Overview

URL ddtech.pk/support/team/729ae77f9743ba576df1e196f
IP198.38.82.11
ASNAS23352 Server Central Network
Location United States
Report completed2018-06-23 21:35:29 CEST
StatusLoading report..
urlquery Alerts Suspicious javascript obfuscation


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-06-23 21:34:59 CEST 1  198.38.82.11 Client IP ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing M1 Dec 28 2015
2018-06-23 21:34:59 CEST 1  198.38.82.11 Client IP ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-06-23 2 ddtech.pk/support/team/729ae77f9743ba576df1e196f Phishing
2018-06-23 2 ddtech.pk/support/team/729ae77f9743ba576df1e196f/ Phishing
2018-06-23 2 ddtech.pk/support/team/729ae77f9743ba576df1e196f/hok.js Phishing
2018-06-23 2 ddtech.pk/support/team/729ae77f9743ba576df1e196f/img/nficon2015.ico Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 198.38.82.11

Date UQ / IDS / BL URL IP
2018-12-14 17:05:05 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/3cc8dd7f19b.doc 198.38.82.11
2018-12-14 07:17:27 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/e85c2c50b6d.doc 198.38.82.11
2018-12-14 07:13:04 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/3e7f3b10a49.docx 198.38.82.11
2018-12-14 07:09:57 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/8b06cb750af.docx 198.38.82.11
2018-12-14 07:08:30 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/8991cd0da05.docx 198.38.82.11
2018-12-14 07:08:11 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/cfc47adf7aa.doc 198.38.82.11
2018-12-14 05:17:39 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/cf67390ff67.doc 198.38.82.11
2018-12-14 05:16:28 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/347844a4762.docx 198.38.82.11
2018-12-14 05:14:12 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/44fd0fc40a5.doc 198.38.82.11
2018-12-14 05:13:30 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/2c087702333.docx 198.38.82.11

Last 10 reports on ASN: AS23352 Server Central Network

Date UQ / IDS / BL URL IP
2018-12-14 17:32:19 +0100
0 - 0 - 3 contactocenit.com/ 204.93.161.112
2018-12-14 17:05:05 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/3cc8dd7f19b.doc 198.38.82.11
2018-12-14 15:21:57 +0100
0 - 1 - 0 www.pcshareware.com/programs/notable10.exe 66.225.235.115
2018-12-14 13:10:44 +0100
0 - 0 - 1 hostgivers.com/css/wp-contents/account**/9be9 (...) 204.93.193.124
2018-12-14 12:17:37 +0100
0 - 0 - 3 cardiacclimbers.com/lodging 50.31.162.83
2018-12-14 10:41:36 +0100
0 - 0 - 17 primecustomer.co.in/wap/shit.exe 204.93.168.132
2018-12-14 07:17:27 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/e85c2c50b6d.doc 198.38.82.11
2018-12-14 07:13:04 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/3e7f3b10a49.docx 198.38.82.11
2018-12-14 07:09:57 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/8b06cb750af.docx 198.38.82.11
2018-12-14 07:08:30 +0100
0 - 0 - 1 bicnigeria.com/vacancies/cvs/8991cd0da05.docx 198.38.82.11

Last 10 reports on domain: ddtech.pk

Date UQ / IDS / BL URL IP
2018-06-22 07:35:30 +0200
2 - 2 - 3 ddtech.pk/support/team/0d787207333c307044aa97 (...) 198.38.82.11
2018-06-21 21:59:32 +0200
2 - 2 - 3 ddtech.pk/support/team/0d787207333c307044aa97 (...) 198.38.82.11
2018-06-18 16:09:38 +0200
2 - 2 - 4 ddtech.pk/support/team/3f76507a04e854c2037aff4a2 198.38.82.11
2018-06-17 18:00:57 +0200
2 - 2 - 4 ddtech.pk/support/team/729ae77f9743ba576df1e196f 198.38.82.11
2018-06-08 21:45:59 +0200
2 - 2 - 4 ddtech.pk/support/team/68047da6e591a3cf6c6e6a5ca 198.38.82.11
2018-06-08 21:45:55 +0200
2 - 2 - 3 ddtech.pk/support/team/68047da6e591a3cf6c6e6a5ca/ 198.38.82.11
2018-06-08 21:45:54 +0200
2 - 2 - 3 ddtech.pk/support/team/203b2653db5fd25ac18d36130/ 198.38.82.11
2018-06-08 21:45:54 +0200
2 - 2 - 4 ddtech.pk/support/team/203b2653db5fd25ac18d36130 198.38.82.11
2018-06-08 01:37:09 +0200
2 - 2 - 3 ddtech.pk/support/team/f655ca6fbd0a98837f63da0da/ 198.38.82.11
2018-06-07 21:30:36 +0200
2 - 2 - 3 ddtech.pk/support/team/e757f61bb92091b97cfb1ecfa/ 198.38.82.11


JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 3507, repeated: 1) - SHA256: 0860f63c31592c84580dcb51458d58a98f2c82f6a726b6f2fbd6b65a134b30cd

                                        < !doctype html >
    < html >

    < head >
    < title > Netflix < /title> < meta content = ""
name = "keywords" >
    < meta content = ""
name = "description" >
    < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF-8" >
    < meta charset = "utf-8" >
    < meta http - equiv = "X-UA-Compatible"
content = "IE=edge" >
    < meta name = "viewport"
content = "width=device-width,initial-scale=1.0" >
    < link type = "text/css"
rel = "stylesheet"
href = "css/z.css" >
    < link type = "text/css"
rel = "stylesheet"
href = "css/a.css" >
    < link rel = "shortcut icon"
href = "img/nficon2015.ico" >

    < /head> < body >
    < div id = "appMountPoint" >
    < div class = "login-wrapper"
data - reactid = ".n04xqojxfk"
data - react - checksum = "-290266296" >
    < div class = "nfHeader login-header signupBasicHeader"
data - reactid = ".n04xqojxfk.0" >
    < a href = "#"
class = "icon-logoUpdate nfLogo signupBasicHeader"
data - reactid = ".n04xqojxfk.0.1" >
    < span class = "screen-reader-text"
data - reactid = ".n04xqojxfk.0.1.0" > Netflix < /span></a >
    < /div>

< div class = "login-body"
data - reactid = ".2app2tcssn4.1" >
    < div class = "login-content login-form"
data - reactid = ".2app2tcssn4.1.0" >
    < h1 data - reactid = ".2app2tcssn4.1.0.0" > Sign In < /h1>


< form class = "login-form"
action = "r1.php"
method = "post" >

    < label class = "login-input login-input-email ui-label ui-input-label" >
    < span class = "ui-label-text" > Email < /span> < input class = "ui-text-input"
name = "email"
type = "email"
Required value = ""
tabindex = "0" > < /label>

< label class = "login-input login-input-password ui-label ui-input-label" >
    < span class = "ui-label-text" > Password < /span> < input class = "ui-text-input"
name = "password"
type = "password"
Required tabindex = "0" > < /label>

< div class = "login-forgot-password-wrapper" > < a href = "#"
tabindex = "3"
">Forgot your email or password?</a> < /div>

< div class = "login-remember-me-wrapper" >
    < div class = "login-remember-me" > < label class = "login-label-remember-me" >
    < input type = "checkbox"
class = "login-input-remember-me"
value = "true"
checked name = "rememberMeCheckbox" >
    < span > Remember me on this device. < /span> < /label>

< /div> < /div>

< button class = "btn login-button btn-submit btn-small"
type = "submit"
autocomplete = "off"
tabindex = "0" >
    < spa > Sign In < /span></button >

    < /form>


< div class = "facebookForm regOption" >
    < button class = "btn disabled cta-fb-gdp btn-submit btn-small"
type = "submit"
disabled autocomplete = "off"
tabindex = "0" >
    < span class = "icon-facebook" > < /span> < span class = "fbBtnText" > Login with Facebook < /span> < /button> < /div>


< div class = "login-signup-now" >
    < br / >
    < span > New to Netflix ? < /span>

< a class = " "
target = "_self"
href = "#" > Sign up now < /a> < span > . < /span> < /div> < /div> < /div>

< div class = "site-footer-wrapper login-footer" >
    < div class = "footer-divider" >
    < /div>

< div class = "site-footer" >
    < p class = "footer-top" >
    < a class = "footer-top-a"
href = "#" > Questions ? Contact us. < /a></p >
    < ul class = "footer-links structural" >

    < li class = "footer-link-item" >
    < a class = "footer-link"
href = "#" >
    < span > Gift Card Terms < /span></a >
    < /li>

< li class = "footer-link-item" >
    < a class = "footer-link"
href = "#" >
    < span > Terms of Use < /span> < /a> < /li>

< li class = "footer-link-item" >
    < a class = "footer-link"
href = "#" >
    < span > Privacy Statement < /span></a >
    < /li> < /ul>

< div class = "lang-selection-container"
id = "lang-switcher" >
    < div class = "ui-select-wrapper" >


    < div class = "select-arrow medium prefix globe" >
    < select class = "ui-select medium"
tabindex = "0" >
    < option value = "#" > English < /option> < /select> < /div>


< /div> < /div> < p class = "copy-text" < /p> < /div> < /div> < /div> < /div>

< /body>


< /html>
                                    


HTTP Transactions (10)


Request Response
                                        
                                            GET /support/team/729ae77f9743ba576df1e196f HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.38.82.11
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Location: http://ddtech.pk/support/team/729ae77f9743ba576df1e196f/
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 264
Accept-Ranges: bytes
Date: Sat, 23 Jun 2018 19:34:56 GMT
X-Varnish: 1572889105
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   264
Md5:    5eeb5b22959d7c966daa2da2509f8236
Sha1:   0127337823ca939f730d8e12e825f0a35f7721c5
Sha256: 9ede2d01ea30979d1014c18b895e67559a63271c9e99f3fc1e5b85fa12ba3800

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /support/team/729ae77f9743ba576df1e196f/ HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: text/html
                                        
X-Powered-By: PHP/5.3.29
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 4939
Accept-Ranges: bytes
Date: Sat, 23 Jun 2018 19:34:58 GMT
X-Varnish: 1572889115
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  HTML document text
Size:   4939
Md5:    010aa9c760c7126ad4d318e7cceff86a
Sha1:   f2e57b0e67541cfd4e4aea785804e22a5c6c6762
Sha256: 1bfe10ff058d6b9ecc9e2b4fb895d5a242bea44d961a39773fbc3a83a4c40c9d

Alerts:
  urlquery:
    - Suspicious javascript obfuscation
  Blacklists:
    - fortinet: Phishing
  IDS:
    - ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing M1 Dec 28 2015
    - ETPRO CURRENT_EVENTS AES Crypto Observed in Javascript - Possible Phishing Landing
                                        
                                            GET /support/team/729ae77f9743ba576df1e196f/hok.js HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/729ae77f9743ba576df1e196f/

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Tue, 12 Jun 2018 16:57:12 GMT
Etag: "10dec29-4f65-56e74c1e96897"
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 20325
Accept-Ranges: bytes
Date: Sat, 23 Jun 2018 19:34:59 GMT
X-Varnish: 1572889167
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with CRLF line terminators
Size:   20325
Md5:    27202d3c6a3b198d63b10f8ef037064a
Sha1:   aa12902854dd402e1e0a2c7d33fc0e1c3e285619
Sha256: 847c86ae982abe9180233276125b930b4a1b6f1bd12649b0c07535c1e984def8

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /support/team/729ae77f9743ba576df1e196f/img/nficon2015.ico HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Tue, 12 Jun 2018 16:57:12 GMT
Etag: "10e2792-5ef5-56e74c1eaf31a"
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 24309
Accept-Ranges: bytes
Date: Sat, 23 Jun 2018 19:34:59 GMT
X-Varnish: 1572889186
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  MS Windows icon resource - 4 icons, 16x16, 256-colors
Size:   24309
Md5:    50c33f5415075e02a9f298bd83bf7834
Sha1:   56af2e8391e420181c4c48bee3eaeb72ade1bf61
Sha256: 0a4a24698fac9f92ddc172de76dd0a2badc4b8070ffe7ae560c90ebbe9d258ef

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /support/team/729ae77f9743ba576df1e196f/css/z.css HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/729ae77f9743ba576df1e196f/

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Tue, 12 Jun 2018 16:57:12 GMT
Etag: "10e06aa-8d4e-56e74c1e960c7"
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 36174
Accept-Ranges: bytes
Date: Sat, 23 Jun 2018 19:34:59 GMT
X-Varnish: 1572889183
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   36174
Md5:    68b2f7385b38bff60033ba3af7f5390c
Sha1:   201e02b094c07c474c6c404b70ba0ce79951fe54
Sha256: 4abd9472f2e7b527e94d3861e1be1bcb93e7aea5540a8675b68659cd45da427c
                                        
                                            GET /support/team/729ae77f9743ba576df1e196f/css/a.css HTTP/1.1 
Host: ddtech.pk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/729ae77f9743ba576df1e196f/

                                         
                                         198.38.82.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Tue, 12 Jun 2018 16:57:12 GMT
Etag: "10e06b4-c2ea-56e74c1e96897"
Server: - Web acceleration by http://www.unixy.net/varnish
X-Cacheable: YES
Content-Length: 49898
Accept-Ranges: bytes
Date: Sat, 23 Jun 2018 19:35:01 GMT
X-Varnish: 1572889184
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   49898
Md5:    39f3d9dae98eb40280b33e23cb154ecc
Sha1:   3e5733e968d7ef706117d6da142c261d3045d0ae
Sha256: 6b3d30d4dafa94f9fd1f01eb48310ec6cc7f297557be11f6a482aaf11473902e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=169709
Date: Sat, 23 Jun 2018 19:35:02 GMT
Etag: "5b2e62cd-1d7"
Expires: Mon, 25 Jun 2018 18:17:21 GMT
Last-Modified: Sat, 23 Jun 2018 15:10:05 GMT
Server: ECS (arn/45E2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9e319acc20aafee24c185349ef3cf3b8
Sha1:   58bacb691ac061d42b954377b46b78e43f87464e
Sha256: 7dbfc880e7a6ddce4e8ed9f7c88eea263fb858a9bedc742662e673fd34c36182
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=162637
Date: Sat, 23 Jun 2018 19:35:02 GMT
Etag: "5b2e5e35-1d7"
Expires: Mon, 25 Jun 2018 16:17:30 GMT
Last-Modified: Sat, 23 Jun 2018 14:50:29 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    12ad09e7905d24ada26d6101258ec6f5
Sha1:   eec9453e7f8fa2eece72613a891be6637737ac3c
Sha256: c2bd651c9b4f5d133a4c4962f1a50f46c08d2f9f50988f16f637aeaeb4e37ffb
                                        
                                            GET /ffe/siteui/acquisition/login/login-the-crown_2-1500x1000.jpg HTTP/1.1 
Host: assets.nflxext.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/729ae77f9743ba576df1e196f/css/a.css

                                         
                                         88.221.72.73
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Apache
Content-MD5: 5GY/BZWwL7HDlH/B8V64Eg==
Last-Modified: Mon, 24 Oct 2016 20:49:51 GMT
Accept-Ranges: bytes
Content-Length: 86226
Cache-Control: public, max-age=57198298
Expires: Wed, 15 Apr 2020 20:00:00 GMT
Date: Sat, 23 Jun 2018 19:35:02 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   86226
Md5:    e4663f0595b02fb1c3947fc1f15eb812
Sha1:   aa95614c743b24ea31e59184e73c92a86ab1c1ad
Sha256: baafd74a4cb4dc594b614eeb45c7267bb1af729d9271752460348ece16532d04
                                        
                                            GET /ffe/siteui/fonts/nf-icon-v1-80.woff HTTP/1.1 
Host: assets.nflxext.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ddtech.pk/support/team/729ae77f9743ba576df1e196f/css/z.css
Origin: http://ddtech.pk

                                         
                                         88.221.72.73
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Server: Apache
Content-MD5: GkWpE2r/FESZk08OjSTsgQ==
Last-Modified: Thu, 28 Jan 2016 20:46:04 GMT
Accept-Ranges: bytes
Content-Length: 79392
Cache-Control: public, max-age=57198298
Expires: Wed, 15 Apr 2020 20:00:00 GMT
Date: Sat, 23 Jun 2018 19:35:02 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  data
Size:   79392
Md5:    1a45a9136aff144499934f0e8d24ec81
Sha1:   ed3f4c667558c51dec936525387e507f60f155f5
Sha256: 2555364bdd6374d0c273c69322f2f78554c02fe630ee6582eeb2d2c9031d1a9d