Overview

URL https://bit.ly/2O8ZSNx
IP67.199.248.11
ASNAS3257 Tinet SpA
Location United States
Report completed2019-03-24 20:59:02 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 67.199.248.11

Date UQ / IDS / BL URL IP
2019-04-19 18:10:17 +0200
0 - 0 - 0 https://bit.ly/2WKKPMX 67.199.248.11
2019-04-19 17:58:03 +0200
0 - 0 - 0 https://bit.ly/2Iv4JIA 67.199.248.11
2019-04-19 15:50:07 +0200
0 - 0 - 1 bit.ly/2IG0eKz 67.199.248.11
2019-04-19 13:30:12 +0200
0 - 0 - 0 bit.ly/2Uto8vh 67.199.248.11
2019-04-19 00:06:17 +0200
8 - 0 - 0 https://bit.ly/2GukrSf 67.199.248.11
2019-04-18 20:20:44 +0200
0 - 0 - 0 bit.ly/2DlJtki 67.199.248.11
2019-04-18 17:37:30 +0200
0 - 0 - 1 https://bit.ly/2Z9jYMu 67.199.248.11
2019-04-18 17:34:38 +0200
0 - 0 - 1 https://bit.ly/2DfZGrk 67.199.248.11
2019-04-18 16:54:41 +0200
0 - 0 - 0 bit.ly/2B6Mfte 67.199.248.11
2019-04-18 16:43:38 +0200
0 - 0 - 0 https://bit.ly/2X4XsT5 67.199.248.11

Last 10 reports on ASN: AS3257 Tinet SpA

Date UQ / IDS / BL URL IP
2019-04-19 18:10:17 +0200
0 - 0 - 0 https://bit.ly/2WKKPMX 67.199.248.11
2019-04-19 17:58:03 +0200
0 - 0 - 0 https://bit.ly/2Iv4JIA 67.199.248.11
2019-04-19 15:50:07 +0200
0 - 0 - 1 bit.ly/2IG0eKz 67.199.248.11
2019-04-19 14:47:33 +0200
0 - 0 - 0 https://videoevents.outbrain.com 64.202.112.51
2019-04-19 14:11:49 +0200
0 - 0 - 0 https://forexpros.com 185.94.84.100
2019-04-19 13:30:12 +0200
0 - 0 - 0 bit.ly/2Uto8vh 67.199.248.11
2019-04-19 13:30:06 +0200
0 - 0 - 0 https://www.sportscheck.com/INTERSHOP/static/ (...) 23.14.8.21
2019-04-19 01:25:06 +0200
8 - 0 - 0 https://bit.ly/2Gwp4eG 67.199.248.10
2019-04-19 00:09:40 +0200
0 - 0 - 1 https://fs06n3.sendspace.com/dlpro/549b57852a (...) 69.31.136.29
2019-04-19 00:08:37 +0200
0 - 0 - 1 fs04n4.sendspace.com/dlpro/284e372f2cb1609938 (...) 69.31.136.21

Last 10 reports on domain: bit.ly

Date UQ / IDS / BL URL IP
2019-04-19 18:10:17 +0200
0 - 0 - 0 https://bit.ly/2WKKPMX 67.199.248.11
2019-04-19 17:58:03 +0200
0 - 0 - 0 https://bit.ly/2Iv4JIA 67.199.248.11
2019-04-19 15:50:07 +0200
0 - 0 - 1 bit.ly/2IG0eKz 67.199.248.11
2019-04-19 13:30:12 +0200
0 - 0 - 0 bit.ly/2Uto8vh 67.199.248.11
2019-04-19 01:25:06 +0200
8 - 0 - 0 https://bit.ly/2Gwp4eG 67.199.248.10
2019-04-19 00:06:17 +0200
8 - 0 - 0 https://bit.ly/2GukrSf 67.199.248.11
2019-04-18 20:32:45 +0200
8 - 0 - 0 https://bit.ly/2UJ2dVN 67.199.248.10
2019-04-18 20:22:04 +0200
0 - 0 - 0 https://bit.ly/2UklJmx 67.199.248.10
2019-04-18 20:20:44 +0200
0 - 0 - 0 bit.ly/2DlJtki 67.199.248.11
2019-04-18 17:37:30 +0200
0 - 0 - 1 https://bit.ly/2Z9jYMu 67.199.248.11


JavaScript

Executed Scripts (7)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (41)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=120380
Date: Sun, 24 Mar 2019 19:58:29 GMT
Etag: "5c96e4ae-1d7"
Expires: Tue, 26 Mar 2019 05:24:49 GMT
Last-Modified: Sun, 24 Mar 2019 02:00:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    10c1c16489cf0f5c03c9295dd8237bc8
Sha1:   69bd0d7f2269c5a0af7b70a676468f8747f56b35
Sha256: 2f967be24128a62886118eeafb486fa56429ed0063eda972744e0f06761daef7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=106482
Date: Sun, 24 Mar 2019 19:58:29 GMT
Etag: "5c96cf9c-1d7"
Expires: Tue, 26 Mar 2019 01:33:11 GMT
Last-Modified: Sun, 24 Mar 2019 00:30:20 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    86513185e1ecc4be0b91b75e1d785da0
Sha1:   8a6c5003ce73420f0aee0efeffadbe8c7236e75b
Sha256: 291a1620f849904b02a7f6a89b32c372b005a9f7472e1ed8c4b08b4584935ae6
                                        
                                            GET /2O8ZSNx HTTP/1.1 
Host: bit.ly
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         67.199.248.11
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Sun, 24 Mar 2019 19:58:30 GMT
Content-Length: 254
Connection: keep-alive
Cache-Control: private, max-age=90
Content-Security-Policy: referrer always;
Location: https://www.blackwidow700.com/tracking/5c11186b8a26b003835a9e11?src=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&k=5c62c3a3b60cd24915baf4a5
Referrer-Policy: unsafe-url
Set-Cookie: _bit=j2ojWu-02cf00ad49b237acf0-00v; Domain=bit.ly; Expires=Fri, 20 Sep 2019 19:58:30 GMT


--- Additional Info ---
Magic:  HTML document text
Size:   254
Md5:    85a92764f122f4263a4220938de7db9c
Sha1:   0c73cffb3b33ac2e4c90a47ad0ff9672c4bb8ced
Sha256: 5a6f2316558690c625b46df642ddc4bd1b1883fe5a253a481bc06b725c3335dc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=124299
Date: Sun, 24 Mar 2019 19:58:30 GMT
Etag: "5c9723f1-118"
Expires: Tue, 26 Mar 2019 06:30:09 GMT
Last-Modified: Sun, 24 Mar 2019 06:30:09 GMT
Server: nginx
Content-Length: 280


--- Additional Info ---
Magic:  data
Size:   280
Md5:    26d662b995a32bb29c9f6bba930737ff
Sha1:   36a5ef83ec8908bdb34a0be02d3145ccf672d966
Sha256: 567b94d8035e744d896c3f943d52e0a693d40c500bdd38f0325aa9d359ee9120
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=134285
Date: Sun, 24 Mar 2019 19:58:30 GMT
Etag: "5c971d0a-1d7"
Expires: Tue, 26 Mar 2019 09:16:35 GMT
Last-Modified: Sun, 24 Mar 2019 06:00:42 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c1024dddaedf3f8ad00eec17c066f8b9
Sha1:   ba6fe4c24af505ff6b49a576d5ab9f302cb824bf
Sha256: fe6cc2dc1dccd6485c2f0b72bda1f5010f0eb9a82b2548883a333425f9e64c41
                                        
                                            GET /tracking/5c11186b8a26b003835a9e11?src=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&k=5c62c3a3b60cd24915baf4a5 HTTP/1.1 
Host: www.blackwidow700.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.27.175.205
HTTP/1.1 302 Found
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dede87e6f4bbedd20ed96e75f8d7aab381553457510; expires=Mon, 23-Mar-20 19:58:30 GMT; path=/; domain=.blackwidow700.com; HttpOnly c2lub3M=5c97e16650480505e0e715b8; Max-Age=595999; Path=/; Expires=Sun, 31 Mar 2019 17:31:49 GMT connect.sid=s%3ANKXZO2yM3NiFzTseVhQRBlkfo85XDl46.rLrQ%2BgrTyaqLXpsFjwdvxd2s%2B9vfhaLa%2FILOKum6qSg; Path=/; HttpOnly
X-Powered-By: Express
Access-Control-Allow-Origin: *
Location: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=[[external_uid]]
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb3861ce6a871b-ARN


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=91917
Date: Sun, 24 Mar 2019 19:58:31 GMT
Etag: "5c96a574-116"
Expires: Mon, 25 Mar 2019 21:30:28 GMT
Last-Modified: Sat, 23 Mar 2019 21:30:28 GMT
Server: nginx
Content-Length: 278


--- Additional Info ---
Magic:  data
Size:   278
Md5:    7538e88e373b8fe01e3e5acfb53aa11e
Sha1:   e06e9d2db11d376c2efb2ac83ac50cefd53cf939
Sha256: 2a2be85facd083145b161237bcdc7a1b8effcc38b40b0882cb7204660b97daff
                                        
                                            GET /survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; expires=Mon, 23-Mar-20 19:58:31 GMT; path=/; domain=.kavalager.com; HttpOnly laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9; expires=Sun, 31-Mar-2019 17:37:31 GMT; Max-Age=596340; path=/; httponly
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.40
Cache-Control: no-cache
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb3864ee32cafe-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13029
Md5:    9887717675e03ae15db49e6f755de372
Sha1:   4076d1ba745644b77a3371af4a7752bb6e52d6c2
Sha256: f8f28ca162860f64d1a7a8a2bb258f8d3562a06507a83e5e71076057c3ce9493
                                        
                                            GET /css/backend.css HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2016 13:21:51 GMT
Vary: Accept-Encoding
Etag: W/"5807736f-8ab"
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:58:31 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb3866ee18cafe-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   729
Md5:    8c1b273a6ee35c24246462521c838559
Sha1:   76dd747cd75384bec7a8dddf98b0c58bc077d58e
Sha256: 388e547c84e6bbf1df6cead4f24f0cb181351bb908ed4b96ddcd5d1840ee5118
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    67e3bef5d4f780e56ac08ac8f58b6642
Sha1:   37bfa78dd0d5312c3f3e596e61078da7ff232eac
Sha256: 88e6dde62ae0e3e76335973850f0617fa761ce2421fa351b7a7f8e935818de52
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /js/jquery.js HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2016 13:11:54 GMT
Vary: Accept-Encoding
Etag: W/"5807711a-456ea"
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:58:31 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb38674fbecafe-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   103527
Md5:    0e7bd02eefee73184bbc5982deac5e1b
Sha1:   209862bc4d3e014f0a6a0df529df4d2ff3e1ad15
Sha256: c739e339d489f46c4e58ac4c52b5c546597b0deafaad952267ff94d55ebce9a1
                                        
                                            GET /css/bootstrap.css HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2016 13:22:02 GMT
Vary: Accept-Encoding
Etag: W/"5807737a-23fe6"
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:58:31 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb38673e70cae6-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   28494
Md5:    0781cd625b065fa25e39ab77462188d0
Sha1:   17e899b920f5751d02ceb6798a0ad4fb096e7fda
Sha256: b2a385318865ccef4408af48ad83f127f93821aed64eeaa90bf0a02fd9f5741d
                                        
                                            GET /css/blue_notys3.css HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 15 Nov 2017 11:25:47 GMT
Vary: Accept-Encoding
Etag: W/"5a0c243b-2381"
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:58:31 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb38683b93cafe-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2570
Md5:    20b5c4333db6f61c176eb33573587e10
Sha1:   12a846853fffa4207caeeb4959632ceb1e7726a6
Sha256: 9f7f528a414da6d184714945df374ba48b47b6c68defd5d0b19826e30532dd88
                                        
                                            GET /custom_js/currency_cnd2.js HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2017 09:41:42 GMT
Vary: Accept-Encoding
Etag: W/"58d39856-5f4"
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:58:31 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb38672f27cafe-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   521
Md5:    372d20ee24488d67bf384358006dee95
Sha1:   cd38c2d6656da72cfbcb6373367d5c121b24b4ad
Sha256: 19bfcae3fb06357a3d73f817aef12ea69d06600b0c659f7e880183de930b6b5a
                                        
                                            GET /js/plugins/jqueryCookie/jquery.cookie.js HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2016 13:14:52 GMT
Vary: Accept-Encoding
Etag: W/"580771cc-c31"
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:58:31 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb38676e0acad2-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1448
Md5:    956c5bcd3fdc2b9a3c2f1e55c8de9cfc
Sha1:   73a1755c8015e8140fd462ff2e45e73e2f24cdaa
Sha256: e4c1cd8a7236a0cce2caf80795dc54ec66881996f376453a5e70524867aa1679
                                        
                                            GET /css/tpl_css/simple_green4.css HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 13 Mar 2018 09:55:45 GMT
Vary: Accept-Encoding
Etag: W/"5aa7a021-1e64"
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:58:31 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb38676bcfcafa-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2366
Md5:    b798854fa65b305ea926b4e2ef62bda7
Sha1:   bdc5e1bf84ae8f2de13727c27107b9586ffb5538
Sha256: d7ed43a1a7eb065189f87d179e9975a0ce6515e78b19577d7c6cec242a715b25
                                        
                                            GET /uploads/20170228143819_1465994766tick.png HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Content-Length: 1291
Connection: keep-alive
Last-Modified: Tue, 28 Feb 2017 13:38:19 GMT
Etag: "58b57d4b-50b"
Expires: Wed, 21 Mar 2029 19:58:31 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb38688c9dcafe-ARN


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGBA, non-interlaced
Size:   1291
Md5:    a480938b7a3e0023f8341a20d15b690f
Sha1:   bccac60c2356b2cbeea4f2cb1eb7926e2a02789d
Sha256: 73e3a479b6081d46ad191430c71d9f486acf3a2ceb15bf8695be0fcd8b869e0d
                                        
                                            GET /uploads/products/201901311056_cloned_201901310903_cloned_201901310901_cloned_201901310900_cloned_201901310859_cloned_20190131085512_fr2444355341487654prod3.jpg HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Content-Length: 35329
Connection: keep-alive
Last-Modified: Thu, 31 Jan 2019 09:56:37 GMT
Etag: "5c52c655-8a01"
Expires: Wed, 21 Mar 2029 19:58:31 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb3868ad30cafe-ARN


--- Additional Info ---
Magic:  JPEG image data
Size:   35329
Md5:    3ea37afa07973a165ae16053ae2073a0
Sha1:   e71f5d4caf3b506aee433270de9e0a16525d3cfb
Sha256: f9bfb2a8b28f2e3abeded9e196e4a1808e9a5b88f489467c2be413763bca8629
                                        
                                            GET /uploads/products/201901311056_cloned_201901310903_cloned_201901310902_cloned_201901310900_cloned_201901310859_cloned_20190131085725_fr2444355341487654prod1.jpg HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Content-Length: 30060
Connection: keep-alive
Last-Modified: Thu, 31 Jan 2019 09:56:57 GMT
Etag: "5c52c669-756c"
Expires: Wed, 21 Mar 2029 19:58:31 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb38688cc5cafe-ARN


--- Additional Info ---
Magic:  JPEG image data
Size:   30060
Md5:    8da783f2ed8f41db7d1832c937796587
Sha1:   155d378d861ac8cfb90703796df0b98064800782
Sha256: 84a17c7f58c0388928ce612e5d332d85a148dea299a8c436450bc57892e46a69
                                        
                                            GET /js/bootstrap.js HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2016 13:11:56 GMT
Vary: Accept-Encoding
Etag: W/"5807711c-10d1a"
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Sun, 24 Mar 2019 23:58:31 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb38688d42caf2-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   18167
Md5:    f4c7c5faafab776a5e4823ec7deec95e
Sha1:   20f32e032ccddbdb547b2f796736872f58c4965d
Sha256: 45d4805f57057539d4707a1d344d620ca34d3c0c62fa0dc840590bc8b8d87fd3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=109671
Date: Sun, 24 Mar 2019 19:58:31 GMT
Etag: "5c96a7bb-1d7"
Expires: Tue, 26 Mar 2019 02:26:22 GMT
Last-Modified: Sat, 23 Mar 2019 21:40:11 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    589ee20f3ca007c4eba3bc39fe5f4c3d
Sha1:   627cda51c16ce138c65b5ceacce8479fcc00df05
Sha256: 41f85d1919d4bb7e658a99d0c6d1c01410a0d0c93b00b18b2bcf0b91e007a99a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=129989
Date: Sun, 24 Mar 2019 19:58:31 GMT
Etag: "5c972b06-1d7"
Expires: Tue, 26 Mar 2019 08:05:00 GMT
Last-Modified: Sun, 24 Mar 2019 07:00:22 GMT
Server: ECS (ams/4993)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    3b625673858dbe88d7f05b1de9759fe8
Sha1:   d94e30ef4dd3884d1ec8854a7c4424d086cc4cc0
Sha256: e819f063a327f57547c5c447e59ae41b24e474023be3d3f4094c4acd74d8f02b
                                        
                                            GET /uploads/products/201901311057_cloned_201901310903_cloned_201901310902_cloned_201901310901_cloned_201901310859_cloned_20190131085810_fr2444355341487654prod2.jpg HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Content-Length: 27953
Connection: keep-alive
Last-Modified: Thu, 31 Jan 2019 09:57:26 GMT
Etag: "5c52c686-6d31"
Expires: Wed, 21 Mar 2029 19:58:31 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb38689a8ccad2-ARN


--- Additional Info ---
Magic:  JPEG image data
Size:   27953
Md5:    82d47db38a9aacee0405c06ec96c823e
Sha1:   7b8e9bbc1f15a4b6ccdac6b5f86079836fbf17a4
Sha256: 0f15c3c2d80deee331ae32f5f0405c96ffba5b1b59bbc1c448f2ea3f45bcce04
                                        
                                            GET /css?family=Open+Sans:400,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/css/blue_notys3.css

                                         
                                         172.217.22.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 24 Mar 2019 19:58:31 GMT
Date: Sun, 24 Mar 2019 19:58:31 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   253
Md5:    a87063fb8af2db922194022a401c37b2
Sha1:   cfbc663c284ea018130a54c59826685a35d42d37
Sha256: e505e4f4de641628b1a2fd6786187312d707851012a5b4d844ad009b080da3b0
                                        
                                            GET /uploads/products/201902061234_cloned_20190206123035_4144355341487654prod4.jpg HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Content-Length: 24487
Connection: keep-alive
Last-Modified: Wed, 06 Feb 2019 11:34:08 GMT
Etag: "5c5ac630-5fa7"
Expires: Wed, 21 Mar 2029 19:58:31 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb3869f80fcafa-ARN


--- Additional Info ---
Magic:  JPEG image data
Size:   24487
Md5:    b899d54d6f67c39e9c8affe941809d4e
Sha1:   cb659801c2f4cc1cc79345489727a959ee0fb186
Sha256: 27ad81f509db5d25aa9cb8785d2a5d1de8a34cd44c243f3de8f2a87c5cec7910
                                        
                                            GET /css?family=Lato:700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/css/backend.css

                                         
                                         172.217.22.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 24 Mar 2019 19:58:32 GMT
Date: Sun, 24 Mar 2019 19:58:32 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   187
Md5:    574d827d80fc41e9bf31d7278f8f690e
Sha1:   2c601cabf9d4051ffc58e63d7606914188691821
Sha256: 327d949217a0195c465313772f9b6f38bfe516b3f0b26f6496bf42ff813a6b61
                                        
                                            GET /css?family=Roboto:300,400,500,700,900 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D

                                         
                                         172.217.22.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 24 Mar 2019 19:58:31 GMT
Date: Sun, 24 Mar 2019 19:58:31 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   280
Md5:    576853317399cd594545f8891ad45db6
Sha1:   def2991394e385da9b5398dc447a44e07c854aaf
Sha256: 56db8e7d583b73aef15ccf5ab96962362ec960c4ca8500ea93ec75f905edb8bd
                                        
                                            GET /uploads/20181208103618_CALLCE10.png HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 24 Mar 2019 19:58:31 GMT
Content-Length: 106863
Connection: keep-alive
Last-Modified: Sat, 08 Dec 2018 09:36:18 GMT
Etag: "5c0b9092-1a16f"
Expires: Wed, 21 Mar 2029 19:58:31 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb38687b35cae6-ARN


--- Additional Info ---
Magic:  PNG image, 263 x 250, 8-bit/color RGBA, non-interlaced
Size:   106863
Md5:    796d54b0ad8ef1168a9e938ff7695793
Sha1:   e09f50ff6d0569b370633c77a7eeb50c95d878bd
Sha256: 1f00efea0e1f887412a1989e4bf6630b09edaf52926915e5f3082f26398ab901
                                        
                                            GET /igamingcloudstr/images/fr_4prods_0602.jpg HTTP/1.1 
Host: s3-eu-central-1.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D

                                         
                                         52.219.72.0
HTTP/1.1 200 OK
Content-Type: image/jpg
                                        
x-amz-id-2: mK2FPV6BuTwftljjVEuRM0v4CvJ6wEgLbvJX4z18FmFbVYAmvJv0UduhKexXFYlVLJTwJGExH6M=
x-amz-request-id: DF654085EF8A706C
Date: Sun, 24 Mar 2019 19:58:32 GMT
Last-Modified: Wed, 06 Feb 2019 11:43:25 GMT
Etag: "4cf72ea0c3c2d0f69a1b7ccb320fc285"
Accept-Ranges: bytes
Content-Length: 75731
Server: AmazonS3


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   75731
Md5:    4cf72ea0c3c2d0f69a1b7ccb320fc285
Sha1:   050d6885a190b34ccd4aa37725cad3b6aa0d1ecc
Sha256: d31a0e7740d52b1507d0b2f4a06d4a9d647b4f98ebe4f03c4b51fc685c254042
                                        
                                            GET /igamingcloudstr/images/yellowstar59x56.png HTTP/1.1 
Host: s3-eu-central-1.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D

                                         
                                         52.219.72.0
HTTP/1.1 200 OK
Content-Type: image/jpg
                                        
x-amz-id-2: H5mSdeK7zFBZuFSgOzVxvY0pNwuHVlz4C8MEg6txdN7p/lOjn4Uu0GcXSP+wHAWGuy5s96Qyb+Y=
x-amz-request-id: 470B959B4F094316
Date: Sun, 24 Mar 2019 19:58:32 GMT
Last-Modified: Mon, 21 Jan 2019 10:17:45 GMT
Etag: "4cb6ca8dc0f2df493a9db689da5f398b"
Accept-Ranges: bytes
Content-Length: 15791
Server: AmazonS3


--- Additional Info ---
Magic:  PNG image, 59 x 56, 8-bit/color RGBA, non-interlaced
Size:   15791
Md5:    4cb6ca8dc0f2df493a9db689da5f398b
Sha1:   18fea2ed22cc0fbc25fdcbedeb7f7128abc187a5
Sha256: a1258a576fcf1e69385d59b5ebebfb5003a93226b9fc23e8eb20463bbc1fe5ed
                                        
                                            GET /igamingcloudstr/images/logo-fnac.png HTTP/1.1 
Host: s3-eu-central-1.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D

                                         
                                         52.219.72.0
HTTP/1.1 200 OK
Content-Type: image/jpg
                                        
x-amz-id-2: ZN+WZ0sBZcufkrxiCPZbpH6RmLThVfraivBuR8I0OSkvg72bYY/SsCtM/B9pJJS/0UqdS7Y44As=
x-amz-request-id: E74198C9A1AC72BA
Date: Sun, 24 Mar 2019 19:58:33 GMT
Last-Modified: Wed, 12 Dec 2018 12:27:02 GMT
Etag: "66e32c96d21a03421c0bb4fa3faebb55"
Accept-Ranges: bytes
Content-Length: 20637
Server: AmazonS3


--- Additional Info ---
Magic:  PNG image, 546 x 179, 8-bit/color RGBA, non-interlaced
Size:   20637
Md5:    66e32c96d21a03421c0bb4fa3faebb55
Sha1:   92e4bb8d661acb46455aa6801dac58695fb4d692
Sha256: aa43344ac6b7195a9d0b77e21f665f901c84011d1943262def3ae2760e13704c
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 24 Mar 2019 19:58:32 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    36aebfc18f34f3a270747ab40ccdf48c
Sha1:   fc4d4a22d2df420c2301064ab5d096aff51369e5
Sha256: a1152375da78dd51826c7c4359c75f430be5b08c8ee205d65b674852a9266666
                                        
                                            GET /igamingcloudstr/images/63242436524y653442tag247secure.png HTTP/1.1 
Host: s3-eu-central-1.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D

                                         
                                         52.219.72.0
HTTP/1.1 200 OK
Content-Type: image/jpg
                                        
x-amz-id-2: 6GEWx/8tGO2MAwsD4gDRbePCTtqFYO6BQDT3Eu8gQ/DNmNLyUBEpzIHxiz8aB8CoyJHdFaHWDkk=
x-amz-request-id: A68C8D33820D7982
Date: Sun, 24 Mar 2019 19:58:33 GMT
Last-Modified: Tue, 15 Jan 2019 12:47:07 GMT
Etag: "4d2130317967f46766323f5fbe7540b7"
Accept-Ranges: bytes
Content-Length: 29701
Server: AmazonS3


--- Additional Info ---
Magic:  PNG image, 1000 x 170, 8-bit/color RGBA, non-interlaced
Size:   29701
Md5:    4d2130317967f46766323f5fbe7540b7
Sha1:   c584dac3c9cc7075569802f62ce9ad11c4a97605
Sha256: ffd925da8ad5c89a4fc9b3f73618c34c52a17ada8a57bb37c645f0ecb4bb0cf9
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400,500,700,900
Origin: https://www.kavalager.com

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19888
Date: Fri, 08 Mar 2019 03:11:19 GMT
Expires: Sat, 07 Mar 2020 03:11:19 GMT
Last-Modified: Mon, 16 Oct 2017 17:33:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1442833
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   19888
Md5:    cf6613d1adf490972c557a8e318e0868
Sha1:   b2198c3fc1c72646d372f63e135e70ba2c9fed8e
Sha256: 468e579fe1210fa55525b1c470ed2d1958404512a2dd4fb972cac5ce0ff00b1f
                                        
                                            POST /survey/survey HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D
Content-Length: 286
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im9aa0h1UTN1OU9meklEbjc4d0VsR1E9PSIsInZhbHVlIjoidFwvWmp4eDJYbEUzaEV6RjFyeXZyZFBGTFdcLzZnaEpnd0hZWEpVd1ptODNGN1h2WHdtU0Y5TnpzTGlId1dtNTJVeXZWVmlrcXh2bkw2MTRiSE5LVngwZz09IiwibWFjIjoiYmI2ZDVmMWU0MWY4ZTE3ZjQ1YWU1NmRjOTkwNmJiZjBmZDYzYTkxODM5NTQ3NWMwNzA4MDllNzBkMGU5MTVlYyJ9; b2ZmZXJXYWxs=%7B%22campaign%22%3A%2213023%22%2C%22survey%22%3A%2214983%22%2C%22source%22%3A%225c2dfb7c317364185b072b67%22%2C%22subid%22%3A%22subid%3D5c2dfb7c317364185b072b67%26s1%3D1603%26s2%3D%26s3%3D%26s4%3D%26s5%3D%26parent%3D5c62c3a3b60cd24915baf4a5%26creative%3D%26firstname%3D%26lastname%3D%26city%3D%26zipcode%3D%26mobile%3D%26extuid%3D%5B%5Bexternal_uid%5D%5D%22%2C%22firstSession%22%3A%22BlcCMAGlaYCU0gAdAEsEq5sWUTQp5WXbTxWkWZlT_13023%22%7D; survey_id_14983=true
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 19:58:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.40
Access-Control-Allow-Origin: https://www.kavalager.com
Cache-Control: no-cache
Set-Cookie: laravel_session=eyJpdiI6Im1vODErK29lYjRXUTBuU1cyZVwvV1wvZz09IiwidmFsdWUiOiJZSjd1anhuSWNmeThwd09hQ2MzREltYjl6eEFXaWlzWTJmM1wvek1sR1hBbzVjV2pEd013dUlvSEhDakR1NzdmWHB4MWZNV3kxbXhhZkMzYmNVcHhuUEE9PSIsIm1hYyI6IjQ5NjhmNjVlYmMwMTA1OWQwODJhNjhhM2YwYTFmMDhmM2UyNTU0MzM1MmY0ZGUzYjc5OGI3MjU0ZTNlOThhOWMifQ%3D%3D; expires=Sun, 31-Mar-2019 17:37:32 GMT; Max-Age=596340; path=/; httponly
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4bcb386dfb77cafe-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   278
Md5:    c570088fb6c2e49de1a049d58ecbf1cf
Sha1:   9044ece6add4389daa20c5346aae329215fd082a
Sha256: 87a8aa504bb0fa510a3e8e991fc753c9f8d08b152921ad3b9d409cc3d0c1e86e
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400,500,700,900
Origin: https://www.kavalager.com

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19916
Date: Fri, 08 Mar 2019 02:32:25 GMT
Expires: Sat, 07 Mar 2020 02:32:25 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1445167
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   19916
Md5:    a1471d1d6431c893582a5f6a250db3f9
Sha1:   ff5673d89e6c2893d24c87bc9786c632290e150e
Sha256: 3ab30e780c8b0bcc4998b838a5b30c3bfe28edead312906dc3c12271fae0699a
                                        
                                            GET /igamingcloudstr/images/Layer19fnac.png HTTP/1.1 
Host: s3-eu-central-1.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.kavalager.com/survey/13023/source=5c2dfb7c317364185b072b67/subid=5c2dfb7c317364185b072b67&s1=1603&s2=&s3=&s4=&s5=&parent=5c62c3a3b60cd24915baf4a5&creative=&firstname=&lastname=&city=&zipcode=&mobile=&extuid=%5B%5Bexternal_uid%5D%5D

                                         
                                         52.219.72.0
HTTP/1.1 200 OK
Content-Type: image/jpg
                                        
x-amz-id-2: tXNaQXAHvwT/xKkD6Ili2FqP6b0tADWVU6xfdO3v1tfnAjfVUhwdAhCB6vwTLnNurreV36qZrOM=
x-amz-request-id: 15907B2C6C7F0F85
Date: Sun, 24 Mar 2019 19:58:33 GMT
Last-Modified: Tue, 12 Feb 2019 12:55:54 GMT
Etag: "ada5101e7740b3a22e503e6a69dbe679"
Accept-Ranges: bytes
Content-Length: 762922
Server: AmazonS3


--- Additional Info ---
Magic:  PNG image, 1191 x 570, 8-bit/color RGBA, non-interlaced
Size:   762922
Md5:    ada5101e7740b3a22e503e6a69dbe679
Sha1:   c15e186524e78b4ffeebc4026b535c31d606bd92
Sha256: 5b3e64f7d434cd85dbd7e0d9138a8f6d4fbb3d7647ad11035f33dfe95633ab3b
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400,500,700,900
Origin: https://www.kavalager.com

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 20012
Date: Wed, 13 Mar 2019 08:16:26 GMT
Expires: Thu, 12 Mar 2020 08:16:26 GMT
Last-Modified: Mon, 16 Oct 2017 17:33:01 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 992526
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   20012
Md5:    de8b7431b74642e830af4d4f4b513ec9
Sha1:   f549f1fe8a0b86ef3fbdcb8d508440aff84c385c
Sha256: 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400,500,700,900
Origin: https://www.kavalager.com

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19824
Date: Fri, 08 Mar 2019 04:07:03 GMT
Expires: Sat, 07 Mar 2020 04:07:03 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:56 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1439490
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   19824
Md5:    bafb105baeb22d965c70fe52ba6b49d9
Sha1:   934014cc9bbe5883542be756b3146c05844b254f
Sha256: 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.kavalager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d305ffc69f5de87ef2be44d49a05f11bb1553457511; laravel_session=eyJpdiI6Im1vODErK29lYjRXUTBuU1cyZVwvV1wvZz09IiwidmFsdWUiOiJZSjd1anhuSWNmeThwd09hQ2MzREltYjl6eEFXaWlzWTJmM1wvek1sR1hBbzVjV2pEd013dUlvSEhDakR1NzdmWHB4MWZNV3kxbXhhZkMzYmNVcHhuUEE9PSIsIm1hYyI6IjQ5NjhmNjVlYmMwMTA1OWQwODJhNjhhM2YwYTFmMDhmM2UyNTU0MzM1MmY0ZGUzYjc5OGI3MjU0ZTNlOThhOWMifQ%3D%3D; b2ZmZXJXYWxs=%7B%22campaign%22%3A%2213023%22%2C%22survey%22%3A%2214983%22%2C%22source%22%3A%225c2dfb7c317364185b072b67%22%2C%22subid%22%3A%22subid%3D5c2dfb7c317364185b072b67%26s1%3D1603%26s2%3D%26s3%3D%26s4%3D%26s5%3D%26parent%3D5c62c3a3b60cd24915baf4a5%26creative%3D%26firstname%3D%26lastname%3D%26city%3D%26zipcode%3D%26mobile%3D%26extuid%3D%5B%5Bexternal_uid%5D%5D%22%2C%22firstSession%22%3A%22BlcCMAGlaYCU0gAdAEsEq5sWUTQp5WXbTxWkWZlT_13023%22%7D; survey_id_14983=true

                                         
                                         104.18.49.182
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sun, 24 Mar 2019 19:58:33 GMT
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2016 13:11:50 GMT
Etag: "58077116-0"
Expires: Wed, 21 Mar 2029 19:58:33 GMT
Cache-Control: public, max-age=315360000
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bcb3871baa8cafe-ARN


--- Additional Info ---