Overview

URL mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456
IP158.85.94.183
ASNAS36351 SoftLayer Technologies Inc.
Location Canada
Report completed2018-09-25 12:50:12 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-09-25 2 www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecure (...) Phishing
2018-09-25 2 www.mwcasetta.com/wp-content/plugins/contact-form-7/includes/css/styles.css (...) Phishing
2018-09-25 2 www.mwcasetta.com/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14 Phishing
2018-09-25 2 www.mwcasetta.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0 Phishing
2018-09-25 2 www.mwcasetta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Phishing
2018-09-25 2 www.mwcasetta.com/wp-content/themes/elefolio/includes/js/superfish.js?ver=4.9.8 Phishing
2018-09-25 2 www.mwcasetta.com/wp-includes/js/jquery/jquery.js?ver=1.12.4 Phishing
2018-09-25 2 www.mwcasetta.com/wp-content/themes/elefolio/includes/js/general.js?ver=4.9.8 Phishing
2018-09-25 2 www.mwcasetta.com/wp-includes/js/wp-embed.min.js?ver=4.9.8 Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 1 reports on IP: 158.85.94.183

Date UQ / IDS / BL URL IP
2018-09-25 12:50:15 +0200
0 - 0 - 10 mwcasetta.com/Beeld/someonetriedtologininyour (...) 158.85.94.183

Last 10 reports on ASN: AS36351 SoftLayer Technologies Inc.

Date UQ / IDS / BL URL IP
2019-02-22 18:23:40 +0100
0 - 1 - 0 maxysoft.com/files-lw/7art_LW_RomanticHallowe (...) 50.97.207.122
2019-02-22 18:20:35 +0100
0 - 0 - 0 206.217.193.149 206.217.193.149
2019-02-22 18:09:12 +0100
0 - 1 - 0 maxysoft.com/files-lw/7art_LW_RomanticHallowe (...) 50.97.207.122
2019-02-22 17:55:13 +0100
0 - 1 - 0 www.wma-mp3-converter.net/files/4UWMAMP3Conve (...) 173.193.22.10
2019-02-22 17:55:04 +0100
0 - 1 - 0 maxysoft.com/files-lw/7art_LW_RomanticHallowe (...) 50.97.207.122
2019-02-22 17:54:39 +0100
0 - 1 - 0 dl.verypdf.net/verypdf-pdfcompressor.exe 96.126.117.29
2019-02-22 17:39:08 +0100
0 - 0 - 0 https://activate.famatech.com 108.168.215.34
2019-02-22 17:38:59 +0100
0 - 0 - 1 free-dvd-ripper.net/FreeDVDRipperUltimate.exe 45.56.127.75
2019-02-22 17:29:30 +0100
0 - 0 - 0 activate.famatech.com/cgi-bin/activate.cgi 108.168.215.34
2019-02-22 17:08:05 +0100
0 - 0 - 1 cacheflyserver.com/ad/bundleOP/FreeAudioVideo (...) 45.56.127.75

Last 1 reports on domain: mwcasetta.com

Date UQ / IDS / BL URL IP
2018-09-25 12:50:15 +0200
0 - 0 - 10 mwcasetta.com/Beeld/someonetriedtologininyour (...) 158.85.94.183


JavaScript

Executed Scripts (13)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (24)


Request Response
                                        
                                            GET /Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456 HTTP/1.1 
Host: mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         158.85.94.183
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:42 GMT
Content-Length: 20
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
                                        
                                            GET /Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         158.85.94.183
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 3477
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://www.mwcasetta.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3477
Md5:    95a41bfead840c308c8f523239d38ef9
Sha1:   ec2b5ef1cf775194865e6c8ebd87084c6d204188
Sha256: ead124b82d1fca399e0cde5d1e9627ee390757773f540b6256e236036d434695

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/elefolio/style.css HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 7488
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:55:55 GMT
Etag: "779e-569ef32e0c6f9"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7488
Md5:    5990617f21a2c395e0ed5109648f0c80
Sha1:   617ce3c8e6239e54483664b42b213b6d6c7ee3a8
Sha256: b11ee0b5bba3e8bd1c1bac56fcef4d307afd8b0e6ffb79f29a6bb4bd876590a0
                                        
                                            GET /wp-content/plugins/yet-another-related-posts-plugin/style/widget.css?ver=4.9.8 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 384
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:46:38 GMT
Etag: "303-569ef11b83501"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   384
Md5:    b8450b17911ce70807dff179d80c5187
Sha1:   dd9b3a611968350f07340fe6d19b884970883fdc
Sha256: 83ee312530dd299eb17cd660f45db6de051299c9bdf165834878aa19e1540da7
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.1 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 656
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:45:44 GMT
Etag: "693-569ef0e73bd68"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   656
Md5:    6b2586b5e16cd633c93cfc04cfd2d09d
Sha1:   3456042cd9705274408a339257b60eb763b9ff24
Sha256: 614d03ab85f6b3c15963472a3d1d6fd6fb7b2ae8d5cf8574d49c36cdaa790ff3

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 452
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:45:16 GMT
Etag: "579-569ef0cd467c7"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   452
Md5:    2d36a18c6fe23149715f8aafc282e14d
Sha1:   945ccb1c13aea1290890292eb54ad78a7858ae3f
Sha256: 870feb623eeb98e0d63d3c2756effa33252b49fc148d113a4fa995e772d74514

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 130
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:45:16 GMT
Etag: "87-569ef0cd1f6ca"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   130
Md5:    b620cce56ebb554e6e979f1bf1c0d6cf
Sha1:   dd8ca5b737b098417a8a47066194f4b70cb52913
Sha256: b5804ffcdc13a4ee5693170c79c0d9b5036d212a4beefa1121baf64d9b7dd723

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 4014
Connection: keep-alive
Last-Modified: Fri, 20 May 2016 10:11:28 GMT
Etag: "2748-5334350625400"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4014
Md5:    a6c81e2f02bd04160d2de88c4e8f3559
Sha1:   e3f3c91427d785820ca97dabe738f01faf041f36
Sha256: b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/elefolio/includes/js/superfish.js?ver=4.9.8 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 1570
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:55:55 GMT
Etag: "f58-569ef32e09fe9"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1570
Md5:    792e5a27c638dd56b9b4275e0041683d
Sha1:   ada4d0b6c606574ff3bb9da0fca141ce4f518fc4
Sha256: 32a3b0440f8cf9e4f50f60ceefa4390fad7d6e3058871ad7f05d57635b9300b1

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 33766
Connection: keep-alive
Last-Modified: Mon, 23 May 2016 13:00:30 GMT
Etag: "17ba0-53382066b1780"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33766
Md5:    d417f4d673009b01654915bbf1f4f872
Sha1:   f432ea8e89e5f4ef50e506019899e539a068f415
Sha256: 24560d81ded58e8befabf32ff51f5b6ae6f21eead0a5f87c255e3b47b988d1cc

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/elefolio/includes/js/general.js?ver=4.9.8 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 200
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:55:55 GMT
Etag: "191-569ef32e09fe9"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   200
Md5:    7847c9cea0cc15e9e7f948832c1ff925
Sha1:   ffe7ea189208c8307fbf8170ac2f433444a41c8b
Sha256: 3c1c0d56b9703e83946f0a4579e34bc457ead0ec60433dc8d2d43ac4f399272a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/elefolio/includes/tumblog/swfobject.js?ver=4.9.8 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 2251
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:55:55 GMT
Etag: "1ae7-569ef32e0c6f9"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2251
Md5:    e44a6f75116b155487b3b3eeaba87fd7
Sha1:   06f97a4572700f10ea583b052e0ee6d6fb5829f5
Sha256: b01174093c76c55616822abbb700c31d9b2fd7a71aad9493fee9cb5896750ffd
                                        
                                            GET /wp-content/themes/elefolio/functions/css/shortcodes.css HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 4700
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:55:55 GMT
Etag: "6ec8-569ef32e2c2c5"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4700
Md5:    8619e3ee365951492c1e2df59eb93950
Sha1:   6a10458a1b177b34a1372b5d811403623f72efbc
Sha256: 6b1c40d361c9db382bc9d8ebec27e06da59cfa0b4895034158c2e4af6a66cc59
                                        
                                            GET /wp-content/themes/elefolio/styles/default.css HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 38
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:55:55 GMT
Etag: "12-569ef32e337f5"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   38
Md5:    95fda0bcc3872e535e536ad53c8f0eda
Sha1:   fa51642f11edd100058edef7742d8fa6e52ef05d
Sha256: 6cbdc03faa7ee05fd12a80912823d6bac8eae763687de4e96162c8ef56fd00eb
                                        
                                            GET /wp-content/themes/elefolio/custom.css HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 200
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:55:55 GMT
Etag: "104-569ef32e0c6f9"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   200
Md5:    98ffb188f42c9afa6761e224a2261908
Sha1:   448ad22266d6bf2d47aaf7ec3f4d3fa502de633f
Sha256: 37c84ecb9c49aab2cbd24208f55043d3cc1439aa883e394d126af1e4bda24806
                                        
                                            GET /wp-content/uploads/2018/04/asd.png HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 9756
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 05:11:20 GMT
Etag: "261c-569f040a1d80d"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT


--- Additional Info ---
Magic:  PNG image, 120 x 109, 8-bit/color RGBA, non-interlaced
Size:   9756
Md5:    3b05ab84d701210d87197dc851b4bf0e
Sha1:   791814f7db26e49dfe6a94982e32c45c2a28a1d9
Sha256: dd0aca55d746d8e45c14d27e6a0ce4f826927d481282573d30fe5639af5ec6a3
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.1 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 4036
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 03:45:44 GMT
Etag: "38d7-569ef0e739658"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4036
Md5:    1503188b6c4a228e63d4376f96b31cb7
Sha1:   60cb70656eedb2442330ba2cda2029466ec7855e
Sha256: 6d81be99af08675ad8dbbc772fc306d9dece5b3a1262b626a72df03ea7a446f2
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.8 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:44 GMT
Content-Length: 4382
Connection: keep-alive
Last-Modified: Thu, 02 Aug 2018 21:30:56 GMT
Etag: "2efa-5727a86c98f0b"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4382
Md5:    fe05400b94a75668a17a99986b4658c3
Sha1:   3b1592b054709be35f5a809244e1117dcb02633e
Sha256: aad5379b020a7c8e338871e1dd0090f6dde8662a1f2053cce95c0fcbcf412116
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.9.8 HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:44 GMT
Content-Length: 751
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2016 18:38:34 GMT
Etag: "576-541fc323d5e80"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   751
Md5:    7542039ce963ffd18ad4fb7be13bd2be
Sha1:   8385e433e8e65739fc27b6bd16b1a7ae71b11084
Sha256: a70bca1336a4ac7592ce631cbb22c9ebb01d60461d221ac7a46f91a4ccfd1255

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/04/24.jpg HTTP/1.1 
Host: www.mwcasetta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         158.85.94.183
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.14.0
Date: Tue, 25 Sep 2018 10:49:43 GMT
Content-Length: 421934
Connection: keep-alive
Last-Modified: Mon, 16 Apr 2018 04:54:31 GMT
Etag: "6702e-569f004731a42"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 25 Sep 2019 10:49:43 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   421934
Md5:    536e945cda93bbfb455ded46ff8b071d
Sha1:   ac1f9b3784b048f1b72807d6f282f4e9c526880a
Sha256: 220b51ce857f8e1f5dda4029f6c5aa8708639fa84e17d90005c25e8f90ff27de
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 19 Sep 2018 13:23:33 GMT
Etag: EB26BCAB918E9F381D99016BF66F9A1CFCDB4E3A
X-OCSP-Responder-ID: rmdccaocsp25
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=95047
Expires: Wed, 26 Sep 2018 13:13:52 GMT
Date: Tue, 25 Sep 2018 10:49:45 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    8f8f6b23c11e2bde5dec46ad1902e917
Sha1:   eb26bcab918e9f381d99016bf66f9a1cfcdb4e3a
Sha256: 946922385470c2aab2d2737b346f0256571201045c449d01ec43e83b30e8cf74
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 20 Sep 2018 11:00:19 GMT
Etag: E6F58D18F846FA7A1B256C7BAD6E173833950B04
X-OCSP-Responder-ID: rmdccaocsp25
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=172872
Expires: Thu, 27 Sep 2018 10:50:57 GMT
Date: Tue, 25 Sep 2018 10:49:45 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    81b767bf43d0883d07888716a9c628d5
Sha1:   e6f58d18f846fa7a1b256c7bad6e173833950b04
Sha256: 52f9f8799d097e1d431dbcc820573a3adff9b32e9eec23d4bc698484893b3dc5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 20 Sep 2018 11:00:19 GMT
Etag: D8FF1031A802506B92CF4A6F28D3B0CC5D6E90DF
X-OCSP-Responder-ID: rmdccaocsp26
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=172826
Expires: Thu, 27 Sep 2018 10:50:11 GMT
Date: Tue, 25 Sep 2018 10:49:45 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    3197eebb0e20a395b73dff5cf366b4dc
Sha1:   d8ff1031a802506b92cf4a6f28d3b0cc5d6e90df
Sha256: b238d7ca0babaf95062a9472433ade1c3929277506a6c729d13e6b38a4a725f0
                                        
                                            GET /menu/page.js HTTP/1.1 
Host: static.addtoany.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mwcasetta.com/Beeld/someonetriedtologininyouraccountthisisalinktosecureandupgradeyouraccountnowwithoutanyproblemthankyou/68a02ad4aa0a6eecad363837df9e38ef/winfo.html?webscr=cmd_login-a630e40b7fef6jk65l654k9f-683hks009-56asn8sg1k37j4-54aps82h8d54sabx8vvc675-256gfsa742545655456

                                         
                                         104.20.111.39
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Tue, 25 Sep 2018 10:49:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d09f8abf21859e6a812e7333a57d7922d1537872585; expires=Wed, 25-Sep-19 10:49:45 GMT; path=/; domain=.addtoany.com; HttpOnly
Cache-Control: public, max-age=172800
Cf-Bgj: minify
Etag: W/"124bd-573c418e39f3d"
Last-Modified: Sun, 19 Aug 2018 06:42:31 GMT
P3P: CP="ALL DSP COR CURa ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV INT"
Vary: Accept-Encoding
Via: e5s
CF-Cache-Status: HIT
Expires: Thu, 27 Sep 2018 10:49:45 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 45fced09fdd9427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   25172
Md5:    6b62a01efea4023ef2565dec52cac53e
Sha1:   60f5ef47f89f7db0e449f7e071be59a0778e13ce
Sha256: fc5b176ec7cd0474865a4f31a6cc9b1a1718abe111bb0d2eaf8ba54c60446997