Overview

URL hairtease.com/dxx
IP209.59.186.80
ASNAS32244 Liquid Web, Inc.
Location United States
Report completed2018-12-08 12:08:36 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-12-08 2 hairtease.com/dxx Malware
2018-12-08 2 www.hairtease.com/ Malware
2018-12-08 2 www.hairtease.com/customer/account/login/ Malware
2018-12-08 2 www.hairtease.com/js/lib/ccard.js Malware
2018-12-08 2 www.hairtease.com/js/scriptaculous/builder.js Malware
2018-12-08 2 www.hairtease.com/js/prototype/validation.js Malware
2018-12-08 2 ribinski.us/redirect_base/redirect.js Malware
2018-12-08 2 jscontroller.stream/lib/lib.js Malware
2018-12-08 2 www.hairtease.com/js/scriptaculous/effects.js Malware
2018-12-08 2 www.hairtease.com/js/scriptaculous/dragdrop.js Malware
2018-12-08 2 www.hairtease.com/js/scriptaculous/slider.js Malware
2018-12-08 2 alemoney.xyz/js/stat.js Malware
2018-12-08 2 www.hairtease.com/js/scriptaculous/controls.js Malware
2018-12-08 2 www.hairtease.com/js/varien/js.js Malware
2018-12-08 2 www.hairtease.com/js/prototype/prototype.js Malware
2018-12-08 2 www.hairtease.com/js/varien/form.js Malware
2018-12-08 2 www.hairtease.com/js/varien/menu.js Malware
2018-12-08 2 www.hairtease.com/js/mage/translate.js Malware
2018-12-08 2 www.hairtease.com/js/mage/cookies.js Malware
2018-12-08 2 www.hairtease.com/js/tbt/rewardssocial/facebook/like/reward.js Malware
2018-12-08 2 www.hairtease.com/skin/frontend/enterprise/default/js/scripts.js Malware
2018-12-08 2 www.hairtease.com/skin/frontend/enterprise/hairtease/js/superfish.js Malware
2018-12-08 2 www.hairtease.com/skin/frontend/enterprise/hairtease/js/enterprise/cataloge (...) Malware
2018-12-08 2 www.hairtease.com/skin/frontend/enterprise/hairtease/js/jquery-1.7.2.min.js Malware
2018-12-08 2 www.hairtease.com/skin/frontend/enterprise/hairtease/js/jquery-ui-1.8.21.min.js Malware
2018-12-08 2 camillesanz.com/lib/status.js Malware
2018-12-08 2 www.camillesanz.com/ Malware
2018-12-08 2 ribinski.us/redirect_base/redirect.js Malware
2018-12-08 2 www.alemoney.xyz/js/stat.js?from=@ Malware
2018-12-08 2 siteverification.online/lib/info.js Malware
2018-12-08 2 melissatgmt.us/redirect_base/redirect.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 209.59.186.80

Date UQ / IDS / BL URL IP
2018-12-16 16:48:27 +0100
0 - 0 - 31 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-16 09:50:39 +0100
0 - 0 - 30 hairtease.com/customer/account 209.59.186.80
2018-12-16 01:51:07 +0100
0 - 1 - 32 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-15 16:36:10 +0100
0 - 0 - 31 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-03 03:34:53 +0100
0 - 0 - 32 hairtease.com/news 209.59.186.80
2018-06-11 08:49:43 +0200
0 - 0 - 32 hairtease.com/details/dropbox/ 209.59.186.80
2018-06-11 08:48:54 +0200
0 - 0 - 28 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-06-11 08:22:51 +0200
0 - 1 - 31 hairtease.com/details/dropbox 209.59.186.80
2018-05-17 00:41:07 +0200
0 - 0 - 29 hairtease.com/ 209.59.186.80
2018-05-16 02:20:15 +0200
0 - 0 - 28 hairtease.com/ 209.59.186.80

Last 10 reports on ASN: AS32244 Liquid Web, Inc.

Date UQ / IDS / BL URL IP
2019-02-18 23:54:26 +0100
3 - 1 - 0 outlook-bb2.ddns.ms/ 67.225.140.236
2019-02-18 22:55:33 +0100
0 - 0 - 1 www.desktop-xp.com/files/funnycars.exe 69.16.230.43
2019-02-18 22:31:18 +0100
0 - 0 - 0 www.focusinclined.com/ 209.59.184.251
2019-02-18 21:32:44 +0100
0 - 0 - 1 constech-rak.com/g/w/0b56e62ccc51e3b63cb2e2cd (...) 67.225.129.56
2019-02-18 21:21:48 +0100
0 - 2 - 0 www.enkord.com/download/clayside_101.exe 72.52.209.1
2019-02-18 20:59:24 +0100
0 - 0 - 1 static.bicdn.com/installers/5/7/7Zip_download (...) 67.227.226.240
2019-02-18 20:53:28 +0100
0 - 0 - 1 static.bicdn.com/installers/c/1/7Zip_download (...) 67.227.226.240
2019-02-18 20:29:48 +0100
0 - 1 - 0 www.unistal.com/demo-downloads/QuickRecoveryD (...) 67.225.178.32
2019-02-18 20:12:15 +0100
0 - 0 - 0 hlunitedway.org/wp-admin/admin-ajax.php 69.167.154.48
2019-02-18 19:28:39 +0100
0 - 1 - 0 www.windowsdatarecovery.unistal.com/pad-setup (...) 67.225.178.32

Last 10 reports on domain: hairtease.com

Date UQ / IDS / BL URL IP
2018-12-16 16:48:27 +0100
0 - 0 - 31 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-16 09:50:39 +0100
0 - 0 - 30 hairtease.com/customer/account 209.59.186.80
2018-12-16 01:51:07 +0100
0 - 1 - 32 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-15 16:36:10 +0100
0 - 0 - 31 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-03 03:34:53 +0100
0 - 0 - 32 hairtease.com/news 209.59.186.80
2018-06-11 08:49:43 +0200
0 - 0 - 32 hairtease.com/details/dropbox/ 209.59.186.80
2018-06-11 08:48:54 +0200
0 - 0 - 28 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-06-11 08:22:51 +0200
0 - 1 - 31 hairtease.com/details/dropbox 209.59.186.80
2018-05-17 00:41:07 +0200
0 - 0 - 29 hairtease.com/ 209.59.186.80
2018-05-16 02:20:15 +0200
0 - 0 - 28 hairtease.com/ 209.59.186.80


JavaScript

Executed Scripts (33)


Executed Evals (1)

#1 JavaScript::Eval (size: 867, repeated: 1) - SHA256: 7fe1c32c63ec597d64d57601fbaa73fde647e1776a8bc1df7ef7dbf34c4436da

                                        FacebookLikeReward = Class.create();
FacebookLikeReward.prototype = {
    initialize: function(base_url, msg_elem, like_reward_key, loading_elem) {
        this.base_url = base_url;
        this.msg_elem = msg_elem;
        this.like_reward_key = like_reward_key;
        this.loading_elem = loading_elem
    },
    onLike: function() {
        this.startLoading();
        new Ajax.Request(this.base_url, {
            parameters: {
                'page_key': this.like_reward_key,
                'action': 'like'
            },
            method: 'post',
            onComplete: this.onLikeResponse.bind(this)
        })
    },
    onUnLike: function() {
        this.startLoading();
        new Ajax.Request(this.base_url, {
            parameters: {
                'page_key': this.like_reward_key,
                'action': 'unlike'
            },
            method: 'post',
            onComplete: this.onLikeResponse.bind(this)
        })
    },
    onLikeResponse: function(transport) {
        $(this.msg_elem).update(transport.responseText);
        this.stopLoading()
    },
    startLoading: function() {
        $(this.msg_elem).update("");
        $(this.loading_elem).show()
    },
    stopLoading: function() {
        $(this.loading_elem).hide()
    }
}
                                    

Executed Writes (0)



HTTP Transactions (57)


Request Response
                                        
                                            GET /dxx HTTP/1.1 
Host: hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         209.59.186.80
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 08 Dec 2018 11:08:02 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
X-Powered-By: PHP/5.6.17
Location: http://www.hairtease.com/
Content-Length: 0
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         209.59.186.80
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 08 Dec 2018 11:08:03 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
X-Powered-By: PHP/5.6.17
Set-Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; expires=Sat, 08-Dec-2018 12:08:03 GMT; Max-Age=3600; path=/; domain=www.hairtease.com; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: http://www.hairtease.com/customer/account/login/
Content-Length: 0
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /customer/account/login/ HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 08 Dec 2018 11:08:03 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
X-Powered-By: PHP/5.6.17
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; expires=Sat, 08-Dec-2018 12:08:03 GMT; Max-Age=3600; path=/; domain=www.hairtease.com; httponly
Login-Required: true
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   20393
Md5:    05a60338dbb4bb31fd0880c74190a612
Sha1:   5205fd75122fe9c050e52383eebc95972938a302
Sha256: 225ed25c9e1611d006b0bcd68600b6d9f1c582113cb2d0565d442b8ae1165723

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/default/css/rewards/catalog.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:51:14 GMT
Etag: "9a088a-183-4bef4d5bbe080"
Accept-Ranges: bytes
Content-Length: 387
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   387
Md5:    2ca01bea77bf9394f0de535e84dbd16a
Sha1:   e08d2444816585e9e3790aa558edb94e697ff391
Sha256: 9143e200770f6edfb6d8ac2c10a3530db02db0fff814fdf7a7275c7f91296830
                                        
                                            GET /skin/frontend/enterprise/hairtease/css/superfish.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Mon, 30 Jul 2012 18:25:59 GMT
Etag: "9a094c-574-4c610317e9bc0"
Accept-Ranges: bytes
Content-Length: 1396
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text
Size:   1396
Md5:    90f81d7b1b70a68bb044e666155cde54
Sha1:   2ada85c67fea792d5427304f5713d1195fdc8c70
Sha256: f68b809da800a99e571a98084a9750e5b01ea1ad00508a9cc6b9036b44abccba
                                        
                                            GET /skin/frontend/enterprise/hairtease/css/jquery.ui.core.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 05 Jun 2012 21:06:10 GMT
Etag: "9a0949-526-4c1c005153480"
Accept-Ranges: bytes
Content-Length: 1318
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   1318
Md5:    797382295720fbc48772e43982a44f8d
Sha1:   22661dd8c07c04419035e0a260977e126850ddcd
Sha256: f9a6d9240f020720ed986b1e7726cfdc11d36e32b9cbf76a28a666984c7eb16e
                                        
                                            GET /skin/frontend/enterprise/default/css/widgets.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9a0889-243e-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 9278
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   9278
Md5:    4f3e511e139cdb11df9402af0144b83b
Sha1:   f212ffd5b831210ba9a352b727945248389f0f34
Sha256: f8bc2018bb04a41915560822755b2bc4ee9e0b88c41e3c6465549d03fe7b00b0
                                        
                                            GET /skin/frontend/enterprise/default/css/rewards/skin.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:51:14 GMT
Etag: "9a088b-d34-4bef4d5bbe080"
Accept-Ranges: bytes
Content-Length: 3380
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   3380
Md5:    b8a3001a6356dcf19e5864c708d054e6
Sha1:   5aeaa1129fc9bca6c860bfab7756c51809a7a97c
Sha256: 5ee28b790ad0665fc56702f4f008c8e7c0d44c56474b978484b6868e3dcd693d
                                        
                                            GET /skin/frontend/base/default/css/rewardssocial/facebook/like.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:51:20 GMT
Etag: "9a0842-35f-4bef4d6176e00"
Accept-Ranges: bytes
Content-Length: 863
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   863
Md5:    aa4278de6177f9f56baa9a0ab854ad73
Sha1:   272ae8b3a861135b9844385aba33f7aee3d340dc
Sha256: a4a624024d653de260bf44856a272b8ffe2ceed5dad60aa865d7e63d688e5d6f
                                        
                                            GET /skin/frontend/enterprise/default/css/print.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9a0886-597-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 1431
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   1431
Md5:    249c7cb6a48f5224d4f4387b59b5769e
Sha1:   dca738c75e3f7616f64e6364665c1ab714775d80
Sha256: 241b039ee08d18c8bf2767e33d8eba08f521210c9adb0b6daef743e50e1fe38c
                                        
                                            GET /js/lib/ccard.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980510-2eb-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 747
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   747
Md5:    d3e849be0977d53de4af933b40293ff6
Sha1:   f6d83810da46ce18315e04b19c8011bab2d9620e
Sha256: 71efc700b9091f1449e2c952536cf7281aded3a30a96e44be5d06e606e2904bd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 04 Dec 2018 18:46:43 GMT
Etag: 2F2EB67205E44427FC53734438B85C0523E57BBF
X-OCSP-Responder-ID: (null)
Content-Length: 279
Cache-Control: public, no-transform, must-revalidate, max-age=286064
Expires: Tue, 11 Dec 2018 18:35:48 GMT
Date: Sat, 08 Dec 2018 11:08:04 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   279
Md5:    ce99d50f8370d66ebb9705c52c7b149a
Sha1:   2f2eb67205e44427fc53734438b85c0523e57bbf
Sha256: 41528fe5a78688edb74bb06457e4328113a9ca08ea5545b5548ee391dba45d9d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 04 Dec 2018 14:14:26 GMT
Etag: 1B63758656BF969062BB94C461638C555B82171D
X-OCSP-Responder-ID: (null)
Content-Length: 312
Cache-Control: public, no-transform, must-revalidate, max-age=269766
Expires: Tue, 11 Dec 2018 14:04:10 GMT
Date: Sat, 08 Dec 2018 11:08:04 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   312
Md5:    df5c3723129a185368c4e76f3f221b4d
Sha1:   1b63758656bf969062bb94c461638c555b82171d
Sha256: 720dc90aa54db2b457c41f13325e9ecfac59b04f82235e22b23e61b217ed96bd
                                        
                                            GET /js/scriptaculous/builder.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980623-1288-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 4744
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   4744
Md5:    1174f6fc34ca5d54ba10b0c719386e7c
Sha1:   08b8e5917b089105dad96850c3bf99b7183f292f
Sha256: 8a2e4f92cba8509d0d26255bb950e4a53345fad6c1b38da13448b9c7a561832a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/prototype/validation.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "98054b-913b-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 37179
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   37179
Md5:    594c40f2438b06dcc07079786d5c38c1
Sha1:   6c558d8ea71fec7207bda971e1bbe3076f863346
Sha256: b4ff90314d4d3ef7b1f5eb112f58b805e9121e143056cdd5f69fc3481f32f6bf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /redirect_base/redirect.js HTTP/1.1 
Host: ribinski.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         145.249.104.226
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 08 Dec 2018 11:06:37 GMT
Server: Apache/2.4.7 (Ubuntu)
Content-Length: 299
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   299
Md5:    59214fdf71094819c9beac4f9e8ed668
Sha1:   04d97230d3632023a56fa7f9fa8bef3e257db116
Sha256: 070b1d56f24e7b7cdc3869d916633b3d7c8b8234c917e6b5bc8b67e39a631ae9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /lib/lib.js HTTP/1.1 
Host: jscontroller.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         104.27.153.252
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d8561015370e0e124259be034a96718381544267284; expires=Sun, 08-Dec-19 11:08:04 GMT; path=/; domain=.jscontroller.stream; HttpOnly
CF-Cache-Status: HIT
Expires: Sat, 08 Dec 2018 15:08:04 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 485ec5a0d92f5b21-HEL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "6CC4842CFF9290FDD58D682D3432D4F99C14C0977C1C917DEB8AB7B609638343"
Last-Modified: Wed, 05 Dec 2018 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=26587
Expires: Sat, 08 Dec 2018 18:31:11 GMT
Date: Sat, 08 Dec 2018 11:08:04 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    60e2e12ddcba3a6c47f4202243aa127d
Sha1:   a4a71f9bfb500243337383332f6182a238ef0a3b
Sha256: 6cc4842cff9290fdd58d682d3432d4f99c14c0977c1c917deb8ab7b609638343
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.121
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Fri, 07 Dec 2018 23:28:09 GMT
Etag: "b0673c06a463ddc5ece501d4b8bf3e18b2a45e88"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=26809
Expires: Sat, 08 Dec 2018 18:34:53 GMT
Date: Sat, 08 Dec 2018 11:08:04 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    83a46a919e63bc54e63f62ce683c61bc
Sha1:   b0673c06a463ddc5ece501d4b8bf3e18b2a45e88
Sha256: cfc359148ff9fa61f7c13acfbbb1365f2e9a1cc5c81eb2e8ade88bea4537252d
                                        
                                            GET /skin/frontend/enterprise/hairtease/css/styles.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Fri, 24 Aug 2012 01:56:22 GMT
Etag: "9a094b-2010f-4c7f94861dd80"
Accept-Ranges: bytes
Content-Length: 131343
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   131343
Md5:    d58c723a8d179d00b95a1c732bc12eae
Sha1:   5abfdd748d085f704ea89acb4d40c8a7007017b8
Sha256: 65f4793dd037e2abced3552661c8075e493193fc676969680906d153ad08024c
                                        
                                            GET /js/scriptaculous/effects.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "98062e-9759-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 38745
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   38745
Md5:    d795089f95a22306cca9b337c439c65a
Sha1:   5dcd6ae86dec74e0e481eca75cc12836933416f9
Sha256: 328cab78ebb3e3c4e94e23b87630a56ae7ad2db686ecd1d69f93176318b6f82d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/scriptaculous/dragdrop.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "98062d-79d8-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 31192
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   31192
Md5:    c824212f4d19277be0fd11a87a9cd0fd
Sha1:   4656690216c2f49495f05f86dc1eaa88dbd87b72
Sha256: 2cf9e8530039881a412585c1e473c6db2ad43961c5dbdccaf0a21384ce7612c0

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/scriptaculous/slider.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980630-285b-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 10331
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   10331
Md5:    6043f96a71d2685fecd02e2ab99e84d9
Sha1:   cfe4b5b08bba43c94897082ea3ae62329bccca40
Sha256: 727ee107a8036e193fef85e1faf9e1eb145d25d03a4aa73d6db7c5ad71118797

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/stat.js HTTP/1.1 
Host: alemoney.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         192.64.119.193
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Sat, 08 Dec 2018 11:08:04 GMT
Content-Length: 64
Connection: keep-alive
Location: http://www.alemoney.xyz/js/stat.js?from=@
X-Served-By: Namecheap URL Forward


--- Additional Info ---
Magic:  ASCII text
Size:   64
Md5:    02a253a5d7790ea17317c6ed0be1ac7e
Sha1:   c342451a77abc081fd818a347d73f9219a5731fe
Sha256: 0acbd61e151ada67ad651a3402d826093a02e4af42d6d90e9309749ffc4f5a46

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/scriptaculous/controls.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "98062c-87ed-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 34797
Keep-Alive: timeout=2, max=495
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   34797
Md5:    8c414e1787c0ac9f10b16b252361c8b2
Sha1:   30c994521024e01fcbceb82d58cb9b6b4d4c7e62
Sha256: 394ee4643d5c3fc7d0a671052576e3e7250e6cbccc407772679a359ce59f2794

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/varien/js.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9807b5-474a-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 18250
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   18250
Md5:    64b4467d5f84c74aba5ee1b04c8c0439
Sha1:   dbdff52f359b5311bb81d0cbf771fdb7f6a20667
Sha256: 56b4e3aee923267dd69ac2880f5d486221eaa242024ab1b0e39920673340a01e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/prototype/prototype.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:04 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980548-1fba8-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 129960
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text
Size:   129960
Md5:    d23187d61f796d39487acbe34af031bc
Sha1:   b6becfd5ffb6bc2394bdaa6faef69f1af11d253a
Sha256: 6d5383343f4f8707ff75666831938aae4fa8b02158d5004315a6ff310407b123

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/varien/form.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9807b3-2dd4-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 11732
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   11732
Md5:    fa8cf300b47fb1304ace35d47324ac50
Sha1:   52afd3ef2b5940601ccb2e138e36e2a7e4e42370
Sha256: 682f44aeb1cead0edd863b124dd3d4bb75a07b9e105f305a46e09dbfa7f49518

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/varien/menu.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9807b6-115c-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 4444
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   4444
Md5:    1f238fb3dafef964e3811885b5b26699
Sha1:   2fc5dfff70067ecd314ca5aab967968e02ed9482
Sha256: 744c478d0f83427805e40cb3a13592a6ad0a5d87c76b3a95195691545b7a17fa

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/mage/translate.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980517-64f-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 1615
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   1615
Md5:    7672345764408a2b5371455082252993
Sha1:   c2e3b59a45c080af07827056eaaf16488a8be523
Sha256: 616c1dd6b02f1a311ab523d284c15cb1589a3658bb1d1270dc051205848667ae

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/mage/cookies.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980516-a49-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 2633
Keep-Alive: timeout=2, max=494
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   2633
Md5:    40705e37223d44993c1557c44aa16337
Sha1:   22e028eec71024e9443821e070e656ad09abfc90
Sha256: c6e9cc7ab292c224c185b7cb93590e8756afd73de9cc879e7fac54f964a5c6f1

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/tbt/rewardssocial/facebook/like/reward.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:50:31 GMT
Etag: "98063d-36e-4bef4d32bbfc0"
Accept-Ranges: bytes
Content-Length: 878
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   878
Md5:    58337e8390575b764e9a84672e3be4f6
Sha1:   b2cfdcecaa7c905174affe85ec16e1941a5c9d6c
Sha256: a8a5f41256fd42f6c50e3a06fd54a4ae01fc3208c9dacaf86a266a870b78051f

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/default/js/scripts.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9a0944-6a0d-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 27149
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   27149
Md5:    014ba3e3009f49d61f7a646a7145eeb5
Sha1:   7c5115d4e52ac879b276e3ebb80a3cd5acdca2ab
Sha256: b8db5b80f0043eab627906d42e906cedf7058e7a31245e86fc7791ea9bc25f86

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/hairtease/js/superfish.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Fri, 27 Jul 2012 20:05:17 GMT
Etag: "9a097b-e82-4c5d53b185940"
Accept-Ranges: bytes
Content-Length: 3714
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text
Size:   3714
Md5:    8c8070ba6a911bae7047f29e383da334
Sha1:   b7b4fdd4a0aa451b888067ef4b69095cfb40dbf2
Sha256: 3e9fb74061133f9dc6c809fb777bdcdc8e02b6812ad5bf39aad5f6c69f1b96dd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/hairtease/js/enterprise/catalogevent.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Fri, 04 May 2012 21:06:22 GMT
Etag: "9a097c-c3c-4bf3c4ae04f80"
Accept-Ranges: bytes
Content-Length: 3132
Keep-Alive: timeout=2, max=493
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   3132
Md5:    278df4635c0e0d4526fb97890fb2e7c9
Sha1:   bbcb96dc66baa9868b335c9b3bd636bb1d4760b7
Sha256: d1cf23705fe1ef64928a590e48f0f541585df3e7f302907a0e551f14148535ad

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/base/default/css/rewards/skin.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/default/css/rewards/skin.css
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:51:02 GMT
Etag: "9a083d-14d2-4bef4d504c580"
Accept-Ranges: bytes
Content-Length: 5330
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   5330
Md5:    d886e0f9afaab3d2a7cebdddebbcaac8
Sha1:   84d868090f79907ed14a51af141219ced2b93c11
Sha256: cbb819920ad2f33bed48287fe9d750cd7dd2903fdf001b1e864848b82027bbc8
                                        
                                            GET /skin/frontend/enterprise/default/favicon.ico HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9a0885-47e-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    88733ee53676a47fc354a61c32516e82
Sha1:   a07b8eb3ff62a59ceee8e2b0d082b9e3ffc2317b
Sha256: ce2de4b3be943fd5414dc6f3190d332fc9f6369f5dfbf6366b00b261ed02a4cf
                                        
                                            GET /skin/frontend/enterprise/hairtease/js/jquery-1.7.2.min.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 19 Jun 2012 16:43:31 GMT
Etag: "9a0979-17278-4c2d5fb8d32c0"
Accept-Ranges: bytes
Content-Length: 94840
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines
Size:   94840
Md5:    b8d64d0bc142b3f670cc0611b0aebcae
Sha1:   abcd2ba13348f178b17141b445bc99f1917d47af
Sha256: 47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/hairtease/js/jquery-ui-1.8.21.min.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 08 Dec 2018 11:08:05 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 20 Jun 2012 22:43:46 GMT
Etag: "9a097a-3284b-4c2ef21bf4c80"
Accept-Ranges: bytes
Content-Length: 206923
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   206923
Md5:    03afe455536a9c44ad82cf1425e354b6
Sha1:   4d6a5f3a7e2ff4bcdabfcd3fef8b2e8e05197480
Sha256: da8edc2a2b29e48e48480a779d36a1eeef6ad155120bdd1b7eb36d4d8fadd32b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /lib/status.js HTTP/1.1 
Host: camillesanz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         213.186.33.17
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Set-Cookie: mediaplanBAK=R129296274; path=/; expires=Sat, 08-Dec-2018 12:14:58 GMT mediaplan=R3757050495; path=/; expires=Sat, 08-Dec-2018 12:13:58 GMT
Date: Sat, 08 Dec 2018 11:07:53 GMT
Transfer-Encoding: chunked
Server: Apache
X-Powered-By: PHP/5.6
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: https://www.camillesanz.com/lib/status.js
X-IPLB-Instance: 17522


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: www.camillesanz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: mediaplanBAK=R129294096; mediaplan=R3757050495

                                         
                                         213.186.33.17
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Set-Cookie: mediaplan=R3757050495; path=/; expires=Sat, 08-Dec-2018 12:14:23 GMT
Date: Sat, 08 Dec 2018 11:08:06 GMT
Server: Apache
X-Powered-By: PHP/5.6
Link: <http://www.camillesanz.com/wp-json/>; rel="https://api.w.org/", <https://wp.me/P81YM9-aK>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
X-IPLB-Instance: 5281


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   24489
Md5:    ba7d916f6a450fe6dd5ebc50a87eefe8
Sha1:   b71d83bf91da1e85baaab125eda3962dfe599285
Sha256: 353b88088973143b07c6ae07c794248c0c9a2b7311f337359aa2b5d20be7cdca

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /redirect_base/redirect.js HTTP/1.1 
Host: ribinski.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         145.249.104.226
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 08 Dec 2018 11:06:40 GMT
Server: Apache/2.4.7 (Ubuntu)
Content-Length: 299
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   299
Md5:    59214fdf71094819c9beac4f9e8ed668
Sha1:   04d97230d3632023a56fa7f9fa8bef3e257db116
Sha256: 070b1d56f24e7b7cdc3869d916633b3d7c8b8234c917e6b5bc8b67e39a631ae9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: status.rapidssl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=111954
Date: Sat, 08 Dec 2018 11:08:07 GMT
Etag: "5c099283-1d7"
Expires: Sun, 09 Dec 2018 18:14:01 GMT
Last-Modified: Thu, 06 Dec 2018 21:20:03 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d64b8ec97c49d1872fe46e2bc812c65e
Sha1:   b314a0c2b42e0eeeed653ca73931123ee23435f8
Sha256: 274f506618a137c456de18dc87b4ba278c21ffd299f377600323dcb1c4c2191a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=121777
Date: Sat, 08 Dec 2018 11:08:07 GMT
Etag: "5c0ac7ec-1d7"
Expires: Sun, 09 Dec 2018 20:57:44 GMT
Last-Modified: Fri, 07 Dec 2018 19:20:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6d465d2bd5be0f71cdfe3fe00db2aa94
Sha1:   e795b4dfe1fa683b42efda865cce7e09ff92421c
Sha256: 73761437e4c6a013911efa4a16373cc6e006ee34e3176a84bff26c64288d9e78
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/box-top-grey-320.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; setidd=1544267285662-658762392

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 08 Dec 2018 11:08:08 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 24 Apr 2012 23:40:50 GMT
Etag: "9a0956-bc5-4be7548e10480"
Accept-Ranges: bytes
Content-Length: 3013
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 320 x 16, 8-bit/color RGBA, non-interlaced
Size:   3013
Md5:    a28f27bc186d6efa3c98410487622c3f
Sha1:   a8c66230f1ec8bd4af9e0a5304727bcc0d4f209d
Sha256: 78c62ef349b224b855847fafcb8c28d8b47b457282ebf0f5bcf7afd0adf9e2b6
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/box-bot-grey-320.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; setidd=1544267285662-658762392

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 08 Dec 2018 11:08:08 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 25 Apr 2012 00:09:34 GMT
Etag: "9a0954-bd5-4be75afa32b80"
Accept-Ranges: bytes
Content-Length: 3029
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 320 x 6, 8-bit/color RGBA, interlaced
Size:   3029
Md5:    bea1e714023a039688954f9a9e68da20
Sha1:   3397c66d84cd94b4ec34042f6d5aa17c480dc34f
Sha256: 49f797102a80ad11b71f2e15676f45af91fd464f15af9a9b556e74beb5677f50
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/box-mid-grey-320.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; setidd=1544267285662-658762392

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 08 Dec 2018 11:08:08 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 25 Apr 2012 00:20:32 GMT
Etag: "9a0955-b22-4be75d6db7400"
Accept-Ranges: bytes
Content-Length: 2850
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  data
Size:   3785
Md5:    0cc8efbb8b896b5b860ae03884572a0a
Sha1:   0ada2b560a8877ba7a2beb7a7bd76ea85952e2d4
Sha256: 222ff7ad0a564dd06a17b969f20c372c29daf63744df9909139a892c1e7ec60c
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/btn-enter.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; setidd=1544267285662-658762392

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 08 Dec 2018 11:08:08 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 25 Apr 2012 00:38:21 GMT
Etag: "9a0958-14ca-4be7616931940"
Accept-Ranges: bytes
Content-Length: 5322
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 128 x 56, 8-bit/color RGBA, interlaced
Size:   5322
Md5:    c3014f10904a9aff9fbf421381bbf097
Sha1:   b34182b52407350bbb4a9e575bf23deae1b296b2
Sha256: 18f9cf8328dfa57959292208ad7ef8f42e56250536a4501271cf3691c3a7566e
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/btn-signup.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; setidd=1544267285662-658762392

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 08 Dec 2018 11:08:08 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 25 Apr 2012 16:44:38 GMT
Etag: "9a0959-1794-4be839645e980"
Accept-Ranges: bytes
Content-Length: 6036
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 128 x 56, 8-bit/color RGBA, interlaced
Size:   6036
Md5:    8d73f70798dd03625cce20babf46953c
Sha1:   67c7ef170b447bdaab27f9dbecf0323ed5ea01c7
Sha256: 0190ccc176be04ba2e5c8dc2d396f56700f08ca57df17241d27221eeec020d4a
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/logo-white.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; setidd=1544267285662-658762392

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 08 Dec 2018 11:08:08 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 24 Apr 2012 22:50:41 GMT
Etag: "9a0966-1881-4be7495875240"
Accept-Ranges: bytes
Content-Length: 6273
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 226 x 75, 8-bit/color RGBA, non-interlaced
Size:   6273
Md5:    6e16a1a54a180ba97860820feb669d3f
Sha1:   49f7c073e3ab0561246c6161aa7fe216d56c499f
Sha256: c760a2f207686cea01aa69382960d19673ec1dd4f348aa48236a934b110b996c
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/login-tile.jpg HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; setidd=1544267285662-658762392

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 08 Dec 2018 11:08:08 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 24 Apr 2012 23:04:34 GMT
Etag: "9a0965-38c5-4be74c72de480"
Accept-Ranges: bytes
Content-Length: 14533
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   14533
Md5:    16cb44a17ec4c39461c4baaf3c02a3d9
Sha1:   fea8e457dc9ea77488473a7f32c0d7aefd3cf43c
Sha256: ec9f973a16b3b3fdafeb8a20c6898411fb1dbe334a7dc3a7df2ba60430ba2c9d
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/login-bg.jpg HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=da6e68f72732a24425723d543f2bc3c6; setidd=1544267285662-658762392

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 08 Dec 2018 11:08:08 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 24 Apr 2012 22:50:41 GMT
Etag: "9a0964-22c1b-4be7495875240"
Accept-Ranges: bytes
Content-Length: 142363
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   142363
Md5:    4ac62f0a93a98fdcac9827fd92414127
Sha1:   b5621c6fb3a7b4a26786db10e83451d864009016
Sha256: 561fd7528826787342a94a63ec3b9a20b33ebe428278eee300dbb6d900e8223d
                                        
                                            GET /js/stat.js?from=@ HTTP/1.1 
Host: www.alemoney.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /mwRwD7 HTTP/1.1 
Host: mytokeasn2s.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /lib/info.js HTTP/1.1 
Host: siteverification.online
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /redirect_base/redirect.js HTTP/1.1 
Host: melissatgmt.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /mwRwD7 HTTP/1.1 
Host: mytokeasn2s.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---