Overview

URL https://haesicubelk1984.blogspot.co.at/
IP216.58.207.193
ASNAS15169 Google Inc.
Location United States
Report completed2019-06-19 15:58:39 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2019-06-19 15:58:04 CEST 2 Client IP  47.88.103.239 ET INFO HTTP Request to a *.top domain


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-06-19 2 finanso.top/it.html Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 216.58.207.193

Date UQ / IDS / BL URL IP
2019-07-01 09:19:18 +0200
0 - 0 - 1 https://bartuatenbe1974.blogspot.pt/ 216.58.207.193
2019-07-01 08:24:54 +0200
0 - 0 - 1 pacarama1983.blogspot.com 216.58.207.193
2019-07-01 07:21:49 +0200
0 - 0 - 0 fijisharkdiving.blogspot.com/2018/10/my-fiji- (...) 216.58.207.193
2019-06-30 14:13:50 +0200
0 - 0 - 0 https://lh3.googleusercontent.com/xWzkoxzGSJv (...) 216.58.207.193
2019-06-30 01:24:08 +0200
0 - 0 - 0 2.bp.blogspot.com/-tb07KzQDFM0/VeSjpIxuE1I/AA (...) 216.58.207.193
2019-06-30 00:58:47 +0200
0 - 0 - 0 https://fahadsoror.blogspot.com/ 216.58.207.193
2019-06-30 00:44:55 +0200
0 - 0 - 0 https://pornzxz.blogspot.com/ 216.58.207.193
2019-06-27 09:29:25 +0200
0 - 0 - 1 https://quesappfovo1987.blogspot.cz/ 216.58.207.193
2019-06-27 09:24:34 +0200
0 - 1 - 1 cofdestticgast1980.blogspot.si 216.58.207.193
2019-06-26 21:03:28 +0200
0 - 0 - 0 yt3.ggpht.com/-VnzCZ53QdNc/AAAAAAAAAAI/AAAAAA (...) 216.58.207.193

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2019-07-01 11:14:59 +0200
0 - 0 - 0 https://docs.google.com/forms/d/e/1FAIpQLSfZp (...) 216.58.207.206
2019-07-01 09:39:24 +0200
0 - 0 - 1 bartuatenbe1974.blogspot.pt 216.58.211.1
2019-07-01 09:33:26 +0200
0 - 0 - 0 https://movieok4k.blogspot.com/2019/06/articl (...) 216.58.211.1
2019-07-01 09:28:48 +0200
0 - 0 - 1 bartuatenbe1974.blogspot.pt/ 216.58.211.1
2019-07-01 09:19:18 +0200
0 - 0 - 1 https://bartuatenbe1974.blogspot.pt/ 216.58.207.193
2019-07-01 08:47:18 +0200
0 - 0 - 1 https://elmulrapan1981.blogspot.ca/ 216.58.207.225
2019-07-01 08:24:54 +0200
0 - 0 - 1 pacarama1983.blogspot.com 216.58.207.193
2019-07-01 08:19:22 +0200
0 - 1 - 0 mycricketlive.live 172.217.22.179
2019-07-01 07:21:49 +0200
0 - 0 - 0 fijisharkdiving.blogspot.com/2018/10/my-fiji- (...) 216.58.207.193
2019-07-01 06:37:59 +0200
0 - 0 - 0 ta.wow-auto-forms.appspot.com/bower_component (...) 216.58.211.148

No other reports on domain: haesicubelk1984.blogspot.co.at



JavaScript

Executed Scripts (40)


Executed Evals (2)

#1 JavaScript::Eval (size: 74, repeated: 1) - SHA256: a23001dc0a49b03a2c257d85dec6791ab3b81ab3e971cb6e0d38ae1be1473100

                                        (function() {
    return function(a) {
        a.set("dimension1", a.get("clientId"))
    }
})();
                                    

#2 JavaScript::Eval (size: 793, repeated: 1) - SHA256: 2bbb905e70293579fb6eaa902fef93c8ec291dc422bb8ea9aaa53efa4254d040

                                        (function() {
    return function(b) {
        if ("undefined" === typeof b.get("OWOXBIStreaming")) {
            var f = b.get("sendHitTask"),
                h = function() {
                    function d(c) {
                        var a = !1;
                        try {
                            document.createElement("img").src = e(!0) + "?" + c, a = !0
                        } catch (k) {}
                        return a
                    }

                    function e(c) {
                        var a = "https://google-analytics.bi.owox.com/collect";
                        c || (a += "?tid\x3d" + encodeURIComponent(b.get("trackingId")));
                        return a
                    }
                    return {
                        send: function(c) {
                            var a;
                            if (!(a = 2036 >= c.length && d(c))) {
                                a = !1;
                                try {
                                    a = navigator.sendBeacon && navigator.sendBeacon(e(), c)
                                } catch (g) {}
                            }
                            if (!a) {
                                a = !1;
                                var b;
                                try {
                                    window.XMLHttpRequest && "withCredentials" in (b = new XMLHttpRequest) && (b.open("POST", e(), !0), b.setRequestHeader("Content-Type", "text/plain"), b.send(c), a = !0)
                                } catch (g) {}
                            }
                            return a || d(c)
                        }
                    }
                }();
            b.set("sendHitTask", function(d) {
                f(d);
                h.send(d.get("hitPayload"));
                b.set("OWOXBIStreaming", !0)
            })
        }
    }
})();
                                    

Executed Writes (0)



HTTP Transactions (95)


Request Response
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 19 Jun 2019 13:58:01 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0bd7a4ff0b83a1473d4540fca711d928
Sha1:   435280c34259673ae643d9aa6224220500904b46
Sha256: 99b2a2e1ad9e912b24a121112399c4e60c910a787bfe8bce0489024e36d89d35
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 19 Jun 2019 13:58:01 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 19 Jun 2019 13:58:01 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   657
Md5:    2dede737945f14ac9bee19b9d88c0d57
Sha1:   15fe4d446fb4104b81ed2ee22f54ba9628933ca5
Sha256: 14b3cadb3f39b2698e03a7e1cbbae91fee103a5ba2a95f211e06dc4fdd129b8b
                                        
                                            GET / HTTP/1.1 
Host: haesicubelk1984.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.207.193
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Wed, 19 Jun 2019 13:58:02 GMT
Date: Wed, 19 Jun 2019 13:58:02 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 10 Jun 2019 14:38:53 GMT
Etag: W/"887b8ad054c2f1b6bd57027b6d52731b4ba1ab53a6c56a3f27e78d60da3ef915"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   14996
Md5:    02087ac724e9d0e4fee43066965c5cf4
Sha1:   9f5cd71b22a20bdf6f2019b18357b43416ce2c63
Sha256: 9205c90628d2951621b3a541952ebf61a66272a1556f9e36e54695492a559fe8
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 19 Jun 2019 13:58:02 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    dfd22cf4e26f939936fc7e96516ae244
Sha1:   94e1ba018bfea7fec1d2176f150b8a894be0fd1b
Sha256: 2256f8d487ec586d33671d480c98390a101544e1832f91ea4845f331fee20e03
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: haesicubelk1984.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.207.193
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
                                        
Expires: Wed, 19 Jun 2019 13:58:02 GMT
Date: Wed, 19 Jun 2019 13:58:02 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 10 Jun 2019 14:38:53 GMT
Etag: W/"887b8ad054c2f1b6bd57027b6d52731b4ba1ab53a6c56a3f27e78d60da3ef915"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   412
Md5:    23e5eb1119a7f4d2ab629ccd77a5f84b
Sha1:   f7a5a792e41005ba918551e4416c4bf639ec80ec
Sha256: a0c8d4831f453c316840a502432719f7f7d833bea4a9b59f548e4a1bc2bf0c8a
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 19 Jun 2019 13:58:02 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    df46e3083407fed64d8ba5aa209593d5
Sha1:   501ef52f445a644d44d5e0c069cc3dd454e7b942
Sha256: c12c43b45e58cadb2b0cb1de9879b700e9c452005eb9d99eccf43c91d6284e96
                                        
                                            GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://haesicubelk1984.blogspot.com/

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4096
Date: Wed, 19 Jun 2019 13:58:02 GMT
Expires: Wed, 19 Jun 2019 13:58:02 GMT
Last-Modified: Fri, 12 May 2017 18:45:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=0
Age: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   4096
Md5:    6be7bb32519d4f901aef3cf3ebd48299
Sha1:   5fc67ff7b82dcea664ce13cdef7965554f51cd9f
Sha256: 83dd577df59e9c5fd07b37fcc5c56764503d480de1dd10b783fc8bceef5ade45
                                        
                                            GET /static/v1/widgets/4078559275-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://haesicubelk1984.blogspot.com/

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 55442
Date: Fri, 14 Jun 2019 00:38:48 GMT
Expires: Sat, 13 Jun 2020 00:38:48 GMT
Last-Modified: Thu, 13 Jun 2019 23:25:32 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 479954
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   55442
Md5:    4aa5e6cd90bf9f8e133fcc47bf5aa555
Sha1:   6cd1436fbf3439c13acc7cf9f3b3705a56e9aae3
Sha256: 43bf1e57f931bcd0b2aa5cb4324c69653f76f846b25661f45f8520a08c047a05
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: haesicubelk1984.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://haesicubelk1984.blogspot.com/

                                         
                                         216.58.207.193
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2026
Date: Wed, 19 Jun 2019 13:58:02 GMT
Expires: Wed, 26 Jun 2019 13:58:02 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 19 Jun 2019 09:22:23 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
                                        
                                            GET /blogblog/data/res/1727954297-indie_compiled.js HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://haesicubelk1984.blogspot.com/

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 45712
Date: Tue, 18 Jun 2019 00:56:19 GMT
Expires: Tue, 25 Jun 2019 00:56:19 GMT
Last-Modified: Tue, 18 Jun 2019 00:22:33 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=604800
Age: 133303
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   45712
Md5:    c1cab86940548e04576b26bd86f7276f
Sha1:   891eea0b7fc6b98d8df1a80c72e1e546d57e9007
Sha256: c0eac955fa920df07016751a8e62ce9e6e44ff0a6be6d6fed474996f599cf95b
                                        
                                            GET /image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1200 HTTP/1.1 
Host: themes.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://haesicubelk1984.blogspot.com/

                                         
                                         172.217.20.33
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v1"
Expires: Thu, 20 Jun 2019 13:58:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="unnamed.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 19 Jun 2019 13:58:02 GMT
Server: fife
Content-Length: 130677
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   130677
Md5:    536a3d403dfbd3b3d8232f0824a02ef6
Sha1:   448de1e7a6d902bffd115595148f2c5d21966584
Sha256: 000696685457be475efc85326198b0228d001d408e03e1e6eca424132886551b
                                        
                                            GET /s/roboto/v19/KFOlCnqEu92Fr1MmWUlfBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://haesicubelk1984.blogspot.com/
Origin: https://haesicubelk1984.blogspot.com

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 20356
Date: Sun, 02 Jun 2019 21:53:56 GMT
Expires: Mon, 01 Jun 2020 21:53:56 GMT
Last-Modified: Mon, 25 Mar 2019 20:13:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 1440247
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   20356
Md5:    adcde98f1d584de52060ad7b16373da3
Sha1:   0a9b76d81989a7a45336ebd7b48ed25803f344b9
Sha256: 806ea46c426af8fc24e5cf42a210228739696933d36299eb28aee64f69fc71f1
                                        
                                            GET /s/roboto/v19/KFOmCnqEu92Fr1Mu4mxM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://haesicubelk1984.blogspot.com/
Origin: https://haesicubelk1984.blogspot.com

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 20268
Date: Sun, 02 Jun 2019 09:09:47 GMT
Expires: Mon, 01 Jun 2020 09:09:47 GMT
Last-Modified: Mon, 25 Mar 2019 20:12:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 1486096
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   20268
Md5:    60fa3c0614b8fb2f394fa29944c21540
Sha1:   42c8ae79841c592a26633f10ee9a26c75bcf9273
Sha256: c1dc87f99c7ff228806117d58f085c6c573057fa237228081802b7d8d3cf7684
                                        
                                            GET /zFdxGE77vvD2w5xHy6jkVuElKv-U9_9qLkRYK8OnbDeJPtjSZ82UPq5w6hJ-SA=w35 HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://haesicubelk1984.blogspot.com/

                                         
                                         172.217.20.33
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v1"
Expires: Thu, 20 Jun 2019 00:13:22 GMT
Content-Disposition: inline;filename="unnamed.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 19 Jun 2019 12:13:30 GMT
Server: fife
Content-Length: 1766
X-XSS-Protection: 0
Age: 6273
Cache-Control: public, max-age=86400, no-transform
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  PNG image, 35 x 35, 8-bit/color RGBA, non-interlaced
Size:   1766
Md5:    8205ac0b0f0a29bfedac1bcb4e79f93a
Sha1:   bc2b3e117d5e25a99d522edf53c8d294441a35cf
Sha256: 0963eb43c3d252b47c972245961dc22cd6d8e288551c68be356147e977c6b84f
                                        
                                            GET /it.html HTTP/1.1 
Host: finanso.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         47.88.103.239
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.6.2
Date: Wed, 19 Jun 2019 13:58:04 GMT
Last-Modified: Wed, 19 Jun 2019 13:50:02 GMT
Transfer-Encoding: chunked
Connection: close
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   148
Md5:    a139067fc76baeaafea0a4339808627a
Sha1:   4af43ff7b73b8f41dd301e7f688a70e3fb17c00b
Sha256: d71caaf168ddcc0112ce14d79baa350e481a27232d5a411155e9dece0e23ae98

Alerts:
  Blacklists:
    - fortinet: Phishing
  IDS:
    - ET INFO HTTP Request to a *.top domain
                                        
                                            GET /tracker?offer_id=3464&aff_id=225&u=1179:100 HTTP/1.1 
Host: vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.31.86.46
HTTP/1.1 302 Found
Content-Type: text/plain; charset=utf-8
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684; expires=Thu, 18-Jun-20 13:58:04 GMT; path=/; domain=.joyjew.club; HttpOnly
Access-Control-Allow-Methods: GET, POST
Access-Control-Allow-Origin: *
Location: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Server: cloudflare
CF-RAY: 4e9604061a22cb0c-ARN


--- Additional Info ---
                                        
                                            GET /?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1 HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 17 Apr 2019 09:40:13 GMT
Server: cloudflare
CF-RAY: 4e9604070e757640-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20526
Md5:    25a2f54a55f2f391018dc0b9157bcee3
Sha1:   556202d4fd8ea15bc2b7596482ef3b0661325a9c
Sha256: b76d065b4495e44adcd62cf1da76dd431a8206c82fc5d8603777627a6ca817e4
                                        
                                            GET /css/style.css HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 5913
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "9a83-5859cc3709069-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407ccf3cad0-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5913
Md5:    ef0cd5aed4dc0f2d31d94b6db9b7eb1a
Sha1:   361fb1c7218aa948f72f52d38038a184a5765449
Sha256: be51fccc27b037fa52565a4cf1aa49638d0adc80506aa88cf2fee1f7307c0fdc
                                        
                                            GET /css/form-css.css HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 1515
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "1ccf-5859cc3709069-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407cef47640-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1515
Md5:    9890680e2d4caf4b0464d6357e75499c
Sha1:   abeb33eeaf28ef00a7adfd503a6fb2f6ea6f0306
Sha256: 93f0deb7f1848ab3fdca3147804193a325c6f4de9c241ef1dfaa344d7fa46f37
                                        
                                            GET /css/reset.css HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 592
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "4a8-5859cc3709069-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407ca3f769a-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   592
Md5:    854216fe127b48e66297d90cb4c8cb11
Sha1:   d5aa6dac7c113f59859ef844423bf1489fc51ae5
Sha256: 812ba7c4896a7a4f92881e676b1bff20e621d4071249b50c483dd1bcaf96e3b5
                                        
                                            GET /css/flag-icon.min.css HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 3313
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "9100-5859cc3709069-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407ce96cb0c-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3313
Md5:    3c94529b34c82aa69328d9abc1995a62
Sha1:   0878f8e8a53d48cd657823a2f44e2dc86ebf7374
Sha256: 05428010286a97b6734fe7a9f1985773afb7ac1886ade67a655ebfd6f8e9e795
                                        
                                            GET /css/font-awesome.min.css HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 6855
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "8dcf-5859cc3709069-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407cdebcb08-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6855
Md5:    32711c6624c454b4d352ea267b3c5fee
Sha1:   ecc4f206c9f72bfb10ac07f30c22b5733d92af93
Sha256: 177774f027158bec0c35f4369030ece00410bb73ce876af4d088254c115182ee
                                        
                                            GET /css/bootstrap.min.css HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 21386
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "248ed-5859cc37080c9-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407cb657670-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   21386
Md5:    e344fba48469b52f668658b1e5ad48c6
Sha1:   2e19c4a7c172482bd643a5ee9e759407c599b851
Sha256: a4a8979b8616b6685054eb66fddc8258c36e25613d4639644598e7d337d5baaf
                                        
                                            GET /css/form-css-custom.css HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 1285
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "150f-5859cc3709069-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407ed37cad0-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1285
Md5:    e43a4db01f29f087319b260c6063a288
Sha1:   ef30e00f7492208fdae585e1a57f06b82ed6d28d
Sha256: b99552ad133d792c02f72d41ff15f4b59f729e7af0ac7d061e4d517bdb430d82
                                        
                                            GET /images/testimonial-1.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 3240
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "ca8-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407ea5a769a-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   3240
Md5:    e6ae945ac1db2f144eb9c1d3c6d4ab84
Sha1:   d2956ad94ceef8b6a6a88395a50291788ae35d3e
Sha256: e10da011124c6038cab89c8eee389debce70ee724f9539ca0c9f9305269f9aaa
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 5619
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "15f3-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407ef157640-ARN


--- Additional Info ---
Magic:  PNG image, 364 x 38, 8-bit/color RGBA, non-interlaced
Size:   5619
Md5:    f454c65307262a12887a9ca13828e994
Sha1:   254d4468488a52f0928f9d5ff4af372d01d694df
Sha256: 8f62e5b42279de5ac04b03ae515d1319e90ca42efc94e5e4a8a15545fc4fc887
                                        
                                            GET /images/testimonial-3.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 4029
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "fbd-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407fe49cb08-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   4029
Md5:    2425418fe19eeba1c02c008c46c0c044
Sha1:   7b066997b125a45ce21b322758945491f798eba4
Sha256: b50ebf10355cf0baed11d7f01a2615ba15b49820134fe96c46c3e10539db8767
                                        
                                            GET /images/testimonial-2.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 3645
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "e3d-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407fefacb0c-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   3645
Md5:    d9f65f0b77e6939030cb38d0778db838
Sha1:   498dfe292ba9e79add7b5004ba00b641ede5b3bf
Sha256: 46e65cc4a14f82dc08bb5a89fa3e85f9d7a3ee691bd50c78440b802f56d66dc0
                                        
                                            GET /images/testimonial-4.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 3322
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "cfa-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407fb787670-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   3322
Md5:    4a33da169eeb12ae3629041e4cf1e3b7
Sha1:   d6271b0b798a438bbc558a1ac18c3cfad9f5f94f
Sha256: 8d6eb3ce6daa6e8c2451e2dc601d63b524cd3d32e7e4f9736bd5278513c791cd
                                        
                                            GET /css/css.css HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/style.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 937
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "38c7-5859cc3709069-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e960407fd83cad0-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   937
Md5:    dce01070d3f74e393084ac339b9c81c6
Sha1:   727e3a3e2e6b67594d18e1f29557c2b0bfb659c3
Sha256: 5e2911b0d5882ce7ef18dab975616146f64c65d28a5dfb707a8dfda735ad4f32
                                        
                                            GET /images/testimonial-5.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 3107
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "c23-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604080a69769a-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   3107
Md5:    9b41b52aed7f27992f060f30cdd64777
Sha1:   10dc960f59cd502ce24ef91be94bfee2c12c79f6
Sha256: 04a816b7da7fb5148a1c97d1d56f804880c4d88f0d7677ae8b557594d0d03f54
                                        
                                            GET /images/testimonial-6.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 3924
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "f54-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604080f217640-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   3924
Md5:    67da33901451aae727d4d8b0d44db500
Sha1:   0dcebf7884cb5b14e790bcb36f0966499a12f8b6
Sha256: d270ee37727a7e8d9796db24c7a784bca91f5411d699c5416fa0bb59874e0685
                                        
                                            GET /images/testimonial-7.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 4095
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "fff-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604081ea8cb08-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   4095
Md5:    71f4d2c8f29977ab5f3176e501ce79b1
Sha1:   1125d5da304fe084522e3fd9deab2bca234219bb
Sha256: 717ec72cdd462e1c80b35b109012a3f824db1ed64fb3e10a93253b3883439526
                                        
                                            GET /images/man.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 32110
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "7d6e-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604081df9cad0-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   32110
Md5:    894bd13b69799606e2b6317de48bc8c1
Sha1:   666f899991c2d4809a48c76df27380a461115f33
Sha256: 1abbf3dd63827ef487c1daa6d4a1c4f8fe12608c0c04e57317a5243d29745f6f
                                        
                                            GET /images/testimonial-9.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 3896
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "f38-5859cc3713c49"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604081b8c7670-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   3896
Md5:    cee1dbd67259158be0cf95c0ee41cebf
Sha1:   15aa78a25ab7b824f54dc0506104415ab197e8d8
Sha256: 35ca68aa504d1db1ef312210a0a44b2f4234f7eace8a973b9ba09749a036a745
                                        
                                            GET /images/sign.png HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 3251
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "cb3-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604081a7c769a-ARN


--- Additional Info ---
Magic:  PNG image, 187 x 47, 8-bit/color RGBA, non-interlaced
Size:   3251
Md5:    e245fe08c9f7e0b653984d15195ffda5
Sha1:   913aa1db3144702ba6920d2ff1fc2e77ba74e8c7
Sha256: 2ea22eeb3ff67e953e770d7349a111529ac3a27b2830d090a3cf62a460470ce2
                                        
                                            GET /images/testimonial-8.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Content-Length: 4118
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "1016-5859cc3713c49"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604081f4ecb0c-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   4118
Md5:    72c9af7e527e09f92e9c3652b1b0b844
Sha1:   afba686eef4b4142bf6f54a2dc4a944f957bd512
Sha256: 28781c0c715f33bba9c4d508df89aef0aca7fa707196e122ed5e917dd5966b1b
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Wed, 19 Jun 2019 13:58:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: W/"3aee-5859cc3709069"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:04 GMT
Server: cloudflare
CF-RAY: 4e9604082f347640-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2237
Md5:    2f8e0c17061a18f2b261dbe3e24818ac
Sha1:   76d78b3f21bcaa59860aa8be6d962b4d0cf22326
Sha256: 7f549535e3848f7f2f9d3f3fdcf857f5dbb391e6bcfc44f85288ad3d48d6f584
                                        
                                            GET /images/icon-b-sm.png HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/style.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 1832
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "728-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604099b71769a-ARN


--- Additional Info ---
Magic:  PNG image, 33 x 41, 8-bit/color RGBA, non-interlaced
Size:   1832
Md5:    ea9b257f9498a12c012c0c5c8ba727aa
Sha1:   89d6e311de32e89c5dbac47b1d6c283b8c939add
Sha256: 83dd87c25a5289ffad935687f277623b203fce90bbd995ba2a961dac46cd5087
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 33289
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "176da-5859cc3713c49-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604099b4bcb0c-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33289
Md5:    974102b326f151ad5d65a2b8dbab8de1
Sha1:   ade3c0b49411dad4d3749980ebca8db137ccdd3c
Sha256: d0b818c4365e46d213ec8c91d8e68a85fa38ee3531810b45139c1d00ba9db8dd
                                        
                                            GET /fonts/4iCs6KVjbNBYlgoKfw7w.woff HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/css.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: W/"978c-5859cc3709069"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Server: cloudflare
CF-RAY: 4e96040998467640-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   38811
Md5:    894e06ab9f38b797b0c0b385123c6b0d
Sha1:   811bbddd2eb07dcfb46f2405caa1ef025375eb51
Sha256: 35610c3d27243636cc87bf7f4919be93ab437fce5378db4eddca6d4abec35067
                                        
                                            GET /fonts/4iCp6KVjbNBYlgoKejZPslyPN4c.woff HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/css.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: W/"8630-5859cc3709069"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Server: cloudflare
CF-RAY: 4e96040ad9477640-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   34371
Md5:    c639fa39bb97b668089ccd1c38b1e32a
Sha1:   6f564a30f490e4bb29e2de6290f430ff9c74d7c8
Sha256: 548aad87f0c03e1f8d8b2758a0f04456b66ceb43fb03f7090f21a299f7ac86c4
                                        
                                            GET /fonts/4iCv6KVjbNBYlgoC1CzjsGyL.woff HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/css.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: W/"aa2c-5859cc3709069"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Server: cloudflare
CF-RAY: 4e96040adc56769a-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   43572
Md5:    dbdc697a53bea2df99fae2976e53ad39
Sha1:   947080d3368e2fe05557d71bc9af149e4e80ec88
Sha256: 06c18ea10796002e15058a90c461a6e87eed6113f0a5d43d406b89748f45160b
                                        
                                            GET /fonts/4iCv6KVjbNBYlgoCjC3jsGyL.woff HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/css.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: W/"85d4-5859cc370a009"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Server: cloudflare
CF-RAY: 4e96040adf14cb0c-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   34281
Md5:    be85d2df5a99600a23b00a26da2b1dff
Sha1:   e8418defe6cebda700d5c9caede829c02418628d
Sha256: 7e32ca1bee2ac10558a91f838e63f2a3ccfa02fe40d39444ff0bac0ea1ca75b9
                                        
                                            GET /fonts/4iCv6KVjbNBYlgoCxCvjsGyL.woff HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/css.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: W/"815c-5859cc370a009"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Server: cloudflare
CF-RAY: 4e96040b09667640-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33125
Md5:    1555493f1afb7c900bff82e5448c4e41
Sha1:   7f5e2b8a4273a871044be532d069ae426fcc8965
Sha256: df07573634aa5f9e19a4b84174e89c103a6398fbd46fc062cad6bdc91b81a85c
                                        
                                            GET /fonts/4iCp6KVjbNBYlgoKejZftVyPN4c.woff HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/css.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: W/"a6e0-5859cc3709069"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Server: cloudflare
CF-RAY: 4e96040b0c86769a-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   42722
Md5:    d062e2afb5cf7ae0f67959e2b6c3dc4d
Sha1:   5b60dd3bcbf16762a12d62dff0daa5bfacc33185
Sha256: ee4f29b7b6363e693dbab9487c1a804c353d721aa12d553b516655bc4ece6ac1
                                        
                                            GET /js/scripts.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 1309
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 17 Apr 2019 09:40:13 GMT
Etag: "13b3-586b6ac22c208-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b59997640-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1309
Md5:    e266e5d9605a1aca59d62e914afaf2f9
Sha1:   05bcbe2188fb876861d30af4cc46a1a19b3af0f8
Sha256: bb8875d9b37ff44674596bb2cda5b30d466e1ea40564fd6760b84fec3f6ef3a2
                                        
                                            GET /js/jquery.dataTables.min.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 28253
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "14544-5859cc3713c49-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b5cba769a-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   28253
Md5:    c3a7e1b032813ffef82d30a87a3cd049
Sha1:   dbe1aed90f0dc9645222e8ee1454d01a43c05eb7
Sha256: b68bd91de2348ad791efdd1c5ef021239fa48dbd43e151ed32b15c5263be59c4
                                        
                                            GET /js/bootstrap.min.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 9833
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "90b5-5859cc3713c49-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b585bcb0c-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9833
Md5:    c83dab682eea0b37ac9522e2856cbb6b
Sha1:   db1fb35549a4ac9cc12811f09bc4b07b48c51434
Sha256: a9611bc805de07c98225bb878876a24b063fa52559adaf2ba4e997566d5cf3a1
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6486bb44294204b2b0328845ea44f087
Sha1:   b62840203cd2e48a6f7bc3a8efbb7b12f7df8d23
Sha256: 45bb600e2bf40d70661b2771d89c26f3bd511476e0fdac2a4de1e9c474702eac
                                        
                                            GET /images/intro-bg.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/style.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 128694
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "1f6b6-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604099b71cb08-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   128694
Md5:    ea05345a035cc1814b3d3a612c4bf8d3
Sha1:   e46da85abaf3fa2ce414d4d0a9e245aa855fab13
Sha256: 62fc0799d11f7268fd146b071db41ffb6c7693733b506cfbdd2d6038287af0a3
                                        
                                            GET /js/getdetector.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 173
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "e0-5859cc3713c49-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b69ad7640-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   173
Md5:    1d908a9cf6daa0088e56a08486349da6
Sha1:   78d458e960fcb015bf89b90f53a5075109581594
Sha256: c342ba30119646967e4f36b0fb99e6bb5bc61288dded75482602a325b2328de9
                                        
                                            GET /js/device.min.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 750
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "a2d-5859cc3713c49-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b7cc9769a-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   750
Md5:    e8c3d80e1e921d221fe7c4bd62114612
Sha1:   953c177f49e43e47b659b3223fb79849072b3778
Sha256: c3adf17c755bddf3ab3f292c2d60cb23f2f32447cc0f96821ffc28a85e3c24ba
                                        
                                            GET /js/jquery.validate.min.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 7335
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "58ab-5859cc3713c49-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b78bccb0c-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7335
Md5:    61d3b6efd894585a4274a189a51b449a
Sha1:   88c5d26c9bcff175c258750f749132c1852fb752
Sha256: 27b029b9bb854517e07d940d6bf8904c00b4f087d530f0f440216ceda8dc0b8d
                                        
                                            GET /js/countries.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 3588
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "4133-5859cc3713c49-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b99d47640-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3588
Md5:    da7f3d8e2aa312e1c97d2d2d46a28dba
Sha1:   4f89fb9af3cedbd5b55690f4c34ce68502573562
Sha256: a192e40f85c6850544fc77224e8a8973570e144d9f58b33de2b2d735a9150253
                                        
                                            GET /js/opt-in.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 242
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Tue, 24 Jul 2018 12:37:27 GMT
Etag: "158-571be0651ae81-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b9cd8769a-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   242
Md5:    f4d3e1c15ff9bf091658d502b070a1cd
Sha1:   d1037398658ebe9d6bf21ccb7bb1d19f836520c7
Sha256: d6431cdc87ee57e929bd55665719496bd0770ebdc996d6220e4707c88a7d3875
                                        
                                            GET /js/valid.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 703
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "16b3-5859cc3713c49-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b9900cb08-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   703
Md5:    c13f9658eb2df23f41bd4294cc020eb5
Sha1:   f38f7b0daf8cb4fdaf287c3dfebdd6e8aeaad16c
Sha256: 1cfd528b86b004e05d9ba4ca4d99323f7c8591185e4533777d1797dd3e642e52
                                        
                                            GET /js/commonJs.js HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 2183
Connection: keep-alive
Vary: Host,Accept-Encoding,User-Agent
Last-Modified: Wed, 06 Mar 2019 11:04:30 GMT
Etag: "2074-5836af43c9b2e-gzip"
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040b9906cb0c-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2183
Md5:    ca738db913691d69af856327b12f9c75
Sha1:   dc137ef9c70c0a5d1ee48bdb803eea1b66d969b4
Sha256: 467d8838b60a6aca03081f5f2c7a30e11e954ed15e719b0f821aafe7192e3e7f
                                        
                                            GET /images/man-bg.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/style.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 171575
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "29e37-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604099d0c7670-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   171575
Md5:    695bb0a21e60c7b9aaccff452768ad36
Sha1:   ab8d0af6477808629c26bd07dddd8f84c6e73f2f
Sha256: 560f212d1beedc85a7590988579355a70cd952a9c9ec8d3b17acf40940e0ed97
                                        
                                            GET /images/favicon-16x16.png HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 890
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "37a-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040d4df4769a-ARN


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   890
Md5:    2d5b8ab41a0ba9424ee8a6faf6500e4e
Sha1:   f1d25e635c56f0763a138cc0c209d5068d818f03
Sha256: 829a71a3903cdb15f0c2462934f7fbc7fb8c0893e1a21137c40c50c6063c66cc
                                        
                                            GET /images/favicon-32x32.png HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 1509
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "5e5-5859cc3712ca9"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e96040d4b1c7640-ARN


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit colormap, non-interlaced
Size:   1509
Md5:    019307aadc1a8a91856e29e0e7b9767c
Sha1:   a7fe8690199e6800a0c915d55dd398a55ada8f42
Sha256: 616acacfacfd0a2b5bb491d9b34f55ea76f12cbd654ef2dc8a06937b08bb61a5
                                        
                                            GET /images/vacations-bg.jpg HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/css/style.css
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         104.31.86.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 19 Jun 2019 13:58:05 GMT
Content-Length: 245675
Connection: keep-alive
Vary: Host,User-Agent, Accept-Encoding
Last-Modified: Wed, 03 Apr 2019 09:20:23 GMT
Etag: "3bfab-5859cc3713c49"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Thu, 18 Jun 2020 13:58:05 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4e9604099a57cad0-ARN


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   245675
Md5:    1764785b85fb26508fd2e27ddf1b3329
Sha1:   e8ca0834c5c9f3d0e815eab67e96ac691a03f888
Sha256: e62aa1590f5901c0f46311d01179d9ee7256fd27b4cd64878925e3433995a380
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 19 Jun 2019 13:58:06 GMT
Content-Length: 1574
Connection: keep-alive
Set-Cookie: __cfduid=d0d2c97ba1964c26ca03a6426290dbcf21560952686; expires=Thu, 18-Jun-20 13:58:06 GMT; path=/; domain=.globalsign.com; HttpOnly
Expires: Sun, 23 Jun 2019 10:57:07 GMT
X-Powered-By: Undertow/1
Etag: "6911c2331e8cbb2dad245d781e62d20c7d292570"
Last-Modified: Wed, 19 Jun 2019 10:57:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4e9604104b094271-OSL


--- Additional Info ---
Magic:  data
Size:   1574
Md5:    d23a82fa48bdfe7353b2e89ab4ebc034
Sha1:   6911c2331e8cbb2dad245d781e62d20c7d292570
Sha256: 649c0ed84b2d1823b6f7bdf610e8e96e4ecd33bb5c5cedca9e074d6541627c31
                                        
                                            GET /gtm.js?id=GTM-5FVKBCM HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         172.217.20.40
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Wed, 19 Jun 2019 13:58:06 GMT
Expires: Wed, 19 Jun 2019 13:58:06 GMT
Cache-Control: private, max-age=900
Last-Modified: Mon, 17 Jun 2019 23:12:11 GMT
Server: Google Tag Manager
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   24516
Md5:    eaf7c4dd8a7f83278562d9332670c83b
Sha1:   7fd79e00929aef72d02dd596460a02679b1e248f
Sha256: 63fa98b0aafcc8153090c4d9c83c53c16ad7ba25d8221b223423851a92eac58e
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 19 Jun 2019 13:58:06 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    61fda8423be4a66fcb98afaf281cf0e5
Sha1:   9ca75e1a7792c715c80497c1565b2f3fa87aa928
Sha256: 294ee0002c2f401ba69f52e98a266d8a0747f93bfbdd76ba08fbd62bf9f3573e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "720DE52B0992549EE9A81305D08E7265EC817C73CAB8685904F59BD8B1AF2B3A"
Last-Modified: Tue, 18 Jun 2019 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=25119
Expires: Wed, 19 Jun 2019 20:56:45 GMT
Date: Wed, 19 Jun 2019 13:58:06 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    c075444639550b48386ef7cb0d1e0c06
Sha1:   c648e3e0e7975e338cba8d691452f707cbeae098
Sha256: 720de52b0992549ee9a81305d08e7265ec817c73cab8685904f59bd8b1af2b3a
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: finanso.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         47.88.103.239
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.6.2
Date: Wed, 19 Jun 2019 13:58:06 GMT
Transfer-Encoding: chunked
Connection: close
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   131
Md5:    a4165dcb351799bd7d512d64542b82e0
Sha1:   19e43a087f6a4c6e40bc2fc1f6e690ff18fbe534
Sha256: 100732a8b064ae5139e987b185e32f0dbdafbd31ad2e0646b95369a129e8c911
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.26
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Content-Transfer-Encoding: Binary
Last-Modified: Tue, 18 Jun 2019 20:52:07 GMT
Etag: "968d1484f9ab168f07e6392844a4e108c7c42b51"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=30724
Expires: Wed, 19 Jun 2019 22:30:10 GMT
Date: Wed, 19 Jun 2019 13:58:06 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    7dd75f1290e7431de46b6ff7e75609e2
Sha1:   968d1484f9ab168f07e6392844a4e108c7c42b51
Sha256: c112c566a3a47959f3a6a1e461ca5752174d08b3b2e03479c3835de24eedcc27
                                        
                                            GET /optin?email=null&first_name=null HTTP/1.1 
Host: rest.investmen.pw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         109.206.188.42
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 19 Jun 2019 13:58:06 GMT
Server: Apache/2.4.18 (Ubuntu)
Cache-Control: no-cache, private
Location: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Set-Cookie: XSRF-TOKEN=eyJpdiI6Im9OdkpqM3hsK2djMGdHTDd4V3UyQ0E9PSIsInZhbHVlIjoiUWhcLzM1eVFuVHowSkVpYXdnY3RZNTBDcFBMUmlSb3dzb3B3VjQwMlNMK3VmVDlGQm83dU0zRVhvbUJzT1wvWTZzNWwwb1VTdlFwcVFXVEFQcFNucWxMQT09IiwibWFjIjoiN2E1MWYxNjI2NGU2ZjAwMTNhMGUzN2Q4OGM5NzUxODIyOTAxNGE2ZWQ5ZDE3YzZlNjcyYzRhNWZiZjEwNTdjZiJ9; expires=Wed, 19-Jun-2019 15:58:06 GMT; Max-Age=7200; path=/ laravel_session=eyJpdiI6Ijc5K3BmVmlld2Q0ODhCRG5meG92TVE9PSIsInZhbHVlIjoiYjlaXC85RDF0OFA4S0RGQlU5dUFYVDF2VDZqVUswXC9FdVlNcWxzeU13RjNZdGJZMCszTlNVVFJPbHRJNFhKZksxZnV6a0h1UDNpXC9PdWNLMlVvWnIwMmc9PSIsIm1hYyI6IjY2NDk2Mzk2OWQzMDJmYjFhZTM3N2Y4ODYxZWMxOTZmYTlmMWYzNjRkYzc1MjIwYjE1YmUyMGY1NGFjNDM2YzgifQ%3D%3D; expires=Wed, 19-Jun-2019 15:58:06 GMT; Max-Age=7200; path=/; HttpOnly
Content-Length: 668
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   668
Md5:    35507e9d04e570a44d5aa274709c73dd
Sha1:   758179aeb981df4982226c77bd73b18f1b6eb7c5
Sha256: 81f57baa0e695a550305f816276f331ce787b1e309c632b2f13605e6ed68ae59
                                        
                                            GET /metrika/watch.js HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         93.158.134.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 19 Jun 2019 13:58:06 GMT
Content-Length: 44142
Last-Modified: Wed, 19 Jun 2019 11:19:50 GMT
Connection: keep-alive
Etag: "5d0a1a56-ac6e"
Content-Encoding: gzip
Expires: Wed, 19 Jun 2019 14:58:06 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   44142
Md5:    cae011abf3c40e4b49d9cb3719f86ce7
Sha1:   39a5dc3105a49a1004f67e873ed59d57ca3cc9dd
Sha256: 42a933cb87252c963a037fe177f3f3a6b69597782e0865c4ac4e601107a95c39
                                        
                                            GET /?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1 HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684
If-Modified-Since: Wed, 17 Apr 2019 09:40:13 GMT

                                         
                                         104.31.86.46
HTTP/1.1 304 Not Modified
                                        
Date: Wed, 19 Jun 2019 13:58:06 GMT
Connection: keep-alive
Etag: "14e97-586b6ac22c208"
Vary: Host,User-Agent
Server: cloudflare
CF-RAY: 4e9604132df8cb08-ARN


--- Additional Info ---
                                        
                                            GET /embed/jLbpfhMKMuI?autoplay=1&controls=0&disablekb=0&loop=1&modestbranding=0&rel=0&showinfo=0&playlist=jLbpfhMKMuI HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
Cache-Control: no-cache
Expires: Tue, 27 Apr 1971 19:44:06 EST
Date: Wed, 19 Jun 2019 13:58:06 GMT
Server: YouTube Frontend Proxy
X-XSS-Protection: 0
Set-Cookie: VISITOR_INFO1_LIVE=6fM5oBCpyNg; path=/; domain=.youtube.com; expires=Mon, 16-Dec-2019 13:58:06 GMT; httponly YSC=1bKYbXIWBQY; path=/; domain=.youtube.com; httponly PREF=f1=50000000; path=/; domain=.youtube.com; expires=Tue, 18-Feb-2020 01:51:06 GMT GPS=1; path=/; domain=.youtube.com; expires=Wed, 19-Jun-2019 14:28:06 GMT VISITOR_INFO1_LIVE=6fM5oBCpyNg; path=/; domain=.youtube.com; expires=Mon, 16-Dec-2019 13:58:06 GMT; httponly
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   19193
Md5:    1bee6f61ea0e9fd01d3ace2053170c95
Sha1:   be3cae96bcf65e7b15570e28952733d52ecc7a95
Sha256: 659532aa2128e4ca261fd0f69bd97bd6271043ab4d73ffb4312b5155d1398572
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Wed, 19 Jun 2019 13:40:50 GMT
Expires: Wed, 19 Jun 2019 15:40:50 GMT
Last-Modified: Tue, 21 May 2019 23:53:44 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17595
Cache-Control: public, max-age=7200
Age: 1037
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17595
Md5:    585dd98ad9bada516652979df577ade8
Sha1:   b81e0ee5e2648994c7c92e4becb6a8420113e462
Sha256: e88dfebceadff72fc5bb3ab4a4dfa71d835acbb4d183091d66e72e762fb306d5
                                        
                                            GET /yts/cssbin/www-player-vfl9xqmUY.css HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.youtube.com/embed/jLbpfhMKMuI?autoplay=1&controls=0&disablekb=0&loop=1&modestbranding=0&rel=0&showinfo=0&playlist=jLbpfhMKMuI
Cookie: VISITOR_INFO1_LIVE=6fM5oBCpyNg; YSC=1bKYbXIWBQY; PREF=f1=50000000; GPS=1

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Timing-Allow-Origin: https://www.youtube.com
Content-Length: 53591
Date: Tue, 18 Jun 2019 12:10:35 GMT
Expires: Wed, 17 Jun 2020 12:10:35 GMT
Last-Modified: Sat, 15 Jun 2019 01:54:37 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 92852
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   53591
Md5:    afce3aef197fe3bbdf78549936991d28
Sha1:   cf888394a4379634b4617ab9a93f9c621deca2d6
Sha256: f65f93b2b3c2fb030a2d52dbe341c90438f928023da0f2e45e65eff5847943e9
                                        
                                            GET /geo HTTP/1.1 
Host: geo1.investmen.pw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Origin: http://no.bitcoin-codes.vip.joyjew.club

                                         
                                         216.172.60.165
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Access-Control-Allow-Methods: GET, POST
Access-Control-Allow-Origin: *
Connection: close
Date: Wed, 19 Jun 2019 13:58:07 GMT
Content-Length: 56


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   56
Md5:    004dde4502196e90f9bd817ad71321fc
Sha1:   e7d8942cb9b918e23da06eaa4c487cfad0f92852
Sha256: 36e0c1e2a64b91c8abb42db9c158ca8e9170b2e65e5dd142bbabbdb623c1d37c
                                        
                                            GET /metrika/advert.gif HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         93.158.134.119
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.12.2
Date: Wed, 19 Jun 2019 13:58:07 GMT
Content-Length: 61
Last-Modified: Mon, 12 Oct 2015 13:09:09 GMT
Connection: keep-alive
Etag: "561bb0f5-3d"
Content-Encoding: gzip
Expires: Wed, 19 Jun 2019 14:58:07 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, was "advert.gif", from Unix, last modified: Mon Oct 12 15:06:12 2015
Size:   61
Md5:    aad2d5e940637a676e25e6cc7a684a83
Sha1:   c77946775d4c1719c48eb691edfbcf873b0738f5
Sha256: d9d219b8ba39a549d43400945b848dde73269f25dab5b75b85439c451ca0a525
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "B97A09164B86CF218D20956D42E23719013139BA28BBC05323467CB2972B3E0D"
Last-Modified: Tue, 18 Jun 2019 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21039
Expires: Wed, 19 Jun 2019 19:48:46 GMT
Date: Wed, 19 Jun 2019 13:58:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    91d0c5824c6a5d55454f77db6878fad3
Sha1:   3d0cabdb3e586977fae4cd5291ed47ee2091ef41
Sha256: b97a09164b86cf218d20956d42e23719013139ba28bbc05323467cb2972b3e0d
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 19 Jun 2019 13:58:07 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    86123b1f83244feef0183d00b5594519
Sha1:   07ebd9b635ef5cda44d68e2bc74abb8a36978b3f
Sha256: 0c7b6b867e4bce906991a671c1640f4bf30582c72b647908c8699393e4c3b14b
                                        
                                            GET /yts/jsbin/player_ias-vfltBCqwT/en_US/base.js HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.youtube.com/embed/jLbpfhMKMuI?autoplay=1&controls=0&disablekb=0&loop=1&modestbranding=0&rel=0&showinfo=0&playlist=jLbpfhMKMuI
Cookie: VISITOR_INFO1_LIVE=6fM5oBCpyNg; YSC=1bKYbXIWBQY; PREF=f1=50000000; GPS=1

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Timing-Allow-Origin: https://www.youtube.com
Content-Length: 384694
Date: Tue, 18 Jun 2019 20:28:18 GMT
Expires: Wed, 26 Jun 2019 20:28:18 GMT
Last-Modified: Tue, 18 Jun 2019 16:24:08 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=691200
Age: 62989
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   384694
Md5:    9a9ec73c084cf60f29854dc2f3b7dd95
Sha1:   494de815d7531200400c105e17fd4c0ce7439583
Sha256: b8bb3f11ba522b8a7c2d301a8f23a1ca906da3208042d2490278014ac66996eb
                                        
                                            OPTIONS /watch/47571256?wmode=7&page-url=http%3A%2F%2Fno.bitcoin-codes.vip.joyjew.club%2F%3Fsession%3D7f90bd7c3a0b4c0a97d729b83c32e249%26aff_id%3D225%26fpp%3D1&charset=utf-8&ut=noindex&browser-info=ti%3A10%3Aj%3A1%3As%3A1176x885x24%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20190619155806%3Aet%3A1560952687%3Aen%3Autf-8%3Ac%3A1%3Ala%3Aen-us%3Apv%3A1%3Als%3A856373364590%3Arqn%3A1%3Arn%3A510242101%3Ahid%3A782865177%3Awn%3A22310%3Ahl%3A1%3Agdpr%3A14%3Av%3A1585%3Arqnl%3A1%3Ast%3A1560952687%3Au%3A156095268727893186%3At%3AThe%20Bitcoins%20Code HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Origin: http://no.bitcoin-codes.vip.joyjew.club
Access-Control-Request-Method: POST

                                         
                                         93.158.134.119
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 19 Jun 2019 13:58:07 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Max-Age: 1728000
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
                                        
                                            GET /collect?v=1&_v=j76&a=1010533451&t=pageview&_s=1&dl=http%3A%2F%2Fno.bitcoin-codes.vip.joyjew.club%2F%3Fsession%3D7f90bd7c3a0b4c0a97d729b83c32e249%26aff_id%3D225%26fpp%3D1&ul=en-us&de=UTF-8&dt=The%20Bitcoins%20Code&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=YGBAgEQ~&jid=939584801&gjid=1276135671&cid=146728793.1560952687&tid=UA-133016675-1&_gid=36484294.1560952687&gtm=2wg6515FVKBCM&cd1=function%20(a)%20%7B%0A%20%20%20%20a.set(%22dimension1%22%2C%20a.get(%22clientId%22))%3B%0A%7D&cd2=225&cd3=7f90bd7c3a0b4c0a97d729b83c32e249&z=948406669 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Sun, 02 Jun 2019 09:37:48 GMT
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Cache-Control: no-cache, no-store, must-revalidate
Age: 1484419
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /r/collect?t=dc&aip=1&_r=3&v=1&_v=j76&tid=UA-133016675-1&cid=146728793.1560952687&jid=939584801&gjid=1276135671&_gid=36484294.1560952687&_u=YGBAgEQ~&z=761042711 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         64.233.165.155
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Wed, 19 Jun 2019 13:58:08 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /yts/jsbin/www-embed-player-vflYLRVV3/www-embed-player.js HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.youtube.com/embed/jLbpfhMKMuI?autoplay=1&controls=0&disablekb=0&loop=1&modestbranding=0&rel=0&showinfo=0&playlist=jLbpfhMKMuI
Cookie: VISITOR_INFO1_LIVE=6fM5oBCpyNg; YSC=1bKYbXIWBQY; PREF=f1=50000000; GPS=1

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Timing-Allow-Origin: https://www.youtube.com
Content-Length: 38644
Date: Wed, 12 Jun 2019 13:21:30 GMT
Expires: Thu, 20 Jun 2019 13:21:30 GMT
Last-Modified: Wed, 12 Jun 2019 10:52:24 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=691200
Age: 606998
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   38644
Md5:    3ce40c1c120a853fd64b4bd6deecfde6
Sha1:   dfe5d0596f7ba240e69042429c1e5fe69ccfd11d
Sha256: a2378567027567e8fadc3639470cb3b2d940fad9df85ea7140278040a4ea1e20
                                        
                                            GET /watch/47571256?wmode=5&callback=_ymjsp367340485&page-url=http%3A%2F%2Fno.bitcoin-codes.vip.joyjew.club%2F%3Fsession%3D7f90bd7c3a0b4c0a97d729b83c32e249%26aff_id%3D225%26fpp%3D1&charset=utf-8&ut=noindex&browser-info=ti%3A6%3Ati%3A10%3Aj%3A1%3As%3A1176x885x24%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20190619155806%3Aet%3A1560952687%3Aen%3Autf-8%3Ac%3A1%3Ala%3Aen-us%3Apv%3A1%3Als%3A856373364590%3Arqn%3A1%3Arn%3A510242101%3Ahid%3A782865177%3Awn%3A22310%3Ahl%3A1%3Agdpr%3A14%3Av%3A1585%3Arqnl%3A1%3Ast%3A1560952687%3Au%3A156095268727893186%3At%3AThe%20Bitcoins%20Code HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         93.158.134.119
HTTP/1.1 302 Found
                                        
Server: nginx/1.12.2
Date: Wed, 19 Jun 2019 13:58:08 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: yandexuid=5854341921560952688; Expires=Thu, 18-Jun-2020 13:58:08 GMT; Domain=.yandex.ru; Path=/ yabs-sid=1797963611560952688; Path=/ i=ooIdoRwDuZDLMQ6jviOGLrxDubGovg4jCO7TJ+YK8xIkWTbpH4WXdhWmn6hK2SqhTqvtjpSeiJwnR145dOJC1bcwpoM=; Expires=Thu, 18-Jun-2020 13:58:08 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly yp=1592488688.yrts.1560952688#1592488688.yrtsi.1560952688; Expires=Sat, 16-Jun-2029 13:58:08 GMT; Domain=.yandex.ru; Path=/
Last-Modified: Wed, 19-Jun-2019 13:58:08 GMT
Expires: Wed, 19-Jun-2019 13:58:08 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Location: /watch/47571256/1?wmode=5&callback=_ymjsp367340485&page-url=http%3A%2F%2Fno.bitcoin-codes.vip.joyjew.club%2F%3Fsession%3D7f90bd7c3a0b4c0a97d729b83c32e249%26aff_id%3D225%26fpp%3D1&charset=utf-8&ut=noindex&browser-info=ti%3A6%3Ati%3A10%3Aj%3A1%3As%3A1176x885x24%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20190619155806%3Aet%3A1560952687%3Aen%3Autf-8%3Ac%3A1%3Ala%3Aen-us%3Apv%3A1%3Als%3A856373364590%3Arqn%3A1%3Arn%3A510242101%3Ahid%3A782865177%3Awn%3A22310%3Ahl%3A1%3Agdpr%3A14%3Av%3A1585%3Arqnl%3A1%3Ast%3A1560952687%3Au%3A156095268727893186%3At%3AThe%20Bitcoins%20Code
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
                                        
                                            GET /collect?v=1&_v=j76&a=1010533451&t=pageview&_s=1&dl=http%3A%2F%2Fno.bitcoin-codes.vip.joyjew.club%2F%3Fsession%3D7f90bd7c3a0b4c0a97d729b83c32e249%26aff_id%3D225%26fpp%3D1&ul=en-us&de=UTF-8&dt=The%20Bitcoins%20Code&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=YGBAgEQ~&jid=939584801&gjid=1276135671&cid=146728793.1560952687&tid=UA-133016675-1&_gid=36484294.1560952687&gtm=2wg6515FVKBCM&cd1=function%20(a)%20%7B%0A%20%20%20%20a.set(%22dimension1%22%2C%20a.get(%22clientId%22))%3B%0A%7D&cd2=225&cd3=7f90bd7c3a0b4c0a97d729b83c32e249&z=948406669 HTTP/1.1 
Host: google-analytics.bi.owox.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         35.186.228.179
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: openresty
Date: Wed, 19 Jun 2019 13:58:08 GMT
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
OwoxCode: 403
Via: 1.1 google
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  ASCII text
Size:   30
Md5:    e9ab2ad88933c231a941d9e1efc6a04c
Sha1:   862800a3b223d00067f216991951ff930c44bdd6
Sha256: e42af0630cc262080bcef08d702fdd325985a98ff7aee7c61cc044d292178459
                                        
                                            GET /watch/47571256/1?wmode=5&callback=_ymjsp367340485&page-url=http%3A%2F%2Fno.bitcoin-codes.vip.joyjew.club%2F%3Fsession%3D7f90bd7c3a0b4c0a97d729b83c32e249%26aff_id%3D225%26fpp%3D1&charset=utf-8&ut=noindex&browser-info=ti%3A6%3Ati%3A10%3Aj%3A1%3As%3A1176x885x24%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20190619155806%3Aet%3A1560952687%3Aen%3Autf-8%3Ac%3A1%3Ala%3Aen-us%3Apv%3A1%3Als%3A856373364590%3Arqn%3A1%3Arn%3A510242101%3Ahid%3A782865177%3Awn%3A22310%3Ahl%3A1%3Agdpr%3A14%3Av%3A1585%3Arqnl%3A1%3Ast%3A1560952687%3Au%3A156095268727893186%3At%3AThe%20Bitcoins%20Code HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: yandexuid=5854341921560952688; yabs-sid=1797963611560952688; i=ooIdoRwDuZDLMQ6jviOGLrxDubGovg4jCO7TJ+YK8xIkWTbpH4WXdhWmn6hK2SqhTqvtjpSeiJwnR145dOJC1bcwpoM=; yp=1592488688.yrts.1560952688#1592488688.yrtsi.1560952688

                                         
                                         93.158.134.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Wed, 19 Jun 2019 13:58:08 GMT
Content-Length: 149
Connection: keep-alive
Last-Modified: Wed, 19-Jun-2019 13:58:08 GMT
Expires: Wed, 19-Jun-2019 13:58:08 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   149
Md5:    e00967ecc3c5e6d52da576da90ddeeb3
Sha1:   5d715bf99081077244e853232c5b062ad8292f23
Sha256: 3645dce2e0f81f44bac182edef92cdbce6fe7856732e4fbe894947e1fec2bdf5
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.youtube.com/embed/jLbpfhMKMuI?autoplay=1&controls=0&disablekb=0&loop=1&modestbranding=0&rel=0&showinfo=0&playlist=jLbpfhMKMuI
Origin: https://www.youtube.com

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19824
Date: Sat, 01 Jun 2019 22:15:38 GMT
Expires: Sun, 31 May 2020 22:15:38 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:56 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 1525352
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   19824
Md5:    bafb105baeb22d965c70fe52ba6b49d9
Sha1:   934014cc9bbe5883542be756b3146c05844b254f
Sha256: 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
                                        
                                            OPTIONS /watch/47571256?page-url=http%3A%2F%2Fno.bitcoin-codes.vip.joyjew.club%2F%3Fsession%3D7f90bd7c3a0b4c0a97d729b83c32e249%26aff_id%3D225%26fpp%3D1&charset=utf-8&browser-info=ti%3A7%3Aj%3A1%3As%3A1176x885x24%3Aadb%3A2%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20190619155822%3Aet%3A1560952702%3Aen%3Autf-8%3Ac%3A1%3Ala%3Aen-us%3Aar%3A1%3Anb%3A1%3Acl%3A2894%3Als%3A856373364590%3Arqn%3A2%3Arn%3A919478627%3Ahid%3A782865177%3Agdpr%3A14%3Av%3A1585%3Arqnl%3A1%3Ast%3A1560952702%3Au%3A156095268727893186 HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Origin: http://no.bitcoin-codes.vip.joyjew.club
Access-Control-Request-Method: POST

                                         
                                         93.158.134.119
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Server: nginx/1.12.2
Date: Wed, 19 Jun 2019 13:58:22 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Max-Age: 1728000
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
                                        
                                            GET /watch/47571256?page-url=http%3A%2F%2Fno.bitcoin-codes.vip.joyjew.club%2F%3Fsession%3D7f90bd7c3a0b4c0a97d729b83c32e249%26aff_id%3D225%26fpp%3D1&charset=utf-8&browser-info=ti%3A4%3Aj%3A1%3As%3A1176x885x24%3Aadb%3A2%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20190619155822%3Aet%3A1560952702%3Aen%3Autf-8%3Ac%3A1%3Ala%3Aen-us%3Aar%3A1%3Anb%3A1%3Acl%3A2894%3Als%3A856373364590%3Arqn%3A2%3Arn%3A919478627%3Ahid%3A782865177%3Agdpr%3A14%3Av%3A1585%3Arqnl%3A1%3Ast%3A1560952702%3Au%3A156095268727893186 HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1
Cookie: yandexuid=5854341921560952688; yabs-sid=1797963611560952688; i=ooIdoRwDuZDLMQ6jviOGLrxDubGovg4jCO7TJ+YK8xIkWTbpH4WXdhWmn6hK2SqhTqvtjpSeiJwnR145dOJC1bcwpoM=; yp=1592488688.yrts.1560952688#1592488688.yrtsi.1560952688

                                         
                                         93.158.134.119
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.12.2
Date: Wed, 19 Jun 2019 13:58:22 GMT
Content-Length: 43
Connection: keep-alive
Last-Modified: Wed, 19-Jun-2019 13:58:22 GMT
Expires: Wed, 19-Jun-2019 13:58:22 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: finanso.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /images/favicon-32x32.png HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /images/favicon-16x16.png HTTP/1.1 
Host: no.bitcoin-codes.vip.joyjew.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d0464accffb4e2ddfb6b67f0656b944e31560952684

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /js/show.js HTTP/1.1 
Host: widgets.investmen.pro
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /js/show.js HTTP/1.1 
Host: widgets.investmen.pro
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://no.bitcoin-codes.vip.joyjew.club/?session=7f90bd7c3a0b4c0a97d729b83c32e249&aff_id=225&fpp=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---