Overview

URL hackers-workshop.net/tag/apt-get
IP212.227.247.144
ASNAS8560 1&1 Internet AG
Location Germany
Report completed2018-11-28 17:23:10 +0100
StatusLoading report..
urlquery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-11-28 17:22:29 CET 1  104.20.208.59 Client IP ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (CoinHive Mining Domain)
2018-11-28 17:22:29 CET 1  104.20.208.59 Client IP ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (CoinHive Mining Domain)


Blocklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-11-28 2 hackers-workshop.net/tag/apt-get Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/easyazon-pro-4.0.17/components/popo (...) Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/wp-monero-miner-using-coin-hive/pub (...) Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/jetpack/css/jetpack.css?ver=4.7.1 Malware
2018-11-28 2 hackers-workshop.net/wp-includes/js/jquery/jquery.js?ver=1.12.4 Malware
2018-11-28 2 hackers-workshop.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/table-sorter/jquery.tablesorter.min (...) Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/wp-monero-miner-using-coin-hive/inc (...) Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/advanced-ads/public/assets/js/advan (...) Malware
2018-11-28 2 hackers-workshop.net/wp-content/themes/mh-edition/js/scripts.js?ver=4.7.11 Malware
2018-11-28 2 coinhive.com/lib/coinhive.min.js Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/jetpack/modules/photon/photon.js?ve (...) Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/easyazon-pro-4.0.17/components/loca (...) Malware
2018-11-28 2 hackers-workshop.net/wp-includes/js/wp-embed.min.js?ver=4.7.11 Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/jetpack/modules/wpgroho.js?ver=4.7.11 Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/jetpack/modules/carousel/jetpack-ca (...) Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/advanced-ads-layer/public/assets/js (...) Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/jetpack/_inc/spin.js?ver=1.3 Malware
2018-11-28 2 hackers-workshop.net/wp-content/plugins/jetpack/_inc/jquery.spin.js?ver=1.3 Malware
2018-11-28 2 coinhive.com/lib/worker-asmjs.min.js?v8 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Files

No files detected



Passive DNS (0)

No passive DNS data



Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 212.227.247.144

Date UQ / IDS / BL URL IP
2019-06-07 10:01:17 +0200
0 - 0 - 19 hackers-workshop.net/2016/07 212.227.247.144
2019-04-18 15:06:01 +0200
0 - 0 - 21 hackers-workshop.net/tag/kali-2016-1 212.227.247.144
2019-03-18 14:59:37 +0100
0 - 0 - 19 hackers-workshop.net/tag/problem 212.227.247.144
2019-03-05 18:45:27 +0100
0 - 0 - 17 hackers-workshop.net/tag/hacker-proxy 212.227.247.144
2019-02-27 07:54:42 +0100
0 - 1 - 19 hackers-workshop.net/tag/upgrade 212.227.247.144
2018-12-29 14:32:50 +0100
2 - 1 - 17 hackers-workshop.net/tag/nmap 212.227.247.144
2018-12-28 21:21:04 +0100
0 - 0 - 1 hackers-workshop.net/author/tom 212.227.247.144
2018-12-15 21:16:54 +0100
2 - 0 - 20 hackers-workshop.net/tag/apt-get 212.227.247.144
2018-12-07 21:23:14 +0100
2 - 0 - 17 hackers-workshop.net/tag/socks5 212.227.247.144
2018-12-01 02:19:25 +0100
2 - 0 - 22 www.hackers-workshop.net/ 212.227.247.144

Last 10 reports on ASN: AS8560 1&1 Internet AG

Date UQ / IDS / BL URL IP
2019-07-01 11:37:44 +0200
0 - 0 - 1 estelleabou.com/able/db/index.php 217.160.0.127
2019-06-30 22:40:38 +0200
0 - 0 - 1 bankofamericasonlinebofas.com 217.160.0.218
2019-06-30 21:10:17 +0200
0 - 0 - 0 www.plc2.de 217.160.0.93
2019-06-30 20:17:19 +0200
0 - 0 - 0 aquihaypelotas.es 217.160.0.1
2019-06-30 15:08:55 +0200
0 - 0 - 0 https://www.ionos.com/community/question/watc (...) 74.208.255.134
2019-06-30 14:54:42 +0200
0 - 0 - 0 https://www.holprop.com/list_sales_frames.asp (...) 88.208.250.232
2019-06-30 12:26:38 +0200
0 - 0 - 0 https://www.ionos.com/community/question/stre (...) 74.208.255.134
2019-06-30 04:13:33 +0200
0 - 0 - 0 https://www.ionos.com/community/question/matc (...) 74.208.255.134
2019-06-30 03:54:08 +0200
0 - 0 - 0 https://www.ionos.com/community/question/ufc- (...) 74.208.255.134
2019-06-30 03:33:19 +0200
0 - 0 - 0 https://www.ionos.com/community/question/boxi (...) 74.208.255.134

Last 10 reports on domain: hackers-workshop.net

Date UQ / IDS / BL URL IP
2019-06-07 10:01:17 +0200
0 - 0 - 19 hackers-workshop.net/2016/07 212.227.247.144
2019-04-18 15:06:01 +0200
0 - 0 - 21 hackers-workshop.net/tag/kali-2016-1 212.227.247.144
2019-03-18 14:59:37 +0100
0 - 0 - 19 hackers-workshop.net/tag/problem 212.227.247.144
2019-03-05 18:45:27 +0100
0 - 0 - 17 hackers-workshop.net/tag/hacker-proxy 212.227.247.144
2019-02-27 07:54:42 +0100
0 - 1 - 19 hackers-workshop.net/tag/upgrade 212.227.247.144
2018-12-29 14:32:50 +0100
2 - 1 - 17 hackers-workshop.net/tag/nmap 212.227.247.144
2018-12-28 21:21:04 +0100
0 - 0 - 1 hackers-workshop.net/author/tom 212.227.247.144
2018-12-15 21:16:54 +0100
2 - 0 - 20 hackers-workshop.net/tag/apt-get 212.227.247.144
2018-12-07 21:23:14 +0100
2 - 0 - 17 hackers-workshop.net/tag/socks5 212.227.247.144
2018-12-01 02:19:25 +0100
2 - 0 - 22 www.hackers-workshop.net/ 212.227.247.144


JavaScript

Executed Scripts (78)


Executed Evals (0)


Executed Writes (4)

#1 JavaScript::Write (size: 510, repeated: 1) - SHA256: 7c6d98ce4c61b2a8d0d77b2aa7741ffcb397d09a99003d2ac484c227b0617986

                                        < !doctype html > < html > < body > < iframe style = "display:none"
data - ad - client = "ca-pub-3939150007554395"
id = "google_esf"
name = "google_esf"
src = "https://googleads.g.doubleclick.net/pagead/html/r20181107/r20180604/zrt_lookup.html#" > < /iframe><script>google_sl_win=window.parent;google_iframe_start_time=new Date().getTime();google_async_iframe_id="aswift_0";</script > < script > window.parent.google_sa_impl({
    iframeWin: window,
    pubWin: window.parent,
    vars: window.parent['google_sv_map']['aswift_0']
}); < /script></body > < /html>
                                    

#2 JavaScript::Write (size: 306, repeated: 1) - SHA256: 5efcb9fc2a44ea42dca7f3a6201c413bf996957c8642429d6bfa6d151206a13e

                                        < !doctype html > < html > < body > < script > google_sl_win = window.parent;
google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_1"; < /script><script>window.parent.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_1']});</script > < /body></html >
                                    

#3 JavaScript::Write (size: 1423, repeated: 1) - SHA256: 85a43b300220353a16722955fd14c0d4319813f668c7f4a5d158a2bc16bbe7d1

                                        < iframe id = "google_ads_frame1"
name = "google_ads_frame1"
width = "705"
height = "60"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3939150007554395&amp;output=html&amp;h=60&amp;slotname=6634503463&amp;adk=2856719295&amp;adf=807048394&amp;w=705&amp;fwrn=4&amp;fwrnh=100&amp;lmt=1543422148&amp;rafmt=1&amp;guci=1.2.0.0.2.2.0.0&amp;format=705x60&amp;url=http%3A%2F%2Fhackers-workshop.net%2Ftag%2Fapt-get&amp;ea=0&amp;flash=10.0.45&amp;fwr=0&amp;resp_fmts=3&amp;wgl=0&amp;adsid=NT&amp;dt=1543422151225&amp;bpp=74&amp;fdt=197&amp;idt=186&amp;shv=r20181107&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;correlator=5055378199432&amp;frm=20&amp;pv=2&amp;ga_vid=802498019.1543422152&amp;ga_sid=1543422152&amp;ga_hid=431139042&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=60&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=411&amp;ady=133&amp;biw=1176&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=368226501%2C21060853%2C20195145%2C188690902%2C21062174&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=656&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=144&amp;bc=1&amp;ifi=1&amp;uci=1.s6z4804wf6c4&amp;dtd=955"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#4 JavaScript::Write (size: 1441, repeated: 1) - SHA256: ab761e40437ff8b894868168507ce230dee017c24fc5f33c7f362636d5e801bb

                                        < iframe id = "google_ads_frame2"
name = "google_ads_frame2"
width = "330"
height = "50"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3939150007554395&amp;output=html&amp;h=50&amp;slotname=6634503463&amp;adk=2527370686&amp;adf=807048394&amp;w=330&amp;fwrn=4&amp;fwrnh=100&amp;lmt=1543422148&amp;rafmt=1&amp;guci=1.2.0.0.2.2.0.0&amp;format=330x50&amp;url=http%3A%2F%2Fhackers-workshop.net%2Ftag%2Fapt-get&amp;ea=0&amp;flash=10.0.45&amp;fwr=0&amp;resp_fmts=3&amp;wgl=0&amp;adsid=NT&amp;dt=1543422152720&amp;bpp=39&amp;fdt=48&amp;idt=-M&amp;shv=r20181107&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;prev_fmts=705x60&amp;correlator=5055378199432&amp;frm=20&amp;pv=1&amp;ga_vid=802498019.1543422152&amp;ga_sid=1543422152&amp;ga_hid=431139042&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=60&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=770&amp;ady=403&amp;biw=1159&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=368226501%2C21060853%2C20195145%2C188690902%2C21062174&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=656&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=144&amp;bc=1&amp;ifi=2&amp;uci=2.brka5gpgrzm2&amp;dtd=67"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    


HTTP Transactions (102)


Request Response
                                        
                                            GET /tag/apt-get HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:27 GMT
Server: Apache
X-Powered-By: PHP/5.6.38
Link: <http://hackers-workshop.net/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   11623
Md5:    21c906acad26c41a030efc75809a1155
Sha1:   54701e15fef55768c4ff6f901dedb05001670e28
Sha256: 60658ee423ab5a658b8445b33e62d9968f3856497c11dcd06afb4ee92191e73e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=4.7.11 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 4711
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2017 00:18:27 GMT
Etag: "2c96-547e5afdafac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4711
Md5:    44b80f891452abe66cd86751bc944274
Sha1:   98035c922a0b813c26540f2503641ab23fec0b9a
Sha256: 5949bcef97746ddfc11d2a5eec70800ffe3b8e15aaec5b73b3f5c621921e86f8
                                        
                                            GET /wp-content/plugins/table-sorter/wp-style.css?ver=4.7.11 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 224
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2016 14:14:52 GMT
Etag: "216-53a1cdb0b4f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   224
Md5:    e0bfbbc5f6af101e18edbeb20decd311
Sha1:   6c44e678ae7fc1b033f352b8a13caa4bdd2c7837
Sha256: 2f0e709684444212f880967b65fe821aba0e72dca3139b44cd2d889213cb9ce5
                                        
                                            GET /wp-content/plugins/easyazon-pro-4.0.17/components/popovers/resources/popovers.css?ver=4.0.17 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 413
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 17:49:27 GMT
Etag: "3b8-53993099097c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   413
Md5:    dbef7667f63d03df1a72c05cbf2c55e6
Sha1:   7382023ef548b6d9f82c04cb480ab8f150d573d6
Sha256: a7d4ca85c85e45edb741e0a184e75f705fa282f2b4c20d0cfb60988374f93a68

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/mh-edition/includes/font-awesome.min.css HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 7006
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Sat, 13 Aug 2016 17:23:28 GMT
Etag: "6b4a-539f741d90400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7006
Md5:    cf204f7fc2eb8a00a486e8268866e957
Sha1:   788348323a52adda909af651ed67652b4143435c
Sha256: 9605cc0dfdb1eec11590345c5a6038bd545c774ee2e334f2ef4446c700b0364a
                                        
                                            GET /wp-content/plugins/wp-monero-miner-using-coin-hive/public/css/wp-coin-hive-public.css?ver=3.3.1 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 450
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Fri, 29 Dec 2017 12:37:27 GMT
Etag: "540-56179e526f04c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   450
Md5:    c133e0cdb46d6b833cbc925426eb60e0
Sha1:   40d668503f6319efb2d68d8f449b8e5a2252b941
Sha256: 9695d8a123d871cbc24899f18c42f334fc092cb2c971a96a1623d86f01ad48af

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jetpack/css/jetpack.css?ver=4.7.1 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 14340
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Wed, 15 Mar 2017 13:50:58 GMT
Etag: "fabc-54ac53bedb480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14340
Md5:    2163155b018d4a7841dff69dbc49e201
Sha1:   512437c806b27fd54dacc882d1676d501ffab581
Sha256: 48ec7b5236284c7dbe3a00f93844944604f73886e59eccf5a54f7ca6aef36a3a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 39505
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Wed, 22 Jun 2016 16:22:48 GMT
Etag: "17ba0-535e059238600-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   39505
Md5:    8e40baa0ab93e719b21700849e603424
Sha1:   e58f2b3e7f314a433db3a876e5a8f0ab41538e95
Sha256: f7f68a6ee1c5b5b6ad24269c04a9e01c3c32ee24c16e2ff161dded4fd87d9119

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/mh-edition/style.css?ver=1.1.0 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 15498
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Sat, 13 Aug 2016 17:23:28 GMT
Etag: "f810-539f741d90400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15498
Md5:    394d43d5f9e88a6ba13bcb7e1d1ca00c
Sha1:   f708b525960353ce0f5fb7d7cbf64de93e3b3ae8
Sha256: 740fa84f9758369a6972d857fc3156eedd07c2ce2f5d2750a9298087f2d8c6cf
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 4309
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Wed, 22 Jun 2016 16:22:48 GMT
Etag: "2748-535e059238600-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4309
Md5:    c9edfe6c96590c7d738882c2bb417256
Sha1:   ec730cf3582b5808bfb42973469c7d79e53a8264
Sha256: 5316418bfc4ef1fad093379edbf1c45dfbc8dc32eb1a4b6a0d53188ae6b18499

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/table-sorter/jquery.tablesorter.min.js?ver=4.7.11 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 15834
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2016 14:14:52 GMT
Etag: "a37d-53a1cdb0b4f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15834
Md5:    7b0743d431e4d19d19baacd190df0f5c
Sha1:   94e20a7782cc559fc43dd6b0caf9f55821c4e370
Sha256: 528215254a5e6c358a49f9f39631b0d8703fb60776a8db62a4f18422cf706d45

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Nov 2018 16:22:28 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/js/adsbygoogle.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Wed, 28 Nov 2018 16:22:28 GMT
Expires: Wed, 28 Nov 2018 16:22:28 GMT
Cache-Control: private, max-age=3600
Etag: 16622267867393314709
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 27972
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   27972
Md5:    8dc422abf4b2d4656affb46e02f116c4
Sha1:   04302ea3faf2a462237db12f788355f0b3b07b34
Sha256: d4c45977986815aebd99aa9594685be694908133b57f524a58fc69bb04066bd3
                                        
                                            GET /wp-content/plugins/table-sorter/jquery.metadata.js?ver=4.7.11 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1565
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2016 14:14:52 GMT
Etag: "f34-53a1cdb0b4f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1565
Md5:    d01a5d71ce11f2dd25573f614579bad2
Sha1:   c73c57f5f6445472821572a81a1af9342d0b0228
Sha256: 1451816f4df611157790d45bda67563b5afb9602d523f23c4aaf89aa40ad9b81
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Nov 2018 16:22:28 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/table-sorter/wp-script.js?ver=4.7.11 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 119
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2016 14:14:52 GMT
Etag: "87-53a1cdb0b4f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   119
Md5:    41096cea49e652e47d4abb365c3599f0
Sha1:   df10378bd4c0ef175d46467f75ba9ebb3ba05f15
Sha256: d5a81b71a0162c0bc933c04a447e864be4dc9f5d1f5e31ad41eb39d5c39cc68b
                                        
                                            GET /wp-content/plugins/wp-monero-miner-using-coin-hive/includes/js/wp-coin-hive-util.js?ver=3.3.1 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1250
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Fri, 29 Dec 2017 12:37:27 GMT
Etag: "dc2-56179e526a22c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1250
Md5:    ec5adab7946b93ce8a510132ce7e5658
Sha1:   ee1fa0dc2452c7d7c5b4151b2185c102cdb7b6e2
Sha256: 1bd5f5303b60312dd6cb1d1b8c010c94bf78dfe8f90c4c5016775903d0b4aca3
                                        
                                            GET /wp-content/plugins/wp-monero-miner-using-coin-hive/includes/js/wp-coin-hive.js?ver=3.3.1 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1489
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:28 GMT
Server: Apache
Last-Modified: Fri, 29 Dec 2017 12:37:27 GMT
Etag: "14e6-56179e526a22c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:28 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1489
Md5:    4663c38ced47d18e05f1bab6c6e63c65
Sha1:   bd2276c1cd63b39c3dd5631096e499d9bbed0d9e
Sha256: 66c564a05fc8dc542d9ae85d882213e2230fc7a62bfde41006db099b12fc669a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 25 Nov 2018 01:21:42 GMT
Etag: 79D969ED3B7B34D6A7DE1822AD8B33B6F1CB271F
X-OCSP-Responder-ID: (null)
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=290986
Expires: Sun, 02 Dec 2018 01:12:15 GMT
Date: Wed, 28 Nov 2018 16:22:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 24 Nov 2018 02:14:26 GMT
Etag: 5B5B1E5AAA3A7070269B9B4B0D0BA14B108A9279
X-OCSP-Responder-ID: (null)
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=207673
Expires: Sat, 01 Dec 2018 02:03:42 GMT
Date: Wed, 28 Nov 2018 16:22:29 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/advanced-ads/public/assets/js/advanced.js?ver=1.7.21 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1833
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Wed, 15 Mar 2017 13:51:50 GMT
Etag: "1094-54ac53f072980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1833
Md5:    02e684c5a2487f800b6f3e4b5523a09b
Sha1:   c5cd5664129f7bf35219c230d3bfac44788043e8
Sha256: 09660a4de39837d3249b363423adbd830a9f16e02c6e8151a221d8a8698d0a15

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 24 Nov 2018 02:14:26 GMT
Etag: 65362B1C5AFC1336FBACCBBD8836A14D8048B242
X-OCSP-Responder-ID: (null)
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=207744
Expires: Sat, 01 Dec 2018 02:04:53 GMT
Date: Wed, 28 Nov 2018 16:22:29 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/themes/mh-edition/js/scripts.js?ver=4.7.11 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 14355
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Sat, 13 Aug 2016 17:23:28 GMT
Etag: "999d-539f741d90400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14355
Md5:    d2fc46a93fd08a50021dcd73deaf11f4
Sha1:   fe079abd52edb0e8321528c8685995366ca8d166
Sha256: 2f9daa936d87dc105454938fc84d5429fd96ed37a8e36c32abfe40a6263a1278

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         50.63.243.230
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=78329, public, no-transform, must-revalidate
Last-Modified: Wed, 28 Nov 2018 03:16:41 GMT
Expires: Thu, 29 Nov 2018 15:16:41 GMT
Etag: "41b6ddc024798e4355413cb32026c1e409c7a44d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1777
Connection: close


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    8ca6af3453e3acf5b96218d747a8ef00
Sha1:   41b6ddc024798e4355413cb32026c1e409c7a44d
Sha256: 6271668a39fbdd45cb9ad23d948cb45baf4b563409ca7a1bfb6adf0060759363
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         104.20.208.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Wed, 28 Nov 2018 16:22:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d00a918151f5b03c8e818dfc8947e03121543422149; expires=Thu, 28-Nov-19 16:22:29 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Mon, 15 Oct 2018 11:57:41 GMT
Etag: W/"5bc480b5-423b4"
Expires: Thu, 29 Nov 2018 00:22:29 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 480e2c7208f54273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   70162
Md5:    b6bb44f95a22a27e8b92d2ccbc591524
Sha1:   b5f4bf87301fb5291d70f392758d9c56ae374cc3
Sha256: e32b7829c99619bfa2c1de9e1ed9e9e515863b2d094e86c629c67c7350e8c96d

Alerts:
  urlquery:
    - Crypto currency mining script
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Open+Sans:300,400,400italic,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Wed, 28 Nov 2018 16:22:29 GMT
Date: Wed, 28 Nov 2018 16:22:29 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   301
Md5:    81c5250598efe921d03d610f883aac90
Sha1:   cdf26b06ec5ab891b685e3b3d1d150530f71e472
Sha256: 51ee7097228636182168879c825bdcd79753d20bcfe4367f674f8efed5df8e38
                                        
                                            GET /js/gprofiles.js?ver=2018Novaa HTTP/1.1 
Host: s.gravatar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.73.2
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 23 Aug 2018 15:01:14 GMT
Etag: W/"5b7ecc3a-50bc"
Content-Encoding: gzip
Expires: Wed, 05 Dec 2018 16:22:29 GMT
Cache-Control: max-age=604800


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6796
Md5:    188bd1f47794194d7d10beb193ebba87
Sha1:   330885f0d2ef8c026ee124500453bbafaf1957d9
Sha256: 6810c50037ff4eddf76da752b311153202ba5e2d1316e8749913967286a4708b
                                        
                                            GET /wp-content/plugins/jetpack/modules/photon/photon.js?ver=20130122 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 697
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Wed, 15 Mar 2017 13:50:59 GMT
Etag: "562-54ac53bfcf6c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   697
Md5:    94d6580059dcb857a940573c5c13ba72
Sha1:   f86f85f971954bf02e67e1e8c01465035daa0181
Sha256: df163062cbecf9a32f12426f3eb21d76e94a252164a96ac9eb7373fbb68ded37

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/easyazon-pro-4.0.17/components/localization/links/resources/links.js?ver=4.0.17 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 381
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 17:49:27 GMT
Etag: "305-53993099097c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   381
Md5:    90f4d024b7e52ec95fab4bd471e9b19e
Sha1:   20aba6fdbe90c3bb4178150be6470208914614b8
Sha256: 31824a7b801bdd5f9e22e1f708c380b9bb51dabced32db97123929237a36ebd2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /dynamic-banners/336x280.gif HTTP/1.1 
Host: ddfnmo6ev4fd.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         143.204.51.167
HTTP/1.1 301 Moved Permanently
                                        
Content-Length: 0
Connection: keep-alive
Server: AkamaiGHost
Location: https://www.hidemyass.com/affiliates
Date: Wed, 28 Nov 2018 08:43:07 GMT
Age: 27562
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b91.cloudfront.net (CloudFront)
X-Amz-Cf-Id: nlVFER8Lru3OC7Rbhf3e9WigriwSXC5u9RnzDw30Gxu1CHE612644Q==


--- Additional Info ---
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.7.11 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 765
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2017 00:18:27 GMT
Etag: "576-547e5afdafac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   765
Md5:    36d31e5e90ecad1726b083b201f01ac2
Sha1:   a932a9781ee6d270e4505dc5ed28e3108f9ee851
Sha256: c141ad9f1aa165b8ed384d8a8b755e763ea6b1696163e405d717af7ba2783f80

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jetpack/modules/wpgroho.js?ver=4.7.11 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 507
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Wed, 15 Mar 2017 13:51:00 GMT
Etag: "3f7-54ac53c0c3900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   507
Md5:    0a21f76ee583510ee30f694787013771
Sha1:   b5270d11ce014d9bd1697d966cafe1113c3f3dc0
Sha256: dbddd8d902479cc7b5e3d5119e0497c1c2bd768ea839a3f0d96f16cf0cde0d97

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jetpack/modules/carousel/jetpack-carousel.js?ver=20170209 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 17291
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Wed, 15 Mar 2017 13:50:59 GMT
Etag: "d0c6-54ac53bfcf6c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17291
Md5:    e5156c2c94c77226a0fd1a3a0b14332d
Sha1:   91a6b6985bf1f090bf891eca4d844cbc1124cc4b
Sha256: 1264a4394d322b65fc1d633a1bc7fe1a37726b53ab5ea69f4939a424e05f808c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/advanced-ads-layer/public/assets/js/layer.js?ver=1.3.1.2 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 6818
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Wed, 15 Mar 2017 14:03:51 GMT
Etag: "5fe5-54ac56a00bfc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6818
Md5:    0ed1005b1a528aa679ebf44dd2dbed93
Sha1:   22cb0636d7809d056104b9ae625c4bb04e9083c9
Sha256: 82aaf7b9f33f60103fd80f6dc89ae6cc554ef62e59ced6ca3eee81e8a66da76b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/easyazon-pro-4.0.17/components/popovers/resources/popovers.js?ver=4.0.17 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 940
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2016 17:49:27 GMT
Etag: "a5e-53993099097c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   940
Md5:    08fd20f7cb4edff64f3023cb632b3b02
Sha1:   e525ea88b67c503ab0b3807a3a13f5f1aec6bc2f
Sha256: c1092a4e98253d260e16d5735799912b02fdff061e129718517e56f90f911821
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Nov 2018 16:22:29 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/jetpack/_inc/spin.js?ver=1.3 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 4195
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:29 GMT
Server: Apache
Last-Modified: Wed, 15 Mar 2017 13:50:58 GMT
Etag: "27d5-54ac53bedb480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4195
Md5:    59c080ec0cac1bff31682a72a67f5474
Sha1:   59ed77130027098ae82f6672459f9d2e3e01851e
Sha256: 39c9f307a486a444b3c55a3c2a01db53cf37846c8da1ce42a370fb0bfd380955

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0d.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,400,400italic,600,700
Origin: http://hackers-workshop.net

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17704
Date: Tue, 27 Nov 2018 19:34:58 GMT
Expires: Wed, 27 Nov 2019 19:34:58 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 74852
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   17704
Md5:    bf2d0783515b7d75c35bde69e01b3135
Sha1:   0e92462e402c15295366d912a7b8be303d0257d8
Sha256: 054349dda27b80bb105fbc59b5973ef9889ed976aca1fbe39f77688dcff8c552
                                        
                                            GET /wp-content/plugins/jetpack/_inc/jquery.spin.js?ver=1.3 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1251
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:30 GMT
Server: Apache
Last-Modified: Wed, 15 Mar 2017 13:50:58 GMT
Etag: "d02-54ac53bedb480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:30 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1251
Md5:    a7f9aced12427fc305c76578b525e3a8
Sha1:   78ca926d395cd4e0cd69f339ca183ed79957dc3c
Sha256: a2058ce6213d2102aaa23a0c76727eb7b75705f557a62ef04427833749df50dc

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Nov 2018 16:22:30 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=137141
Date: Wed, 28 Nov 2018 16:22:30 GMT
Etag: "5bfc847d-1d7"
Expires: Fri, 30 Nov 2018 06:28:11 GMT
Last-Modified: Mon, 26 Nov 2018 23:40:45 GMT
Server: ECS (ams/4987)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=165053
Date: Wed, 28 Nov 2018 16:22:30 GMT
Etag: "5bfe960c-1d7"
Expires: Fri, 30 Nov 2018 14:13:23 GMT
Last-Modified: Wed, 28 Nov 2018 13:20:12 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /hackers-workshop.net/wp-content/uploads/2016/07/2207.png?resize=97%2C73 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:30 GMT
Content-Length: 1138
Connection: keep-alive
Last-Modified: Wed, 28 Nov 2018 16:22:30 GMT
Expires: Sat, 28 Nov 2020 04:22:30 GMT
Cache-Control: public, max-age=63115200
Link: <http://hackers-workshop.net/wp-content/uploads/2016/07/2207.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "de8ec2f56fb8224a"
X-Bytes-Saved: 482
Vary: Accept
X-nc: MISS arn 20


--- Additional Info ---
Magic:  PNG image, 97 x 73, 8-bit colormap, non-interlaced
Size:   1138
Md5:    40a3d46bc87da094873b54fac849ae42
Sha1:   d1f438e8200165e3ef1b15eb26cfc9a9051734ef
Sha256: c113a098bd4cee8f60191c44ed3e9b69a930230c3bf1379617ccbf4d6e4744e8
                                        
                                            GET /hackers-workshop.net/wp-content/uploads/2016/07/16.07.jpg?resize=355%2C200 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:30 GMT
Content-Length: 5980
Connection: keep-alive
Last-Modified: Wed, 28 Nov 2018 16:22:29 GMT
Expires: Sat, 28 Nov 2020 04:22:29 GMT
Cache-Control: public, max-age=63115200
Link: <http://hackers-workshop.net/wp-content/uploads/2016/07/16.07.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "66bf6fbabeedc277"
Vary: Accept
X-nc: MISS arn 21


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   5980
Md5:    26e501da778d69a34160040bc298ccdf
Sha1:   f452b501d1ef0e75fd8fc282f727414f50e5500d
Sha256: b471eb53aaf38565bab3f9c8aed8ed1ea245b2cd1502496f6cbd94b540f22f2a
                                        
                                            GET /hackers-workshop.net/wp-content/uploads/2016/08/wordpress.jpg?resize=97%2C73 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:30 GMT
Content-Length: 2398
Connection: keep-alive
Last-Modified: Wed, 28 Nov 2018 16:22:30 GMT
Expires: Sat, 28 Nov 2020 04:22:30 GMT
Cache-Control: public, max-age=63115200
Link: <http://hackers-workshop.net/wp-content/uploads/2016/08/wordpress.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "3b7ee7cd8b1489e5"
Vary: Accept
X-nc: MISS arn 16


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2398
Md5:    30f8d0b2225efc76f5325cb3ad53ba44
Sha1:   1aec3e237fc9767c4dd82e4361f6f546ab084bab
Sha256: db3086121e4094a3a4ac368133da2d5d67e20cafbe375d698f0debb15ae3c5a5
                                        
                                            GET /hackers-workshop.net/wp-content/uploads/2016/07/6-juni-2016.jpg?resize=355%2C200 HTTP/1.1 
Host: i2.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:30 GMT
Content-Length: 7971
Connection: keep-alive
Last-Modified: Wed, 28 Nov 2018 16:22:30 GMT
Expires: Sat, 28 Nov 2020 04:22:30 GMT
Cache-Control: public, max-age=63115200
Link: <http://hackers-workshop.net/wp-content/uploads/2016/07/6-juni-2016.jpg>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "29755468c636a9d5"
X-Bytes-Saved: 111
Vary: Accept
X-nc: MISS arn 21


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   7971
Md5:    6e1946f99e192e44168266643f57276e
Sha1:   52facca1b6a9069a24cbaec74ebc997e2aa9235f
Sha256: 2706e7a7e232668f510e70c8fecc2d11516aa8d7bad37f64f1970e8c14ab57ee
                                        
                                            GET /wp-content/js/devicepx-jetpack.js?ver=201848 HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.77.32
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5841a56f-52b6"
Content-Encoding: gzip
Expires: Mon, 25 Nov 2019 09:58:37 GMT
Cache-Control: max-age=31536000
X-ac: 4.arn _dca
X-nc: HIT arn 32


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3163
Md5:    844b0e2ae8eba4159dd5edd8efbde50c
Sha1:   757861da25bea58b1bc03203f65ae93673cfc065
Sha256: ef84d445c23339e2c3742857d7e020c89d639f1ddc434b6f6a585ac9907bbb92
                                        
                                            GET /s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,400,400italic,600,700
Origin: http://hackers-workshop.net

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18476
Date: Tue, 27 Nov 2018 17:17:51 GMT
Expires: Wed, 27 Nov 2019 17:17:51 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:43 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 83080
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   18476
Md5:    623e3205570002af47fc2b88f9335d19
Sha1:   b5f79d1934da79c8a4ba381092dad82ffb0582cb
Sha256: 5e03e0c7668266486cab9529702019d75c219fcec2b1e82a7c11797ba9b78506
                                        
                                            GET /lib/worker-asmjs.min.js?v8 HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get
Origin: http://hackers-workshop.net

                                         
                                         104.20.208.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Wed, 28 Nov 2018 16:22:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dba3837c1c5f5d91d64301e80ed153d681543422150; expires=Thu, 28-Nov-19 16:22:30 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Mon, 15 Oct 2018 11:57:23 GMT
Etag: W/"5bc480a3-34e41"
Expires: Thu, 29 Nov 2018 00:22:30 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: MISS
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 480e2c7619244279-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   69650
Md5:    74488dbef0c270d289388b0be0bda051
Sha1:   8c91952f99849868c4412cc928549e8101a95a8b
Sha256: f5929fb46cb5c71320d41a62a53d74ca19a4e29edc41079a9f2819b111fa2012

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /adsid/integrator.js?domain=hackers-workshop.net HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Wed, 28 Nov 2018 16:22:31 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /e-201848.js HTTP/1.1 
Host: stats.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5bedf79b-331d"
Content-Encoding: gzip
Expires: Mon, 25 Nov 2019 09:03:55 GMT
Cache-Control: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2908
Md5:    9cd11ca3082c9a11351ded2677a3f982
Sha1:   c5c5b433d9f9e7d76caa8357490ce0ef8cd33bfa
Sha256: 1097506227fa0f88e7d17f9c9679b8c27be73f613748fac996d6db4102e54d1d
                                        
                                            GET /s/opensans/v15/mem5YaGs126MiZpBA-UN_r8OUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,400,400italic,600,700
Origin: http://hackers-workshop.net

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18280
Date: Tue, 27 Nov 2018 18:35:20 GMT
Expires: Wed, 27 Nov 2019 18:35:20 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:35 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 78430
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   18280
Md5:    521d17bc9f3526c690e8ada6eee55bec
Sha1:   0c74bab4a4ebdafe080c8a35bd61d38f1b692358
Sha256: 624b3c987e1731e2871567be1451a257be8ebcaa2abebaa45651d3d95fa99492
                                        
                                            GET /adsid/integrator.js?domain=hackers-workshop.net HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Wed, 28 Nov 2018 16:22:31 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /hackers-workshop.net/wp-content/uploads/2016/07/Bild_20160704.png?resize=97%2C73 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:31 GMT
Content-Length: 3667
Connection: keep-alive
Last-Modified: Tue, 27 Nov 2018 04:28:08 GMT
Expires: Thu, 26 Nov 2020 16:28:08 GMT
Cache-Control: public, max-age=63115200
Link: <http://hackers-workshop.net/wp-content/uploads/2016/07/Bild_20160704.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "ff5427ceeb90e624"
X-Bytes-Saved: 3762
Vary: Accept
X-nc: HIT arn 20


--- Additional Info ---
Magic:  PNG image, 97 x 73, 8-bit colormap, non-interlaced
Size:   3667
Md5:    02304f8668e2b3d33aec2859435a7a77
Sha1:   763ac716ed123eae2bab9d202fd14c635e426eeb
Sha256: a6dfc0e5c2917c4f3d020c835ca762d653a78976647a9e21ccecdb9fc9666b62
                                        
                                            GET /pagead/js/r20181107/r20180604/show_ads_impl.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Wed, 28 Nov 2018 16:22:31 GMT
Expires: Wed, 28 Nov 2018 16:22:31 GMT
Cache-Control: private, max-age=1209600
Etag: 4928414623819366149
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 76460
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   76460
Md5:    5b30c7651ebd6c92abf352828913ff9b
Sha1:   31e548ed1f52bd916918f3ca8d3e08f2acd7cdf5
Sha256: c6d4d32d0d8ec527d618946381297790b02bb006f1469d9e8674189dddc7fa42
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Nov 2018 16:22:32 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/mh-edition/fonts/fontawesome-webfont.woff?v=4.5.0 HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/wp-content/themes/mh-edition/includes/font-awesome.min.css

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Content-Length: 83588
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:32 GMT
Server: Apache
Last-Modified: Sat, 13 Aug 2016 17:23:28 GMT
Etag: "14684-539f741d90400"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Wed, 26 Dec 2018 16:22:32 GMT


--- Additional Info ---
Magic:  data
Size:   83588
Md5:    a35720c2fed2c7f043bc7e4ffb45e073
Sha1:   4a313eb93b959cc4154c684b915b0a31ddb68d84
Sha256: c812ddc9e475d3e65d68a6b3b589ce598a2a5babb7afc55477d59215c4a38a40
                                        
                                            GET /hackers-workshop.net/wp-content/uploads/2016/08/HEISTAttack.png?resize=97%2C73 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.77.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:31 GMT
Content-Length: 2328
Connection: keep-alive
Last-Modified: Wed, 28 Nov 2018 16:22:31 GMT
Expires: Sat, 28 Nov 2020 04:22:31 GMT
Cache-Control: public, max-age=63115200
Link: <http://hackers-workshop.net/wp-content/uploads/2016/08/HEISTAttack.png>; rel="canonical"
X-Content-Type-Options: nosniff
Etag: "b88713feee38b02d"
X-Bytes-Saved: 779
Vary: Accept
X-nc: MISS arn 16


--- Additional Info ---
Magic:  PNG image, 97 x 73, 8-bit colormap, non-interlaced
Size:   2328
Md5:    db2ffe13672d9b5bcb632f9997f25b99
Sha1:   c7b3ab4ed140207c07b7e2d7f39a9e681c41c0cf
Sha256: 52d05673bf513a9280f647d187c2719ef50f04d25486c68fad4c3b9ea1a9043a
                                        
                                            GET /pub-config/r20160913/ca-pub-3939150007554395.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 125
Date: Wed, 28 Nov 2018 14:28:56 GMT
Expires: Thu, 29 Nov 2018 02:28:56 GMT
Last-Modified: Tue, 27 Nov 2018 21:37:24 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=43200
Age: 6816
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   125
Md5:    21aea2dae0239adff4f9f063cdacfc76
Sha1:   ce64c497ac1dd86393da79e8cea239de113c1de7
Sha256: a59ee78166b8467dd7dd8c7acb03d8df7d16cf4a04f45c8558366df1c33b868f
                                        
                                            GET /pagead/js/r20181107/r20100101/osd.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Mon, 26 Nov 2018 07:41:50 GMT
Expires: Mon, 10 Dec 2018 07:41:50 GMT
Etag: 5000825381819961729
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 27460
X-XSS-Protection: 1; mode=block
Age: 204042
Cache-Control: public, max-age=1209600
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   27460
Md5:    10ee29219ef0740bbdfb82afb35b010e
Sha1:   b387db9c14d99def4e8bfdaa420d4287e84b94cb
Sha256: 2339ece32c8a4c5be9743a88f1fa7dc0a3b5cfd92ea29ace55dc282eead8f5ce
                                        
                                            GET /pagead/html/r20181107/r20180604/zrt_lookup.html HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Mon, 26 Nov 2018 07:41:50 GMT
Expires: Mon, 10 Dec 2018 07:41:50 GMT
Etag: 12810928231326100212
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
Content-Length: 6940
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 204042
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6940
Md5:    d777326182433d075d044edb2f090fa9
Sha1:   6b39f197a7908fff24360fe81de0d221134a3197
Sha256: c8232f61c75ebbbe71b20c2aca70b70dcb6b65a0d35509a9ada4994a41c1976b
                                        
                                            GET /s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,400,400italic,600,700
Origin: http://hackers-workshop.net

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18296
Date: Tue, 27 Nov 2018 15:44:28 GMT
Expires: Wed, 27 Nov 2019 15:44:28 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:52 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 88685
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   18296
Md5:    1cd5320f8937d337b61d5117cf9d7b28
Sha1:   24798ef7ac55ba93aaa033fefdb7ca4d57da44ad
Sha256: e19b28ad1aafcb23735d02cbec4e2697ebbf7d608cf47fb8f8565def01b28c2a
                                        
                                            GET /en_US/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: f5999690b7f19ab632a900325000f166
Timing-Allow-Origin: *
Expires: Wed, 28 Nov 2018 16:28:03 GMT
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Etag: "bd9edb6982ec1958bdf781185bc9f271"
X-XSS-Protection: 0
Content-MD5: 9ZmWkLfxmrYyqQAyUADxZg==
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
X-FB-Debug: hr3wu8JUyDC1hyPlhZdVvlo83QimYzD7lu16qoU2tZ6D9nSDSh5LtoATAwbCCYZYEr79/K4CW5REEUz+iYk5zA==
Date: Wed, 28 Nov 2018 16:22:33 GMT
Connection: keep-alive
Content-Length: 199043


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   199043
Md5:    f5999690b7f19ab632a900325000f166
Sha1:   93b01fe45054ae5e22c07f62f42ab3de706b5ed7
Sha256: 7616e09c35543184823767097b708e75c85577df56eced3623795a9b9be97121
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Nov 2018 16:22:33 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/ads?client=ca-pub-3939150007554395&output=html&h=60&slotname=6634503463&adk=2856719295&adf=807048394&w=705&fwrn=4&fwrnh=100&lmt=1543422148&rafmt=1&guci=1.2.0.0.2.2.0.0&format=705x60&url=http%3A%2F%2Fhackers-workshop.net%2Ftag%2Fapt-get&ea=0&flash=10.0.45&fwr=0&resp_fmts=3&wgl=0&adsid=NT&dt=1543422151225&bpp=74&fdt=197&idt=186&shv=r20181107&cbv=r20180604&saldr=aa&abxe=1&correlator=5055378199432&frm=20&pv=2&ga_vid=802498019.1543422152&ga_sid=1543422152&ga_hid=431139042&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=60&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=411&ady=133&biw=1176&bih=754&scr_x=0&scr_y=0&eid=368226501%2C21060853%2C20195145%2C188690902%2C21062174&oid=3&rx=0&eae=4&fc=656&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=144&bc=1&ifi=1&uci=1.s6z4804wf6c4&dtd=955 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Wed, 28 Nov 2018 16:22:33 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 28-Nov-2018 16:37:33 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Expires: Wed, 28 Nov 2018 16:22:33 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   385
Md5:    9f86dea292e6412f68a8f857ed19eff7
Sha1:   bcda624beffdc1f6c576436ca493ebdba6f6ea6a
Sha256: abcf5dc5299b81ee531638def408c7bfeed861acd02c9c9e88faf46792657aab
                                        
                                            GET /affiliates HTTP/1.1 
Host: www.hidemyass.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get
Range: bytes=3591-
If-Range: "5bfd245e-172a9"

                                         
                                         23.53.49.58
HTTP/1.1 206 Partial Content
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Last-Modified: Tue, 27 Nov 2018 11:02:54 GMT
Etag: "5bfd245e-172a9"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=658
Expires: Wed, 28 Nov 2018 16:33:31 GMT
Date: Wed, 28 Nov 2018 16:22:33 GMT
Content-Range: bytes 3591-28168/28169
Content-Length: 24578
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   24578
Md5:    f1f187e6d22a1e096c18e1cbba9edad1
Sha1:   8f9e39e69d11399db5e5e0b5c2d9cd312f721319
Sha256: e8e5afa9ef6711f0b180d73cafcf260f6ddf9a5c283f1eece20b5e70d4b6f3d0
                                        
                                            GET /g.gif?v=ext&j=1%3A4.7.1&blog=81837493&post=0&tz=0&srv=hackers-workshop.net&host=hackers-workshop.net&ref=&rand=0.736898030727091 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 28 Nov 2018 16:22:34 GMT
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=119342
Date: Wed, 28 Nov 2018 16:22:34 GMT
Etag: "5bfdd132-1d7"
Expires: Fri, 30 Nov 2018 01:31:36 GMT
Last-Modified: Tue, 27 Nov 2018 23:20:18 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /pagead/ads?client=ca-pub-3939150007554395&output=html&h=50&slotname=6634503463&adk=2527370686&adf=807048394&w=330&fwrn=4&fwrnh=100&lmt=1543422148&rafmt=1&guci=1.2.0.0.2.2.0.0&format=330x50&url=http%3A%2F%2Fhackers-workshop.net%2Ftag%2Fapt-get&ea=0&flash=10.0.45&fwr=0&resp_fmts=3&wgl=0&adsid=NT&dt=1543422152720&bpp=39&fdt=48&idt=-M&shv=r20181107&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=705x60&correlator=5055378199432&frm=20&pv=1&ga_vid=802498019.1543422152&ga_sid=1543422152&ga_hid=431139042&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=60&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=770&ady=403&biw=1159&bih=754&scr_x=0&scr_y=0&eid=368226501%2C21060853%2C20195145%2C188690902%2C21062174&oid=3&rx=0&eae=4&fc=656&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=144&bc=1&ifi=2&uci=2.brka5gpgrzm2&dtd=67 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Wed, 28 Nov 2018 16:22:33 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 28-Nov-2018 16:37:33 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Expires: Wed, 28 Nov 2018 16:22:33 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   385
Md5:    2b17938c1867e4a2c08b5922ea0c9bcf
Sha1:   029e936b7b5ab9ced49684475081759de65a0a70
Sha256: 7d7cde04baa15711cca464e992848566b63e6a4ec832ef0765a512ccf8b80e43
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Wed, 28 Nov 2018 14:50:48 GMT
Expires: Wed, 28 Nov 2018 16:50:48 GMT
Last-Modified: Mon, 05 Nov 2018 21:10:09 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17404
Cache-Control: public, max-age=7200
Age: 5506
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17404
Md5:    33586531225d561faadda61de818c510
Sha1:   9a3b5ffbdc4071557def3d9609eee6ad3c52d1e1
Sha256: 521d2fb506ca60463e914fd138e092f935579d31436dcff3cc6a1d216d06ef82
                                        
                                            GET /connect/xd_arbiter/r/afATJJjxKE6.js?version=43 HTTP/1.1 
Host: staticxx.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Expires: Tue, 26 Nov 2019 17:45:40 GMT
Cache-Control: public,max-age=31536000,immutable
Strict-Transport-Security: max-age=15552000; preload
X-Content-Type-Options: nosniff
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
X-XSS-Protection: 0
Expect-CT: max-age=86400, report-uri="http://reports.fb.com/expectct/"
X-FB-Debug: oYle1oMinyEYnWTH9kuErSNqt2c44RSV7CoaTTCU3xlrgnKRfREarVSHXIsv1bfrglkO8pY89b8eHhrl+aT5rQ==
Date: Wed, 28 Nov 2018 16:22:34 GMT
Connection: keep-alive
Content-Length: 39412


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   39412
Md5:    ca58e321deb516290149547e06c8b8e6
Sha1:   d770df7f080b66d0e777e05094a9b29732dba931
Sha256: 2ee44637d97bec5f0fffb76adbc0670a03de434bfcdbc894766df92273e3bc58
                                        
                                            GET /r/collect?v=1&_v=j72&a=431139042&t=pageview&_s=1&dl=http%3A%2F%2Fhackers-workshop.net%2Ftag%2Fapt-get&ul=en-us&de=UTF-8&dt=apt-get%20Archives%20-%20Hackers%20Workshop&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IAhAAEQ~&jid=458647308&gjid=1661715646&cid=802498019.1543422152&tid=UA-67622778-1&_gid=2049008391.1543422154&_r=1&z=1813589856 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         216.58.207.206
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-67622778-1&cid=802498019.1543422152&jid=458647308&_gid=2049008391.1543422154&gjid=1661715646&_v=j72&z=1813589856
Access-Control-Allow-Origin: *
Date: Wed, 28 Nov 2018 16:22:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 418
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   418
Md5:    6cc58b0d081af72a821dc81e1a140d27
Sha1:   2579453fd9a9739604df417c32a63afa67efbe42
Sha256: 2d37d6f44e6882cdb229fbb406ac6da6997281340e3bb52bd59aa61b2aeecb4f
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-67622778-1&cid=802498019.1543422152&jid=458647308&_gid=2049008391.1543422154&gjid=1661715646&_v=j72&z=1813589856 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get
Cookie: test_cookie=CheckForPermission

                                         
                                         173.194.221.157
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Wed, 28 Nov 2018 16:22:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /v2.3/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300 HTTP/1.1 
Host: web.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         31.13.72.40
HTTP/1.1 302 Found
Content-Type: text/html; charset="utf-8"
                                        
X-XSS-Protection: 0
X-FB-ZR-Redirect: 02|1543508554|FzBFAiAnoNmPzC0jRhXJ3hVti0V3_ZKDK477tD2El4ciW71BywIhAJSbAMq93KcT-3u_e2MRaQViVHJuU2XvpbUeJczfSQN6
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self' https://*.facebook.com;style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' https://*.facebook.com;
Pragma: no-cache
Strict-Transport-Security: max-age=15552000; preload
Location: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr
X-Content-Type-Options: nosniff
facebook-api-version: v2.8
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-FB-Debug: u3fHJUv+3aRz4oDkMXTlZVqZm+DRr7zTq0kVpw687SvzUsNaocaGaATBvmL7m0CDEfPOZNH9b77JzS5ttuzlFg==
Date: Wed, 28 Nov 2018 16:22:34 GMT
Connection: keep-alive
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /v2.3/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df28e42407f8d0b4%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300 HTTP/1.1 
Host: web.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         31.13.72.40
HTTP/1.1 302 Found
Content-Type: text/html; charset="utf-8"
                                        
X-XSS-Protection: 0
X-FB-ZR-Redirect: 02|1543508554|FzBEAiBvoYi62H7YhnzA6TVnk8Gexcy9xjMpq7ygvMV3sQb6egIgXiuTMdvAV_FYbeMyhLAQT09X2wzGMEnUItzISv1Juzo
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self' https://*.facebook.com;style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' https://*.facebook.com;
Pragma: no-cache
Strict-Transport-Security: max-age=15552000; preload
Location: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df28e42407f8d0b4%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr
X-Content-Type-Options: nosniff
facebook-api-version: v2.8
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-FB-Debug: Ho3M/YT0ESBRU0ACGVazJUedlJQ+SIe+uoGn4oduINeS+lfPsnNUJRUxDFKW9ijgtDRxhOosNOQJcfJZ2Qs2ow==
Date: Wed, 28 Nov 2018 16:22:34 GMT
Connection: keep-alive
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         31.13.72.36
HTTP/1.1 200 OK
Content-Type: text/html; charset="utf-8"
                                        
X-XSS-Protection: 0
Content-Encoding: gzip
Timing-Allow-Origin: *
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate
Strict-Transport-Security: max-age=15552000; preload
Pragma: no-cache
X-FB-Debug: SxrNbG/zRURC/85zKAD6JTh8XsOoRcJUlUrVgQPUyOPr2j2ifYcgKzmv961cUyUr74abkt7BKLGaLf0DHw7JWw==
Date: Wed, 28 Nov 2018 16:22:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   170582
Md5:    fed01bd4e14572bd566b1c47190bcb8b
Sha1:   0f6998235e2cd01cca0b5ffe57a9679c839aba66
Sha256: 42830f80bad9c8d7cc4846b478b5efb5da98ab2ba30eeef70c6d504ae1dca275
                                        
                                            GET /rsrc.php/v3/yg/r/hcsVUiNjV5n.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Wed, 27 Nov 2019 17:52:15 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: E1iLGGAyuji3r11xOXCH0w==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: mgjk8/Sbp2UTjYzAMvMbMuXRk9gyZzdPNDEZmidDkaUeP+H2zJSPeeJZZLGJJTa97ia4QCIlLF21t3c769isbw==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 30951


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   30951
Md5:    13588b186032ba38b7af5d71397087d3
Sha1:   1d0b7701e20ba3571baadedce32f07c5cba88dd4
Sha256: 75c964f43b6e10a206a33443f594a7c2f127ee28fe83b2bfd03dcfd1e7fdc89c
                                        
                                            GET /rsrc.php/v3/yc/l/0,cross/goZOoFtquE3.css HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Wed, 27 Nov 2019 18:14:25 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: 5gVXZOtXkx+790VGQqBKpA==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: 0L1kCAmliSdyEeb1tfU82L3VsCltZB4haAqqYJkfzUHAP6uVXFWq5+mB79E9L1S/SJXVIjY58lEZuc7Yg8906w==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 38544


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   38544
Md5:    e6055764eb57931fbbf7454642a04aa4
Sha1:   f73cf1e021a581e6afb7a062f161bb7141360c5e
Sha256: 170f882d7b10054d53aa04e911c463521c21a8a4245aea24dcfe232d130c4498
                                        
                                            GET /rsrc.php/v3iLl54/y4/l/en_US/KrSkQHEMBey.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Expires: Thu, 28 Nov 2019 01:44:46 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: 6YyPaAFt979y5mCXGr1y+A==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: Ss1P7GG2/1mamGNzh2PjN/iZqCSkDILw4ehfaFmc5WymdOC65ob7RjIKkzjSgwcf8lqbjGQx0XRzNI/8YvUwmA==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 32167


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   32167
Md5:    e98c8f68016df7bf72e660971abd72f8
Sha1:   149b600bb16710bab2ec7b3dc2997f7859a148ee
Sha256: 842a04b403d771491ee1388708b3b9ee81f73aaf65b391725c845181ab033edf
                                        
                                            GET /rsrc.php/v3/yI/l/0,cross/Yq3nGZlhvb8.css HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Fri, 22 Nov 2019 05:22:23 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: Apo1Li2vpyLATAG4sImrQw==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: NBVVjHbIFXNC7jMJ3zww0tKH1x8rk0bWH5i7zS6x1ve8pzD/IQ/1UB6DQzCegClO1H6bAorlE6FM/v3Ix2cArw==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 3945


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   3945
Md5:    029a352e2dafa722c04c01b8b089ab43
Sha1:   8c9f8236824a65fd6e42a84b97fa8888bccb2fb1
Sha256: 0f9beb311c531399c71694c6e5c20c64ea95c0a2c38cef82385ed1b89765a52f
                                        
                                            GET /plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df28e42407f8d0b4%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         31.13.72.36
HTTP/1.1 200 OK
Content-Type: text/html; charset="utf-8"
                                        
X-XSS-Protection: 0
Content-Encoding: gzip
Timing-Allow-Origin: *
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate
Strict-Transport-Security: max-age=15552000; preload
Pragma: no-cache
X-FB-Debug: iHqX1VkQT2UWC0w45CeOOGrmhOOo3qshZJOv+0eja7c4trWeTo92hgN8Rlibqboi0RkLB5jk1Ht8ZwwlP7kjBQ==
Date: Wed, 28 Nov 2018 16:22:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   170559
Md5:    f51f4a7630359ceed52dfd0aedfadac2
Sha1:   4786f4a1da7106b07b7cc5724dd9cfa5670c2a1c
Sha256: bdce255513cf168994a1d04b732b6952163e60cd8f7dce31655966b56599ab99
                                        
                                            GET /rsrc.php/v3/yb/r/ffbw885Y2ed.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Wed, 27 Nov 2019 17:52:15 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: sArithQ71Ov1JTxf39Wjkw==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: qWOtZDvIVS/0tsIa1ZzoPpNk+lneb3bqrXpk6+WhEvxw0Eb9c7RphH0p0b7c+TigwrrldKYbHIIEK1Yqe7qlZA==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 86026


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   86026
Md5:    b00ae2b6143bd4ebf5253c5fdfd5a393
Sha1:   7ea41420db601e605da04b5e204282bea87e8161
Sha256: 393c326eb2678b4dc4b8a6e4e08dd169e9f82a3263389480547844ceb49a667b
                                        
                                            GET /rsrc.php/v3iEpO4/y2/l/en_US/eDQsKfSu31o.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Wed, 27 Nov 2019 17:57:47 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: sOR4HEBhfBNSnjEIG4jjRw==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: WYv9p83Vi884v2lP2K9RScLHTDBzIi2EWi0fQbSuttASjRfw2iaW7Iu1DYPMZ07RwPTKge2oWmWzgw0TPSAFWw==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 95430


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   95430
Md5:    b0e4781c40617c13529e31081b88e347
Sha1:   e85591401662b19592392da1f084e06807d0d447
Sha256: 6c8571859b4e693d15e14d54a630a15939eee47d274d74660ee50e8bc111a8a8
                                        
                                            GET /rsrc.php/v3/yC/r/F-FNFZydvU7.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Expires: Thu, 28 Nov 2019 14:19:40 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: z86Dc3BY1Q3lpd7u2LjFXQ==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: zpMPvBTDaCz9cUxuh0/chtR5p99vDnUAVB8G2RzHodnisKnsvvawGJar/5O7wfyx/kUF3xLhLFwje2vS/bNg7Q==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 87652


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   87652
Md5:    cfce83737058d50de5a5deeed8b8c55d
Sha1:   2a6a73db2fe96cd1d3fdab6276ab7690d0ef02dd
Sha256: 250c8b3b96f3b61809deb2c221400199cefb682ef7eaa6efc481302f2d5aafec
                                        
                                            GET /rsrc.php/v3ijMM4/yL/l/en_US/RbnlmVM0YRw.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Wed, 27 Nov 2019 17:57:51 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: sDEqB3J2ayq/U5V2inRGGg==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: GLBHV7GPiF7e+3KWv6ivJWHOe6c6x66+CnWeFVNn0iNQQS6Ah5YYsiPl6duvUZWL6gY81dMLyAgOUE83N95t5g==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 41936


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   41936
Md5:    b0312a0772766b2abf5395768a74461a
Sha1:   6af1a63688d4c95fdbbf2173e40965b8e0eeea6b
Sha256: acfa4ea9d78294e7ee38ea867c44a6c5f91aa8051aaa07c4d714f9de4aae255f
                                        
                                            GET /rsrc.php/v3iY4u4/yX/l/en_US/XejCtI9EBib.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 28 Nov 2019 15:30:18 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: MofambCe0ZtP6LVovC+pgg==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: OuxynqnCMc/p1rhocWfCzpSQ0yfuyX9VoDA6hk8KIEzErKs7c4bhFU29HHoItHKyMVnCLVsg9EOG2Tq0PVwJIQ==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 408817


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   408817
Md5:    3287da99b09ed19b4fe8b568bc2fa982
Sha1:   9b5121f9d872e93a1ade8c993e0009093c4cfbed
Sha256: d1d0dad491d1b5b5b73c991f26602d8ca6aa869c0a901e37a16fad072b63f7ae
                                        
                                            GET /rsrc.php/v3ijos4/yz/l/en_US/vy4a5KqcIB4.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 28 Nov 2019 15:30:18 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: 9BNnxOHRKVBqjbEsrjBgJQ==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: WuHhKeC/3NMcEj/OnM0gB4qnPdcCYcEkeDhvEUz1UUDIbdL5KOtTGY86wI5lFR3PY1wjNbdv3mujvy3Oj4bJ9A==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 153301


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   153301
Md5:    f41367c4e1d129506a8db12cae306025
Sha1:   5a957578fdc72821c120760eaecf23fd42ae237d
Sha256: c660960abc4c3a9cee5454aafb82cd531ea143e29d0a030d4b30a16992d7180c
                                        
                                            GET /rsrc.php/v3/yY/l/0,cross/u0MlqhYtN8f.css HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Sun, 24 Nov 2019 14:07:36 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: /FEWX0IKpai1isTyV8oL7Q==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: z134yWwxjXCBfo6uOe7gqb/VXFK+FK5mD0a/XDDksy7OLgrjkCPhjwbBayyaQReFMBXTUuN8Fy+fG/9RdhNkbQ==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 35207


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   35207
Md5:    fc51165f420aa5a8b58ac4f257ca0bed
Sha1:   d46ea60d40fd2f35711cc9397a65265b9370f104
Sha256: e21b845704ccc08beeff93074e138057de0f7bd86b6c1acf7ef6ffe744f42d37
                                        
                                            GET /rsrc.php/v3/yA/r/yFjg51gULWi.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Expires: Thu, 28 Nov 2019 14:19:42 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: iUvH8ss+Qi+guSN4YHqLpQ==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: T+j5+bF2d6Y2SlCHqfDHEu601QvXj8WIquQ8Y5DAkyLmEBCXqCp/12TXEGx8W2pK2lRp/LsX5UERmc/VV5G5wQ==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 12804


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   12804
Md5:    894bc7f2cb3e422fa0b92378607a8ba5
Sha1:   e3b5aa5f24b8483644a61898a15a3abeef53c9db
Sha256: f540454bbf59b604cf2e611d66c0d103603f290ba494ba3a94797206ca175c2e
                                        
                                            GET /rsrc.php/v3/yP/r/RGUm955Tn5P.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Tue, 26 Nov 2019 18:33:53 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: 21Tebi1pZcF7XOlysOXE3g==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: tujlkt5/lADTp/SCbFZ4cVj7bQ+CodJnKMMBGRhmr9Y6Keq49j0zdgH3eaFLOr3zf3JSBqsPyQqm/rynC2IVoQ==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 116801


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   116801
Md5:    db54de6e2d6965c17b5ce972b0e5c4de
Sha1:   f41bfbf8e27350a6f6e4feee6e663c4d6f0b5185
Sha256: 3e625fa42685195b045707f7026c5e2448fafdec7dfe0a0e2970972c5d0589c9
                                        
                                            GET /rsrc.php/v3/y-/r/mUhmNGuT4z2.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Wed, 27 Nov 2019 17:51:17 GMT
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=edge,chrome=1
X-XSS-Protection: 0
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: WSxTRSNVImMq3kvFsaCTXg==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: 6/LGRJfDk1OdzuUGQZlvpkb2zGX54lGP6a/0hq1U/NYZkwaXZ90cQE3kKHT5vp7rrXpnBwJmlc72Mcs77M6xUA==
Date: Wed, 28 Nov 2018 16:22:35 GMT
Connection: keep-alive
Content-Length: 320825


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   320825
Md5:    592c5345235522632ade4bc5b1a0935e
Sha1:   da3e110e1b179ca8d7b3b5077ece76414637d613
Sha256: 4fd557cad1a3fed49793c119952cb7865680c6b147820b4bb5c0d90d05b8868d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=169170
Date: Wed, 28 Nov 2018 16:22:38 GMT
Etag: "5bfd7cc4-1d7"
Expires: Fri, 30 Nov 2018 15:22:08 GMT
Last-Modified: Tue, 27 Nov 2018 17:20:04 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /rsrc.php/v3/yX/r/Kvo5FesWVKX.png HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yc/l/0,cross/goZOoFtquE3.css

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Tue, 26 Nov 2019 17:38:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: zLXyst1HOZzsE8I5PJ2sIg==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: M5ijLDlU3Zo+jLsV+LE11H0JJj2xADdnP2E/d7KkXDyEL0a7wIxaA1CZ5BWdu7aw+PCzntsdTyadjq84k9+XOQ==
Date: Wed, 28 Nov 2018 16:22:37 GMT
Connection: keep-alive
Content-Length: 19050


--- Additional Info ---
Magic:  PNG image, 25 x 823, 8-bit/color RGBA, non-interlaced
Size:   19050
Md5:    ccb5f2b2dd47399cec13c2393c9dac22
Sha1:   5b9e7c19c7ee5b0c8955eb8b81aa853b038f4923
Sha256: 8f557eaac9fb5f4f5954e62f23dcb962e7175a735a1ba361c4f348dee45efc64
                                        
                                            GET /v/t1.0-0/p130x130/11998904_1176994965659381_2160016717523474727_n.png?_nc_cat=104&_nc_ht=scontent.fosl1-1.fna&oh=1d36092019edadcc4cffcfc32f9b40ce&oe=5C6B4005 HTTP/1.1 
Host: scontent.fosl1-1.fna.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         213.52.81.145
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Fri, 04 Sep 2015 18:55:50 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Cache-Control: max-age=1209600, no-transform
Access-Control-Expose-Headers: X-FB-CEC-Video-Limit
Date: Wed, 28 Nov 2018 16:22:39 GMT
Connection: keep-alive
Content-Length: 24322


--- Additional Info ---
Magic:  PNG image, 366 x 130, 8-bit/color RGB, non-interlaced
Size:   24322
Md5:    c8a06b323230a068b9595371390dc7d2
Sha1:   54689a18d24581b8065c8399791d7e225753f2ff
Sha256: 49f44cdadfff51d6ec858fe383eac2863b388ce72d526cf6985b3e14453ecc36
                                        
                                            GET /rsrc.php/v3/y9/l/0,cross/2LJXMMAa33V.css HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Cache-Control: public,max-age=31536000,immutable
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Timing-Allow-Origin: *
Expires: Fri, 15 Nov 2019 12:44:53 GMT
Content-MD5: 5RGYGHvpS8vwjALMZpcGzg==
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Access-Control-Allow-Origin: *
X-FB-Debug: STDUvEviRJT7YwECPozINL3bn/EYd13wfX8UedhtjctBujechNX1KOyz3B9V9tWcpWAtfBY8pwsUDt7X7iEfvQ==
Date: Wed, 28 Nov 2018 16:22:40 GMT
Connection: keep-alive
Content-Length: 5640


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   5640
Md5:    e51198187be94bcbf08c02cc669706ce
Sha1:   1efe71be416a96129aac4434f35d12afabf472a5
Sha256: 0c0d58a1275b254603cb7302259a8a5703d103ef9865d901509ae53c3b9bdf4e
                                        
                                            GET /v/t1.0-1/c1.0.50.50/p50x50/11954673_1176994482326096_8050135631889614847_n.png?_nc_cat=105&_nc_ht=scontent.fosl1-1.fna&oh=6f74ed13ee5775810737116ef5cf9a37&oe=5CAC9DAB HTTP/1.1 
Host: scontent.fosl1-1.fna.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         213.52.81.145
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Fri, 04 Sep 2015 18:54:23 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Cache-Control: max-age=1209600, no-transform
Access-Control-Expose-Headers: X-FB-CEC-Video-Limit
Date: Wed, 28 Nov 2018 16:22:41 GMT
Connection: keep-alive
Content-Length: 3302


--- Additional Info ---
Magic:  PNG image, 50 x 50, 8-bit/color RGB, non-interlaced
Size:   3302
Md5:    57e5c0f50979f3cc49e44154dbb58168
Sha1:   ab206f534e89ed680dd4f21ff80bd027c7474d5d
Sha256: 7288f84434f2ee4409f9386e61bcfdbdd541b603c9309a10fa90479e8ac1e5a7
                                        
                                            GET /rsrc.php/v3/yh/r/3d9vQf5kQCc.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Expires: Thu, 28 Nov 2019 14:19:41 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: JwuxKnSp2zR3ahUp4R+Vuw==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: 9hza4sG13ff39wt8YtDz499jsHe6JIrEwW0egQvEl5oYVtopHzcohedHWdRMNI+6J7e0Kfdh9EGKvN1iGoDnyQ==
Date: Wed, 28 Nov 2018 16:22:41 GMT
Connection: keep-alive
Content-Length: 151924


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   151924
Md5:    270bb12a74a9db34776a1529e11f95bb
Sha1:   2bcc5d5bf0640a41fd69ba30f502a07404813e64
Sha256: 41c9ee5009b4c787af02914818537a57e0fb337cb46823973ab71bf99d6bc1c5
                                        
                                            GET /rsrc.php/v3/yN/r/nyOATf8HtYA.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Expires: Wed, 27 Nov 2019 22:06:33 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: 063z7TmFV7QxINucOT1Uxw==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: fre3S7H2cR7tcm3sgv8zxXNXaZ8qAijyJ6PiC9UvfyZiEF5xMFdx8POos06xSycI1m4wdKAv/4I5i/ZI+7d5VQ==
Date: Wed, 28 Nov 2018 16:22:41 GMT
Connection: keep-alive
Content-Length: 179154


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   179154
Md5:    d3adf3ed398557b43120db9c393d54c7
Sha1:   49ea1615881301fd890ce3c414fc6d68e3c10e29
Sha256: f437dec30eff31de46bf376027a8033fa29e7679b9131d8630fc39c3de49ab31
                                        
                                            GET /rsrc.php/v3i5D04/yt/l/en_US/yrkuiW8TSHB.js HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/page.php?app_id&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fconnect%2Fxd_arbiter%2Fr%2FafATJJjxKE6.js%3Fversion%3D43%23cb%3Df164c1084515ca6%26domain%3Dhackers-workshop.net%26origin%3Dhttp%253A%252F%252Fhackers-workshop.net%252Ff1251ec7da0639c%26relation%3Dparent.parent&container_width=310&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ftomhackersworkshop%2F&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&width=300&_rdc=1&_rdr

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 28 Nov 2019 15:31:58 GMT
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=edge,chrome=1
X-XSS-Protection: 0
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-MD5: 6nXAA2J3OnsjTna2W1jB7Q==
Cache-Control: public,max-age=31536000,immutable
X-FB-Debug: dEhg48NZ8EKje9/2D5may5DYw5gXlxDxFqV0R2YBV9wAO8Ies4BX6H8f4qWf63kGSGOnZ7wmlX4n6NhIr8bDpA==
Date: Wed, 28 Nov 2018 16:22:41 GMT
Connection: keep-alive
Content-Length: 518925


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   518925
Md5:    ea75c00362773a7b234e76b65b58c1ed
Sha1:   af1bb69821c0acdd283388fa33467aeaf6135b69
Sha256: a6e164a1e798639403c50217a9e2e249499ff4b15c206b09a32de8a27ed77ec6
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.802498019.1543422152; _gid=GA1.2.2049008391.1543422154; _gat=1

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:43 GMT
Server: Apache
X-Powered-By: PHP/5.6.38


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: hackers-workshop.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.802498019.1543422152; _gid=GA1.2.2049008391.1543422154; _gat=1

                                         
                                         212.227.247.144
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=15
Date: Wed, 28 Nov 2018 16:22:46 GMT
Server: Apache
X-Powered-By: PHP/5.6.38


--- Additional Info ---
                                        
                                            GET /affiliates HTTP/1.1 
Host: www.hidemyass.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hackers-workshop.net/tag/apt-get

                                         
                                         23.53.49.58
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Last-Modified: Tue, 27 Nov 2018 11:02:54 GMT
Etag: "5bfd245e-172a9"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 28169
Cache-Control: max-age=660
Expires: Wed, 28 Nov 2018 16:33:31 GMT
Date: Wed, 28 Nov 2018 16:22:31 GMT
Connection: keep-alive


--- Additional Info ---