Overview

URL https://app.fixmestick.com/scans/?email=michaelccady@yahoo.com&campaign=EMAIL-MALWARE-DETECTED&utm_source=transactional&utm_medium=email&utm_campaign=transactional-malware-detected&utm_content=portal&utm_term=view-scan-results&utm_medium=email&utm_source=transactional&utm_campaign=mandrill-first-scan-malware-detected
IP69.164.194.87
ASNAS36351 SoftLayer Technologies Inc.
Location United States
Report completed2018-04-16 21:11:18 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-04-16 2 cdn.pixlads.com/agencies/1/advertisers/242/audience.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 69.164.194.87


Last 10 reports on ASN: AS36351 SoftLayer Technologies Inc.

Date UQ / IDS / BL URL IP
2018-07-20 18:32:59 +0200
0 - 0 - 0 histats.com 174.36.232.136
2018-07-20 18:29:13 +0200
0 - 0 - 1 https://www.paveconnections.com/QkADAwATYwMAI (...) 173.193.136.193
2018-07-20 18:25:50 +0200
0 - 0 - 0 i80westreno.com 104.200.22.130
2018-07-20 18:21:37 +0200
0 - 0 - 0 registered-domain.us 169.57.177.139
2018-07-20 18:20:23 +0200
0 - 0 - 0 https://i80westreno.com 104.200.23.95
2018-07-20 18:00:39 +0200
0 - 0 - 0 https://isago.mybluemix.net/ 169.54.245.69
2018-07-20 17:59:11 +0200
0 - 0 - 0 https://isago.mybluemix.net/view.php?outlook= (...) 158.85.156.19
2018-07-20 16:12:21 +0200
0 - 0 - 0 secure.sosonlinebackup.com/UMS/UserService/Us (...) 50.23.4.207
2018-07-20 15:47:38 +0200
0 - 0 - 0 75.126.113.164 75.126.113.164
2018-07-20 15:41:41 +0200
0 - 0 - 0 https://solakocochudoimcunvaythoiadoa-nonrhym (...) 158.85.156.19

No other reports on domain: fixmestick.com



JavaScript

Executed Scripts (17)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 30, repeated: 1) - SHA256: 807a15fef8a2e854bd4657ca750efc8effd5f91349736064e0ef649819a7a296

                                        < body onload = "document._l();" >
                                    


HTTP Transactions (47)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:44 GMT
Server: Apache
Last-Modified: Sat, 14 Apr 2018 10:30:01 GMT
Expires: Sat, 21 Apr 2018 10:30:01 GMT
Etag: AE68FF9B4A09714649B2F81B60B81A6C76B7408B
Cache-Control: max-age=400156,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp31
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    b45a6ed68b77b80e4387141b9c07ed46
Sha1:   ae68ff9b4a09714649b2f81b60b81a6c76b7408b
Sha256: 0fbb09ff806b72e37b4d874ccdce3b93718397e165ec3ef4811608a8c5642e73
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:44 GMT
Server: Apache
Last-Modified: Fri, 13 Apr 2018 23:02:22 GMT
Expires: Fri, 20 Apr 2018 23:02:22 GMT
Etag: E8BF36A07CC58A2E3E78AC9AE62955EAF9684F22
Cache-Control: max-age=358897,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp32
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    96bc9281af8ad39e9629d7898fd9a7d9
Sha1:   e8bf36a07cc58a2e3e78ac9ae62955eaf9684f22
Sha256: 0c80a6fcae28f190e8bd2ab6907ee6fbab9a5e99403d4733651a994a8e3ec549
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:44 GMT
Server: Apache
Last-Modified: Fri, 13 Apr 2018 23:02:22 GMT
Expires: Fri, 20 Apr 2018 23:02:22 GMT
Etag: 9A4AE6F829D3348ADF2720CD48E61C9B9CE476C7
Cache-Control: max-age=358897,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp31
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9cc87de26b492fbe5c65823a11ca4645
Sha1:   9a4ae6f829d3348adf2720cd48e61c9b9ce476c7
Sha256: 51af2063e3b2d1586fece763a823624f20d5ef3b1b33f4cbe16211b28160f806
                                        
                                            GET /scans/?email=michaelccady@yahoo.com&campaign=EMAIL-MALWARE-DETECTED&utm_source=transactional&utm_medium=email&utm_campaign=transactional-malware-detected&utm_content=portal&utm_term=view-scan-results&utm_medium=email&utm_source=transactional&utm_campaign=mandrill-first-scan-malware-detected HTTP/1.1 
Host: app.fixmestick.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         69.164.194.87
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Mon, 16 Apr 2018 19:10:44 GMT
Content-Length: 0
Connection: keep-alive
Location: /account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected
Content-Language: en-us
Vary: Accept-Language,Cookie
X-Frame-Options: SAMEORIGIN
Set-Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; expires=Mon, 30-Apr-2018 19:10:44 GMT; httponly; Max-Age=1209600; Path=/


--- Additional Info ---
                                        
                                            GET /account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected HTTP/1.1 
Host: app.fixmestick.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8

                                         
                                         69.164.194.87
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Mon, 16 Apr 2018 19:10:44 GMT
Content-Length: 9072
Connection: keep-alive
Content-Language: en-us
Expires: Mon, 16 Apr 2018 19:10:44 GMT
Vary: Cookie,Accept-Language
Cache-Control: no-cache, no-store, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Set-Cookie: csrftoken=lKmGDIXWky2JZ9HzKaKsyVFtYvnfpqUKtd1KF4bYcdQkgJT8his8nbZ1SxorWRXi; expires=Mon, 15-Apr-2019 19:10:44 GMT; Max-Age=31449600; Path=/ sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; expires=Mon, 30-Apr-2018 19:10:44 GMT; httponly; Max-Age=1209600; Path=/


--- Additional Info ---
Magic:  ASCII HTML document text, with very long lines
Size:   9072
Md5:    9fde9a7e7cf6028e35f4cb112f4e4178
Sha1:   d4ad06f45abd3ca034c69da190b406d6e5457086
Sha256: 6064cb3fbfbc0dbdded270e4bcdca0f93673698f37adfdb082549203864107b9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:45 GMT
Server: Apache
Last-Modified: Fri, 13 Apr 2018 20:38:15 GMT
Expires: Fri, 20 Apr 2018 20:38:15 GMT
Etag: E28C08BF2B7C3749536E64564C9C13EE89C72239
Cache-Control: max-age=350249,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp31
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    fee9bb4bdd9d14ee3a92558660850209
Sha1:   e28c08bf2b7c3749536e64564c9c13ee89c72239
Sha256: 8680c57bba54bd59482bf58fbd2cc9e898ffd99dbba017515dfcef03797c4053
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 14 Apr 2018 00:26:17 GMT
Etag: DF9761F79E1B2C2E4D1ED6DDB33DAFEB9B2D2B33
X-OCSP-Responder-ID: rmdccaocsp20
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=1227
Expires: Mon, 16 Apr 2018 19:31:12 GMT
Date: Mon, 16 Apr 2018 19:10:45 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    995b2938b71d67412cc141c1a0f6f659
Sha1:   df9761f79e1b2c2e4d1ed6ddb33dafeb9b2d2b33
Sha256: c5947934991b73d9b1d1607d3bcf4bb6750bf49c1421d5f6b89d30ea89de0f5b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 13 Apr 2018 23:02:22 GMT
Etag: A894300165C543FDA369AEB8A0E3CF3CE5B27EFE
X-OCSP-Responder-ID: rmdccaocsp35
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=816
Expires: Mon, 16 Apr 2018 19:24:21 GMT
Date: Mon, 16 Apr 2018 19:10:45 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    dc8c04035543db4b5fe9a85991b4c045
Sha1:   a894300165c543fda369aeb8a0e3cf3ce5b27efe
Sha256: d247e684293f9c5ab1c1c2bac5aeaf01dbe0e053d120b2ea0c247bf7d2137405
                                        
                                            GET /bootstrap/3.3.6/css/bootstrap.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         205.185.216.42
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Mon, 16 Apr 2018 19:10:45 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: 1519106275
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 19747
Last-Modified: Tue, 20 Feb 2018 05:57:55 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   19747
Md5:    1fa7f9cc27a90f47091c0b97f3a9f4fe
Sha1:   4eff90e4f31fc5a5e00ee90449d72f6b36ec3675
Sha256: aba8a4da7ac240cf34eef3b8821db0fdf5ac8987424d26b612c5a29f105f4e76
                                        
                                            GET /static/css/overrides.css HTTP/1.1 
Host: app.fixmestick.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected
Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; csrftoken=lKmGDIXWky2JZ9HzKaKsyVFtYvnfpqUKtd1KF4bYcdQkgJT8his8nbZ1SxorWRXi

                                         
                                         69.164.194.87
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 16 Apr 2018 19:10:45 GMT
Content-Length: 2137
Last-Modified: Wed, 28 Feb 2018 18:56:35 GMT
Connection: keep-alive
Etag: "5a96fb63-859"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2137
Md5:    27b4fa21b3c720392311c9779feab5e1
Sha1:   d0d7ea60985488c9b83d169f54c43822316a7c56
Sha256: 7382a2f957b52a9d57c9fae4f659665bc53ae052cefcfb9d2c81fe891d671424
                                        
                                            GET /ajax/libs/normalize/4.1.1/normalize.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         104.19.194.102
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 16 Apr 2018 19:10:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 14:45:16 GMT
Expires: Sat, 06 Apr 2019 19:10:45 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15780000; includeSubDomains
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 40c8f4312f0c4261-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   961
Md5:    8dbfbb2d7b8311d8155605d0bf3b2598
Sha1:   f3a63bb5c01540f032e617f8f7a3c89b42a2830c
Sha256: 42c68072b142ffb27dea0a47556c2cdd68a68a41b8bfcf4b7aa49f65f7a22b18
                                        
                                            GET /bootstrap/3.3.6/css/bootstrap-theme.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         205.185.216.42
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Mon, 16 Apr 2018 19:10:45 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: 1519106275
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 2776
Last-Modified: Tue, 20 Feb 2018 05:57:55 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2776
Md5:    4cfd698630c3f5e35c20e1ae21926849
Sha1:   730dca13290dee445dfee0616b6e5d9285ee662f
Sha256: af4a914a8c092c119fc870d0935a06e8bb15b228c275d68796117a3aff6bd43c
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:46 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    1a9f394c836f83fd3c3b153d362f4fc0
Sha1:   4b5315e37670cc75f6246cab60a3b78ac1e408a0
Sha256: b903e3e48ada45f8ab547055ad9b07dfbbec5c35bbfad29f2479ae61079766d3
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:46 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    6bf50ec404fb4a8b4a94be8390d11938
Sha1:   0caaab7704d6221abc5e0342909a4928cee50b1c
Sha256: 63b592179b1e9a528344ce1d430b9479fc55f43420a468ec35aaeaa9dff911cf
                                        
                                            GET /ajax/libs/jquery-placeholder/2.3.1/jquery.placeholder.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         104.19.194.102
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Mon, 16 Apr 2018 19:10:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 14:42:30 GMT
Expires: Sat, 06 Apr 2019 19:10:45 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15780000; includeSubDomains
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 40c8f431681e42a3-OSL


--- Additional Info ---
Magic:  Minix filesystem, 30 char names\012 gzip compressed data, from Unix
Size:   1322
Md5:    ecbc3e18bdaeb44ad2433c88f7f2ae44
Sha1:   0f643b8c99894a7895f74c5e29404ee04110c532
Sha256: a1e8b762390a9a6c76d9a4d9a60f05afdda418e304059edc1e658d6551c87770
                                        
                                            GET /font-awesome/4.6.3/css/font-awesome.css HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         205.185.216.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Mon, 16 Apr 2018 19:10:46 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: 1518903977
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 7042
Last-Modified: Sat, 17 Feb 2018 21:46:17 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7042
Md5:    ccf340db732eac59290a9adf62ac3bb3
Sha1:   273797c29fb523fffa7f5634cac268cdc9dd3217
Sha256: 6867b0b599abe8bf4a4b6bccd9721446b7a5d4033ce22fbd34a3d565f8f363f9
                                        
                                            GET /bootstrap/3.3.6/js/bootstrap.min.js HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         205.185.216.42
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Mon, 16 Apr 2018 19:10:46 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: 1519106282
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 9764
Last-Modified: Tue, 20 Feb 2018 05:58:02 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9764
Md5:    0bee8c57c245e51585ea2b966ce25ba5
Sha1:   0ad5a45376d643bb56485a512551897b148cc8b6
Sha256: c525cf77b524feba202236e6e9e6e36cec09c81befcf283aacc3b06a6bce1ce5
                                        
                                            GET /css?family=Lato:300normal,400normal,700bold;subset=all HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         172.217.20.42
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 16 Apr 2018 19:10:46 GMT
Date: Mon, 16 Apr 2018 19:10:46 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: hq=":443"; ma=2592000; quic=51303432; quic=51303431; quic=51303339; quic=51303335,quic=":443"; ma=2592000; v="42,41,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   242
Md5:    5d1fca413e33a9c9430c7ee76cc48ce7
Sha1:   554c4a3c2f60c32d25b07a8f096111057676e5e9
Sha256: b3d35590a4c30ba97693d2989473648eb57cc7c027646ed587dbe2cd449ab637
                                        
                                            GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 33951
Date: Fri, 13 Apr 2018 01:15:20 GMT
Expires: Sat, 13 Apr 2019 01:15:20 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 323726
Alt-Svc: hq=":443"; ma=2592000; quic=51303432; quic=51303431; quic=51303339; quic=51303335,quic=":443"; ma=2592000; v="42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   33951
Md5:    f910e11b991e28dd9447cdeed05f118f
Sha1:   5915198862cc9bcea54b79768f3c53de0ebe49fe
Sha256: d36598c872d64695dd8619db0eb545ddc046c2aabcff24dc41af5d784c318b09
                                        
                                            GET /static/pinax/js/theme.js HTTP/1.1 
Host: app.fixmestick.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected
Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; csrftoken=lKmGDIXWky2JZ9HzKaKsyVFtYvnfpqUKtd1KF4bYcdQkgJT8his8nbZ1SxorWRXi

                                         
                                         69.164.194.87
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Mon, 16 Apr 2018 19:10:45 GMT
Content-Length: 2029
Last-Modified: Tue, 13 Sep 2016 21:28:21 GMT
Connection: keep-alive
Etag: "57d86f75-7ed"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   2029
Md5:    0cde6ba88d082fe53ae15e68b55dc974
Sha1:   da9e179913e195f705b73ed2df012d0762ca107d
Sha256: 005fbcd4a04d2464e2f6d5256e75215b70f59eed12db74e7883f6527decb2b65
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: app.fixmestick.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; csrftoken=lKmGDIXWky2JZ9HzKaKsyVFtYvnfpqUKtd1KF4bYcdQkgJT8his8nbZ1SxorWRXi

                                         
                                         69.164.194.87
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Mon, 16 Apr 2018 19:10:45 GMT
Content-Length: 0
Connection: keep-alive
Location: /static/img/favicon1.png
Content-Language: en-us
Vary: Accept-Language,Cookie
X-Frame-Options: SAMEORIGIN
Set-Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; expires=Mon, 30-Apr-2018 19:10:45 GMT; httponly; Max-Age=1209600; Path=/


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 14 Apr 2018 06:18:40 GMT
Etag: 6A5E096B12A897D9E1BE6350FB7EC82DD2D3441A
X-OCSP-Responder-ID: rmdccaocsp20
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=1800
Expires: Mon, 16 Apr 2018 19:40:46 GMT
Date: Mon, 16 Apr 2018 19:10:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    4aed3e7d301ee8746199cdef66ab5d4c
Sha1:   6a5e096b12a897d9e1be6350fb7ec82dd2d3441a
Sha256: 75e390590b0bafe309916549cb3561c00f03fcbe766317cbdbf2152b9b030e88
                                        
                                            GET /static/img/favicon1.png HTTP/1.1 
Host: app.fixmestick.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; csrftoken=lKmGDIXWky2JZ9HzKaKsyVFtYvnfpqUKtd1KF4bYcdQkgJT8his8nbZ1SxorWRXi

                                         
                                         69.164.194.87
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 16 Apr 2018 19:10:45 GMT
Content-Length: 1941
Last-Modified: Tue, 13 Sep 2016 21:28:20 GMT
Connection: keep-alive
Etag: "57d86f74-795"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 64 x 64, 8-bit colormap, non-interlaced
Size:   1941
Md5:    6b4b2223ce3d1f22269b5905ea7d816f
Sha1:   a021bafafab1c98dbe68b0143218d186e06b24ee
Sha256: a742849225226f97b76986bfd9306b5e266d8c56d3653d8a9f9d1183cc20eb2a
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:46 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    2eea46dc18cf88c467514bc7de3384d2
Sha1:   0e9c9ef4217aecc05fc99b0c6d427f69b238d613
Sha256: cff01ab6826dc4883ce946b99d7f750aadf64bd31ee38d7d89b3cd0203c5eb57
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=171025
Date: Mon, 16 Apr 2018 19:10:46 GMT
Etag: "5ad4d311-1d7"
Expires: Wed, 18 Apr 2018 18:12:00 GMT
Last-Modified: Mon, 16 Apr 2018 16:45:05 GMT
Server: ECS (arn/46A2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    dd8d22f58a3e62221fb531422d43c7c9
Sha1:   e71c0eb1a5072e72745397de4e77f9691d9a348c
Sha256: bb733f61dc0419d75d91a3c0e63eefc215e26d196e3cd1eb3c67aba6666eb70b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=158724
Date: Mon, 16 Apr 2018 19:10:46 GMT
Etag: "5ad4974b-1d7"
Expires: Wed, 18 Apr 2018 15:04:41 GMT
Last-Modified: Mon, 16 Apr 2018 12:30:03 GMT
Server: ECS (arn/46D1)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d10a6da6e38428ae8812b53d816ea9a4
Sha1:   82d6cb386e9eb7dc7f9fc3131c38b9b0ced0e7d8
Sha256: ada3945d2acdd5c852ddfb7005bf75f68b87ed184b52328d33c7e0cd61698a15
                                        
                                            GET /static/img/logo-black.png HTTP/1.1 
Host: app.fixmestick.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected
Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; csrftoken=lKmGDIXWky2JZ9HzKaKsyVFtYvnfpqUKtd1KF4bYcdQkgJT8his8nbZ1SxorWRXi

                                         
                                         69.164.194.87
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 16 Apr 2018 19:10:45 GMT
Content-Length: 32583
Last-Modified: Wed, 28 Jun 2017 16:59:30 GMT
Connection: keep-alive
Etag: "5953e072-7f47"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 1801 x 900, 8-bit/color RGBA, non-interlaced
Size:   32583
Md5:    a57e2c78d0d6e94638d9b418700c76d1
Sha1:   bc7017fca9a0a7bb0cdbc447a2fab8d912f7532f
Sha256: 1eed3f2e390bf87e96259c54804d3f5f28fe49b919bb33a1f544e3fd484010b5
                                        
                                            POST / HTTP/1.1 
Host: ss.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.12.2
Content-Length: 1609
Content-Transfer-Encoding: binary
Cache-Control: max-age=415621, public, no-transform, must-revalidate
Last-Modified: Sat, 14 Apr 2018 14:37:47 GMT
Expires: Sat, 21 Apr 2018 14:37:47 GMT
Date: Mon, 16 Apr 2018 19:10:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1609
Md5:    5251b2c69a13594de311abe7e56f6306
Sha1:   85e4c9b61068bead0f6bef7ede66155056dc5b05
Sha256: 40d1272454591d80a1c1fe2cc4e3676a2a08a204d38378e7eb81e4221028bba7
                                        
                                            GET /embeddable_framework/main.js HTTP/1.1 
Host: assets.zendesk.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         93.184.220.110
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Content-Encoding: gzip
Accept-Ranges: bytes
Cache-Control: max-age=60, public, max-age=60, s-maxage=60
Date: Mon, 16 Apr 2018 19:10:46 GMT
Etag: "5ad3e5db-1ea8bf"
Expires: Mon, 16 Apr 2018 19:11:46 GMT
Last-Modified: Sun, 15 Apr 2018 23:52:59 GMT
Server: ECS (arn/46A2)
Vary: Accept-Encoding
X-Cache: HIT
X-Content-Type-Options: nosniff
Content-Length: 630784


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   630784
Md5:    a72e46bb267304ccf1e1ced547353677
Sha1:   a3ed00848e3b1dde3defc138004e899b54635483
Sha256: ceacb9d68ac0e12a0d0555ff7473fa45a84773e2a626a05c0b95927e6635aa28
                                        
                                            GET /mcjs-connected/js/users/3e80fefad852d8b2675a6c860/a743a5b35e6bf0bb37a7ce93e.js HTTP/1.1 
Host: chimpstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         95.100.4.58
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: openresty
Content-Length: 50
Vary: Accept-Encoding
Accept-Ranges: bytes
Last-Modified: Tue, 15 Aug 2017 15:30:11 GMT
Etag: "104d46a3208b40e8ded389332f5a78a3"
x-amz-request-id: tx000000000000000a812c2-005ad4f537-2242562-public-suw01
Cache-Control: max-age=31536000
Expires: Tue, 16 Apr 2019 19:10:47 GMT
Date: Mon, 16 Apr 2018 19:10:47 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   50
Md5:    104d46a3208b40e8ded389332f5a78a3
Sha1:   4ab55ccb2972e9a3cb62c65c97308c2450a682bb
Sha256: f6e4f5edb3194334a199f0bf80b38d92a0b7388330fbce94c8c0fb2f852c171f
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Mon, 16 Apr 2018 17:32:35 GMT
Expires: Mon, 16 Apr 2018 19:32:35 GMT
Last-Modified: Mon, 13 Nov 2017 20:19:12 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14597
Age: 5892
Cache-Control: public, max-age=7200
Alt-Svc: hq=":443"; ma=2592000; quic=51303432; quic=51303431; quic=51303339; quic=51303335,quic=":443"; ma=2592000; v="42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14597
Md5:    6199bd5ef36ff16dd8c35a2abdb5991c
Sha1:   beb16561dd55ab5896b230c5a116a5d819e86b34
Sha256: a3d61ef9e80a01a794fd7c2769720f2fd0e15d0458236e8e0edd411560171879
                                        
                                            GET /agencies/1/advertisers/242/audience.js HTTP/1.1 
Host: cdn.pixlads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         104.17.178.122
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 16 Apr 2018 19:10:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d9999c9a7d86435be56db63ae5dcb1adc1523905847; expires=Tue, 16-Apr-19 19:10:47 GMT; path=/; domain=.pixlads.com; HttpOnly
Cf-Bgj: minify
Etag: W/"7f48fe7f650386fbfe518f3c18e9acd0"
Last-Modified: Wed, 31 Jan 2018 14:27:18 GMT
Via: 1.1 4a9ac43e4d0c58ce6ba2f4a2b17485e5.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 2fw73zTLs2B1mniz-1Ki1mzQpusAPLvUkXRd-i82sVKb28oNOdIrMA==
X-Cache: Miss from cloudfront
x-amz-version-id: TBleO9_GCgrx4AzcUaz02AlFPGfgb.A1
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Mon, 16 Apr 2018 23:10:47 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 40c8f437bd3542af-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1805
Md5:    7338f7a783c14c20bb5fa13d1be1697b
Sha1:   7d9e75df74469997f19a7790f60d60f2d1607950
Sha256: 8cb4bd4a236424c06e3e5906fcc677c844d36b4f5b9c48364d662cef751bca5e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gtm/js?id=GTM-5ND528X&cid=2032690166.1523905849 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Mon, 16 Apr 2018 19:10:49 GMT
Expires: Mon, 16 Apr 2018 19:10:49 GMT
Cache-Control: private, max-age=900
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 1; mode=block
Alt-Svc: hq=":443"; ma=2592000; quic=51303432; quic=51303431; quic=51303339; quic=51303335,quic=":443"; ma=2592000; v="42,41,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   15941
Md5:    4fddda191e03f2fb47a4c45c0362f818
Sha1:   9b1e1acfb20ab2978104634b4be5bab053599fa3
Sha256: 9110c0fa2b0039b334313169cf1a05295bd4ed0d429b159a130c31fb1103e006
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=159891
Date: Mon, 16 Apr 2018 19:10:49 GMT
Etag: "5ad4a305-138"
Expires: Wed, 18 Apr 2018 15:32:07 GMT
Last-Modified: Mon, 16 Apr 2018 13:20:05 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 312


--- Additional Info ---
Magic:  data
Size:   312
Md5:    ee37902a25124067aa68ad02d0ead431
Sha1:   a20606004fe66602b663c4d1c89d04b0f201b69a
Sha256: c76b00a3ee500c65889420306bb0f526e5871b672c6b5df28bd49648675fb224
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=168785
Date: Mon, 16 Apr 2018 19:10:49 GMT
Etag: "5ad4d43c-1d7"
Expires: Wed, 18 Apr 2018 17:41:12 GMT
Last-Modified: Mon, 16 Apr 2018 16:50:04 GMT
Server: ECS (arn/469D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c474a4f88a43058d08e078934c1f6a0d
Sha1:   2e46d348654c2657acf9354ef246ab68e7a7c732
Sha256: ded1abd6be9c493dc31f8e75edee05b990c853575162ec78c0f9aa3c9fc2e40e
                                        
                                            GET /r/collect?v=1&_v=j66&a=146450710&t=pageview&_s=1&dl=https%3A%2F%2Fapp.fixmestick.com%2Faccount%2Flogin%2F%3Fnext%3D%2Fscans%2F%253Femail%253Dmichaelccady%2540yahoo.com%2526campaign%253DEMAIL-MALWARE-DETECTED%2526utm_source%253Dtransactional%2526utm_medium%253Demail%2526utm_campaign%253Dtransactional-malware-detected%2526utm_content%253Dportal%2526utm_term%253Dview-scan-results%2526utm_medium%253Demail%2526utm_source%253Dtransactional%2526utm_campaign%253Dmandrill-first-scan-malware-detected&ul=en-us&de=UTF-8&dt=FixMeStick%20%7C%20Log%20in&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=KGBAAAQCQ~&jid=276175881&gjid=1360933731&cid=2032690166.1523905849&tid=UA-25863131-1&_gid=1563657498.1523905849&_r=1&z=1673369390 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         172.217.20.46
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-25863131-1&cid=2032690166.1523905849&jid=276175881&_gid=1563657498.1523905849&gjid=1360933731&_v=j66&z=1673369390
Access-Control-Allow-Origin: *
Date: Mon, 16 Apr 2018 19:10:49 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 419
Alt-Svc: hq=":443"; ma=2592000; quic=51303432; quic=51303431; quic=51303339; quic=51303335,quic=":443"; ma=2592000; v="42,41,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   419
Md5:    5e90445b3dc5011808ae078acb7470c8
Sha1:   98cf3d5bd63ccbce776047a0a98184c0b2cd0674
Sha256: 10f88d0fafe1885cb7e48c5dbf5f21e74fd73aeda30c567beb4ca6537c3ca179
                                        
                                            GET /seg?add_code=pixl-prod-adv-segment-242&member=1908&t=2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         185.33.223.204
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.13.4
Date: Mon, 16 Apr 2018 19:10:51 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd_code%3Dpixl-prod-adv-segment-242%26member%3D1908%26t%3D2
AN-X-Request-Uuid: 676d4682-56a9-41f4-9dee-cc754e86a5cc
Set-Cookie: sess=1; Path=/; Max-Age=86400; Expires=Tue, 17-Apr-2018 19:10:51 GMT; Domain=.adnxs.com; HttpOnly uuid2=4946621019682035236; Path=/; Max-Age=7776000; Expires=Sun, 15-Jul-2018 19:10:51 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 319.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.223.135:80


--- Additional Info ---
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:49 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    30fe98a9c35ca223cde943b75347c411
Sha1:   88bb2d6f0a1a6debc2259ac1046f96addd682d17
Sha256: c92b0a4f8697ebd4ffdf353536b58d7d33ee9a0237d865883ce8633b0bce92a9
                                        
                                            GET /bounce?%2Fseg%3Fadd_code%3Dpixl-prod-adv-segment-242%26member%3D1908%26t%3D2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected
Cookie: sess=1; uuid2=4946621019682035236

                                         
                                         185.33.223.204
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.13.4
Date: Mon, 16 Apr 2018 19:10:51 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 3289ccd2-9e2c-450b-851a-d0fe20609c62
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2In?g7?xv!]tbPl84R=9'G/2!@Db3$XexK; Path=/; Max-Age=7776000; Expires=Sun, 15-Jul-2018 19:10:51 GMT; Domain=.adnxs.com; HttpOnly sess=1; Path=/; Max-Age=86400; Expires=Tue, 17-Apr-2018 19:10:51 GMT; Domain=.adnxs.com; HttpOnly uuid2=4946621019682035236; Path=/; Max-Age=7776000; Expires=Sun, 15-Jul-2018 19:10:51 GMT; Domain=.adnxs.com; HttpOnly
X-Proxy-Origin: 77.40.129.123; 77.40.129.123; 319.bm-nginx-loadbalancer.mgmt.ams1; *.adnxs.com; 185.33.220.47:80


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-25863131-1&cid=2032690166.1523905849&jid=276175881&_gid=1563657498.1523905849&gjid=1360933731&_v=j66&z=1673369390 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         74.125.205.157
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25863131-1&cid=2032690166.1523905849&jid=276175881&_v=j66&z=1673369390
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Mon, 16 Apr 2018 19:10:49 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 366
Alt-Svc: hq=":443"; ma=2592000; quic=51303432; quic=51303431; quic=51303339; quic=51303335,quic=":443"; ma=2592000; v="42,41,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   366
Md5:    fedb7fe5ac2632786222555a1dca8647
Sha1:   cf2395a93d6c43f7af7ab0f6044c04c272c10bc2
Sha256: 1bb621f83df0c9aee8211803ef4e943392dde618c60a27ef1bc6af7839d6eee1
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:49 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    3bb01f71269bd52917935b5d7ae15c99
Sha1:   c92fe913c767c5f5f7f1e892bd3c7c6a6be461d2
Sha256: 5e08ff3a3b95d8becca4a2e3cc0eae60239a6139cd8e33c43267b0890c4eafe7
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.12.2
Content-Length: 1391
Content-Transfer-Encoding: binary
Cache-Control: max-age=313581, public, no-transform, must-revalidate
Last-Modified: Fri, 13 Apr 2018 10:15:41 GMT
Expires: Fri, 20 Apr 2018 10:15:41 GMT
Date: Mon, 16 Apr 2018 19:10:49 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1391
Md5:    aff4995cef4146f45105debe31bd0e7c
Sha1:   ae8dbbc05d9aa4e78ecd8c28be908675512abc6a
Sha256: 335476ba71f77df7dc9b11c34d9a00d6cdb1ffdc48b46edeb9c84bf462ac8d31
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: app.fixmestick.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; csrftoken=lKmGDIXWky2JZ9HzKaKsyVFtYvnfpqUKtd1KF4bYcdQkgJT8his8nbZ1SxorWRXi; _ga=GA1.2.2032690166.1523905849; _gid=GA1.2.1563657498.1523905849

                                         
                                         69.164.194.87
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Mon, 16 Apr 2018 19:10:49 GMT
Content-Length: 0
Connection: keep-alive
Location: /static/img/favicon1.png
Content-Language: en-us
Vary: Accept-Language,Cookie
X-Frame-Options: SAMEORIGIN
Set-Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; expires=Mon, 30-Apr-2018 19:10:49 GMT; httponly; Max-Age=1209600; Path=/


--- Additional Info ---
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25863131-1&cid=2032690166.1523905849&jid=276175881&_v=j66&z=1673369390 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         172.217.20.36
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Mon, 16 Apr 2018 19:10:50 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25863131-1&cid=2032690166.1523905849&jid=276175881&_v=j66&z=1673369390&slf_rd=1&random=3139223667
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 0
X-XSS-Protection: 1; mode=block
Alt-Svc: hq=":443"; ma=2592000; quic=51303432; quic=51303431; quic=51303339; quic=51303335,quic=":443"; ma=2592000; v="42,41,39,35"


--- Additional Info ---
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 16 Apr 2018 19:10:50 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    43100650c0cda492e49c2d439a6a6c1f
Sha1:   caa3a8c4dfdf27a807af9bd0f95b8866d83cb5a0
Sha256: 85aa470e3d314fee850dc62e4be8fbfb91a3dd165bcbf5098746a3ad3598be28
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25863131-1&cid=2032690166.1523905849&jid=276175881&_v=j66&z=1673369390&slf_rd=1&random=3139223667 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://app.fixmestick.com/account/login/?next=/scans/%3Femail%3Dmichaelccady%40yahoo.com%26campaign%3DEMAIL-MALWARE-DETECTED%26utm_source%3Dtransactional%26utm_medium%3Demail%26utm_campaign%3Dtransactional-malware-detected%26utm_content%3Dportal%26utm_term%3Dview-scan-results%26utm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dmandrill-first-scan-malware-detected

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Mon, 16 Apr 2018 19:10:50 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 1; mode=block
Alt-Svc: hq=":443"; ma=2592000; quic=51303432; quic=51303431; quic=51303339; quic=51303335,quic=":443"; ma=2592000; v="42,41,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: app.fixmestick.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; csrftoken=lKmGDIXWky2JZ9HzKaKsyVFtYvnfpqUKtd1KF4bYcdQkgJT8his8nbZ1SxorWRXi; _ga=GA1.2.2032690166.1523905849; _gid=GA1.2.1563657498.1523905849; _gat=1

                                         
                                         69.164.194.87
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Mon, 16 Apr 2018 19:10:49 GMT
Content-Length: 0
Connection: keep-alive
Location: /static/img/favicon1.png
Content-Language: en-us
Vary: Accept-Language,Cookie
X-Frame-Options: SAMEORIGIN
Set-Cookie: sessionid=qh76ncbuxxvx0xjpzubujygan6d81kx8; expires=Mon, 30-Apr-2018 19:10:49 GMT; httponly; Max-Age=1209600; Path=/


--- Additional Info ---