Overview

URL bir.party/1689703372
IP104.18.61.99
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2017-08-11 15:12:12 +0200
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Files

No files detected



Passive DNS (0)

No passive DNS data



Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.18.61.99

Date UQ / IDS / BL URL IP
2019-03-07 03:25:32 +0100
0 - 0 - 12 www.imatransgenderwoman.com/ 104.18.61.99
2017-10-26 13:10:34 +0200
3 - 1 - 2 www.javthai.info/ 104.18.61.99
2017-08-13 22:08:49 +0200
0 - 0 - 0 bir.party/1515775642 104.18.61.99
2017-08-10 19:12:36 +0200
0 - 0 - 1 bir.party/1793196980 104.18.61.99
2017-08-10 17:53:11 +0200
0 - 0 - 1 bir.party 104.18.61.99
2017-08-10 06:50:05 +0200
0 - 0 - 1 bir.party/ 104.18.61.99
2017-08-09 22:29:59 +0200
0 - 0 - 1 bir.party/1505171338 104.18.61.99
2017-08-09 20:38:00 +0200
0 - 0 - 1 bir.party/1795287028 104.18.61.99
2017-08-09 19:35:35 +0200
0 - 0 - 1 bir.party/1981108485 104.18.61.99
2017-08-09 16:38:48 +0200
0 - 0 - 1 bir.party/ 104.18.61.99

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2019-07-04 10:47:28 +0200
0 - 0 - 0 https://www.bitchute.com/video/nGjzUqQzi423/ 104.24.23.87
2019-07-02 09:55:24 +0200
0 - 0 - 0 Finddreamjobs.com 104.17.47.14
2019-07-02 09:51:03 +0200
0 - 0 - 0 https://www.bitchute.com/video/ix3LoPLzjS8a/ 104.24.23.87
2019-07-02 09:50:01 +0200
0 - 0 - 0 https://www.bitchute.com/video/RNGAJQK1s8Qx/ 104.24.22.87
2019-07-02 09:49:59 +0200
0 - 0 - 0 https://www.bitchute.com/video/HUEWirPZXMOI/ 104.24.23.87
2019-07-02 09:49:58 +0200
0 - 0 - 0 https://www.bitchute.com/video/GRkaogicSTRt/ 104.24.23.87
2019-07-02 09:49:56 +0200
0 - 0 - 0 https://www.bitchute.com/video/0vPgxEoFvLs8/ 104.24.23.87
2019-07-02 09:49:34 +0200
0 - 0 - 0 https://www.bitchute.com/video/rhOuRaIOHJdb/ 104.24.22.87
2019-07-02 09:49:31 +0200
0 - 0 - 0 https://www.bitchute.com/video/0gdUIrC1FwTV/ 104.24.23.87
2019-07-02 09:49:30 +0200
0 - 0 - 0 https://www.bitchute.com/video/9TSaSoV97QZI/ 104.24.22.87

Last 1 reports on domain: .

Date UQ / IDS / BL URL IP
2018-09-03 02:08:10 +0200
0 - 0 - 1 bir.party/ 198.54.117.200


JavaScript

Executed Scripts (18)


Executed Evals (2)

#1 JavaScript::Eval (size: 4936, repeated: 1) - SHA256: ac621fbce7c4c571f92ace8c4b86d4b7827fcb6d3479276849de547e7205b326

                                        function QCDone(d) {
    try {
        document.getElementById('ci_SW').value = d.SW
    } catch (e) {}
    try {
        document.getElementById('ci_SH').value = d.SH
    } catch (e) {}
    try {
        document.getElementById('ci_WX').value = d.WX
    } catch (e) {}
    try {
        document.getElementById('ci_WY').value = d.WY
    } catch (e) {}
    try {
        document.getElementById('ci_WW').value = d.WW
    } catch (e) {}
    try {
        document.getElementById('ci_WH').value = d.WH
    } catch (e) {}
    try {
        document.getElementById('ci_WIW').value = d.WIW
    } catch (e) {}
    try {
        document.getElementById('ci_WIH').value = d.WIH
    } catch (e) {}
    try {
        document.getElementById('ci_WFC').value = d.WFC
    } catch (e) {}
    try {
        document.getElementById('ci_PL').value = d.PL
    } catch (e) {}
    try {
        document.getElementById('ci_DRF').value = d.DRF
    } catch (e) {}
    try {
        document.getElementById('ci_NP').value = d.NP
    } catch (e) {}
    try {
        document.getElementById('ci_PT').value = d.PT
    } catch (e) {}
    try {
        document.getElementById('ci_NB').value = d.NB
    } catch (e) {}
    try {
        document.getElementById('ci_NG').value = d.NG
    } catch (e) {}
    try {
        document.getElementById('ci_DM').value = d.DM
    } catch (e) {}
    try {
        document.getElementById('ci_CF').value = d.CF
    } catch (e) {}
}
var QC = {};
try {
    QC.SW = window.screen.width;
    QC.SH = window.screen.height
} catch (e) {
    QC.SW = -1;
    QC.SH = -1
}
try {
    QC.WX = window.screenX;
    QC.WY = window.screenY
} catch (e) {
    QC.WX = -1;
    QC.WY = -1
}
try {
    QC.WW = window.outerWidth;
    QC.WH = window.outerHeight
} catch (e) {
    QC.WW = -1;
    QC.WH = -1
}
try {
    QC.WIW = window.innerWidth;
    QC.WIH = window.innerHeight
} catch (e) {
    QC.WIW = -1;
    QC.WIH = -1
}
try {
    QC.WFC = window.top.frames.length
} catch (e) {
    QC.WFC = -1
}
try {
    QC.PL = document.location.href
} catch (e) {
    QC.PL = ''
}
try {
    QC.DRF = document.referrer
} catch (e) {
    QC.DRF = ''
}
try {
    QC.NP = (!(navigator.plugins instanceof PluginArray) || navigator.plugins.length == 0) ? 0 : 1
} catch (e) {
    QC.NP = -1
}
try {
    QC.PT = typeof(window.callPhantom) !== "undefined" || typeof(window._phantom) !== "undefined" ? 1 : 0
} catch (e) {
    QC.PT = -1
}
try {
    QC.NB = typeof(navigator.sendBeacon) === "function" ? 1 : 0
} catch (e) {
    QC.NB = -1
}
try {
    QC.NG = typeof(navigator.geolocation) !== "undefined" ? 1 : 0
} catch (e) {
    QC.NG = -1
}
QC.CF = 0;
try {
    var FlashDetect = new function() {
        var self = this;
        self.installed = false;
        self.raw = "";
        self.major = -1;
        self.minor = -1;
        self.revision = -1;
        self.revisionStr = "";
        var activeXDetectRules = [{
            "name": "ShockwaveFlash.ShockwaveFlash.7",
            "version": function(obj) {
                return getActiveXVersion(obj)
            }
        }, {
            "name": "ShockwaveFlash.ShockwaveFlash.6",
            "version": function(obj) {
                var version = "6,0,21";
                try {
                    obj.AllowScriptAccess = "always";
                    version = getActiveXVersion(obj)
                } catch (err) {}
                return version
            }
        }, {
            "name": "ShockwaveFlash.ShockwaveFlash",
            "version": function(obj) {
                return getActiveXVersion(obj)
            }
        }];
        var getActiveXVersion = function(activeXObj) {
            var version = -1;
            try {
                version = activeXObj.GetVariable("\$version")
            } catch (err) {}
            return version
        };
        var getActiveXObject = function(name) {
            var obj = -1;
            try {
                obj = new ActiveXObject(name)
            } catch (err) {
                obj = {
                    activeXError: true
                }
            }
            return obj
        };
        var parseActiveXVersion = function(str) {
            var versionArray = str.split(",");
            return {
                "raw": str,
                "major": parseInt(versionArray[0].split(" ")[1], 10),
                "minor": parseInt(versionArray[1], 10),
                "revision": parseInt(versionArray[2], 10),
                "revisionStr": versionArray[2]
            }
        };
        var parseStandardVersion = function(str) {
            var descParts = str.split(/ +/);
            var majorMinor = descParts[2].split(/\./);
            var revisionStr = descParts[3];
            return {
                "raw": str,
                "major": parseInt(majorMinor[0], 10),
                "minor": parseInt(majorMinor[1], 10),
                "revisionStr": revisionStr,
                "revision": parseRevisionStrToInt(revisionStr)
            }
        };
        var parseRevisionStrToInt = function(str) {
            return parseInt(str.replace(/[a-zA-Z]/g, ""), 10) || self.revision
        };
        self.majorAtLeast = function(version) {
            return self.major >= version
        };
        self.minorAtLeast = function(version) {
            return self.minor >= version
        };
        self.revisionAtLeast = function(version) {
            return self.revision >= version
        };
        self.versionAtLeast = function(major) {
            var properties = [self.major, self.minor, self.revision];
            var len = Math.min(properties.length, arguments.length);
            for (i = 0; i < len; i++) {
                if (properties[i] >= arguments[i]) {
                    if (i + 1 < len && properties[i] == arguments[i]) {
                        continue
                    } else {
                        return true
                    }
                } else {
                    return false
                }
            }
        };
        self.FlashDetect = function() {
            if (navigator.plugins && navigator.plugins.length > 0) {
                var type = 'application/x-shockwave-flash';
                var mimeTypes = navigator.mimeTypes;
                if (mimeTypes && mimeTypes[type] && mimeTypes[type].enabledPlugin && mimeTypes[type].enabledPlugin.description) {
                    var version = mimeTypes[type].enabledPlugin.description;
                    var versionObj = parseStandardVersion(version);
                    self.raw = versionObj.raw;
                    self.major = versionObj.major;
                    self.minor = versionObj.minor;
                    self.revisionStr = versionObj.revisionStr;
                    self.revision = versionObj.revision;
                    self.installed = true
                }
            } else if (navigator.appVersion.indexOf("Mac") == -1 && window.execScript) {
                var version = -1;
                for (var i = 0; i < activeXDetectRules.length && version == -1; i++) {
                    var obj = getActiveXObject(activeXDetectRules[i].name);
                    if (!obj.activeXError) {
                        self.installed = true;
                        version = activeXDetectRules[i].version(obj);
                        if (version != -1) {
                            var versionObj = parseActiveXVersion(version);
                            self.raw = versionObj.raw;
                            self.major = versionObj.major;
                            self.minor = versionObj.minor;
                            self.revision = versionObj.revision;
                            self.revisionStr = versionObj.revisionStr
                        }
                    }
                }
            }
        }()
    };
    if (FlashDetect.major > 0) {
        QC.CF = 1
    }
} catch (e) {
    QC.CF = 2
}
try {
    QCDone(QC)
} catch (e) {
    console.log(e)
}
                                    

#2 JavaScript::Eval (size: 613, repeated: 1) - SHA256: 7d79d7f17504a461320f713188b82fa5a1fdfd154969db17892e75294035c861

                                        var a;
var b;
var ix;
if (typeof window.innerWidth != 'undefined') {
    a = window.innerWidth;
    b = window.innerHeight
} else if (typeof document.documentElement != 'undefined' && typeof document.documentElement.clientWidth != 'undefined' && document.documentElement.clientWidth != 0) {
    a = document.documentElement.clientWidth;
    b = document.documentElement.clientHeight
} else {
    a = document.getElementsByTagName('body')[0].clientWidth;
    b = document.getElementsByTagName('body')[0].clientHeight
}
try {
    ix = window.self !== window.top ? 1 : 0
} catch (e) {
    ix = 2
}
document.getElementById('a').value = a;
document.getElementById('b').value = b;
document.getElementById('ix').value = ix;
                                    

Executed Writes (0)



HTTP Transactions (71)


Request Response
                                        
                                            GET /1689703372 HTTP/1.1 
Host: bir.party
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.18.60.99
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Fri, 11 Aug 2017 13:11:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d38b14eb3adf8bba9e8597193979a5a391502457093; expires=Sat, 11-Aug-18 13:11:33 GMT; path=/; domain=.bir.party; HttpOnly
Server: cloudflare-nginx
CF-RAY: 38cb710386344255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   472
Md5:    2c352f581b4128fb0b77f4eddd69cc4e
Sha1:   651e0acfed9a3b12f3da45eec23d86d0b6438e9b
Sha256: 48c558470a41b73cec6226a59c7e5b4b90a2a39fc2002e90227dc82553b23a88
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 11 Aug 2017 13:11:33 GMT
Expires: Tue, 15 Aug 2017 13:11:33 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=590189, public, no-transform, must-revalidate
Last-Modified: Fri, 11 Aug 2017 09:05:56 GMT
Expires: Fri, 18 Aug 2017 09:05:56 GMT
Date: Fri, 11 Aug 2017 13:11:34 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    6e41d8ae633c12ff014b571741af0fe1
Sha1:   b83f29a7f1d6c0cf9fb0b92adf8b42d085e0c43a
Sha256: 4f40467a73a3f4f41b3750ff9414f5bc4cc834b4dd7ea1f2627f30f45b21f84f
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bir.party/1689703372

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 11 Aug 2017 12:50:02 GMT
Expires: Fri, 11 Aug 2017 14:50:02 GMT
Last-Modified: Tue, 01 Aug 2017 03:25:32 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 13249
Cache-Control: public, max-age=7200
Age: 1292
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   13249
Md5:    bba76bf50b45d005190ee3000d6deb86
Sha1:   6246a684a2d0ed18eb8946b56db1f328b688693a
Sha256: 6013ebd6cca20acf12020e8b8318d68ff4ae18aa392a6e4d9a4a468326acb02c
                                        
                                            GET /r/collect?v=1&_v=j58&a=1050517412&t=pageview&_s=1&dl=http%3A%2F%2Fbir.party%2F1689703372&ul=en-us&de=UTF-8&dt=Redirect&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAMQAI~&jid=1000792422&gjid=1446713605&cid=263472156.1502457094&tid=UA-74374389-1&_gid=37782266.1502457094&_r=1&z=773058578 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bir.party/1689703372

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 11 Aug 2017 13:11:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: bir.party
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d38b14eb3adf8bba9e8597193979a5a391502457093; _ga=GA1.2.263472156.1502457094; _gid=GA1.2.37782266.1502457094; _gat=1

                                         
                                         104.18.60.99
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Fri, 11 Aug 2017 13:11:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 18 Aug 2017 13:11:35 GMT
Cache-Control: public, max-age=604800
Server: cloudflare-nginx
CF-RAY: 38cb710bd1c34255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   152
Md5:    2abd017a836f08a0982d96376e18dd59
Sha1:   d619e82167fe495874a95a3c41cf851710ac2f8d
Sha256: 574d7df9001c480a78c38fa7c9d3e6cf518abbcd1d567e41b3b06d6615fbb9c0
                                        
                                            GET /ad/33dc2458 HTTP/1.1 
Host: adjo.design
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         94.23.155.159
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Server: nginx/1.12.0
Date: Fri, 11 Aug 2017 13:11:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Expires: Sun, 01 Jan 2010 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: user_key=1510233095%7CQzqpkbnZkqhcY8VWn%2FFJJEscErC6OeS9NMe529sK5jU%3D%7Cc611589e5ffd135115af33c8723d068f8122aa9d; path=/; expires=Thu, 09-Nov-2017 13:11:35 UTC visited.tracking.33dc2458=1502543495%7C6hZUj%2Bs3r7VBNnkAYeMtDusqfLmcLBpnoFlynQcwXeM%3D%7C8c9ee47cc18f62cd9af69876f825015f73360ca1; path=/; expires=Sat, 12-Aug-2017 13:11:35 UTC tracking.33dc2458=1502543495%7CMkcKIdU5UnP5msoT%2BfoXqQjNdemoHn6OGsp3KMUDFTY%3D%7C5c9000dd51d8a87c7a6b5892db636bf297c7fa15; path=/; expires=Sat, 12-Aug-2017 13:11:35 UTC
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1365
Md5:    e531dc62f3e168ae7910a69dcd72f1ca
Sha1:   96ae2a99ea97d7a046a39160d38c1e244c322e87
Sha256: adc094ff3026a88a9e74ddc808254f69486e283524311178c4120ccb80136198
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://adjo.design/ad/33dc2458
If-Modified-Since: Fri, 03 Oct 2014 00:48:42 GMT

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 11 Aug 2017 12:50:29 GMT
Expires: Fri, 11 Aug 2017 14:50:29 GMT
Last-Modified: Thu, 10 Aug 2017 14:40:11 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 13442
Cache-Control: public, max-age=7200
Age: 1266


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   13442
Md5:    e208b2dddc1989c28af32ef376f02854
Sha1:   c2bd6f47c71c94eaeac9fd9d1a6dd0e28203a73a
Sha256: bea0bba2b33e766b4f8b9c3834ea0a44e3715f286a14d1caa546d2c6a5d0f66f
                                        
                                            GET /img/loading.gif HTTP/1.1 
Host: smart2cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://adjo.design/ad/33dc2458

                                         
                                         104.27.159.189
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 11 Aug 2017 13:11:35 GMT
Content-Length: 9770
Connection: keep-alive
Set-Cookie: __cfduid=d066ec26f1bf5ffcf4465d412c6a5a70d1502457095; expires=Sat, 11-Aug-18 13:11:35 GMT; path=/; domain=.smart2cdn.com; HttpOnly
Last-Modified: Sat, 05 Aug 2017 11:18:29 GMT
Etag: "5985a985-262a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sat, 11 Aug 2018 13:11:35 GMT
Cache-Control: public, max-age=31536000
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38cb710c82f44261-OSL


--- Additional Info ---
Magic:  GIF image data, version 89a, 64 x 64
Size:   9770
Md5:    5051a11ae64fc9cfc191528646a6676d
Sha1:   2c71cd9ac89c39cec91249ee6be3426b344efa97
Sha256: ec4015937da849d624a4fdeb8275f3c20594d6b6b26182386a18a04989e511b7
                                        
                                            GET /js/injection.js HTTP/1.1 
Host: smart2cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://adjo.design/ad/33dc2458

                                         
                                         104.27.159.189
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 11 Aug 2017 13:11:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d882dbedd8ef9f7b626272c4cec56ec2c1502457095; expires=Sat, 11-Aug-18 13:11:35 GMT; path=/; domain=.smart2cdn.com; HttpOnly
Last-Modified: Sat, 05 Aug 2017 11:18:29 GMT
Etag: W/"5985a985-5ba2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sat, 11 Aug 2018 13:11:35 GMT
Cache-Control: public, max-age=31536000
Server: cloudflare-nginx
CF-RAY: 38cb710c86ba42a3-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6875
Md5:    134ef219aaa8c2854dfbc8ff539fd071
Sha1:   0d0801efe3a03eef10c7947fe060e714c7884309
Sha256: 624c953fdfb5dedac954313a03b963dbd1a4d18ce48db51a550f1ef5f6d906ea
                                        
                                            GET /r/collect?v=1&_v=j59&a=9437731&t=pageview&_s=1&dl=http%3A%2F%2Fadjo.design%2Fad%2F33dc2458&dp=%2Fad%2F33dc2458%23373&ul=en-us&de=UTF-8&dt=Wait%20a%20second...&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAEQAI~&jid=1047398135&gjid=372740833&cid=1298740583.1502457095&tid=UA-74349022-2&_gid=1184465087.1502457095&_r=1&z=219801792 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://adjo.design/ad/33dc2458

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 11 Aug 2017 13:11:35 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /ico/1489172516.ico HTTP/1.1 
Host: smart2cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.27.159.189
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Fri, 11 Aug 2017 13:11:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dd27d7e5767a15100b580a4d28c4e5bd41502457095; expires=Sat, 11-Aug-18 13:11:35 GMT; path=/; domain=.smart2cdn.com; HttpOnly
Last-Modified: Sat, 05 Aug 2017 11:18:29 GMT
Etag: W/"5985a985-5a596"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sat, 11 Aug 2018 13:11:35 GMT
Cache-Control: public, max-age=31536000
Server: cloudflare-nginx
CF-RAY: 38cb710c713c428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12224
Md5:    672d2214c2491c73afd1cc47ba2a4494
Sha1:   e4d2a3b30c3c20279743b2d8e8921a0e88718c5c
Sha256: d0289b66db49c58f9e51c7420d0bec479b769e0278622b88dc7bf8ce04f15c48
                                        
                                            GET /ad/854445db?aff_id=33853 HTTP/1.1 
Host: adjo.design
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://adjo.design/ad/33dc2458
Cookie: user_key=1510233095%7CQzqpkbnZkqhcY8VWn%2FFJJEscErC6OeS9NMe529sK5jU%3D%7Cc611589e5ffd135115af33c8723d068f8122aa9d; visited.tracking.33dc2458=1502543495%7C6hZUj%2Bs3r7VBNnkAYeMtDusqfLmcLBpnoFlynQcwXeM%3D%7C8c9ee47cc18f62cd9af69876f825015f73360ca1; tracking.33dc2458=1502543495%7CMkcKIdU5UnP5msoT%2BfoXqQjNdemoHn6OGsp3KMUDFTY%3D%7C5c9000dd51d8a87c7a6b5892db636bf297c7fa15; _ga=GA1.2.1298740583.1502457095; _gid=GA1.2.1184465087.1502457095; _gat=1

                                         
                                         94.23.155.159
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Server: nginx/1.12.0
Date: Fri, 11 Aug 2017 13:11:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Expires: Sun, 01 Jan 2010 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: user_key=1510233095%7CQzqpkbnZkqhcY8VWn%2FFJJEscErC6OeS9NMe529sK5jU%3D%7Cc611589e5ffd135115af33c8723d068f8122aa9d; path=/; expires=Thu, 09-Nov-2017 13:11:35 UTC visited.tracking.854445db=1502543495%7C6hZUj%2Bs3r7VBNnkAYeMtDusqfLmcLBpnoFlynQcwXeM%3D%7C8c9ee47cc18f62cd9af69876f825015f73360ca1; path=/; expires=Sat, 12-Aug-2017 13:11:35 UTC tracking.854445db=1502543495%7CMkcKIdU5UnP5msoT%2BfoXqQjNdemoHn6OGsp3KMUDFTY%3D%7C5c9000dd51d8a87c7a6b5892db636bf297c7fa15; path=/; expires=Sat, 12-Aug-2017 13:11:35 UTC
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1490
Md5:    bc69e4a5d133a2369fa580f155aa942e
Sha1:   0a28e4245b7c3427ae7d743c422e6d4268a0b655
Sha256: 4fec0579fcd1e2433a16719fa46da023d8f874445397cacb35f45f4404444508
                                        
                                            GET /collect?v=1&_v=j59&a=487670384&t=pageview&_s=1&dl=http%3A%2F%2Fadjo.design%2Fad%2F854445db%3Faff_id%3D33853&dp=%2Fad%2F854445db%23721&ul=en-us&de=UTF-8&dt=Wait%20a%20second...&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=AACAAEQAI~&jid=&gjid=&cid=1298740583.1502457095&tid=UA-74349022-2&_gid=1184465087.1502457095&z=937365304 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://adjo.design/ad/854445db?aff_id=33853

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Thu, 10 Aug 2017 18:38:32 GMT
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Cache-Control: no-cache, no-store, must-revalidate
Age: 66783


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: frstlead.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: SeenToday=1; OAGEO5580f=12%7CNO%7C03%7COSLO%7CXDSL%7CPOWERTECH+INFORMATION+SYSTEMS+AS%7C%7C11348%7C11093%7C%3F%7C578270; oaidts=1502457096; OAID=81fc0ff80e237cfb55e7cafd4c7bc31a; OXVAR=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg; pbk2=834be87fa92fbbb3c3ad6d29031812426453004092450123204; ltm_afu=1

                                         
                                         194.187.98.182
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Fri, 11 Aug 2017 13:11:36 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate
Pragma: public


--- Additional Info ---
                                        
                                            GET /?r=%2Fmb%2Fhan&zoneid=1310063&pbk2=834be87fa92fbbb3c3ad6d29031812426453004092450123204&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg&uuid=363f31b3-fcbe-4cf0-ac3f-b2aeea4b0bfe&ad_scheme=1&rotation_type=3&ppucounter=0&first_visit=0&on_test=0&offer_views=0&adparams=bm9qcz0wJnNhdmVkX3JlZmVyZXI9aHR0cCUzQSUyRiUyRmFkam8uZGVzaWduJTJGYWQlMkY4NTQ0NDVkYiUzRmFmZl9pZCUzRDMzODUz&x=1176&y=754&sw=1176&sh=885&wx=-4&wy=-4&ww=1184&wh=863&wiw=1176&wih=754&wfc=0&pl=http%3A%2F%2Ffrstlead.com%2Fafu.php%3Fzoneid%3D1310063%26var%3DQTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg&drf=http%3A%2F%2Fadjo.design%2Fad%2F854445db%3Faff_id%3D33853&np=1&pt=0&nb=0&ng=1&dm=undefined&cf=1&id=d2aa330dcb547b3419d83bf69fdd0e81&co=1&rf=1&hs=d01d492f13aec958676a3d4656a2a36c&ix=0&fs=1&timeout=0 HTTP/1.1 
Host: frstlead.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://frstlead.com/afu.php?zoneid=1310063&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg
Cookie: SeenToday=1; OAGEO5580f=12%7CNO%7C03%7COSLO%7CXDSL%7CPOWERTECH+INFORMATION+SYSTEMS+AS%7C%7C11348%7C11093%7C%3F%7C578270; oaidts=1502457096; OAID=81fc0ff80e237cfb55e7cafd4c7bc31a; OXVAR=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg; pbk2=834be87fa92fbbb3c3ad6d29031812426453004092450123204; ltm_afu=1

                                         
                                         194.187.98.182
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 11 Aug 2017 13:11:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Timing-Allow-Origin: *, *
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Set-Cookie: f3d5bb63c9dbdcfb475795d659c65a4e=sQLbqWyYCHUcw9LHvyThOdy4w4jlZ7saLqNe_fMtwHk; expires=Fri, 18-Aug-2017 13:11:36 GMT; Max-Age=604800 OAGEO5580f=12%7CNO%7C03%7COSLO%7CXDSL%7CPOWERTECH+INFORMATION+SYSTEMS+AS%7C%7C11348%7C11093%7C%3F%7C578270; expires=Sat, 12-Aug-2017 13:11:36 GMT; Max-Age=86400; path=/ ppucnt=1; expires=Sat, 12-Aug-2017 13:11:36 GMT; Max-Age=86400; path=/ ppucntstart=1502457096; expires=Sat, 12-Aug-2017 13:11:36 GMT; Max-Age=86400; path=/ allcnt=1; expires=Sat, 11-Aug-2018 13:11:36 GMT; Max-Age=31536000; path=/ OAID=81fc0ff80e237cfb55e7cafd4c7bc31a; expires=Sat, 11-Aug-2018 13:11:36 GMT; Max-Age=31536000; path=/ _OACCAP[829728]=1; expires=Sat, 11-Aug-2018 13:11:36 GMT; Max-Age=31536000; path=/ _OACBLOCK[829728]=1502457096; expires=Sun, 10-Sep-2017 13:11:36 GMT; Max-Age=2592000; path=/ _OXCCLK[829728]=1; expires=Sat, 11-Aug-2018 13:11:36 GMT; Max-Age=31536000; path=/ _OXPCLK[27638]=1; expires=Sat, 11-Aug-2018 13:11:36 GMT; Max-Age=31536000; path=/
P3P: CP="CUR ADM OUR NOR STA NID"
Location: http://adserving.unibet.com/redirect.aspx?pid=2871013&bid=27311&sref=FAST&FAST=1310063


--- Additional Info ---
                                        
                                            GET /redirect.aspx?pid=2871013&bid=27311&sref=FAST&FAST=1310063 HTTP/1.1 
Host: adserving.unibet.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://frstlead.com/afu.php?zoneid=1310063&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg

                                         
                                         192.121.200.193
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 11 Aug 2017 13:11:37 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: private
Location: https://www.storspiller.com/stan/campaign.do?cmpId=1521434&affiliateId=1&unibetTarget=/media/bannerflow/data/unibet/landingpage/3803_129584.html&targetDomain=https://welcome.storspiller.com&bTag=81763501_5514884B49614674821569DB317451D9&sref=FAST&FAST=1310063&affiliateId=1&pid=4706831&bid=27311
P3P: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
X-AspNet-Version: 4.0.30319
Set-Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a4706831%2c%22BID%22%3a27311%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1502457097669)%5c%2f%22%2c%22CookieTag%22%3a%22273114706831312921201C20178111511%22%7d%5d; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/ NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%223860409998%7c1%22%7d%5d; expires=Sun, 11-Aug-3016 13:11:37 GMT; path=/
X-Powered-By: ASP.NET


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: bir.party
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d38b14eb3adf8bba9e8597193979a5a391502457093; _ga=GA1.2.263472156.1502457094; _gid=GA1.2.37782266.1502457094; _gat=1

                                         
                                         104.18.60.99
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Fri, 11 Aug 2017 13:11:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 18 Aug 2017 13:11:38 GMT
Cache-Control: public, max-age=604800
Server: cloudflare-nginx
CF-RAY: 38cb711e71d34255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   152
Md5:    2abd017a836f08a0982d96376e18dd59
Sha1:   d619e82167fe495874a95a3c41cf851710ac2f8d
Sha256: 574d7df9001c480a78c38fa7c9d3e6cf518abbcd1d567e41b3b06d6615fbb9c0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.trustwave.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         195.159.219.9
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 638
Date: Fri, 11 Aug 2017 13:11:38 GMT
Connection: keep-alive

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: frstlead.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: SeenToday=1; OAGEO5580f=12%7CNO%7C03%7COSLO%7CXDSL%7CPOWERTECH+INFORMATION+SYSTEMS+AS%7C%7C11348%7C11093%7C%3F%7C578270; oaidts=1502457096; OAID=81fc0ff80e237cfb55e7cafd4c7bc31a; OXVAR=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg; pbk2=834be87fa92fbbb3c3ad6d29031812426453004092450123204; ltm_afu=1; f3d5bb63c9dbdcfb475795d659c65a4e=sQLbqWyYCHUcw9LHvyThOdy4w4jlZ7saLqNe_fMtwHk; ppucnt=1; ppucntstart=1502457096; allcnt=1; _OACCAP[829728]=1; _OACBLOCK[829728]=1502457096; _OXCCLK[829728]=1; _OXPCLK[27638]=1

                                         
                                         194.187.98.182
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Fri, 11 Aug 2017 13:11:38 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate
Pragma: public


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.trustwave.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         195.159.219.9
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 1683
Date: Fri, 11 Aug 2017 13:11:38 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1683
Md5:    9346efee01e86f3e3829aa685df36931
Sha1:   da17905e023c006163f756b792e526b5809a5db1
Sha256: 3f45b1068e1fa6864b11fb88896fd16d40bf04b419e16cd679ea6a80b8cd92d3
                                        
                                            GET /stan/campaign.do?cmpId=1521434&affiliateId=1&unibetTarget=/media/bannerflow/data/unibet/landingpage/3803_129584.html&targetDomain=https://welcome.storspiller.com&bTag=81763501_5514884B49614674821569DB317451D9&sref=FAST&FAST=1310063&affiliateId=1&pid=4706831&bid=27311 HTTP/1.1 
Host: www.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://frstlead.com/afu.php?zoneid=1310063&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg

                                         
                                         185.9.101.72
HTTP/1.1 301 Moved Permanently
                                        
X-Powered-By: Servlet/3.0 JSP/2.2 (GlassFish Java/Oracle Corporation/1.7)
Server: GlassFish
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache, no-store
Set-Cookie: JSESSIONID=16bf47351fd75e5fb9337dc8c6f5; Path=/stan; Secure; HttpOnly __ucbt=16bf47351fd75e5fb9337dc8c6f5; Expires=Sun, 11-Aug-2019 13:11:38 GMT; Path=/ uniattr=ST.0.T; Expires=Sun, 11-Aug-2019 13:11:38 GMT; Path=/ uniattr_ref="http://frstlead.com/afu.php?zoneid=1310063&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg"; Expires=Sun, 11-Aug-2019 13:11:38 GMT; Path=/ UNIBET_REQUEST_URL=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ AFFILIATE_REQUEST_URL=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ UNIBET_INTERNAL_CAMPAIGN_ID=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ affid=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ netwid=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ CLAIM_CODE=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ REGISTRATION_CODE=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ campaignId=1521434; Expires=Mon, 31-Dec-2018 09:41:59 GMT; Path=/ framework.forceBigLandingArea=""; Expires=Fri, 11-Aug-2017 13:11:54 GMT; Path=/ affiliateId=1; Expires=Mon, 31-Dec-2018 09:41:59 GMT; Path=/ B-TAG=81763501_5514884B49614674821569DB317451D9; Expires=Mon, 31-Dec-2018 09:41:59 GMT; Path=/ REGISTRATION_CODE=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ BID=27311; Expires=Mon, 31-Dec-2018 09:41:59 GMT; Path=/ PID=4706831; Expires=Mon, 31-Dec-2018 09:41:59 GMT; Path=/ CHID=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ REFERER=http%3A%2F%2Ffrstlead.com%2Fafu.php%3Fzoneid%3D1310063%26var%3DQTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg; Expires=Mon, 31-Dec-2018 09:41:59 GMT; Path=/ UNIBET_INTERNAL_CAMPAIGN_ID=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ UNIBET_REQUEST_URL=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ AFFILIATE_REQUEST_URL=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ AFFILIATE_CAMPAIGN_ID=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ AMS_INVITE_CHAT_ACCEPTED=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ AMS_INVITE_CHAT_DECLINED=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ BOCAID=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ PRODUCT_ID=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ AFFILIATE_REQUEST_URL=https%3A%2F%2Fwww.storspiller.com%2Fstan%2Fcampaign.do%3FcmpId%3D1521434%26affiliateId%3D1%26unibetTarget%3D%2Fmedia%2Fbannerflow%2Fdata%2Funibet%2Flandingpage%2F3803_129584.html%26targetDomain%3Dhttps%3A%2F%2Fwelcome.storspiller.com%26bTag%3D81763501_5514884B49614674821569DB317451D9%26sref%3DFAST%26FAST%3D1310063%26affiliateId%3D1%26pid%3D4706831%26bid%3D27311; Expires=Mon, 31-Dec-2018 09:41:59 GMT; Path=/ AFFILIATE_CAMPAIGN_ID=1521434; Expires=Mon, 31-Dec-2018 09:41:59 GMT; Path=/ framework.forceBigLandingArea=""; Expires=Fri, 11-Aug-2017 13:11:54 GMT; Path=/ campaignId=1521434; Expires=Mon, 31-Dec-2018 09:41:59 GMT; Path=/ framework.forceBigLandingArea=""; Expires=Fri, 11-Aug-2017 13:11:54 GMT; Path=/
Referer: http://frstlead.com/afu.php?zoneid=1310063&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg
Location: https://www.storspiller.com:443/stan/redirecttocampaign.do?cmpId=1521434&affiliateId=1&unibetTarget=/media/bannerflow/data/unibet/landingpage/3803_129584.html&targetDomain=https://welcome.storspiller.com&bTag=81763501_5514884B49614674821569DB317451D9&sref=FAST&FAST=1310063&affiliateId=1&pid=4706831&bid=27311&landingPageUrl=https%3A%2F%2Fwelcome.storspiller.com%2Fmedia%2Fbannerflow%2Fdata%2Funibet%2Flandingpage%2F3803_129584.html%3Fmktid%3D1%3A81763501%3A4706831-27311
Content-Length: 0
Date: Fri, 11 Aug 2017 13:11:38 GMT
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
                                        
                                            GET /stan/redirecttocampaign.do?cmpId=1521434&affiliateId=1&unibetTarget=/media/bannerflow/data/unibet/landingpage/3803_129584.html&targetDomain=https://welcome.storspiller.com&bTag=81763501_5514884B49614674821569DB317451D9&sref=FAST&FAST=1310063&affiliateId=1&pid=4706831&bid=27311&landingPageUrl=https%3A%2F%2Fwelcome.storspiller.com%2Fmedia%2Fbannerflow%2Fdata%2Funibet%2Flandingpage%2F3803_129584.html%3Fmktid%3D1%3A81763501%3A4706831-27311 HTTP/1.1 
Host: www.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://frstlead.com/afu.php?zoneid=1310063&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg
Cookie: JSESSIONID=16bf47351fd75e5fb9337dc8c6f5; __ucbt=16bf47351fd75e5fb9337dc8c6f5; uniattr=ST.0.T; uniattr_ref="http://frstlead.com/afu.php?zoneid=1310063&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg"; campaignId=1521434; framework.forceBigLandingArea=""; affiliateId=1; B-TAG=81763501_5514884B49614674821569DB317451D9; BID=27311; PID=4706831; REFERER=http%3A%2F%2Ffrstlead.com%2Fafu.php%3Fzoneid%3D1310063%26var%3DQTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg; AFFILIATE_REQUEST_URL=https%3A%2F%2Fwww.storspiller.com%2Fstan%2Fcampaign.do%3FcmpId%3D1521434%26affiliateId%3D1%26unibetTarget%3D%2Fmedia%2Fbannerflow%2Fdata%2Funibet%2Flandingpage%2F3803_129584.html%26targetDomain%3Dhttps%3A%2F%2Fwelcome.storspiller.com%26bTag%3D81763501_5514884B49614674821569DB317451D9%26sref%3DFAST%26FAST%3D1310063%26affiliateId%3D1%26pid%3D4706831%26bid%3D27311; AFFILIATE_CAMPAIGN_ID=1521434

                                         
                                         185.9.101.72
HTTP/1.1 301 Moved Permanently
                                        
X-Powered-By: Servlet/3.0 JSP/2.2 (GlassFish Java/Oracle Corporation/1.7)
Server: GlassFish
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache, no-store
Set-Cookie: __utmv="75389645.|1=Affiliate=81763501=1,"; Expires=Sun, 11-Aug-2019 13:11:39 GMT; Path=/
Location: https://welcome.storspiller.com/media/bannerflow/data/unibet/landingpage/3803_129584.html?mktid=1:81763501:4706831-27311
Content-Length: 0
Date: Fri, 11 Aug 2017 13:11:38 GMT
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.trustwave.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         195.159.219.9
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 638
Date: Fri, 11 Aug 2017 13:11:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.trustwave.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         195.159.219.9
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 1684
Date: Fri, 11 Aug 2017 13:11:39 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1684
Md5:    b07c047111d4eeb34aee51dc4d38395d
Sha1:   b0a67a84cc638f2ba2c046644318e26a719078fe
Sha256: 9268beaa59a04898e7a989b861cff72a985ed3a19562400b0e0b11099ea20bd8
                                        
                                            GET /media/bannerflow/data/unibet/landingpage/3803_129584.html?mktid=1:81763501:4706831-27311 HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://frstlead.com/afu.php?zoneid=1310063&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 11 Aug 2017 13:11:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-MD5: T0KogXvIYDjLgvCy8T2nWw==
Last-Modified: Thu, 04 May 2017 14:08:02 GMT
Etag: W/"0x8D492F6FA4DFE32"
x-ms-request-id: c49c3752-0001-00e5-07f5-11d344000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   200
Md5:    1b3cad73176bc8aafd5d85153d5c7418
Sha1:   a07508a5c5f24759d318a271b4199456622c22b6
Sha256: b698ef7b6c5bc6c10679bb14fe039ef365a5d7ed004e2e04ef8ce57d934c9cbc
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         108.161.188.196
HTTP/1.1 404 The specified blob does not exist.
Content-Type: application/xml
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-ms-request-id: 587a0d83-0001-001e-0fa3-121b5e000000
x-ms-version: 2014-02-14
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   205
Md5:    4c5bf0d7424a115e236e2f7f944562c8
Sha1:   07dff5860b8a95e36b3b13bed0f426aa9da5a7ad
Sha256: f8ec6e32fe552b7b485630fefd678a5bafef36132cadfbc9d9b7e0ebbec7b247
                                        
                                            GET /2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311 HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/media/bannerflow/data/unibet/landingpage/3803_129584.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-MD5: rBXXB+7STEsEJmNY3lIDkg==
Last-Modified: Wed, 17 May 2017 09:17:13 GMT
Etag: W/"0x8D49D0580FC5DDB"
x-ms-request-id: b5a5a170-0001-00fc-63f3-11ff2c000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3044
Md5:    a5055a4ed729d8adea6acc065ece0023
Sha1:   172bb0d7540701ac3587e3a25adccf4503199dac
Sha256: 1714199c72b4e46192389ae5fcd539e7e91f12e5be189655d76b07a6a734c77d
                                        
                                            GET /2016-storspiller-lp-1/styles.css HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-MD5: ZfekRIsOBst+kgvILTGOYg==
Last-Modified: Wed, 17 May 2017 09:17:13 GMT
Etag: W/"0x8D49D058100A4BF"
x-ms-request-id: 2c1cdf95-0001-00cf-13f7-11a601000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1817
Md5:    9774773b774b6723cfa6beb53b492af3
Sha1:   f57291eae5a249d70f52bce2a2e7bb1f6d9fdccd
Sha256: 3277973f6a5f8f5210f3116ff12ba753688a0f46f97abb1dca8421947df95cc4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.trustwave.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         195.159.219.9
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 638
Date: Fri, 11 Aug 2017 13:11:40 GMT
Connection: keep-alive

                                        
                                            GET /2016-storspiller-lp-1/starburst.jpg HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Content-Length: 61359
Connection: keep-alive
Content-MD5: LDVtXSxtypV7guV+eUh3JA==
Last-Modified: Wed, 17 May 2017 09:17:14 GMT
Etag: "0x8D49D0581D14BC9"
x-ms-request-id: 510d3b14-0001-0054-44f7-112b39000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   61359
Md5:    2c356d5d2c6dca957b82e57e79487724
Sha1:   77832b7f1c407b7b2f19cd0db49680aef6c457d8
Sha256: dddbfcc64fd48b4f98fe0a252d362a2413a17aecc39c45b2ccfa35e32ec0d81d
                                        
                                            GET /2016-storspiller-lp-1/storspiller-logo.svg HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-MD5: RyuPlAVFiiu2yWjLbBwkOw==
Last-Modified: Wed, 17 May 2017 09:17:13 GMT
Etag: W/"0x8D49D058152D249"
x-ms-request-id: 68cbce64-0001-00f9-02f7-110b53000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2126
Md5:    ea691fbfc9ef68b0230200f3056ee5bc
Sha1:   9a97c257269ed80873f4d76297beffdedd2696db
Sha256: 71bd5d146c6cf5bace06291d9657c9689f7485799056a08b482973645ded7941
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Expires: Tue, 15 Aug 2017 13:11:40 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /2016-storspiller-lp-1/gonzos-quest.jpg HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Content-Length: 91647
Connection: keep-alive
Content-MD5: io20ESoJyOqZ476KByKjjg==
Last-Modified: Wed, 17 May 2017 09:17:14 GMT
Etag: "0x8D49D0581B249CF"
x-ms-request-id: 663cf122-0001-0030-0bf7-119b99000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   91647
Md5:    8a8db4112a09c8ea99e3be8a0722a38e
Sha1:   c9060316a1ef4564d0464c518fd0b5f1efc974b9
Sha256: 79be7f2ec9beb88d94cb390a795cc77b7d704d7c8c89a3c13112c767ad74b6be
                                        
                                            GET /2016-storspiller-lp-1/live-blackjack.jpg HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Content-Length: 59854
Connection: keep-alive
Content-MD5: Ktxg2ItjIFaag4NpCSbLEw==
Last-Modified: Wed, 17 May 2017 09:17:14 GMT
Etag: "0x8D49D0581BBE950"
x-ms-request-id: 65169551-0001-010c-5df7-116917000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   59854
Md5:    2adc60d88b6320569a8383690926cb13
Sha1:   0901d1ef7380406010f7da89c803865c282bab2c
Sha256: 102e8186bca3f9a7c984a7a0e24feaecfdb2e5f3994d764733b2487d3ace8933
                                        
                                            GET /2016-storspiller-lp-1/jackpot-jester.jpg HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Content-Length: 112859
Connection: keep-alive
Content-MD5: 2yuXdq3dUeF5VbGpH7xeuA==
Last-Modified: Wed, 17 May 2017 09:17:14 GMT
Etag: "0x8D49D0581EF3C00"
x-ms-request-id: d13a5fad-0001-0089-51f7-117897000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   112859
Md5:    db2b9776addd51e17955b1a91fbc5eb8
Sha1:   1aaae10a34975f825ca1a4877a2729389fd37b13
Sha256: 5d5bbfa69174dacee2791ac2701ffb10d98fe595d9841bfb5760323af08ede3c
                                        
                                            GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 11 Aug 2017 13:11:41 GMT
Date: Fri, 11 Aug 2017 13:11:41 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   575
Md5:    16323486dd1327a4e37a16d4329383e0
Sha1:   fc1bbae57d53a7c25f346a57633bfc01932a5159
Sha256: 913d23cc4bbd67423a01708f80f0ea5ce7227574478d72991702fa3f2ac86e26
                                        
                                            GET /2016-storspiller-lp-1/diamond.png HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Content-Length: 8610
Connection: keep-alive
Content-MD5: hKdSSU2thYvFoEl+hsb+Xg==
Last-Modified: Wed, 17 May 2017 09:17:13 GMT
Etag: "0x8D49D0581777B10"
x-ms-request-id: cbab26c4-0001-00de-3cf7-11911a000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 232 x 162, 8-bit/color RGBA, non-interlaced
Size:   8610
Md5:    84a752494dad858bc5a0497e86c6fe5e
Sha1:   330c633b608a4daa9c66cf449a14106d3dd84141
Sha256: ddfd187a86b01cc183ea16cb48b824d899f1c1b919ab8ddea9745c7c1da4d3b0
                                        
                                            GET /2016-storspiller-lp-1/arrow.png HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Content-Length: 89338
Connection: keep-alive
Content-MD5: I91ANXybAZEI6ZWbi0un+g==
Last-Modified: Wed, 17 May 2017 09:17:13 GMT
Etag: "0x8D49D05816A3115"
x-ms-request-id: 7f0acd8b-0001-0047-01f7-111ed8000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 850 x 1080, 8-bit/color RGBA, non-interlaced
Size:   89338
Md5:    23dd40357c9b019108e9959b8b4ba7fa
Sha1:   34f4c62eba78cf988910b869d907e7867ed36caa
Sha256: 5e12ae3ae309ae615ca8a39bef2fe77e6af729bba06bb7abc994bd5b034a2dd0
                                        
                                            GET /2016-storspiller-lp-1/suits.png HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Content-Length: 13149
Connection: keep-alive
Content-MD5: bv4xEGwQx9/HbGcMASPIfw==
Last-Modified: Wed, 17 May 2017 09:17:13 GMT
Etag: "0x8D49D05815CE71A"
x-ms-request-id: d5a267fa-0001-008c-58f7-118ce8000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 275 x 421, 8-bit/color RGBA, non-interlaced
Size:   13149
Md5:    6efe31106c10c7dfc76c670c0123c87f
Sha1:   779bbf233ca80214ce0b1fdf3084bc516ba59e82
Sha256: 1d691a7bd57ec46aae5715d4d81999af6818b6b8d9e9e45b442f48934374f34e
                                        
                                            GET /ajax/libs/jquery/3.1.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         216.58.209.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 30244
Date: Thu, 03 Aug 2017 20:41:34 GMT
Expires: Fri, 03 Aug 2018 20:41:34 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 664207
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   30244
Md5:    df1adfd1a8ac2c5e05a0e6515570d334
Sha1:   476b6e9662fec1209fae1c51c6f76b71f265340a
Sha256: 540636a96b3bde77cafdf7148131f4fce09c9a19e55afa55794e62dce6f0af02
                                        
                                            GET /unibet/bannerflow/scripts/master_tag.js HTTP/1.1 
Host: a1s-cdn.unibet.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         95.140.228.41
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Content-Length: 1580
Connection: keep-alive
Server: Apache/2.2.15 (Red Hat)
Accept-Ranges: bytes
Cache-Control: max-age=1800, public, must-revalidate
X-Cnection: close
Age: 625
Last-Modified: Wed, 11 May 2016 09:08:50 GMT
Expires: Fri, 11 Aug 2017 13:31:15 GMT


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1580
Md5:    60d40a384727152fea88bb563af0425d
Sha1:   15cd40b07954d84a1620fd9f094f72b97eb10d02
Sha256: 374faf63e585a8306bd09c93ac9e03f82f192cdf4100f96fd8455df1e3b7f3ff
                                        
                                            GET /2016-storspiller-lp-1/favicon.ico HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Content-Length: 1150
Connection: keep-alive
Content-MD5: V5NcA6p7SeMGuNkUIxJxuQ==
Last-Modified: Wed, 17 May 2017 09:17:13 GMT
Etag: "0x8D49D05818008D8"
x-ms-request-id: d5ac73d9-0001-008c-2dfb-118ce8000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    57935c03aa7b49e306b8d914231271b9
Sha1:   578ba016e162b4958587b5c6fc5d27cde83c3853
Sha256: b3532fcda9950e17c853fa8b0de5b074d43133730740e5713d068d6fb0a707c6
                                        
                                            GET /2016-storspiller-lp-1/storspiller-logo.svg HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-MD5: RyuPlAVFiiu2yWjLbBwkOw==
Last-Modified: Wed, 17 May 2017 09:17:13 GMT
Etag: W/"0x8D49D058152D249"
x-ms-request-id: 68cbce64-0001-00f9-02f7-110b53000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2126
Md5:    ea691fbfc9ef68b0230200f3056ee5bc
Sha1:   9a97c257269ed80873f4d76297beffdedd2696db
Sha256: 71bd5d146c6cf5bace06291d9657c9689f7485799056a08b482973645ded7941
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Expires: Tue, 15 Aug 2017 13:11:41 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /2016-storspiller-footer-1/index.html HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-MD5: GXstPbXoSSrlkirem3ng0A==
Last-Modified: Fri, 05 May 2017 10:09:15 GMT
Etag: W/"0x8D4939EC97007AC"
x-ms-request-id: 15c7517b-0001-0069-0df5-119e1f000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1139
Md5:    cf3258b4bdf56309f8e79ff5febbf6d7
Sha1:   6784cde62cf779decf84755e28bd3911ea71cac8
Sha256: 0332bf5c2534ca74b97ce2f67ff505bd0af17717b88f3acb8c5eb8d0c906bc15
                                        
                                            POST / HTTP/1.1 
Host: ocsp.trustwave.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         195.159.219.9
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 638
Date: Fri, 11 Aug 2017 13:11:41 GMT
Connection: keep-alive

                                        
                                            GET /2016-storspiller-lp-1/footer-logo.png HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Content-Length: 20518
Connection: keep-alive
Content-MD5: DADzhTjJ5arZc53Yqd9bPA==
Last-Modified: Wed, 17 May 2017 09:17:14 GMT
Etag: "0x8D49D0581FC85FC"
x-ms-request-id: 73721994-0001-00c9-14f7-115179000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 260 x 253, 8-bit/color RGBA, non-interlaced
Size:   20518
Md5:    0c00f38538c9e5aad9739dd8a9df5b3c
Sha1:   4cbda7d13180e4b6f678634ccd9d5d16fdd662de
Sha256: cec41942f13221bcf29f518c4a52a4aa006b2955c3210db6f497dd07199ebc65
                                        
                                            GET /2016-storspiller-lp-1/live-roulette.jpg HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Content-Length: 75545
Connection: keep-alive
Content-MD5: 6mM0+oXf75Dn1KQR7W6U8A==
Last-Modified: Wed, 17 May 2017 09:17:14 GMT
Etag: "0x8D49D0581C67370"
x-ms-request-id: 22df16d1-0001-007e-31f7-115e7c000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   75545
Md5:    ea6334fa85dfef90e7d4a411ed6e94f0
Sha1:   912ff1829a661a206b59cc775964eadd411ac913
Sha256: 61c9100c2373d35085cb627bb38ec85337c19e3a96992f73b66ea9204c61e1af
                                        
                                            GET /s/opensans/v14/k3k702ZOKiLJc3WVjuplzHhCUOGz7vYGh680lGh-uXM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i
Origin: https://welcome.storspiller.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18408
Date: Wed, 09 Aug 2017 14:29:47 GMT
Expires: Thu, 09 Aug 2018 14:29:47 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:23 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 168115
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   18408
Md5:    15aa9eb56fc3628ba270a5e1edf45284
Sha1:   b0cdb11242b86872aaa6e53ef315d571f9cdd0af
Sha256: 60c1bc05d0e5f1a20b9b92e4186534932cfb9c8d9b9a897a6f56eb155d823c77
                                        
                                            GET /2016-storspiller-footer-1/18.png HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-footer-1/index.html

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 13:11:42 GMT
Content-Length: 1494
Connection: keep-alive
Content-MD5: Dswmv3IY11tgYga8NwwIHA==
Last-Modified: Fri, 05 May 2017 10:09:16 GMT
Etag: "0x8D4939EC9CEB992"
x-ms-request-id: 8bf97e9d-0001-0007-54f7-113736000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 25 x 29, 8-bit/color RGBA, non-interlaced
Size:   1494
Md5:    0ecc26bf7218d75b606206bc370c081c
Sha1:   299b424fd7831fecffc78c6580ef64dfe58aa558
Sha256: 18859ed4fb3b4d70e08d0b7f11186cb863854463134f89730d7927d000ae4a5d
                                        
                                            GET /orval/tracking/lastclick.min.js HTTP/1.1 
Host: a1s.unibet.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         185.9.101.193
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Fri, 11 Aug 2017 13:11:42 GMT
Server: Apache/2.2.15 (Red Hat)
Last-Modified: Tue, 09 Sep 2014 10:19:29 GMT
Etag: "1c1298-6fe-5029f4548ae40"
Accept-Ranges: bytes
Content-Length: 1790
Cache-Control: max-age=1800, public, must-revalidate
X-Cnection: close


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   1790
Md5:    5e16ebedd5293be7955cbdc8bd0deef7
Sha1:   f0f1ecdbe2ed9ff8f8c1cdd5c34b2fc2a9822b72
Sha256: e911ae344737e8bd6ddec8a9a76f7f92c4c97ed7c957abac39b94efe4b10aebf
                                        
                                            GET /2016-storspiller-footer-1/secure-payment-methods.png HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-footer-1/index.html

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 13:11:42 GMT
Content-Length: 5856
Connection: keep-alive
Content-MD5: X1QK92lOG1ZnJiy4KZexDQ==
Last-Modified: Fri, 05 May 2017 10:09:16 GMT
Etag: "0x8D4939EC9C148C1"
x-ms-request-id: d315df77-0001-00a5-44f7-11faaa000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 475 x 43, 8-bit/color RGBA, non-interlaced
Size:   5856
Md5:    5f540af7694e1b5667262cb82997b10d
Sha1:   ac529cac9f8c948e8d50c116bde9805a9311ccea
Sha256: 5b7be28bd71df154537ae75d7a20b5e76ff3ceca43cb84bad64cd0c810ff83a9
                                        
                                            GET /s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTXhCUOGz7vYGh680lGh-uXM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i
Origin: https://welcome.storspiller.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18216
Date: Fri, 04 Aug 2017 16:47:45 GMT
Expires: Sat, 04 Aug 2018 16:47:45 GMT
Last-Modified: Wed, 14 Jun 2017 16:45:41 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 591837
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   18216
Md5:    80093af4e43c616635651b60abcacffb
Sha1:   2fce582fa158b8c9797f7f3d1b877463c16b6bfd
Sha256: de7611d517a967ae2a47889be19efb15a7577782e34794824cc1bd10088a92ba
                                        
                                            GET /css?family=Catamaran:400,500,600,900 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-footer-1/index.html

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 11 Aug 2017 13:11:42 GMT
Date: Fri, 11 Aug 2017 13:11:42 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   348
Md5:    887c727af250a92c7457c4cdbd623c50
Sha1:   a92957fe7ed7ecf0e31dde3b67b9606ee2ea98c3
Sha256: 9507a77fd260fda5237d28ecf878ca88f28a0b891ce4752397575ee6ca82406a
                                        
                                            GET /2016-storspiller-footer-1/styles.css HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-footer-1/index.html

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 13:11:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-MD5: 3qO2dzJI4GPu6jOXyZXIKA==
Last-Modified: Fri, 05 May 2017 10:09:16 GMT
Etag: W/"0x8D4939EC98DD025"
x-ms-request-id: ffa4b96d-0001-00ab-1df6-1116a1000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1039
Md5:    72204815491ca2eedcc6ff2332078f02
Sha1:   f7de273e9fdca212673ab6a3c391005f7e9089ae
Sha256: 0b4f7509bf4a954304f5835e728653942477f4963fd4ecdbc7ddfb8130955dab
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Fri, 11 Aug 2017 13:11:42 GMT
Etag: "598d5f72-1d7"
Expires: Fri, 18 Aug 2017 01:11:42 GMT
Last-Modified: Fri, 11 Aug 2017 07:40:34 GMT
Server: ECS (arn/45E4)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Fri, 11 Aug 2017 13:11:42 GMT
Etag: "598d4eff-1d7"
Expires: Fri, 18 Aug 2017 01:11:42 GMT
Last-Modified: Fri, 11 Aug 2017 06:30:23 GMT
Server: ECS (arn/45E2)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /2016-storspiller-footer-1/logo-mga-1.png HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-footer-1/index.html

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 13:11:42 GMT
Content-Length: 8504
Connection: keep-alive
Content-MD5: ZmjVMpouwczQ/tZoM3EVOw==
Last-Modified: Fri, 05 May 2017 10:09:16 GMT
Etag: "0x8D4939EC9A3A76A"
x-ms-request-id: 399a0627-0001-00b0-2df7-113833000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 446 x 180, 8-bit/color RGBA, non-interlaced
Size:   8504
Md5:    6668d5329a2ec1ccd0fed6683371153b
Sha1:   d7f18e6541519a1e87862d8ed579dd4916a5bdfe
Sha256: 508795d707428013019abf8d178af3afbd00940ea8b2000c2fa828931cb31825
                                        
                                            GET /s/opensans/v14/MTP_ySUJH_bn48VBG8sNSnhCUOGz7vYGh680lGh-uXM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i
Origin: https://welcome.storspiller.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18232
Date: Fri, 04 Aug 2017 10:53:47 GMT
Expires: Sat, 04 Aug 2018 10:53:47 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:35 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 613075
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   18232
Md5:    bc53f23f7d5dd1a5934ef4b68d7e675d
Sha1:   c3a13ed878f1bd756ac420f1dc1c5142c95273f7
Sha256: 9b967e752d4df93fd2bf19158ba059eca1a79cd8a12e0c17bfac980fac2f13d5
                                        
                                            GET /pages/scripts/0012/9242.js?417349 HTTP/1.1 
Host: script.crazyegg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         52.85.240.155
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 24 Jul 2017 13:56:37 GMT
Last-Modified: Mon, 24 Jul 2017 13:56:34 GMT
Cache-Control: max-age=3600
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 881
X-Cache: Hit from cloudfront
Via: 1.1 73b2260ef82148769c66cb4d6ae4f210.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 2MsQFWZi15ofDVjT9B9hxiGSooLKFJsurfKS8deTyCeAOZvIJJLVkw==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4104
Md5:    6193293556c31872c8d3b8e40bfae121
Sha1:   dd6b7819602aa7ad1bad0500510b545b3270478a
Sha256: 8ac39fbe019aada4c4b6567551e3e57b5f43ddf1c26afd0026a5a9d3e4f1fdb0
                                        
                                            GET /s/catamaran/v2/iVYgK2bOLvZcSxr0ITOecj8E0i7KZn-EPnyo3HZu7kw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Catamaran:400,500,600,900
Origin: https://welcome.storspiller.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17904
Date: Fri, 04 Aug 2017 14:15:19 GMT
Expires: Sat, 04 Aug 2018 14:15:19 GMT
Last-Modified: Wed, 29 Mar 2017 01:15:40 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 600983
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   17904
Md5:    921ae2a5b68ee0cba27d49602a2c83be
Sha1:   31d93e3d17ec8d9a8550a8a92176f52b9906e616
Sha256: 8d2634b1764d0ba38188d69d102015445eed35aec80d3f8c0dbc11badbde0c9f
                                        
                                            GET /s/catamaran/v2/83WSX3F86qsvj1Z4EI0tQnhCUOGz7vYGh680lGh-uXM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Catamaran:400,500,600,900
Origin: https://welcome.storspiller.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17692
Date: Fri, 04 Aug 2017 17:38:18 GMT
Expires: Sat, 04 Aug 2018 17:38:18 GMT
Last-Modified: Wed, 29 Mar 2017 01:15:49 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 588804
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   17692
Md5:    d79df3df7f34806c9550bf5c490961e8
Sha1:   6b5eb834ead253674102b1f291372628f96a3763
Sha256: b29890f4523092324a1070e8b17f75339a70b7c033955beaffa08a409e6deeb9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Fri, 11 Aug 2017 13:11:43 GMT
Etag: "598d725e-1d7"
Expires: Fri, 18 Aug 2017 01:11:43 GMT
Last-Modified: Fri, 11 Aug 2017 09:01:18 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Fri, 11 Aug 2017 13:11:43 GMT
Etag: "598d4f18-1d7"
Expires: Fri, 18 Aug 2017 01:11:43 GMT
Last-Modified: Fri, 11 Aug 2017 06:30:48 GMT
Server: ECS (arn/4694)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: uniattr=BLP.1.UT; uniattr_ref="https://welcome.storspiller.com/media/bannerflow/data/unibet/landingpage/3803_129584.html?mktid=1:81763501:4706831-27311"; _ceg.s=ouivbi; _ceg.u=ouivbi

                                         
                                         108.161.188.196
HTTP/1.1 404 The specified blob does not exist.
Content-Type: application/xml
                                        
Date: Fri, 11 Aug 2017 13:11:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-ms-request-id: 84ae7552-0001-001b-01a3-12ef21000000
x-ms-version: 2014-02-14
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   206
Md5:    98744668b7292557a802b39837c82d36
Sha1:   74977bb339e45b1a689c1dfb15be6ece2b5d056d
Sha256: b3c13721742b48b5cd5b52c8d563f6b49794fafe31dac011239f3717e910ae51
                                        
                                            GET /s?u=129242&t=ouivbi HTTP/1.1 
Host: gtrk.s3.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         52.216.226.120
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: DvbBFn6BT5s4ihi4gnULAc96dgdO5xl/c9uuVw2zTxBu/hvNC+G+LRDdvP6bInuIUMg8lHeMz1M=
x-amz-request-id: FD0CB28BC7F9680B
Date: Fri, 11 Aug 2017 13:11:44 GMT
Last-Modified: Tue, 09 Feb 2016 23:57:19 GMT
Etag: "776f5f447e5e03b50f3bc4d4ec78daaa"
Accept-Ranges: bytes
Content-Length: 32
Server: AmazonS3


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   32
Md5:    776f5f447e5e03b50f3bc4d4ec78daaa
Sha1:   9d6f7182ae5f2995afc23231419013cd7dc7ade0
Sha256: 853b983923a033223e4f391790e6e86619b31d542b40e7e1e8221fb0d6957ab1
                                        
                                            GET /u?u=129242&t=ouivbi HTTP/1.1 
Host: gtrk.s3.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         52.216.226.120
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: 0daj7Hks0iboSx0nLjJswD+Hg94WQQR87EF6s12tMPQZynzcT92tnzTxlomtywcs1y8FfqX+Vbo=
x-amz-request-id: 83F56C639B9478AA
Date: Fri, 11 Aug 2017 13:11:44 GMT
Last-Modified: Tue, 09 Feb 2016 23:57:32 GMT
Etag: "776f5f447e5e03b50f3bc4d4ec78daaa"
Accept-Ranges: bytes
Content-Length: 32
Server: AmazonS3


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   32
Md5:    776f5f447e5e03b50f3bc4d4ec78daaa
Sha1:   9d6f7182ae5f2995afc23231419013cd7dc7ade0
Sha256: 853b983923a033223e4f391790e6e86619b31d542b40e7e1e8221fb0d6957ab1
                                        
                                            GET /2016-storspiller-lp-1/background-image.png HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 13:11:40 GMT
Content-Length: 897369
Connection: keep-alive
Content-MD5: I1HsFY886K46CmMxOmWbsg==
Last-Modified: Wed, 17 May 2017 09:17:15 GMT
Etag: "0x8D49D0582285C9D"
x-ms-request-id: 96ff7207-0001-0012-1df7-11f5af000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 1679 x 1430, 8-bit/color RGBA, non-interlaced
Size:   897369
Md5:    2351ec158f3ce8ae3a0a63313a659bb2
Sha1:   28d36cee184f4f1ac9f7b2b0f4e4bb35ad6056bb
Sha256: 1ac6ee48ee1ccccdfdde6f939f7f6d627e8fd2f80e27680eaaee31f58556c094
                                        
                                            GET /2016-storspiller-lp-1/jackpot-6000.jpg HTTP/1.1 
Host: welcome.storspiller.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://welcome.storspiller.com/2016-storspiller-lp-1/index.html?mktid=1:81763501:4706831-27311

                                         
                                         108.161.188.196
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 11 Aug 2017 13:11:41 GMT
Content-Length: 73064
Connection: keep-alive
Content-MD5: Pl4CI1jy2YOG0qJxkVRyiQ==
Last-Modified: Wed, 17 May 2017 09:17:14 GMT
Etag: "0x8D49D0581E12E81"
x-ms-request-id: f0b2a43e-0001-00ef-45f7-11cacd000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   73064
Md5:    3e5e022358f2d98386d2a27191547289
Sha1:   46a7891aa6c3126608adf40318637e26f3cae20a
Sha256: ec75b3d07fb71b21ebd278cc5c807a5158d418a7b1f9c8108bd8944f55f2119e
                                        
                                            GET /afu.php?zoneid=1310063&var=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg HTTP/1.1 
Host: frstlead.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://adjo.design/ad/854445db?aff_id=33853

                                         
                                         194.187.98.182
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 11 Aug 2017 13:11:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Timing-Allow-Origin: *, *
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Set-Cookie: SeenToday=1; expires=Sat, 12-Aug-2017 13:11:36 GMT; Max-Age=86400; path=/ OAGEO5580f=12%7CNO%7C03%7COSLO%7CXDSL%7CPOWERTECH+INFORMATION+SYSTEMS+AS%7C%7C11348%7C11093%7C%3F%7C578270; expires=Sat, 12-Aug-2017 13:11:36 GMT; Max-Age=86400; path=/ oaidts=1502457096; expires=Sat, 11-Aug-2018 13:11:36 GMT; Max-Age=31536000; path=/ OAID=81fc0ff80e237cfb55e7cafd4c7bc31a; expires=Sat, 11-Aug-2018 13:11:36 GMT; Max-Age=31536000; path=/ OXVAR=QTRpZEljMzN1UTNZZDVySVpFdDNsdmppdXRMYXBPSW5ucXZmVVlGY1UrK1lKS3hpSWhZU1pZellpQUxMdlRYcg; expires=Sat, 12-Aug-2017 13:11:36 GMT; Max-Age=86400; path=/ OAID=81fc0ff80e237cfb55e7cafd4c7bc31a; expires=Sat, 11-Aug-2018 13:11:36 GMT; Max-Age=31536000; path=/ pbk2=834be87fa92fbbb3c3ad6d29031812426453004092450123204; expires=Fri, 11-Aug-2017 13:21:36 GMT; Max-Age=600 ltm_afu=1; expires=Sat, 12-Aug-2017 13:11:36 GMT; Max-Age=86400; path=/
P3P: CP="CUR ADM OUR NOR STA NID"
Content-Encoding: gzip


--- Additional Info ---