Overview

URLdl.pocolegion.com/n/13475563/YouTube%20Download%20Manager%20Pro.exe
IP213.247.47.190
ASNAS27257 Webair Internet Development Company Inc.
Location United States
Report completed2017-06-19 12:37:37 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Referer
Pool
Access Levelpublic


Intrusion Detection Systems

Snort /w Sourcefire VRT No alerts detected
Suricata /w Emerging Threats Pro No alerts detected


Blacklists

Fortinet's Web Filter / fortiguard.com
Added / Verified Severity Host Comment
2017-06-192dl.pocolegion.com/n/13475563/YouTube%20Download%20Manager%20Pro.exeMalware
2017-06-192dl.pocolegion.com/Malware
2017-06-192pocolegion.com/Malware
MDL / malwaredomainlist.com No alerts detected
DNS-BH / malwaredomains.com No alerts detected
mnemonic secure DNS / mnemonic.no No alerts detected
OpenPhish / openphish.com No alerts detected
PhishTank / phishtank.com No alerts detected
Spamhaus DBL / spamhaus.org No alerts detected


Files Captured



Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 213.247.47.190

Date UQ / IDS / BL URL IP
2017-06-27 12:33:360 - 0 - 3dl.desk1992get.com/n/13745159/Excel%20Calendar%20Template.exe213.247.47.190
2017-06-27 12:33:060 - 0 - 3dl.get1993desk.com/n/3.2.96/13746258/Word%20Search.exe213.247.47.190
2017-06-27 11:49:220 - 0 - 4dl.get1993desk.com/n/13744639/Ammyy%20Admin.exe213.247.47.190
2017-06-27 11:20:070 - 0 - 11dl.get1993desk.com/n/11968108/FastStone%20Capture.exe213.247.47.190
2017-06-27 10:40:150 - 0 - 4dz6hri4qzy.downwithloadsoftquicknow.com/d/log/213.247.47.190
2017-06-27 10:31:350 - 0 - 4dl.pocolegion.com/n/3.2.46/13757289/RustClientCrack.rar.exe213.247.47.190

Last 6 reports on ASN: AS27257 Webair Internet Development Company Inc.

Date UQ / IDS / BL URL IP
2017-06-27 14:19:460 - 0 - 2download.goobzo.com/mag/ytdkietut_tutdk_inst.exe173.239.4.61
2017-06-27 13:22:480 - 0 - 1sergey25.biz/mc5566.zip67.55.74.44
2017-06-27 12:33:360 - 0 - 3dl.desk1992get.com/n/13745159/Excel%20Calendar%20Template.exe213.247.47.190
2017-06-27 12:33:060 - 0 - 3dl.get1993desk.com/n/3.2.96/13746258/Word%20Search.exe213.247.47.190
2017-06-27 11:49:220 - 0 - 4dl.get1993desk.com/n/13744639/Ammyy%20Admin.exe213.247.47.190
2017-06-27 11:20:070 - 0 - 11dl.get1993desk.com/n/11968108/FastStone%20Capture.exe213.247.47.190

Last 6 reports on domain: dl.pocolegion.com

Date UQ / IDS / BL URL IP
2017-06-27 10:31:350 - 0 - 4dl.pocolegion.com/n/3.2.46/13757289/RustClientCrack.rar.exe213.247.47.190
2017-06-27 08:03:260 - 0 - 3dl.pocolegion.com/n/14880857/Windows%20Live%20Movie%20Maker.exe213.247.47.190
2017-06-27 07:02:140 - 0 - 3dl.pocolegion.com/n/511a082a-50fc-49bb-b2ea-7d325bc06f2f/Audacity.exe213.247.47.190
2017-06-27 00:37:580 - 0 - 4dl.pocolegion.com/n/14880857/Windows%20Live%20Movie%20Maker.exe213.247.47.190
2017-06-26 15:03:420 - 0 - 3dl.pocolegion.com/n/3.2.10/11776726/Wizard101.exe213.247.47.190
2017-06-26 12:19:080 - 0 - 12dl.pocolegion.com/n/3.2.6/12846617/FreeCell%20Solitaire.exe213.247.47.190



JavaScript

Executed Scripts (13)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (49)


Request Response
GET /n/13475563/YouTube%20Download%20Manager%20Pro.exe HTTP/1.1

Host: dl.pocolegion.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 213.247.47.190
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Server: nginx/1.10.3
Date: Mon, 19 Jun 2017 10:36:04 GMT
Content-Length: 161
Connection: keep-alive
Location: http://dl.pocolegion.com/
GET / HTTP/1.1

Host: dl.pocolegion.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 213.247.47.190
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
Server: nginx/1.10.3
Date: Mon, 19 Jun 2017 10:36:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
GET /favicon.ico HTTP/1.1

Host: dl.pocolegion.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 213.247.47.190
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: nginx/1.10.3
Date: Mon, 19 Jun 2017 10:36:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
POST / HTTP/1.1

Host: pocolegion.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dl.pocolegion.com/
 213.247.47.190
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
Server: nginx/1.10.3
Date: Mon, 19 Jun 2017 10:36:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
GET /favicon.ico HTTP/1.1

Host: pocolegion.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 213.247.47.190
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: nginx/1.10.3
Date: Mon, 19 Jun 2017 10:36:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
GET /zcvisitor/18c95c3a-54db-11e7-b753-1228fe633c84?campaignid=5f99c890-5420-11e7-a3a4-0e81439a55b2 HTTP/1.1

Host: usd.quebec-bin.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pocolegion.com/
 54.86.140.0
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
Date: Mon, 19 Jun 2017 10:36:04 GMT
Server: ZeroPark-Traffic
Set-Cookie: zp.qikiqtarjuaq=152/n/1497868565445; Domain=.quebec-bin.com; Expires=Mon, 19-Jun-2017 10:36:10 GMT
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Transfer-Encoding: chunked
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: usd.quebec-bin.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 54.86.140.0
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=utf-8
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Content-Language: en
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
Date: Mon, 19 Jun 2017 10:36:04 GMT
Server: ZeroPark-Traffic
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Length: 940
Connection: keep-alive
GET /zcredirect?visitid=18c95c3a-54db-11e7-b753-1228fe633c84&type=js&browserWidth=1176&browserHeight=775&iframeDetected=false HTTP/1.1

Host: usd.zeroredirect11.com
GET /zcredirect?visitid=18c95c3a-54db-11e7-b753-1228fe633c84&type=js&browserWidth=1176&browserHeight=775&iframeDetected=false HTTP/1.1

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://usd.quebec-bin.com/zcvisitor/18c95c3a-54db-11e7-b753-1228fe633c84?campaignid=5f99c890-5420-11e7-a3a4-0e81439a55b2
 54.86.140.0
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
Date: Mon, 19 Jun 2017 10:36:05 GMT
redirected: JS
Server: ZeroPark-Traffic
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Transfer-Encoding: chunked
Connection: keep-alive
GET /cWT_UN3wZYAUylOFP?cid=zv18c95c3a54db11e7b7531228fe633c84ba239c9308f54438bf6a12eee56524ea021610c4d1efe341d5&target=golf-ose-xyutuls5&keyword=pocolegion%2Cpocolegion.com&match=&traffic_type=DOMAIN&source=russet-hornet&visitor_type=NON-ADULT&campaign_name=SolidCFD+JoyAds+-+DR+-+RON&originalos=Windows&originalbrowser=IE&tsid=TSID3-DR HTTP/1.1

Host: tracking.poypserv.info
GET /cWT_UN3wZYAUylOFP?cid=zv18c95c3a54db11e7b7531228fe633c84ba239c9308f54438bf6a12eee56524ea021610c4d1efe341d5&target=golf-ose-xyutuls5&keyword=pocolegion%2Cpocolegion.com&match=&traffic_type=DOMAIN&source=russet-hornet&visitor_type=NON-ADULT&campaign_name=SolidCFD+JoyAds+-+DR+-+RON&originalos=Windows&originalbrowser=IE&tsid=TSID3-DR HTTP/1.1

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://usd.zeroredirect11.com/zcredirect?visitid=18c95c3a-54db-11e7-b753-1228fe633c84&type=js&browserWidth=1176&browserHeight=775&iframeDetected=false
 52.50.251.167
HTTP/1.1 302 Found
HTTP/1.1 302 Found
Date: Mon, 19 Jun 2017 10:36:05 GMT
Location: http://trk.servedbytrackingdesk.com/56f8dd307b6024f835142c6f/go?t=015cbfec7dc107db01000001&u=http%3A%2F%2Fpromotions.joyads.net%2Flp3%2F%3Fbrand%3Dsol%26version%3Dv1003%26tracker%3D015cbfec7dc107db01000001
P3P: CP="NOI ADM DEV PSAi OUR OTRo STP IND COM NAV DEM"
Request-Id: 015cbfec7dc107db01000001
Content-Length: 0
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: usd.zeroredirect11.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 54.86.140.0
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=utf-8
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Content-Language: en
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: ZeroPark-Traffic
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Length: 940
Connection: keep-alive
GET /56f8dd307b6024f835142c6f/go?t=015cbfec7dc107db01000001&u=http%3A%2F%2Fpromotions.joyads.net%2Flp3%2F%3Fbrand%3Dsol%26version%3Dv1003%26tracker%3D015cbfec7dc107db01000001 HTTP/1.1

Host: trk.servedbytrackingdesk.com
GET /56f8dd307b6024f835142c6f/go?t=015cbfec7dc107db01000001&u=http%3A%2F%2Fpromotions.joyads.net%2Flp3%2F%3Fbrand%3Dsol%26version%3Dv1003%26tracker%3D015cbfec7dc107db01000001 HTTP/1.1

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://usd.zeroredirect11.com/zcredirect?visitid=18c95c3a-54db-11e7-b753-1228fe633c84&type=js&browserWidth=1176&browserHeight=775&iframeDetected=false
 52.208.179.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
content-security-policy: referrer no-referrer
Date: Mon, 19 Jun 2017 10:36:06 GMT
Etag: W/"3df-4piP6a8qwhg/+dqIfDGMTg"
P3P: CP="NOI ADM DEV PSAi OUR OTRo STP IND COM NAV DEM"
Request-Id: 015cbfec7e2b07db01000001
Set-Cookie: t=015cbfec7dc107db01000001; Domain=.trk.servedbytrackingdesk.com; Path=/56f8dd307b6024f835142c6f; Expires=Wed, 19 Jul 2017 10:36:06 GMT
Content-Length: 991
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: trk.servedbytrackingdesk.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 52.208.179.1
HTTP/1.1 200 OK
Content-Type: image/x-icon
Cache-Control: public, max-age=31536000
Date: Mon, 19 Jun 2017 10:36:06 GMT
Etag: "0-1B2M2Y8AsgTpgAmY7PhCfg"
Content-Length: 0
Connection: keep-alive
GET /lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001 HTTP/1.1

Host: promotions.joyads.net
GET /lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001 HTTP/1.1

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://trk.servedbytrackingdesk.com/56f8dd307b6024f835142c6f/go?t=015cbfec7dc107db01000001&u=http%3A%2F%2Fpromotions.joyads.net%2Flp3%2F%3Fbrand%3Dsol%26version%3Dv1003%26tracker%3D015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
X-Powered-By: PHP/5.5.9-1ubuntu4.20
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5376
Connection: close
GET /lp3/versions/v1003/css/main.min.css HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: text/css
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Thu, 10 Nov 2016 17:25:36 GMT
Etag: "3745-540f5a95a8400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3738
Connection: close
GET /css?family=Roboto:400,700 HTTP/1.1

Host: fonts.googleapis.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 19 Jun 2017 10:36:06 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
GET /lp3/plugins/ng-device-detector-master/ng-device-detector.min.js HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Sun, 10 Apr 2016 19:22:51 GMT
Etag: "c57-530265aa6d7c6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1031
Connection: close
GET /ajax/libs/angularjs/1.3.5/angular.min.js HTTP/1.1

Host: ajax.googleapis.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 46024
Date: Tue, 09 May 2017 09:51:18 GMT
Expires: Wed, 09 May 2018 09:51:18 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 3545088
GET /lp3/plugins/sanitize/angular-sanitize.min.js HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Sun, 10 Apr 2016 19:22:51 GMT
Etag: "17b0-530265aa5fd06-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3149
Connection: close
GET /lp3/plugins/ngDialog/css/ngDialog.min.css HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: text/css
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Sun, 10 Apr 2016 19:22:50 GMT
Etag: "56d-530265a993b66-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 453
Connection: close
GET /lp3/plugins/ng-fit/ng-FitText.js HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Sun, 10 Apr 2016 19:22:51 GMT
Etag: "915-530265aa5ed66-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 918
Connection: close
GET /lp3/plugins/ngDialog/js/ngDialog.min.js HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Sun, 10 Apr 2016 19:22:50 GMT
Etag: "2854-530265a990c86-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3625
Connection: close
GET /lp3/plugins/ngDialog/css/ngDialog-theme-default.min.css HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: text/css
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Sun, 10 Apr 2016 19:22:50 GMT
Etag: "f0b-530265a993b66-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 906
Connection: close
GET /lp3/plugins/angucomplete-alt/angucomplete-alt.css HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: text/css
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Sun, 10 Apr 2016 19:22:51 GMT
Etag: "313-530265aa61c46-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 353
Connection: close
GET /lp3/versions/v1003/js/main.js HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Sun, 10 Apr 2016 19:22:49 GMT
Etag: "250-530265a910da6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 339
Connection: close
GET /lp3/plugins/angucomplete-alt/angucomplete-alt.js HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 146.185.138.66
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Mon, 19 Jun 2017 10:36:05 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Last-Modified: Sun, 10 Apr 2016 19:22:51 GMT
Etag: "6269-530265aa65ac6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5762
Connection: close
GET /v1003/date.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: 7d5e8bf4e80865276acef5ecb86fc799
Origin: https://mycloud.rackspace.co.uk
Content-Length: 203
Accept-Ranges: bytes
X-Timestamp: 1437313002.18958
X-Trans-Id: tx834b590982db439e96db7-00591a81f8lon3
Cache-Control: public, max-age=210443
Expires: Wed, 21 Jun 2017 21:03:29 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/time.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: 2bdbc85c89bbd039f73e007c14f8b5e6
Origin: https://mycloud.rackspace.co.uk
Content-Length: 235
Accept-Ranges: bytes
X-Timestamp: 1437313002.48630
X-Trans-Id: tx75dcd990182a436ca5952-005919bfb6lon3
Cache-Control: public, max-age=210627
Expires: Wed, 21 Jun 2017 21:06:33 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/apple.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: e76678d312bec127e61a63e0c73b40b9
Origin: https://mycloud.rackspace.co.uk
Content-Length: 1255
Accept-Ranges: bytes
X-Timestamp: 1437313002.78434
X-Trans-Id: tx73038cb7d75749dbb980e-0059199089lon3
Cache-Control: public, max-age=210269
Expires: Wed, 21 Jun 2017 21:00:35 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/analysis.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: 2bfcc5a5f1401c814145deb07f287948
Origin: https://mycloud.rackspace.co.uk
Content-Length: 198
Accept-Ranges: bytes
X-Timestamp: 1437313002.70427
X-Trans-Id: txbb30f2b5604d43d792133-005915b448lon3
Cache-Control: public, max-age=210479
Expires: Wed, 21 Jun 2017 21:04:05 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/facebook.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: 2c16272c8e957f5a710b6b6e84a51418
Origin: https://mycloud.rackspace.co.uk
Content-Length: 558
Accept-Ranges: bytes
X-Timestamp: 1437313002.16947
X-Trans-Id: txe142e6b21cf04a5a8cffe-005915a88dlon3
Cache-Control: public, max-age=210367
Expires: Wed, 21 Jun 2017 21:02:13 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/profit.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: 4f07d978bccefd703ad8117a4e9eddbe
Origin: https://mycloud.rackspace.co.uk
Content-Length: 1232
Accept-Ranges: bytes
X-Timestamp: 1437313002.48343
X-Trans-Id: tx747657c9ccaf48378bd60-00591a22edlon3
Cache-Control: public, max-age=210519
Expires: Wed, 21 Jun 2017 21:04:45 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/amazon.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: bbc7e7d22f71381b86b1e88da8b98272
Origin: https://mycloud.rackspace.co.uk
Content-Length: 1105
Accept-Ranges: bytes
X-Timestamp: 1437313002.56757
X-Trans-Id: tx9c16dc1c47ba478bad55a-00591577a8lon3
Cache-Control: public, max-age=26988
Expires: Mon, 19 Jun 2017 18:05:54 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/google.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: d1fbcfaba0eaea06f5aa05196f15b5c1
Origin: https://mycloud.rackspace.co.uk
Content-Length: 896
Accept-Ranges: bytes
X-Timestamp: 1437313002.19949
X-Trans-Id: txb64765857fc94e628a7c8-005914ed1dlon3
Cache-Control: public, max-age=210296
Expires: Wed, 21 Jun 2017 21:01:02 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/form-arrow.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/versions/v1003/css/main.min.css
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: 1fb47af1040322a7bf40cbbb0ea4ef18
Origin: https://mycloud.rackspace.co.uk
Content-Length: 268
Accept-Ranges: bytes
X-Timestamp: 1437313002.21149
X-Trans-Id: tx0670867a8a064c00ae7ea-005914ed1dlon3
Cache-Control: public, max-age=179108
Expires: Wed, 21 Jun 2017 12:21:14 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/payment-desktop.png HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/versions/v1003/css/main.min.css
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: dee38c6cd6b1f92b5f119a320e318422
Origin: https://mycloud.rackspace.co.uk
Content-Length: 8264
Accept-Ranges: bytes
X-Timestamp: 1437313002.20150
X-Trans-Id: tx182d65609c6f48b98fbf0-00591577a9lon3
Cache-Control: public, max-age=210376
Expires: Wed, 21 Jun 2017 21:02:22 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/loading3.GIF HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/versions/v1003/css/main.min.css
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sun, 19 Jul 2015 14:57:57 GMT
Etag: 46c6b4e61caa55c1b66467be78fd8695
Origin: https://mycloud.rackspace.co.uk
Content-Length: 10722
Accept-Ranges: bytes
X-Timestamp: 1437317876.70275
X-Trans-Id: txe76eef892f6a4f3885d8e-0059159ac0lon3
Cache-Control: public, max-age=210358
Expires: Wed, 21 Jun 2017 21:02:04 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /s/roboto/v16/5YB-ifwqHP20Yn46l_BDhA.eot HTTP/1.1

Host: fonts.gstatic.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Roboto:400,700
Origin: http://promotions.joyads.net
 216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/eot
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Date: Tue, 09 May 2017 09:38:42 GMT
Expires: Wed, 09 May 2018 09:38:42 GMT
Last-Modified: Mon, 17 Apr 2017 21:22:19 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Content-Length: 16588
Age: 3545844
POST /cloudsslsha2g3 HTTP/1.1

Host: ocsp2.globalsign.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
 104.16.27.216
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Jun 2017 10:36:06 GMT
Content-Length: 1539
Connection: keep-alive
Set-Cookie: __cfduid=d52ed02e6c045a80fd7e695f53d0766f61497868566; expires=Tue, 19-Jun-18 10:36:06 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Mon, 19 Jun 2017 10:36:06 GMT
Expires: Fri, 23 Jun 2017 10:36:06 GMT
Etag: "119ec45cbe2fc156f1a0cb4e616b6c5f1ac85042"
Cache-Control: public, no-transform, must-revalidate
CF-Cache-Status: MISS
Server: cloudflare-nginx
CF-RAY: 3715d86db1f742bb-OSL
GET /v1003/bg-desktop.jpg HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/versions/v1003/css/main.min.css
 80.239.137.50
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sun, 19 Jul 2015 13:36:43 GMT
Etag: 7ef282b95c0944366aa38704bc3b06ba
Origin: https://mycloud.rackspace.co.uk
Content-Length: 165890
Accept-Ranges: bytes
X-Timestamp: 1437313002.16011
X-Trans-Id: tx6be6815d9efd45af955f6-00591c01c3lon3
Cache-Control: public, max-age=179069
Expires: Wed, 21 Jun 2017 12:20:35 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Connection: keep-alive
GET /v1003/footage.ogv HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Range: bytes=344064-
 80.239.137.50
HTTP/1.1 206 Partial Content
Content-Type: video/ogg
Last-Modified: Sun, 19 Jul 2015 13:38:00 GMT
Etag: e2814a7b7c5e824ba9e2c3c0dcba426e
X-Trans-Id: tx6fa6080921244d1ba3223-0059387845lon3
Origin: https://mycloud.rackspace.co.uk
Accept-Ranges: bytes
X-Timestamp: 1437313079.74779
Cache-Control: public, max-age=221025
Expires: Wed, 21 Jun 2017 23:59:52 GMT
Date: Mon, 19 Jun 2017 10:36:07 GMT
Content-Range: bytes 344064-352131/352132
Content-Length: 8068
Connection: keep-alive
GET /wp-content/uploads/2017/02/solidecfd-logo-for-site.png HTTP/1.1

Host: www.solidcfd.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://promotions.joyads.net/lp3/?brand=sol&version=v1003&tracker=015cbfec7dc107db01000001
 107.154.199.118
HTTP/1.1 200 OK
Content-Type: image/png
Etag: "d32-54802185bd7c7"
Last-Modified: Wed, 08 Feb 2017 10:11:59 GMT
Content-Length: 2119
Cache-Control: max-age=166385, public
Expires: Wed, 21 Jun 2017 08:49:11 GMT
Date: Mon, 19 Jun 2017 10:36:06 GMT
Set-Cookie: visid_incap_1066392=rNpMRubxT46uZXCEkktjGxapR1kAAAAAQUIPAAAAAACbGLHYL1dRi7qLC/SMtrzC; expires=Tue, 19 Jun 2018 08:23:19 GMT; path=/; Domain=.solidcfd.com incap_ses_277_1066392=nVleczB4+Fs7knWVuxrYAxapR1kAAAAAzpxLK+WD6V/ODDML6l5I+w==; path=/; Domain=.solidcfd.com ___utmvmyYuXvoLB=lunNbwokBGa; path=/; Max-Age=900 ___utmvayYuXvoLB=UTvtCjJ; path=/; Max-Age=900 ___utmvbyYuXvoLB=OZy XDUOvalH: otY; path=/; Max-Age=900
X-Iinfo: 0-4660121-0 0CNN RT(1497868565614 1352) q(0 -1 -1 0) r(0 -1)
X-CDN: Incapsula
GET /favicon.ico HTTP/1.1

Host: usd.quebec-bin.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 54.86.140.0
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=utf-8
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Content-Language: en
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
Date: Mon, 19 Jun 2017 10:36:07 GMT
Server: ZeroPark-Traffic
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Length: 940
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: usd.zeroredirect11.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 54.86.140.0
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=utf-8
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Content-Language: en
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
Date: Mon, 19 Jun 2017 10:36:06 GMT
Server: ZeroPark-Traffic
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Length: 940
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: pocolegion.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 213.247.47.190
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: nginx/1.10.3
Date: Mon, 19 Jun 2017 10:36:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
GET /favicon.ico HTTP/1.1

Host: dl.pocolegion.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 213.247.47.190
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: nginx/1.10.3
Date: Mon, 19 Jun 2017 10:36:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
GET /favicon.ico HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 146.185.138.66
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
Date: Mon, 19 Jun 2017 10:36:08 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Content-Length: 295
Connection: close
GET /v1003/footage.ogv HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Range: bytes=98304-
 80.239.137.50
HTTP/1.1 206 Partial Content
Content-Type: video/ogg
Last-Modified: Sun, 19 Jul 2015 13:38:00 GMT
Etag: e2814a7b7c5e824ba9e2c3c0dcba426e
X-Trans-Id: tx6fa6080921244d1ba3223-0059387845lon3
Origin: https://mycloud.rackspace.co.uk
Accept-Ranges: bytes
X-Timestamp: 1437313079.74779
Cache-Control: public, max-age=221023
Expires: Wed, 21 Jun 2017 23:59:52 GMT
Date: Mon, 19 Jun 2017 10:36:09 GMT
Content-Range: bytes 98304-352131/352132
Content-Length: 253828
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: promotions.joyads.net

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 146.185.138.66
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
Date: Mon, 19 Jun 2017 10:36:12 GMT
Server: Apache/2.4.7 (Ubuntu)
Access-Control-Allow-Origin: http://tools.poypserv.info
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Content-Length: 295
Connection: close
GET /v1003/footage.ogv HTTP/1.1

Host: 8636e0e423c65a5b4ffd-a1f8e46d53c01bddf87e551549494498.r0.cf3.rackcdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; SV1; .NET CLR 3.0.04506; .NET CLR 3.5.21022)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Range: bytes=0-
 80.239.137.50
HTTP/1.1 206 Partial Content
Content-Type: video/ogg
Last-Modified: Sun, 19 Jul 2015 13:38:00 GMT
Etag: e2814a7b7c5e824ba9e2c3c0dcba426e
X-Trans-Id: tx6fa6080921244d1ba3223-0059387845lon3
Origin: https://mycloud.rackspace.co.uk
Accept-Ranges: bytes
X-Timestamp: 1437313079.74779
Cache-Control: public, max-age=221025
Expires: Wed, 21 Jun 2017 23:59:52 GMT
Date: Mon, 19 Jun 2017 10:36:07 GMT
Content-Range: bytes 0-352131/352132
Content-Length: 352132
Connection: keep-alive