Overview

URL 1398212080.keaitz.com/dask/mh_ls.exe
IP173.239.8.164
ASNAS27257 Webair Internet Development Company Inc.
Location United States
Report completed2018-05-17 16:39:30 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-05-17 2 1398212080.keaitz.com/dask/mh_ls.exe Malware
2018-05-17 2 1398212080.keaitz.com/ Malware
2018-05-17 2 keaitz.com/ Malware
2018-05-17 2 ww9.keaitz.com/ Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 173.239.8.164

Date UQ / IDS / BL URL IP
2018-08-16 08:14:26 +0200
0 - 0 - 4 dl.downf468.com/n/3.0.23/5796434/g2 173.239.8.164
2018-08-16 08:14:19 +0200
0 - 0 - 4 dl.downf468.com/n/3.0.25/4905031/pok 173.239.8.164
2018-08-16 08:13:21 +0200
0 - 0 - 2 dl.downe468.com/n/3.0.19.4/2841477/mecanograf 173.239.8.164
2018-08-16 00:53:59 +0200
0 - 0 - 4 kyle.mxp4037.com/CCRjdZUw_ICKHK85219CI7TOZ2Mk (...) 173.239.8.164
2018-08-16 00:47:16 +0200
0 - 1 - 4 kyle.mxp4101.com/gfCgqiZINtjkm2j4v82k7o9J_2BI (...) 173.239.8.164
2018-08-15 16:44:59 +0200
0 - 0 - 4 dl1.downloadaesaenineipi.com/53cdb8ed8ee5a7a4 (...) 173.239.8.164
2018-08-15 13:21:03 +0200
0 - 0 - 3 dl.get1993desk.com/n/39476026/Coc%20Coc%20tri (...) 173.239.8.164
2018-08-15 13:11:20 +0200
0 - 0 - 3 dl.get1993desk.com/n/14933003/BlueStacks.exe? (...) 173.239.8.164
2018-08-15 08:36:04 +0200
0 - 0 - 3 dls.xvidupdate.com/p/151/FlashPlayer/79/418/V (...) 173.239.8.164
2018-08-15 08:35:50 +0200
0 - 0 - 13 dlp.allfiles104.com/fJxTp4RoeJVdEurg9LaRvGi52 (...) 173.239.8.164

Last 10 reports on ASN: AS27257 Webair Internet Development Company Inc.

Date UQ / IDS / BL URL IP
2018-08-16 08:14:26 +0200
0 - 0 - 4 dl.downf468.com/n/3.0.23/5796434/g2 173.239.8.164
2018-08-16 08:14:23 +0200
0 - 0 - 4 dl.downf468.com/n/3.0.25/4905031/pok 213.247.47.190
2018-08-16 08:14:19 +0200
0 - 0 - 4 dl.downf468.com/n/3.0.25/4905031/pok 173.239.8.164
2018-08-16 08:13:36 +0200
0 - 0 - 4 dl.downf468.com/n/3.0.23.4/4867558/el-rey-le 173.239.5.6
2018-08-16 08:13:33 +0200
0 - 0 - 4 dl.downf468.com/n/3.0.25/4867931/pok 173.239.5.6
2018-08-16 08:13:21 +0200
0 - 0 - 2 dl.downe468.com/n/3.0.19.4/2841477/mecanograf 173.239.8.164
2018-08-16 07:55:03 +0200
0 - 0 - 4 z0g7ya1i0.com/ZAj0oJJl763QH3u1Y2xrPTEuOCZiaWQ (...) 213.247.47.190
2018-08-16 07:54:14 +0200
0 - 0 - 4 z0g7ya1i0.com/OKF4RPHP8N5YAZU3Y2xrPTEuOCZiaWQ (...) 173.239.5.6
2018-08-16 07:48:50 +0200
0 - 0 - 4 z0g7ya1i0.com/pAI2zoAD8K7Jlto4Y2xrPTEuOCZiaWQ (...) 213.247.47.190
2018-08-16 07:47:51 +0200
0 - 0 - 4 z0g7ya1i0.com/PVU1fHlx5W5MC9u0Y2xrPTEuOCZiaWQ (...) 173.239.5.6

No other reports on domain: keaitz.com



JavaScript

Executed Scripts (12)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (24)


Request Response
                                        
                                            GET /dask/mh_ls.exe HTTP/1.1 
Host: 1398212080.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.239.8.164
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx/1.12.2
Date: Thu, 17 May 2018 14:38:57 GMT
Content-Length: 161
Connection: keep-alive
Location: http://1398212080.keaitz.com/


--- Additional Info ---
Magic:  HTML document text
Size:   161
Md5:    a9eec393cdcff2fc0822a1c0588ca25b
Sha1:   dd0d3588192dac2bfd7c847685a73af82dc9e5fc
Sha256: 0286536f8370884ea15084bf2347e81b4dfeddcc894cf6e81263e77728bc192c

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: 1398212080.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.239.8.164
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.12.2
Date: Thu, 17 May 2018 14:38:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   423
Md5:    4f0f987cc97930dbee24ee6768ef0eaf
Sha1:   58d6332a4a8e1f9d28a6faf56458d621d55d9664
Sha256: d97b98e072f81aee2c66da7ac0b94c668d7b64e7f679e3bfa23da898657ada50

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 1398212080.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.239.8.164
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.12.2
Date: Thu, 17 May 2018 14:38:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   132
Md5:    69167846e67947cff7ea0907ea081a7a
Sha1:   3eb0b4e1410d971c12cc649dd81afec488e533b2
Sha256: 056ab1d549c36d8d7e071e81f280e48db560c010a52c7677df4918a9f7ad1042
                                        
                                            POST / HTTP/1.1 
Host: keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1398212080.keaitz.com/

                                         
                                         173.239.8.164
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.12.2
Date: Thu, 17 May 2018 14:38:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   145
Md5:    d421e5880c0c2bbb55d17dadd26d89a5
Sha1:   09fca13271231170f1364afb0981324bc2135d4e
Sha256: eb4a41a7ff1a55dbe8792606f603e6b66bc6b657bbad892beccf44f4bdf48d59

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.239.8.164
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.12.2
Date: Thu, 17 May 2018 14:38:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   132
Md5:    69167846e67947cff7ea0907ea081a7a
Sha1:   3eb0b4e1410d971c12cc649dd81afec488e533b2
Sha256: 056ab1d549c36d8d7e071e81f280e48db560c010a52c7677df4918a9f7ad1042
                                        
                                            GET / HTTP/1.1 
Host: ww9.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 17 May 2018 14:38:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
X-Language: english
X-Template: tpl_CleanPeppermintBlack_oneclick
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1089
Md5:    7c668887dce12591b571c1cc03e06e42
Sha1:   c41177a7f91a3becd82767b4d313ef9872f02888
Sha256: 23beb76f3dff172466c6c4bb4890b28e3e5f68fce375feeb98f3f2ef03ee8fdf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /themes/assets/style.css HTTP/1.1 
Host: d1lxhc4jvstzrp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         13.32.118.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Wed, 29 Nov 2017 11:11:19 GMT
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: W/"57df9bb5-33d"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 12386
X-Cache: Hit from cloudfront
Via: 1.1 c882e2039e12421bb0728fbe184b7c4f.cloudfront.net (CloudFront)
X-Amz-Cf-Id: Gx_yHk1IrUD382knqfI9czVvCli0hUQ70T2CMMBeHkydO7urPsK-_A==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   343
Md5:    c689d30608f974031e2c24c299c8dc4b
Sha1:   b483802c89db0131b6d7768a68c43e5ae411d601
Sha256: 78c58f7b6fb701d9644af4456df21dca0e90d09e88952227d6d178e8d4e5a386
                                        
                                            GET /themes/assets/skenzo.css HTTP/1.1 
Host: d1lxhc4jvstzrp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         13.32.118.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Wed, 29 Nov 2017 11:11:21 GMT
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: W/"57df9bb5-159"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 12364
X-Cache: Hit from cloudfront
Via: 1.1 a83878ab138bfe1ba334c102434a7924.cloudfront.net (CloudFront)
X-Amz-Cf-Id: gVYLJQkjFVCDIcAtPXdkOCsc1xKN4CJeEE3ab_WY27-_310gVQXE5w==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   208
Md5:    c2fb482175c53a41861e41226fa2f029
Sha1:   602df898a184b1c5a26897fda150ad95a631423d
Sha256: d5667164154a9ee109c677a9a9d072c45bdf2787440f2174f4a6d484c98c644e
                                        
                                            GET /themes/saledefault.css HTTP/1.1 
Host: d1lxhc4jvstzrp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         13.32.118.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Wed, 29 Nov 2017 11:11:19 GMT
Last-Modified: Mon, 13 Feb 2017 07:55:16 GMT
Etag: W/"58a16664-1348"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 76158
X-Cache: Hit from cloudfront
Via: 1.1 799ea31b59d82957314f51449c37cf09.cloudfront.net (CloudFront)
X-Amz-Cf-Id: dKKKPAbiN0s6vAZBZH06QOZ4lYjsdCj75VGApV_qAkAURv283RcgCQ==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1512
Md5:    f212641d688a3eabd17e68a5b85cc014
Sha1:   e07e879310693af3da3dabad9a28ab15957b9d57
Sha256: 8a1ac286f21b44876c160a66ecdb250b701afe3121e9dae22b5b5d303b2e58a5
                                        
                                            GET /scripts/sale_form.js HTTP/1.1 
Host: c.parkingcrew.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         185.53.178.30
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 May 2018 14:38:58 GMT
Content-Length: 767
Connection: keep-alive
Last-Modified: Thu, 25 Jan 2018 12:09:36 GMT
Etag: "5a69c900-2ff"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C program text
Size:   767
Md5:    f875c795d8b9814ffd3e0911680e92a9
Sha1:   24a590ef9c50f060733a69438b2bbe0273dcbaab
Sha256: 6a8eb31355ae80be16ea52d590c23c6157550934193d77e8ab76b3eee3a8f142
                                        
                                            GET /?dn=keaitz.com&pid=9PO755G95 HTTP/1.1 
Host: findbetterresults.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 17 May 2018 14:38:58 GMT
Server: Apache
Set-Cookie: vsid=930vr2741135387004238; expires=Tue, 16-May-2023 14:38:58 GMT; Max-Age=157680000; path=/; domain=findbetterresults.com; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_jvWgR6MtaC62FR5hy5JzDulI3iS0/JJ9JiM1r4f1BQBmooQ8haZdatCzTxfmBgMwA+wna8FNJ/fpMMo2/qBCew==
Keep-Alive: timeout=5, max=128
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5700
Md5:    e3a8d3e9900aff09f974daeffc997f52
Sha1:   17a401a25b7230014a3aa38c248240c0a0fedb8d
Sha256: cdb1f27064deb8df3e9d10967b8a442920188e0d20cc7134d8cb9c978ff5eb62
                                        
                                            GET /__media__/js/min.js?v1.9 HTTP/1.1 
Host: i1.cdn-image.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Content-Length: 8637
Last-Modified: Tue, 16 May 2017 10:35:28 GMT
Etag: "591ad5f0-21bd"
Accept-Ranges: bytes
Cache-Control: public, max-age=46652
Expires: Fri, 18 May 2018 03:36:31 GMT
Date: Thu, 17 May 2018 14:38:59 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines, with CRLF line terminators
Size:   8637
Md5:    5680a834f9736c441ef512202643f43b
Sha1:   08a910093f0bd0f0bacfa68b3a4464ae8f08cf9b
Sha256: 605e233b694cef7317ba7540d8c3ff077b11cbae86aad6147da88ee6689f576f
                                        
                                            GET /px.js?ch=1 HTTP/1.1 
Host: findbetterresults.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Cookie: vsid=930vr2741135387004238

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 17 May 2018 14:38:59 GMT
Server: Apache
Last-Modified: Thu, 11 Jun 2015 06:47:35 GMT
Etag: "15a-518385dd48fc0"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   346
Md5:    f84f931c0dd37448e03f0dabf4e4ca9f
Sha1:   9c2c50edcf576453ccc07bf65668bd23c76e8663
Sha256: 5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
                                        
                                            GET /px.js?ch=2 HTTP/1.1 
Host: findbetterresults.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Cookie: vsid=930vr2741135387004238

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 17 May 2018 14:38:59 GMT
Server: Apache
Last-Modified: Thu, 11 Jun 2015 06:47:35 GMT
Etag: "15a-518385dd48fc0"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   346
Md5:    f84f931c0dd37448e03f0dabf4e4ca9f
Sha1:   9c2c50edcf576453ccc07bf65668bd23c76e8663
Sha256: 5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
                                        
                                            GET /__media__/pics/8624/numArrow.gif HTTP/1.1 
Host: i2.cdn-image.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.137
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Content-Length: 1526
Last-Modified: Thu, 15 Jan 2015 11:18:48 GMT
Etag: "54b7a218-5f6"
Accept-Ranges: bytes
Cache-Control: public, max-age=47070
Expires: Fri, 18 May 2018 03:43:29 GMT
Date: Thu, 17 May 2018 14:38:59 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 26 x 66
Size:   1526
Md5:    6a1003a188f7c06bbcb5476937d51544
Sha1:   6177379e56c993b80c12b3e6a31cab81ce79a7e6
Sha256: 462e8ebbd6e48add4ea7aae4c9974016511b38bea09f84103c40ebbdea1575b8
                                        
                                            GET /__media__/pics/8624/searchIcon.gif HTTP/1.1 
Host: i4.cdn-image.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Content-Length: 1401
Last-Modified: Thu, 15 Jan 2015 11:18:52 GMT
Etag: "54b7a21c-579"
Accept-Ranges: bytes
Cache-Control: public, max-age=50349
Expires: Fri, 18 May 2018 04:38:08 GMT
Date: Thu, 17 May 2018 14:38:59 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 17
Size:   1401
Md5:    9d76b31de896a471843a4020f909bf40
Sha1:   caa5b97ef602037203d7ca4b6f347decd11a00a2
Sha256: ee882080c3aa8edaae377872678e9e74f3e12c4934fef0beaba26545d1ea7f01
                                        
                                            GET /javascripts/browserfp.min.js?templateId=10 HTTP/1.1 
Host: pxlgnpgecom-a.akamaihd.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.32
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
X-Powered-By: Express
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Bafp-Eg, Bafp-Ec, Bafp-Eg-T, Bafp-Ec-T
Access-Control-Allow-Methods: GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Cache-Control: max-age=1800
Expires: Thu, 17 May 2018 15:08:59 GMT
Date: Thu, 17 May 2018 14:38:59 GMT
Content-Length: 27906
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   27906
Md5:    927a6057a07e56d139cb3caaaa4915f7
Sha1:   c34c6f69368c4c9cbfaf12e68083b23870103b7d
Sha256: 2b980997a2e1635c058b6cadc130ad31d1454879ac303784006b5de6740dd33c
                                        
                                            GET /sk-logabpstatus.php?a=V2hxTDlsRGN4TzBISnhBQ2FrNlhDWGZZVFYzVC85SHFxOVdHK3RoMndBWENpbGg0d0xwYTBQMXkvRTJVYXcwdlpHRVludnREMkk5OUJrSlVpRnY1N0VWaUtPaWJUTUllQjFzVjI1Z3ludEE9&b=false HTTP/1.1 
Host: findbetterresults.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Cookie: vsid=930vr2741135387004238

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 17 May 2018 14:38:59 GMT
Server: Apache
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
                                        
                                            GET /javascripts/bfp_ssn.js?templateId=10 HTTP/1.1 
Host: pxlgnpgecom-a.akamaihd.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.32
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
X-Powered-By: Express
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Bafp-Eg, Bafp-Ec, Bafp-Eg-T, Bafp-Ec-T
Access-Control-Allow-Methods: GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Cache-Control: max-age=1800
Expires: Thu, 17 May 2018 15:08:59 GMT
Date: Thu, 17 May 2018 14:38:59 GMT
Content-Length: 3848
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   3848
Md5:    c390393607221ba9926baf7507e08cae
Sha1:   3f5500edfb4da6a54a067c77afb707cfdf775db6
Sha256: c6a4f2d0d671a6e2265d9edb3434ec11f6942f40d3c0c4b78cf0ecd73ccd4df3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ww9.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Thu, 17 May 2018 14:39:00 GMT
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: "57df9bb5-0"
Accept-Ranges: bytes


--- Additional Info ---
                                        
                                            GET /cet.js?identifier=bafp HTTP/1.1 
Host: dt.gnpge.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Origin: http://findbetterresults.com

                                         
                                         54.85.45.164
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 17 May 2018 14:39:00 GMT
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Bafp-Eg, Bafp-Ec, Bafp-Eg-T, Bafp-Ec-T
Etag: W/"2-1M0Nq89MqiKtkvq0CETHhg"
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    d4cd0dabcf4caa22ad92fab40844c786
Sha1:   3feda0153eee1380b496298450dc5a74324eb8c1
Sha256: 20ef0f0c8d0eea98772412cea9b3b92612e3e53cb5e59152b5703165f56e8a53
                                        
                                            GET /cec.js?identifier=bafp HTTP/1.1 
Host: dt.gnpge.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Origin: http://findbetterresults.com

                                         
                                         54.85.45.164
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 17 May 2018 14:39:00 GMT
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Bafp-Eg, Bafp-Ec, Bafp-Eg-T, Bafp-Ec-T
Etag: W/"2-1M0Nq89MqiKtkvq0CETHhg"
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    d4cd0dabcf4caa22ad92fab40844c786
Sha1:   3feda0153eee1380b496298450dc5a74324eb8c1
Sha256: 20ef0f0c8d0eea98772412cea9b3b92612e3e53cb5e59152b5703165f56e8a53
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.239.8.164
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.12.2
Date: Thu, 17 May 2018 14:39:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   132
Md5:    69167846e67947cff7ea0907ea081a7a
Sha1:   3eb0b4e1410d971c12cc649dd81afec488e533b2
Sha256: 056ab1d549c36d8d7e071e81f280e48db560c010a52c7677df4918a9f7ad1042
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 1398212080.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.239.8.164
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.12.2
Date: Thu, 17 May 2018 14:39:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   132
Md5:    69167846e67947cff7ea0907ea081a7a
Sha1:   3eb0b4e1410d971c12cc649dd81afec488e533b2
Sha256: 056ab1d549c36d8d7e071e81f280e48db560c010a52c7677df4918a9f7ad1042