Overview

URL 1398187271.keaitz.com/dask/mh_ls.exe
IP173.239.8.164
ASNAS27257 Webair Internet Development Company Inc.
Location United States
Report completed2018-05-17 16:38:28 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-05-17 2 1398187271.keaitz.com/dask/mh_ls.exe Malware
2018-05-17 2 1398187271.keaitz.com/ Malware
2018-05-17 2 keaitz.com/ Malware
2018-05-17 2 ww9.keaitz.com/ Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 173.239.8.164

Date UQ / IDS / BL URL IP
2018-05-24 08:23:48 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/deter_s01e11.rar 173.239.8.164
2018-05-24 08:23:39 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id105/player/Assistir (...) 173.239.8.164
2018-05-24 07:59:35 +0200
0 - 0 - 1 rp.thebestallcodecsapp.com/?pcrc=1836554958 173.239.8.164
2018-05-24 07:43:22 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/true_blood_s05e0 (...) 173.239.8.164
2018-05-24 07:38:06 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/22_-_zoom_at_the (...) 173.239.8.164
2018-05-24 07:38:05 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/23_-_to_beep_or_ (...) 173.239.8.164
2018-05-24 07:38:03 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/clgl_--wil.rar 173.239.8.164
2018-05-24 07:35:30 +0200
0 - 0 - 2 dl.downe468.com/n/3.1.12.8.9/5364955/freemind.exe 173.239.8.164
2018-05-24 06:05:54 +0200
0 - 0 - 2 dl.downe468.com/n/3.0.25/11821742/SketchUp.exe 173.239.8.164
2018-05-24 06:04:44 +0200
0 - 0 - 4 dl.downf468.com/n/3.0.26/11797888/AVS_Media_P (...) 173.239.8.164

Last 10 reports on ASN: AS27257 Webair Internet Development Company Inc.

Date UQ / IDS / BL URL IP
2018-05-24 09:43:05 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id143/CD%20Lauriete%2 (...) 213.247.47.190
2018-05-24 09:31:14 +0200
0 - 0 - 3 www.baixarmidia.com/ids/id84/o_nevoeiro_dubla (...) 213.247.47.190
2018-05-24 09:06:01 +0200
0 - 0 - 2 www.westsafetodl.com/Advertisers/v9ism.exe 74.206.232.234
2018-05-24 08:53:32 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/s03e19_-_destina (...) 213.247.47.190
2018-05-24 08:53:19 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/s01e06_-_the_bla (...) 173.239.5.6
2018-05-24 08:46:02 +0200
0 - 0 - 0 nativeadsfeed.com 173.239.46.186
2018-05-24 08:33:30 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/abencoe_me_ultim (...) 173.239.5.6
2018-05-24 08:23:58 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/marley_e_eu_dubl (...) 213.247.47.190
2018-05-24 08:23:48 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/maluca_paixao_dub.rar 173.239.5.6
2018-05-24 08:23:48 +0200
0 - 0 - 4 www.baixarmidia.com/ids/id84/deter_s01e11.rar 173.239.8.164

No other reports on domain: keaitz.com



JavaScript

Executed Scripts (12)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (24)


Request Response
                                        
                                            GET /dask/mh_ls.exe HTTP/1.1 
Host: 1398187271.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         213.247.47.190
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx/1.14.0
Date: Thu, 17 May 2018 14:37:53 GMT
Content-Length: 161
Connection: keep-alive
Location: http://1398187271.keaitz.com/


--- Additional Info ---
Magic:  HTML document text
Size:   161
Md5:    4f3e95deb55a8bf216df5ab58f762c59
Sha1:   27b0b6fdbc573cfd3939181a1df75f92a1ae450e
Sha256: a712345b5883f5e009bcae00af547d2676ef9403f923fd55651aa6ca72b4466e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: 1398187271.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         213.247.47.190
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.14.0
Date: Thu, 17 May 2018 14:37:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   423
Md5:    4f0f987cc97930dbee24ee6768ef0eaf
Sha1:   58d6332a4a8e1f9d28a6faf56458d621d55d9664
Sha256: d97b98e072f81aee2c66da7ac0b94c668d7b64e7f679e3bfa23da898657ada50

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 1398187271.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         213.247.47.190
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.14.0
Date: Thu, 17 May 2018 14:37:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   132
Md5:    2bb7d93a62eed89aaf3e987759dabc1e
Sha1:   9f0f50ddaa602a7e81fc49ccd1aaf658ff668add
Sha256: 0d5759bc489628b40af97403582d264b95386a0920f40d32ed1fe84df5f3eb8c
                                        
                                            POST / HTTP/1.1 
Host: keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1398187271.keaitz.com/

                                         
                                         213.247.47.190
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.14.0
Date: Thu, 17 May 2018 14:37:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   145
Md5:    d421e5880c0c2bbb55d17dadd26d89a5
Sha1:   09fca13271231170f1364afb0981324bc2135d4e
Sha256: eb4a41a7ff1a55dbe8792606f603e6b66bc6b657bbad892beccf44f4bdf48d59

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         213.247.47.190
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.14.0
Date: Thu, 17 May 2018 14:37:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   132
Md5:    2bb7d93a62eed89aaf3e987759dabc1e
Sha1:   9f0f50ddaa602a7e81fc49ccd1aaf658ff668add
Sha256: 0d5759bc489628b40af97403582d264b95386a0920f40d32ed1fe84df5f3eb8c
                                        
                                            GET / HTTP/1.1 
Host: ww9.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 17 May 2018 14:37:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
X-Language: english
X-Template: tpl_CleanPeppermintBlack_oneclick
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1089
Md5:    7c668887dce12591b571c1cc03e06e42
Sha1:   c41177a7f91a3becd82767b4d313ef9872f02888
Sha256: 23beb76f3dff172466c6c4bb4890b28e3e5f68fce375feeb98f3f2ef03ee8fdf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /themes/saledefault.css HTTP/1.1 
Host: d1lxhc4jvstzrp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         13.32.118.158
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Wed, 29 Nov 2017 11:11:19 GMT
Last-Modified: Mon, 13 Feb 2017 07:55:16 GMT
Etag: W/"58a16664-1348"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 76095
X-Cache: Hit from cloudfront
Via: 1.1 c404ed180d28762f366906ac8c52a410.cloudfront.net (CloudFront)
X-Amz-Cf-Id: xInP1JcA3aOoe3a4GvSOx93UC1-wWxm12w7051mwN9Mzl231xvuSvw==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1512
Md5:    f212641d688a3eabd17e68a5b85cc014
Sha1:   e07e879310693af3da3dabad9a28ab15957b9d57
Sha256: 8a1ac286f21b44876c160a66ecdb250b701afe3121e9dae22b5b5d303b2e58a5
                                        
                                            GET /themes/assets/style.css HTTP/1.1 
Host: d1lxhc4jvstzrp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         13.32.118.158
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Wed, 29 Nov 2017 11:11:19 GMT
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: W/"57df9bb5-33d"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 12323
X-Cache: Hit from cloudfront
Via: 1.1 0f6f86cca5d70fbf784c9d5eab6a79a4.cloudfront.net (CloudFront)
X-Amz-Cf-Id: dWP3XTnaiGoo2opMOehsPhCgD-Hu-zfTuMwl5gkvppCcZo_juiYzJA==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   343
Md5:    c689d30608f974031e2c24c299c8dc4b
Sha1:   b483802c89db0131b6d7768a68c43e5ae411d601
Sha256: 78c58f7b6fb701d9644af4456df21dca0e90d09e88952227d6d178e8d4e5a386
                                        
                                            GET /themes/assets/skenzo.css HTTP/1.1 
Host: d1lxhc4jvstzrp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         13.32.118.158
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Wed, 29 Nov 2017 11:11:21 GMT
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: W/"57df9bb5-159"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 12301
X-Cache: Hit from cloudfront
Via: 1.1 693662765171cd4487715cf47d785e5c.cloudfront.net (CloudFront)
X-Amz-Cf-Id: GGDwHUjgr3nRtBcaVkU6tD7zHuZHQ7dtEcbuhk59hc0jy5PnhJU8DA==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   208
Md5:    c2fb482175c53a41861e41226fa2f029
Sha1:   602df898a184b1c5a26897fda150ad95a631423d
Sha256: d5667164154a9ee109c677a9a9d072c45bdf2787440f2174f4a6d484c98c644e
                                        
                                            GET /scripts/sale_form.js HTTP/1.1 
Host: c.parkingcrew.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         185.53.178.30
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 May 2018 14:37:55 GMT
Content-Length: 767
Connection: keep-alive
Last-Modified: Thu, 25 Jan 2018 12:09:36 GMT
Etag: "5a69c900-2ff"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C program text
Size:   767
Md5:    f875c795d8b9814ffd3e0911680e92a9
Sha1:   24a590ef9c50f060733a69438b2bbe0273dcbaab
Sha256: 6a8eb31355ae80be16ea52d590c23c6157550934193d77e8ab76b3eee3a8f142
                                        
                                            GET /?dn=keaitz.com&pid=9PO755G95 HTTP/1.1 
Host: findbetterresults.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww9.keaitz.com/

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 17 May 2018 14:37:56 GMT
Server: Apache
Set-Cookie: vsid=901vr2741134762400993; expires=Tue, 16-May-2023 14:37:56 GMT; Max-Age=157680000; path=/; domain=findbetterresults.com; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_jvWgR6MtaC62FR5hy5JzDulI3iS0/JJ9JiM1r4f1BQBmooQ8haZdatCzTxfmBgMwA+wna8FNJ/fpMMo2/qBCew==
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5700
Md5:    1602ade8853a91e9da6674c9ab52c08f
Sha1:   cc2dcf65bbeaf2441ce36084d2fdd9237603b5d7
Sha256: d01f6c792c15c4507d360020078b5b7dd037bea6f23408720d37a13e646f2177
                                        
                                            GET /__media__/js/min.js?v1.9 HTTP/1.1 
Host: i4.cdn-image.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Content-Length: 8637
Last-Modified: Tue, 16 May 2017 10:35:28 GMT
Etag: "591ad5f0-21bd"
Accept-Ranges: bytes
Cache-Control: public, max-age=46715
Expires: Fri, 18 May 2018 03:36:31 GMT
Date: Thu, 17 May 2018 14:37:56 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines, with CRLF line terminators
Size:   8637
Md5:    5680a834f9736c441ef512202643f43b
Sha1:   08a910093f0bd0f0bacfa68b3a4464ae8f08cf9b
Sha256: 605e233b694cef7317ba7540d8c3ff077b11cbae86aad6147da88ee6689f576f
                                        
                                            GET /px.js?ch=1 HTTP/1.1 
Host: findbetterresults.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Cookie: vsid=901vr2741134762400993

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 17 May 2018 14:37:56 GMT
Server: Apache
Last-Modified: Thu, 11 Jun 2015 06:47:35 GMT
Etag: "15a-518385dd48fc0"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=114
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   346
Md5:    f84f931c0dd37448e03f0dabf4e4ca9f
Sha1:   9c2c50edcf576453ccc07bf65668bd23c76e8663
Sha256: 5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
                                        
                                            GET /px.js?ch=2 HTTP/1.1 
Host: findbetterresults.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Cookie: vsid=901vr2741134762400993

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 17 May 2018 14:37:56 GMT
Server: Apache
Last-Modified: Thu, 11 Jun 2015 06:47:35 GMT
Etag: "15a-518385dd48fc0"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   346
Md5:    f84f931c0dd37448e03f0dabf4e4ca9f
Sha1:   9c2c50edcf576453ccc07bf65668bd23c76e8663
Sha256: 5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
                                        
                                            GET /__media__/pics/8624/numArrow.gif HTTP/1.1 
Host: i3.cdn-image.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.137
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Content-Length: 1526
Last-Modified: Thu, 15 Jan 2015 11:18:48 GMT
Etag: "54b7a218-5f6"
Accept-Ranges: bytes
Cache-Control: public, max-age=47133
Expires: Fri, 18 May 2018 03:43:29 GMT
Date: Thu, 17 May 2018 14:37:56 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 26 x 66
Size:   1526
Md5:    6a1003a188f7c06bbcb5476937d51544
Sha1:   6177379e56c993b80c12b3e6a31cab81ce79a7e6
Sha256: 462e8ebbd6e48add4ea7aae4c9974016511b38bea09f84103c40ebbdea1575b8
                                        
                                            GET /__media__/pics/8624/searchIcon.gif HTTP/1.1 
Host: i4.cdn-image.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Content-Length: 1401
Last-Modified: Thu, 15 Jan 2015 11:18:52 GMT
Etag: "54b7a21c-579"
Accept-Ranges: bytes
Cache-Control: public, max-age=50412
Expires: Fri, 18 May 2018 04:38:08 GMT
Date: Thu, 17 May 2018 14:37:56 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 17
Size:   1401
Md5:    9d76b31de896a471843a4020f909bf40
Sha1:   caa5b97ef602037203d7ca4b6f347decd11a00a2
Sha256: ee882080c3aa8edaae377872678e9e74f3e12c4934fef0beaba26545d1ea7f01
                                        
                                            GET /javascripts/browserfp.min.js?templateId=10 HTTP/1.1 
Host: pxlgnpgecom-a.akamaihd.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.27
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
X-Powered-By: Express
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Bafp-Eg, Bafp-Ec, Bafp-Eg-T, Bafp-Ec-T
Access-Control-Allow-Methods: GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Cache-Control: max-age=1800
Expires: Thu, 17 May 2018 15:07:56 GMT
Date: Thu, 17 May 2018 14:37:56 GMT
Content-Length: 27905
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   27905
Md5:    11f99f24dc2709c9006f04ec5a6dcde2
Sha1:   186d6f1980a47f813b67ca8e5a76e26667d49b76
Sha256: b3b5f8865f8f0ce1542e4e221b56940f8261ce46c58d118315ab9d12178de885
                                        
                                            GET /sk-logabpstatus.php?a=dkNpUUtEbmtTU0JPcE9DUVZvN1ZDM3hEQXF2MnRHVUxVRUg3SVBQVUg3SlpIWENlNWRrRHY3U3YzUWVSSjQ1NElsOHlUbk5DMk45MWZTaFNkNmMxQkZEVmhZLzQ4cEN0V2RyemFaMGtzYms9&b=false HTTP/1.1 
Host: findbetterresults.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Cookie: vsid=901vr2741134762400993

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 17 May 2018 14:37:56 GMT
Server: Apache
Content-Length: 0
Keep-Alive: timeout=5, max=114
Connection: Keep-Alive


--- Additional Info ---
                                        
                                            GET /javascripts/bfp_ssn.js?templateId=10 HTTP/1.1 
Host: pxlgnpgecom-a.akamaihd.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95

                                         
                                         91.135.34.27
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
X-Powered-By: Express
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Bafp-Eg, Bafp-Ec, Bafp-Eg-T, Bafp-Ec-T
Access-Control-Allow-Methods: GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Cache-Control: max-age=1800
Expires: Thu, 17 May 2018 15:07:57 GMT
Date: Thu, 17 May 2018 14:37:57 GMT
Content-Length: 3848
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   3848
Md5:    c390393607221ba9926baf7507e08cae
Sha1:   3f5500edfb4da6a54a067c77afb707cfdf775db6
Sha256: c6a4f2d0d671a6e2265d9edb3434ec11f6942f40d3c0c4b78cf0ecd73ccd4df3
                                        
                                            GET /cet.js?identifier=bafp HTTP/1.1 
Host: dt.gnpge.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Origin: http://findbetterresults.com

                                         
                                         54.88.241.93
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 17 May 2018 14:37:58 GMT
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Bafp-Eg, Bafp-Ec, Bafp-Eg-T, Bafp-Ec-T
Etag: W/"2-1M0Nq89MqiKtkvq0CETHhg"
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    d4cd0dabcf4caa22ad92fab40844c786
Sha1:   3feda0153eee1380b496298450dc5a74324eb8c1
Sha256: 20ef0f0c8d0eea98772412cea9b3b92612e3e53cb5e59152b5703165f56e8a53
                                        
                                            GET /cec.js?identifier=bafp HTTP/1.1 
Host: dt.gnpge.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://findbetterresults.com/?dn=keaitz.com&pid=9PO755G95
Origin: http://findbetterresults.com

                                         
                                         54.88.241.93
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 17 May 2018 14:37:58 GMT
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Bafp-Eg, Bafp-Ec, Bafp-Eg-T, Bafp-Ec-T
Etag: W/"2-1M0Nq89MqiKtkvq0CETHhg"
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    d4cd0dabcf4caa22ad92fab40844c786
Sha1:   3feda0153eee1380b496298450dc5a74324eb8c1
Sha256: 20ef0f0c8d0eea98772412cea9b3b92612e3e53cb5e59152b5703165f56e8a53
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ww9.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Thu, 17 May 2018 14:37:58 GMT
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: "57df9bb5-0"
Accept-Ranges: bytes


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         213.247.47.190
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.14.0
Date: Thu, 17 May 2018 14:37:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   132
Md5:    2bb7d93a62eed89aaf3e987759dabc1e
Sha1:   9f0f50ddaa602a7e81fc49ccd1aaf658ff668add
Sha256: 0d5759bc489628b40af97403582d264b95386a0920f40d32ed1fe84df5f3eb8c
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 1398187271.keaitz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         213.247.47.190
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.14.0
Date: Thu, 17 May 2018 14:37:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   132
Md5:    2bb7d93a62eed89aaf3e987759dabc1e
Sha1:   9f0f50ddaa602a7e81fc49ccd1aaf658ff668add
Sha256: 0d5759bc489628b40af97403582d264b95386a0920f40d32ed1fe84df5f3eb8c