CapTipper

Analysis Info

PCAP File Analysis Time CapTipper Version Traffic Time
/opt/Malware-Project/BigDataset/Scenarios/CTU-Mixed-Capture-6//2018-04-04_mixed.pcap 05/21/18 10:28:51 0.3 b13 08/13/04 00:51:20

Flow View


Client Details

IP10.0.2.15
MAC08:00:27:40:76:00
USER-AGENTMicrosoft-CryptoAPI/6.1

Conversations

wpad    (147.32.80.7:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
0/wpad.dattext/plainwpad.dat200 OKTEXT593.0 B08/13/04 00:51:20

redirector.gvt1.com    (216.58.204.78:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
1/edgedl/release2/chrome_component/NJjSl8_XgD4_4432/4432_all_crl-set-16659869866533088385.data.crx3text/html4432_all_crl-set-16659869866533088385.data.crx3302 Found0.0 B09/12/06 16:06:45

r3---sn-jxnoxu-2gbe.gvt1.com    (195.113.214.206:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
2/edgedl/release2/chrome_component/NJjSl8_XgD4_4432/4432_all_crl-set-16659869866533088385.data.crx3?cms_redirect=yes&ip=147.32.83.56&ipbits=0&mm=28&mn=sn-jxnoxu-2gbe&ms=nvh&mt=1525359629&mv=m&pl=15&shardbypass=yesapplication/octet-stream4432_all_crl-set-16659869866533088385.data.crx3200 OK0.0 B09/12/06 16:16:49

storage.googleapis.com    (66.102.1.128:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
3/update-delta/ojjgnpkioondelmggbekfhllhdaimnho/740/739/8be7c8b9ce482354016e507cffefd0b6a73c92fc511d5491c72d3514a4b69c2f.crxdapplication/octet-stream8be7c8b9ce482354016e507cffefd0b6a73c92fc511d5491c72d3514a4b69c2f.crxd200 OK0.0 B09/15/06 11:25:15

ocsp.pki.goog    (172.217.23.238:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
4/GTSGIAG3/MEkwRzBFMEMwQTAJBgUrDgMCGgUABBT27bBjYjKBmjX2jXWgnQJKEapsrQQUd8K4UJpndnaxLcKG0IOgfqZ%2BuksCCEPsJDYDBgSGapplication/ocsp-responseMEkwRzBFMEMwQTAJBgUrDgMCGgUABBT27bBjYjKBmjX2jXWgnQJKEapsrQQUd8K4UJpndnaxLcKG0IOgfqZ%2BuksCCEPsJDYDBgSG200 OKBINARY463.0 B05/31/15 21:34:45
5/GTSGIAG3/MEkwRzBFMEMwQTAJBgUrDgMCGgUABBT27bBjYjKBmjX2jXWgnQJKEapsrQQUd8K4UJpndnaxLcKG0IOgfqZ%2BuksCCCYCqiF3SVTNapplication/ocsp-responseMEkwRzBFMEMwQTAJBgUrDgMCGgUABBT27bBjYjKBmjX2jXWgnQJKEapsrQQUd8K4UJpndnaxLcKG0IOgfqZ%2BuksCCCYCqiF3SVTN200 OKBINARY463.0 B05/31/15 21:39:54
6/GTSGIAG3/MEkwRzBFMEMwQTAJBgUrDgMCGgUABBT27bBjYjKBmjX2jXWgnQJKEapsrQQUd8K4UJpndnaxLcKG0IOgfqZ%2BuksCCA6QPEXmo7Lzapplication/ocsp-responseMEkwRzBFMEMwQTAJBgUrDgMCGgUABBT27bBjYjKBmjX2jXWgnQJKEapsrQQUd8K4UJpndnaxLcKG0IOgfqZ%2BuksCCA6QPEXmo7Lz200 OKBINARY463.0 B05/31/15 21:42:57

x.ss2.us    (13.32.118.233:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
7/x.cerapplication/pkix-certx.cer200 OKBINARY1.3 KB06/07/15 02:57:11

nc54west.com    (23.101.133.34:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
8/text/html572.html200 OKHTML7.0 KB06/07/15 12:13:05
10/css/bootstrap.min.csstext/cssbootstrap.min.css200 OKGZ5.4 KB06/07/15 12:37:46
11/css/flexslider.csstext/cssflexslider.css200 OKTEXT1.9 KB06/07/15 12:45:35
12/css/venobox.csstext/cssvenobox.css200 OKTEXT1.7 KB06/07/15 12:54:37
13/css/ionicons.min.csstext/cssionicons.min.css200 OKGZ5.4 KB06/07/15 12:55:33
14/css/style.cssstyle.css0.0 B06/07/15 12:58:13
15/css/color/green.csstext/cssgreen.css200 OKTEXT1.4 KB06/07/15 13:00:16

fonts.googleapis.com    (172.217.23.234:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
9/css?family=Lato:100,300,400,700|Cabin:400,700text/csscss200 OKTEXT5.0 KB06/07/15 12:37:00

crt.comodoca.com    (104.16.92.188:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
16/COMODORSAAddTrustCA.crtapplication/x-x509-ca-certCOMODORSAAddTrustCA.crt200 OKBINARY1.4 KB06/08/15 07:20:13

ssl.trustwave.com    (104.127.49.228:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
17/issuers/STCA.crtapplication/pkix-certSTCA.crt200 OKBINARY956.0 B06/08/15 11:05:37

www.download.windowsupdate.com    (13.107.4.50:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
18/msdownload/update/v3/static/trustedr/en/3679CA35668772304D30A5FB873B0FA77BB70D54.crtapplication/x-x509-ca-cert3679CA35668772304D30A5FB873B0FA77BB70D54.crt200 OKBINARY1.2 KB05/23/17 00:33:59
35/msdownload/update/v3/static/trustedr/en/093C61F38B8BDC7D55DF7538020500E125F5C836.crtapplication/x-x509-ca-cert093C61F38B8BDC7D55DF7538020500E125F5C836.crt200 OKBINARY1.3 KB10/15/27 16:02:37

g.symcd.com    (23.51.123.27:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
19/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSxtDkXkBa3l3lQEfFgudSiPNvt7gQUAPkqw0GRtsnCuD5V8sCXEROgByACEAEAISWIsPpZp3fvBXtmJ98%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBSxtDkXkBa3l3lQEfFgudSiPNvt7gQUAPkqw0GRtsnCuD5V8sCXEROgByACEAEAISWIsPpZp3fvBXtmJ98%3D200 OKBINARY1.4 KB05/25/17 20:15:21

s2.symcb.com    (23.51.123.27:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
20/MFEwTzBNMEswSTAJBgUrDgMCGgUABBS56bKHAoUD%2BOyl%2B0LhPg9JxyQm4gQUf9Nlp8Ld7LvwMAnzQzn6Aq8zMTMCEFE%2FuXQ4cLc0QEGNMJMGmf8%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBS56bKHAoUD%2BOyl%2B0LhPg9JxyQm4gQUf9Nlp8Ld7LvwMAnzQzn6Aq8zMTMCEFE%2FuXQ4cLc0QEGNMJMGmf8%3D200 OKBINARY1.7 KB05/25/17 20:55:05

ocsp.pki.goog    (64.233.166.100:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
21/GTSGIAG3/MEkwRzBFMEMwQTAJBgUrDgMCGgUABBT27bBjYjKBmjX2jXWgnQJKEapsrQQUd8K4UJpndnaxLcKG0IOgfqZ%2BuksCCDXE4kJwOE%2BHapplication/ocsp-responseMEkwRzBFMEMwQTAJBgUrDgMCGgUABBT27bBjYjKBmjX2jXWgnQJKEapsrQQUd8K4UJpndnaxLcKG0IOgfqZ%2BuksCCDXE4kJwOE%2BH200 OKBINARY463.0 B05/25/17 21:46:16

redirector.gvt1.com    (172.217.23.238:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
22/edgedl/release2/chrome_component/AL0lR9E0tsy6_4430/4430_all_crl-set-1327792927351529665.data.crx3text/html4430_all_crl-set-1327792927351529665.data.crx3302 Found0.0 B04/23/51 10:36:01

r1---sn-jxnoxu-2gbe.gvt1.com    (195.113.214.204:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
23/edgedl/release2/chrome_component/AL0lR9E0tsy6_4430/4430_all_crl-set-1327792927351529665.data.crx3?cms_redirect=yes&ip=147.32.83.180&ipbits=0&mm=28&mn=sn-jxnoxu-2gbe&ms=nvh&mt=1525261588&mv=m&pl=15&shardbypass=yesapplication/octet-stream4430_all_crl-set-1327792927351529665.data.crx3200 OK0.0 B04/23/51 11:47:50
24/edgedl/release2/chrome_component/AL0lR9E0tsy6_4430/4430_all_crl-set-1327792927351529665.data.crx3?cms_redirect=yes&ip=147.32.83.180&ipbits=0&mm=28&mn=sn-jxnoxu-2gbe&ms=nvh&mt=1525261588&mv=m&pcm2cms=yes&pl=15&shardbypass=yesapplication/octet-stream4430_all_crl-set-1327792927351529665.data.crx3206 Partial ContentBINARY5.4 KB04/28/51 04:20:01

storage.googleapis.com    (172.217.23.240:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
25/update-delta/ojjgnpkioondelmggbekfhllhdaimnho/739/738/b279bc3abf2fe81185dc12f118a8dd5f85b1f20ad4b4b5429f4fc3bf5484146f.crxdapplication/octet-streamb279bc3abf2fe81185dc12f118a8dd5f85b1f20ad4b4b5429f4fc3bf5484146f.crxd200 OK0.0 B05/21/51 11:36:46

147.32.80.7    (147.32.80.7:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
26/wpad.dattext/plainwpad.dat200 OKTEXT593.0 B12/13/51 21:44:57

ocsp.digicert.com    (93.184.220.29:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
27/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRJ9L2KGL92BpjF3kAtaDtxauTmhgQUPdNQpdagre7zSmAKZdMh1Pj41g8CEAv9tAkK17XmQMMLFslSmic%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBRJ9L2KGL92BpjF3kAtaDtxauTmhgQUPdNQpdagre7zSmAKZdMh1Pj41g8CEAv9tAkK17XmQMMLFslSmic%3D200 OKBINARY471.0 B12/21/03 08:06:46
31/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQQX6Z6gAidtSefNc6DC0OInqPHDQQUD4BhHIIxYdUvKOeNRji0LOHG2eICEAjzlD0lXsOatxWjEqM4bVI%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBQQX6Z6gAidtSefNc6DC0OInqPHDQQUD4BhHIIxYdUvKOeNRji0LOHG2eICEAjzlD0lXsOatxWjEqM4bVI%3D200 OKBINARY471.0 B09/08/09 06:52:21
32/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEA8sEMlbBsCTf7jUSfg%2BhWk%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEA8sEMlbBsCTf7jUSfg%2BhWk%3D200 OKBINARY471.0 B09/08/09 07:59:58
33/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEAi4elAbvpzaLRZNPjlRv1U%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEAi4elAbvpzaLRZNPjlRv1U%3D200 OKBINARY471.0 B05/25/15 20:29:29
34/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEAiIzVJfGSRETRSlgpHeuVI%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEAiIzVJfGSRETRSlgpHeuVI%3D200 OKBINARY471.0 B02/07/21 08:34:48
552/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRJ9L2KGL92BpjF3kAtaDtxauTmhgQUPdNQpdagre7zSmAKZdMh1Pj41g8CEAwuHNIxGNn9COVahiskuts%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBRJ9L2KGL92BpjF3kAtaDtxauTmhgQUPdNQpdagre7zSmAKZdMh1Pj41g8CEAwuHNIxGNn9COVahiskuts%3D200 OKBINARY471.0 B03/10/13 01:30:24
579/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEArLKLpGXuU5CHZ0cPPNxhI%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEArLKLpGXuU5CHZ0cPPNxhI%3D200 OKBINARY471.0 B08/04/69 01:54:56
580/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRJ9L2KGL92BpjF3kAtaDtxauTmhgQUPdNQpdagre7zSmAKZdMh1Pj41g8CEAxZqYy%2B4LY6VknLzEtXLRg%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBRJ9L2KGL92BpjF3kAtaDtxauTmhgQUPdNQpdagre7zSmAKZdMh1Pj41g8CEAxZqYy%2B4LY6VknLzEtXLRg%3D200 OKBINARY471.0 B08/04/69 02:31:01
581/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEAH9o%2BtuynXIiEOLckvPvJE%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEAH9o%2BtuynXIiEOLckvPvJE%3D200 OKBINARY471.0 B08/04/69 03:43:46
582/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1JgmGggC72NkK8MCEAx5qUSwjBGVIJJhX%2BJrHYM%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1JgmGggC72NkK8MCEAx5qUSwjBGVIJJhX%2BJrHYM%3D200 OKBINARY471.0 B08/04/69 05:02:45
583/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRJ9L2KGL92BpjF3kAtaDtxauTmhgQUPdNQpdagre7zSmAKZdMh1Pj41g8CEAU5fm3dSuY9dJCdoTinHgw%3Dapplication/ocsp-responseMFEwTzBNMEswSTAJBgUrDgMCGgUABBRJ9L2KGL92BpjF3kAtaDtxauTmhgQUPdNQpdagre7zSmAKZdMh1Pj41g8CEAU5fm3dSuY9dJCdoTinHgw%3D200 OKBINARY471.0 B08/04/69 07:05:32

cashboardapp.com    (74.50.53.230:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
28/downloads/InvoiceTemplate.docxapplication/octet-streamInvoiceTemplate.docx200 OKDOCX20.9 KB10/15/04 07:27:06

www.ohchr.org    (146.247.14.129:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
29/Documents/HRBodies/SP/CallApplications/HRC27/SRDisabilities/INNESGraeme.docapplication/mswordINNESGraeme.doc200 OKDOCX480.2 KB10/29/04 21:16:29

pubs.acs.org    (198.29.7.70:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
30/paragonplus/submission/templates/acsPageWide-MSW2010.dotxapplication/vnd.openxmlformats-officedocument.wordprocessingml.templateacsPageWide-MSW2010.dotx200 OKDOCX501.4 KB11/01/04 04:06:22

readysetgo.state.mn.us    (156.98.128.77:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
36/rsgprod/idcplg?IdcService=GET_FILE&dID=173&dDocName=000223&allowInterrupt=1application/docx.mswordUTF-8''HelpFile%5b1%5d.docx; filename200 OKDOCX41.7 KB10/22/27 01:23:28

notother.com    (198.49.23.144:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
37/33.html301 Moved Permanently0.0 B02/08/28 05:28:19

www.squarespace.com    (198.49.23.176:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
38/34.html301 Moved Permanently0.0 B02/18/28 10:36:12

isforyou.com    (72.52.4.121:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
39/text/html35.html200 OKHTML8.1 KB03/04/28 11:35:58
42/search/tsc.php?200=MjQ3NDkzMDY5&21=MTA5LjgxLjIwOC4xOTg=&681=MTUyNTI5MDUxMmIxZDY4N2IyZDBmODFjMDJmYzcwZjM3ZTlhOTg0MjZl&crc=2b2278aa19ab1b16c0a2e8dc3fbc03965502a5ee&cv=1text/htmltsc.php200 OKGZ20.0 B03/05/28 09:13:08

img.sedoparking.com    (205.234.175.175:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
40/js/jquery-1.4.2.min.jsapplication/x-javascriptjquery-1.4.2.min.js200 OKTEXT51.5 KB03/04/28 20:43:07
41/templates/brick_gfx/common/logo_white.pngimage/pnglogo_white.png200 OKPNG2.2 KB03/04/28 22:28:21
53/js/jquery-1.11.3.custom.min.jsapplication/x-javascriptjquery-1.11.3.custom.min.js200 OKTEXT62.2 KB03/26/28 20:18:35

www.gstatic.com    (64.233.184.94:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
43/domainads/tracking/caf.gif?ts=1525290513164&rid=2740793image/gifcaf.gif200 OKGIF43.0 B03/05/28 09:58:35
56/domainads/tracking/caf.gif?ts=1525290533180&rid=5554691image/gifcaf.gif200 OKGIF43.0 B03/27/28 08:20:57

survey.g.doubleclick.net    (64.233.184.141:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
44/async_survey?site=kv4ic6olrzkr6text/javascript"f.txt"200 OKTEXT48.3 KB03/05/28 13:11:17
45/insights/consumersurveys/static/409439112723072892/prompt_embed_static.jsapplication/javascriptprompt_embed_static.js200 OKTEXT111.4 KB03/05/28 16:03:58
46/gk/prompt?t=a&site=kv4ic6olrzkr6&random=1525290513938&ref&token=NTtext/javascript"f.txt"200 OKGZ23.0 B03/05/28 22:52:44
58/gk/prompt?t=a&site=kv4ic6olrzkr6&random=1525290533648&ref=http%3A%2F%2Fcanyougo.com%2Fdefaultsite&token=NTtext/javascript"f.txt"200 OKGZ23.0 B03/27/28 19:05:13

canyougo.com    (74.208.236.201:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
47/text/html43.html200 OKHTML229.0 B03/25/28 14:23:19
48/defaultsitetext/htmldefaultsite200 OKHTML1.3 KB03/25/28 20:46:56
49/favicon.icofavicon.ico0.0 B03/25/28 20:53:35

sedoparking.com    (72.52.4.90:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
50/frmpark/canyougo.com/1und1parking2/park.jsapplication/javascriptpark.js200 OKTEXT626.0 B03/26/28 03:33:07
52/search/registrar.php?domain=canyougo.com&rpv=2®istrar=1und1parking2&gst=3B1gqQvAF7j2k0q5wvTMPlaElpdD7mkUFvBSrX9LozhL-_jszMlEC7SmnsFslcF8Y3LrSl17Xnb0oecuvp9O7jux_kqRxGlC&ref=http://canyougo.com/text/htmlregistrar.php200 OKHTML19.6 KB03/26/28 16:33:47
55/search/tsc.php?200=MjgyOTY1ODQ4&21=MTA5LjgxLjIwOC4xOTg=&681=MTUyNTI5MDUzMTM1ZDhjNzk2NmY1MzBhMTE5MzE5OWQ4MzZkNWU3MWEw&crc=a5007b9e34b02b472e8d71823ab507bc5a5a863f&cv=1text/htmltsc.php200 OKGZ20.0 B03/27/28 05:49:37

pagead2.googlesyndication.com    (74.125.133.154:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
51/apps/domainpark/show_afd_ads.jstext/javascriptshow_afd_ads.js200 OKTEXT2.7 KB03/26/28 06:54:43
73/pagead/gen_204?request_type=xfp&admob=f&lid=6&sdkv=h.3.206.0&id=ima_html5&c=4125746910258069&domain=go.comtext/htmlgen_204204 No Content0.0 B04/13/28 03:53:29
74/pagead/gen_204?rt=xfp&lid=17&sdkv=h.3.206.0&id=ima_html5&c=4125746910258069&domain=go.comtext/htmlgen_204204 No Content0.0 B04/13/28 05:14:47

uim.tifbs.net    (195.20.250.111:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
54/js/53335.jsapplication/javascript53335.js200 OKTEXT1.2 KB03/27/28 00:21:50

t.uimserv.net    (195.20.250.239:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
57/sedo_p/?et=CP&agof=1&sc=sedo&brand=sedo®ion=de&dclass=desktop&tif=53335&d=33528&r=http%3A//canyougo.com/defaultsiteimage/gif53.html200 OKGIF42.0 B03/27/28 09:43:21

go.com    (23.236.60.174:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
59/text/html57.html200 OKHTML668.8 KB04/04/28 23:24:28
198/_grill/ads/video.disney.com/watch/the-cast-of-avengers-infinity-war-play-would-you-rather-oh-my-disney-show-by-oh-my-disney-56b16df00ede2e5e698e03fdapplication/jsonthe-cast-of-avengers-infinity-war-play-would-you-rather-oh-my-disney-show-by-oh-my-disney-56b16df00ede2e5e698e03fd200 OKTEXT1.7 KB12/04/28 07:36:35
446/_grill/ads/video.disney.com/watch/the-cast-of-avengers-infinity-war-favorite-on-set-moments-oh-my-disney-show-by-oh-my-disney-56adf3d630e2ae5e698e03fdapplication/jsonthe-cast-of-avengers-infinity-war-favorite-on-set-moments-oh-my-disney-show-by-oh-my-disney-56adf3d630e2ae5e698e03fd200 OKTEXT1.7 KB08/19/30 08:10:33

ajax.googleapis.com    (64.233.167.95:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
60/ajax/libs/jquery/1.10.2/jquery.min.jstext/javascriptjquery.min.js200 OKTEXT32.2 KB04/05/28 14:54:27

tredir.go.com    (139.104.188.6:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
61/capmon/GetDE/?set=j¶m=geo&raw=trueapplication/x-javascript56.html200 OKTEXT82.0 B04/06/28 04:51:22
71/capmon/GetDE/?set=j¶m=countryapplication/x-javascript70.html200 OKTEXT32.0 B04/11/28 12:57:56

a.dilcdn.com    (8.27.13.107:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
62/g/domains/go.com.jstext/javascriptgo.com.js200 OKTEXT8.0 B04/06/28 17:48:58

www.googletagservices.com    (74.125.133.154:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
63/tag/js/gpt.jstext/javascriptgpt.js200 OKTEXT5.6 KB04/07/28 10:56:11

aglobal.go.com    (2.16.60.18:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
64/stat/dolWebAnalytics.jsapplication/javascriptdolWebAnalytics.js200 OKTEXT100.6 KB04/08/28 07:24:30

imasdk.googleapis.com    (172.217.22.74:80)
IDURIRESPONSE TYPEFILENAMERESPONSE CODEMAGICSIZETIME
65/js/sdkloader/ima3.jstext/javascriptima3.js200 OKTEXT78.1 KB04/09/28 14:19:34
66/js/core/bridge3.206.0_en.htmltext/htmlbridge3.206.0_en.html200 OKHTML166.6 KB04/10/28 08:44:13