Overview

URL www.adturtle.biz/lp_ta/index.cfm?ctp=af%5fta%2ctsyqlzdtl1mtufglifipjyestfwsm1ohwim6r1a%2bkkylscgynedmsvunk146mig6ke4gr0dgutu4uss1sqpnscktq1iquji4llxttdbqnf9lozjiwkaqljs6iuc%2blepdolg2qyhoi0lqvvbesly1xfbntzdqv0etoldmcjjdtekmwexjmezdnyc6wfnvwjxesfjpuyik&fn=corso%2ddi%2dtecnologia%2dmeccanica%2dper%2dgli%2dist%2dtecnici%2de%2dprofessionali%2dcon%2despansione%2donline%2d1%2epdf
IP104.18.50.109
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2017-09-14 07:43:36 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.18.50.109

Date UQ / IDS / BL URL IP
2017-09-11 15:30:04 +0200
0 - 0 - 0 www.adturtle.biz/lp_ta/index.cfm?ctp=af%5fta% (...) 104.18.50.109
2017-09-07 16:43:30 +0200
0 - 0 - 3 www.adturtle.biz 104.18.50.109
2017-09-07 16:15:46 +0200
0 - 0 - 1 www.adturtle.biz/lp_ta/index.cfm?ctp=af%5fta% (...) 104.18.50.109
2017-09-07 09:56:27 +0200
0 - 0 - 2 www.adturtle.biz/LP_TA/index.cfm?CTP=AF%5FTA% (...) 104.18.50.109
2017-09-06 08:58:26 +0200
0 - 0 - 1 www.adturtle.biz/lp_ta/index.cfm?ctp=af%5fta% (...) 104.18.50.109
2017-09-06 00:50:14 +0200
0 - 0 - 0 https://www.adturtle.biz/LP_TA/index.cfm?T=437420 104.18.50.109
2017-08-31 16:15:12 +0200
0 - 0 - 2 www.adturtle.biz/LP_TA/index.cfm?CTP=AF%5FTA% (...) 104.18.50.109
2017-08-28 18:41:20 +0200
0 - 0 - 0 www.adturtle.biz/LP_TA/index.cfm?T=436730 104.18.50.109
2017-08-28 18:16:33 +0200
0 - 0 - 2 www.adturtle.biz/LP_TA/index.cfm?CTP=AF%5FTA% (...) 104.18.50.109
2017-08-18 22:24:07 +0200
0 - 0 - 0 www.adturtle.biz/LP_TA/index.cfm?CTP\=AF%5FTA (...) 104.18.50.109

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2017-11-23 04:44:52 +0100
0 - 0 - 2 www.abeautyclub.com/vvp-confent/Execufives/@* 104.24.99.115
2017-11-23 04:43:22 +0100
0 - 0 - 1 https://lps.istream.link/thankyou/mac/index.h (...) 104.28.19.163
2017-11-23 04:36:18 +0100
0 - 0 - 0 https://waa.ai/zRxK?verify&secured=redirect 104.24.113.128
2017-11-23 04:34:58 +0100
0 - 1 - 0 degreeeaveelectioneagle.tk/8wQPJVBB4xTd50VeVl (...) 104.24.105.54
2017-11-23 04:32:33 +0100
0 - 3 - 0 decryptionassociationzephyrmarriage.tk/dl?n=M (...) 104.27.188.37
2017-11-23 04:27:48 +0100
0 - 0 - 3 factorio.bid/pc/new%20outlook/ 104.31.79.43
2017-11-23 04:21:31 +0100
0 - 0 - 2 www.onread.com/downloadprogramm/Harry-Potter- (...) 104.28.18.36
2017-11-23 04:21:15 +0100
0 - 2 - 0 kamil-chojnicki.pl/ 104.27.165.202
2017-11-23 04:15:53 +0100
0 - 0 - 1 kuaptrk.com/mt/v234x284b4r2u20344r2w244p2/ 104.16.86.74
2017-11-23 04:08:44 +0100
0 - 0 - 0 pastebin.com/raw.php?i=vtdgqQRD 104.20.209.21

No other reports on domain: adturtle.biz



JavaScript

Executed Scripts (10)


Executed Evals (0)


Executed Writes (3)

#1 JavaScript::Write (size: 329, repeated: 1) - SHA256: b1d099587f770f4f24d55674895447de618e422a0f05150dc1a1086d6e6fe67e

                                        < div id = "tp_rtrgt_div_5673478454729640"
style = "position:absolute; visibility:hidden; left:0px; top:0px; width:1px; height:1px; border:0" > < iframe id = "tp_rtrgt_iframe_5673478454729640"
name = "tp_rtrgt_iframe_5673478454729640"
src = "https://ad.ad-srv.net/retarget?a=28359&version=1"
scrolling = "no"
width = "1"
height = "1" > < /iframe></div >
                                    

#2 JavaScript::Write (size: 241, repeated: 1) - SHA256: 26eb271df37bf8782cd1fb97c8b2d470f6bd90253a18758ce637931bd532c5f3

                                        < iframe src = "https://5369219.fls.doubleclick.net/activityi;src=5369219;type=invmedia;cat=vtraafrp;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1176758705413.7961?"
width = "1"
height = "1"
frameborder = "0"
style = "display:none" > < /iframe>
                                    

#3 JavaScript::Write (size: 159, repeated: 1) - SHA256: 642714a733da35b85693f2624960f84a455f2bd81e1f2bac7fcc008fcaae16c4

                                        < script async = "async"
src = "https://cdn.contentspread.net/cdn/toolbox/itag.dyn?&csClient=olusenetnl&csItagId=35763e&csTouchpoint=startpage&country=DE" > < /script>
                                    


HTTP Transactions (52)


Request Response
                                        
                                            GET /lp_ta/index.cfm?ctp=af%5fta%2ctsyqlzdtl1mtufglifipjyestfwsm1ohwim6r1a%2bkkylscgynedmsvunk146mig6ke4gr0dgutu4uss1sqpnscktq1iquji4llxttdbqnf9lozjiwkaqljs6iuc%2blepdolg2qyhoi0lqvvbesly1xfbntzdqv0etoldmcjjdtekmwexjmezdnyc6wfnvwjxesfjpuyik&fn=corso%2ddi%2dtecnologia%2dmeccanica%2dper%2dgli%2dist%2dtecnici%2de%2dprofessionali%2dcon%2despansione%2donline%2d1%2epdf HTTP/1.1 
Host: www.adturtle.biz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.18.51.109
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Sep 2017 05:42:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dd7369eaccc0d23a31ada733a0400d0d61505367779; expires=Fri, 14-Sep-18 05:42:59 GMT; path=/; domain=.adturtle.biz; HttpOnly SNUUID=7EE986E2-D600-5B8B-A5C70B121C531295;path=/;HTTPOnly LPTA=70uJkfLzMXT9d6rMMj9cp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domain=.adturtle.biz;path=/
Location: https://www.adturtle.biz/lp_ta/index.cfm
X-Frame-Options: SAMEORIGIN
X-Powered-By: ASP.NET
Server: cloudflare-nginx
CF-RAY: 39e106ad95bf4285-OSL


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:00 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2017 22:25:58 GMT
Expires: Wed, 20 Sep 2017 22:25:58 GMT
Etag: 5483565FBCBC97112D4FF1F1186CB94C14E39220
Cache-Control: max-age=577977,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp31
Content-Length: 280
Connection: close


--- Additional Info ---
Magic:  data
Size:   280
Md5:    f18c24fed8cae169657e05f30ff540ee
Sha1:   5483565fbcbc97112d4ff1f1186cb94c14e39220
Sha256: baed46513f22318edc5ed848380a252d0cfb7cbd3a5714f46e1775e9a338f8df
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:00 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 21:19:01 GMT
Expires: Mon, 18 Sep 2017 21:19:01 GMT
Etag: C9A884D93E4B996BF11A0272A62C45D7B41EAF15
Cache-Control: max-age=401160,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp18
Content-Length: 312
Connection: close


--- Additional Info ---
Magic:  data
Size:   312
Md5:    f0c2dcca1c41639b6c93d96a7f6e374f
Sha1:   c9a884d93e4b996bf11a0272a62c45d7b41eaf15
Sha256: f67438d81aa4a35aaf2d67ba2956d1a3f4fe3bb74f54be473fef2228358de918
                                        
                                            GET /lp_ta/index.cfm HTTP/1.1 
Host: www.adturtle.biz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=dd7369eaccc0d23a31ada733a0400d0d61505367779; SNUUID=7EE986E2-D600-5B8B-A5C70B121C531295; LPTA=70uJkfLzMXT9d6rMMj9cp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

                                         
                                         104.18.51.109
HTTP/1.1 301 Moved permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Sep 2017 05:43:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.usenet.nl?ctp=af%5Fta%2Ctsyqlzdtl1mtufglifipjyestfwsm1ohwim6r1a%2Bkkylscgynedmsvunk146mig6ke4gr0dgutu4uss1sqpnscktq1iquji4llxttdbqnf9lozjiwkaqljs6iuc%2Blepdolg2qyhoi0lqvvbesly1xfbntzdqv0etoldmcjjdtekmwexjmezdnyc6wfnvwjxesfjpuyik
Set-Cookie: LPTA=;domain=.adturtle.biz;expires=Wed, 14-Sep-2016 05:43:08 GMT;path=/
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Server: cloudflare-nginx
CF-RAY: 39e106b2ad7742af-OSL


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: gk.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1497
Content-Transfer-Encoding: binary
Cache-Control: max-age=475514, public, no-transform, must-revalidate
Last-Modified: Tue, 12 Sep 2017 17:48:14 GMT
Expires: Tue, 19 Sep 2017 17:48:14 GMT
Date: Thu, 14 Sep 2017 05:43:00 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1497
Md5:    d9e2bbdac293db87a8bccffc31d0723e
Sha1:   1fa45663d09d6cb71487addb1f08767ec6e62577
Sha256: 3f5aacc1fbe69c41c423d256bed75d5d5942d50ae93e361fcdc5f5189929ac77
                                        
                                            GET /?ctp=af%5Fta%2Ctsyqlzdtl1mtufglifipjyestfwsm1ohwim6r1a%2Bkkylscgynedmsvunk146mig6ke4gr0dgutu4uss1sqpnscktq1iquji4llxttdbqnf9lozjiwkaqljs6iuc%2Blepdolg2qyhoi0lqvvbesly1xfbntzdqv0etoldmcjjdtekmwexjmezdnyc6wfnvwjxesfjpuyik HTTP/1.1 
Host: www.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         128.65.210.117
HTTP/1.1 301 Moved permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.9.5
Date: Thu, 14 Sep 2017 05:43:00 GMT
Transfer-Encoding: chunked
Connection: close
Content-Language: de-DE
Location: https://en.usenet.nl/?ctp=af%5Fta%2Ctsyqlzdtl1mtufglifipjyestfwsm1ohwim6r1a%2Bkkylscgynedmsvunk146mig6ke4gr0dgutu4uss1sqpnscktq1iquji4llxttdbqnf9lozjiwkaqljs6iuc%2Blepdolg2qyhoi0lqvvbesly1xfbntzdqv0etoldmcjjdtekmwexjmezdnyc6wfnvwjxesfjpuyik
Set-Cookie: AF_TRACKINGID=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:08 GMT;path=/;Secure AF_SCRC=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:08 GMT;path=/;Secure AF_TRACKINGID=0;expires=Sun, 29-Oct-2017 05:43:08 GMT;path=/;Secure AF_TRACKINGID=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:08 GMT;path=/;Secure AF_SCRC=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:08 GMT;path=/;Secure AF_TRACKINGID=0;expires=Sun, 29-Oct-2017 05:43:08 GMT;path=/;Secure
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
                                        
                                            GET /?ctp=af%5Fta%2Ctsyqlzdtl1mtufglifipjyestfwsm1ohwim6r1a%2Bkkylscgynedmsvunk146mig6ke4gr0dgutu4uss1sqpnscktq1iquji4llxttdbqnf9lozjiwkaqljs6iuc%2Blepdolg2qyhoi0lqvvbesly1xfbntzdqv0etoldmcjjdtekmwexjmezdnyc6wfnvwjxesfjpuyik HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         128.65.210.112
HTTP/1.1 301 Moved permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.9.5
Date: Thu, 14 Sep 2017 05:43:01 GMT
Transfer-Encoding: chunked
Connection: close
Content-Language: de-DE
Location: https://en.usenet.nl/
Set-Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9;path=/;HTTPOnly;Secure AF_TRACKINGID=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:09 GMT;path=/;Secure AF_SCRC=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:09 GMT;path=/;Secure AF_TRACKINGID=0;expires=Sun, 29-Oct-2017 05:43:09 GMT;path=/;Secure AF_TRACKINGID=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:09 GMT;path=/;Secure AF_SCRC=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:09 GMT;path=/;Secure AF_TRACKINGID=0;expires=Sun, 29-Oct-2017 05:43:09 GMT;path=/;Secure
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.9.5
Date: Thu, 14 Sep 2017 05:43:01 GMT
Transfer-Encoding: chunked
Connection: close
Content-Language: de-DE
Set-Cookie: AF_TRACKINGID=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:09 GMT;path=/;Secure AF_SCRC=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:09 GMT;path=/;Secure AF_TRACKINGID=0;expires=Sun, 29-Oct-2017 05:43:09 GMT;path=/;Secure AF_TRACKINGID=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:09 GMT;path=/;Secure AF_SCRC=;domain=.usenet.nl;expires=Wed, 14-Sep-2016 05:43:09 GMT;path=/;Secure AF_TRACKINGID=0;expires=Sun, 29-Oct-2017 05:43:09 GMT;path=/;Secure
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  UTF-8 Unicode HTML document text, with CRLF line terminators
Size:   26477
Md5:    afb35ae1b895ebea68ba44bebedd94d2
Sha1:   252bf40e816ab7c3e4a82032894241f95d9654bb
Sha256: cdbfefbc66fb770a43add5e8956e00da8ab57eee388964237db96628e47a1192
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:01 GMT
Expires: Mon, 18 Sep 2017 05:43:01 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    8736ff2801f70a2cb7f5fc291ef2bfd7
Sha1:   3818c96f7adc8d6c67e2174008e3e73cdad3e47f
Sha256: 04ad5952f352935c1aec1262730a89210b9456c20874afa766fc05d6befd0b5f
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=416607, public, no-transform, must-revalidate
Last-Modified: Tue, 12 Sep 2017 01:23:19 GMT
Expires: Tue, 19 Sep 2017 01:23:19 GMT
Date: Thu, 14 Sep 2017 05:43:01 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    775de2be162f21ece95211dfbf378ff2
Sha1:   5aa3f54491214e417e128fcc1b70119c2135565c
Sha256: 69abd56429cfa8fb3a69c040242457ab25397237c94b2f46ea2ce7b1848d55fe
                                        
                                            GET /css?family=Ubuntu:300,400,500,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Thu, 14 Sep 2017 05:43:01 GMT
Date: Thu, 14 Sep 2017 05:43:01 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   266
Md5:    3471a07075574457b8d9fbbb210f9872
Sha1:   e20679232b21e36f0187d0838adb82828d0395c6
Sha256: 0161509c0ef7664eb5356f91f063fee3c8b8e673e863c3597fcbb7bc8cd60bdf
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/img/usenet-logo.png HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Tue, 10 May 2016 06:33:21 GMT
Accept-Ranges: bytes
Etag: "c86aed985aad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:12 GMT
Connection: close
Content-Length: 3049
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 430 x 110, 8-bit colormap, interlaced
Size:   3049
Md5:    cacc5ec0a04256e943bb8cd905f554a9
Sha1:   32d52bc867e101ec6100fb8e4e258fe07191ace4
Sha256: b060f45934974b39b11f8d71669b08e7eb186a96c16ac0533665630220945496
                                        
                                            GET /unf/favicon.ico HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.9.5
Date: Thu, 14 Sep 2017 05:43:01 GMT
Content-Length: 824
Connection: close
Last-Modified: Wed, 09 Dec 2015 09:28:55 GMT
Accept-Ranges: bytes
Etag: "676fa066432d11:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PC bitmap, Windows 3.x format, 16 x 16 x 24
Size:   824
Md5:    9b87027f7d89288b1f44233347ea71ae
Sha1:   7681caea384b2c8f5948a77b5f9f266cce949b1b
Sha256: 0480e334d8f0b282897e69bb0d9ad84779d21b4cbc3290caf75b1bc50df4f3d3
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/img/hp_bg_main.jpg HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Tue, 10 May 2016 06:32:23 GMT
Accept-Ranges: bytes
Etag: "33327eb685aad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:09 GMT
Connection: close
Content-Length: 119562
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   119562
Md5:    1fe8a07a2be978f16fe44de935dccccc
Sha1:   db145c65edb38dcc1efcc07482229427a16def56
Sha256: ab6439f7820e1a6f517a89d05f50e883d0721c5856accc45f075a9e3bd4f8c1e
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/css/unf-style.min.css HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.9.5
Date: Thu, 14 Sep 2017 05:43:01 GMT
Content-Length: 189976
Connection: close
Last-Modified: Thu, 13 Jul 2017 09:55:17 GMT
Accept-Ranges: bytes
Etag: "b368121befbd21:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines
Size:   189976
Md5:    279fb4ff8b347b5a116953e69e81b111
Sha1:   c5476cdffa2473ad956eda40360272c643aed1ef
Sha256: fad159330664103296c994d71391b3d1b84e5c39be7ee70e7d77fdaa048ae5ea
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:02 GMT
Expires: Mon, 18 Sep 2017 05:43:02 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    dc35ce6585bd8a46c974a6306d86cbdc
Sha1:   eddcfe636449a6e421cbb3182dee31f5069cb79b
Sha256: 7ddcced623f34af4cda856cbc1f87ea78cdf85d58884cd072a18d82f0ddd6449
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:02 GMT
Expires: Mon, 18 Sep 2017 05:43:02 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    1b503f238e140231106c31493e4c0954
Sha1:   0b050763b8d7f541434654c86640a7cbbfd11744
Sha256: 9ddacf6e9b25ca0142b5c7b608e4d91a1a2e06b800fb0918784913300922c17d
                                        
                                            GET /unf/RESOURCE/shop/skin/v3/img/mainnavi_active.gif HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/UNF/RESOURCE/shop/skin/v3/css/unf-style.min.css
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Tue, 10 May 2016 06:32:55 GMT
Accept-Ranges: bytes
Etag: "4b1f41c985aad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:10 GMT
Connection: close
Content-Length: 1276
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  GIF image data, version 87a, 120 x 10
Size:   1276
Md5:    495a7bfd9afbc0fbe517844144eae9ff
Sha1:   a79ead72c53349a629d4649f6442aecfa2905284
Sha256: f3c1cf424bea2d51e4b2b77bb9dbdcd29d08ded2be744f4ebfbbfbcfefa58cc8
                                        
                                            GET /dc.js HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/

                                         
                                         64.233.163.154
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Thu, 14 Sep 2017 03:51:43 GMT
Expires: Thu, 14 Sep 2017 05:51:43 GMT
Last-Modified: Tue, 12 Sep 2017 04:27:56 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 15935
Cache-Control: public, max-age=7200
Age: 6679
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   15935
Md5:    d641c018538b15cbe2896acd289097ba
Sha1:   02d2a04451ffe55f170e941429262b96c255bc90
Sha256: 806722512bbf6a4e8560638045c3008e21854693459b5767214b848724bb85af
                                        
                                            GET /s/ubuntu/v10/4iCv6KVjbNBYlgoC1CzjsGyL.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Ubuntu:300,400,500,700
Origin: https://en.usenet.nl

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 40540
Date: Mon, 04 Sep 2017 12:17:10 GMT
Expires: Tue, 04 Sep 2018 12:17:10 GMT
Last-Modified: Mon, 05 Jun 2017 20:32:23 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 840353
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   40540
Md5:    fbcdde477b3854d52dadb24e240e9de5
Sha1:   ab530e602011cf2196ceef42eece97db6a9ce25c
Sha256: 0901748065231854b3bb59f5ad0dcf3adbc142e98cd1699ec96c55435242a27a
                                        
                                            GET /r/__utm.gif?utmwv=5.6.9dc&utms=1&utmn=431014381&utmhn=en.usenet.nl&utmcs=UTF-8&utmsr=1176x885&utmvp=1159x737&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmdt=Usenet.nl%20-%20finest%20Usenet%20access&utmhid=32184227&utmr=-&utmp=%2F&utmht=1505367783293&utmac=UA-20720146-3&utmcc=__utma%3D127800409.1691572677.1505367783.1505367783.1505367783.1%3B%2B__utmz%3D127800409.1505367783.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&aip=1&utmjid=999220999&utmredir=3&utmu=qBQAAAAAAAAAAAAAAAAAAAAU~ HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/

                                         
                                         64.233.163.154
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-20720146-3&cid=1691572677.1505367783&jid=999220999&_v=5.6.9dc&z=431014381
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Thu, 14 Sep 2017 05:43:03 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 369
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  HTML document text
Size:   369
Md5:    10157285f475b14cd1190de26e76210c
Sha1:   b4e94a42fd78a3ac4e1565b089590b29581e073a
Sha256: 73586408d950040a3ad68a73a83a4c3d9ff8139ad14b18e2621f17286ab846a0
                                        
                                            GET /unf/RESOURCE/shop/skin/v3/img/sprite.png HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/UNF/RESOURCE/shop/skin/v3/css/unf-style.min.css
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Tue, 10 May 2016 06:33:11 GMT
Accept-Ranges: bytes
Etag: "eac0f2d285aad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:13 GMT
Connection: close
Content-Length: 3572
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 200 x 500, 8-bit/color RGBA, non-interlaced
Size:   3572
Md5:    8c9eaea2a3c297df2026bd922a7ceed9
Sha1:   39b5fb36cf75f9a86b20e11ea8b72a647f6b8cce
Sha256: 224f93affe08e4de093599826606bb8510e1c9006faa5e6f080a6746cd2ff279
                                        
                                            GET /s/ubuntu/v10/4iCv6KVjbNBYlgoCjC3jsGyL.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Ubuntu:300,400,500,700
Origin: https://en.usenet.nl

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 31740
Date: Tue, 12 Sep 2017 11:49:57 GMT
Expires: Wed, 12 Sep 2018 11:49:57 GMT
Last-Modified: Mon, 05 Jun 2017 20:33:20 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 150786
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   31740
Md5:    4ae54d7fa95c0d329a81998e0b8443c4
Sha1:   958f9568319c7e09078faddf0352118be13a0c05
Sha256: a948a3114b435aee3ea471d0a2a00eaafdb843435b6f3e6a89bdb7aca8930c30
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:03 GMT
Expires: Mon, 18 Sep 2017 05:43:03 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    c1884309a5ab371d497ad5a91e8bc1bc
Sha1:   9570ddd00fb6f97b4987aeb91ca93b5399a98086
Sha256: 50467a5bd0f78b42cdcae496fc66a9ba488652362e9fb6c8935cf809550b5d2c
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/img/icon_hp_blau_many.png HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 07 Dec 2016 09:30:05 GMT
Accept-Ranges: bytes
Etag: "e4b2717e6c50d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:17 GMT
Connection: close
Content-Length: 17974
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 146 x 146, 8-bit/color RGBA, non-interlaced
Size:   17974
Md5:    104bf2f85a7c04916947cb3c05667eca
Sha1:   5fb84e8dac1a597e4ccbb0025ec117b9d6cbfd40
Sha256: ce6d44e4b4942c769a937f847f1a4c2f3ba7eb93bbdbe53551d5c48b51b7b5f5
                                        
                                            GET /s/ubuntu/v10/4iCs6KVjbNBYlgoKfw7w.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Ubuntu:300,400,500,700
Origin: https://en.usenet.nl

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 36004
Date: Mon, 04 Sep 2017 11:27:04 GMT
Expires: Tue, 04 Sep 2018 11:27:04 GMT
Last-Modified: Mon, 05 Jun 2017 20:31:58 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 843359
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   36004
Md5:    a8b2ce7a2ff66443472b455ad860b202
Sha1:   4dc34e838df05a929b8802238efb62ec964bf960
Sha256: 663b7e957fc278715cacc1ea5da6d444b792625039d0ae9bd19902f617f05e15
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/img/icon_hp_save.png HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Tue, 10 May 2016 06:32:43 GMT
Accept-Ranges: bytes
Etag: "3adf0c185aad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:15 GMT
Connection: close
Content-Length: 2642
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 110 x 146, 8-bit colormap, non-interlaced
Size:   2642
Md5:    7670405b608a96aa7a463c3cc4366d53
Sha1:   9f97f0125c4a19fb19d1e76d5ea6f17abff9eea5
Sha256: 70d402b2efa7eb8339c17af7541720835566a0af882515ee008237b50ef04d7f
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/img/hp_bg_anonym.jpg HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Tue, 10 May 2016 06:32:22 GMT
Accept-Ranges: bytes
Etag: "3e1cab585aad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:11 GMT
Connection: close
Content-Length: 99059
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   99059
Md5:    46a7071c80a8c4f08891792c50ef16cc
Sha1:   007475a22e4093020e004d02ceb258b19bc8e7ab
Sha256: 9073749092c7c869983324068a437c019cfac5c712ff6941ab82a3974041d24b
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/img/icon_hp_fast.png HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Tue, 10 May 2016 06:32:42 GMT
Accept-Ranges: bytes
Etag: "53f764c185aad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:11 GMT
Connection: close
Content-Length: 1652
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 82 x 74, 8-bit colormap, non-interlaced
Size:   1652
Md5:    c55787bcfc106be854257ea613937204
Sha1:   c794987003bf979a3a58289e763bebe6939e23b5
Sha256: f40a91d4f219c000db5edbada355cdcd80efc3ae7fd4de4bde46808688a2efb0
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/img/icon_hp_easy.png HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Tue, 10 May 2016 06:32:38 GMT
Accept-Ranges: bytes
Etag: "6e9560bf85aad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:10 GMT
Connection: close
Content-Length: 1830
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 61 x 85, 8-bit colormap, non-interlaced
Size:   1830
Md5:    6994ebaf8d8b01ba5cf474cefb455290
Sha1:   cf38a0b94872f8615430b0df1e733ca5e9d1bc02
Sha256: 85de997f6f755d547eab3e0fa26ff7e4ac88c052a6754d56894061661a888cd1
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-20720146-3&cid=1691572677.1505367783&jid=999220999&_v=5.6.9dc&z=431014381 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/

                                         
                                         216.58.211.132
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Thu, 14 Sep 2017 05:43:03 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-20720146-3&cid=1691572677.1505367783&jid=999220999&_v=5.6.9dc&z=431014381&slf_rd=1&random=1994793982
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 0
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/img/unf_flagsprite_xs.png HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/UNF/RESOURCE/shop/skin/v3/css/unf-style.min.css
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Tue, 10 May 2016 06:33:19 GMT
Accept-Ranges: bytes
Etag: "8d2ea9d785aad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 14 Sep 2017 05:43:17 GMT
Connection: close
Content-Length: 2028
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 164 x 19, 8-bit/color RGB, non-interlaced
Size:   2028
Md5:    b0ac75e05ba4ce4b535c8c349887dfa6
Sha1:   e528501830c5eca72ccc00c5e8e4b4c96c758192
Sha256: 5ee4841d0cea27d000853b3346c52ac0f64460d67d1dfeb90a58844c18e8242f
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:04 GMT
Expires: Mon, 18 Sep 2017 05:43:04 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    ab8d43cc530620ebc7369750914b89f0
Sha1:   605d041a0e701c24cabf0bfe71f71e6995dc7c2a
Sha256: 5b0bacb7bdc1c6eb38956e965a5b3e43882daea99441dba72dce992afb851d3e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         72.167.239.239
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:04 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=120535, public, no-transform, must-revalidate
Last-Modified: Thu, 14 Sep 2017 04:57:43 GMT
Expires: Fri, 15 Sep 2017 16:57:43 GMT
Etag: "1940cab8e2756922e5bee8c284b04a877a308056"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1776
Connection: close


--- Additional Info ---
Magic:  data
Size:   1776
Md5:    624c444fbc2967818bdcc27be2bf5b64
Sha1:   1940cab8e2756922e5bee8c284b04a877a308056
Sha256: 9b4b59b949e95ef3b7b0fed6430322e044f26b028a7faaa8897a8035847b35ac
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-20720146-3&cid=1691572677.1505367783&jid=999220999&_v=5.6.9dc&z=431014381&slf_rd=1&random=1994793982 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Thu, 14 Sep 2017 05:43:04 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /cdn/toolbox/itag.dyn?&csClient=olusenetnl&csItagId=35763e&csTouchpoint=startpage&country=DE HTTP/1.1 
Host: cdn.contentspread.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/

                                         
                                         83.136.86.35
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=ISO-8859-1
                                        
Server: nginx
Date: Thu, 14 Sep 2017 05:43:04 GMT
Transfer-Encoding: chunked
Connection: close
P3P: CP=NOI NID PSAa OUR BUS COM NAV STA


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   890
Md5:    58b4038b84b0df60c2fb31688004af13
Sha1:   0ef354356d5c044ef0e577563bc89097c8ac99ec
Sha256: 5a03be92a218e28e607f1a8d17c020838dcede87f6f3681d12bb12177630101e
                                        
                                            GET /integration/olusenetnl/35763e.dyn?&csTouchpoint=startpage&country=DE&csSiteUrl=https%253A%252F%252Fen.usenet.nl%252F&csSiteRef= HTTP/1.1 
Host: toolbox.contentspread.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/

                                         
                                         80.82.209.238
HTTP/1.1 302 Moved Temporarily
Content-Type: text/plain; charset=iso-8859-1
                                        
Server: nginx
Date: Thu, 14 Sep 2017 05:43:04 GMT
Content-Length: 0
Connection: close
Location: https://toolbox.contentspread.net/container/olusenetnl/sensor/29f5fd.dyn?&country=DE&csSiteUrl=https%3A%2F%2Fen.usenet.nl%2F&csSiteRef=


--- Additional Info ---
                                        
                                            GET /container/olusenetnl/sensor/29f5fd.dyn?&country=DE&csSiteUrl=https%3A%2F%2Fen.usenet.nl%2F&csSiteRef= HTTP/1.1 
Host: toolbox.contentspread.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/

                                         
                                         80.82.209.238
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Server: nginx
Date: Thu, 14 Sep 2017 05:43:04 GMT
Transfer-Encoding: chunked
Connection: close
Expires: Sat, 13 Jun 1992 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Last-Modified: Thu, 14 Sep 2017 05:43:04 GMT
Pragma: no-cache
P3P: CP="NOI NID PSAa OUR BUS COM NAV STA"


--- Additional Info ---
Magic:  HTML document text
Size:   2753
Md5:    cb582cdc4640d3edc45a42f9a0178baf
Sha1:   a2d6054d3be5f9a2d0e710ec5d34ab91d592a5c3
Sha256: 9772b4fb22665cfe4034b372a4f9d186908c17b59014e8468744dd0f03a389fe
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:05 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 11:58:17 GMT
Expires: Mon, 18 Sep 2017 11:58:17 GMT
Etag: 4013F3D6A58D72BDACD7E8BB9170592A7085A2AA
Cache-Control: max-age=367511,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp18
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    799e5ee3e06971f490a79c8337dcd432
Sha1:   4013f3d6a58d72bdacd7e8bb9170592a7085a2aa
Sha256: cb7f5e29e3f41cdd1767488fe55a35193ac0283c923faeb9753a8fcabc32de8a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:05 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 21:19:01 GMT
Expires: Mon, 18 Sep 2017 21:19:01 GMT
Etag: CF963197D7441CEFAD3AF60F278475ADFF210685
Cache-Control: max-age=401155,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp31
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    a25810009e6a5e9b4992ebb8c63d313d
Sha1:   cf963197d7441cefad3af60f278475adff210685
Sha256: ca3e25ed26f0e7f3b0247a2caed5713dfb6300e1cb1f15bd5a065416ccd853b1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:05 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 21:19:01 GMT
Expires: Mon, 18 Sep 2017 21:19:01 GMT
Etag: EEF02773075AD2EE10CA267E7B58B87735BDD217
Cache-Control: max-age=401155,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp31
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    cd2b62d0bf526fea0bb88fd52c362091
Sha1:   eef02773075ad2ee10ca267e7b58b87735bdd217
Sha256: 410f6cc049eba5f23276a5ab276725d47973735c352f253e6406f6d5fce72cf0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:05 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2017 09:16:08 GMT
Expires: Wed, 20 Sep 2017 09:16:08 GMT
Etag: B6FA2515B82C7F35BB256C1260708DDCB58B3A1F
Cache-Control: max-age=530582,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp18
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    71898271638b788799370b73c5d355bc
Sha1:   b6fa2515b82c7f35bb256c1260708ddcb58b3a1f
Sha256: a163836633ef68d487a68480ed14752567f9fa60f2a12eaf874ec1322ccee6d1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:05 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 21:19:01 GMT
Expires: Mon, 18 Sep 2017 21:19:01 GMT
Etag: 5F05A9E6FEF7550647D8BF0ECA4B783F8CB431EE
Cache-Control: max-age=401155,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp31
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    f3512524c948bd088f2e3f2f031dfb51
Sha1:   5f05a9e6fef7550647d8bf0eca4b783f8cb431ee
Sha256: 4aad7674a529201fe7b94d2e15e8bc85934986696f4ef0ea85d801c49c8e134d
                                        
                                            GET /retargeting.php?customer=usenet&method=visit&value=visit HTTP/1.1 
Host: r.adc-srv.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://toolbox.contentspread.net/container/olusenetnl/sensor/29f5fd.dyn?&country=DE&csSiteUrl=https%3A%2F%2Fen.usenet.nl%2F&csSiteRef=

                                         
                                         212.83.50.101
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 14 Sep 2017 05:43:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: adc_vs=x%9C%ABV%2A-N%CDK-%89%2F%29V%B224505637%B70%D5%81%0A%2BY%29%95e%16g%96%28%D5%02%00%13%29%0D%11; expires=Sat, 14-Oct-2017 05:43:05 GMT; path=/; domain=.adc-srv.net
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   654
Md5:    ee3942b58c476ab62db27cc2971486bd
Sha1:   5b3fd68c84e659555acbaa846b407911cf7f7c2f
Sha256: 22bfd4c0ba3bf664caa4203c026ee6ad5f9b436307e3f304acbe450ee0d528ca
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:05 GMT
Expires: Mon, 18 Sep 2017 05:43:05 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    ceca7806573a6f9fe7f4c1fe98238c7a
Sha1:   1a22eca7e7e6588ab0a5a8ddb828f4e790b3d4a0
Sha256: 096a7769c0c444e182b045ee6b3f1887f32885248e05d0870d47f27336e1d39d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 108
Content-Type: application/ocsp-request

                                         
                                         72.167.239.239
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 05:43:05 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=120951, public, no-transform, must-revalidate
Last-Modified: Thu, 14 Sep 2017 05:05:02 GMT
Expires: Fri, 15 Sep 2017 17:05:02 GMT
Etag: "4c4f729ef898782f3d311229264bb57843dcaf7c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1777
Connection: close


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    49939cf3c1d38d604202178f0753417f
Sha1:   4c4f729ef898782f3d311229264bb57843dcaf7c
Sha256: 4ad6c315c751c1a9922198d7eace17e12d021ae623c367ca397de3cc932f0fd4
                                        
                                            GET /rt.php?campaign_id=30757&place=1&cachebuster=[TIMESTAMP] HTTP/1.1 
Host: www.usemax.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://toolbox.contentspread.net/container/olusenetnl/sensor/29f5fd.dyn?&country=DE&csSiteUrl=https%3A%2F%2Fen.usenet.nl%2F&csSiteRef=

                                         
                                         212.48.120.130
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 14 Sep 2017 05:43:05 GMT
Server: Apache/2.4.10 (Debian)
X-Powered-By: PHP/5.6.30-0+deb8u1
Content-Length: 0
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive


--- Additional Info ---
                                        
                                            GET /activityi;src=5369219;type=invmedia;cat=vtraafrp;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1176758705413.7961? HTTP/1.1 
Host: 5369219.fls.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://r.adc-srv.net/retargeting.php?customer=usenet&method=visit&value=visit

                                         
                                         216.58.211.134
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Date: Thu, 14 Sep 2017 05:43:05 GMT
Expires: Thu, 14 Sep 2017 05:43:05 GMT
Cache-Control: private, max-age=0
Strict-Transport-Security: max-age=21600
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Thu, 14-Sep-2017 05:58:05 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   177
Md5:    9393b28661a65a763699c108887882eb
Sha1:   c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
Sha256: 2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
                                        
                                            GET /retarget?a=28359&version=1&redirected=1 HTTP/1.1 
Host: ad.ad-srv.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://toolbox.contentspread.net/container/olusenetnl/sensor/29f5fd.dyn?&country=DE&csSiteUrl=https%3A%2F%2Fen.usenet.nl%2F&csSiteRef=
Cookie: uid=18716ddad8c7047a

                                         
                                         136.243.54.217
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Sep 2017 05:43:06 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: uid=18716ddad8c7047a; expires=Wed, 13-Dec-2017 05:43:06 GMT; Max-Age=7776000; path=/; domain=.ad-srv.net rtrgt_28359=59badcmHPAwpj6nWhoVpZvtzaRcI90js6nR7zfoHKVpz4Nyxcyao2ndbqNR3GZN9J7jWOtmqY2MlvDMl%252FK2SbJMjYn59hg%252BrXvF0A2tECDDskNHQx7B8BmOOPOcsKEZNPtAR8v9RNr; expires=Sat, 14-Oct-2017 05:43:06 GMT; Max-Age=2592000; path=/; domain=.ad-srv.net
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 37
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   37
Md5:    46e735b733707d403eccc65e82eec97c
Sha1:   5350aeb3314af69193b1153ef12f64345cf98f56
Sha256: 6ee559904b45b816fd3cbc58a422538cbdeeb474ea2ed6dfd2613447e22b9e4d
                                        
                                            GET /retarget?a=28359&version=1 HTTP/1.1 
Host: ad.ad-srv.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://toolbox.contentspread.net/container/olusenetnl/sensor/29f5fd.dyn?&country=DE&csSiteUrl=https%3A%2F%2Fen.usenet.nl%2F&csSiteRef=

                                         
                                         136.243.54.217
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Sep 2017 05:43:05 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: uid=18716ddad8c7047a; expires=Wed, 13-Dec-2017 05:43:05 GMT; Max-Age=7776000; path=/; domain=.ad-srv.net
Location: ?a=28359&version=1&redirected=1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Connection: close


--- Additional Info ---
                                        
                                            GET /ads/js/ck_tracker.php?productId=&catId=&searchName=&sprd=false&adspaceId=9990610&country=at.ad4mat.net HTTP/1.1 
Host: www.ad4mat.net:444
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://toolbox.contentspread.net/container/olusenetnl/sensor/29f5fd.dyn?&country=DE&csSiteUrl=https%3A%2F%2Fen.usenet.nl%2F&csSiteRef=

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /UNF/RESOURCE/shop/skin/v3/js/unf-base.min.js HTTP/1.1 
Host: en.usenet.nl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://en.usenet.nl/
Cookie: SNUUID=7EE98E99-ECAE-EFBB-6AF038961E4A90B9; AF_TRACKINGID=0

                                         
                                         128.65.210.112
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.9.5
Date: Thu, 14 Sep 2017 05:43:03 GMT
Content-Length: 264279
Connection: close
Last-Modified: Wed, 03 May 2017 08:35:16 GMT
Accept-Ranges: bytes
Etag: "892531e8c3d21:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN


--- Additional Info ---