Overview

URL gwpharm.dyndns.org
IP52.49.209.176
ASN
Location United States
Report completed2018-09-09 18:10:27 CEST
StatusLoading report..
urlQuery Alerts DynDNS domain detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-09-09 18:09:56 CEST 2 Client IP  52.49.209.176 ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain
2018-09-09 18:09:56 CEST 2 Client IP  52.49.209.176 ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain
2018-09-09 18:09:56 CEST 2 Client IP  52.49.209.176 ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain
2018-09-09 18:09:56 CEST 2 Client IP  52.49.209.176 ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain
2018-09-09 18:09:56 CEST 2 Client IP  52.49.209.176 ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 2 reports on IP: 52.49.209.176

Date UQ / IDS / BL URL IP
2018-09-09 18:06:28 +0200
108 - 4 - 0 gwpharm.dyndns.org 52.49.209.176
2018-09-09 18:05:43 +0200
108 - 5 - 0 gwpharm.dyndns.org 52.49.209.176

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2018-11-16 19:38:13 +0100
0 - 0 - 0 taobao289.com 103.90.172.20
2018-11-16 19:35:44 +0100
0 - 0 - 1 https://cfspart-impots-gouv-remboursement-fr. (...) 162.241.2.107
2018-11-16 19:35:24 +0100
0 - 0 - 0 tballie7272orileyoriley.tumblr.com 66.6.32.21
2018-11-16 19:29:04 +0100
0 - 1 - 0 https://www.threehappyday.xyz/1030/amazon/ama (...) 139.162.160.215
2018-11-16 19:26:33 +0100
0 - 1 - 70 www.madephone.com/feature-android-phone-c-790 (...) 196.196.14.53
2018-11-16 19:19:08 +0100
0 - 0 - 1 ventas.security-bc.club/ 185.158.251.189
2018-11-16 19:18:42 +0100
0 - 0 - 0 159.65.108.150 159.65.108.150
2018-11-16 19:16:42 +0100
0 - 0 - 0 www.lihenoginmonol.com 34.242.158.244
2018-11-16 19:11:53 +0100
0 - 0 - 0 adobe.seenfiretoolkit.com 143.204.47.97
2018-11-16 19:11:41 +0100
0 - 0 - 0 SutAchalaYmerA.info 194.36.173.5

Last 2 reports on domain: gwpharm.dyndns.org

Date UQ / IDS / BL URL IP
2018-09-09 18:06:28 +0200
108 - 4 - 0 gwpharm.dyndns.org 52.49.209.176
2018-09-09 18:05:43 +0200
108 - 5 - 0 gwpharm.dyndns.org 52.49.209.176


JavaScript

Executed Scripts (63)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (119)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 09 Sep 2018 16:09:55 GMT
Cache-Control: must-revalidate, no-cache, private
X-Drupal-Dynamic-Cache: MISS
Link: <http://gwpharm.dyndns.org/node/1>; rel="canonical", </node/1>; rel="revision"
X-UA-Compatible: IE=edge
Content-Language: en
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Vary: Accept-Encoding
X-Generator: Drupal 8 (https://www.drupal.org)
X-Drupal-Cache: HIT
Content-Encoding: gzip
X-Request-ID: v-cac59668-b44a-11e8-89ab-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382649
Age: 0
Via: 1.1 varnish (Varnish/5.2)
X-Cache: MISS
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9001
Md5:    e87c40308562e2e1a90f8326fd29e387
Sha1:   005da4afca0fa8ec8c8ad7966317eb6edb6814f3
Sha256: a1a852caca73de7b704c5529b12efc0e2cc7e116190de141b8f99f87552c8fec

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /libraries/superfish/css/superfish.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:08 GMT
Content-Length: 1621
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:08 GMT
X-Request-ID: v-73519d60-b1f6-11e8-8ca5-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382651 36766770
Age: 256127
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1621
Md5:    9cef19ecafedef6078a69fb183ccdc9e
Sha1:   03ff052f5d2c307cef38453c816225c62af4efff
Sha256: 3f93b5079f98047ea67f3bf77b9b14191e90f42870f8db83e658716bf9840390

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/hidden.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 648
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-736e9596-b1f6-11e8-a570-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382652 42861127
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   648
Md5:    07e0471401b4845c6ba44414821ef7a9
Sha1:   e5903471b18f681418f9e051309de98e9d851f59
Sha256: 6ccbf81d0b3f1b869019bc95d9a44a65744b0ee972c6f9baf6ea1cc7d0a51201

Alerts:
  urlquery:
    - DynDNS domain detected
  IDS:
    - ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain
                                        
                                            GET /core/modules/system/css/components/align.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 216
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-7359d3b8-b1f6-11e8-a0f4-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773811 42436106
Age: 256127
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   216
Md5:    b80354312158286fb084d344c85ea6e8
Sha1:   48ac8b5af06029b0dcde6386fc31b1ec45a1e665
Sha256: 4692a693f0c2dddfdbff4933014e91cd39ee371bd0176943a40f7d30ad49fccf

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/fieldgroup.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 94
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-735a05cc-b1f6-11e8-8646-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50540992 41190281
Age: 256127
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   94
Md5:    20f524320bba55628f40e82ca3c3d03b
Sha1:   23264aa74a4e40f068d4d53e4c89525fcd0faa25
Sha256: f97eea0c6318f443f53c8e59a6f28cb49632ff9f87823763a4137f78c70d9bfe

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/container-inline.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 157
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-7359dfc0-b1f6-11e8-a65d-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119848 41911332
Age: 256127
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   157
Md5:    d9d5e22542bfc671485f347cb7f7666b
Sha1:   54adc4db00eaea13d5de3c71ffd873413c0b224c
Sha256: f37a031e61028d7542ed79c8b0558a440c5a84c61ef7278318218e108d739cc9

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/clearfix.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 221
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-7359ebb4-b1f6-11e8-911c-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680979 41059128
Age: 256127
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   221
Md5:    a7898acce2368961f72e45029ea56a40
Sha1:   7843e5268d3d07b7df7960689b15b84931fae1fb
Sha256: 9403fab387900f1fa610528aa8c8447f5660e391f970412ecd53b801e889abda

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/details.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 121
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-735b2128-b1f6-11e8-9a64-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478907 41781893
Age: 256127
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   121
Md5:    b33c3137f10bdcb51fca5a03c418272e
Sha1:   9338138d534512872f467d19644e969e6fae2d9f
Sha256: 87b75f4904a387d7aea4c0f5ea12daaaf708a16b765600aefac9fba3d38fd779

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/item-list.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 154
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73761eec-b1f6-11e8-b84f-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382653 36439486
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   154
Md5:    fcf1433601cfef3fbd18349be6ead867
Sha1:   b181f99a0dc2f16e3b747dcd836b26867e8dd1ba
Sha256: 22aa42fc22b900883a9e55e74a4ed6391c7ef0ac6bad41138a6ee08b5bdfbe87

Alerts:
  urlquery:
    - DynDNS domain detected
  IDS:
    - ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain
                                        
                                            GET /core/modules/system/css/components/js.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 232
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-7375fbc4-b1f6-11e8-88f9-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773812 40502965
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   232
Md5:    2a0bcb77a071733290e7054db5493b52
Sha1:   40e809e56dbfb817dd90ae1d384ee04f0e763668
Sha256: 5ad19dea9ba8eb330e881a98ac75b413dc31ba45c2bffee2dc1f61c5c67163ba

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/nowrap.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 104
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73763de6-b1f6-11e8-8ae0-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50540993 41781895
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   104
Md5:    6c3aa4c488b3151094ef3f7de6b4248e
Sha1:   ae75bc7ecaa15a9b00cef47c56e15e3a847574a4
Sha256: f4ceaf0c4dc8fcec305891f03b7420dff717fb7ffc585761c5d2f269b773b582

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/position-container.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 94
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-7376496c-b1f6-11e8-ae88-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119849 41059130
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   94
Md5:    f1fb58f575f793491ca2cc68e73bc8b2
Sha1:   a1201863d50f5bd44d2cfa7684b4977f4a2d497d
Sha256: 5b0aa4e3078acfa272d08709e50340f4c733e74129ba6da4bec154b4ec94dbb9

Alerts:
  urlquery:
    - DynDNS domain detected
  IDS:
    - ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain
                                        
                                            GET /core/modules/system/css/components/progress.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 354
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73789fc8-b1f6-11e8-a2ae-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680980 42271668
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   354
Md5:    698d306942577889400757b4e36d1317
Sha1:   c714f968fab541808923380a1da2cf91639f6cb0
Sha256: 2a60998053f088231e8071cc378d9643c85a1a98f52189b3cb7e57607109aff3

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/reset-appearance.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 188
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-738b4ac4-b1f6-11e8-b7b5-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478908 40011962
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   188
Md5:    9bc54389ffa582d4f2a601f1867ad8dd
Sha1:   45cc1d9d6e551e48a15e5305f26ab795803c7dc2
Sha256: 50c02ee6b25a93af58b9b2c61b3bf06b6d7b33d7d69c4f5ea1453d6e6b1b9697

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 09 Sep 2018 16:09:56 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    539b585b6cba9a19ebed4201f049e777
Sha1:   cdd9b5a0da759d8c0c8b3f1f77a371988f2d8459
Sha256: 4ad7c0bdf28a54a5158242e68e3ab1ddf6b301921060b9b2964b8100b0668664
                                        
                                            GET /core/modules/system/css/components/resize.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 155
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-7391d65a-b1f6-11e8-a038-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382654 36439490
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   155
Md5:    19ec9d75e618fea998cf3a6c9437d5e8
Sha1:   dfa8768d85e9f39fdecb22a3b09b9f6b70e3b1fe
Sha256: c0f3aba83c84f14557b6217f5de0fc716444ab582e1de39c2034152053abd8f4

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/sticky-header.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 143
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73926d9a-b1f6-11e8-be36-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773813 38569217
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   143
Md5:    f9b6660c7b66d489da866163a3b72ebb
Sha1:   568a99efe7062c08c6311738843605ee9346c04b
Sha256: 2ba4a7ffbd3370f5dbefa188323fa5b1461ec90a95686c433ab7f911bede76e8

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/system-status-counter.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 316
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-739283e8-b1f6-11e8-ae67-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50540994 40666233
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   316
Md5:    6b68b184f49001e29ae68a4c430d3d50
Sha1:   2848b76270156a753a19c0dcf0c3cbade1c2f6a7
Sha256: da1f6eac5bba0c81cc2569855b70c8f37140376684b3164e1a9ce3e9e686c74a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/tablesort.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 210
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73a887e2-b1f6-11e8-a9e0-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478909 37160239
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   210
Md5:    08bdfade5e5b81cc69249ebf51394395
Sha1:   dda0a6c8114cea7fca0ee5498541cf858c4e2f48
Sha256: bc033511257749a69d5a64303e6cfa90423d93bfb99239d47ea73d9dded92053

Alerts:
  urlquery:
    - DynDNS domain detected
  IDS:
    - ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain
                                        
                                            GET /core/modules/system/css/components/system-status-report-counters.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 303
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73929144-b1f6-11e8-87fa-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119850 41059132
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   303
Md5:    54831d55cf8f987cc5f914179bc6ee8f
Sha1:   164ae80737ec2cbbb981858460e780d6bca63861
Sha256: 54b2c230444e7e99fc2e56cc43fcd0a5a1dc07570f9aa9872eaf1a912e5b989b

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/system/css/components/system-status-report-general-info.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 174
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-7395a55a-b1f6-11e8-84fc-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680981 42271670
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   174
Md5:    70a27615ed1f1dc3ba4caec62107fb66
Sha1:   61d2c528d708da7314822d289f6aaa8def5236ff
Sha256: f8966024c6d0d18c2736445713947150f9acfb575beb45b5bd9f66f419b67b43

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 09 Sep 2018 16:09:56 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /core/modules/system/css/components/tree-child.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 219
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73ad9b10-b1f6-11e8-8c77-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382655 40666237
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   219
Md5:    0435bf56e5964dd3498879bfe587891c
Sha1:   1ddf1bb1aaaacc31b213a02ed721531092051648
Sha256: 2c77515d40b0d8b7cd693a6fe314dc8e25a5d25e10eba97a00038ec0498d5fde

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/themes/base/core.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 710
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73aee6be-b1f6-11e8-b7bc-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773814 40011966
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   710
Md5:    f6c699826c980fcc6e5bead9d7d520e0
Sha1:   2c4b8dcbe9ddebd3ff5b8799df58f6cf0dfd15e2
Sha256: 140e4928b1a4745ddbdd5df286887c855b4ac4c82d0b1f634794c09a2f814864

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/themes/base/button.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 658
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73aed9bc-b1f6-11e8-99f2-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50540995 41190287
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   658
Md5:    d461da5d851d544f814621e075a4cd04
Sha1:   78663f962a4fce7364f87171f867bb63c9a17acc
Sha256: 701bee307045ce0b6e5d9543613889e6b3eb47b780b2c55338aaae7a6402ba10

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/themes/base/resizable.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 409
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73b2a498-b1f6-11e8-ab1d-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478910 43025450
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   409
Md5:    359615372437eff9ca03628bc26daf44
Sha1:   32e4dee2c24cf0df45f5ca7096cffc4f01062d77
Sha256: b277144271850a754d271d931b4f09478bc630eb878ee11688f9cc1f4de7019a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/modules/views/css/views.module.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 164
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73c9d974-b1f6-11e8-b9b1-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680982 41059136
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 11
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   164
Md5:    b1689f9bd3d7e42f68543842cc09cab3
Sha1:   0d19cd7ef29049bf0ec127c176d2f0810ef20e98
Sha256: 1348575aa95f81fb307019f27eb881b1e3d00edee8de17739919b66e1459096f

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/themes/base/dialog.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 593
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73c61c94-b1f6-11e8-87fe-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119851 36766774
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   593
Md5:    51f7b1d209710e4c8e2823e2c8c05281
Sha1:   dcb1dffec097e0b0521871035fcf44e4b05abdd4
Sha256: e8db1d5d7d4785f488ef338fcd13994788edb70dbb9b875448880038acc58b6a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/themes/base/theme.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:09 GMT
Content-Length: 3081
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:09 GMT
X-Request-ID: v-73e77e66-b1f6-11e8-8667-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382656 36766776
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3081
Md5:    17fde25002f5820c9dcce7ae15f25ae3
Sha1:   e9986fd136a7e791499f7d29aadff45b6ef2d0aa
Sha256: 540c6df5cde20ce2a776c5a9fa470490814c8ebd999a001e75ce67e5e643535c

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 09 Sep 2018 16:09:56 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    9458a375662991703fac2b59f134015b
Sha1:   2255a7368e6b11b7ad48c37d1820ec8e0fec6ffb
Sha256: d569846c4c53563ed37f842e4f456c8c9fc7507c95d1ebd9d869e40e3815d566
                                        
                                            GET /modules/contrib/webform/modules/webform_bootstrap/css/webform_bootstrap.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:10 GMT
Content-Length: 423
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:10 GMT
X-Request-ID: v-7401a516-b1f6-11e8-8fd3-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773815 41059140
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   423
Md5:    51fc3b8331569409348fec3579eb97ea
Sha1:   09ddc09dc3fe97a7b208f3a7bf521de5507e9ac1
Sha256: 2092f68a002e2536454d31168507eab9d8fa10fc7bbe7d29e7b399e6789926e9

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /modules/contrib/paragraphs/css/paragraphs.unpublished.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:10 GMT
Content-Length: 57
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:10 GMT
X-Request-ID: v-74039a1a-b1f6-11e8-9d2c-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50540996 37160248
Age: 256126
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   57
Md5:    6bf7857dc423eada40ddf4aec0506587
Sha1:   9de57d9ef96077986effbab3521672bd15736488
Sha256: f1eea94c1d7f9c6747515e1d7af60618498e8197905f290bc3851da41fbd5588

Alerts:
  urlquery:
    - DynDNS domain detected
  IDS:
    - ET INFO DYNAMIC_DNS HTTP Request to a *.dyndns.* domain
                                        
                                            GET /themes/custom/gwpharmuk/css/greenwich-icons.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:10 GMT
Content-Length: 913
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:10 GMT
X-Request-ID: v-7438c2e4-b1f6-11e8-b26f-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680983 43025452
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   913
Md5:    374eb346eab7afb4fbd5a58c7d50d247
Sha1:   04540f2afac2ffa9a577cd5c910b2c2130e055f1
Sha256: a99f34ddf65c2f05d71619ccf47e7fb31ef0595850f3d4c804d822807cdec22e

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmglobal/css/gwpharmglobal.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:10 GMT
Content-Length: 198
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:10 GMT
X-Request-ID: v-7439e2d2-b1f6-11e8-ab71-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119852 40011970
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   198
Md5:    8efc571f9eb6a9b65181c37f3570f55d
Sha1:   0a62dde58ed429bb32c1957a4619ecf81b8aa9d2
Sha256: 4d6e51a4ab7aea0ae6ebc62c735d0468c2ce03d6e9c82ac9128b3f2682f4909f

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/domready/ready.min.js?v=1.0.8 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:04 GMT
Content-Length: 329
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:04 GMT
X-Request-ID: v-fa29ded8-ac9c-11e8-bb14-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382657 12288238
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   329
Md5:    f43b7f872bc474a0e5e1ab2d95003caa
Sha1:   6db1d14bc8775ba90b55f4c93bdacee51b2a87bf
Sha256: 7a2f6a97616c7e8e892d27a74f5b83ad25e23a20da0e9ae49cc14a29c3854d10

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/underscore/underscore-min.js?v=1.8.3 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:04 GMT
Content-Length: 5845
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:04 GMT
X-Request-ID: v-fa3cb332-ac9c-11e8-bad4-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50540997 14090434
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5845
Md5:    4f40e24636dac9a06823440e7a8523f6
Sha1:   51fff6031373c038e4df3feaa8d6b8b369e49aa4
Sha256: 61b8fe5ecb41edea091d7dd3183764f2c4787877fe252aa2eac0c51d8b4e0a19

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/misc/drupalSettingsLoader.js?v=8.5.6 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:04 GMT
Content-Length: 314
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:04 GMT
X-Request-ID: v-fa3fa6c8-ac9c-11e8-9d8f-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119853 13042013
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   314
Md5:    e51ee292feb996a9b382d72fa724d6ce
Sha1:   cdb438b233c2c273ced94e7ce8f4a35c12ca3f81
Sha256: 6b206efffb13ba6929463b457030aafd69385431e42841272632d56ed4e7ebdf

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery-once/jquery.once.min.js?v=2.2.0 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:04 GMT
Content-Length: 428
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:04 GMT
X-Request-ID: v-fa3e4d14-ac9c-11e8-ae65-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680984 13372068
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   428
Md5:    cc2a01b267b5582776ba30da2693d304
Sha1:   7721a7d4fbb9a0aca06aed6ce2ef965b7f28575e
Sha256: 904027da32100e11ac467db124628b5bc116ae13e7cfc18d8ca4d597a0e83aae

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /gtm.js?id=GTM-WT5X2PN HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         172.217.21.168
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 09 Sep 2018 16:09:56 GMT
Server: Google Tag Manager (scaffolding)
Content-Length: 1582
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1582
Md5:    243d94ca00c126801e0a13d59c14da96
Sha1:   77e68e56b6f78efb92afee865d4f3d17526e0d04
Sha256: 737b791c10fbad5b8cac13473315b43bd04dcce1bd355ed5a2f99ade0a3c4c81
                                        
                                            GET /core/misc/drupal.js?v=8.5.6 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:04 GMT
Content-Length: 1572
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:04 GMT
X-Request-ID: v-fa462b1a-ac9c-11e8-89a1-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382658 14090436
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 33
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1572
Md5:    22f07978f5dabbc49780c779cf9c085f
Sha1:   af0199a703c82b7c589b2f9cb64a5145719fcab9
Sha256: 4a2eaa649a125e70ed54c85281bc1fb0599c322cc33867e2165593cc75cf7778

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /css?family=Roboto+Slab:400,700|Roboto:300,400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 09 Sep 2018 16:09:56 GMT
Date: Sun, 09 Sep 2018 16:09:56 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   320
Md5:    e78c57f5847dc7954138007df600eaac
Sha1:   efff731791eb289256b388c8e5f246297b013250
Sha256: f41c83a9881e76966fd8c644eccfae041f7e31aea5393c69447a703b7689695c
                                        
                                            GET /core/assets/vendor/jquery/jquery.min.js?v=3.2.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:04 GMT
Content-Length: 30138
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:04 GMT
X-Request-ID: v-fa3446de-ac9c-11e8-aaf0-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773816 15729870
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   30138
Md5:    3430607b4301113ad9394c9260eef3f0
Sha1:   8c4db68b161b17e31be300e968a30ab0116b3193
Sha256: 31e4d11375322cd6f94dba7338570426f2412d6c5fa670427966d45c3648098c

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/misc/drupal.init.js?v=8.5.6 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:04 GMT
Content-Length: 279
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:04 GMT
X-Request-ID: v-fa58cb80-ac9c-11e8-99c6-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50540998 14090438
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   279
Md5:    9ee3b599e2207aea59f622713645b2ad
Sha1:   4fed5885fbc966c8696fa797e7e3eb71fb617369
Sha256: d8d57b55c6bcee44030edcfccb82d42f567f4f80a47ff23691a1de8bfafb8f43

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/disable-selection-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:04 GMT
Content-Length: 331
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:04 GMT
X-Request-ID: v-fa5b3ece-ac9c-11e8-b087-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680985 13042015
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   331
Md5:    955438a71dceb00810217506ca1edaa6
Sha1:   fa3c95de7011e75c7d7ee81031116d72a904a0ba
Sha256: 5e3be6514a4733ad0ccac9318bdd5e57e2f0816b21f1fdf89b96f205473e3c6a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/data-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:04 GMT
Content-Length: 272
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:04 GMT
X-Request-ID: v-fa596478-ac9c-11e8-a363-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119854 15729872
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   272
Md5:    66d4ad675d2629d060b0f9ce7f341e97
Sha1:   0897ac97e24d586a5716c56afa13f61927ab258f
Sha256: 07991f4ffae0986d218c5014054eebcadd0a77db5839944260c0558751738f3d

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/form-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 250
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa62b082-ac9c-11e8-afb0-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382659 14090440
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   250
Md5:    035712437b0e41ea613be8130c03a9cf
Sha1:   56f82fee6598445506e4bf15dc88083692870022
Sha256: 436a0d8cfa22784e05461d8db705ac70e49dc0a32bcd7e5b93c8f1762c33267f

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/labels-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 383
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa6b4d64-ac9c-11e8-a1de-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773817 15729874
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   383
Md5:    f48a913fe6bd5c66bb88e15604127fec
Sha1:   975a552c8ba67078f6340baa2f78a60b8a824452
Sha256: f79b9ac41c140a4b6ea8dae63de7ae0ff4ac25e5b42080e41eacc259f2da396a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/jquery-1-7-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 546
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa749f72-ac9c-11e8-8750-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50540999 15729876
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 33
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   546
Md5:    25825dc1ce01cd9be189edbfdb52ca44
Sha1:   a67d7b7eaa469d6789cd6e46ad93abe6cf34193a
Sha256: 0d046d229d8e9caf11a0222c0c97f8579e684c3cc1a3e1cfee6d90fda55cbdd1

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/scroll-parent-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 384
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa74b660-ac9c-11e8-b977-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680986 14090442
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   384
Md5:    7bc031266602a209d5734d68daf23268
Sha1:   74201d6d46f0189c552d70e1201bc56fd55e2ae9
Sha256: 5ff320b5fbb0a67beb4a5749f5d5b748ba3d13f0809455d6ef6e0d94ddb49bc1

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/tabbable-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 287
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa76e6e2-ac9c-11e8-b578-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119855 13042017
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   287
Md5:    0b256baecbdf55f1ea300b5efb9bb81c
Sha1:   266dffab537ffb462be9d69b9f9e56f74e4088ee
Sha256: f91c7912f74644b8aa3cf40851a399fd852be028c75b859ea35873011f52e147

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/unique-id-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 310
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa7f08c2-ac9c-11e8-be8a-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382660 14090444
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 35
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   310
Md5:    7bd6ede751bfff94d6c812948362354e
Sha1:   08ab02d705e7979464ac30be48ac56e2e88ffe35
Sha256: f3523c2d94ef93a34ccfcd2a4e1ec2558fb8a1b52578f2459709a44f7eead311

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/css/style.css?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:10 GMT
X-Content-Type-Options: nosniff
Last-Modified: Thu, 06 Sep 2018 17:00:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:10 GMT
X-Request-ID: v-742791ae-b1f6-11e8-b6f9-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478911 42271682
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 13
Accept-Ranges: bytes
Content-Length: 148591
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   148591
Md5:    0b53bf31bca736895d9b067459a403b2
Sha1:   07810a541eb7aa4c04fed8b231770a905ef543d3
Sha256: c6a7e017f1d38090acea42421cbec340ee6defda19c2d959ab2f91ea26724f1a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/focusable-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 540
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa8bcd28-ac9c-11e8-a4ac-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541000 15761492
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   540
Md5:    fe5b1e789992719b6bd73084c5251adc
Sha1:   14cbbcd3de118af583f42761bcbd214362ae0aff
Sha256: 6a3ae77aedadece88eed3c1404547dce9ce7551cc4733cf2a63b285b1941a936

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/version-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 218
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa86cdf0-ac9c-11e8-bd25-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773818 15729878
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   218
Md5:    64fb1cd290f94111ce41e8320a8a2690
Sha1:   f8bde7f98481491271c9746aa257a3d5196fda59
Sha256: 87cd2b07333eab8a13327ad23e768cf5733b1349cc27c99820a06ab2f625059f

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/ie-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 252
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa8ffcb8-ac9c-11e8-9863-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680987 14090446
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   252
Md5:    64f0948db2d1ce26435ef8fb7121f46a
Sha1:   07893e41cc961293350de746ac6f8be84ce62579
Sha256: febfadf8ce341cd157013b59a2214ced479380d3afedbbb256caa2a4b1181860

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/keycode-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 328
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa903db8-ac9c-11e8-bdbe-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119856 15729880
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   328
Md5:    55bd4aab5db7419b848e25e47f52ead9
Sha1:   fce45733e75355cd209934536c6cbfb17dc70044
Sha256: 6e83094057d26b2f383dd27ebc40c786d1367f7411dcf55d77f84f639ed1a152

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/plugin-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 370
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa92a13e-ac9c-11e8-a252-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382661 12288242
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   370
Md5:    0288b0a7930ab82fe68b395716ef562b
Sha1:   d560e8035ceea91c4ee9d97ed06537fdec5f1150
Sha256: f8af3640a7553680286e41d4cd37e0df28b64a7033c9b75d7e7bb0424ada85bf

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/safe-active-element-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 269
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fa9b2f52-ac9c-11e8-b507-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478912 12288244
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   269
Md5:    db7715651eef01014fc2143525f384d0
Sha1:   77eee595b7a1e1a543fa1e70125c2f0122a02f94
Sha256: 7a97e0481df43f4e20504b88e12268799f81454b9f6073aa3890c06902a58c91

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/safe-blur-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 263
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-faa6d6d6-ac9c-11e8-a103-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541001 15761494
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   263
Md5:    260f242f380fe97971c247b92740b49a
Sha1:   5418aa6482384416a22adbe443f55d567b4c73c3
Sha256: 2c5273bccb526fbbcaf92ccc08cb5f9f494bed18ab4b6ab9ab48c48c7098ba13

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/widget-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 3069
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-faab6750-ac9c-11e8-8977-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773819 12288246
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3069
Md5:    b208718dae3fc482374569bff19963d9
Sha1:   a45df4f531591aadc48c8b5ec2014f58be4d4553
Sha256: af4fe4de9478d826f5dd9ca36c20069a9ba9ceeef67c2674e1054c1f4d340da3

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/widgets/button-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 1683
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-faab851e-ac9c-11e8-8dde-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680988 13372070
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1683
Md5:    2af74178e693db13c9774aa7941cf457
Sha1:   34cbeb0a2185288f5b2c637fa4f05e0f398edb52
Sha256: f5c4bd730941a6a1676daa2fb0f915c629fd6eeeea1becf49a42094d198f87e7

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/widgets/mouse-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 1093
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-faae7526-ac9c-11e8-bb70-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119857 14090448
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1093
Md5:    2243e08e0e436a941e1bdd489d41eb74
Sha1:   bacb745686eb6b11e5e24e46bf4b7b4cfec583d3
Sha256: c088a94935f454f7700ff881a907be7ebb7d3011fe8f264587a45995a8ab9f05

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/widgets/draggable-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 4911
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fac9e5f4-ac9c-11e8-b544-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382662 12288248
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4911
Md5:    c3c23585e0fe934529a56ece42f0dd2d
Sha1:   69274dbf2a7b30b53fef422e9e3a76e6c73708ab
Sha256: d50cf9d2854fafcf0615f8862731735076ece4f355dc245f666d01b3fa7e0667

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/position-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 2246
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fad331ae-ac9c-11e8-886d-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478913 12288250
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2246
Md5:    2ce45862d3739333ca22e3c346d2fea7
Sha1:   8ed495356f3c9f6c3723bf4e6955d10c56194e47
Sha256: d226388e573a4886b02437c27a1c09118194af130a93e6e563c752c8f3948fd3

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/widgets/resizable-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 5335
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fadd15d4-ac9c-11e8-8277-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541002 15729886
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5335
Md5:    e87eb6e8ea646d522093a2e498ac6a9d
Sha1:   34ef015eed101c7a6e885f5ec16d649217315a44
Sha256: 4b8b97c5de03e95f2f9ca042752fd4909f310a664a4d87ca7de45ded2d88e250

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/assets/vendor/jquery.ui/ui/widgets/dialog-min.js?v=1.12.1 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 3821
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fae21638-ac9c-11e8-a68b-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773820 12288252
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3821
Md5:    72424a4a30cd3e85eb45bafd81b8410f
Sha1:   e370e994978bc27c48b65ffcb2c446b1a07e27d3
Sha256: ce12bcb0ba48f3a2dd4066cb4533748db29254ab47613128bd122bfbcda7b696

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/affix.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:10 GMT
Content-Length: 1476
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:10 GMT
X-Request-ID: v-7460e2f6-b1f6-11e8-8c83-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680989 43025456
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1476
Md5:    6fe0d490294baa17edfede3097bc9eef
Sha1:   df34863c9443cea6201753615351a6b3f0e0f331
Sha256: 0233aad3c7edf05c7bfae7cfe4d3d6681cb3048a4cfca162b7e3794c4d3185c5

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/alert.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:10 GMT
Content-Length: 929
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:10 GMT
X-Request-ID: v-74615e98-b1f6-11e8-8a03-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119858 40011974
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   929
Md5:    e4c44afe0173f9f1c7ac7229b9197ad1
Sha1:   047b79a31c5968b6d8a2fe50f87f7771def4288f
Sha256: 969cdf8b7e05a7e3203a34eb443df49039c6115e0f63486df3e09424042ad441

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/button.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:10 GMT
Content-Length: 1355
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:10 GMT
X-Request-ID: v-747de68a-b1f6-11e8-bfd7-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382663 40011976
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1355
Md5:    38d707adcafac03f08f1dd5587073405
Sha1:   34726419584b00537e17ff290aca933c31bab86e
Sha256: c5b85a3d56b0bd83b4a72d1a06b7d0f23c7f06f7ae0c099735c72d6a73475b26

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/carousel.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:10 GMT
Content-Length: 2124
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:10 GMT
X-Request-ID: v-747e3248-b1f6-11e8-92b6-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478914 42271684
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2124
Md5:    055d23f8d4517de702f75972e9b216cb
Sha1:   cb917fab66bb96c80a6d258ed693526a083e3a53
Sha256: fb8d806a24533853e7b477baae5d426fd3fa7b2f1e9fb8d7fa6d0ec7e260389f

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/collapse.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1683
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-749a77be-b1f6-11e8-b9fb-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541003 42271686
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1683
Md5:    fb54ea2187c5aab4cd5ed26fb1104cbb
Sha1:   71021609fcd21699ee151db3996e356c6971c194
Sha256: 856cc66e5db34fe80c4c0a4cfc072fbd1bc21540380a894d3b9fcb1881a85e9a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/dropdown.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1533
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-749bdc62-b1f6-11e8-8618-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773821 43025458
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1533
Md5:    860cf6ecdaab2e6c12a680bb013f7808
Sha1:   7eb6b8fb60993468fcb51585def85cf7e7295c90
Sha256: 0126c4f882bc4fd13b55fd2f3e26e2a383f56e1dba953cd2a5dc258ab06f73fe

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/modal.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 2689
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74a04ab8-b1f6-11e8-8315-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680990 41059144
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2689
Md5:    ad8ce1ed52069d9883f89df18b07bb79
Sha1:   b24f8c5ad972af74c9220bf5a731dafd59b9ae3a
Sha256: e29bc58e510d786bcada49eb52605a33f28aaa31386153af86bcba479af8c736

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/tooltip.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 4511
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74a048ec-b1f6-11e8-ab12-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119859 40011978
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4511
Md5:    2d9154480a7231ea259d5f37e1775c10
Sha1:   f37565e43bcb2d55a2c79d48e1e2b76b9b8a1678
Sha256: ca7d6688dd8f83428c94a929de35980c5143ef3751b32d99d144f7e7e2b7975c

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/popover.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1172
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74a07880-b1f6-11e8-a086-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382664 41190299
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1172
Md5:    11828ef53072905911daec233b0fb999
Sha1:   257b05a14be8e806cd7f4e0d0d58936e972fb99a
Sha256: de5d4e4b937a536f5ef7d1d4cceba590d89ce9ed31e8a04ae34b302892271e87

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/scrollspy.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1501
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74a055d0-b1f6-11e8-a851-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478915 42861135
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1501
Md5:    847a375e5ab57c0e4b7241b8eb7f6ea8
Sha1:   59c6f4616a7fa3e611cc8e595470a54abce783a3
Sha256: e8c608af38dc6896a8327613e6279c117823beff5efef2b4a68aae0baac342bd

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/tab.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1320
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74b6ef66-b1f6-11e8-b86c-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541004 42271688
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1320
Md5:    ce5b78e7a37cbec22ee8d1ae07fe0351
Sha1:   ca6a14aea4e6118700e6a2a06c90c2127b0c20fe
Sha256: f98e796528d63e9c413217afdc29160a5feec8d8b2f8ecd373c75d8078c27e7a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/bootstrap/assets/javascripts/bootstrap/transition.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 731
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74b9aa4e-b1f6-11e8-accf-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773822 40666239
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   731
Md5:    8856e84f12f05645dab7e378524c6be1
Sha1:   48383631c077e6591540bf1668286980a0f4d242
Sha256: be6750bc333bc973539c9970ddf35100fd873cadc7cd583ad16a307705c246d0

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/js/vendor/additional-methods.min.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 5457
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74bde4ce-b1f6-11e8-9493-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382665 42436108
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5457
Md5:    1b3e89240b345cb9d439d5faa06b354b
Sha1:   405c6865533f84efd981410f2e62ac0e6226e4d8
Sha256: 61497736388ba73ba61d70abd78ad56732439683dc056a4a8d3c41bcdb0d59d6

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/js/vendor/readmore.min.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1766
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74bcfa78-b1f6-11e8-92fe-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680991 40011980
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 16
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1766
Md5:    ae237be96fcd84364810b0d8dca01ab6
Sha1:   4dd833a8da4989bea849b6adaa394bb7a97c5c03
Sha256: 01de082994c2bb89ebf8790c6278889d7c07c70d86c6a6c217de3b47eefa4f92

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/js/vendor/jquery.validate.min.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 7502
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74bdc354-b1f6-11e8-9091-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119860 41059146
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7502
Md5:    a658066e859d78ed3e8e9a6cc59ada04
Sha1:   ebafea8979cd5e63c4ab252364a3cf7653008457
Sha256: b1c168c4f75a6107b7e7b4e0b747a69203e3f9ec55996d9e7a9bf41daf4be8b2

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/js/scripts.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 2877
X-Content-Type-Options: nosniff
Last-Modified: Thu, 30 Aug 2018 17:30:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74bdc368-b1f6-11e8-9751-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478916 42861137
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2877
Md5:    4ce6db8a4fcb5a4ff3b645f0fcd70c70
Sha1:   e00d622d8c95fb45f71365a3b28a1dfcd617c242
Sha256: b5df39a590e11dde4f403c613714cb9b23aa3a706444794b5ea9be75ed00fd3a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmglobal/js/scripts.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 166
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74d38ef0-b1f6-11e8-a7df-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541005 41190303
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   166
Md5:    f0505e4a2c66e29b3b6c12dc64160235
Sha1:   714e21d7b3cc818aab71a594f94c362254e1e767
Sha256: 338d24fe00d81c538f3af74cec43d8d6d33aa7e8b8519d4c9ab2de651998cdd3

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/contrib/bootstrap/js/drupal.bootstrap.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 3837
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74d6a432-b1f6-11e8-bf29-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773823 43025460
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3837
Md5:    e03e34c9745f973582ef60d522d182a5
Sha1:   3d092577a747ca25febf3f9b571008583a5dc8ed
Sha256: 58891db5e30a6ccf59ed2b99f1c5410057b80ccdd5cfe228f668c7a62ffd3177

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/contrib/bootstrap/js/attributes.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 2771
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74d92f54-b1f6-11e8-aad1-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382666 37160254
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2771
Md5:    2368298c0d62627b30edbceffd998081
Sha1:   05c76ae3af5137a6ca70257c935014b840c5d045
Sha256: b01541fbaa8b4599a0f47a8066951b645a3db797389d913fa82c7e251b941fae

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/contrib/bootstrap/js/theme.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1244
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74da68a6-b1f6-11e8-b4ff-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680992 36766780
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1244
Md5:    ececc89eee1ff208c2897594cae7c115
Sha1:   4f734340c3aa6174383850ccc886dc0418f0ff19
Sha256: 240f844dfdc6457c10ba46585b668e4d357ef6d75dec6416959df870a9e358a7

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /core/misc/states.js?v=8.5.6 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:06 GMT
Content-Length: 2696
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:20:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:06 GMT
X-Request-ID: v-fb44b162-ac9c-11e8-ac24-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119861 12288262
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2696
Md5:    107644bf225a51672be9b3bd160b23e3
Sha1:   6350b8e0245ff400c506b7c351e3760d1977974a
Sha256: aedf126808af185f01ce3545b7ee2e4ab7741fa820b29e529e05342a89debb7c

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/contrib/bootstrap/js/misc/states.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 566
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74f7fa60-b1f6-11e8-b868-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478917 36439506
Age: 256124
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   566
Md5:    597cd7f57360d01c0a81390b44396013
Sha1:   5f0c67c42cb6ef5c25295b00d840688b9e73789a
Sha256: daf2dc181dbb35a85d73484fe2ab1062f153e12c53146839c16463314b33ae14

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /modules/contrib/webform/js/webform.states.js?v=8.5.6 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:06 GMT
Content-Length: 3131
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:06 GMT
X-Request-ID: v-fb4ae316-ac9c-11e8-8d5d-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541006 15761502
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3131
Md5:    ddfc7b8f677cb13a08306baad640fc6d
Sha1:   07234f45a5b4e83f4c628f42509333fd6d479c25
Sha256: 3af766e83f869a9cf5529bd948272a94ca518f0addfba6e820e178b034a9cf1f

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /modules/contrib/webform/modules/webform_bootstrap/js/webform_bootstrap.states.js?v=8.5.6 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:06 GMT
Content-Length: 371
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:06 GMT
X-Request-ID: v-fb50a62a-ac9c-11e8-beb7-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773824 12288264
Age: 844310
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   371
Md5:    e54f2d92d1fda4de8b14e8992cd37e68
Sha1:   474182007ff8b991295c51d1cd9c1602a67b828f
Sha256: 6b9ef2be2a92ee80ce4409882e9e70d1e74dbf0d545a4c7612b8d043174551b1

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/contrib/bootstrap/js/popover.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1334
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74f8a064-b1f6-11e8-983d-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382667 41059152
Age: 256124
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1334
Md5:    735c282694f36bc012d154fa744467dc
Sha1:   c17c56bbc8d127e43fce8a286300c510cb24c97d
Sha256: 9438135834f70e0ad628ee2793ec49eb5c0260b0d7c6c461a2dbacc3b51aa48f

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/contrib/bootstrap/js/tooltip.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 576
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74f8f500-b1f6-11e8-ba1b-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680993 37160256
Age: 256124
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   576
Md5:    5f72f4cde82580fdcd31ba072accf3b8
Sha1:   877f78afc17128c20407ff674488f013aaf2ef5f
Sha256: bdf6b1d8d0a97eea091512ee57b7f95fce49d6a53f2d919e1bbf6537a49cd9d3

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /libraries/superfish/superfish.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1530
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74f8f6ae-b1f6-11e8-9036-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119862 42861139
Age: 256124
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1530
Md5:    daaa24e2bae3ea81fc8d871acb0fa8bf
Sha1:   741155fbfcfb81f7dbd318abdea6ede1d2b40a02
Sha256: afdd74f8abd6198d9a8f58dd1535d450a80ae27d8bafa948af87cbe69a795984

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /libraries/superfish/jquery.hoverIntent.minified.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 715
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-74f8f456-b1f6-11e8-8024-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478918 41190305
Age: 256125
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   715
Md5:    8ffe54b4eb0f9cd410feeefcf29b59cc
Sha1:   3722ef7a749407aaea0e96e80eb70deec85cd23a
Sha256: 96a7175149479f3912fda54e8ae96f23c4c33ca264dc73fe858ac9b5dc259a6f

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /libraries/superfish/sftouchscreen.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 2033
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-750c204e-b1f6-11e8-a00b-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541007 41190307
Age: 256124
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2033
Md5:    f9d35867bd8a59064e52aec34632c9e6
Sha1:   076e1461813b8b3e1137e4438644827a02075ed5
Sha256: 625318af1237dde8e4474ca246bb7f88b573b4642b85e543896090fcdacc2b6d

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /libraries/superfish/sfsmallscreen.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 4678
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-7513e266-b1f6-11e8-87eb-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773825 36439508
Age: 256124
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4678
Md5:    eab9d9d9af3f966461ed8e3b0cac8779
Sha1:   d3a1b3cc064dae94ab9ee83f39db3f90d34a3c71
Sha256: 98363c79b168784b6e3e8799dc6de9e69a134b4fa2e3586f5f87ad8fb31af589

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /libraries/superfish/supposition.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 1269
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-7515a72c-b1f6-11e8-abc3-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382668 37160258
Age: 256124
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1269
Md5:    a3e75be8f1854df2a889109191214c0d
Sha1:   a7021d543cab5198febde92d8fbb8942f785e4fa
Sha256: 297814eee77753690f2f1fbb7d861cdbe7ca20e220e246c33b7071e6a8b40cb0

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /libraries/superfish/supersubs.js?pen8lr HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 06 Sep 2018 17:01:11 GMT
Content-Length: 2063
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 20 Sep 2018 17:01:11 GMT
X-Request-ID: v-7515a6f0-b1f6-11e8-8c11-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680994 42861141
Age: 256124
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 17
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2063
Md5:    744c9fa8ce82eb46caff82eb413654ca
Sha1:   59feb956430a85a7ad91778de88ec787afade1e4
Sha256: 875c9241868de0f075e488d216d42ec3828437f7810e1cc241f2238d3b0521b8

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /modules/contrib/superfish/js/superfish.js?v=2.0 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:06 GMT
Content-Length: 483
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:06 GMT
X-Request-ID: v-fb7d2da8-ac9c-11e8-b620-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119863 12288268
Age: 844309
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 32
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   483
Md5:    de633c0c4894822806990252cd804378
Sha1:   6cc81f91e5547a30db015d037011fe66d8dd75ee
Sha256: 4d1db5c4d758d61bd4c94292320ad324ac1daf79763b69e00dc63856cde86c68

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmglobal/logo.svg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 6470
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fac67f90-ac9c-11e8-afd9-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541008 15729884
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 23
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   6470
Md5:    ecc4d1a8f546d9e14cfdfcc7d8e7c92d
Sha1:   27b14e046c37f1f56c096eadbfd56e3df1e8ee54
Sha256: 060806f3b906fa061033593518118552ed727cf1154af09586c541d4b261917c

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/images/switcher.svg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 3185
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fac6b0e6-ac9c-11e8-b4fa-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773826 14090452
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 23
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   3185
Md5:    724825efb888d80b4a47412e401c7990
Sha1:   83e7d651e354ea752a019892e716c2aa4c24c80b
Sha256: 55c1dbf4212d30fae0ed03f341d27bef2802b0bd13159686c8c6066af2f57fcd

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/images/search.svg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 924
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fab70af6-ac9c-11e8-9c5c-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382669 14090450
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 23
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   924
Md5:    d3244e746c02b9a189f62dba1632d270
Sha1:   bb49b8f929a481d2e562b95b44deaa553f3da146
Sha256: fc23a806b8687ca5d0bc09b9b364a45fb65a7a8c493e7e29319ecb4036d46c5e

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/images/gw-logo-white.png HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:06 GMT
Content-Length: 5249
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:06 GMT
X-Request-ID: v-fb8bdcf4-ac9c-11e8-a964-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382670 14090472
Age: 844309
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 26
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 120 x 85, 8-bit/color RGBA, non-interlaced
Size:   5249
Md5:    8647dc546b779673738fcae073afa53b
Sha1:   50a1bd59d7a163c6625418606578e2b117dfd840
Sha256: bea2018310543c403283a451186467205dc23e3d17d6f5aff373e45a0c490703

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /sites/gwpharm.com/files/images/2018-07/GW_Pharm_CTA_HCP.jpg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:06 GMT
Content-Length: 43596
X-Content-Type-Options: nosniff
Last-Modified: Mon, 30 Jul 2018 20:00:33 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:06 GMT
X-Request-ID: v-fb8211a6-ac9c-11e8-8382-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119864 15761506
Age: 844309
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 24
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   43596
Md5:    a5a70eee13f90a9349f5f20ca1b7870c
Sha1:   28ca1379acc71abc36cd92e385ab2044c6583ad4
Sha256: 2148c863daed5a0cb2a47e2f7dc7458602c66b7a81d2723e1722cea4ef0afe5f

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /sites/gwpharm.com/files/styles/desktop_banner_image/public/banner-images/2018-07/Homepage_Banner_v2.jpg?h=72e58512&itok=3my1bVHU HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 78946
X-Content-Type-Options: nosniff
Last-Modified: Wed, 15 Aug 2018 18:53:09 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fabf0094-ac9c-11e8-b027-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478919 13372072
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 21
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   78946
Md5:    c92e7b03b8901e2c00345ccef34d2467
Sha1:   e01061e273787102b1e7e085ea5cf750deed34dc
Sha256: d629b53c2506d4ab45c6b09bc243c9e73b0f17ef4b34da7911f4d706ea62fc4a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /sites/gwpharm.com/files/images/2018-07/GW_Home_Patients_Caregivers.jpg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:06 GMT
Content-Length: 93957
X-Content-Type-Options: nosniff
Last-Modified: Thu, 26 Jul 2018 17:57:07 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:06 GMT
X-Request-ID: v-fb80512c-ac9c-11e8-bf42-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53680995 13372088
Age: 844309
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 24
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   93957
Md5:    8ff975100afcfe7786b6109de7101ae0
Sha1:   fabcf5b7697cb634839a0742c38f051640e9025a
Sha256: 4acede13e3e8637c7cc116d55f4a22bd805d52fb09ffc04e5ced034163805a78

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/images/down.svg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/themes/custom/gwpharmuk/css/style.css?pen8lr

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:05 GMT
Content-Length: 391
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:05 GMT
X-Request-ID: v-fac17ad6-ac9c-11e8-965f-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382671 15761496
Age: 844311
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 23
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   391
Md5:    0eb425307ec15cd1fda70a393037074b
Sha1:   d8a4cecc2a1e69f811813374fc481346a4ef9c4e
Sha256: 96abf67d3ebcc5eb7bddfa7ff8b8b69055f7523552d45984966aea9be35f8219

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/images/right-arrow.svg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/themes/custom/gwpharmuk/css/style.css?pen8lr

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:07 GMT
Content-Length: 556
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:07 GMT
X-Request-ID: v-fb9fcebc-ac9c-11e8-83ce-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50119865 15761508
Age: 844309
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 23
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   556
Md5:    eab53f862d48bcbb52ece4cb63343d01
Sha1:   cd3e06f22de6451e2a6fdba8c90d3d67a902d55b
Sha256: 24da31e4bc827fd3a68db25721aac28819ba93d8e1334574dc1de9c88e79a6d2

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/images/footer-bg.jpg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/themes/custom/gwpharmuk/css/style.css?pen8lr

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:07 GMT
Content-Length: 23041
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:07 GMT
X-Request-ID: v-fb9b4f9a-ac9c-11e8-921a-066eebb87c48
X-AH-Environment: dev
X-Varnish: 52478920 14090474
Age: 844309
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 27
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   23041
Md5:    3d28a7ac6a4da414d167821b8e1e6cb9
Sha1:   ac7ab59420b5153ab613bd8eff0c3a3c5ed0b01e
Sha256: 818a15092334462e2ad075a8a47e2824a35c3930159de1b11e7c76efa3601fd7

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmglobal/favicon.ico HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Thu, 30 Aug 2018 06:30:25 GMT
Content-Length: 15086
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 06:30:25 GMT
X-Request-ID: v-2e0e9f24-ac1e-11e8-9aed-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382672 1147405
Age: 898771
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 26
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  MS Windows icon resource - 3 icons, 48x48, 256-colors
Size:   15086
Md5:    9dd66c16bf0e7f21f411723281c124b3
Sha1:   10c4f9dfdae769c7d95f2aab0bdcdaa952aec433
Sha256: a981bf1cda500cb417da4381d04bba6c2feb431fcfd23c4b15085c44bcf2879e

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /themes/custom/gwpharmuk/fonts/greenwich.woff?41213416 HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/themes/custom/gwpharmuk/css/greenwich-icons.css?pen8lr

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
                                        
Server: nginx
Date: Wed, 05 Sep 2018 13:23:56 GMT
Content-Length: 4748
X-Content-Type-Options: nosniff
Last-Modified: Fri, 17 Aug 2018 14:21:00 GMT
Cache-Control: max-age=1209600
Expires: Wed, 19 Sep 2018 13:23:56 GMT
X-Request-ID: v-f116008a-b10e-11e8-bb0e-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50382673 24282855
Age: 355560
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 4
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   4748
Md5:    44c9699e08af60da9ffe35257b5f9fd1
Sha1:   a9ec518690bf606ad4c09103c2e8e47d01c90820
Sha256: 08d21e42ce45c2b4a9dc06ae2d943cd4b93460a9f822d257dc702f98fff1c5a9

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 09 Sep 2018 16:09:57 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    2ce140a6966a6598fbdfafb09be4e278
Sha1:   05b8e104bfc8c6b1956123eadaf8e61d600cb954
Sha256: 34509403bbf56ea74c4c7c20bf7c16915d2f394f6ac7c24ccb004ffa32383cd7
                                        
                                            GET /sites/gwpharm.com/files/images/2018-07/GW_Home_About_us.jpg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:06 GMT
Content-Length: 103879
X-Content-Type-Options: nosniff
Last-Modified: Thu, 26 Jul 2018 17:57:14 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:06 GMT
X-Request-ID: v-fb87be76-ac9c-11e8-884c-066eebb87c48
X-AH-Environment: dev
X-Varnish: 50541009 12288270
Age: 844309
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 24
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   103879
Md5:    f2c11c1c965be60cf3864d2b228f5672
Sha1:   7704cc794c51c952b74b8476bbf3481c5116754e
Sha256: 64a80f06a0766ae576f42f1910f6f8e509246b0dd82aeab9380a590c0954946a

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /sites/gwpharm.com/files/2018-07/quote.jpg HTTP/1.1 
Host: gwpharm.dyndns.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gwpharm.dyndns.org/

                                         
                                         52.49.209.176
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 30 Aug 2018 21:38:06 GMT
Content-Length: 168928
X-Content-Type-Options: nosniff
Last-Modified: Wed, 11 Jul 2018 21:42:57 GMT
Cache-Control: max-age=1209600
Expires: Thu, 13 Sep 2018 21:38:06 GMT
X-Request-ID: v-fb87b9d0-ac9c-11e8-ad04-066eebb87c48
X-AH-Environment: dev
X-Varnish: 53773827 13862092
Age: 844309
Via: 1.1 varnish (Varnish/5.2)
X-Cache: HIT
X-Cache-Hits: 24
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   168928
Md5:    bf2b22ff2e9edb79c5ff677edb731f1c
Sha1:   04e8ddbe9671bec7743661c1a78d7358b3b2285e
Sha256: 4e23acdb42b05930c83fb8ec6d61614a6950be1b487d3597b70cba7f86a21cfe

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /s/robotoslab/v7/BngMUXZYTXPIvIBgJJSb6ufN5qM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto+Slab:400,700|Roboto:300,400,700
Origin: http://gwpharm.dyndns.org

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 21700
Date: Tue, 28 Aug 2018 09:35:48 GMT
Expires: Wed, 28 Aug 2019 09:35:48 GMT
Last-Modified: Wed, 11 Oct 2017 18:31:32 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1060450
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   21700
Md5:    a33f5bf82e263ebbf148b6518563a8a6
Sha1:   a75088a46d79d4d04149b931c64aac5e030d69fa
Sha256: f2c510c36ca228b54b4f35a1fdfa6d439432e801ad9d7d7c625e16af8a7c2438
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto+Slab:400,700|Roboto:300,400,700
Origin: http://gwpharm.dyndns.org

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19824
Date: Tue, 28 Aug 2018 20:12:16 GMT
Expires: Wed, 28 Aug 2019 20:12:16 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:56 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1022262
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   19824
Md5:    bafb105baeb22d965c70fe52ba6b49d9
Sha1:   934014cc9bbe5883542be756b3146c05844b254f
Sha256: 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
                                        
                                            GET /s/robotoslab/v7/BngRUXZYTXPIvIBgJJSb6u92w7CGwRs.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto+Slab:400,700|Roboto:300,400,700
Origin: http://gwpharm.dyndns.org

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 21868
Date: Thu, 16 Aug 2018 19:06:50 GMT
Expires: Fri, 16 Aug 2019 19:06:50 GMT
Last-Modified: Wed, 11 Oct 2017 18:27:48 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2062988
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   21868
Md5:    d7eb60ce429506ac0f00c5773b97d2c6
Sha1:   719d1c7091277b72d3ab6b463f1c6aa083371e3e
Sha256: b7ac25c862f46b9f7053e51bc4ab6440e2dbad60d1121d8276a42e2b6667a053
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto+Slab:400,700|Roboto:300,400,700
Origin: http://gwpharm.dyndns.org

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19888
Date: Sun, 26 Aug 2018 01:34:26 GMT
Expires: Mon, 26 Aug 2019 01:34:26 GMT
Last-Modified: Mon, 16 Oct 2017 17:33:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1262132
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   19888
Md5:    cf6613d1adf490972c557a8e318e0868
Sha1:   b2198c3fc1c72646d372f63e135e70ba2c9fed8e
Sha256: 468e579fe1210fa55525b1c470ed2d1958404512a2dd4fb972cac5ce0ff00b1f
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto+Slab:400,700|Roboto:300,400,700
Origin: http://gwpharm.dyndns.org

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19916
Date: Sat, 25 Aug 2018 03:20:04 GMT
Expires: Sun, 25 Aug 2019 03:20:04 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1342194
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   19916
Md5:    a1471d1d6431c893582a5f6a250db3f9
Sha1:   ff5673d89e6c2893d24c87bc9786c632290e150e
Sha256: 3ab30e780c8b0bcc4998b838a5b30c3bfe28edead312906dc3c12271fae0699a