Overview

URL aaaaaaaaa9.com/news/politics
IP66.96.147.110
ASNAS29873 The Endurance International Group, Inc.
Location United States
Report completed2019-03-01 17:34:49 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-01 2 aaaaaaaaa9.com/news/politics Phishing
2019-03-01 2 aaaaaaaaa9.com/jscript/theme-scripts.js Phishing
2019-03-01 2 aaaaaaaaa9.com/jscript/lightbox.js Phishing
2019-03-01 2 aaaaaaaaa9.com/jscript/jquery-latest.min.js Phishing
2019-03-01 2 aaaaaaaaa9.com/fonticons/entypo.woff Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 66.96.147.110

Date UQ / IDS / BL URL IP
2019-05-25 15:37:15 +0200
0 - 2 - 0 www.softknoll.com/dls/sign/ost.exe 66.96.147.110
2019-05-23 14:46:51 +0200
0 - 1 - 0 www.sametools.com/dl/ostdemo.exe 66.96.147.110
2019-05-18 12:05:13 +0200
0 - 1 - 0 growingscience.com/msl/Vol9/msl_2019_14.pdf 66.96.147.110
2019-05-17 18:05:33 +0200
0 - 2 - 0 www.softknoll.com/dls/sign/eml.exe 66.96.147.110
2019-05-13 09:30:39 +0200
0 - 1 - 0 www.growingscience.com/msl/Vol9/msl_2019_85.pdf 66.96.147.110
2019-03-28 17:04:28 +0100
0 - 1 - 0 www.sametools.com/dl/ostdemo.exe 66.96.147.110
2019-03-26 12:49:29 +0100
0 - 1 - 0 www.sametools.com/dl/ostdemo.exe 66.96.147.110
2019-03-20 02:40:38 +0100
0 - 0 - 1 kazingachannelviewresort.com/zuxac/izjuthg.php 66.96.147.110
2019-03-01 12:18:36 +0100
0 - 1 - 0 www.sametools.com/dl/ostdemo.exe 66.96.147.110
2019-02-22 07:35:30 +0100
0 - 1 - 0 www.softknoll.com/dls/sign/mbox.exe 66.96.147.110

Last 10 reports on ASN: AS29873 The Endurance International Group, Inc.

Date UQ / IDS / BL URL IP
2019-07-01 10:28:18 +0200
0 - 0 - 0 www.arcireland.com/pos/ 66.96.149.1
2019-06-30 13:49:16 +0200
0 - 0 - 0 www.erikstormtrooper.com/stickerpage1.zip 65.254.227.224
2019-06-30 13:40:01 +0200
0 - 0 - 0 www.erikstormtrooper.com 65.254.227.224
2019-06-27 16:16:51 +0200
0 - 0 - 20 tdalpacafarm.com 65.254.227.240
2019-06-26 12:17:37 +0200
0 - 0 - 0 www.promptbuilders.ca/ 66.96.160.154
2019-06-26 02:08:19 +0200
0 - 0 - 0 carstoflorida.com/wp-content/uploads/2016/04/ (...) 66.96.147.159
2019-06-25 15:35:45 +0200
0 - 0 - 0 www.nicefind.online 66.96.147.101
2019-06-25 13:40:39 +0200
0 - 0 - 0 www.isaca.org.hk 66.96.146.129
2019-06-25 09:48:39 +0200
0 - 0 - 0 https://meetingreminder.com/j/937523737 207.148.248.143
2019-06-25 02:52:56 +0200
0 - 0 - 0 pacificcontours.com 66.96.146.102

No other reports on domain: aaaaaaaaa9.com



JavaScript

Executed Scripts (25)


Executed Evals (10)

#1 JavaScript::Eval (size: 31, repeated: 1) - SHA256: c23df5c760dc257cce4decdb1ada7b79f9e5fdd4c0ea7fba4aad3f3fe102f0ee

                                        typeof flb1762352 != "undefined"
                                    

#2 JavaScript::Eval (size: 31, repeated: 1) - SHA256: fb4c9998f024a563d6edaa3bc31f1bab658a38ec11218304b42cd179e61c33b3

                                        typeof flb1762352 == "undefined"
                                    

#3 JavaScript::Eval (size: 31, repeated: 2) - SHA256: 57c0e69b7d1091f42ed69b454fddbdd70bdb809b4e011bda8a391aa9deee7fb2

                                        typeof flb1762353 != "undefined"
                                    

#4 JavaScript::Eval (size: 31, repeated: 2) - SHA256: 429c0282b2c627596b3072891601e99cb4a048bd3cef1e7535dc3c53c676b411

                                        typeof flb1762353 == "undefined"
                                    

#5 JavaScript::Eval (size: 33, repeated: 1) - SHA256: 80db7a4817878389129ab815be0bbdb7081a68aa144e4659e2cfe51203b98ea6

                                        typeof sndmx1762352 == "undefined"
                                    

#6 JavaScript::Eval (size: 33, repeated: 2) - SHA256: 18c94ff20e59649ebab5482c973e18e1702c76ad34b723ef9e0662ce35072854

                                        typeof sndmx1762353 == "undefined"
                                    

#7 JavaScript::Eval (size: 21, repeated: 1) - SHA256: e89208eed07aa475f8a927fe4ba7e812e462007317e7faaf832fa6ea7aa97cf4

                                        var sndmx1762352 = 1;
                                    

#8 JavaScript::Eval (size: 21, repeated: 1) - SHA256: a24ee81fe56e3c4c1157c34be4b30f93aef736881388e5280633162171c9cc3f

                                        var sndmx1762353 = 1;
                                    

#9 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 019214557855b8dadaa5ede75e5233e6188105860e4f81506f334b7e3348ebbb

                                        window.fragmentPump.data
                                    

#10 JavaScript::Eval (size: 24, repeated: 1) - SHA256: fd4a9c3ef870dc04c521510950ace2ddb30ae9d4d27540ade452f61eb8debc5e

                                        window.fragmentPump.init
                                    

Executed Writes (4)

#1 JavaScript::Write (size: 1229, repeated: 1) - SHA256: 82be67c87175f59594fe5893bfe5f68555fe721aefa9fbbf7c3b3a887071c926

                                        < iframe width = "300"
height = "250"
frameborder = "0"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
sandbox = "allow-forms allow-pointer-lock allow-popups allow-same-origin allow-scripts"
src = "//namel.net/148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCdrjkpjZiiCikAAGjCxCGGNpxNrZkNrZiCrCZijCCrkjCiCrCrGCx&adApiR=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&refferer=2447442435_aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=&width=300&height=250&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=1558657522762&realRef=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" > < /iframe>
                                    

#2 JavaScript::Write (size: 1226, repeated: 1) - SHA256: 9256ae2ecddc3ce49c2f07c55b1b6b688b177d8f44a9602fef7cd72ce6f60441

                                        < iframe width = "728"
height = "90"
frameborder = "0"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
sandbox = "allow-forms allow-pointer-lock allow-popups allow-same-origin allow-scripts"
src = "//namel.net/08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCdrjkpjZiiCdZAdrrCxCGGNpxNrZkNrZiCrCZijCCrkjCiCrCrGCx&adApiR=loaded_string_8005f3d5bb63c9dbdcfb475795d659c65a4e_2229091_1551458056.6766_48361&refferer=2447442435_aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=&width=728&height=90&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=1645293267657&realRef=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" > < /iframe>
                                    

#3 JavaScript::Write (size: 309, repeated: 1) - SHA256: efbbb1f6fd4d0af608fa32c7ad49d9fdd5d0087828e3d46cbbf0a5606acc39ba

                                        < iframe src = "http://yx-ads6.com/bnr_xload.php?section=General&pub=329724&format=300x250&ga=g&xt=155145805568787&xtt=1321082"
width = "300"
height = "250"
frameborder = "0"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
sandbox = "allow-forms allow-pointer-lock allow-popups allow-same-origin allow-scripts" > < /iframe>
                                    

#4 JavaScript::Write (size: 307, repeated: 1) - SHA256: d69fea82193a8c2357d6645377630f49736690903cce435b1d82b8dc9b5e45a1

                                        < iframe src = "http://yx-ads6.com/bnr_xload.php?section=General&pub=329724&format=728x90&ga=g&xt=155145805576652&xtt=1740093"
width = "728"
height = "90"
frameborder = "0"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
sandbox = "allow-forms allow-pointer-lock allow-popups allow-same-origin allow-scripts" > < /iframe>
                                    


HTTP Transactions (104)


Request Response
                                        
                                            GET /button/buttons.js HTTP/1.1 
Host: w.sharethis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         80.239.159.9
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=259200
Content-Encoding: gzip
Etag: W/"5c70397f-d851"
Expires: Mon, 04 Mar 2019 16:26:10 GMT
Server: nginx/1.12.2
Content-Length: 15338
Date: Fri, 01 Mar 2019 16:34:15 GMT
Connection: keep-alive
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15338
Md5:    6e3f9c5707d37b55db13b9d97be51c12
Sha1:   b17d32801ce9ff1c18adc004a87e1800cedfb654
Sha256: c92d8adc7d4e8818596e4a9b0e6313cf28c79c81cc9a9898beeb1c62a3d5000b
                                        
                                            GET /news/politics HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:14 GMT
Content-Length: 63942
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
X-Powered-By: PHP/5.5.22
Set-Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   63942
Md5:    eb395b411d65ab768dba1a8293d78211
Sha1:   7d60eb5cd1fd1360f009d9722823d7a7e8815e34
Sha256: ea6a05ef4dc26d0556177a4dd452644db29b866dfcb3d75d5e8dce1d4d26ec27

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /css/reset.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 1072
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:35 GMT
Etag: "430-530342aaaeb60"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:24 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII text
Size:   1072
Md5:    9b76ccc20fc7fbb3043c440d38d4d134
Sha1:   cef9dffef6cb55077616f7df46cff68ee5c6f62c
Sha256: 6137cd4058c3f89be9c142769d24e0a28f43ec75f649b466875637f8d6538ea2
                                        
                                            GET /css/lightbox.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 2273
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:34 GMT
Etag: "8e1-530342a9753ea"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:24 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII C program text
Size:   2273
Md5:    f15eee4bddc18243923913aad228f0cf
Sha1:   937d7083d8ecd4fe9a31fff08c303d275e9c49f7
Sha256: 61857fe21442d8a4720ee0715993c0b0fe98fab37af834fcdcc4914a02770764
                                        
                                            GET /css/shortcode.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 9285
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:37 GMT
Etag: "2445-530342ac2b143"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:24 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  UTF-8 Unicode text
Size:   9285
Md5:    df1a1e6b817ccbafb288881d312c7278
Sha1:   9e65ad88e33e1577396253c35463be7a5f28f55e
Sha256: 00945d05a311e848e3cf1da42af978f25013f639113833f36677db0a3ec62c9f
                                        
                                            GET /css/fonts.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 287
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:33 GMT
Etag: "11f-530342a836e37"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:24 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII C program text
Size:   287
Md5:    32434a05e7975f33161d775190124b46
Sha1:   28556e91760cfca4d9444cba67ed34a7aee2ffc2
Sha256: 46a37b3342f2153ff309357eb3cec690832a05909a572fddda4272158ed19532
                                        
                                            GET /css/colors.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 364
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:32 GMT
Etag: "16c-530342a707a9f"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:24 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII C program text
Size:   364
Md5:    d34a5ebda04076f7df8dfc8059a6bfc5
Sha1:   48045edbde3390b4322f1301a72c3a9ab55a067a
Sha256: b43bb5f730b3c23be6fb0a390d789ff3fccbdf1dc3f33db41642a41cb9a4025b
                                        
                                            GET /css/responsive.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 107
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:36 GMT
Etag: "6b-530342ab9cfdb"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:24 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII text
Size:   107
Md5:    55e5e1dce72de82957aa946efbf9a200
Sha1:   f7a321c31847a8edc962b3a0a91c011f59c737c1
Sha256: 66f4d246346802726660e44e9cced7e4c81d6b199316fa590f16892f10f09d3f
                                        
                                            GET /images/favicon.ico HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 5430
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:52:50 GMT
Etag: "1536-530342f170089"
Accept-Ranges: bytes, bytes
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:34:15 GMT
Age: 0


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 32x32, 256-colors
Size:   5430
Md5:    bb89496f9e8c4a702dc3c2c024d25d42
Sha1:   367f7b7584a2100c76dc35af5218f95e39831235
Sha256: 34c6e1f22302f336b0d8627dd12847be4a9fabdd0fae53829f09c2af618b86b9
                                        
                                            GET /css/main-stylesheet.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 48191
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:35 GMT
Etag: "bc3f-530342aac52a5"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:24 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII C program text
Size:   48191
Md5:    7ae545a7adfa19020ca441371fa7bff0
Sha1:   81e8ee5df613865f425bf0851196e60b5cd882cd
Sha256: 58f29b6a43a58745ce4510d21a1c887050084d8d6c4aefdb862a65af034afa50
                                        
                                            GET /images/logo-header.png HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 21551
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:52:56 GMT
Etag: "542f-530342f732239"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  PNG image, 400 x 100, 8-bit/color RGBA, non-interlaced
Size:   21551
Md5:    2d88a36b5b7456348e95a08bb6fb4597
Sha1:   bcf0fb0a66eef01efc3f7fcd3142996c48ebe1d7
Sha256: 3962fbf50b26fb55dfbe59670f27ee0513d416543e431702053f8c965a27397e
                                        
                                            GET /css/responsive/phone.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/css/responsive.css
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 3475
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:42 GMT
Etag: "d93-530342b0e19bc"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII text
Size:   3475
Md5:    d488bd459abad3eb04cf50c1cdef0c96
Sha1:   59e9f36a2f8b3c05c889778af41348af4220eb52
Sha256: 93016ce33b6e2d3d4ee3f4a267a04ceacb3d083e8f36a7198146f483d04a77ce
                                        
                                            GET /css/responsive/ipad.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/css/responsive.css
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 5629
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:41 GMT
Etag: "15fd-530342aff874a"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII text
Size:   5629
Md5:    512fd532e84d915c2167cb3954dcbf18
Sha1:   305e675ab9f5b536cf2d5c8b57117bc48b23434e
Sha256: 2c4def709265d73af5841f67e4775fd92438e180c8d3a1cfcd0a275ee109ab81
                                        
                                            GET /css/responsive/desktop.css HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/css/responsive.css
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 763
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:41 GMT
Etag: "2fb-530342aff25ac"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII text
Size:   763
Md5:    f7e63d32827393f5e165e0fb26546245
Sha1:   7213678c2410fcf391492552357042c08c046edd
Sha256: 3e503b8b7328ef02cacd6515eea6039238a6541439ccce920afb27f3ff80a02f
                                        
                                            GET /css?family=Titillium+Web:400,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/css/main-stylesheet.css

                                         
                                         216.58.209.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 01 Mar 2019 16:34:15 GMT
Date: Fri, 01 Mar 2019 16:34:15 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   265
Md5:    184b06a003727ab051d52e50a97f78d0
Sha1:   e2f9340cab3c41e9eecbbd067292632a0260fedc
Sha256: 7b3faae2c04e3c92c7243fd0cf8a92658dca2503bcb4f2b5080b179b30b48c4f
                                        
                                            GET /css?family=Source+Sans+Pro:400,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/css/main-stylesheet.css

                                         
                                         216.58.209.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 01 Mar 2019 16:34:15 GMT
Date: Fri, 01 Mar 2019 16:34:15 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   269
Md5:    7bbfaf408d36172606ef8b72e40d14cb
Sha1:   f2507c138485d7775831927433401b7ef062ba60
Sha256: 001738194fa5af62e7670c789384d9c81fc7dc7c836eb0985bdf34f97576b455
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    12c19446f01c72bfd37b5942ee865f0c
Sha1:   fa5cccef505dbe5af7a64e57e5e781be9414a82f
Sha256: 1e4e309b8afc6123ce23bc4869e0545839f0c5936cd767bc6cb02bdd537a7d7f
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /banner.php?section=General&pub=329724&format=728x90&ga=g HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         185.66.200.217
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:15 GMT
Transfer-Encoding: chunked
Connection: close
Expires: Fri, 01 Mar 2019 16:34:15 GMT
Last-Modified: Fri, 01 Mar 2019 16:34:15 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   278
Md5:    1ab7d368b0ac7409421b725761dc8596
Sha1:   6261f8361578e4d10bd7eb6788bd8e6dd0fb3e37
Sha256: a60e43590d3d1111d63090fc76fd72d2b4e87dfced7d1b9fbc7570e537f80dce
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_-%E0%B6%85%E0%B7%80%E0%B7%94%E0%B6%BB%E0%B7%94%E0%B6%AF%E0%B7%94-19-%E0%B6%B1%E0%B7%8A-%E0%B6%B4%E0%B7%84%E0%B7%85-%E0%B6%BA%E0%B7%9C%E0%B7%80%E0%B7%94%E0%B6%B1%E0%B7%8A-%E0%B6%A7%E0%B7%99%E0%B7%83%E0%B7%8A%E0%B6%A7%E0%B7%8A-%E0%B6%AD%E0%B6%BB%E0%B6%9C%E0%B6%BA.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%AD%E0%B7%99%E0%B7%80%E0%B6%B1-%E0%B7%84%E0%B7%8F-%E0%B6%85%E0%B7%80%E0%B7%83%E0%B7%8F%E0%B6%B1-%E0%B6%A7%E0%B7%99%E0%B7%83%E0%B7%8A%E0%B6%A7%E0%B7%8A-%E0%B6%AD%E0%B6%BB%E0%B6%9C%E0%B6%BA.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%91%E0%B6%82%E0%B6%9C%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B7%81%E0%B7%8A%E2%80%8D%E0%B6%BB%E0%B7%93-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F%E0%B7%80-%E0%B6%B4%E0%B7%83%E0%B7%94%E0%B7%80%E0%B7%99%E0%B6%B1%E0%B7%8A-%E0%B6%B4%E0%B6%BB%E0%B6%AF%E0%B7%8F-%E0%B6%A2%E0%B6%BA-%E0%B6%BD%E0%B6%B6%E0%B6%BA%E0%B7%92.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B7%81%E0%B7%8A%E2%80%8D%E0%B6%BB%E0%B7%93-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%91%E0%B6%82%E0%B6%9C%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%85%E0%B6%AD%E0%B6%BB-%E0%B6%AD%E0%B6%BB%E0%B6%9C%E0%B6%BA-%E0%B7%83%E0%B6%B8%E0%B6%BA%E0%B7%92-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B7%81%E0%B7%8A%E2%80%8D%E0%B6%BB%E0%B7%93-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%85%E0%B6%BA%E0%B6%BB%E0%B7%8A%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD-%E0%B6%B4%E0%B7%92%E0%B6%BD-%E0%B6%B4%E0%B6%BB%E0%B6%AF%E0%B7%80%E0%B6%BA%E0%B7%92.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B7%81%E0%B7%8A%E2%80%8D%E0%B6%BB%E0%B7%93-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%AF%E0%B7%99%E0%B7%80%E0%B6%B1-%E0%B6%91%E0%B6%9A%E0%B7%8A-%E0%B6%AF%E0%B7%92%E0%B6%B1-%E0%B6%AD%E0%B6%BB%E0%B6%9C%E0%B6%BA%E0%B6%AD%E0%B7%8A-%E0%B6%A2%E0%B6%BA-%E0%B6%9C%E0%B6%B1%E0%B7%93-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /banner.php?section=General&pub=329724&format=300x250&ga=g HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         185.66.200.217
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:15 GMT
Transfer-Encoding: chunked
Connection: close
Expires: Fri, 01 Mar 2019 16:34:15 GMT
Last-Modified: Fri, 01 Mar 2019 16:34:15 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   279
Md5:    4af9407f9a3136ca5ca417afd8b9c897
Sha1:   08b8bba4bff676d6fabd7a5ab56c0a827315de9a
Sha256: b978cd441ee7da1880f57a18b9827de83980f122c412376aa18edaffd8118c7d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=122138
Date: Fri, 01 Mar 2019 16:34:15 GMT
Etag: "5c786a52-1d7"
Expires: Sun, 03 Mar 2019 02:29:53 GMT
Last-Modified: Thu, 28 Feb 2019 23:10:10 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    05feef7b6f53f95ed47555d156df0fde
Sha1:   6e3729128ba7702744ab23d665002eec3a9d2b77
Sha256: 4be471ea646ec0ba463b831c6716f89449e9d4ca05a83af7c6b6101f7d1fc052
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=149504
Date: Fri, 01 Mar 2019 16:34:15 GMT
Etag: "5c78eff4-1d7"
Expires: Sun, 03 Mar 2019 10:05:59 GMT
Last-Modified: Fri, 01 Mar 2019 08:40:20 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    59525442e6213f3739565fd8bc1ee672
Sha1:   bfb4acc011b257b3cb9eae6098f26392e099df9f
Sha256: 81a782ba25e9691b471e181f5cd7f1dad0ede0ebc385214614056b318eabecb9
                                        
                                            GET /jscript/theme-scripts.js HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 9899
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:53:32 GMT
Etag: "26ab-5303431a598d5"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   9899
Md5:    f8a05ec8e6023a9efa86c6ef50b8c1a1
Sha1:   1100a47cf49fd4306ce6d1e450c89c21e771a430
Sha256: 2f83e8fde31f6dc0a21b8a748989b64766e19b4f9a35219bb494580d87168056

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /jscript/lightbox.js HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 4281
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:53:29 GMT
Etag: "10b9-530343176bcdc"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   4281
Md5:    cafbe4c304f114f65c3826e9892336c2
Sha1:   15492091692cd44353ffd87dc81318b2a02749dd
Sha256: 624634905d74bcc792a275a2802dd81c49480a901fca843f8b2f5379e68dee8a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%B8%E0%B7%9A-%E0%B7%80%E0%B7%90%E0%B7%83%E0%B7%8A%E0%B7%83-%E0%B6%91%E0%B6%82%E0%B6%9C%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD%E0%B6%BA%E0%B6%A7-%E0%B6%BA%E0%B7%80%E0%B6%B8%E0%B7%94%E0%B6%AF-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%AF%E0%B7%9D%E0%B6%BD%E0%B6%B1%E0%B6%BA-%E0%B7%80%E0%B7%96-%E0%B6%B4%E0%B6%B1%E0%B7%8A%E0%B6%AF%E0%B7%94%E0%B7%80%E0%B6%A7-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F%E0%B7%80-%E0%B6%A0%E0%B6%BD%E0%B6%B1%E0%B6%BA-%E0%B7%80%E0%B7%99%E0%B6%BA%E0%B7%92-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /vi/jTMRestOZ3I/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Timing-Allow-Origin: https://imasdk.googleapis.com
Content-Length: 49668
Date: Fri, 01 Mar 2019 16:33:25 GMT
Expires: Fri, 01 Mar 2019 18:33:25 GMT
Etag: "1486774185"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Age: 50
Cache-Control: public, max-age=7200
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   49668
Md5:    582b00f0e76311e6a5e32802cc4bdac6
Sha1:   b25de6cb6bcfe5eb7f94b25f92d367d29a6d8248
Sha256: f1447cca242e523524c587245089c3e0c63415146d2d4b164605b6ec3b35076d
                                        
                                            GET /vi/E6WzpmtJ_f0/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Timing-Allow-Origin: https://imasdk.googleapis.com
Content-Length: 33208
Date: Fri, 01 Mar 2019 14:51:41 GMT
Expires: Fri, 01 Mar 2019 16:51:41 GMT
Etag: "1474244077"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Age: 6154
Cache-Control: public, max-age=7200
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   33208
Md5:    56fa60f3d038e284e33adfa72b89ca09
Sha1:   30d4152f9914d29b081d482946c7bcc8dfe30c55
Sha256: 3287f5273650b4ea4425c0847a1479091c95361a6a15d1864e4aede3f81b8f72
                                        
                                            GET /vi/1eJYl5y6q6M/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Timing-Allow-Origin: https://imasdk.googleapis.com
Content-Length: 19494
Date: Fri, 01 Mar 2019 16:34:15 GMT
Expires: Fri, 01 Mar 2019 18:34:15 GMT
Cache-Control: public, max-age=7200
Etag: "1468539843"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   19494
Md5:    1522863c88ff48782da1ee1fe857938a
Sha1:   fc6ac490e8835738294edaaf02c694c9b684a099
Sha256: ec5865fff93f6c867af9b2f94e754e0011b2e6c910d5dfff1fe945f76e2e415d
                                        
                                            GET /button/async-buttons.js HTTP/1.1 
Host: ws.sharethis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         2.21.203.215
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Etag: W/"5c7039ac-162e8"
Server: nginx/1.12.2
Vary: Accept-Encoding
Content-Length: 18855
Cache-Control: max-age=128803
Expires: Sun, 03 Mar 2019 04:20:58 GMT
Date: Fri, 01 Mar 2019 16:34:15 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   18855
Md5:    63df6d336c2c3d1763a84931c54d5670
Sha1:   d294e29ed9ff2637597ea885273bde504b50e79b
Sha256: 1bfadc15d200b54c9b154f72423bc1299fa8fd1e3d0974c85327858cf9c39fe2
                                        
                                            GET /jscript/jquery-latest.min.js HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 93106
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:53:24 GMT
Etag: "16bb2-53034311e776e"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   93106
Md5:    841dc30647f93349b7d8ef61deebe411
Sha1:   e0f962936599a6cd266f004b9d04b29d46811483
Sha256: c3a7b608ebfa8d1dfe658bc119e6236a6aaf878a779e7c560aa11dd30881a56a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%AF%E0%B7%83%E0%B7%94%E0%B6%B1%E0%B7%8A-%E0%B7%81%E0%B7%8F%E0%B6%B1%E0%B6%9A-%E0%B7%80%E0%B7%92%E0%B7%83%E0%B7%92%E0%B6%B1%E0%B7%8A-%E0%B6%91%E0%B6%82%E0%B6%9C%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%85%E0%B7%83%E0%B6%BB%E0%B6%AB-%E0%B6%9A%E0%B6%BB%E0%B6%BA%E0%B7%92-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes, bytes
Age: 0


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /images/guest-user-ico.png HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 4337
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:52:50 GMT
Etag: "10f1-530342f258f0f"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  PNG image, 70 x 70, 8-bit/color RGB, non-interlaced
Size:   4337
Md5:    7555b029c49c71d0df98b1e5f55fe1bf
Sha1:   e24ca5dfdbf58371b8e972ad4cdd8d27b4dc52e0
Sha256: 414d0d899a38c1e1aaa622d4e5718bd994dabef79423fe349e15c1ee29c9b118
                                        
                                            GET /images/logo-footer.png HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 8293
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:52:55 GMT
Etag: "2065-530342f65b0d0"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  PNG image, 145 x 36, 8-bit/color RGBA, non-interlaced
Size:   8293
Md5:    e5602ca8093b4d63eb20182be895bda5
Sha1:   95d772bc41ac6e991dea49f1f35a82e1bd1a224a
Sha256: 40bd4236ed639fab73f888e75a7c760530570d25764690b2f9b553a97181ba6c
                                        
                                            GET /vi/icQMelb7mKY/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Timing-Allow-Origin: https://imasdk.googleapis.com
Content-Length: 18459
Date: Fri, 01 Mar 2019 16:34:15 GMT
Expires: Fri, 01 Mar 2019 18:34:15 GMT
Etag: "1473969415"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=7200
Age: 0
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18459
Md5:    24726e58e18fea6aaac70e977d9d22bd
Sha1:   a4a39e1b4bec2cd69513b178a5cd46c0c02ed566
Sha256: 1853d900906951b55e3405a1e5b43fb7ef5dfce348456b959fd9dd7cf96335b2
                                        
                                            GET /vi/LUYov2t8W4c/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Timing-Allow-Origin: https://imasdk.googleapis.com
Content-Length: 31673
Date: Fri, 01 Mar 2019 16:33:25 GMT
Expires: Fri, 01 Mar 2019 18:33:25 GMT
Etag: "1471006662"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=7200
Age: 50
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   31673
Md5:    1df02a177e043d84677cab6b2a7770f0
Sha1:   4142f529c6ea41f6668c5bffad663329f6b48145
Sha256: 2f0660f40d35f5016d2da31e7e2ecf58ef2355c4e8487bc0945b5c3d0ab4d38e
                                        
                                            GET /en_US/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
X-XSS-Protection: 0
Etag: "799d3f03676012608ad9fbaec0cec7db"
X-Frame-Options: DENY
Content-Encoding: gzip
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Expires: Fri, 01 Mar 2019 16:52:52 GMT
x-fb-content-md5: 962605ca7af747964af246ac4f571cfc
Access-Control-Expose-Headers: X-FB-Content-MD5
Content-MD5: ro3BW2X46ChSRHhI5h6pdw==
X-FB-Debug: CYrM79mesmLfI6+Ns737Da92DyvlMDgVX6hsZo/Hi5PfJKU7yLupteYNvM3PGoBgqYMKq7Em6uRy6LbViIQINA==
Date: Fri, 01 Mar 2019 16:34:16 GMT
Connection: keep-alive
Content-Length: 1778


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1778
Md5:    ae8dc15b65f8e82852447848e61ea977
Sha1:   ffc4c56a9709f993f36410b6092df42cf97a528c
Sha256: ea27ed45f3a1a8199bde8ac7a8fa0f3752fb4e230f608275dfe38b5b9e058884
                                        
                                            GET /vi/voCVXl16k1I/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Timing-Allow-Origin: https://imasdk.googleapis.com
Content-Length: 13366
Date: Fri, 01 Mar 2019 16:34:15 GMT
Expires: Fri, 01 Mar 2019 16:39:15 GMT
Cache-Control: public, max-age=300
Etag: "1551350525"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13366
Md5:    4387dc59b4080833cb80d98d402c1175
Sha1:   ae77677863c0313a1f4d290b225fc123c453d70a
Sha256: 2e684b29461399366b4d2c930c935cc8e0e176425bbc403842e3df5ea511ebaf
                                        
                                            GET /vi/V6ViITF1KsA/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Timing-Allow-Origin: https://imasdk.googleapis.com
Content-Length: 67140
Date: Fri, 01 Mar 2019 16:33:25 GMT
Expires: Fri, 01 Mar 2019 18:33:25 GMT
Etag: "1486593820"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=7200
Age: 50
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   67140
Md5:    f73ba26ce940840b568ff4d1aa2f1635
Sha1:   24d619e8ad2cc85c4a367b0b8c8df7d87aa84b1b
Sha256: c96ea61faaaa07e5a7d34d1b121ed38ac40cb7200221891ff9c2fc2bbeb17697
                                        
                                            GET /vi/0ss_MHZMoD8/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Timing-Allow-Origin: https://imasdk.googleapis.com
Content-Length: 65036
Date: Fri, 01 Mar 2019 16:34:15 GMT
Expires: Fri, 01 Mar 2019 18:34:15 GMT
Cache-Control: public, max-age=7200
Etag: "1487628633"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   65036
Md5:    db72b13685e07c0ca091c77539f71f64
Sha1:   d58b38385dd910656e0e9625d0ea0b707d2f60ca
Sha256: 984884f1f207c6feb9489ad0104e95f6c35c9f0683b3a002af91703a5a7900f8
                                        
                                            GET /vi/aV7-xEO3RY4/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Timing-Allow-Origin: https://imasdk.googleapis.com
Content-Length: 14877
Date: Fri, 01 Mar 2019 16:33:25 GMT
Expires: Fri, 01 Mar 2019 18:33:25 GMT
Etag: "0"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=7200
Age: 50
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14877
Md5:    702bba003a2637b13e5c17065b8ea735
Sha1:   a049d34f1b95ec3b97bcb80320ea0b655ccf066e
Sha256: cb3a790b1943bef24b4389df371cc6414172fb12d5969c88675d3ba30943cf69
                                        
                                            GET /button/css/buttons-secure.css HTTP/1.1 
Host: ws.sharethis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         2.21.203.215
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Etag: W/"5c7039ac-5a76"
Last-Modified: Fri, 22 Feb 2019 18:04:28 GMT
Server: nginx/1.12.2
Vary: Accept-Encoding
Content-Length: 3851
Date: Fri, 01 Mar 2019 16:34:16 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3851
Md5:    61da924a747e08c5f54a6cb31c724a48
Sha1:   8e49d971d6a667c3888a481b742e05cafcf72a43
Sha256: 54302324d4b6aa780466c869b9932504d0b1eaa7ef1df6c5481b35fb0625343a
                                        
                                            GET /vi/LExcJTZsm3A/hqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         193.90.147.177
HTTP/1.1 404 Not Found
Content-Type: image/jpeg
                                        
Timing-Allow-Origin: https://imasdk.googleapis.com
Date: Fri, 01 Mar 2019 16:34:16 GMT
Expires: Fri, 01 Mar 2019 16:34:46 GMT
Cache-Control: public, max-age=30
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 1097
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1097
Md5:    e2ddfee11ae7edcae257da47f3a78a70
Sha1:   6e902fa6302eb30cd204579bca6a59b37233e262
Sha256: 20e9aab22032d85684d7d916a1013f7c577a132a5b10ea3fd3578e8d0b28a711
                                        
                                            GET /s/titilliumweb/v7/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzZQ.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Titillium+Web:400,600,700
Origin: http://aaaaaaaaa9.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 15744
Date: Thu, 21 Feb 2019 18:31:11 GMT
Expires: Fri, 21 Feb 2020 18:31:11 GMT
Last-Modified: Tue, 19 Feb 2019 22:22:45 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 684185


--- Additional Info ---
Magic:  data
Size:   15744
Md5:    a804c575a27cd248e98614b9a81f7a63
Sha1:   dffee4e93f4540d78820a7f0715ba0aec3bb6d44
Sha256: ae32776aae5fbba5f5e09afbc3f01e948cb97a1434924ebfbf25e8f2661d1625
                                        
                                            GET /fonticons/entypo.woff HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/css/main-stylesheet.css
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
                                        
Date: Fri, 01 Mar 2019 16:34:16 GMT
Content-Length: 45152
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Mon, 11 Apr 2016 11:51:49 GMT
Etag: "b060-530342b7497a5"
Accept-Ranges: bytes, bytes
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:34:16 GMT
Age: 0


--- Additional Info ---
Magic:  data
Size:   45152
Md5:    5460a9ba11448e34f332f25e72dc16df
Sha1:   9729b28b6872d971935ff58f460cf3c26dcb7380
Sha256: 434d5a30d2359d95efc266dbe0fffcac2c1846e133d4713bebb7c337bdfb84ce

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /bnr_xload.php?section=General&pub=329724&format=728x90&ga=g&xt=155145805576652&xtt=1740093 HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         185.66.200.217
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:16 GMT
Transfer-Encoding: chunked
Connection: close
Expires: Fri, 01 Mar 2019 16:34:16 GMT
Last-Modified: Fri, 01 Mar 2019 16:34:16 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Set-Cookie: used_ad2229091=1; expires=Sat, 02-Mar-2019 05:00:00 GMT; Max-Age=44744; path=/ total_impressions=1; expires=Sat, 02-Mar-2019 05:00:00 GMT; Max-Age=44744; path=/ cpa_673873=728x90_618948233_0; expires=Sun, 31-Mar-2019 16:34:16 GMT; Max-Age=2592000; path=/
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   780
Md5:    1c61fd06df902ff38918d4a91ebc392e
Sha1:   07bca381f3315b55bf6124b639f8d6b12af475a1
Sha256: 3f21edc6b739e9af660d87187f4dba88c248c403bde67f559c4f64a32431312f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=134801
Date: Fri, 01 Mar 2019 16:34:17 GMT
Etag: "5c78b7be-1d7"
Expires: Sun, 03 Mar 2019 06:00:58 GMT
Last-Modified: Fri, 01 Mar 2019 04:40:30 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a771067c1748f1212117b0924aeecaf0
Sha1:   44232642cd906c0ba5c7ad46dc6ad1b3c7b7aa3f
Sha256: 5b7b903f10f253c9f446f41268e2509361c077b7d43acbdb1e257cacadb71423
                                        
                                            GET /s/sourcesanspro/v11/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdo.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Source+Sans+Pro:400,600,700
Origin: http://aaaaaaaaa9.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19528
Date: Mon, 04 Feb 2019 20:12:34 GMT
Expires: Tue, 04 Feb 2020 20:12:34 GMT
Last-Modified: Wed, 11 Oct 2017 18:25:46 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2146903


--- Additional Info ---
Magic:  data
Size:   19528
Md5:    08fdd6f1e8fe8a4f9ae63d28046a3ac7
Sha1:   a6c29ba7419af7a353aad8b9ce27246f5fe935fe
Sha256: b838d5de8c391909974d451b3eb4900533c73d8cc47d438cc42ad61180eeba09
                                        
                                            GET /s/sourcesanspro/v11/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7j.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Source+Sans+Pro:400,600,700
Origin: http://aaaaaaaaa9.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19616
Date: Thu, 07 Feb 2019 21:27:29 GMT
Expires: Fri, 07 Feb 2020 21:27:29 GMT
Last-Modified: Wed, 11 Oct 2017 18:25:58 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1883208


--- Additional Info ---
Magic:  data
Size:   19616
Md5:    f94f84eb867a3e3d65da0c5cad065437
Sha1:   139383b6f2b8c85c80d669f8326babf730f411ee
Sha256: b8c5465c304d06d2a499c794934406f652c83a8338281295f0ef6c1d77b51f06
                                        
                                            GET /s/sourcesanspro/v11/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdo.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Source+Sans+Pro:400,600,700
Origin: http://aaaaaaaaa9.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19312
Date: Thu, 07 Feb 2019 21:27:29 GMT
Expires: Fri, 07 Feb 2020 21:27:29 GMT
Last-Modified: Wed, 11 Oct 2017 18:26:06 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1883208


--- Additional Info ---
Magic:  data
Size:   19312
Md5:    d9d2bac7a72708d11960a50e419938c5
Sha1:   5e56cf7e42b99ac9654e0004e8628c54834458d5
Sha256: a0b6aeb80d1190fa71d04d31bdf107258c1cb61af346392424b4fbb3aa7288eb
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_-i-c-c-%E0%B6%A0%E0%B7%90%E0%B6%B8%E0%B7%8A%E0%B6%B4%E0%B7%92%E0%B6%BA%E0%B6%B1%E0%B7%8A-%E0%B6%9A%E0%B7%94%E0%B7%83%E0%B6%BD%E0%B7%8F%E0%B6%B1-2017.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-1

                                         
                                         66.96.147.110
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 01 Mar 2019 16:34:15 GMT
Content-Length: 60195
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Fri, 03 Jun 2016 06:50:22 GMT
Etag: "eb23-5345a22ff8c35"
Cache-Control: max-age=14400
Expires: Fri, 01 Mar 2019 20:33:25 GMT
Accept-Ranges: bytes
Age: 50


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   60195
Md5:    f2f2499bf0220d73aadeca15d1a27a37
Sha1:   920f0838b2d9660bc7d7f9e867319ec910723db7
Sha256: dbc9ac4b6de5b0c052b1e6ed0dfbba936e1dc22b6b375cb74c02ac62b8f0619a
                                        
                                            GET /s/titilliumweb/v7/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzZQ.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Titillium+Web:400,600,700
Origin: http://aaaaaaaaa9.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 16336
Date: Thu, 21 Feb 2019 19:56:42 GMT
Expires: Fri, 21 Feb 2020 19:56:42 GMT
Last-Modified: Tue, 19 Feb 2019 22:23:49 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 679055


--- Additional Info ---
Magic:  data
Size:   16336
Md5:    7679c7b87df151dcb78fc05bdb145cb0
Sha1:   7e7413b9612bf0af4ae1bd9c56886a32bd4c30b4
Sha256: af9e0b9fd33062e183365997f895c209635af774242d1702146b4027aa3d6462
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%AD%E0%B7%99%E0%B7%80%E0%B6%B1-%E0%B7%84%E0%B7%8F-%E0%B6%85%E0%B7%80%E0%B7%83%E0%B7%8F%E0%B6%B1-%E0%B6%A7%E0%B7%99%E0%B7%83%E0%B7%8A%E0%B6%A7%E0%B7%8A-%E0%B6%AD%E0%B6%BB%E0%B6%9C%E0%B6%BA.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2
Range: bytes=0-
If-Range: Wed, 02 Aug 2017 19:17:35 GMT

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%91%E0%B6%82%E0%B6%9C%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B7%81%E0%B7%8A%E2%80%8D%E0%B6%BB%E0%B7%93-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F%E0%B7%80-%E0%B6%B4%E0%B7%83%E0%B7%94%E0%B7%80%E0%B7%99%E0%B6%B1%E0%B7%8A-%E0%B6%B4%E0%B6%BB%E0%B6%AF%E0%B7%8F-%E0%B6%A2%E0%B6%BA-%E0%B6%BD%E0%B6%B6%E0%B6%BA%E0%B7%92.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2
Range: bytes=0-
If-Range: Wed, 02 Aug 2017 19:17:35 GMT

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_-%E0%B6%85%E0%B7%80%E0%B7%94%E0%B6%BB%E0%B7%94%E0%B6%AF%E0%B7%94-19-%E0%B6%B1%E0%B7%8A-%E0%B6%B4%E0%B7%84%E0%B7%85-%E0%B6%BA%E0%B7%9C%E0%B7%80%E0%B7%94%E0%B6%B1%E0%B7%8A-%E0%B6%A7%E0%B7%99%E0%B7%83%E0%B7%8A%E0%B6%A7%E0%B7%8A-%E0%B6%AD%E0%B6%BB%E0%B6%9C%E0%B6%BA.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2
Range: bytes=0-
If-Range: Wed, 02 Aug 2017 19:17:35 GMT

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B7%81%E0%B7%8A%E2%80%8D%E0%B6%BB%E0%B7%93-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%91%E0%B6%82%E0%B6%9C%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%85%E0%B6%AD%E0%B6%BB-%E0%B6%AD%E0%B6%BB%E0%B6%9C%E0%B6%BA-%E0%B7%83%E0%B6%B8%E0%B6%BA%E0%B7%92-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2
Range: bytes=0-
If-Range: Wed, 02 Aug 2017 19:17:35 GMT

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B7%81%E0%B7%8A%E2%80%8D%E0%B6%BB%E0%B7%93-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%AF%E0%B7%99%E0%B7%80%E0%B6%B1-%E0%B6%91%E0%B6%9A%E0%B7%8A-%E0%B6%AF%E0%B7%92%E0%B6%B1-%E0%B6%AD%E0%B6%BB%E0%B6%9C%E0%B6%BA%E0%B6%AD%E0%B7%8A-%E0%B6%A2%E0%B6%BA-%E0%B6%9C%E0%B6%B1%E0%B7%93-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2
Range: bytes=0-
If-Range: Wed, 02 Aug 2017 19:17:35 GMT

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /bnr_xload.php?section=General&pub=329724&format=300x250&ga=g&xt=155145805568787&xtt=1321082 HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         185.66.200.217
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: close
Expires: Fri, 01 Mar 2019 16:34:17 GMT
Last-Modified: Fri, 01 Mar 2019 16:34:17 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Set-Cookie: used_ad2241847=1; expires=Sat, 02-Mar-2019 05:00:00 GMT; Max-Age=44743; path=/ total_impressions=1; expires=Sat, 02-Mar-2019 05:00:00 GMT; Max-Age=44743; path=/ cpa_673873=300x250_618948233_0; expires=Sun, 31-Mar-2019 16:34:17 GMT; Max-Age=2592000; path=/
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   786
Md5:    72d4f669d0b34db73a73e1778875ffbb
Sha1:   3107dc19b54c4ba923d346e85a0f1478724dbb21
Sha256: 251dc01142464dd931d157f4ada2e645af96e6b3151adbaf9cb64a0fea19f049
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B7%81%E0%B7%8A%E2%80%8D%E0%B6%BB%E0%B7%93-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%85%E0%B6%BA%E0%B6%BB%E0%B7%8A%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD-%E0%B6%B4%E0%B7%92%E0%B6%BD-%E0%B6%B4%E0%B6%BB%E0%B6%AF%E0%B7%80%E0%B6%BA%E0%B7%92.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2
Range: bytes=0-
If-Range: Wed, 02 Aug 2017 19:17:35 GMT

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%AF%E0%B7%9D%E0%B6%BD%E0%B6%B1%E0%B6%BA-%E0%B7%80%E0%B7%96-%E0%B6%B4%E0%B6%B1%E0%B7%8A%E0%B6%AF%E0%B7%94%E0%B7%80%E0%B6%A7-%E0%B6%BD%E0%B6%82%E0%B6%9A%E0%B7%8F%E0%B7%80-%E0%B6%A0%E0%B6%BD%E0%B6%B1%E0%B6%BA-%E0%B7%80%E0%B7%99%E0%B6%BA%E0%B7%92-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2
Range: bytes=0-
If-Range: Wed, 02 Aug 2017 19:17:35 GMT

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%B8%E0%B7%9A-%E0%B7%80%E0%B7%90%E0%B7%83%E0%B7%8A%E0%B7%83-%E0%B6%91%E0%B6%82%E0%B6%9C%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD%E0%B6%BA%E0%B6%A7-%E0%B6%BA%E0%B7%80%E0%B6%B8%E0%B7%94%E0%B6%AF-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2
Range: bytes=0-
If-Range: Wed, 02 Aug 2017 19:17:35 GMT

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /oz-uploads/news/thumbs/oz_res_%E0%B6%AF%E0%B7%83%E0%B7%94%E0%B6%B1%E0%B7%8A-%E0%B7%81%E0%B7%8F%E0%B6%B1%E0%B6%9A-%E0%B7%80%E0%B7%92%E0%B7%83%E0%B7%92%E0%B6%B1%E0%B7%8A-%E0%B6%91%E0%B6%82%E0%B6%9C%E0%B6%BD%E0%B6%B1%E0%B7%8A%E0%B6%AD-%E0%B6%B4%E0%B7%92%E0%B7%85-%E0%B6%85%E0%B7%83%E0%B6%BB%E0%B6%AB-%E0%B6%9A%E0%B6%BB%E0%B6%BA%E0%B7%92-.jpg HTTP/1.1 
Host: aaaaaaaaa9.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: PHPSESSID=577c8f625c801028155688db945ce1af; __unam=7639673-1693a1b35d7-33717af4-2
Range: bytes=0-
If-Range: Wed, 02 Aug 2017 19:17:35 GMT

                                         
                                         66.96.147.110
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 863
Connection: keep-alive
Keep-Alive: timeout=30
Server: Apache/2
Last-Modified: Wed, 02 Aug 2017 19:17:35 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   863
Md5:    48b224e27fc0531334736bf30f60072a
Sha1:   095be8bd8197388323d8bb78a43718c975bae4a9
Sha256: 34c4d4a0e2ee644773bc81295d48609e40621bbc15cd04d3eec5b7d8726a320b
                                        
                                            GET /v1.0/cmp/portal.html HTTP/1.1 
Host: c.sharethis.mgr.consensu.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         80.239.159.82
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Accept-Ranges: bytes
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Methods: DELETE, GET, HEAD, OPTIONS, POST, PUT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Etag: W/"26b-4977387000"
Last-Modified: Tue, 01 Jan 1980 00:00:00 GMT
Vary: Accept-Encoding
Content-Length: 334
Cache-Control: public, max-age=3600
Date: Fri, 01 Mar 2019 16:34:17 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   334
Md5:    4ab93b6bc33d1bca794b1c5858040599
Sha1:   56237593bf3aab55996bf5624ebeb2c566a72e61
Sha256: 81d1ee683d4c2299de99394d10f3e087aae6839e32fd67015b9379a644f4b63b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=126581
Date: Fri, 01 Mar 2019 16:34:17 GMT
Etag: "5c788d95-1d7"
Expires: Sun, 03 Mar 2019 03:43:58 GMT
Last-Modified: Fri, 01 Mar 2019 01:40:37 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    2beaf9620d2f844fa8ff390ed2645158
Sha1:   2cab43b695cf0b84b5024fef7a097558a26e5681
Sha256: 7de39a0a274c7be71b21100f1dd64c8c1c4da81b46e5cf5f4f5a7d150fe1e47a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=167907
Date: Fri, 01 Mar 2019 16:34:17 GMT
Etag: "5c793192-1d7"
Expires: Sun, 03 Mar 2019 15:12:44 GMT
Last-Modified: Fri, 01 Mar 2019 13:20:18 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    af8670f1a368e066a8ee6d017adaa746
Sha1:   eb768ae8cb56f5e5f44f8e923ed11abdec5a143a
Sha256: 848b6b28105711409b1f18b859e96eca66ebd703dae36fe4dd7aa024677a96d2
                                        
                                            GET /show.php?u8721551458057=true&ad=673873&f=300x250&a=395578&cri=0&s=NWJkYmFlYTE0ZTRiNTdjZDE2ZmIyNmJhZWY5NzVmZTA=&u=329724&si=618948233&di=28992901&ci=16&h=1108b38063d23b8b50b8987115fbd04c&cc=NO&useAf=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M= HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/bnr_xload.php?section=General&pub=329724&format=300x250&ga=g&xt=155145805568787&xtt=1321082
Cookie: used_ad2229091=1; total_impressions=1; cpa_673873=300x250_618948233_0; used_ad2241847=1

                                         
                                         185.66.200.217
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: close
Expires: Fri, 01 Mar 2019 16:34:17 GMT
Last-Modified: Fri, 01 Mar 2019 16:34:17 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   873
Md5:    2fe4c99bb43c24f69f4cd3e386bccc20
Sha1:   eb3b1c5b64e04b94d7d26937861b5c75938f12eb
Sha256: 1bda9f9f69ae705d1ace8bb742840c89d3022d367162e2ab35e0708b305e33e1
                                        
                                            GET /show.php?u8241551458056=true&ad=673873&f=728x90&a=625611&cri=0&s=MDM3ZDA5ZjcxMjE4M2FlZmZjZmU1MDIyYTA2M2NhZDg=&u=329724&si=618948233&di=28992901&ci=16&h=2bd33961ef4c885daa3476bc4b0cfb4c&cc=NO&useAf=loaded_string_8005f3d5bb63c9dbdcfb475795d659c65a4e_2229091_1551458056.6766_48361&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M= HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/bnr_xload.php?section=General&pub=329724&format=728x90&ga=g&xt=155145805576652&xtt=1740093
Cookie: used_ad2229091=1; total_impressions=1; cpa_673873=728x90_618948233_0

                                         
                                         185.66.200.217
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: close
Expires: Fri, 01 Mar 2019 16:34:17 GMT
Last-Modified: Fri, 01 Mar 2019 16:34:17 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   870
Md5:    4ff9fe39e948684fad73ac3d5df2fb91
Sha1:   4dd25dec6bfe3fd41177f4b4f7e4153379334aa9
Sha256: 74a8c5e18cea8229e634816d57e014f159462c9a858b8f7b5c581b20a5c6e00a
                                        
                                            GET /en_US/sdk.js?hash=ea3fc715e36b110402f392081856f196 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
X-XSS-Protection: 0
Etag: "074e33f6f42e7652b30967d6d71db6f9"
X-Frame-Options: DENY
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Cache-Control: public,max-age=31536000,stale-while-revalidate=3600,immutable
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Expires: Sat, 29 Feb 2020 15:21:51 GMT
x-fb-content-md5: 750060c51a069ede3615a7b13fbc0f9b
Access-Control-Expose-Headers: X-FB-Content-MD5
Content-MD5: b/owUb55Hc0KvEvkWQQYPA==
X-FB-Debug: alptbWGoqtxj5jx346Y25RNfwu2i6T0CDPUntm/AVdPBsj+nOUaPETpwOE4PVgl7lD8KuJffE/rcXvK/MMT5hA==
Date: Fri, 01 Mar 2019 16:34:17 GMT
Connection: keep-alive
Content-Length: 59708


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   59708
Md5:    6ffa3051be791dcd0abc4be45904183c
Sha1:   fdc8f61baba64b86d088cddda23c58a792f4fbb0
Sha256: b2cdf78961ebed81fee4ba14094bd3494722fe9f91603c03f0599c3578c1147d
                                        
                                            GET /148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCdrjkpjZiiCikAAGjCxCGGNpxNrZkNrZiCrCZijCCrkjCiCrCrGCx&adApiR=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&refferer=2447442435_aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=&width=300&height=250&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf HTTP/1.1 
Host: namel.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/show.php?u8721551458057=true&ad=673873&f=300x250&a=395578&cri=0&s=NWJkYmFlYTE0ZTRiNTdjZDE2ZmIyNmJhZWY5NzVmZTA=&u=329724&si=618948233&di=28992901&ci=16&h=1108b38063d23b8b50b8987115fbd04c&cc=NO&useAf=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=

                                         
                                         185.66.201.34
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1213
Md5:    a9a8f0b977a5ec5812141b6f2341586a
Sha1:   5c9fcd66f49be56cc6cc9e871ffbedffc1839e48
Sha256: 36bc320e3d894de9345ecadcc2c6a7728ae070664c8833ac4e0dbb156db97773
                                        
                                            GET /logo_n_small.png?1480628810 HTTP/1.1 
Host: ylx-i.advertica-cdn2.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/show.php?u8721551458057=true&ad=673873&f=300x250&a=395578&cri=0&s=NWJkYmFlYTE0ZTRiNTdjZDE2ZmIyNmJhZWY5NzVmZTA=&u=329724&si=618948233&di=28992901&ci=16&h=1108b38063d23b8b50b8987115fbd04c&cc=NO&useAf=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=

                                         
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2016 21:46:50 GMT
Etag: W/"58409a4a-631"
Expires: Sun, 31 Mar 2019 16:34:17 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1298
Md5:    961dcad940bcae720f8f0ead6409f9d2
Sha1:   7199f8b763df9aec9c55bad14795e2166e6b1501
Sha256: a50a9224daca3d84e35717d2c03bea4a7e9c811b2cc598078de2f9b787ed080a
                                        
                                            GET /trk/?2bd33961ef4c885daa3476bc4b0cfb4c HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/show.php?u8241551458056=true&ad=673873&f=728x90&a=625611&cri=0&s=MDM3ZDA5ZjcxMjE4M2FlZmZjZmU1MDIyYTA2M2NhZDg=&u=329724&si=618948233&di=28992901&ci=16&h=2bd33961ef4c885daa3476bc4b0cfb4c&cc=NO&useAf=loaded_string_8005f3d5bb63c9dbdcfb475795d659c65a4e_2229091_1551458056.6766_48361&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=
Cookie: used_ad2229091=1; total_impressions=1; cpa_673873=300x250_618948233_0; used_ad2241847=1

                                         
                                         185.66.200.217
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 43
Connection: close
Last-Modified: Fri, 01 Mar 2019 16:34:17 GMT
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Pragma-directive: no-cache
Cache-directive: no-cache
Cache-Control: public, no-cache
Pragma: no-cache
Expires: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCdrjkpjZiiCdZAdrrCxCGGNpxNrZkNrZiCrCZijCCrkjCiCrCrGCx&adApiR=loaded_string_8005f3d5bb63c9dbdcfb475795d659c65a4e_2229091_1551458056.6766_48361&refferer=2447442435_aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=&width=728&height=90&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf HTTP/1.1 
Host: namel.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/show.php?u8241551458056=true&ad=673873&f=728x90&a=625611&cri=0&s=MDM3ZDA5ZjcxMjE4M2FlZmZjZmU1MDIyYTA2M2NhZDg=&u=329724&si=618948233&di=28992901&ci=16&h=2bd33961ef4c885daa3476bc4b0cfb4c&cc=NO&useAf=loaded_string_8005f3d5bb63c9dbdcfb475795d659c65a4e_2229091_1551458056.6766_48361&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=

                                         
                                         185.66.201.34
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1213
Md5:    2038aba301e773a86d8255f96c5ad89b
Sha1:   b17b507ba795a40b939d43ec1cd5bad2f7396041
Sha256: 5619950e4352942064cd80c5193700fb95c3d6ab302bad98224125994241ae56
                                        
                                            GET /trk/?1108b38063d23b8b50b8987115fbd04c HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/show.php?u8721551458057=true&ad=673873&f=300x250&a=395578&cri=0&s=NWJkYmFlYTE0ZTRiNTdjZDE2ZmIyNmJhZWY5NzVmZTA=&u=329724&si=618948233&di=28992901&ci=16&h=1108b38063d23b8b50b8987115fbd04c&cc=NO&useAf=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=
Cookie: used_ad2229091=1; total_impressions=1; cpa_673873=300x250_618948233_0; used_ad2241847=1

                                         
                                         185.66.200.217
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Content-Length: 43
Connection: close
Last-Modified: Fri, 01 Mar 2019 16:34:17 GMT
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Pragma-directive: no-cache
Cache-directive: no-cache
Cache-Control: public, no-cache
Pragma: no-cache
Expires: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCdrjkpjZiiCikAAGjCxCGGNpxNrZkNrZiCrCZijCCrkjCiCrCrGCx&adApiR=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&refferer=2447442435_aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=&width=300&height=250&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=1558657522762&realRef=L2NETFhpTXhYWUNHeGdMclJKaDVBcTNLaHpiczRsN0tkYWIwV0pNczdSZmdVdUV6RTFNRUd3SmEvaEhNYjQrNUo2SjgwZVd2ZERrOU5JdG5jd2dpSWhaN0dNRU1yQUNOSEsvbmlPOTRhelMwdmFVM01Yc0F0K2NsYzN3ZDJRV2tseWxVOUl5MWRwU0VaNnlULzJLdG5FNDF5RlBoTFdjZWNYbnNuY1dZYmhTaUlwdzJMQ21wM3hKd0VTTURFUUg4dS84MXpDZU1HNko5SjRlNDhCUk4rRFJNeHlrWXZuZngzbDRsRnlaTGNWN3MraGNrN2dJUmZPcG55MnloTVdFeS9QWkFESGdsMFh6Nzc1aEp5M3Rhb1BPRXA0TG9vUzdOaVc4dDlESEFCL1ErcEFkSUFKanlVSm1DUzg4Z1NTcC9BVkVNUkY0M1R5WHlLdkdTaTNaRk42Y2hwSVJycTVHVlUvdFJ5SzFPTjhrSVBaU08wV29sZDhSRFRjcWRLMEJtN2Y0bVBmNlJTTWNiOHVYclh4bFluWDQwVUcxMFRSTWduNWwyMTU4bktQYVZRNW9hZklmbnkvYVVxL2E3K0d0MGQrbHFWMG5WRVcwbXBYMzBJVDhoMGc9PQ== HTTP/1.1 
Host: namel.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/show.php?u8721551458057=true&ad=673873&f=300x250&a=395578&cri=0&s=NWJkYmFlYTE0ZTRiNTdjZDE2ZmIyNmJhZWY5NzVmZTA=&u=329724&si=618948233&di=28992901&ci=16&h=1108b38063d23b8b50b8987115fbd04c&cc=NO&useAf=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=

                                         
                                         185.66.201.34
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: total_impressions=1; expires=Sat, 02-Mar-2019 04:59:59 GMT; Max-Age=44742 used_ad2241847=1; expires=Sat, 02-Mar-2019 04:59:59 GMT; Max-Age=44742; path=/
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   856
Md5:    652cf868b1d14d8bdd7da1f78f8d7fbc
Sha1:   6d33b3de8c89ceb827416456868d237a5e030472
Sha256: b756a478af6f954d459c010d655e07fe6320a6170d40c4f29a370c2ef51ce8ff
                                        
                                            GET /aff/pub_s9c2nm.png?1480419364 HTTP/1.1 
Host: ylx-i.advertica-cdn2.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/show.php?u8721551458057=true&ad=673873&f=300x250&a=395578&cri=0&s=NWJkYmFlYTE0ZTRiNTdjZDE2ZmIyNmJhZWY5NzVmZTA=&u=329724&si=618948233&di=28992901&ci=16&h=1108b38063d23b8b50b8987115fbd04c&cc=NO&useAf=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=

                                         
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2016 11:36:04 GMT
Etag: W/"583d6824-68a8"
Expires: Sun, 31 Mar 2019 16:34:17 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   26311
Md5:    f46784dcc71c42f9406d242fede794f4
Sha1:   79269678d6fb002908aae6c5616ddd2f94f9691a
Sha256: 0df87463e7f01f1abbb4144ed58c36de50d1fdb3bc56046e0976ab642ed2f1bc
                                        
                                            GET /aff/pub_upk7x1.png?1480419365 HTTP/1.1 
Host: ylx-i.advertica-cdn2.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/show.php?u8241551458056=true&ad=673873&f=728x90&a=625611&cri=0&s=MDM3ZDA5ZjcxMjE4M2FlZmZjZmU1MDIyYTA2M2NhZDg=&u=329724&si=618948233&di=28992901&ci=16&h=2bd33961ef4c885daa3476bc4b0cfb4c&cc=NO&useAf=loaded_string_8005f3d5bb63c9dbdcfb475795d659c65a4e_2229091_1551458056.6766_48361&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=

                                         
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2016 11:36:05 GMT
Etag: W/"583d6825-5642"
Expires: Sun, 31 Mar 2019 16:34:17 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   21861
Md5:    c7ccbe4d2fac0aa6f9be62ec3835c46e
Sha1:   195eab4b01542efa220ce3261256d79bfeb0ded7
Sha256: 7117b5049764d7fe4ad4aa5aff9907b67f8767745eb3684a270e48baa67f7e05
                                        
                                            GET /08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCdrjkpjZiiCdZAdrrCxCGGNpxNrZkNrZiCrCZijCCrkjCiCrCrGCx&adApiR=loaded_string_8005f3d5bb63c9dbdcfb475795d659c65a4e_2229091_1551458056.6766_48361&refferer=2447442435_aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=&width=728&height=90&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=1645293267657&realRef=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 HTTP/1.1 
Host: namel.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://yx-ads6.com/show.php?u8241551458056=true&ad=673873&f=728x90&a=625611&cri=0&s=MDM3ZDA5ZjcxMjE4M2FlZmZjZmU1MDIyYTA2M2NhZDg=&u=329724&si=618948233&di=28992901&ci=16&h=2bd33961ef4c885daa3476bc4b0cfb4c&cc=NO&useAf=loaded_string_8005f3d5bb63c9dbdcfb475795d659c65a4e_2229091_1551458056.6766_48361&ar=aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=

                                         
                                         185.66.201.34
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: total_impressions=1; expires=Sat, 02-Mar-2019 04:59:59 GMT; Max-Age=44742 used_ad2229091=1; expires=Sat, 02-Mar-2019 04:59:59 GMT; Max-Age=44742; path=/
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   863
Md5:    fff084da3b79bae0fd8868af21895d8b
Sha1:   b05dbfd6d7493b8e4f7c27513fc4ed5b8c81797a
Sha256: bbcf2582252b76f4c0f94423f7964a8389af95c336fdecf83a755ac08c29201b
                                        
                                            GET /BidVertiser.dbm?pid=344077&bid=1762353 HTTP/1.1 
Host: bdv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         216.200.199.154
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 10318


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   10318
Md5:    606d8436188cba044f8212cf23f13209
Sha1:   39cbcdee72c40c451b2a4012f2eee6dbad005215
Sha256: a6a7491870eeb580e26b33f7fc4bdf431e3ad288c3cd03c931c64ea48af56dd3
                                        
                                            GET /c/generic/979_89460OrangePlayBlick-300x250.gif HTTP/1.1 
Host: cdn.namel.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://namel.net/148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCdrjkpjZiiCikAAGjCxCGGNpxNrZkNrZiCrCZijCCrkjCiCrCrGCx&adApiR=loaded_string_32638f3d5bb63c9dbdcfb475795d659c65a4e_2241847_1551458057.2577_75460&refferer=2447442435_aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=&width=300&height=250&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=1558657522762&realRef=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

                                         
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2017 12:20:59 GMT
Etag: W/"5970a02b-3089"
Expires: Sun, 31 Mar 2019 16:34:17 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12069
Md5:    33eb01790de02894ff6c7c0d0def70ea
Sha1:   834a20577961d979c605cdd30223931ce2797b95
Sha256: df1bd94a9835bb0170cbaf6f926e551321ada87168ed20f50449e66fbb2eac26
                                        
                                            GET /c/generic/9478_61741ScrollingDownButton-728x90.gif HTTP/1.1 
Host: cdn.namel.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://namel.net/08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCdrjkpjZiiCdZAdrrCxCGGNpxNrZkNrZiCrCZijCCrkjCiCrCrGCx&adApiR=loaded_string_8005f3d5bb63c9dbdcfb475795d659c65a4e_2229091_1551458056.6766_48361&refferer=2447442435_aHR0cDovL2FhYWFhYWFhYTkuY29tL25ld3MvcG9saXRpY3M=&width=728&height=90&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=1645293267657&realRef=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

                                         
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 01 Mar 2019 16:34:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2017 12:20:46 GMT
Etag: W/"5970a01e-1c0a"
Expires: Sun, 31 Mar 2019 16:34:18 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6727
Md5:    801ed49fa6630ca9478f4e5490df70ef
Sha1:   7ec418056815b96b3e0db50bc88bed28a26bf228
Sha256: 8f16adf34821c38d03f54e065e88595838b0a1790ec43c35b6c54d58c2585bec
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         50.63.243.230
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Mar 2019 16:34:33 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=69938, public, no-transform, must-revalidate
Last-Modified: Fri, 01 Mar 2019 01:01:32 GMT
Expires: Sat, 02 Mar 2019 13:01:32 GMT
Etag: "db767d4787cf8f912c483fd4da8231c89c94234f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1777
Connection: close


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    191a7528013ef3ab77d15899d7e07ed3
Sha1:   db767d4787cf8f912c483fd4da8231c89c94234f
Sha256: 7cbdd822af15f013d36510d5133c29d0d8e5051b43d08e7490972ca508e0a8a9
                                        
                                            GET /bidvertiser.dbm?pid=344077&bid=1762353&RD=8902592739708&DIF=2 HTTP/1.1 
Host: ntv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         104.239.226.115
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Cache-Control: no-store
Content-Len: 0
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Date: Friday, 01-Mar-2019 16:34:18 GMT
Transfer-Encoding: chunked
Connection: Keep-Alive
Last-Modified: Thursday, 01-Mar-2018 16:34:18 GMT


--- Additional Info ---
                                        
                                            GET /BidVertiser.dbm?pid=344077&bid=1762353&RD=4635665066897&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=4635665066897&js1loc=-&loctitle=%20sri%20lanka%20news%20updates HTTP/1.1 
Host: ntv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         104.239.226.115
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-store
Content-Len: 5934
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Date: Friday, 01-Mar-2019 16:34:18 GMT
Transfer-Encoding: chunked
Connection: Keep-Alive
Set-Cookie: bdv_c3p=230; domain=.bidvertiser.com; path=/; expires=Sat, 02-Mar-2019 16:34:18 GMT bdv_c3p=1_1_1; domain=.bidvertiser.com; path=/; expires=Sat, 02-Mar-2019 16:34:18 GMT
Last-Modified: Thursday, 01-Mar-2018 16:34:18 GMT


--- Additional Info ---
Magic:  ASCII HTML document text, with very long lines
Size:   5934
Md5:    d79b293fabca4712e5ebe43139e13912
Sha1:   c2e88b78778f5712deea81b3485788faab82106e
Sha256: 814ee26fbb8b499ec86919902a0c6e8c535864a45f8bcc24ce642aaa1106617b
                                        
                                            GET /bidvertiser/tags/css/default.css HTTP/1.1 
Host: bvadtgs.scdn1.secure.raxcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ntv.bidvertiser.com/BidVertiser.dbm?pid=344077&bid=1762353&RD=4635665066897&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=4635665066897&js1loc=-&loctitle=%20sri%20lanka%20news%20updates

                                         
                                         104.75.75.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
Etag: "70d0ec1947f4d01:0"
Server: Microsoft-IIS/8.5
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 549
Date: Fri, 01 Mar 2019 16:34:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   549
Md5:    0c3d6bd2f4e096c6f474309017dfa42b
Sha1:   5e14155ad01281e4091cf6ba09594584f25ddf3b
Sha256: b2a7c3369e7a28b7415d7512efe1d057230ec14732c7901d82c04a7610d26528
                                        
                                            GET /bidvertiser/tags/activejs/bdv_fsthd.js HTTP/1.1 
Host: bvadtgs.scdn1.secure.raxcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ntv.bidvertiser.com/BidVertiser.dbm?pid=344077&bid=1762353&RD=4635665066897&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=4635665066897&js1loc=-&loctitle=%20sri%20lanka%20news%20updates

                                         
                                         104.75.75.137
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Tue, 26 Jul 2016 07:39:59 GMT
Accept-Ranges: bytes
Etag: "e05182e910e7d11:0"
Server: Microsoft-IIS/8.5
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 712
Date: Fri, 01 Mar 2019 16:34:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   712
Md5:    e7ba6359936de26f9289a4bdb2a7b75d
Sha1:   d83ef5e6b4b503975d57cbf6db5d490d27f153b4
Sha256: f689ec8ab401e9ef2eebbd772efac602f98be75f1ff134d524d2736656c0f4f4
                                        
                                            GET /bidvertiser/tags/css/248x298.css?cbst=2 HTTP/1.1 
Host: bvadtgs.scdn1.secure.raxcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ntv.bidvertiser.com/BidVertiser.dbm?pid=344077&bid=1762353&RD=4635665066897&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=4635665066897&js1loc=-&loctitle=%20sri%20lanka%20news%20updates

                                         
                                         104.75.75.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 18 Jan 2018 16:20:30 GMT
Accept-Ranges: bytes
Etag: "183bf427890d31:0"
Server: Microsoft-IIS/8.5
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 773
Date: Fri, 01 Mar 2019 16:34:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   773
Md5:    ed35e3a17413ccc2a9406effa743bd20
Sha1:   09add3d01f106086982f2b7e4ff97d8b4d9ba38b
Sha256: 2bb22ca2bd057e1e579aa94178a2ca0bd49ae6bbff4f7ca96ea4d07452d3eaba
                                        
                                            GET /quant.js HTTP/1.1 
Host: edge.quantserve.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ntv.bidvertiser.com/BidVertiser.dbm?pid=344077&bid=1762353&RD=4635665066897&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=4635665066897&js1loc=-&loctitle=%20sri%20lanka%20news%20updates

                                         
                                         35.157.170.79
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: private, no-transform, must-revalidate, max-age=604800
Content-Encoding: gzip
Date: Fri, 01 Mar 2019 16:34:18 GMT
Etag: M0-e2b9884a
Expires: Fri, 08 Mar 2019 16:34:18 GMT
Last-Modified: Fri, 01-Mar-2019 16:34:18 GMT
Server: QS
Vary: Accept-Encoding
Content-Length: 5456
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5456
Md5:    ea55b8aade97737bdb3ac34239afe3e9
Sha1:   5bd3746efdffacbe0a0415d8760167834bb181ee
Sha256: d98cf4549e148788618a1ba008dc66d210d0063608b7c0acdfceb11430dd1579
                                        
                                            GET /BidVertiser.dbm?pid=344077&bid=1762353 HTTP/1.1 
Host: bdv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         216.200.199.154
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 10318


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   10318
Md5:    606d8436188cba044f8212cf23f13209
Sha1:   39cbcdee72c40c451b2a4012f2eee6dbad005215
Sha256: a6a7491870eeb580e26b33f7fc4bdf431e3ad288c3cd03c931c64ea48af56dd3
                                        
                                            GET /v2.0/get_counts?url=http%3A%2F%2Faaaaaaaaa9.com%2Fnews%2Fpolitics&cb=stButtons.processCB&wd=true HTTP/1.1 
Host: count-server.sharethis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         52.20.38.158
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Encoding: gzip
Date: Fri, 01 Mar 2019 16:34:19 GMT
Content-Length: 106
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data
Size:   106
Md5:    58b853a8813ff568dbbeecf6633ef79f
Sha1:   fc8393e4cd48e8bf31cb75ca29a53fdeba6933e0
Sha256: 062215763996ca513ab406d53645dcb628ccfdbeb527f91540798a5bc5bd9bd7
                                        
                                            GET /BidVertiser.dbm?pid=344077&bid=1762353&RD=518718610272&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=518718610272&js1loc=-&loctitle=%20sri%20lanka%20news%20updates HTTP/1.1 
Host: ntv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: bdv_c3p=1_1_1; dididel=yes

                                         
                                         104.239.226.115
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-store
Content-Len: 5934
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Date: Friday, 01-Mar-2019 16:34:19 GMT
Transfer-Encoding: chunked
Connection: Keep-Alive
Set-Cookie: bdv_c3p=230; domain=.bidvertiser.com; path=/; expires=Sat, 02-Mar-2019 16:34:19 GMT bdv_c3p=1_1_1; domain=.bidvertiser.com; path=/; expires=Sat, 02-Mar-2019 16:34:19 GMT
Last-Modified: Thursday, 01-Mar-2018 16:34:19 GMT


--- Additional Info ---
Magic:  ASCII HTML document text, with very long lines
Size:   5934
Md5:    d79b293fabca4712e5ebe43139e13912
Sha1:   c2e88b78778f5712deea81b3485788faab82106e
Sha256: 814ee26fbb8b499ec86919902a0c6e8c535864a45f8bcc24ce642aaa1106617b
                                        
                                            GET /bidvertiser/tags/css/248x298.css?cbst=2 HTTP/1.1 
Host: bvadtgs.scdn1.secure.raxcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ntv.bidvertiser.com/BidVertiser.dbm?pid=344077&bid=1762353&RD=518718610272&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=518718610272&js1loc=-&loctitle=%20sri%20lanka%20news%20updates
If-Modified-Since: Thu, 18 Jan 2018 16:20:30 GMT
If-None-Match: "183bf427890d31:0"

                                         
                                         104.75.75.137
HTTP/1.1 304 Not Modified
Content-Type: text/css
                                        
Last-Modified: Thu, 18 Jan 2018 16:20:30 GMT
Etag: "183bf427890d31:0"
Date: Fri, 01 Mar 2019 16:34:19 GMT
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /pixel;r=1110790193;rf=3;a=p-962HGJkIT49Rs;url=http%3A%2F%2Fntv.bidvertiser.com%2FBidVertiser.dbm%3Fpid%3D344077%26bid%3D1762353%26RD%3D518718610272%26DIF%3D1%26bd_ref_v%3Daaaaaaaaa9.com%26tref%3D1%26win_name%3Dnull%26docref%3D%26jsrand%3D518718610272%26js1loc%3D-%26loctitle%3D%2520sri%2520lanka%2520news%2520updates;ref=http%3A%2F%2Faaaaaaaaa9.com%2Fnews%2Fpolitics;fpan=1;fpa=P0-1104185767-1551458059648;ns=1;ce=1;qjs=1;qv=4c19192-20180628134937;cm=;je=1;sr=1176x885x24;enc=n;dst=1;et=1551458059647;tzo=-60;ogl= HTTP/1.1 
Host: pixel.quantserve.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ntv.bidvertiser.com/BidVertiser.dbm?pid=344077&bid=1762353&RD=518718610272&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=518718610272&js1loc=-&loctitle=%20sri%20lanka%20news%20updates

                                         
                                         3.120.63.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, no-cache, no-store, proxy-revalidate
Date: Fri, 01 Mar 2019 16:34:19 GMT
Expires: Fri, 04 Aug 1978 12:00:00 GMT
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
Pragma: no-cache
Server: QS
Set-Cookie: mc=5c795f0b-b379f-88a84-35650; expires=Tue, 31-Mar-2020 16:34:19 GMT; path=/; domain=.quantserve.com
Content-Length: 35
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    55d25e9dc950d5db4d53a3b195c046c6
Sha1:   75e91ae3e549dab12ed1c9787ade9131aef1c981
Sha256: a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
                                        
                                            GET /BidVertiser.dbm?pid=344077&bid=1762352 HTTP/1.1 
Host: bdv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: bdv_c3p=1_1_1

                                         
                                         216.200.199.154
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 10318


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   10318
Md5:    606d8436188cba044f8212cf23f13209
Sha1:   39cbcdee72c40c451b2a4012f2eee6dbad005215
Sha256: a6a7491870eeb580e26b33f7fc4bdf431e3ad288c3cd03c931c64ea48af56dd3
                                        
                                            GET /bidvertiser.dbm?pid=344077&bid=1762352&RD=78225145773964&DIF=2 HTTP/1.1 
Host: ntv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: bdv_c3p=1_1_1; dididel=yes; __qca=P0-1104185767-1551458059648

                                         
                                         104.239.226.115
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Cache-Control: no-store
Content-Len: 0
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Date: Friday, 01-Mar-2019 16:34:19 GMT
Transfer-Encoding: chunked
Connection: Keep-Alive
Last-Modified: Thursday, 01-Mar-2018 16:34:19 GMT


--- Additional Info ---
                                        
                                            GET /BidVertiser.dbm?pid=344077&bid=1762352&RD=5330761336559&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=5330761336559&js1loc=-&loctitle=%20sri%20lanka%20news%20updates HTTP/1.1 
Host: ntv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics
Cookie: bdv_c3p=1_1_1; dididel=yes; __qca=P0-1104185767-1551458059648

                                         
                                         104.239.226.115
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-store
Content-Len: 5917
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Date: Friday, 01-Mar-2019 16:34:20 GMT
Transfer-Encoding: chunked
Connection: Keep-Alive
Set-Cookie: bdv_c3p=230; domain=.bidvertiser.com; path=/; expires=Sat, 02-Mar-2019 16:34:20 GMT bdv_c3p=1_1_1; domain=.bidvertiser.com; path=/; expires=Sat, 02-Mar-2019 16:34:20 GMT
Last-Modified: Thursday, 01-Mar-2018 16:34:20 GMT


--- Additional Info ---
Magic:  ASCII HTML document text, with very long lines
Size:   5917
Md5:    47251e6612dc8a3e55d6230171db9fe6
Sha1:   e42a7932bf760a4b85e7db511081c3d5b3e9dc9d
Sha256: b6414f3c27e27b7be008a21409e9208f88cb56836c4b30d02aaaa773cae7095b
                                        
                                            GET /bidvertiser/tags/css/88x726.css?cbst=2 HTTP/1.1 
Host: bvadtgs.scdn1.secure.raxcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ntv.bidvertiser.com/BidVertiser.dbm?pid=344077&bid=1762352&RD=5330761336559&DIF=1&bd_ref_v=aaaaaaaaa9.com&tref=1&win_name=null&docref=&jsrand=5330761336559&js1loc=-&loctitle=%20sri%20lanka%20news%20updates

                                         
                                         104.75.75.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 18 Jan 2018 16:19:40 GMT
Accept-Ranges: bytes
Etag: "8ae83247890d31:0"
Server: Microsoft-IIS/8.5
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 794
Date: Fri, 01 Mar 2019 16:34:20 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   794
Md5:    c0217126cfbe1e94fc9d86426f636962
Sha1:   eca2eb8f8441788aa520295869ca034984ab45b1
Sha256: 3f69cce861099a23d5150b64d9fa4a0910f1dd8ddd4dfe7bf8e37766cac9974e
                                        
                                            GET /secure/index.html HTTP/1.1 
Host: ws.sharethis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aaaaaaaaa9.com/news/politics

                                         
                                         2.21.203.215
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Encoding: gzip
Etag: W/"5c7039ac-1ade"
Last-Modified: Fri, 22 Feb 2019 18:04:28 GMT
Server: nginx/1.12.2
Vary: Accept-Encoding
Content-Length: 2089
Date: Fri, 01 Mar 2019 16:34:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2089
Md5:    0fa8fa978c639276cc5f030b848eeb24
Sha1:   6d2d0227ecc37288b9829b826982f4df761fd421
Sha256: 907a42608485d3cb60ba0470b319661565c2ec5227ffd40da68853617e7ef675
                                        
                                            GET /secure/js/st.44afd8923e0c1cb96ab2671eaa387d1f.js HTTP/1.1 
Host: ws.sharethis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ws.sharethis.com/secure/index.html

                                         
                                         2.21.203.215
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Etag: W/"5c7039ac-14cae"
Server: nginx/1.12.2
Vary: Accept-Encoding
Content-Length: 22178
Cache-Control: max-age=30939014
Expires: Sat, 22 Feb 2020 18:44:35 GMT
Date: Fri, 01 Mar 2019 16:34:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22178
Md5:    40881c63eff358610cd3f8928a5a4917
Sha1:   06f9c05ae331b013b88cb56667fb44956f300139
Sha256: 7a44cc7f975833ef913d598a8247041db19f97674c3c07c9bdb31d4f0cd54e01