Overview

URL https://tinyurl.com/y2am6otc/521358
IP104.20.219.42
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2019-06-27 15:54:12 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-06-27 2 igama.stream/fg/s.js Malware
2019-06-27 2 igama.stream/fg/t2?_=1561643623289 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.20.219.42

Date UQ / IDS / BL URL IP
2019-06-30 01:15:21 +0200
0 - 0 - 2 tinyurl.com/y6pjcklz 104.20.219.42
2019-06-30 00:56:43 +0200
0 - 1 - 1 tinyurl.com/y2ehncc9 104.20.219.42
2019-06-20 14:55:01 +0200
0 - 0 - 0 https://tinyurl.com/yxud6tjg 104.20.219.42
2019-06-19 16:29:45 +0200
0 - 0 - 0 https://tinyurl.com/y5z687gd 104.20.219.42
2019-06-18 14:44:13 +0200
0 - 0 - 1 tinyurl.com/Premierinc-ReviewDoc 104.20.219.42
2019-06-17 19:22:16 +0200
0 - 0 - 1 https://tinyurl.com/yycvyvfe 104.20.219.42
2019-06-14 09:54:12 +0200
0 - 0 - 0 https://tinyurl.com/prices-iribuya 104.20.219.42
2019-06-13 22:36:16 +0200
0 - 0 - 0 https://tinyurl.com/yyww3fk2 104.20.219.42
2019-06-12 18:03:39 +0200
0 - 0 - 0 www.tinyurl.com/eomevh 104.20.219.42
2019-06-12 17:49:57 +0200
0 - 0 - 0 https://tinyurl.com/y2chw7pz 104.20.219.42

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2019-07-04 10:47:28 +0200
0 - 0 - 0 https://www.bitchute.com/video/nGjzUqQzi423/ 104.24.23.87
2019-07-02 09:55:24 +0200
0 - 0 - 0 Finddreamjobs.com 104.17.47.14
2019-07-02 09:51:03 +0200
0 - 0 - 0 https://www.bitchute.com/video/ix3LoPLzjS8a/ 104.24.23.87
2019-07-02 09:50:01 +0200
0 - 0 - 0 https://www.bitchute.com/video/RNGAJQK1s8Qx/ 104.24.22.87
2019-07-02 09:49:59 +0200
0 - 0 - 0 https://www.bitchute.com/video/HUEWirPZXMOI/ 104.24.23.87
2019-07-02 09:49:58 +0200
0 - 0 - 0 https://www.bitchute.com/video/GRkaogicSTRt/ 104.24.23.87
2019-07-02 09:49:56 +0200
0 - 0 - 0 https://www.bitchute.com/video/0vPgxEoFvLs8/ 104.24.23.87
2019-07-02 09:49:34 +0200
0 - 0 - 0 https://www.bitchute.com/video/rhOuRaIOHJdb/ 104.24.22.87
2019-07-02 09:49:31 +0200
0 - 0 - 0 https://www.bitchute.com/video/0gdUIrC1FwTV/ 104.24.23.87
2019-07-02 09:49:30 +0200
0 - 0 - 0 https://www.bitchute.com/video/9TSaSoV97QZI/ 104.24.22.87

Last 10 reports on domain: tinyurl.com

Date UQ / IDS / BL URL IP
2019-06-30 01:23:44 +0200
0 - 0 - 2 tinyurl.com/yykxlcu5 104.20.218.42
2019-06-30 01:17:32 +0200
0 - 1 - 1 tinyurl.com/y62g7yqv 104.20.218.42
2019-06-30 01:15:21 +0200
0 - 0 - 2 tinyurl.com/y6pjcklz 104.20.219.42
2019-06-30 01:02:46 +0200
0 - 1 - 1 tinyurl.com/y5ewqorp 104.20.218.42
2019-06-30 00:58:57 +0200
0 - 0 - 0 tinyurl.com/yytet3zr 104.20.218.42
2019-06-30 00:56:43 +0200
0 - 1 - 1 tinyurl.com/y2ehncc9 104.20.219.42
2019-06-26 06:45:11 +0200
0 - 0 - 0 tinyurl.com/y3lpuf7k%22%3ECotizacion.zip 104.20.218.42
2019-06-25 23:15:12 +0200
0 - 1 - 1 tinyurl.com/y5sksek6 104.20.218.42
2019-06-25 19:10:45 +0200
0 - 1 - 1 tinyurl.com/y5ue3cz7 104.20.218.42
2019-06-25 18:37:39 +0200
1 - 0 - 2 https://tinyurl.com/yynzobxc 104.20.218.42


JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (24)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 13:53:41 GMT
Accept-Ranges: bytes
Last-Modified: Thu, 27 Jun 2019 04:59:16 GMT
Server: Apache
Etag: 0B1CA39BDB1266202C91D7AA4F2C90074D2582C3
Cache-Control: max-age=600755,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp10
X-HW: 1561643621.cds041.sk1.h2,1561643621.cds041.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    2cd4cb7854062eabe4e08db1a53636ce
Sha1:   0b1ca39bdb1266202c91d7aa4f2c90074d2582c3
Sha256: b2c69825518bc7a698fd7fc96e0a809e5cb562db0af1fdd785b182c1070d3a7e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 13:53:41 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 24 Jun 2019 00:14:19 GMT
Server: Apache
Etag: 519C60BCC30E753A1131E77E1CA8F268CEA744E8
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp15
X-HW: 1561643621.cds041.sk1.h2,1561643621.cds043.sk1.c
Connection: keep-alive
Content-Length: 727


--- Additional Info ---
Magic:  data
Size:   727
Md5:    bf0ecfd5ed8e52b03b65b6f132763cd2
Sha1:   519c60bcc30e753a1131e77e1ca8f268cea744e8
Sha256: d3368c75951eb9823c065206aa9bc0633d2f5e0362466f952f997b51ed1f5649
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 13:53:41 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 24 Jun 2019 00:14:19 GMT
Server: Apache
Etag: 31983060334AF817DAC0260BA1EB7FF3D303AD12
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp12
X-HW: 1561643621.cds049.sk1.h2,1561643621.cds047.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    79a84850b78c4a9933dcd2c96d7ba97d
Sha1:   31983060334af817dac0260ba1eb7ff3d303ad12
Sha256: cb5dfb75b939583b3e11c8ad6035caf2414c927a45dc806977736eebc1cfa085
                                        
                                            GET /y2am6otc/521358 HTTP/1.1 
Host: tinyurl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.20.219.42
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 27 Jun 2019 13:53:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=df5111ba92218e53df6beb1e89e6c54cc1561643621; expires=Fri, 26-Jun-20 13:53:41 GMT; path=/; domain=.tinyurl.com; HttpOnly XSRF-TOKEN=eyJpdiI6InQwdURkdTAzT3lLek5wTXlVTDZJWkE9PSIsInZhbHVlIjoiYW9qdGhITGZrTVwvemI5M29acFZXeDFYSUVBSGkrM0lCUE9mdEdoY2hRMEd6cEdcL2tEWUNWdWxtSkd6c0wxXC9FKyIsIm1hYyI6IjNmZjQ3NTFiYzAyMWFjMTQ0NmMzYjllMTQ5MjBjZjZlMWNhMTVjMTNhNjYyODFjNDhiYzliNWJiMzhjZjg5MzcifQ%3D%3D; expires=Thu, 27-Jun-2019 15:53:41 GMT; Max-Age=7200; path=/ tinyurl_session=eyJpdiI6IkxMQTR2OW85WFZPT0t5ZzM1M1IySlE9PSIsInZhbHVlIjoiYUpqb2tWU2NDZHN2WkRQRENoSVU4TmdjYkM2UDFSZTA0Y0d1RkF2ajZPKzNcL0RDV29BWTBxWUVUSGRtXC9ZZWQxIiwibWFjIjoiMTc4NWUzYTM3NTliOTFhMTY1YjRmYTI3YWVjZjA2Y2Y4ZTQwOWQ4N2Q4OTYwYmUxODI5ZTJjNGFkNzk3OTBjMiJ9; expires=Thu, 27-Jun-2019 15:53:41 GMT; Max-Age=7200; path=/; httponly tinyUUID=d14ca6ad87944d28817b0000; expires=Tue, 25-Jun-2024 13:53:41 GMT; Max-Age=157680000; path=/; domain=.tinyurl.com
Location: http://esueleathers.calcoverdesc.ml/staboni.html/521358
Cache-Control: max-age=0, no-cache, private
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ed7e89b292fcb08-ARN


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   464
Md5:    42b4764c6113f4576ad888a81ed8bf72
Sha1:   c0b1d5a6880569d7c783fd8042f920aa7ce986f2
Sha256: 9250a210a25a54b921844e555b9d85f751fd1fc23c1b2be5034700e054a1cb75
                                        
                                            GET /staboni.html/521358 HTTP/1.1 
Host: esueleathers.calcoverdesc.ml
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         195.123.217.156
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 27 Jun 2019 13:53:42 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Host
X-Powered-By: PHP/5.6.38
Location: https://igama.stream/tds/cpa?tdsId=p7273kri_r&tds_campaign=p7273kri&utm_source=int&utm_campaign=b83382e7&utm_content={utm_content}&data2={data2}&utm_sub=opnfnl&m=ps


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         143.204.51.201
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121683
Date: Thu, 27 Jun 2019 13:53:42 GMT
Etag: "5d1402b9-1d7"
Expires: Fri, 28 Jun 2019 23:41:45 GMT
Last-Modified: Wed, 26 Jun 2019 23:41:45 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d7.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: upVApz6WAw5f4K-8f6IioG9RqMm-Oc_ddxQnROsBCc8a1_oUq-1c8Q==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    7b06d1a8de5488dde861dd500f6c53ec
Sha1:   c90b062af7928e17ff4c12b429965e6b1f08f542
Sha256: 876deddf634a1d559dbbbddeb0fa419e8c0334ca2dd252f4836b7920092d8f9a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.rootca1.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         143.204.51.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1426
Connection: keep-alive
Date: Thu, 27 Jun 2019 13:53:42 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.8/2018-10-18)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8ead.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xjf4rZMFJEOpH3EfiwmILmhpNjZHK_kShm1YVvO1XdbrvzGvYBWBsA==


--- Additional Info ---
Magic:  data
Size:   1426
Md5:    8e2d4746409cf023750aba5d2bf000a5
Sha1:   a7a248e52efafd243e3bd327c78a1f75147361b0
Sha256: 7c84f14b4974f04aab41cdd1293486f5767b4903ea0ca2e1ff728e54e398866e
                                        
                                            GET /tds/cpa?tdsId=p7273kri_r&tds_campaign=p7273kri&utm_source=int&utm_campaign=b83382e7&utm_content={utm_content}&data2={data2}&utm_sub=opnfnl&m=ps HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.58.186.110
HTTP/1.1 302 Found
                                        
Date: Thu, 27 Jun 2019 13:53:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=H5xF8IbQRBsKuAn0bHusEm1UxTo8t8sX2JceOuyJaitNj43UeO083uhodx/GGaumvY3VAKujH2KAF+XbXLzvdx9R4xN7sbdhjM8mGKDAqupf60N93L57PwbjXkgG; Expires=Thu, 04 Jul 2019 13:53:42 GMT; Path=/ dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454; Max-Age=31536000; Domain=.igama.stream; Path=/; Expires=Fri, 26 Jun 2020 13:53:43 GMT
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: /fg/s/efa02e016a0aeb98e4e2c0f1413b332e?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&__t=1561643623210&__l=60&tds_id=p7273kri_r&tds_oid=c


--- Additional Info ---
                                        
                                            GET /fg/s/efa02e016a0aeb98e4e2c0f1413b332e?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&__t=1561643623210&__l=60&tds_id=p7273kri_r&tds_oid=c HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: AWSALB=H5xF8IbQRBsKuAn0bHusEm1UxTo8t8sX2JceOuyJaitNj43UeO083uhodx/GGaumvY3VAKujH2KAF+XbXLzvdx9R4xN7sbdhjM8mGKDAqupf60N93L57PwbjXkgG; dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454

                                         
                                         52.58.186.110
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 27 Jun 2019 13:53:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=GGvDptU9MMQnPdBZ14nL7rntn3AG7/W5oJDISuTqH61CvxbdQaKarV3oOYBoQ8TxyLdnTUOXmBHZkGBPdu85pZC9ZybVUZg7cdBfn2H0IBGqi+sdlmHeE0yDwmdR; Expires=Thu, 04 Jul 2019 13:53:43 GMT; Path=/
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   628
Md5:    75d067c5692fdf2efc973e120d707b1c
Sha1:   fb7f61287012e8ae5ae4aec340a127b3bc763b49
Sha256: 7e340f80429e9baf516f7f72a3fff4c50e4628602c1d0305361d8e29f8efbafe
                                        
                                            GET /fg/s.css HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/fg/s/efa02e016a0aeb98e4e2c0f1413b332e?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&__t=1561643623210&__l=60&tds_id=p7273kri_r&tds_oid=c
Cookie: AWSALB=GGvDptU9MMQnPdBZ14nL7rntn3AG7/W5oJDISuTqH61CvxbdQaKarV3oOYBoQ8TxyLdnTUOXmBHZkGBPdu85pZC9ZybVUZg7cdBfn2H0IBGqi+sdlmHeE0yDwmdR; dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454

                                         
                                         52.58.186.110
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
Date: Thu, 27 Jun 2019 13:53:43 GMT
Content-Length: 862
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=c0GKgzPVOWdhAMRYmuKzCjQUwrIfz6c4UIrBnWxBom8dRZi1HCPp8O8fr8w8lB5dXaiyRFHztzrIV9SUVDZUu9UX89W4sWVYcj0OpY8hgA1oiM3VUOjwY9YFcfkJ; Expires=Thu, 04 Jul 2019 13:53:43 GMT; Path=/
Accept-Ranges: bytes
Cache-Control: public, max-age=6
Last-Modified: Thu, 27 Jun 2019 07:03:12 GMT
Etag: W/"35e-16b97becb80"


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   862
Md5:    865011bc412ce7335c873eebc8c4bf49
Sha1:   f03ea8b9846f22f84e9d23570c0b4aea38efce82
Sha256: d791b1704c9473852503de0e5265fecb9af9cb39e18020b17f7db25bfb5966cf
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         143.204.51.201
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166054
Date: Thu, 27 Jun 2019 13:53:43 GMT
Etag: "5d14b00d-1d7"
Expires: Sat, 29 Jun 2019 12:01:17 GMT
Last-Modified: Thu, 27 Jun 2019 12:01:17 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d7.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KwSDrk5gGpTMKgV1iF5FxoQcNmyY0rI3I0Ds82E3FMX0mXQF81nlHg==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    3141a4857abb320528f2ccbcdb11d662
Sha1:   74748fcb6744b00382d07f04d968e76095ab2494
Sha256: ff80c6c6f919b00982c1c106c974d4010261f3fd9b680eb4baf9cca50b90cb3b
                                        
                                            GET /fg/t?_=1561643623289 HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/fg/s/efa02e016a0aeb98e4e2c0f1413b332e?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&__t=1561643623210&__l=60&tds_id=p7273kri_r&tds_oid=c
Cookie: AWSALB=GGvDptU9MMQnPdBZ14nL7rntn3AG7/W5oJDISuTqH61CvxbdQaKarV3oOYBoQ8TxyLdnTUOXmBHZkGBPdu85pZC9ZybVUZg7cdBfn2H0IBGqi+sdlmHeE0yDwmdR; dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454

                                         
                                         52.58.186.110
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 27 Jun 2019 13:53:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=qVMLYW8scOMX+1RMH5H+2HQueBeth4v4hXcKiRWpoqWlTp8r+ZJbM1BGlrrAK6xc2sSRUccZ7ZXEXDUgcQHgxpz4mo2QqiihU3kGBlticmFzmmra+K2ckRZkzH7W; Expires=Thu, 04 Jul 2019 13:53:43 GMT; Path=/
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /fg/s.js HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/fg/s/efa02e016a0aeb98e4e2c0f1413b332e?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&__t=1561643623210&__l=60&tds_id=p7273kri_r&tds_oid=c
Cookie: AWSALB=GGvDptU9MMQnPdBZ14nL7rntn3AG7/W5oJDISuTqH61CvxbdQaKarV3oOYBoQ8TxyLdnTUOXmBHZkGBPdu85pZC9ZybVUZg7cdBfn2H0IBGqi+sdlmHeE0yDwmdR; dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454

                                         
                                         52.58.186.110
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Date: Thu, 27 Jun 2019 13:53:43 GMT
Content-Length: 552
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=PrVSPqWyF4z/d5kvpyAj/tbkmQ4tGiSMK0GV3Os1cR1hN4VLcw+PiZ+d0cmgW8Kqawf+VK5LCJaP4OY74w2A/s8Bh0awkrIXPzGcUvLnSDxw6ztaKiHPnd5xXAe2; Expires=Thu, 04 Jul 2019 13:53:43 GMT; Path=/
Accept-Ranges: bytes
Cache-Control: public, max-age=6
Last-Modified: Thu, 27 Jun 2019 07:03:12 GMT
Etag: W/"228-16b97becb80"


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   552
Md5:    8af5db7318b3a45301680a37fb3a36ca
Sha1:   191c1609d2d5983c7e00034c79938a7d685747ce
Sha256: f2b9c1b814dbf106791186cef987b00049ef400b3b962a4e2f54000827a64908

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /43fbb6270523e1760fa5f0d2579dea07/8871b6e5dd5347f70db643ace286f45b?tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454 HTTP/1.1 
Host: retargetcore.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/fg/s/efa02e016a0aeb98e4e2c0f1413b332e?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&__t=1561643623210&__l=60&tds_id=p7273kri_r&tds_oid=c

                                         
                                         52.28.5.249
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 27 Jun 2019 13:53:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=Vi/saJXM00QsY2KK2zWVmiXHC3Wdce5URLYnTR8oB5+uZhbdnX0V4q9ehWES0tMSDtTXHJ/ytDaq8aB56mnQEyXst9kC66/qXJvH1P4t3fo1rNfxgloQqUq/2/3n; Expires=Thu, 04 Jul 2019 13:53:43 GMT; Path=/ dci=aff111f92d1b9a2c784de7129416925a5fbfe0e7; Max-Age=31536000; Domain=.retargetcore.com; Path=/; Expires=Fri, 26 Jun 2020 13:53:43 GMT
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /fg/t2?_=1561643623289 HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/fg/s/efa02e016a0aeb98e4e2c0f1413b332e?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&__t=1561643623210&__l=60&tds_id=p7273kri_r&tds_oid=c
Cookie: AWSALB=PrVSPqWyF4z/d5kvpyAj/tbkmQ4tGiSMK0GV3Os1cR1hN4VLcw+PiZ+d0cmgW8Kqawf+VK5LCJaP4OY74w2A/s8Bh0awkrIXPzGcUvLnSDxw6ztaKiHPnd5xXAe2; dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454

                                         
                                         52.58.186.110
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 27 Jun 2019 13:53:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=W4RPcFwAtUKz5/+LWdevApmOKvKR0Pz5/VXECVKzwqZMcBz4eJxXb4slpzVZH7EwBDgr9H+5Lr7G14STAXCoGyOSxpN7f2yXuKmU6MvPDNNxguSIypZxUSN9/MIR; Expires=Thu, 04 Jul 2019 13:53:43 GMT; Path=/
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: AWSALB=W4RPcFwAtUKz5/+LWdevApmOKvKR0Pz5/VXECVKzwqZMcBz4eJxXb4slpzVZH7EwBDgr9H+5Lr7G14STAXCoGyOSxpN7f2yXuKmU6MvPDNNxguSIypZxUSN9/MIR; dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454

                                         
                                         52.58.186.110
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 27 Jun 2019 13:53:43 GMT
Content-Length: 9
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=AXmpBW6H7Wi9QoXWtnRH2Be+imG/SpadZ22C9Gdz5WfdOqDK8BcVGDLyopXQ7xcZ9KCuvwx/nqDAA3CZqT4uEMiO4vdchxSe4ruDhwCSTwCGoCBqW3vrAew7+I/9; Expires=Thu, 04 Jul 2019 13:53:43 GMT; Path=/
Etag: W/"9-R1yEhnOj95+nePAcK9WnIdTEFwc"
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   9
Md5:    9e076f5885f5cc16a4b5aeb8de4adff5
Sha1:   475c848673a3f79fa778f01c2bd5a721d4c41707
Sha256: e3ebaa16dd9d9b9fc107c42183fb6cf9d22927e1af03dbbdfa0ccc38e4e4ac31
                                        
                                            GET /fg/tds/cpa?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&tds_id=p7273kri_r&tds_oid=c&dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454&tds_host=igama.stream&tdsId=p7273kri_targeting_c&utm_content=%7Butm_content%7D&data2=%7Bdata2%7D&utm_sub=opnfnl&m=ps&p_tds_cid=&tds_reason=direct HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/fg/s/efa02e016a0aeb98e4e2c0f1413b332e?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&__t=1561643623210&__l=60&tds_id=p7273kri_r&tds_oid=c
Cookie: AWSALB=AXmpBW6H7Wi9QoXWtnRH2Be+imG/SpadZ22C9Gdz5WfdOqDK8BcVGDLyopXQ7xcZ9KCuvwx/nqDAA3CZqT4uEMiO4vdchxSe4ruDhwCSTwCGoCBqW3vrAew7+I/9; dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454

                                         
                                         52.58.186.110
HTTP/1.1 302 Found
                                        
Date: Thu, 27 Jun 2019 13:53:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=kcxvnTcjApX4DGvy6RzDX94GJ8Zc6r62EcO1r2yUctIRPLOoU2uYA+vrPE7KyZUmQQQHCgjDVUhYFIDAJGGPgSHF+54SIg09O//XWEzPHbVuKPO3yxTyoyYhfVCc; Expires=Thu, 04 Jul 2019 13:53:44 GMT; Path=/ dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454; Max-Age=31536000; Domain=.igama.stream; Path=/; Expires=Fri, 26 Jun 2020 13:53:44 GMT
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://igama.stream/jump?tds_campaign=p7273kri&tds_id=p7273kri_jump_c_555662757346&tds_oid=20884&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&tds_host=igama.stream&dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454&id=20884&utm_campaign=b83382e7&utm_source=int&_tgUrl=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%3D&tds_rt=&_boUrl=aHR0cHM6Ly9pZ2FtYS5zdHJlYW0vdGRzL2NwYS9iYWNrb2ZmZXJJbnRlcmxheWVyP3Rkc19ob3N0PWlnYW1hLnN0cmVhbSZkY2k9NWVkNjNiN2M5ZjBmZGYxM2IyYzE4ZGUyYjU2NzIwYTRjZjc0MTQ1NCZpZD0yMDg4NCZ1dG1fY2FtcGFpZ249YjgzMzgyZTcmdXRtX3NvdXJjZT1pbnQmdGRzSWQ9YjMxMDd6aHVfciZ1dG1fY29udGVudD0lN0J1dG1fY29udGVudCU3RCZkYXRhMj0lN0JkYXRhMiU3RCZ1dG1fc3ViPW9wbmZubCZtPXBzJnBfdGRzX2NpZD01YzFmNGZkZjE5YjE1OWYwNDM2MzUyYzYxYjdhZjBlM2Q4ODViZTE3JnRkc19yZWFzb249ZGlyZWN0JnRkc19ib19vcmlnaW49anVtcA%3D%3D


--- Additional Info ---
                                        
                                            GET /jump?tds_campaign=p7273kri&tds_id=p7273kri_jump_c_555662757346&tds_oid=20884&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&tds_host=igama.stream&dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454&id=20884&utm_campaign=b83382e7&utm_source=int&_tgUrl=aHR0cHM6Ly9pZ2FtYS5zdHJlYW0vdGRzL2NwYT9pZD0yMDg4NCZkY2k9NWVkNjNiN2M5ZjBmZGYxM2IyYzE4ZGUyYjU2NzIwYTRjZjc0MTQ1NCZ0ZHNfaG9zdD1pZ2FtYS5zdHJlYW0mdGRzSWQ9cDcyNzNrcmlfdGRzX3NpdGVfZ3JvdXBfY181NTU2NjI3NTczNDYmdGRzX2NhbXBhaWduPXA3Mjcza3JpJnV0bV9zb3VyY2U9aW50JnV0bV9jYW1wYWlnbj1iODMzODJlNyZ1dG1fY29udGVudD0lN0J1dG1fY29udGVudCU3RCZkYXRhMj0lN0JkYXRhMiU3RCZ1dG1fc3ViPW9wbmZubCZtPXBzJnRkc19jaWQ9NWMxZjRmZGYxOWIxNTlmMDQzNjM1MmM2MWI3YWYwZTNkODg1YmUxNyZwX3Rkc19jaWQ9JnRkc19yZWFzb249ZGlyZWN0JnRkc19zcGxpdD1jJnRkc19pZD1wNzI3M2tyaV9qdW1wX2NfNTU1NjYyNzU3MzQ2JnRkc19vaWQ9MjA4ODQ%3D&tds_rt=&_boUrl=aHR0cHM6Ly9pZ2FtYS5zdHJlYW0vdGRzL2NwYS9iYWNrb2ZmZXJJbnRlcmxheWVyP3Rkc19ob3N0PWlnYW1hLnN0cmVhbSZkY2k9NWVkNjNiN2M5ZjBmZGYxM2IyYzE4ZGUyYjU2NzIwYTRjZjc0MTQ1NCZpZD0yMDg4NCZ1dG1fY2FtcGFpZ249YjgzMzgyZTcmdXRtX3NvdXJjZT1pbnQmdGRzSWQ9YjMxMDd6aHVfciZ1dG1fY29udGVudD0lN0J1dG1fY29udGVudCU3RCZkYXRhMj0lN0JkYXRhMiU3RCZ1dG1fc3ViPW9wbmZubCZtPXBzJnBfdGRzX2NpZD01YzFmNGZkZjE5YjE1OWYwNDM2MzUyYzYxYjdhZjBlM2Q4ODViZTE3JnRkc19yZWFzb249ZGlyZWN0JnRkc19ib19vcmlnaW49anVtcA%3D%3D HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/fg/s/efa02e016a0aeb98e4e2c0f1413b332e?utm_campaign=b83382e7&utm_source=int&tds_campaign=p7273kri&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&__t=1561643623210&__l=60&tds_id=p7273kri_r&tds_oid=c
Cookie: AWSALB=kcxvnTcjApX4DGvy6RzDX94GJ8Zc6r62EcO1r2yUctIRPLOoU2uYA+vrPE7KyZUmQQQHCgjDVUhYFIDAJGGPgSHF+54SIg09O//XWEzPHbVuKPO3yxTyoyYhfVCc; dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454

                                         
                                         52.58.186.110
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 27 Jun 2019 13:53:45 GMT
Content-Length: 20240
Connection: keep-alive
Server: nginx


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   20240
Md5:    d4e9acb737edf0735b46ef76e3e6391d
Sha1:   1d61c4b50587d2d27c35afeb9c9e044e3bc1fbce
Sha256: 8ab8f0e209c716cab88dcb94faea80420716a8e412875d688be891d59f2df5af
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: igama.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: AWSALB=kcxvnTcjApX4DGvy6RzDX94GJ8Zc6r62EcO1r2yUctIRPLOoU2uYA+vrPE7KyZUmQQQHCgjDVUhYFIDAJGGPgSHF+54SIg09O//XWEzPHbVuKPO3yxTyoyYhfVCc; dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454

                                         
                                         52.58.186.110
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 27 Jun 2019 13:53:46 GMT
Content-Length: 9
Connection: keep-alive
Server: nginx
Set-Cookie: AWSALB=KTf0MYMYnc/kFtZwgYH2AviF/G35gGZfQk5GrXxhV8j4EWtdBKbVfpEmP5mD4uxJkKQRrMCKSxE8D+2iujcaImVDMKlOiC9rLY3I6DlLICux65gjxHd36RMAReB6; Expires=Thu, 04 Jul 2019 13:53:46 GMT; Path=/
Etag: W/"9-R1yEhnOj95+nePAcK9WnIdTEFwc"
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   9
Md5:    9e076f5885f5cc16a4b5aeb8de4adff5
Sha1:   475c848673a3f79fa778f01c2bd5a721d4c41707
Sha256: e3ebaa16dd9d9b9fc107c42183fb6cf9d22927e1af03dbbdfa0ccc38e4e4ac31
                                        
                                            GET /landings/20884/images/pic.gif HTTP/1.1 
Host: www.cdnreference.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/jump?tds_campaign=p7273kri&tds_id=p7273kri_jump_c_555662757346&tds_oid=20884&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&tds_host=igama.stream&dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454&id=20884&utm_campaign=b83382e7&utm_source=int&_tgUrl=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%3D&tds_rt=&_boUrl=aHR0cHM6Ly9pZ2FtYS5zdHJlYW0vdGRzL2NwYS9iYWNrb2ZmZXJJbnRlcmxheWVyP3Rkc19ob3N0PWlnYW1hLnN0cmVhbSZkY2k9NWVkNjNiN2M5ZjBmZGYxM2IyYzE4ZGUyYjU2NzIwYTRjZjc0MTQ1NCZpZD0yMDg4NCZ1dG1fY2FtcGFpZ249YjgzMzgyZTcmdXRtX3NvdXJjZT1pbnQmdGRzSWQ9YjMxMDd6aHVfciZ1dG1fY29udGVudD0lN0J1dG1fY29udGVudCU3RCZkYXRhMj0lN0JkYXRhMiU3RCZ1dG1fc3ViPW9wbmZubCZtPXBzJnBfdGRzX2NpZD01YzFmNGZkZjE5YjE1OWYwNDM2MzUyYzYxYjdhZjBlM2Q4ODViZTE3JnRkc19yZWFzb249ZGlyZWN0JnRkc19ib19vcmlnaW49anVtcA%3D%3D

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /landings/20884/css/9fe2991b395ab2d7e484705ef98c0edf.css?1496057779 HTTP/1.1 
Host: www.cdnreference.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/jump?tds_campaign=p7273kri&tds_id=p7273kri_jump_c_555662757346&tds_oid=20884&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&tds_host=igama.stream&dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454&id=20884&utm_campaign=b83382e7&utm_source=int&_tgUrl=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%3D&tds_rt=&_boUrl=aHR0cHM6Ly9pZ2FtYS5zdHJlYW0vdGRzL2NwYS9iYWNrb2ZmZXJJbnRlcmxheWVyP3Rkc19ob3N0PWlnYW1hLnN0cmVhbSZkY2k9NWVkNjNiN2M5ZjBmZGYxM2IyYzE4ZGUyYjU2NzIwYTRjZjc0MTQ1NCZpZD0yMDg4NCZ1dG1fY2FtcGFpZ249YjgzMzgyZTcmdXRtX3NvdXJjZT1pbnQmdGRzSWQ9YjMxMDd6aHVfciZ1dG1fY29udGVudD0lN0J1dG1fY29udGVudCU3RCZkYXRhMj0lN0JkYXRhMiU3RCZ1dG1fc3ViPW9wbmZubCZtPXBzJnBfdGRzX2NpZD01YzFmNGZkZjE5YjE1OWYwNDM2MzUyYzYxYjdhZjBlM2Q4ODViZTE3JnRkc19yZWFzb249ZGlyZWN0JnRkc19ib19vcmlnaW49anVtcA%3D%3D

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /css/webPushMotivationPopupSmall.css?v=2 HTTP/1.1 
Host: www.cdnreference.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/jump?tds_campaign=p7273kri&tds_id=p7273kri_jump_c_555662757346&tds_oid=20884&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&tds_host=igama.stream&dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454&id=20884&utm_campaign=b83382e7&utm_source=int&_tgUrl=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%3D&tds_rt=&_boUrl=aHR0cHM6Ly9pZ2FtYS5zdHJlYW0vdGRzL2NwYS9iYWNrb2ZmZXJJbnRlcmxheWVyP3Rkc19ob3N0PWlnYW1hLnN0cmVhbSZkY2k9NWVkNjNiN2M5ZjBmZGYxM2IyYzE4ZGUyYjU2NzIwYTRjZjc0MTQ1NCZpZD0yMDg4NCZ1dG1fY2FtcGFpZ249YjgzMzgyZTcmdXRtX3NvdXJjZT1pbnQmdGRzSWQ9YjMxMDd6aHVfciZ1dG1fY29udGVudD0lN0J1dG1fY29udGVudCU3RCZkYXRhMj0lN0JkYXRhMiU3RCZ1dG1fc3ViPW9wbmZubCZtPXBzJnBfdGRzX2NpZD01YzFmNGZkZjE5YjE1OWYwNDM2MzUyYzYxYjdhZjBlM2Q4ODViZTE3JnRkc19yZWFzb249ZGlyZWN0JnRkc19ib19vcmlnaW49anVtcA%3D%3D

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /landings/20884/js/57509185267c63005049ba612b917792.js?1496057779 HTTP/1.1 
Host: www.cdnreference.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://igama.stream/jump?tds_campaign=p7273kri&tds_id=p7273kri_jump_c_555662757346&tds_oid=20884&tds_cid=5c1f4fdf19b159f0436352c61b7af0e3d885be17&tds_host=igama.stream&dci=5ed63b7c9f0fdf13b2c18de2b56720a4cf741454&id=20884&utm_campaign=b83382e7&utm_source=int&_tgUrl=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%3D&tds_rt=&_boUrl=aHR0cHM6Ly9pZ2FtYS5zdHJlYW0vdGRzL2NwYS9iYWNrb2ZmZXJJbnRlcmxheWVyP3Rkc19ob3N0PWlnYW1hLnN0cmVhbSZkY2k9NWVkNjNiN2M5ZjBmZGYxM2IyYzE4ZGUyYjU2NzIwYTRjZjc0MTQ1NCZpZD0yMDg4NCZ1dG1fY2FtcGFpZ249YjgzMzgyZTcmdXRtX3NvdXJjZT1pbnQmdGRzSWQ9YjMxMDd6aHVfciZ1dG1fY29udGVudD0lN0J1dG1fY29udGVudCU3RCZkYXRhMj0lN0JkYXRhMiU3RCZ1dG1fc3ViPW9wbmZubCZtPXBzJnBfdGRzX2NpZD01YzFmNGZkZjE5YjE1OWYwNDM2MzUyYzYxYjdhZjBlM2Q4ODViZTE3JnRkc19yZWFzb249ZGlyZWN0JnRkc19ib19vcmlnaW49anVtcA%3D%3D

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /images/jump-favicon.ico HTTP/1.1 
Host: www.cdnreference.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---