                                            GET /wintonic/loading.gif HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 14005
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:38 GMT
Etag: "2080030-36b5-579291d730dfa"
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  GIF image data, version 89a, 128 x 128
Size:   14005
Md5:    865b37c9ff3d6043d7f7ad85240cb8b6
Sha1:   dbb90ceb0b04b01a8ecb2935086db761d8362718
Sha256: 2ab649297ad5fe176d49bd95696774b8f19ba88b91f82137e15c3f73a1289581
                                        
                                            GET /wintonic/dreq.png HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 720
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:36 GMT
Etag: "208002b-2d0-579291d5a55e0"
X-Age: 37404
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  PNG image, 64 x 64, 8-bit colormap, non-interlaced
Size:   720
Md5:    3d8d18b36d9ee4ed1bd7afc26ed6fa15
Sha1:   4363e22249e9343a20d061e2539ae5b09f168e08
Sha256: b62f1a81bfc0d281c853d7d1169c8866e33b58c7a990734cb6d6d91b2dbaf49a
                                        
                                            GET /wintonic/main.js HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:38 GMT
Etag: W/"2080032-332-579291d793818"
Vary: Accept-Encoding
X-Age: 37403
X-Cache: HIT
X-Storage: 579691579:8001
Content-Encoding: gzip
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   423
Md5:    24249f8bcf2cde002d80fe93d4b4e33f
Sha1:   c3bcfbf3eaf160c72ba5e26072b798622b2d4218
Sha256: b33342184a4144204fe1dfd6e2487e572e1c437b83d210725c416883233e6317
                                        
                                            GET /wintonic/tick.png HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 381
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:39 GMT
Etag: "2080035-17d-579291d84b195"
X-Age: 37396
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   381
Md5:    1ef4e0a8e19946d2d73c44a63d4e4160
Sha1:   8ede6ac3d58691d4bf744529915a3eae5308662c
Sha256: 562b29e08c7d623d3604b9fce91a6715c5f3d14ce62fee4e3c806b72528402ce
                                        
                                            GET /wintonic/script.js HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 19 Feb 2019 14:37:30 GMT
Etag: W/"208000d-8e6-582402e5d7c8f"
Vary: Accept-Encoding
X-Age: 86709
X-Cache: HIT
X-Storage: 579691579:8001
Content-Encoding: gzip
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   963
Md5:    b47a1b2578ed3646af69cb6dac444874
Sha1:   b670545368779264c90cfb28d5eff8098d0e9c30
Sha256: 6d6283e9daeae46a375f3ffd13b53906964987dd60bbc3304e9dd30c7f10545d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         104.18.25.243
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 1831
Connection: keep-alive
Set-Cookie: __cfduid=de40e88e4fa14c45251420fa8ac2043781550803453; expires=Sat, 22-Feb-20 02:44:13 GMT; path=/; domain=.msocsp.com; HttpOnly
Last-Modified: Fri, 22 Feb 2019 00:55:56 GMT
Expires: Tue, 26 Feb 2019 00:55:56 GMT
Etag: "274413d91bcd12654ac1bd57f837c2a5d8d551e2"
X-Cache: HIT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ace1c12dccd4273-OSL


--- Additional Info ---
Magic:  data
Size:   1831
Md5:    49e7c4b24cc1fb6f90e5ed357992c511
Sha1:   274413d91bcd12654ac1bd57f837c2a5d8d551e2
Sha256: 7e02bac01f25169e5bd8ff76bc7ce8fe3b3f20bf8864b1c0b6179d696c597014
                                        
                                            GET /wintonic/decal.png HTTP/1.1 
Host: pc.ourcdn.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.microsoft.com-repair-windows.live/tonic2/?campid=e7acd77b-6484-4010-bef0-64552b7907f1&model=Desktop&os=Windows%207&city=Oslo&zn=869&sc=a8a456ba-edc9-4326-80f5-1759b60ceed2&ip=77.40.129.123&ua=Mozilla%2F5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko%2F20101203%20Firefox%2F3.6.13&browser=Firefox&browserversion=Firefox%203&lang=en&connection=XDSL&isp=Broadnet%20AS&carrier=&cep=Aq3S_QqvUOds19e_bdsVBLjp5Etty7D6Cjx1uqmNVkXX9UNLd_Z16gcOYk-jeYAsN_c4rl6ulg3_DcS9ajCSlHhe2KYSZa90L0IbxUW9UkC3_pIDFMg8LW2GVDJl4UeEVyDUaZ-fuGU_sSsVvIXiV3sQjejz4jlSZf9Vwh9nZVIfjp7OfbDzilOHmbAjRzI13OnNcYxgMBLiP1eLvPnewl2B6TGa3uIW96ds2pkhWIUHl2TqYaJ1ifxe4KjqFVr40ld-WCgYSLZ_EKMCpmK-VA&partner_id=869&pid=869-89fe6822&payout=%5B%5Bamount%5D%5D&clickid=6660650104619270173

                                         
                                         94.254.0.211
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 22 Feb 2019 02:44:13 GMT
Content-Length: 112
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 22:19:36 GMT
Etag: "208002a-70-579291d5796c0"
X-Age: 37347
X-Cache: HIT
X-Storage: 579691579:8001
Accept-Ranges: bytes
X-Edge-IP: 5.150.254.150
X-Edge-Location: Stockholm, SE


--- Additional Info ---
Magic:  PNG image, 11 x 102, 4-bit colormap, non-interlaced
Size:   112
Md5:    b5c0ef0ead0631ffad8876b121e4be2c
Sha1:   1becbeb533bc8ae136615db03e9bc39482fc02bc
Sha256: 965dda64e39715338f9d580eb450f34299830b803879bd5d0d6087d6dad1ac94
                                        
                                            GET /favicon.ico?v2 HTTP/1.1 
Host: c.s-microsoft.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         88.221.73.110
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Tue, 09 Jun 2015 04:52:20 GMT
Accept-Ranges: bytes
Etag: "1D0A270110F5A00"
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Credentials: true
P3P: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
X-Frame-Options: SAMEORIGIN
Content-Length: 17174
Cache-Control: public, max-age=281311
Expires: Mon, 25 Feb 2019 08:52:44 GMT
Date: Fri, 22 Feb 2019 02:44:13 GMT
Connection: keep-alive
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  MS Windows icon resource - 6 icons, 16-colors
Size:   17174
Md5:    12e3dac858061d088023b2bd48e2fa96
Sha1:   e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
Sha256: 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21