Overview

URL www.statshow.com/www/nodomain.ctbc.com.br
IP158.69.84.99
ASNAS16276 OVH SAS
Location United States
Report completed2018-08-10 23:22:04 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 1 reports on IP: 158.69.84.99

Date UQ / IDS / BL URL IP
2019-06-15 17:11:34 +0200
0 - 0 - 0 www.statshow.com/www/http://rizetours.blogspo (...) 158.69.84.99

Last 10 reports on ASN: AS16276 OVH SAS

Date UQ / IDS / BL URL IP
2019-07-01 07:47:12 +0200
0 - 0 - 0 https://www.munplanet.com/articles/arlo-camer (...) 158.69.39.233
2019-07-01 04:15:44 +0200
0 - 3 - 0 www.asind.ae/wp-content/uploads/2019/seconder (...) 5.39.72.197
2019-07-01 03:56:20 +0200
0 - 0 - 0 webcamsteen.com/16y4[CUSTOM_AFF 192.99.67.89
2019-07-01 02:43:31 +0200
0 - 0 - 0 167.114.144.169/Android/ 167.114.144.169
2019-06-30 21:34:01 +0200
0 - 0 - 0 streams.tvxweb.org 158.69.54.221
2019-06-30 21:30:47 +0200
0 - 0 - 0 source.magikserv.com 37.187.171.206
2019-06-30 20:09:51 +0200
0 - 0 - 0 www.kweeper.com/popcorn2kg/sentence/6382508 91.121.242.21
2019-06-30 18:49:10 +0200
0 - 0 - 0 www.ovh.com 198.27.92.1
2019-06-30 18:18:47 +0200
0 - 0 - 0 liczniki.org/hit.php?l=alltube&o=1 94.23.92.123
2019-06-30 18:11:40 +0200
0 - 0 - 0 hardrock.blogdns.org/ 91.121.69.126

No other reports on domain: statshow.com



JavaScript

Executed Scripts (61)


Executed Evals (7)

#1 JavaScript::Eval (size: 105, repeated: 1) - SHA256: 7b3615f7573d410de516c2d2a5bdf92370ede21a6d533daa42e1e5882786a7ba

                                        (function() {
    var a = Application.getConfig().memberAppletConfig.memberAppletFlashvars.usertype;
    return a
})();
                                    

#2 JavaScript::Eval (size: 134, repeated: 1) - SHA256: 5d64485168fbfe66c26ac9d8a6a516dbd615a75687f5bd18226c8a686f6fc378

                                        (function() {
    var a = google_tag_manager["GTM-TV3674Q"].macro(12);
    return B = a.substr(a.indexOf(".com") + 4, a.length - a.indexOf(".com") - 4)
})();
                                    

#3 JavaScript::Eval (size: 133, repeated: 1) - SHA256: f8b6c916e2adc26075bcb10e551cea94d9fd2f517c14df3de8d88147d6edd802

                                        (function() {
    var a = google_tag_manager["GTM-TV3674Q"].macro(2);
    return B = a.substr(a.indexOf(".com") + 4, a.length - a.indexOf(".com") - 4)
})();
                                    

#4 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 8eb59fd92c006b3db43f9b666e000bbed9921d4d5d61a879e63c5d75d536fb70

                                        (function() {
    var a = google_tag_manager["GTM-TV3674Q"].macro(3);
    return B = a.substr(a.indexOf(".com") + 4, a.length - a.indexOf(".com") - 4)
})();
                                    

#5 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 4bd96aae707895199599fdda8d50e77e79c090e9e2a6bd0a0ac47ef965717e87

                                        (function() {
    var a = google_tag_manager["GTM-TV3674Q"].macro(6);
    return B = a.substr(a.indexOf(".com") + 4, a.length - a.indexOf(".com") - 4)
})();
                                    

#6 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 661f0f00d1498b966ce191ec8064216c2a7f05b69310eb4972d5b9e9cbcda04b

                                        (function() {
    var a = google_tag_manager["GTM-TV3674Q"].macro(9);
    return B = a.substr(a.indexOf(".com") + 4, a.length - a.indexOf(".com") - 4)
})();
                                    

#7 JavaScript::Eval (size: 84, repeated: 4) - SHA256: b363fddb559a29c54f4cb2a236e7a01c3d4153d995dcbfe3009de3c8660a0daf

                                        (function() {
    var b = 11;
    return function(a) {
        a.set("dimension" + b, a.get("clientId"))
    }
})();
                                    

Executed Writes (9)

#1 JavaScript::Write (size: 623, repeated: 1) - SHA256: d0d31b542a9d0ab5fb73346aa11c0e7af0c28842745bafe0c71411d259b66eb8

                                        < !doctype html > < html > < body > < iframe style = "display:none"
data - ad - client = "ca-pub-6072412641931604"
id = "google_esf"
name = "google_esf"
src = "https://googleads.g.doubleclick.net/pagead/html/r20180806/r20180604/zrt_lookup.html#" > < /iframe><script>google_iframe_start_time=new Date().getTime();google_async_iframe_id="aswift_0";</script > < script > window.google_process_slots = function() {
    window.google_sa_impl({
        iframeWin: window,
        pubWin: window.parent,
        vars: window.parent['google_sv_map']['aswift_0']
    });
}; < /script><script src="http:/ / pagead2.googlesyndication.com / pagead / js / r20180806 / r20180604 / show_ads_impl.js "></script></body></html>
                                    

#2 JavaScript::Write (size: 419, repeated: 1) - SHA256: 51ce05980fee50e04ab4e0f7753fb6797ace83c7cb6f49a9339f4eac51122df6

                                        < !doctype html > < html > < body > < script > google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_1"; < /script><script>window.google_process_slots=function(){window.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_1']});};</script > < script src = "http://pagead2.googlesyndication.com/pagead/js/r20180806/r20180604/show_ads_impl.js" > < /script></body > < /html>
                                    

#3 JavaScript::Write (size: 419, repeated: 1) - SHA256: 56faa58de448be66b42f0240f2252265296ee5dba8ec6ecb5c4cd5c6e7bba47f

                                        < !doctype html > < html > < body > < script > google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_2"; < /script><script>window.google_process_slots=function(){window.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_2']});};</script > < script src = "http://pagead2.googlesyndication.com/pagead/js/r20180806/r20180604/show_ads_impl.js" > < /script></body > < /html>
                                    

#4 JavaScript::Write (size: 419, repeated: 1) - SHA256: 68d804f92f07013a6700012a1e4b313ef7f9c00567664cf9d6e716b33a184634

                                        < !doctype html > < html > < body > < script > google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_3"; < /script><script>window.google_process_slots=function(){window.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_3']});};</script > < script src = "http://pagead2.googlesyndication.com/pagead/js/r20180806/r20180604/show_ads_impl.js" > < /script></body > < /html>
                                    

#5 JavaScript::Write (size: 60, repeated: 1) - SHA256: fe046fa4dc07cf0fb9fc983a8c3595477cb199bc1c8d61b1d587bcf389aeadc0

                                        < div id = "histats_counter_3786"
style = "display: none;" > < /div>
                                    

#6 JavaScript::Write (size: 1324, repeated: 1) - SHA256: 9969d7044f8f5522459703b504de21cba1f7b0be7137549283c5f11d1640b1c8

                                        < iframe id = "google_ads_frame1"
name = "google_ads_frame1"
width = "728"
height = "90"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6072412641931604&amp;output=html&amp;h=90&amp;slotname=3070290120&amp;adk=3024896145&amp;adf=807048394&amp;w=728&amp;lmt=1533936089&amp;guci=1.2.0.0.2.2.0&amp;format=728x90&amp;url=http%3A%2F%2Fwww.statshow.com%2Fwww%2Fnodomain.ctbc.com.br&amp;ea=0&amp;flash=10.0.45&amp;wgl=0&amp;adsid=NT&amp;dt=1533936090764&amp;bpp=153&amp;fdt=162&amp;idt=362&amp;shv=r20180806&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;correlator=5019109863997&amp;frm=20&amp;pv=2&amp;ga_vid=509416200.1533936092&amp;ga_sid=1533936092&amp;ga_hid=1662992494&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=224&amp;ady=131&amp;biw=1176&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=368226400%2C21062171%2C21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=1808&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=16&amp;bc=1&amp;ifi=1&amp;dtd=995"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#7 JavaScript::Write (size: 1346, repeated: 1) - SHA256: 55b619a00f93c75b50b63f825ef8295b9ed08aa65c85fe1dbceb835b154da457

                                        < iframe id = "google_ads_frame2"
name = "google_ads_frame2"
width = "336"
height = "280"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6072412641931604&amp;output=html&amp;h=280&amp;slotname=6840466659&amp;adk=3119329098&amp;adf=807048394&amp;w=336&amp;lmt=1533936089&amp;guci=1.2.0.0.2.2.0&amp;format=336x280&amp;url=http%3A%2F%2Fwww.statshow.com%2Fwww%2Fnodomain.ctbc.com.br&amp;ea=0&amp;flash=10.0.45&amp;wgl=0&amp;adsid=NT&amp;dt=1533936092109&amp;bpp=41&amp;fdt=46&amp;idt=153&amp;shv=r20180806&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;prev_fmts=728x90&amp;correlator=5019109863997&amp;frm=20&amp;pv=1&amp;ga_vid=509416200.1533936092&amp;ga_sid=1533936092&amp;ga_hid=1662992494&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=103&amp;ady=449&amp;biw=1176&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=368226400%2C21062171%2C21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=1808&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=16&amp;bc=1&amp;ifi=2&amp;dtd=180"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#8 JavaScript::Write (size: 1405, repeated: 1) - SHA256: 4dd189ba5949ea5110824da8a2f99674cab31ad02eb7c5b0d8a1883f51915bb9

                                        < iframe id = "google_ads_frame3"
name = "google_ads_frame3"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6072412641931604&amp;output=html&amp;adk=1812271804&amp;adf=807048394&amp;lmt=1533936089&amp;plat=1%3A1081352%2C2%3A1081352%2C8%3A32776%2C9%3A32776%2C16%3A8388608%2C26%3A32768%2C30%3A1048576&amp;guci=1.2.0.0.2.2.0&amp;format=0x0&amp;url=http%3A%2F%2Fwww.statshow.com%2Fwww%2Fnodomain.ctbc.com.br&amp;ea=0&amp;flash=10.0.45&amp;pra=5&amp;wgl=0&amp;adsid=NT&amp;dt=1533936092364&amp;bpp=762&amp;fdt=766&amp;idt=910&amp;shv=r20180806&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;prev_fmts=728x90%2C336x280%2C300x600&amp;nras=1&amp;correlator=5019109863997&amp;frm=20&amp;pv=1&amp;ga_vid=509416200.1533936092&amp;ga_sid=1533936092&amp;ga_hid=1662992494&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=0&amp;ady=0&amp;biw=1159&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=368226400%2C21062171%2C21060853&amp;oid=3&amp;rx=0&amp;eae=6&amp;fc=1808&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7Cs%7C&amp;abl=NS&amp;ppjl=u&amp;fu=16&amp;bc=1&amp;ifi=3&amp;dtd=963"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#9 JavaScript::Write (size: 1357, repeated: 1) - SHA256: 69d3d0d71ae87f7dff4a7dc6d2d45a08cebf4a93e88ba123d63c19533808b423

                                        < iframe id = "google_ads_frame3"
name = "google_ads_frame3"
width = "300"
height = "600"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6072412641931604&amp;output=html&amp;h=600&amp;slotname=6150653317&amp;adk=4110190612&amp;adf=807048394&amp;w=300&amp;lmt=1533936089&amp;guci=1.2.0.0.2.2.0&amp;format=300x600&amp;url=http%3A%2F%2Fwww.statshow.com%2Fwww%2Fnodomain.ctbc.com.br&amp;ea=0&amp;flash=10.0.45&amp;wgl=0&amp;adsid=NT&amp;dt=1533936092364&amp;bpp=58&amp;fdt=116&amp;idt=470&amp;shv=r20180806&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;prev_fmts=728x90%2C336x280&amp;correlator=5019109863997&amp;frm=20&amp;pv=1&amp;ga_vid=509416200.1533936092&amp;ga_sid=1533936092&amp;ga_hid=1662992494&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=777&amp;ady=243&amp;biw=1159&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=368226400%2C21062171%2C21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=1808&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=16&amp;bc=1&amp;ifi=3&amp;dtd=548"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    


HTTP Transactions (149)


Request Response
                                        
                                            GET /www/nodomain.ctbc.com.br HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.0.31, PleskLin, PleskLin
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; path=/; domain=.statshow.com user_country=NO; expires=Fri, 17-Aug-2018 21:21:33 GMT; Max-Age=604800; path=/ user_country_name=Norway; expires=Fri, 17-Aug-2018 21:21:33 GMT; Max-Age=604800; path=/
MS-Author-Via: DAV
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13908
Md5:    ebe9391add05fda283fb915af23e8f9b
Sha1:   6b1dc3ddb8ca554f0aad6fb15a0343494755303f
Sha256: 908ed92661b31d3337e63a05f84995dea0ec18df5deea9ea27de569e79db068b
                                        
                                            GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.209.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 30028
Date: Thu, 12 Jul 2018 21:38:28 GMT
Expires: Fri, 12 Jul 2019 21:38:28 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 2504581


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   30028
Md5:    543b05db46ecc6a1312a23e7e7a8820e
Sha1:   aff453218f0b6c281ed53da6997d4b1b9e990007
Sha256: 31c0d9866a5018d56375949c0222370a5b48d6ea6442d04b0c689217a68dffac
                                        
                                            GET /css/style.min.css?v=6 HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Last-Modified: Tue, 06 Dec 2016 15:38:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5846db62-70f2"
X-Powered-By: PleskLin
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7425
Md5:    2a0c090d817e97cea87a3cc5dbdd3600
Sha1:   71d26095fbb91e33726d54b83f140f7547ecddd9
Sha256: 5a20a095159ed4cf7497f2a1364892ab2dff771f9dfe67837d2a83896c8644bb
                                        
                                            GET /pagead/js/adsbygoogle.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Fri, 10 Aug 2018 21:21:29 GMT
Expires: Fri, 10 Aug 2018 21:21:29 GMT
Cache-Control: private, max-age=3600
Etag: 12819524931006956612
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 27677
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   27677
Md5:    adfc2efd1ff7ab69c6b164ca82c44838
Sha1:   d17b5e98326662e4c3d5d1c9a5ebc1d39350d4d0
Sha256: fac73dd28bb6c44f3ba602d53b9967d871202de515afa767e1c398d19aec3fde
                                        
                                            GET /javascript/cross-domain.js HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 2146
Last-Modified: Tue, 06 Dec 2016 15:38:15 GMT
Connection: keep-alive
Etag: "5846db67-862"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII English text
Size:   2146
Md5:    116dc16ef51c9aab53b1f0584bffddd8
Sha1:   a5b85604d76e8f88988c21669f386b206e3196ac
Sha256: 6b3ae503f0dfec79f3bbe3a290e33551d2e805e7c84231c32c00ef0b66ccbcbc
                                        
                                            GET /images/favicon.ico HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 318
Last-Modified: Tue, 06 Dec 2016 15:58:49 GMT
Connection: keep-alive
Etag: "5846e039-13e"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   318
Md5:    b81929740a469d5563f89085833a8d6a
Sha1:   af897f4631048ec772e04ef51cf17a42d9faaccc
Sha256: 78874b61145c5513bd0727059ec99436bad8bae408801fd8ccb0deda5dbf6953
                                        
                                            GET /javascript/main.min.js?v=1 HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 1645
Last-Modified: Tue, 06 Dec 2016 15:38:20 GMT
Connection: keep-alive
Etag: "5846db6c-66d"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1645
Md5:    db5439278798d14afc50ac3fb601d6f8
Sha1:   e74e0ac26c3126aecabb41b195d18d8357e9b208
Sha256: 9fb258ea903921046c835c80186adf2116a649d9fe0731bc1006ad574fa00800
                                        
                                            GET /javascript/check_url.min.js?v=1 HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 6849
Last-Modified: Wed, 14 Dec 2016 11:54:21 GMT
Connection: keep-alive
Etag: "585132ed-1ac1"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   6849
Md5:    3ac312baa13878d7cf4a4f64cac5eb47
Sha1:   367c97a8ef5e33dc442c8d14b3a6bd20051337f5
Sha256: 592d78bbfec0d539aeac91684c8ee9d25add27b82ab83bc57039b37f06d8fd3f
                                        
                                            GET /javascript/jexpand.min.js HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 1904
Last-Modified: Tue, 06 Dec 2016 15:38:17 GMT
Connection: keep-alive
Etag: "5846db69-770"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   1904
Md5:    b409c5bbaac1f1916e07b6baf7cc7b0e
Sha1:   b748e7b72ba880ca3fd2896351f18870e25c1bee
Sha256: 914927766ba1fe36ed4cde803b3a64b396b476c853129c9b05f1b39c6278019d
                                        
                                            GET /ezoic/ezoiclitedata.go?did=66470 HTTP/1.1 
Host: g.ezoic.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         18.196.158.46
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Server: nginx/1.14.0
Date: Fri, 10 Aug 2018 21:21:29 GMT
Content-Length: 918
Connection: keep-alive
Display: ezoic_lite_data
Expires: Thu, 09 Aug 2018 21:21:29 UTC
Vary: Accept-Encoding,X-APP-JSON
X-Middleton-Display: ezoic_lite_data
Set-Cookie: ezoadgid_1034=-1; Path=/; Domain=ezoic.net; Expires=Fri, 10 Aug 2018 21:51:29 UTC ezoref_1034=statshow.com; Path=/; Domain=ezoic.net; Expires=Fri, 10 Aug 2018 23:21:29 UTC ezoab_1034=mod17-; Path=/; Domain=ezoic.net; Expires=Fri, 10 Aug 2018 21:51:29 UTC ezCMPCCS=true; Path=/; Domain=ezoic.net; Expires=Sat, 10 Aug 2019 21:21:29 GMT
Content-Encoding: gzip
X-Varnish: 271748087, 88900771
Via: 1.1 varnish (Varnish/6.0), 1.1 varnish (Varnish/6.0)
X-VCache: Miss
X-shard: 1001239
Accept-Ranges: bytes
Age: 0
Cache-Control: no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   918
Md5:    9b20f7af1f3c19aab281509a961f35df
Sha1:   1f4b32fbe27d9e56d9a2551aeffd995d8cea91eb
Sha256: 4cebfd1bba498c37fad5991e4747fb39e12bd23a0f08ea2f40162eae727c29a1
                                        
                                            GET /v2/thumbs.php?size=s&url=nodomain.ctbc.com.br HTTP/1.1 
Host: free.pagepeeker.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         176.9.106.58
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.4.6
Date: Fri, 10 Aug 2018 21:21:29 GMT
Content-Length: 3675
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-PP-Final-URL: http://nodomain.ctbc.com.br/main?
X-PP-Capture-Time: 6.60
X-PP-Capture-Method: webkit
X-PP-Hash: 03852e5df0801ab9c1c4c96c6d1238a6
X-Robots-Tag: noindex, nofollow
Set-Cookie: PagePeeker=PagePeeker_NS41; path=/


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3675
Md5:    9c840458a442812cf88e840f7f889782
Sha1:   6a07ef6299600fd18b17029b985486a08850e25d
Sha256: b37052fc9c95dfb09529fc7ee5455dbc0236ee9017f3c9e2811f7bd8857638f2
                                        
                                            GET /images/statman_head.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 1586
Last-Modified: Tue, 06 Dec 2016 15:59:01 GMT
Connection: keep-alive
Etag: "5846e045-632"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 21 x 19
Size:   1586
Md5:    815ec610ed672adb007cc858ef51eab4
Sha1:   a036359544990b38419d77fd173286c5b8513395
Sha256: bcd3966ae4a14296c400cd6428929762967110c9eac613be22d78c822a0afa89
                                        
                                            GET /images/loading.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 1842
Last-Modified: Tue, 06 Dec 2016 15:58:52 GMT
Connection: keep-alive
Etag: "5846e03c-732"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 175 x 8
Size:   1842
Md5:    29dc83928ac37031508004afa8747b1d
Sha1:   18a1c606d755cfe3c237c06175d395d0753ca275
Sha256: 178c6df908276cff375f8192c62588a0e2f76d4e0e67bad2352365a80ff1798c
                                        
                                            GET /images/arrow_up.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 95
Last-Modified: Tue, 06 Dec 2016 15:58:46 GMT
Connection: keep-alive
Etag: "5846e036-5f"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 10 x 9
Size:   95
Md5:    60202baf4251dbac380ac715a6f54814
Sha1:   5e46b87f5919167dd2ce75e771a636a860914357
Sha256: f94bb4a85bccd6315bbc80ddd36464e5a082e258620cbeeee0b16439bc84078f
                                        
                                            GET /images/mini_loading.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 1553
Last-Modified: Tue, 06 Dec 2016 15:58:54 GMT
Connection: keep-alive
Etag: "5846e03e-611"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 16
Size:   1553
Md5:    03ce3dcc84af110e9da8699a841e5200
Sha1:   d2b7e4e31fe8e1c6b720e33448674102879e4246
Sha256: d3e3944d4649450dee66a55c69eeced2d825b6ca1a349f72c75fd3780ae3f006
                                        
                                            GET /kda/image_verification.php HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.0.31, PleskLin, PleskLin
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Fri, 10 Aug 2018 21:21:33 GMT
MS-Author-Via: DAV


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   1227
Md5:    4113541eee1202a39069b0cdeda0a970
Sha1:   e1f47b4afef4474fd4446d6d01684cf8023199f2
Sha256: d07b14ece852e161191e2a0a6e5b721583bed5863cc704f0edcd2484f002f7fd
                                        
                                            GET /images/qmark.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 296
Last-Modified: Tue, 06 Dec 2016 15:58:56 GMT
Connection: keep-alive
Etag: "5846e040-128"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 9 x 9
Size:   296
Md5:    841bfa8fbfa9ec665a5fa60e9815821f
Sha1:   b981d75c27a93d11c7f93a46566856249c639951
Sha256: 48088b883c093876cef51202fa2d5aa9c9a286d655bb2d4166a53443b28f7a5a
                                        
                                            GET /images/niches/car.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 610
Last-Modified: Tue, 06 Dec 2016 16:00:06 GMT
Connection: keep-alive
Etag: "5846e086-262"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   610
Md5:    d197345b382d2c930a319b646c4e3604
Sha1:   ff161610d2228f644fa46d6b7db56bfac550e35c
Sha256: 77fac62ccf1c37a76838423c46bde5634c21e11a99ab71393d8df05bfb07d114
                                        
                                            GET /images/niches/arrow_up.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 220
Last-Modified: Tue, 06 Dec 2016 16:00:04 GMT
Connection: keep-alive
Etag: "5846e084-dc"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   220
Md5:    d0e7e40b805a741d706600493cb9fce1
Sha1:   52951134c0631718ce3932748aa03d8ad968c628
Sha256: 119967eba33f76a4e149ad0a6c64e5fc5f7f441b68130f06758ac817c660480d
                                        
                                            GET /images/niches/arrow_down.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 219
Last-Modified: Tue, 06 Dec 2016 16:00:04 GMT
Connection: keep-alive
Etag: "5846e084-db"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   219
Md5:    631aba850829dafeaa3608b60918c73e
Sha1:   c5dd4e28be5664fdff00827042ce0b2909cd39b1
Sha256: af90a8028d4306c018be9f74c53db7312d2bed042828368607ec78a157cadbf7
                                        
                                            GET /images/niches/building.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 556
Last-Modified: Tue, 06 Dec 2016 16:00:05 GMT
Connection: keep-alive
Etag: "5846e085-22c"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   556
Md5:    41f999bfcfa48f3f25fc5dc81e6ac089
Sha1:   b9971ce8300f4cb94328c3e4fec015e4a1be5465
Sha256: 5b5231dff4a872619ccf2656a4143d0fb7021079148620f49a54397bb30af7d1
                                        
                                            GET /images/niches/money.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 738
Last-Modified: Tue, 06 Dec 2016 16:00:09 GMT
Connection: keep-alive
Etag: "5846e089-2e2"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   738
Md5:    9095b4c0e705f5dd0e42317ed586346a
Sha1:   969d87b5f1cbefdd6791f5a673545b0ab42ec1d5
Sha256: 5dc17abaca2cdf55115f59eeabb44594fe3eeb0d07b6ad743a998b85ec93d99c
                                        
                                            GET /js15.js HTTP/1.1 
Host: s10.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         46.105.201.240
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Fri, 10 Aug 2018 21:13:40 GMT
Etag: "927317778"
Last-Modified: Mon, 12 Jun 2017 15:26:32 GMT
Content-Length: 4101
Content-Encoding: gzip
Vary: Accept-Encoding
X-CDN-Pop: sbg
X-CDN-Pop-IP: 137.74.120.0/27
X-Cacheable: Matched cache
Accept-Ranges: bytes
X-IPLB-Instance: 4746


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   4101
Md5:    74560ced65f9fb66f0febf74b808851c
Sha1:   4a8631b077b07e6a64d2b796d9ba77b0a812381b
Sha256: a80d9aa5ac898ca342df91e76aa17f248c2a22fd967fa9167283c4739d068238
                                        
                                            GET /images/niches/book_open.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 622
Last-Modified: Tue, 06 Dec 2016 16:00:05 GMT
Connection: keep-alive
Etag: "5846e085-26e"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   622
Md5:    0ba89b9fbe7e88d4c6896ed0a1f495aa
Sha1:   e1f2645ef808a01f6b022c272eeb360d85d96dbc
Sha256: 8bd44dedf43b1a576fbf32a97934a92a703b2d19c4ace265b8c9d8512e9d300b
                                        
                                            GET /images/niches/iron.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 533
Last-Modified: Tue, 06 Dec 2016 16:00:08 GMT
Connection: keep-alive
Etag: "5846e088-215"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   533
Md5:    065fc74cd42ea8ce1eb241d9021b289e
Sha1:   d197d45a9b41ef8afa79bc162bdd19f031c1e84f
Sha256: 9ed15ae65664082f8862e3e29681557ad7058efae54445221066d376b356d9d1
                                        
                                            GET /images/niches/heart.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 749
Last-Modified: Tue, 06 Dec 2016 16:00:07 GMT
Connection: keep-alive
Etag: "5846e087-2ed"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   749
Md5:    83ceb675d61ca1fdee0f84c2f5fe5daa
Sha1:   848e83e25afda1a86c1328d1a5284cc0d6175f8f
Sha256: f36478fffeeb2579529680ebdde8e0607ed0d00b3bc70d91cf11d0fe56145bae
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Aug 2018 21:21:30 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    e790825ffa11a7a0a012c0d749f51c4c
Sha1:   254313c50c08b1b2561ff336444044ad0c1710f0
Sha256: ce5df97e14f97fa961f89acb7e559f88de5df4b75eb7a21c2fbf309963372adc
                                        
                                            GET /images/niches/pencil.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 450
Last-Modified: Tue, 06 Dec 2016 16:00:10 GMT
Connection: keep-alive
Etag: "5846e08a-1c2"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   450
Md5:    a34e71ab08a6d1162b948d26321dea50
Sha1:   62a1b41ac5eefbf3d0ad578a19572d4096d88146
Sha256: 858a4033d92f654e344243bbc75a968c39c298bd7fa87b5b3c9fe6eca4161386
                                        
                                            GET /images/niches/tv.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 658
Last-Modified: Tue, 06 Dec 2016 16:00:12 GMT
Connection: keep-alive
Etag: "5846e08c-292"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   658
Md5:    93f1eb4e8f0b2999bd389f092c584d90
Sha1:   c9dfe7f923e0dd00a8ee9a134bd9468cb9f0efc2
Sha256: 6b539497a6d22d8d43c37f96706ee78f7642d61e1b0177c665681515f5bf8ba2
                                        
                                            GET /images/niches/fashion.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 623
Last-Modified: Tue, 06 Dec 2016 16:00:06 GMT
Connection: keep-alive
Etag: "5846e086-26f"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   623
Md5:    fe45a36647421b4c9cf5194eff24c0bd
Sha1:   37575d4a17075c2af190d8bf5b015413f80fee69
Sha256: fd224bfd85c3c90bf6da8a7f404b773787ce77115f48023aa5fbc14acf5621b4
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Aug 2018 21:21:30 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /images/niches/bike.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 783
Last-Modified: Tue, 06 Dec 2016 16:00:04 GMT
Connection: keep-alive
Etag: "5846e084-30f"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   783
Md5:    a48531fafc5d5f2c606bca4c50e7e1e6
Sha1:   2b90062933e05c24599550eb917588bf097345b5
Sha256: 07a36bd0cd0e9828e9e5b6fc639f667cbb5d4389dc083fa511915c56fc4eaaf6
                                        
                                            GET /images/niches/food.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 865
Last-Modified: Tue, 06 Dec 2016 16:00:06 GMT
Connection: keep-alive
Etag: "5846e086-361"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   865
Md5:    7d4fd8b6727cc552161369f16a094851
Sha1:   a24b208078174b175f4c5f35ad9b7a2d1c7e59e3
Sha256: 7eba7376d76ac55acac20a46756cd0209067ad931200c9f8a0b771ddcffadeb2
                                        
                                            GET /images/niches/joystick.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 666
Last-Modified: Tue, 06 Dec 2016 16:00:09 GMT
Connection: keep-alive
Etag: "5846e089-29a"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   666
Md5:    db0eea75aedac59f3491d0aed7580bd2
Sha1:   2e2b34758d67aeb19b454bf5fbb43f4e9e3ebe62
Sha256: d97d6995f47a5a090bb52c986467826282bddef90ffd40582f0953d16a7c1a69
                                        
                                            GET /images/niches/general.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 778
Last-Modified: Tue, 06 Dec 2016 16:00:06 GMT
Connection: keep-alive
Etag: "5846e086-30a"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   778
Md5:    3750c701d2ec35a45d289b9b9c1a0667
Sha1:   04b482344d75d0732275727bd73cceb9b049d276
Sha256: ff9c48d8c2d063932c7aadd5e15ddfdc76b7111bf0715f3a192bba26df2c531c
                                        
                                            GET /images/niches/hotel.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 460
Last-Modified: Tue, 06 Dec 2016 16:00:07 GMT
Connection: keep-alive
Etag: "5846e087-1cc"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   460
Md5:    a636d891d9b72510fd5d31a8d6d61957
Sha1:   06b75d3aecfb892f151160cd5ff0727a0b7dff28
Sha256: 25751ece7d7a70bdc2a6f7c794b143c952a84f7973fce48cd70e70483764cf3a
                                        
                                            GET /images/niches/server.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 530
Last-Modified: Tue, 06 Dec 2016 16:00:11 GMT
Connection: keep-alive
Etag: "5846e08b-212"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   530
Md5:    92ce271e1b892a0ccbe8a8a4e5d4a632
Sha1:   1aed30d2b777a46cf2ffde662445068474e92a6a
Sha256: ff6e8e00ceb0da39cd1811eab4e171e1c7566f41a8ffda96e602ac840444c477
                                        
                                            GET /images/niches/briefcase.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 488
Last-Modified: Tue, 06 Dec 2016 16:00:05 GMT
Connection: keep-alive
Etag: "5846e085-1e8"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   488
Md5:    8e0af9ccc4685b8250181e797e38a24f
Sha1:   04d00feec974bd2b13e8211148dbc8f4ed86bddc
Sha256: 71d25bccf3fd012a4a02113cfd4e9c72ad3e9cab002df6398752ee8916e098f8
                                        
                                            GET /images/niches/lawyer.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 706
Last-Modified: Tue, 06 Dec 2016 16:00:09 GMT
Connection: keep-alive
Etag: "5846e089-2c2"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   706
Md5:    cac109a5658accb74c8216f247949c85
Sha1:   e8bd7deb9088b5d14c935152ec282711f460361b
Sha256: 92443b5d601efbbbfc148d67312a47d93324186807aacc47970fec8d1ca20fa8
                                        
                                            GET /images/niches/truck.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 582
Last-Modified: Tue, 06 Dec 2016 16:00:12 GMT
Connection: keep-alive
Etag: "5846e08c-246"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   582
Md5:    2cf6d6d15a5da8b88147cf5a1094be24
Sha1:   204d0a04cd9c22934c0e07c8d37a80047220daf1
Sha256: de27000a870f17c4b1455b4e9875738bb966250a24eb5fde48d46fad4b54506b
                                        
                                            GET /images/niches/medic.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 733
Last-Modified: Tue, 06 Dec 2016 16:00:09 GMT
Connection: keep-alive
Etag: "5846e089-2dd"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   733
Md5:    1c78c060a59fa397e263bd59e5dcc21f
Sha1:   6564e87bc0c2eb5109f7ad5d311ecd5981634a28
Sha256: b634b752fac73d8a085b37276da3be937b166dcd2d750427cb6721dd478949f6
                                        
                                            GET /images/niches/herb.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 760
Last-Modified: Tue, 06 Dec 2016 16:00:07 GMT
Connection: keep-alive
Etag: "5846e087-2f8"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   760
Md5:    98d0b9208d2410e284d8a341f4cf72ec
Sha1:   c375de2220ed48bb2f69d98c476b66f734238ff1
Sha256: 54ae67a8f3bbd06a6713245065d8e30292e5063346a2c5a0ba2315b8a65839b5
                                        
                                            GET /images/niches/pill.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 719
Last-Modified: Tue, 06 Dec 2016 16:00:10 GMT
Connection: keep-alive
Etag: "5846e08a-2cf"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   719
Md5:    f2204332e83fa054bfe8265da940bfba
Sha1:   8745e2e819b9aa04b1d8f1a4273fa5bd207f7f3e
Sha256: 9309856be0672bcb37fb8565a2b3d47163e327276c6dc2b09473c23dc84cfd39
                                        
                                            GET /images/niches/music.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 416
Last-Modified: Tue, 06 Dec 2016 16:00:10 GMT
Connection: keep-alive
Etag: "5846e08a-1a0"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   416
Md5:    8a05e01925a99155d6d4a89e191fbf60
Sha1:   c0930ed380fd1bc196296579f6f4960c29448272
Sha256: b7c1b5f56d253917105f85a468665addab6a73a4f7950782b6e14f435baaa438
                                        
                                            GET /images/niches/newspaper.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 658
Last-Modified: Tue, 06 Dec 2016 16:00:10 GMT
Connection: keep-alive
Etag: "5846e08a-292"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   658
Md5:    a9f5563fb90eeeac3c619c0f00761b91
Sha1:   8b7f753ba1c3cc5551dd6100e408bc8898414f2f
Sha256: 9ba7151a9f0262778f4fc5696df43cce92470bf7ab5f80dd259744dbc440581a
                                        
                                            GET /images/niches/text.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 209
Last-Modified: Tue, 06 Dec 2016 16:00:12 GMT
Connection: keep-alive
Etag: "5846e08c-d1"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit gray+alpha, non-interlaced
Size:   209
Md5:    f4e8f006e259bc6c26255b0c8136bc32
Sha1:   d38185704d6f86286a8b28e4a8a8131ff6a49b96
Sha256: 1f462ad78bf0258500f65aafa539ba3e536e84d636699e570e8dfeba29156abc
                                        
                                            GET /images/niches/house.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 806
Last-Modified: Tue, 06 Dec 2016 16:00:07 GMT
Connection: keep-alive
Etag: "5846e087-326"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   806
Md5:    99bea32e1990e011e870f6c562e87a6a
Sha1:   e11cf7d34a74b2639bd351484ee891dbd76b4d76
Sha256: c862e0744036f4638b09366ff125edaf47944529867c8f36866e8fc0771729cd
                                        
                                            GET /images/niches/religion.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 162
Last-Modified: Tue, 06 Dec 2016 16:00:11 GMT
Connection: keep-alive
Etag: "5846e08b-a2"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   162
Md5:    6c688c705035a580ad944f7c56f0ad26
Sha1:   8288197d28e1d5f27e57c6b25156fbbd7b0eac13
Sha256: bf673b96b2814485afa5aee8da28f31c459c0f73e30407a9deac694236488aa4
                                        
                                            GET /images/niches/science.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 526
Last-Modified: Tue, 06 Dec 2016 16:00:11 GMT
Connection: keep-alive
Etag: "5846e08b-20e"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   526
Md5:    61f7ee1d30fadfd9652468e6d6ddb05b
Sha1:   d1cea238486aeeba9215d56bf71efc243754fe48
Sha256: f5412754ee01e07d904246efe73b0a11b81cd1e098f3e3a2282fdf2d4d6f3396
                                        
                                            GET /images/niches/basket.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 669
Last-Modified: Tue, 06 Dec 2016 16:00:04 GMT
Connection: keep-alive
Etag: "5846e084-29d"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   669
Md5:    a37ce15bef144fedee01c93550193ff2
Sha1:   33753b5cf540e31540a755d9228db83af97a29f3
Sha256: 3fbf8ef9981958975f9c374b8ae8b566fadee73abd3da8b87a79f0d842533139
                                        
                                            GET /images/niches/group.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 753
Last-Modified: Tue, 06 Dec 2016 16:00:07 GMT
Connection: keep-alive
Etag: "5846e087-2f1"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   753
Md5:    3afbbb77c13a366898f9088f7ae086a0
Sha1:   fc729cc6d3b5f029d751cd7e934e97e8e286ac0b
Sha256: 41d6484deb80501dd6ba9dd26cb7d54cc8a6d20a03c9c86f15edc632a44ad552
                                        
                                            GET /images/niches/sports.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 940
Last-Modified: Tue, 06 Dec 2016 16:00:11 GMT
Connection: keep-alive
Etag: "5846e08b-3ac"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   940
Md5:    2112d59f07fb1eb2b9d93d902fddaa4e
Sha1:   9cc8df91ef63068c138b82afd030d03af13b2ec1
Sha256: ff1f5819cc6e7b150bb0377972bff0a5d0dd4a26fd17690b15b9a8451cbbe0f7
                                        
                                            GET /images/niches/computer.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 667
Last-Modified: Tue, 06 Dec 2016 16:00:06 GMT
Connection: keep-alive
Etag: "5846e086-29b"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   667
Md5:    43b3a7333f4577be2b5799fdc8b42624
Sha1:   88866f2ea6ba29a97528ace506bea9e67100ae2c
Sha256: e98a48c1a5362b16903a1e97790bf044510bcc12a1e77416c4b2c570583d3f8d
                                        
                                            GET /images/niches/html.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 578
Last-Modified: Tue, 06 Dec 2016 16:00:08 GMT
Connection: keep-alive
Etag: "5846e088-242"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   578
Md5:    97d0ea08bfa5531671fe6e17ee9d1c09
Sha1:   35ba36a3dbc2a35f42b9a8b91f36fd7315446593
Sha256: 39120ed2f129bb1fc5c8140e6f60c01e8692fc7be7d3fc5ee13d2bce47275b65
                                        
                                            GET /images/info.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 778
Last-Modified: Tue, 06 Dec 2016 15:58:52 GMT
Connection: keep-alive
Etag: "5846e03c-30a"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   778
Md5:    3750c701d2ec35a45d289b9b9c1a0667
Sha1:   04b482344d75d0732275727bd73cceb9b049d276
Sha256: ff9c48d8c2d063932c7aadd5e15ddfdc76b7111bf0715f3a192bba26df2c531c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         50.63.243.230
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Aug 2018 21:21:30 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=94919, public, no-transform, must-revalidate
Last-Modified: Fri, 10 Aug 2018 13:06:45 GMT
Expires: Sun, 12 Aug 2018 01:06:45 GMT
Etag: "9c3f58dc81b54400b3fc1e10a31c16ef475d8c50"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1776
Connection: close


--- Additional Info ---
Magic:  data
Size:   1776
Md5:    6deab1a92472c3b378de528d79c04e86
Sha1:   9c3f58dc81b54400b3fc1e10a31c16ef475d8c50
Sha256: 0477656f1db352a5e84d0db535e53c9a1c711de643b41bc2742ca8d212ab6e9f
                                        
                                            GET /images/flags/gb.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 599
Last-Modified: Tue, 06 Dec 2016 15:59:25 GMT
Connection: keep-alive
Etag: "5846e05d-257"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 11, 8-bit/color RGB, non-interlaced
Size:   599
Md5:    0894999b108830afc0733ee7b6e08310
Sha1:   a98ec259c5e198fffb3116e4cf950e2d8b695880
Sha256: 5d72c5a8bef80fca6f99f476e15ec95ce2d5e5f65c6dab9ee8e56348be0d39fc
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Aug 2018 21:21:30 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    4e1255c16d5bae957e21e0b224afa036
Sha1:   f40d1ebc33685bec7f266d5a705d1562a0a82cf6
Sha256: b8a74fcd1c6f2b58a199b1a1f97a168336e24af064f9f8600ce8837d9e063cca
                                        
                                            GET /images/globe.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1019
Last-Modified: Tue, 06 Dec 2016 15:58:50 GMT
Connection: keep-alive
Etag: "5846e03a-3fb"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 16
Size:   1019
Md5:    562cfa7e48a523ae21a3b0fe40219005
Sha1:   b3a63a42ab8ac3934221d2f66f02df7c9d1db674
Sha256: 35a8f55a9cd9b89db9116d81ef55fc78a796e702dbc247b27a27e924c1df4d92
                                        
                                            GET /images/empty.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 43
Last-Modified: Tue, 06 Dec 2016 15:58:48 GMT
Connection: keep-alive
Etag: "5846e038-2b"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /images/icons/gplus-16.png HTTP/1.1 
Host: ssl.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 737
Date: Fri, 13 Jul 2018 09:10:19 GMT
Expires: Sat, 13 Jul 2019 09:10:19 GMT
Last-Modified: Thu, 21 Apr 2016 03:17:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2463071
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   737
Md5:    b0f4eb2fd6b1ff3da593c2f45cf947fd
Sha1:   324ba38e4c698495fc911c6e9e8bcf849a5cbbf1
Sha256: dcd07bf4ffba2d11c6d69171634486c68daa0d87587a55b9a06cf22170cbf28f
                                        
                                            GET /images/social_facebook.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1201
Last-Modified: Tue, 06 Dec 2016 15:58:59 GMT
Connection: keep-alive
Etag: "5846e043-4b1"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   1201
Md5:    c43e131c9d31d142a3d8fd1b5ae2c6f7
Sha1:   08c5e9ae4fde218f721dad73c531ff8765724f77
Sha256: f226636988d44a409b495e25b59575b7b173f386b8d2037e2426d36422011d76
                                        
                                            GET /images/social_twitter.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1231
Last-Modified: Tue, 06 Dec 2016 15:59:00 GMT
Connection: keep-alive
Etag: "5846e044-4cf"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   1231
Md5:    30b65c6d84c50f320e5d0c46405d1791
Sha1:   c1c860e1411e88900645cf8fffb5ae412eef0ea9
Sha256: 29c2aa26983afdbf34146cfc2c5d0a7f5e9ecc7486c6690d8032e0f1ece624b0
                                        
                                            GET /images/accept.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1226
Last-Modified: Tue, 06 Dec 2016 15:58:45 GMT
Connection: keep-alive
Etag: "5846e035-4ca"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   1226
Md5:    eca5ae4f661bca4345cf9faed5dae045
Sha1:   8f0078e6779aba362109cd01e6ac08043750dcbc
Sha256: 984771f4e12e8b6309c510b8a3d55c753ed1d92e695690e68a492e2d601d2441
                                        
                                            GET /counter/counter.js HTTP/1.1 
Host: www.statcounter.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         104.20.2.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 10 Aug 2018 21:21:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d665f866a3820b19d89ce4eeec00a89ab1533936090; expires=Sat, 10-Aug-19 21:21:30 GMT; path=/; domain=.statcounter.com; HttpOnly
Last-Modified: Fri, 28 Apr 2017 13:36:00 GMT
Etag: W/"59034540-7083"
Expires: Sat, 11 Aug 2018 09:21:30 GMT
Cache-Control: public, max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 44858336cb51428b-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10411
Md5:    76fd35609823ca67dff9d7be59b45e36
Sha1:   b5d1acf76d05f59c5b237ccd864fe2ac500720ad
Sha256: 0881d77aaf767a2e38bda49eb01953c4a3a18c98b4d794ab74f4acf85352a0fb
                                        
                                            GET /adsid/integrator.js?domain=www.statshow.com HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Fri, 10 Aug 2018 21:21:30 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /adsid/integrator.js?domain=www.statshow.com HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Fri, 10 Aug 2018 21:21:30 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /images/reliabity_new.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1219
Last-Modified: Tue, 06 Dec 2016 15:58:57 GMT
Connection: keep-alive
Etag: "5846e041-4c3"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   1219
Md5:    efc94509d51164eabceb16b6374b9196
Sha1:   3875d545cd32a83a65a0e61a9ea33650dee3a617
Sha256: d9f641e2c689a1feb2e68380ba27a35f9574acb93e7aff2e09612cbcb3b4db89
                                        
                                            GET /images/shield.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1214
Last-Modified: Tue, 06 Dec 2016 15:58:59 GMT
Connection: keep-alive
Etag: "5846e043-4be"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   1214
Md5:    7c36c84a0afe6817b93bf740898b8d8b
Sha1:   efdb56c1f2f43285c1e473e9e24383f4cd83463d
Sha256: 006392c4972ad3892b47998c5f34175e6b41f1a704bd3ccc8f8e33683c6722e9
                                        
                                            GET /images/safety.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1207
Last-Modified: Tue, 06 Dec 2016 15:58:58 GMT
Connection: keep-alive
Etag: "5846e042-4b7"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   1207
Md5:    6744826c96ea4c5ca63fcf7e5ecc5c92
Sha1:   d1cdf489d56e28e7fabf2cf964b1e94d5bb0c027
Sha256: 6e0b0d05047a148cc789bda18ff5d8b5d78c25c58f70306fe6da38d2bbb785a5
                                        
                                            GET /images/benjamin_franklin.jpg HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 4549
Last-Modified: Tue, 06 Dec 2016 15:58:46 GMT
Connection: keep-alive
Etag: "5846e036-11c5"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4549
Md5:    9c1bd2f9ef4aa1130dbd90beb6d19695
Sha1:   a1822d8203fa7cf35e9e342065b9a583be77032b
Sha256: 632dc44d236889e4b012b37afa8125eb429e4bf18705fd1b528bbc89944b1fef
                                        
                                            GET /images/pagerank/pr0.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 141
Last-Modified: Tue, 06 Dec 2016 16:00:14 GMT
Connection: keep-alive
Etag: "5846e08e-8d"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 80 x 15, 4-bit colormap, non-interlaced
Size:   141
Md5:    73ecf554ceae5a90b58bdb341fa7c774
Sha1:   9155251b0da41e5d7939671dbf1d43a51e16cfbc
Sha256: ff18b74f886c122a139aaf422ff2d56a4eb5010d92dfdc52f80e6ff43175dad8
                                        
                                            GET /images/dialog.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 355
Last-Modified: Tue, 06 Dec 2016 15:58:48 GMT
Connection: keep-alive
Etag: "5846e038-163"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 16
Size:   355
Md5:    32d7411659f06b0659715ae82dfa18d9
Sha1:   138cca7e0b6f55d37401198d4bcf86b0f11a380e
Sha256: c98865b54f7f63395d5b50fbab774c60fdf67edae60ea7217118e0f307e1dfa6
                                        
                                            GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2FStatShow%2F&locale=en_US&send=false&layout=button_count&width=80&show_faces=false&action=like&colorscheme=light&font&height=21 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         31.13.72.38
HTTP/1.1 302 Found
Content-Type: text/html; charset="utf-8"
                                        
Location: https://www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2FStatShow%2F&locale=en_US&send=false&layout=button_count&width=80&show_faces=false&action=like&colorscheme=light&font&height=21
X-FB-Debug: m3NSLB8VWlYwFkJ6PHQXJQ+FO4w/AeuGxaUYAv8VRIrzN+oix55s1VmwkdXwU8xHAqM2RLrdRFbGdHGCjKzvAQ==
Date: Fri, 10 Aug 2018 21:21:30 GMT
Connection: keep-alive
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /images/bg.jpg HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1748
Last-Modified: Tue, 06 Dec 2016 15:58:46 GMT
Connection: keep-alive
Etag: "5846e036-6d4"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1748
Md5:    cbfe19c5ae39a1a5f884313937c1d23b
Sha1:   b15eb119cf5209794c112094da96fb2f7378205b
Sha256: 029241de3474f5032d3c237287ef675189b76f5c3653f57786554b74e56e7578
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 4096
Last-Modified: Tue, 06 Dec 2016 15:58:53 GMT
Connection: keep-alive
Etag: "5846e03d-1000"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 146 x 88, 8-bit colormap, non-interlaced
Size:   4096
Md5:    458847717bd3e263f1a28a931bf628be
Sha1:   99b6cf919ac8b98c3af2927245c7c319ac6d2c04
Sha256: 4327fba0407a85d97a23f262df30720576301e441a4443d32e7ba8934fd1d94d
                                        
                                            GET /images/header_bottom_border_line.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1137
Last-Modified: Tue, 06 Dec 2016 15:58:51 GMT
Connection: keep-alive
Etag: "5846e03b-471"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 2 x 179
Size:   1137
Md5:    3251c70b5c875256f8ea52f26ce4c7d0
Sha1:   3a171aecc67275b469052b8396066553952de151
Sha256: 6c1d37f71acd3e543edf0c033f38964358eee60a496f4c479dfab9c635058826
                                        
                                            GET /images/search_bar.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 3535
Last-Modified: Tue, 06 Dec 2016 15:58:58 GMT
Connection: keep-alive
Etag: "5846e042-dcf"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 473 x 28
Size:   3535
Md5:    6ececcd2c6bbb457a8c4aae358f968fe
Sha1:   55c3fd5c97148b7aa393741f4deab9a6e82535b6
Sha256: 1063535f63561cc9c824ef22a7de91622acb0f07f7a3f6d145d9d5ddd3c3a6f1
                                        
                                            GET /images/search_bar_ani.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 4682
Last-Modified: Tue, 06 Dec 2016 15:58:58 GMT
Connection: keep-alive
Etag: "5846e042-124a"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 473 x 56
Size:   4682
Md5:    d0dc45f475b72ba26a2e3290725d3058
Sha1:   9333b3862738d757b8dd58313d07e95c25057680
Sha256: 4a0dfdc2471b89dd9cf8cff9c5aebae87204138a5d04226cf661efcaa0a797da
                                        
                                            GET /pagead/js/r20180806/r20180604/show_ads_impl.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Fri, 10 Aug 2018 21:21:30 GMT
Expires: Fri, 10 Aug 2018 21:21:30 GMT
Cache-Control: private, max-age=1209600
Etag: 2310646473251455546
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 70926
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   70926
Md5:    a8edccd29b678ac9ad465eceecfdbc1c
Sha1:   bf42e7374ed0fd9bf6593f13e9abc1faf039dbd8
Sha256: 8e8f17f37d72c34fbbb828203ccfbd496b10fbbf882bddf75f9a3aa26cd7b150
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Aug 2018 21:21:30 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    354cc356135639b0df94657734abf423
Sha1:   45a484a2c9ddd0fcc20c4fd845499312010f8836
Sha256: 55634e80a413c77743823a916d20de03accda7e6a5aaa21fcb21928826ec713f
                                        
                                            GET /images/header_bottom_border.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:34 GMT
Content-Length: 1243
Last-Modified: Tue, 06 Dec 2016 15:58:50 GMT
Connection: keep-alive
Etag: "5846e03a-4db"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 995 x 6
Size:   1243
Md5:    8876dbf9184cbdf7ffdc8bfb99752775
Sha1:   6f588d96d81cdef92bc1988c711223bf3425e936
Sha256: 6e4df4d14703c4e1e9867e56e908ec3b9c17ad7bcaf710c66bdb38c891b90fdd
                                        
                                            GET /pub-config/r20160913/ca-pub-6072412641931604.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 125
Date: Fri, 10 Aug 2018 21:21:31 GMT
Expires: Sat, 11 Aug 2018 09:21:31 GMT
Last-Modified: Thu, 09 Aug 2018 23:24:55 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=43200
Age: 0
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   125
Md5:    21aea2dae0239adff4f9f063cdacfc76
Sha1:   ce64c497ac1dd86393da79e8cea239de113c1de7
Sha256: a59ee78166b8467dd7dd8c7acb03d8df7d16cf4a04f45c8558366df1c33b868f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=153016
Date: Fri, 10 Aug 2018 21:21:31 GMT
Etag: "5b6da897-1d7"
Expires: Sun, 12 Aug 2018 15:28:32 GMT
Last-Modified: Fri, 10 Aug 2018 15:00:39 GMT
Server: ECS (arn/459B)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    53cf58baffed662125dc8ec497e793a8
Sha1:   d6f86e428aa887ad8cf00fbf03ac2c4561dd9698
Sha256: e352a34c875cd6c5d5af6afbda767e80f14dc9d6583ca742b6caf3119afcda0a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=165196
Date: Fri, 10 Aug 2018 21:21:31 GMT
Etag: "5b6dc013-1d7"
Expires: Sun, 12 Aug 2018 18:54:25 GMT
Last-Modified: Fri, 10 Aug 2018 16:40:51 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    152e5a5aee549f6189baefde1b095cc0
Sha1:   67c0618c9eb83ccbbdfca09125c5f7201fcb2415
Sha256: 4cac5020e7873c89e6b6e95ef65f8b1c9e5ceda1835d3b023ad1f494802b8de0
                                        
                                            GET /images/menu_bullet.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:35 GMT
Content-Length: 1101
Last-Modified: Tue, 06 Dec 2016 15:58:54 GMT
Connection: keep-alive
Etag: "5846e03e-44d"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 7 x 7
Size:   1101
Md5:    402608eb1410a5070790ebc2523cee28
Sha1:   ac4547505d5de2cabdc8f89f7e84dc8352f2268b
Sha256: 24b263533f6d116b9b225110e9a4172aa137e3ff04ea0d7ea7dac7fd73cff81c
                                        
                                            GET /images/qmenu_back.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:35 GMT
Content-Length: 213
Last-Modified: Tue, 06 Dec 2016 15:58:57 GMT
Connection: keep-alive
Etag: "5846e041-d5"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 5 x 34, 8-bit colormap, non-interlaced
Size:   213
Md5:    6ac8c1596d6fd3edd49625742b4e9750
Sha1:   60714a94e87552b1a90b43d4d52e305a0a43af06
Sha256: 88b3889de21aa3bf0cc5d5ea2938e38b8e79cb30b71a1c514435b05025fa9395
                                        
                                            GET /pagead/html/r20180806/r20180604/zrt_lookup.html HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Tue, 07 Aug 2018 05:11:30 GMT
Expires: Tue, 21 Aug 2018 05:11:30 GMT
Etag: 7521803712505135873
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
Content-Length: 6934
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 317402
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6934
Md5:    dac325e7092d714169608d05c1a20451
Sha1:   e02056202d2369ebc84cb93e803a224cbe179f5c
Sha256: 7264a61ca0829538cde844b61ec355095dcb1e468b3a1d62456991403786662e
                                        
                                            GET /pagead/js/r20180806/r20180604/osd.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Tue, 07 Aug 2018 05:40:05 GMT
Expires: Tue, 21 Aug 2018 05:40:05 GMT
Etag: 2346024023569693673
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 26268
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 315687
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   26268
Md5:    1a7c342000819e71df7b6fb8eeb45596
Sha1:   ee2df92e0f0d1ee8a7c9ea1528c03af6a6014a57
Sha256: 6fa95c87dc43c609f4d1790c9d28d7629d289b48e07bf79071dbbcf159b03245
                                        
                                            GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2FStatShow%2F&locale=en_US&send=false&layout=button_count&width=80&show_faces=false&action=like&colorscheme=light&font&height=21 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         31.13.72.38
HTTP/1.1 200 OK
Content-Type: text/html; charset="utf-8"
                                        
Timing-Allow-Origin: *
X-XSS-Protection: 0
Pragma: no-cache
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Cache-Control: private, no-cache, no-store, must-revalidate
Strict-Transport-Security: max-age=15552000; preload
X-Content-Type-Options: nosniff
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-FB-Debug: Lq+p9K79o7JBmu2gSEQB/fy8ZuLlr2wrpmJOsHLvE1TvYWS4UkT90S/OWUyv4wLaKEdRe1jjmxgnAYURUrbG/g==
Date: Fri, 10 Aug 2018 21:21:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14444
Md5:    33e259a2d3c859bd550233b842e9959a
Sha1:   604f8ccdc7b4dc02544c60924e381eb38141f379
Sha256: 8af251c2ae3553d2e010cfd04d55e4c5946f148f204f0eab92a074f741cf3053
                                        
                                            GET /pagead/ads?client=ca-pub-6072412641931604&output=html&h=90&slotname=3070290120&adk=3024896145&adf=807048394&w=728&lmt=1533936089&guci=1.2.0.0.2.2.0&format=728x90&url=http%3A%2F%2Fwww.statshow.com%2Fwww%2Fnodomain.ctbc.com.br&ea=0&flash=10.0.45&wgl=0&adsid=NT&dt=1533936090764&bpp=153&fdt=162&idt=362&shv=r20180806&cbv=r20180604&saldr=aa&abxe=1&correlator=5019109863997&frm=20&pv=2&ga_vid=509416200.1533936092&ga_sid=1533936092&ga_hid=1662992494&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=224&ady=131&biw=1176&bih=754&scr_x=0&scr_y=0&eid=368226400%2C21062171%2C21060853&oid=3&rx=0&eae=4&fc=1808&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=16&bc=1&ifi=1&dtd=995 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.130
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Location: http://www.statshow.com/ads/ad7.html
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Fri, 10 Aug 2018 21:21:32 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Fri, 10-Aug-2018 21:36:32 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   82
Md5:    87b49554493c15fb23b8e5d2f13b1ebf
Sha1:   328cbcb1c58530fd3f554ca7386ef7a85e1e982f
Sha256: 590b4bba70579d67368d97259fc85f56fda4fa5cb82f404fa8ec67a43369db17
                                        
                                            GET /ads/ad7.html HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:36 GMT
Content-Length: 201
Last-Modified: Fri, 13 Apr 2018 23:37:59 GMT
Connection: keep-alive
Etag: "5ad13f57-c9"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   201
Md5:    6da31fb8bd20770599a62a64b0744a38
Sha1:   e7c0107aa6bd3cd56eef54ddd6a0488daeb0d558
Sha256: 1da6289918745126cf07b5acf9f82af56ee3e0913da03a7b0a756367918ba36a
                                        
                                            GET /images/title_sub.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:36 GMT
Content-Length: 1220
Last-Modified: Tue, 06 Dec 2016 15:59:03 GMT
Connection: keep-alive
Etag: "5846e047-4c4"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 1000 x 38, 8-bit colormap, non-interlaced
Size:   1220
Md5:    8652738f6e950c8ba6c373727b1ab9c8
Sha1:   fffcc0502c44d371da1b334a9e0ddb3cd89fcfd9
Sha256: ba6877ed28b503efbbf7d277501ac51fb6c23b4e65c018577edb8ddeb6869a0e
                                        
                                            GET /pagead/ads?client=ca-pub-6072412641931604&output=html&h=280&slotname=6840466659&adk=3119329098&adf=807048394&w=336&lmt=1533936089&guci=1.2.0.0.2.2.0&format=336x280&url=http%3A%2F%2Fwww.statshow.com%2Fwww%2Fnodomain.ctbc.com.br&ea=0&flash=10.0.45&wgl=0&adsid=NT&dt=1533936092109&bpp=41&fdt=46&idt=153&shv=r20180806&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=728x90&correlator=5019109863997&frm=20&pv=1&ga_vid=509416200.1533936092&ga_sid=1533936092&ga_hid=1662992494&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=103&ady=449&biw=1176&bih=754&scr_x=0&scr_y=0&eid=368226400%2C21062171%2C21060853&oid=3&rx=0&eae=4&fc=1808&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=16&bc=1&ifi=2&dtd=180 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.130
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Location: http://www.statshow.com/ads/ad8.html
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Fri, 10 Aug 2018 21:21:32 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Fri, 10-Aug-2018 21:36:32 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   82
Md5:    87b49554493c15fb23b8e5d2f13b1ebf
Sha1:   328cbcb1c58530fd3f554ca7386ef7a85e1e982f
Sha256: 590b4bba70579d67368d97259fc85f56fda4fa5cb82f404fa8ec67a43369db17
                                        
                                            GET /images/bt_update.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:36 GMT
Content-Length: 3295
Last-Modified: Tue, 06 Dec 2016 15:58:48 GMT
Connection: keep-alive
Etag: "5846e038-cdf"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 100 x 78, 8-bit colormap, non-interlaced
Size:   3295
Md5:    71daa94eeb6f3636e230fe569afd4379
Sha1:   c230eb0a52c5921630f72549ac1f75ef91fd5e2a
Sha256: bad72cfe9a3e7b944087bd4b2cc093c9a2d8d44070f3b9bbc9e608d639be29ea
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
If-Modified-Since: Fri, 03 Oct 2014 00:48:42 GMT

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 10 Aug 2018 19:32:09 GMT
Expires: Fri, 10 Aug 2018 21:32:09 GMT
Last-Modified: Fri, 18 May 2018 01:10:24 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14386
Cache-Control: public, max-age=7200
Age: 6563


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14386
Md5:    b3de885583a477d4e31568948d6bebd7
Sha1:   2ce8d853244dde551c41d5207d6f71c567bde8c6
Sha256: e1bb5aa555a0d875e2a67884ceaa0629e08994a8aabadc2fac5b6915793dbf75
                                        
                                            GET /images/bottom_back.jpg HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:36 GMT
Content-Length: 1670
Last-Modified: Tue, 06 Dec 2016 15:58:47 GMT
Connection: keep-alive
Etag: "5846e037-686"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1670
Md5:    abe4aec963805e828b9ae52becbbd2e5
Sha1:   154a4805b309b5afae7e18172cb29e3b7706b731
Sha256: ebf56055a130346af0a0f33efc103a93edab4172fa1e7c3b9a21473c36ebd4a5
                                        
                                            GET /images/logo_bottom.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:36 GMT
Content-Length: 4994
Last-Modified: Tue, 06 Dec 2016 15:58:53 GMT
Connection: keep-alive
Etag: "5846e03d-1382"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 152 x 92, 8-bit colormap, non-interlaced
Size:   4994
Md5:    b7012cd13333ab09b6ff5a8ccfe75f1b
Sha1:   0971652cda11b42db77984bff4c0acb99e4dca90
Sha256: 37a8279ec3440afe279d370a168023078fbd1f8ee62f8841ead93efb65a31fb2
                                        
                                            GET /images/world_bottom.png HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:36 GMT
Content-Length: 5845
Last-Modified: Tue, 06 Dec 2016 15:59:04 GMT
Connection: keep-alive
Etag: "5846e048-16d5"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 152 x 70, 8-bit colormap, non-interlaced
Size:   5845
Md5:    ae4938955b448a4b2000d640a3bcb7df
Sha1:   e426bc6414a69bbb2aa22f38ac5003b04da22c79
Sha256: 4f4df946e7ae920044ac1571d2045a8e3dd29e4e4459db421c956c06a1d12bc1
                                        
                                            GET /images/ibm_logo.gif HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/css/style.min.css?v=6
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:36 GMT
Content-Length: 1250
Last-Modified: Tue, 06 Dec 2016 15:58:51 GMT
Connection: keep-alive
Etag: "5846e03b-4e2"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 41 x 30
Size:   1250
Md5:    4c088561f57f35371d52473fbb632c95
Sha1:   9b3ea3cdcb1fff336af2b5931002df05bc3ce713
Sha256: 97995c987a5a9b158486d0934fdf83c570134bc672baa5b83737c3c344856d06
                                        
                                            GET /widgets.js HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         192.229.233.25
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Content-Encoding: gzip
Cache-Control: public, max-age=1800
Date: Fri, 10 Aug 2018 21:21:32 GMT
Etag: "6a149d6ef4cd817b9ca0747ca86325e5+gzip"
Last-Modified: Thu, 09 Aug 2018 23:35:08 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (arn/469E)
Vary: Accept-Encoding
X-Cache: HIT
Content-Length: 35362


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Fri Aug 10 01:35:08 2018
Size:   35362
Md5:    b1a7b25869d2fdd659e9793bde870f99
Sha1:   bd5808b4927a37f9ca9f71c23161d18cff6f2f66
Sha256: a9354ca0faf35e9a4db1c551f77a71190cbb0f8fd33da2d912c23fa636066933
                                        
                                            GET /stats/0.php?1445863&@f16&@g1&@h1&@i1&@j1533936092557&@k0&@l1&@mnodomain.ctbc.com.br%20-%20Worth%20and%20traffic%20on%20StatShow&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1176&@vhttp%3A%2F%2Fwww.statshow.com%2Fwww%2Fnodomain.ctbc.com.br&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         208.43.241.179
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Fri, 10 Aug 2018 21:21:32 GMT
Content-Length: 47
Connection: close
Set-Cookie: CountUid=615c581c-afpe-45ef-b948-79ef17d5cb49; domain=.histats.com; Max-Age=31536000; Expires=Sat, 10-Aug-2019 21:21:32 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   47
Md5:    06b05ae9614bafae9b0b09cfbeed559e
Sha1:   9b087683529b7b89a117b2d5cbb35a93e7dcbaca
Sha256: a60692031ce09be66be89784e8b0214c0f8b6f52cd8fd6a36129a635ffe41ad2
                                        
                                            GET /t.php?sc_project=11711665&java=1&security=5d1f966a&u1=255A193709C44FAC4229AC3479D50B05&sc_random=0.6641829517028386&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1176&h=885&camefrom=&u=http%3A//www.statshow.com/www/nodomain.ctbc.com.br&t=nodomain.ctbc.com.br%20-%20Worth%20and%20traffic%20on%20StatShow&rcat=d&rdom=d&rdomg=new&bb=1&sc_snum=1&sess=7a9eb4&p=0&invisible=1 HTTP/1.1 
Host: c.statcounter.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: __cfduid=d665f866a3820b19d89ce4eeec00a89ab1533936090

                                         
                                         104.20.3.47
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 10 Aug 2018 21:21:32 GMT
Content-Length: 49
Connection: keep-alive
P3P: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Set-Cookie: is_unique=sc11711665.1533936092.0; expires=Wed, 09-Aug-2023 21:21:32 GMT; path=/; domain=.statcounter.com is_visitor_unique=1533936092335870294; expires=Sun, 09-Aug-2020 21:21:32 GMT; path=/; domain=.statcounter.com
Server: cloudflare
CF-RAY: 4485834335084285-OSL


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    56398e76be6355ad5999b262208a17c9
Sha1:   a1fdee122b95748d81cee426d717c05b5174fe96
Sha256: 2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
                                        
                                            GET /r/collect?v=1&_v=j68&a=1662992494&t=pageview&_s=1&dl=http%3A%2F%2Fwww.statshow.com%2Fwww%2Fnodomain.ctbc.com.br&ul=en-us&de=UTF-8&dt=nodomain.ctbc.com.br%20-%20Worth%20and%20traffic%20on%20StatShow&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IAhAAEQ~&jid=1681254345&gjid=1331673011&cid=509416200.1533936092&tid=UA-31082176-1&_gid=1426988889.1533936093&_r=1&z=732773662 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.14
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-31082176-1&cid=509416200.1533936092&jid=1681254345&_gid=1426988889.1533936093&gjid=1331673011&_v=j68&z=732773662
Access-Control-Allow-Origin: *
Date: Fri, 10 Aug 2018 21:21:32 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 418


--- Additional Info ---
Magic:  HTML document text
Size:   418
Md5:    e9ed444b8a169bfd5511b24f01809221
Sha1:   46b09b17d3660fd82d38eacc629547ed0704faa6
Sha256: fe0c5f0f230104fc7d0f7dd7812d64457b627d9d1ba1dd25ed0b988157313c7b
                                        
                                            GET /ads/ad8.html HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway; HstCfa1445863=1533936092557; HstCla1445863=1533936092557; HstCmu1445863=1533936092557; HstPn1445863=1; HstPt1445863=1; HstCnv1445863=1; HstCns1445863=1; sc_is_visitor_unique=rx11711665.1533936093.255A193709C44FAC4229AC3479D50B05.1.1.1.1.1.1.1.1.1

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:36 GMT
Content-Length: 193
Last-Modified: Fri, 13 Apr 2018 23:38:00 GMT
Connection: keep-alive
Etag: "5ad13f58-c1"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   193
Md5:    f6933cbd8677377ef605d327c5249a42
Sha1:   81f1a1400783740a4aac27292083cd5d2bf1127b
Sha256: 84c104aa361e719b36286c9df5910d8dc159f9161c50974d11d0b59aa65c913e
                                        
                                            GET /banners/1/led-Uncertain_about_life_decisions1_728x90.jpg?s=1&p=7&w=103652&t=0&c=19236&cs=0 HTTP/1.1 
Host: affiliates.oranum.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/ads/ad7.html

                                         
                                         93.93.53.206
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Server: Apache
Location: https://affiliates.oranum.com/banners/1/led-Uncertain_about_life_decisions1_728x90.jpg?s=1&p=7&w=103652&t=0&c=19236&cs=0
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 277
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   277
Md5:    365c9ac9831974767126cbdb92f501cd
Sha1:   7e5aec09fcf27191a5fd9340e585bf914100dad8
Sha256: 354f3440e1aefb754a2fd0a6c2463840505f525a43ae7fc2e2b0be041f60669d
                                        
                                            GET /?ie=UTF8&f=q&t=m&q=54,-2&hl=en-US&output=embed&z=3 HTTP/1.1 
Host: maps.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.14
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s54,-2!5e0!6i3!3m1!1sen-US!5m1!1sen-US
Server: mafe
Content-Length: 297
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   297
Md5:    333265ab2345318d4ccecb2b4c883e81
Sha1:   e30fc295cbc757eadc9712a1f374ba950d59d16a
Sha256: 448896fdbb21e426408e4850ddb3c955f7c3edcd51e081d43b831e65a0aa5243
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    420fd53dfcb2a37c9b24b34635d576e9
Sha1:   641626eb3b0e018d28f31b867109f88db2a028c8
Sha256: c19ff513353a7844dc206d63b4abb6260c591f889a5cd76f50e1de024fe949ac
                                        
                                            GET /v0.0.1/br/livefeed/embed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0 HTTP/1.1 
Host: pr.oranum.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/ads/ad8.html

                                         
                                         216.172.0.198
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: unknown
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache
Date: Fri, 10 Aug 2018 21:21:33 GMT
Access-Control-Allow-Origin: *
X-Real-Source: -


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   1294
Md5:    4a811910016af443359593e5889c6689
Sha1:   c650e51e75ca7ad578876e5867d517904d5e3fd2
Sha256: c21ff7a3a0df47dcbec69abaa379b475ddc5a3518b7c35e98bbbd779a47c041e
                                        
                                            GET /rsrc.php/v3iEpO4/y6/l/en_US/osMNsGSOKxU.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2FStatShow%2F&locale=en_US&send=false&layout=button_count&width=80&show_faces=false&action=like&colorscheme=light&font&height=21
Origin: https://www.facebook.com

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Timing-Allow-Origin: *
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Access-Control-Allow-Credentials: true
Cache-Control: public,max-age=31536000,immutable
Expires: Sat, 10 Aug 2019 19:08:15 GMT
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Content-Encoding: gzip
Content-MD5: a7f3v+QgY+SwqxCSGYSbPw==
X-FB-Debug: MUq7K+udljGsUtJHsLBo9CdBa6I1tKSBLlhAOTMue4VBjpIR30VtG9dv7afud9Yrto9THJpScQgN/gHVV1Zmmg==
Date: Fri, 10 Aug 2018 21:21:33 GMT
Connection: keep-alive
Content-Length: 140909


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   140909
Md5:    6bb7f7bfe42063e4b0ab109219849b3f
Sha1:   82abe009930fed2fd6901f4d2e07f601b05f3685
Sha256: dfd9205f888823833f9c5d92cf2dd62b47c6a65d67ee5a2ef867712dfeee1d92
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-31082176-1&cid=509416200.1533936092&jid=1681254345&_gid=1426988889.1533936093&gjid=1331673011&_v=j68&z=732773662 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: test_cookie=CheckForPermission

                                         
                                         74.125.131.157
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Fri, 10 Aug 2018 21:21:33 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0 HTTP/1.1 
Host: pr.oranum.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/ads/ad8.html

                                         
                                         216.172.0.198
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: unknown
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
Cache-Control: no-cache
Date: Fri, 10 Aug 2018 21:21:33 GMT
Access-Control-Allow-Origin: *
X-Real-Source: -
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3884
Md5:    2d83bfcdb532239c93699fe121181e9c
Sha1:   075f2a0c5a1d6126eead6e1553afd3c80aa64f88
Sha256: 22194777d57a64988c4a8065ee284491d871424232a31a03feec062c733c5bee
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 08 Aug 2018 05:54:48 GMT
Etag: 36B9F8214F07894EC0AB1F2C0AF20DBA937CA447
X-OCSP-Responder-ID: rmdccaocsp19
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=375794
Expires: Wed, 15 Aug 2018 05:44:47 GMT
Date: Fri, 10 Aug 2018 21:21:33 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    364d030f5d4823c122d1079aa0d2a846
Sha1:   36b9f8214f07894ec0ab1f2c0af20dba937ca447
Sha256: 8a4f37f8c4899e19017a7560b3c258918eee72e6931d30b3726fd29420647f0c
                                        
                                            GET /pr/oranum/banners/css/livefeed_140-v221419.css HTTP/1.1 
Host: static0.doclercdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         104.20.34.238
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d067036bf3c0bd7e38d0b91b2ebf723fa1533936093; expires=Sat, 10-Aug-19 21:21:33 GMT; path=/; domain=.doclercdn.com; HttpOnly
Last-Modified: Tue, 24 Apr 2018 07:40:20 GMT
Vary: Accept-Encoding
X-Real-Source: static0.doclercdn.com
Expires: Fri, 24 Aug 2018 21:21:33 GMT
Cache-Control: public, max-age=1209600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare
CF-RAY: 4485834924674273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2930
Md5:    92e7b81e1addcb3e247d7be65e4bdcb2
Sha1:   06c736a6c08f9121b3b61f1e1620aff520256753
Sha256: 65f716ca1b2c89d8658db436254ff6db69f71c6f8e610c9d952fccf93c4502cc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 05 Aug 2018 22:51:21 GMT
Etag: E54FBF182F5E67F304A0CF3730BA24A71DD58596
X-OCSP-Responder-ID: rmdccaocsp19
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=177592
Expires: Sun, 12 Aug 2018 22:41:25 GMT
Date: Fri, 10 Aug 2018 21:21:33 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    ddf31aec69a599fc1239df882142c846
Sha1:   e54fbf182f5e67f304a0cf3730ba24a71dd58596
Sha256: b6dac1a32a80023e0ae35b1168e8bb2da8089ff3bdcda33ba5ff480ac1767fd8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 05 Aug 2018 22:51:21 GMT
Etag: BEF0EDBC8F5E5C0A27EBB66D16D938E09C93E159
X-OCSP-Responder-ID: rmdccaocsp35
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=177583
Expires: Sun, 12 Aug 2018 22:41:16 GMT
Date: Fri, 10 Aug 2018 21:21:33 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f0463edd32c6f9408be2550457b48f54
Sha1:   bef0edbc8f5e5c0a27ebb66d16d938e09c93e159
Sha256: d4f48bb10368e80407c0f07d02221c7b4a002ebae7b80ada3c80dc452c8583a9
                                        
                                            GET /pr/oranum/banners/images/br_bg_300xx250_type140_cover-v221419.jpg HTTP/1.1 
Host: static1.doclercdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://static0.doclercdn.com/pr/oranum/banners/css/livefeed_140-v221419.css
Cookie: __cfduid=d067036bf3c0bd7e38d0b91b2ebf723fa1533936093

                                         
                                         104.20.34.238
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Content-Length: 19341
Connection: keep-alive
Last-Modified: Tue, 24 Apr 2018 07:40:20 GMT
Etag: "5adedf64-4b8d"
X-Real-Source: static1.doclercdn.com
Expires: Fri, 24 Aug 2018 21:21:33 GMT
Cache-Control: public, max-age=1209600
Access-Control-Allow-Origin: *
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 44858349642c42c1-OSL


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   19341
Md5:    f8c4d29ae4688325125a7b1ddf0e73d8
Sha1:   3ed9fa470f8a036b4c9824018402bb18964add35
Sha256: 29ae54075c919c962b0f5e028ab41dea05d294300fb85b1ef7fd8bb698ce1b4b
                                        
                                            GET /pagead/ads?client=ca-pub-6072412641931604&output=html&adk=1812271804&adf=807048394&lmt=1533936089&plat=1%3A1081352%2C2%3A1081352%2C8%3A32776%2C9%3A32776%2C16%3A8388608%2C26%3A32768%2C30%3A1048576&guci=1.2.0.0.2.2.0&format=0x0&url=http%3A%2F%2Fwww.statshow.com%2Fwww%2Fnodomain.ctbc.com.br&ea=0&flash=10.0.45&pra=5&wgl=0&adsid=NT&dt=1533936092364&bpp=762&fdt=766&idt=910&shv=r20180806&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=728x90%2C336x280%2C300x600&nras=1&correlator=5019109863997&frm=20&pv=1&ga_vid=509416200.1533936092&ga_sid=1533936092&ga_hid=1662992494&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=0&ady=0&biw=1159&bih=754&scr_x=0&scr_y=0&eid=368226400%2C21062171%2C21060853&oid=3&rx=0&eae=6&fc=1808&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7Cs%7C&abl=NS&ppjl=u&fu=16&bc=1&ifi=3&dtd=963 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: test_cookie=CheckForPermission

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Fri, 10 Aug 2018 21:21:33 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: IDE=AHWqTUlyiwf8Zo0uWmtZjT7KVW-f-vYEHlMJZ9qkugzp4Mgrt56DhyQHvhkwiB07; expires=Sun, 09-Aug-2020 21:21:33 GMT; path=/; domain=.doubleclick.net; HttpOnly test_cookie=; domain=.doubleclick.net; path=/; expires=Mon, 21 Jul 2008 23:59:00 GMT
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Expires: Fri, 10 Aug 2018 21:21:33 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   64
Md5:    0781e865abae44cf8b10dc725d63f539
Sha1:   c9f5024f2a546880e819749c32e23830fef111cb
Sha256: 24a7e2c0a5b68aec6126a39465b792b761aab892d7060d78fbab1e14a4cf3363
                                        
                                            GET /pr/_common/scripts/livefeed-v221419.js HTTP/1.1 
Host: static2.doclercdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0
Cookie: __cfduid=d067036bf3c0bd7e38d0b91b2ebf723fa1533936093

                                         
                                         104.20.33.238
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 Apr 2018 07:40:21 GMT
Vary: Accept-Encoding
X-Real-Source: static2.doclercdn.com
Expires: Fri, 24 Aug 2018 21:21:33 GMT
Cache-Control: public, max-age=1209600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Server: cloudflare
CF-RAY: 4485834983f64297-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   47778
Md5:    7d3ee7ce71701e54787817313cc7e5dd
Sha1:   1d474e8fe5d6c57eab2cb29a9a719f15554b4171
Sha256: afdfd4537122d3385ecdc127346e77d74b4968423640c212c771823f76408f44
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   545
Md5:    360c4ad4bd8dba0fb712ca94e110bf0e
Sha1:   b7480ad07dade36f34a1cea3311eda04fa9c763d
Sha256: ca6b1b29ede5c0dcdbf7586749e4c8708bb2ee69bb4a38ce1d22b9ad3d31a84f
                                        
                                            GET /ads/ad9.html HTTP/1.1 
Host: www.statshow.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br
Cookie: PHPSESSID=9es7h3oa35v9ditekpq6l6hdo2; user_country=NO; user_country_name=Norway; HstCfa1445863=1533936092557; HstCla1445863=1533936092557; HstCmu1445863=1533936092557; HstPn1445863=1; HstPt1445863=1; HstCnv1445863=1; HstCns1445863=1; sc_is_visitor_unique=rx11711665.1533936093.255A193709C44FAC4229AC3479D50B05.1.1.1.1.1.1.1.1.1; _ga=GA1.2.509416200.1533936092; _gid=GA1.2.1426988889.1533936093; _gat=1

                                         
                                         158.69.84.99
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 10 Aug 2018 21:21:37 GMT
Content-Length: 213
Last-Modified: Fri, 13 Apr 2018 23:38:00 GMT
Connection: keep-alive
Etag: "5ad13f58-d5"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   213
Md5:    0cb9c904decd21cc72c805d8f918c653
Sha1:   33f4193341729c4a81fbf92ed6b19dbc25067c28
Sha256: d5916dc216746bda799ff39ad6ad5f12a658fc3d7bcd4b9a796092b1a2ee8648
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    7577bfdfa65a28bd66069727f72eb726
Sha1:   0bb6c9edffd33eda2af85acb9d8adfc26a05e9f8
Sha256: a282dd82dbbee1ce8665379e7c386ea8a808721be21460d5a6e04ecaaae13dc9
                                        
                                            GET /rsrc.php/v3/yn/r/lH1ibRl5GKq.png HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2FStatShow%2F&locale=en_US&send=false&layout=button_count&width=80&show_faces=false&action=like&colorscheme=light&font&height=21

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Allow-Credentials: true
Cache-Control: public,max-age=31536000,immutable
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Timing-Allow-Origin: *
Expires: Wed, 31 Jul 2019 23:01:47 GMT
Content-MD5: LsIm49y5qOd6jowRdAWHyQ==
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Access-Control-Allow-Origin: *
X-FB-Debug: xR3mqR6/JD5ufiuGJt4VguKyFZooNBSdoltkNjfuBlGJaphA54sFp8WYzqHccrWG+0GMIOJiECcZ7vAzAJadGg==
Date: Fri, 10 Aug 2018 21:21:33 GMT
Connection: keep-alive
Content-Length: 222


--- Additional Info ---
Magic:  PNG image, 16 x 16, 4-bit colormap, non-interlaced
Size:   222
Md5:    2ec226e3dcb9a8e77a8e8c11740587c9
Sha1:   3eeef1fffe964e01ca04216633d515b782671437
Sha256: 4c66cf58bddf9101dd5e3d83235728a64c8e7ef7032c4bcbbcc91b8aa7dcac18
                                        
                                            GET /banners/1/hab-en_300x600_livefeed_lifecoach_blue_are_you_tired.jpg?s=1&p=7&w=103652&t=216&c=19236&cs=0 HTTP/1.1 
Host: affiliates.oranum.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/ads/ad9.html

                                         
                                         93.93.53.206
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Server: Apache
Location: https://affiliates.oranum.com/banners/1/hab-en_300x600_livefeed_lifecoach_blue_are_you_tired.jpg?s=1&p=7&w=103652&t=216&c=19236&cs=0
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 282
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   282
Md5:    91cc0576f5b79cc5a170a456f40dbe15
Sha1:   5b0a1671eb9fbe1fe8d774f5934b38836f2f31eb
Sha256: 6dc7602cc6c3fdd6c428359e5729a053848ceca660d3bb0812e292b386a953a3
                                        
                                            GET /gtm.js?id=GTM-TV3674Q HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         216.58.211.8
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 10 Aug 2018 21:21:33 GMT
Expires: Fri, 10 Aug 2018 21:21:33 GMT
Cache-Control: private, max-age=900
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   28870
Md5:    81c7706d0f28b5f66a2c93d1d788068e
Sha1:   dde0822fa96f556257f48e33c0cf88d450637a8e
Sha256: 609d31b23504eff68ea169fa147ce850f08437a87dcd04f7e7b7aca40dfdc5ba
                                        
                                            GET /banners/1/led-Uncertain_about_life_decisions1_728x90.jpg?s=1&p=7&w=103652&t=0&c=19236&cs=0 HTTP/1.1 
Host: affiliates.oranum.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/ads/ad7.html

                                         
                                         93.93.53.206
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 10 Aug 2018 21:21:33 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   58310
Md5:    2aca309f5881637b435a0a9037a97205
Sha1:   ff86abd03d74a4acbf09ac1afc8d9374f3a20706
Sha256: a2267c82e079109bd13c9007bf791b8ca19edebb014507198988df64ff0295da
                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.googleadservices.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         172.217.21.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Fri, 10 Aug 2018 21:21:34 GMT
Expires: Fri, 10 Aug 2018 21:21:34 GMT
Cache-Control: private, max-age=3600
Etag: 10016723224908436105
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 6839
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6839
Md5:    8ae44363ec6797b69766f5e8fcf14500
Sha1:   9df76e7c6f8ce0980599cd936ee6c61c6844a04e
Sha256: 76e793663eebbc84c9980576641f2150a838b03522ca836e3c8329a357982735
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 10 Aug 2018 19:22:10 GMT
Expires: Fri, 10 Aug 2018 21:22:10 GMT
Last-Modified: Fri, 18 May 2018 01:10:24 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14386
Age: 7164
Cache-Control: public, max-age=7200
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14386
Md5:    b3de885583a477d4e31568948d6bebd7
Sha1:   2ce8d853244dde551c41d5207d6f71c567bde8c6
Sha256: e1bb5aa555a0d875e2a67884ceaa0629e08994a8aabadc2fac5b6915793dbf75
                                        
                                            GET /pagead/viewthroughconversion/1007793848/?random=1533936094132&cv=9&fst=1533936094132&num=1&fmt=3&guid=ON&resp=GooglemKTybQhCsO&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&gtm=G7n&frm=2&url=http%3A%2F%2Fpr.oranum.com%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&ref=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&async=1 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0
Cookie: IDE=AHWqTUksQONuLcLrhl4GdXeS6NDXJUVYRaI2PI0jX_szCOlNdJ043KPg130rYZMt

                                         
                                         216.58.211.130
HTTP/1.1 302 Found
Content-Type: image/gif
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Date: Fri, 10 Aug 2018 21:21:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Location: https://www.google.com/ads/user-lists/1007793848/?random=1533936094132&cv=9&fst=1533934800000&num=1&fmt=3&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&gtm=G7n&frm=2&url=http%3A%2F%2Fpr.oranum.com%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&ref=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&async=1&cdct=2&is_vtc=1&random=2722208048&resp=GooglemKTybQhCsO
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /maps/embed?origin=mfe&pb=!1m4!2m1!1s54,-2!5e0!6i3!3m1!1sen-US!5m1!1sen-US HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/www/nodomain.ctbc.com.br

                                         
                                         216.58.211.4
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 10 Aug 2018 21:21:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Vary: Accept-Language
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Content-Encoding: gzip
Server: mafe
X-XSS-Protection: 1; mode=block
Set-Cookie: NID=136=S7uzEV7OPVtgUtpzVPhMh1OppiEJeHijaY4-XQWXQD3bSIH_6MRgzjx0YulcUpMc9yfcG-t5HRD4k3W52g6fcRkPCNVetBQUMTaAGX-6I0IlwzeuSVEBwcMhGb0endX0; expires=Sat, 09-Feb-2019 21:21:34 GMT; path=/; domain=.google.com; HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   774
Md5:    c08728d83ef26cbe82d7807ce3d21d47
Sha1:   8ed4300c20fdcd5d53f52868d908de441e2f900e
Sha256: aa244bb11be03c288352a15b055ca69dd569ee1e843c839b1371f665d91523f5
                                        
                                            GET /collect?v=1&_v=j68&a=1355123128&t=pageview&_s=1&dl=http%3A%2F%2Fpr.oranum.com%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&dr=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&dp=%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&ul=en-us&de=UTF-8&sd=24-bit&sr=1176x885&vp=300x250&je=1&fl=10.0%20r45&_u=YGBAgEQ~&jid=1881607434&gjid=1313136944&cid=191875370.1533936094&tid=UA-18695209-13&_gid=1072763662.1533936094&gtm=G7nTV3674Q&cd6=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&cd7=www.statshow.com&cd11=191875370.1533936094&z=1274526113 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Tue, 07 Aug 2018 09:12:00 GMT
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Cache-Control: no-cache, no-store, must-revalidate
Age: 302974
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /collect?v=1&_v=j68&a=1355123128&t=event&ni=1&_s=1&dl=http%3A%2F%2Fpr.oranum.com%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&dr=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&dp=%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&ul=en-us&de=UTF-8&sd=24-bit&sr=1176x885&vp=300x250&je=1&fl=10.0%20r45&ec=technical%20events&ea=frontend%20error&el=message%3AScript%20error.%20-%20source%3A%20-%20line%3Aundefined%20-%20error%3Aundefined&ev=0&_u=YGDAAMQAAAAAAE~&jid=&gjid=&cid=191875370.1533936094&tid=UA-18695209-13&_gid=1072763662.1533936094&gtm=G7nTV3674Q&cd6=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&cd7=www.statshow.com&cd11=191875370.1533936094&z=1283628956 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Tue, 07 Aug 2018 09:12:00 GMT
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Cache-Control: no-cache, no-store, must-revalidate
Age: 302974
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Aug 2018 21:21:34 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   1011
Md5:    cf3b83219d5e2e7e1d8733f6e1469504
Sha1:   a86566539912f17d26219137b70b53a074ca4971
Sha256: abaf6b8b13032f97e8a9d2894f3fac2c0128dba54eb8bef8211b422622cb387c
                                        
                                            GET /banners/1/hab-en_300x600_livefeed_lifecoach_blue_are_you_tired.jpg?s=1&p=7&w=103652&t=216&c=19236&cs=0 HTTP/1.1 
Host: affiliates.oranum.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.statshow.com/ads/ad9.html

                                         
                                         93.93.53.206
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 10 Aug 2018 21:21:34 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JPEG image data
Size:   117578
Md5:    819fc10bd2700ba04bd05e1036aa1ade
Sha1:   b3c908ac5a5ba03e2228a1b2344214553ed3967d
Sha256: 9646fdfd562e62fadb2a5032a6e69d1cbd310b83c952c3f2e8acf6872c1651ba
                                        
                                            GET /maps-api-v3/embed/js/33/10/init_embed.js HTTP/1.1 
Host: maps.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s54,-2!5e0!6i3!3m1!1sen-US!5m1!1sen-US

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 60701
Date: Tue, 31 Jul 2018 02:31:45 GMT
Expires: Wed, 31 Jul 2019 02:31:45 GMT
Last-Modified: Mon, 30 Jul 2018 03:56:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 931789
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   60701
Md5:    87e66dd4be9cdc52bc2a205641d47655
Sha1:   e9c18d01bfe6687a1e660dabc8e74165a276706a
Sha256: 7cd0c6eb906898c2991529acbd03e59de7ba63d89d1741dce8cc965bb5500ca1
                                        
                                            GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s54,-2!5e0!6i3!3m1!1sen-US!5m1!1sen-US

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Date: Fri, 10 Aug 2018 21:08:51 GMT
Expires: Fri, 10 Aug 2018 21:38:51 GMT
Content-Encoding: gzip
Server: mafe
Content-Length: 29331
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Cache-Control: public, max-age=1800
Age: 763
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   29331
Md5:    24ac2b982a5568215ece7f4df68213f0
Sha1:   6fbc06e5ef3e1248d76b0e8174c83b9d31512ffa
Sha256: 9b1da706031501db49f6759d8ae02cb18535e653c5813c4a45887db0da52a432
                                        
                                            GET /r/collect?v=1&_v=j68&a=1355123128&t=event&ni=1&_s=1&dl=http%3A%2F%2Fpr.oranum.com%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&dr=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&dp=%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&ul=en-us&de=UTF-8&sd=24-bit&sr=1176x885&vp=300x250&je=1&fl=10.0%20r45&ec=technical%20events&ea=frontend%20error&el=isSupportedVideo%3Atrue%20-%20isChrome%3Afalse&ev=0&_u=YGDAAMQAAAAAAE~&jid=1533938649&gjid=2057861964&cid=191875370.1533936094&tid=UA-18695209-13&_gid=1072763662.1533936094&_r=1&gtm=G7nTV3674Q&cd6=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&cd7=www.statshow.com&cd11=191875370.1533936094&z=1139158465 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         216.58.211.14
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-18695209-13&cid=191875370.1533936094&jid=1533938649&_gid=1072763662.1533936094&gjid=2057861964&_v=j68&z=1139158465
Access-Control-Allow-Origin: *
Date: Fri, 10 Aug 2018 21:21:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 420
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   420
Md5:    9b20f482eb5e78de3f99acaeeafba155
Sha1:   91e070fc6a3b3b43fe0ccab99c44a5a25ca8f619
Sha256: b7834573fe9e1eeb2007263befe20a0189f4c0605b127884836603c5e497f4f9
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j68&tid=UA-18695209-13&cid=191875370.1533936094&jid=1881607434&gjid=1313136944&_gid=1072763662.1533936094&_u=YGBAgMQAAAAAAE~&z=184271975 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: text/plain; charset=UTF-8
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0
Content-Length: 0
Origin: http://pr.oranum.com
Cookie: IDE=AHWqTUksQONuLcLrhl4GdXeS6NDXJUVYRaI2PI0jX_szCOlNdJ043KPg130rYZMt
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         74.125.131.157
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Access-Control-Allow-Origin: http://pr.oranum.com
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Fri, 10 Aug 2018 21:21:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 4
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /collect?v=1&_v=j68&a=1355123128&t=event&ni=1&_s=1&dl=http%3A%2F%2Fpr.oranum.com%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&dr=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&dp=%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&ul=en-us&de=UTF-8&sd=24-bit&sr=1176x885&vp=300x250&je=1&fl=10.0%20r45&ec=technical%20events&ea=frontend%20error&el=message%3Auncaught%20exception%3A%20%5BException...%20%22Not%20enough%20arguments%22%20%20nsresult%3A%20%220x80570001%20(NS_ERROR_XPC_NOT_ENOUGH_ARGS)%22%20%20location%3A%20%22JS%20frame%20%3A%3A%20http%3A%2F%2Fpr.oranum.com%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0%20%3A%3A%20anonymous%20%3A%3A%20line%20193%22%20%20data%3A%20no%5D%20-%20source%3A%20-%20line%3Aundefined%20-%20error%3Aundefined&ev=0&_u=YGDAAMQAAAAAAE~&jid=&gjid=&cid=191875370.1533936094&tid=UA-18695209-13&_gid=1072763662.1533936094&gtm=G7nTV3674Q&cd6=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&cd7=www.statshow.com&cd11=191875370.1533936094&z=1505255227 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Tue, 07 Aug 2018 09:12:00 GMT
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Cache-Control: no-cache, no-store, must-revalidate
Age: 302974
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /maps-api-v3/api/js/33/10/common.js HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s54,-2!5e0!6i3!3m1!1sen-US!5m1!1sen-US

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30225
Date: Tue, 31 Jul 2018 02:30:35 GMT
Expires: Wed, 31 Jul 2019 02:30:35 GMT
Last-Modified: Mon, 30 Jul 2018 03:56:29 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 931859
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   30225
Md5:    09ee77d8c3fe4e1f4108cac731dd087b
Sha1:   14c0adcd791c223377f3431e5fc446cd2b274e9c
Sha256: eaa23c1982cc49aac3cd28334245fce5341200dcdf19f60fddd9f183ed2b5303
                                        
                                            GET /ads/user-lists/1007793848/?random=1533936094132&cv=9&fst=1533934800000&num=1&fmt=3&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&gtm=G7n&frm=2&url=http%3A%2F%2Fpr.oranum.com%2Fbr%2Flivefeed%3Ftype%3Dlivefeed_140%26s%3D1%26p%3D7%26w%3D103652%26t%3D216%26c%3D19236%26only_adblock%3D0&ref=http%3A%2F%2Fwww.statshow.com%2Fads%2Fad8.html&async=1&cdct=2&is_vtc=1&random=2722208048&resp=GooglemKTybQhCsO&ipr=y&ulfeg=n HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 10 Aug 2018 21:21:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
Server: adclick_server
Content-Length: 42
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /maps-api-v3/api/js/33/10/util.js HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s54,-2!5e0!6i3!3m1!1sen-US!5m1!1sen-US

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 52195
Date: Tue, 31 Jul 2018 02:30:35 GMT
Expires: Wed, 31 Jul 2019 02:30:35 GMT
Last-Modified: Mon, 30 Jul 2018 03:56:29 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 931859
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   52195
Md5:    60624759fc99b5863a5b6ca3920c1774
Sha1:   1ef9b6305ad206134d9f3a463e500727fc17cc31
Sha256: f9dac6f1a1839dfff900b529f6de06dcc84c58b138d0621d085c20a316ecedc4
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j68&tid=UA-18695209-13&cid=191875370.1533936094&jid=1881607434&_u=YGBAgMQAAAAAAE~&z=970157051 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0
Cookie: NID=136=S7uzEV7OPVtgUtpzVPhMh1OppiEJeHijaY4-XQWXQD3bSIH_6MRgzjx0YulcUpMc9yfcG-t5HRD4k3W52g6fcRkPCNVetBQUMTaAGX-6I0IlwzeuSVEBwcMhGb0endX0

                                         
                                         216.58.211.4
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 10 Aug 2018 21:21:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-18695209-13&cid=191875370.1533936094&jid=1533938649&_gid=1072763662.1533936094&gjid=2057861964&_v=j68&z=1139158465 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0
Cookie: IDE=AHWqTUksQONuLcLrhl4GdXeS6NDXJUVYRaI2PI0jX_szCOlNdJ043KPg130rYZMt

                                         
                                         74.125.131.157
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18695209-13&cid=191875370.1533936094&jid=1533938649&_v=j68&z=1139158465
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Fri, 10 Aug 2018 21:21:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 367
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   367
Md5:    9f1d4fe05e7e1fe7a30169630878975c
Sha1:   b1a2788b7ce7023321e12cd6c41c37a20c28a9b4
Sha256: dd7e6b9c8d0b8187864768f3b7adf9aa2e649dc6795b1703aa15f35dcc818027
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j68&tid=UA-18695209-13&cid=191875370.1533936094&jid=1881607434&_u=YGBAgMQAAAAAAE~&z=970157051 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 10 Aug 2018 21:21:35 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18695209-13&cid=191875370.1533936094&jid=1533938649&_v=j68&z=1139158465 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0
Cookie: NID=136=S7uzEV7OPVtgUtpzVPhMh1OppiEJeHijaY4-XQWXQD3bSIH_6MRgzjx0YulcUpMc9yfcG-t5HRD4k3W52g6fcRkPCNVetBQUMTaAGX-6I0IlwzeuSVEBwcMhGb0endX0

                                         
                                         216.58.211.4
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 10 Aug 2018 21:21:35 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18695209-13&cid=191875370.1533936094&jid=1533938649&_v=j68&z=1139158465&slf_rd=1&random=168139567
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 0
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-18695209-13&cid=191875370.1533936094&jid=1533938649&_v=j68&z=1139158465&slf_rd=1&random=168139567 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pr.oranum.com/br/livefeed?type=livefeed_140&s=1&p=7&w=103652&t=216&c=19236&only_adblock=0

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 10 Aug 2018 21:21:35 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /maps-api-v3/api/js/33/10/stats.js HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s54,-2!5e0!6i3!3m1!1sen-US!5m1!1sen-US

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1587
Date: Tue, 31 Jul 2018 02:30:40 GMT
Expires: Wed, 31 Jul 2019 02:30:40 GMT
Last-Modified: Mon, 30 Jul 2018 03:56:29 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 931859
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   1587
Md5:    3b7b8589515afb0bbb0ead0b1707eca8
Sha1:   5befdd38281619291350b0bca60462d7837f9069
Sha256: c3563ec18a3c72aec59dd77cc9f10b8b0c1264cf417c2754a652f68bbff4bdd5
                                        
                                            GET /maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed%3Forigin%3Dmfe%26pb%3D!1m4!2m1!1s54%2C-2!5e0!6i3!3m1!1sen-US!5m1!1sen-US&2sgoogle-maps-embed&callback=_xdc_._s2x6a3&client=google-maps-embed&token=59973 HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s54,-2!5e0!6i3!3m1!1sen-US!5m1!1sen-US

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Date: Fri, 10 Aug 2018 21:21:39 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Content-Disposition: attachment
Content-Encoding: gzip
Server: mafe
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   63
Md5:    c31e100f77cd101810a333e63729a3a8
Sha1:   4f83b028aba7589c177279442846d1dbde9bd655
Sha256: 24e2f296db7f6c51d5aa7ad77b5f663d2eb5b67989d9dec7d2f6ae1cef22955d