Overview

URL hairtease.com/customer/account
IP209.59.186.80
ASNAS32244 Liquid Web, Inc.
Location United States
Report completed2018-12-16 09:50:39 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-12-16 2 hairtease.com/customer/account Malware
2018-12-16 2 www.hairtease.com/ Malware
2018-12-16 2 www.hairtease.com/customer/account/login/ Malware
2018-12-16 2 www.hairtease.com/js/lib/ccard.js Malware
2018-12-16 2 www.hairtease.com/js/scriptaculous/builder.js Malware
2018-12-16 2 www.hairtease.com/js/prototype/validation.js Malware
2018-12-16 2 jscontroller.stream/lib/lib.js Malware
2018-12-16 2 www.hairtease.com/js/scriptaculous/effects.js Malware
2018-12-16 2 www.hairtease.com/js/scriptaculous/dragdrop.js Malware
2018-12-16 2 www.hairtease.com/js/scriptaculous/slider.js Malware
2018-12-16 2 alemoney.xyz/js/stat.js Malware
2018-12-16 2 www.hairtease.com/js/scriptaculous/controls.js Malware
2018-12-16 2 www.hairtease.com/js/prototype/prototype.js Malware
2018-12-16 2 www.hairtease.com/js/varien/js.js Malware
2018-12-16 2 www.hairtease.com/js/varien/form.js Malware
2018-12-16 2 www.hairtease.com/js/mage/translate.js Malware
2018-12-16 2 www.hairtease.com/js/varien/menu.js Malware
2018-12-16 2 www.hairtease.com/js/mage/cookies.js Malware
2018-12-16 2 www.hairtease.com/js/tbt/rewardssocial/facebook/like/reward.js Malware
2018-12-16 2 www.hairtease.com/skin/frontend/enterprise/hairtease/js/superfish.js Malware
2018-12-16 2 www.hairtease.com/skin/frontend/enterprise/default/js/scripts.js Malware
2018-12-16 2 www.hairtease.com/skin/frontend/enterprise/hairtease/js/enterprise/cataloge (...) Malware
2018-12-16 2 www.hairtease.com/skin/frontend/enterprise/hairtease/js/jquery-1.7.2.min.js Malware
2018-12-16 2 www.hairtease.com/skin/frontend/enterprise/hairtease/js/jquery-ui-1.8.21.min.js Malware
2018-12-16 2 camillesanz.com/lib/status.js Malware
2018-12-16 2 www.camillesanz.com/ Malware
2018-12-16 2 bamblbee.store/ Malware
2018-12-16 2 siteverification.online/lib/info.js Malware
2018-12-16 2 oltratoke.ru/Yz7np9?frm=script Malware
2018-12-16 2 bamblbee.store/ Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 209.59.186.80

Date UQ / IDS / BL URL IP
2018-12-16 16:48:27 +0100
0 - 0 - 31 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-16 01:51:07 +0100
0 - 1 - 32 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-15 16:36:10 +0100
0 - 0 - 31 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-08 12:08:36 +0100
0 - 0 - 31 hairtease.com/dxx 209.59.186.80
2018-12-03 03:34:53 +0100
0 - 0 - 32 hairtease.com/news 209.59.186.80
2018-06-11 08:49:43 +0200
0 - 0 - 32 hairtease.com/details/dropbox/ 209.59.186.80
2018-06-11 08:48:54 +0200
0 - 0 - 28 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-06-11 08:22:51 +0200
0 - 1 - 31 hairtease.com/details/dropbox 209.59.186.80
2018-05-17 00:41:07 +0200
0 - 0 - 29 hairtease.com/ 209.59.186.80
2018-05-16 02:20:15 +0200
0 - 0 - 28 hairtease.com/ 209.59.186.80

Last 10 reports on ASN: AS32244 Liquid Web, Inc.

Date UQ / IDS / BL URL IP
2019-03-21 21:12:14 +0100
0 - 0 - 1 voiture.mynubiz.com/ 67.227.226.240
2019-03-21 20:31:17 +0100
0 - 0 - 1 https://cutupboys.com/ 209.59.173.80
2019-03-21 19:27:58 +0100
0 - 0 - 1 zombay.org/torrent/22679914 67.227.226.240
2019-03-21 19:26:52 +0100
0 - 1 - 1 www.datway.net/dwaynetcafe5/clntupdate15-04-2 (...) 209.59.188.68
2019-03-21 19:26:19 +0100
0 - 1 - 0 www.unistal.com/demo-downloads/QuickRecoveryD (...) 67.225.178.32
2019-03-21 19:08:21 +0100
0 - 0 - 0 stemcelltreatmentclinic.com/0CCD12333/%25%24% (...) 72.52.134.255
2019-03-21 18:45:26 +0100
0 - 0 - 1 static.bicdn.com/installers/0/6/7Zip_download (...) 67.227.226.240
2019-03-21 17:57:36 +0100
0 - 1 - 1 hotbin.com/07032013111.exe 72.52.254.105
2019-03-21 17:52:30 +0100
0 - 0 - 1 files.download1click.ws/BTB0612.exe 72.52.178.23
2019-03-21 17:49:58 +0100
0 - 0 - 3 usa-ssc1.com/xrf 72.52.235.44

Last 10 reports on domain: hairtease.com

Date UQ / IDS / BL URL IP
2018-12-16 16:48:27 +0100
0 - 0 - 31 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-16 01:51:07 +0100
0 - 1 - 32 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-15 16:36:10 +0100
0 - 0 - 31 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-12-08 12:08:36 +0100
0 - 0 - 31 hairtease.com/dxx 209.59.186.80
2018-12-03 03:34:53 +0100
0 - 0 - 32 hairtease.com/news 209.59.186.80
2018-06-11 08:49:43 +0200
0 - 0 - 32 hairtease.com/details/dropbox/ 209.59.186.80
2018-06-11 08:48:54 +0200
0 - 0 - 28 www.hairtease.com/customer/account/login/ 209.59.186.80
2018-06-11 08:22:51 +0200
0 - 1 - 31 hairtease.com/details/dropbox 209.59.186.80
2018-05-17 00:41:07 +0200
0 - 0 - 29 hairtease.com/ 209.59.186.80
2018-05-16 02:20:15 +0200
0 - 0 - 28 hairtease.com/ 209.59.186.80


JavaScript

Executed Scripts (33)


Executed Evals (1)

#1 JavaScript::Eval (size: 867, repeated: 1) - SHA256: 7fe1c32c63ec597d64d57601fbaa73fde647e1776a8bc1df7ef7dbf34c4436da

                                        FacebookLikeReward = Class.create();
FacebookLikeReward.prototype = {
    initialize: function(base_url, msg_elem, like_reward_key, loading_elem) {
        this.base_url = base_url;
        this.msg_elem = msg_elem;
        this.like_reward_key = like_reward_key;
        this.loading_elem = loading_elem
    },
    onLike: function() {
        this.startLoading();
        new Ajax.Request(this.base_url, {
            parameters: {
                'page_key': this.like_reward_key,
                'action': 'like'
            },
            method: 'post',
            onComplete: this.onLikeResponse.bind(this)
        })
    },
    onUnLike: function() {
        this.startLoading();
        new Ajax.Request(this.base_url, {
            parameters: {
                'page_key': this.like_reward_key,
                'action': 'unlike'
            },
            method: 'post',
            onComplete: this.onLikeResponse.bind(this)
        })
    },
    onLikeResponse: function(transport) {
        $(this.msg_elem).update(transport.responseText);
        this.stopLoading()
    },
    startLoading: function() {
        $(this.msg_elem).update("");
        $(this.loading_elem).show()
    },
    stopLoading: function() {
        $(this.loading_elem).hide()
    }
}
                                    

Executed Writes (0)



HTTP Transactions (55)


Request Response
                                        
                                            GET /customer/account HTTP/1.1 
Host: hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         209.59.186.80
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 16 Dec 2018 08:49:56 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
X-Powered-By: PHP/5.6.17
Location: http://www.hairtease.com/
Content-Length: 0
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         209.59.186.80
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 16 Dec 2018 08:49:57 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
X-Powered-By: PHP/5.6.17
Set-Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; expires=Sun, 16-Dec-2018 09:49:57 GMT; Max-Age=3600; path=/; domain=www.hairtease.com; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: http://www.hairtease.com/customer/account/login/
Content-Length: 0
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /customer/account/login/ HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 16 Dec 2018 08:49:57 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
X-Powered-By: PHP/5.6.17
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; expires=Sun, 16-Dec-2018 09:49:57 GMT; Max-Age=3600; path=/; domain=www.hairtease.com; httponly
Login-Required: true
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   20561
Md5:    dae6b8c4e4e089cf8baf5434c8cdd0f1
Sha1:   019e647dc90a10ac09ef4257db59dacfcd523158
Sha256: 65120ba6746461e8177eff30bc107e72145567f37f212f2e7137068093c75425

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/default/css/rewards/catalog.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 08:49:57 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:51:14 GMT
Etag: "9a088a-183-4bef4d5bbe080"
Accept-Ranges: bytes
Content-Length: 387
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   387
Md5:    2ca01bea77bf9394f0de535e84dbd16a
Sha1:   e08d2444816585e9e3790aa558edb94e697ff391
Sha256: 9143e200770f6edfb6d8ac2c10a3530db02db0fff814fdf7a7275c7f91296830
                                        
                                            GET /skin/frontend/enterprise/hairtease/css/superfish.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Mon, 30 Jul 2012 18:25:59 GMT
Etag: "9a094c-574-4c610317e9bc0"
Accept-Ranges: bytes
Content-Length: 1396
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text
Size:   1396
Md5:    90f81d7b1b70a68bb044e666155cde54
Sha1:   2ada85c67fea792d5427304f5713d1195fdc8c70
Sha256: f68b809da800a99e571a98084a9750e5b01ea1ad00508a9cc6b9036b44abccba
                                        
                                            GET /skin/frontend/enterprise/default/css/widgets.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9a0889-243e-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 9278
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   9278
Md5:    4f3e511e139cdb11df9402af0144b83b
Sha1:   f212ffd5b831210ba9a352b727945248389f0f34
Sha256: f8bc2018bb04a41915560822755b2bc4ee9e0b88c41e3c6465549d03fe7b00b0
                                        
                                            GET /skin/frontend/enterprise/hairtease/css/jquery.ui.core.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 05 Jun 2012 21:06:10 GMT
Etag: "9a0949-526-4c1c005153480"
Accept-Ranges: bytes
Content-Length: 1318
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   1318
Md5:    797382295720fbc48772e43982a44f8d
Sha1:   22661dd8c07c04419035e0a260977e126850ddcd
Sha256: f9a6d9240f020720ed986b1e7726cfdc11d36e32b9cbf76a28a666984c7eb16e
                                        
                                            GET /skin/frontend/enterprise/default/css/rewards/skin.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:51:14 GMT
Etag: "9a088b-d34-4bef4d5bbe080"
Accept-Ranges: bytes
Content-Length: 3380
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   3380
Md5:    b8a3001a6356dcf19e5864c708d054e6
Sha1:   5aeaa1129fc9bca6c860bfab7756c51809a7a97c
Sha256: 5ee28b790ad0665fc56702f4f008c8e7c0d44c56474b978484b6868e3dcd693d
                                        
                                            GET /skin/frontend/base/default/css/rewardssocial/facebook/like.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:51:20 GMT
Etag: "9a0842-35f-4bef4d6176e00"
Accept-Ranges: bytes
Content-Length: 863
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   863
Md5:    aa4278de6177f9f56baa9a0ab854ad73
Sha1:   272ae8b3a861135b9844385aba33f7aee3d340dc
Sha256: a4a624024d653de260bf44856a272b8ffe2ceed5dad60aa865d7e63d688e5d6f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 11 Dec 2018 18:46:33 GMT
Etag: D7FB07F9F0F01426C8D7EE332B12A004E11B0EB7
X-OCSP-Responder-ID: (null)
Content-Length: 279
Cache-Control: public, no-transform, must-revalidate, max-age=207982
Expires: Tue, 18 Dec 2018 18:36:20 GMT
Date: Sun, 16 Dec 2018 08:49:58 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   279
Md5:    3bf6f0d174153e360108c48344b890cf
Sha1:   d7fb07f9f0f01426c8d7ee332b12a004e11b0eb7
Sha256: 7ffb5a1dcab5888356ac810dd2538dd984e47c5da359d9bc5476dfc575b42146
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 11 Dec 2018 14:14:26 GMT
Etag: B5D69841CDB75E22F62F1B651272C9FE4B04F746
X-OCSP-Responder-ID: (null)
Content-Length: 313
Cache-Control: public, no-transform, must-revalidate, max-age=191695
Expires: Tue, 18 Dec 2018 14:04:53 GMT
Date: Sun, 16 Dec 2018 08:49:58 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   313
Md5:    c0b9c99865c206d7dd8a08727043eaab
Sha1:   b5d69841cdb75e22f62f1b651272c9fe4b04f746
Sha256: 63c7a7ac72bde05b69c1a9d80293025ea6c9b7b07801f16441b062e679adf21d
                                        
                                            GET /skin/frontend/enterprise/default/css/print.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9a0886-597-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 1431
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   1431
Md5:    249c7cb6a48f5224d4f4387b59b5769e
Sha1:   dca738c75e3f7616f64e6364665c1ab714775d80
Sha256: 241b039ee08d18c8bf2767e33d8eba08f521210c9adb0b6daef743e50e1fe38c
                                        
                                            GET /js/lib/ccard.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980510-2eb-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 747
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   747
Md5:    d3e849be0977d53de4af933b40293ff6
Sha1:   f6d83810da46ce18315e04b19c8011bab2d9620e
Sha256: 71efc700b9091f1449e2c952536cf7281aded3a30a96e44be5d06e606e2904bd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/scriptaculous/builder.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980623-1288-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 4744
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   4744
Md5:    1174f6fc34ca5d54ba10b0c719386e7c
Sha1:   08b8e5917b089105dad96850c3bf99b7183f292f
Sha256: 8a2e4f92cba8509d0d26255bb950e4a53345fad6c1b38da13448b9c7a561832a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/prototype/validation.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "98054b-913b-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 37179
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   37179
Md5:    594c40f2438b06dcc07079786d5c38c1
Sha1:   6c558d8ea71fec7207bda971e1bbe3076f863346
Sha256: b4ff90314d4d3ef7b1f5eb112f58b805e9121e143056cdd5f69fc3481f32f6bf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "EC02B591464974F2043E3673CBB79FA4ABFE9AD638075A03F6592AB7874764AE"
Last-Modified: Fri, 14 Dec 2018 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17972
Expires: Sun, 16 Dec 2018 13:49:30 GMT
Date: Sun, 16 Dec 2018 08:49:58 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    e22341d3b64f46379b7d89bc899cfbdb
Sha1:   cb34bf7163ac0574c680bf056dfa5fa410012198
Sha256: ec02b591464974f2043e3673cbb79fa4abfe9ad638075a03f6592ab7874764ae
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.113
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Thu, 13 Dec 2018 22:40:57 GMT
Etag: "26aa69bcdbe9780db7b693b177f971bbc5446b38"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=8066
Expires: Sun, 16 Dec 2018 11:04:24 GMT
Date: Sun, 16 Dec 2018 08:49:58 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    576a50aea49476e7b72acf54f1aa416f
Sha1:   26aa69bcdbe9780db7b693b177f971bbc5446b38
Sha256: a1eef45e3e90371e01ac67198ee2afbb8e645ed49ada422bc70431eac8e51ca6
                                        
                                            GET /lib/lib.js HTTP/1.1 
Host: jscontroller.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         104.27.152.252
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d82c1f1d6d1655ac6a9675df7155d70b91544950198; expires=Mon, 16-Dec-19 08:49:58 GMT; path=/; domain=.jscontroller.stream; HttpOnly
CF-Cache-Status: HIT
Expires: Sun, 16 Dec 2018 12:49:58 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 489fe654cfaab4b0-RIX
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/hairtease/css/styles.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Fri, 24 Aug 2012 01:56:22 GMT
Etag: "9a094b-2010f-4c7f94861dd80"
Accept-Ranges: bytes
Content-Length: 131343
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   131343
Md5:    d58c723a8d179d00b95a1c732bc12eae
Sha1:   5abfdd748d085f704ea89acb4d40c8a7007017b8
Sha256: 65f4793dd037e2abced3552661c8075e493193fc676969680906d153ad08024c
                                        
                                            GET /js/scriptaculous/effects.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "98062e-9759-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 38745
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   38745
Md5:    d795089f95a22306cca9b337c439c65a
Sha1:   5dcd6ae86dec74e0e481eca75cc12836933416f9
Sha256: 328cab78ebb3e3c4e94e23b87630a56ae7ad2db686ecd1d69f93176318b6f82d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/scriptaculous/dragdrop.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "98062d-79d8-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 31192
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   31192
Md5:    c824212f4d19277be0fd11a87a9cd0fd
Sha1:   4656690216c2f49495f05f86dc1eaa88dbd87b72
Sha256: 2cf9e8530039881a412585c1e473c6db2ad43961c5dbdccaf0a21384ce7612c0

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/scriptaculous/slider.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980630-285b-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 10331
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   10331
Md5:    6043f96a71d2685fecd02e2ab99e84d9
Sha1:   cfe4b5b08bba43c94897082ea3ae62329bccca40
Sha256: 727ee107a8036e193fef85e1faf9e1eb145d25d03a4aa73d6db7c5ad71118797

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/stat.js HTTP/1.1 
Host: alemoney.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         192.64.119.193
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Sun, 16 Dec 2018 08:49:58 GMT
Content-Length: 64
Connection: keep-alive
Location: http://www.alemoney.xyz/js/stat.js?from=@
X-Served-By: Namecheap URL Forward


--- Additional Info ---
Magic:  ASCII text
Size:   64
Md5:    02a253a5d7790ea17317c6ed0be1ac7e
Sha1:   c342451a77abc081fd818a347d73f9219a5731fe
Sha256: 0acbd61e151ada67ad651a3402d826093a02e4af42d6d90e9309749ffc4f5a46

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/scriptaculous/controls.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "98062c-87ed-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 34797
Keep-Alive: timeout=2, max=495
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   34797
Md5:    8c414e1787c0ac9f10b16b252361c8b2
Sha1:   30c994521024e01fcbceb82d58cb9b6b4d4c7e62
Sha256: 394ee4643d5c3fc7d0a671052576e3e7250e6cbccc407772679a359ce59f2794

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/prototype/prototype.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980548-1fba8-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 129960
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text
Size:   129960
Md5:    d23187d61f796d39487acbe34af031bc
Sha1:   b6becfd5ffb6bc2394bdaa6faef69f1af11d253a
Sha256: 6d5383343f4f8707ff75666831938aae4fa8b02158d5004315a6ff310407b123

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/varien/js.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9807b5-474a-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 18250
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   18250
Md5:    64b4467d5f84c74aba5ee1b04c8c0439
Sha1:   dbdff52f359b5311bb81d0cbf771fdb7f6a20667
Sha256: 56b4e3aee923267dd69ac2880f5d486221eaa242024ab1b0e39920673340a01e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/varien/form.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9807b3-2dd4-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 11732
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   11732
Md5:    fa8cf300b47fb1304ace35d47324ac50
Sha1:   52afd3ef2b5940601ccb2e138e36e2a7e4e42370
Sha256: 682f44aeb1cead0edd863b124dd3d4bb75a07b9e105f305a46e09dbfa7f49518

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/mage/translate.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980517-64f-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 1615
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   1615
Md5:    7672345764408a2b5371455082252993
Sha1:   c2e3b59a45c080af07827056eaaf16488a8be523
Sha256: 616c1dd6b02f1a311ab523d284c15cb1589a3658bb1d1270dc051205848667ae

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/varien/menu.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9807b6-115c-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 4444
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   4444
Md5:    1f238fb3dafef964e3811885b5b26699
Sha1:   2fc5dfff70067ecd314ca5aab967968e02ed9482
Sha256: 744c478d0f83427805e40cb3a13592a6ad0a5d87c76b3a95195691545b7a17fa

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/mage/cookies.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "980516-a49-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 2633
Keep-Alive: timeout=2, max=494
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   2633
Md5:    40705e37223d44993c1557c44aa16337
Sha1:   22e028eec71024e9443821e070e656ad09abfc90
Sha256: c6e9cc7ab292c224c185b7cb93590e8756afd73de9cc879e7fac54f964a5c6f1

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/tbt/rewardssocial/facebook/like/reward.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:50:31 GMT
Etag: "98063d-36e-4bef4d32bbfc0"
Accept-Ranges: bytes
Content-Length: 878
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   878
Md5:    58337e8390575b764e9a84672e3be4f6
Sha1:   b2cfdcecaa7c905174affe85ec16e1941a5c9d6c
Sha256: a8a5f41256fd42f6c50e3a06fd54a4ae01fc3208c9dacaf86a266a870b78051f

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/hairtease/js/superfish.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Fri, 27 Jul 2012 20:05:17 GMT
Etag: "9a097b-e82-4c5d53b185940"
Accept-Ranges: bytes
Content-Length: 3714
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text
Size:   3714
Md5:    8c8070ba6a911bae7047f29e383da334
Sha1:   b7b4fdd4a0aa451b888067ef4b69095cfb40dbf2
Sha256: 3e9fb74061133f9dc6c809fb777bdcdc8e02b6812ad5bf39aad5f6c69f1b96dd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/default/js/scripts.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9a0944-6a0d-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 27149
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   27149
Md5:    014ba3e3009f49d61f7a646a7145eeb5
Sha1:   7c5115d4e52ac879b276e3ebb80a3cd5acdca2ab
Sha256: b8db5b80f0043eab627906d42e906cedf7058e7a31245e86fc7791ea9bc25f86

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/hairtease/js/enterprise/catalogevent.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Fri, 04 May 2012 21:06:22 GMT
Etag: "9a097c-c3c-4bf3c4ae04f80"
Accept-Ranges: bytes
Content-Length: 3132
Keep-Alive: timeout=2, max=493
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text
Size:   3132
Md5:    278df4635c0e0d4526fb97890fb2e7c9
Sha1:   bbcb96dc66baa9868b335c9b3bd636bb1d4760b7
Sha256: d1cf23705fe1ef64928a590e48f0f541585df3e7f302907a0e551f14148535ad

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/base/default/css/rewards/skin.css HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/default/css/rewards/skin.css
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 01 May 2012 07:51:02 GMT
Etag: "9a083d-14d2-4bef4d504c580"
Accept-Ranges: bytes
Content-Length: 5330
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   5330
Md5:    d886e0f9afaab3d2a7cebdddebbcaac8
Sha1:   84d868090f79907ed14a51af141219ced2b93c11
Sha256: cbb819920ad2f33bed48287fe9d750cd7dd2903fdf001b1e864848b82027bbc8
                                        
                                            GET /skin/frontend/enterprise/hairtease/js/jquery-1.7.2.min.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 19 Jun 2012 16:43:31 GMT
Etag: "9a0979-17278-4c2d5fb8d32c0"
Accept-Ranges: bytes
Content-Length: 94840
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines
Size:   94840
Md5:    b8d64d0bc142b3f670cc0611b0aebcae
Sha1:   abcd2ba13348f178b17141b445bc99f1917d47af
Sha256: 47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/frontend/enterprise/default/favicon.ico HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 10 Jan 2012 20:13:45 GMT
Etag: "9a0885-47e-4b63226f43040"
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=2, max=495
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    88733ee53676a47fc354a61c32516e82
Sha1:   a07b8eb3ff62a59ceee8e2b0d082b9e3ffc2317b
Sha256: ce2de4b3be943fd5414dc6f3190d332fc9f6369f5dfbf6366b00b261ed02a4cf
                                        
                                            GET /skin/frontend/enterprise/hairtease/js/jquery-ui-1.8.21.min.js HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 08:49:58 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 20 Jun 2012 22:43:46 GMT
Etag: "9a097a-3284b-4c2ef21bf4c80"
Accept-Ranges: bytes
Content-Length: 206923
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   206923
Md5:    03afe455536a9c44ad82cf1425e354b6
Sha1:   4d6a5f3a7e2ff4bcdabfcd3fef8b2e8e05197480
Sha256: da8edc2a2b29e48e48480a779d36a1eeef6ad155120bdd1b7eb36d4d8fadd32b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /lib/status.js HTTP/1.1 
Host: camillesanz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         213.186.33.17
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Set-Cookie: mediaplanBAK=R129297363; path=/; expires=Sun, 16-Dec-2018 10:01:28 GMT mediaplan=R3757122369; path=/; expires=Sun, 16-Dec-2018 09:58:58 GMT
Date: Sun, 16 Dec 2018 08:49:59 GMT
Transfer-Encoding: chunked
Server: Apache
X-Powered-By: PHP/5.6
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: https://www.camillesanz.com/lib/status.js
X-IPLB-Instance: 17339


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: www.camillesanz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/
Cookie: mediaplanBAK=R129324588; mediaplan=R3757122369

                                         
                                         213.186.33.17
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Set-Cookie: mediaplan=R3757122369; path=/; expires=Sun, 16-Dec-2018 09:58:58 GMT
Date: Sun, 16 Dec 2018 08:50:00 GMT
Server: Apache
X-Powered-By: PHP/5.6
Link: <http://www.camillesanz.com/wp-json/>; rel="https://api.w.org/", <https://wp.me/P81YM9-aK>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
X-IPLB-Instance: 17522


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   24484
Md5:    91b2b3dee65e56e02cef9916261026d3
Sha1:   1d09334547cb997f39f352c3c10344db46f9c3f1
Sha256: c5b7d15b0e8de313abd201ee01c5a827c9a0a98e5eb45a669dd561569fb37b09

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: status.rapidssl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=144756
Date: Sun, 16 Dec 2018 08:50:03 GMT
Etag: "5c15701d-1d7"
Expires: Tue, 18 Dec 2018 01:02:39 GMT
Last-Modified: Sat, 15 Dec 2018 21:20:29 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   1406
Md5:    a5e3ef3296508f439d5cb38e54404e41
Sha1:   d4e3a7e007d26ae92098591224838adbc903c992
Sha256: 624a7f8a7042b4a79e03493b82760d41389bba4c9ffcaacbf9e763b27c7d6269
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=128926
Date: Sun, 16 Dec 2018 08:50:03 GMT
Etag: "5c1553ec-1d7"
Expires: Mon, 17 Dec 2018 20:38:49 GMT
Last-Modified: Sat, 15 Dec 2018 19:20:12 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    04a0fae52938fe3ab2dcf47a172597b9
Sha1:   4750291386cef46269d4632cb3784a231c5cbcab
Sha256: fc534a9281c6bc26b834cb19988cedc6f99b799aef4abe9482a8da1a75f656fc
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/box-top-grey-320.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; setidd=1544950199522-445319192

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 08:50:19 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 24 Apr 2012 23:40:50 GMT
Etag: "9a0956-bc5-4be7548e10480"
Accept-Ranges: bytes
Content-Length: 3013
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 320 x 16, 8-bit/color RGBA, non-interlaced
Size:   3013
Md5:    a28f27bc186d6efa3c98410487622c3f
Sha1:   a8c66230f1ec8bd4af9e0a5304727bcc0d4f209d
Sha256: 78c62ef349b224b855847fafcb8c28d8b47b457282ebf0f5bcf7afd0adf9e2b6
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/box-bot-grey-320.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; setidd=1544950199522-445319192

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 08:50:19 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 25 Apr 2012 00:09:34 GMT
Etag: "9a0954-bd5-4be75afa32b80"
Accept-Ranges: bytes
Content-Length: 3029
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 320 x 6, 8-bit/color RGBA, interlaced
Size:   3029
Md5:    bea1e714023a039688954f9a9e68da20
Sha1:   3397c66d84cd94b4ec34042f6d5aa17c480dc34f
Sha256: 49f797102a80ad11b71f2e15676f45af91fd464f15af9a9b556e74beb5677f50
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/box-mid-grey-320.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; setidd=1544950199522-445319192

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 08:50:19 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 25 Apr 2012 00:20:32 GMT
Etag: "9a0955-b22-4be75d6db7400"
Accept-Ranges: bytes
Content-Length: 2850
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 320 x 1, 8-bit/color RGBA, interlaced
Size:   2850
Md5:    391ecda435f9368cca114d85932d82dd
Sha1:   49b6775c714916963e6b63f9c6a6fd225b884ba4
Sha256: fae487107b358eed9e0820d114daa3c61d8a4e59b1df9106e3df84d038521922
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/logo-white.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; setidd=1544950199522-445319192

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 08:50:19 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 24 Apr 2012 22:50:41 GMT
Etag: "9a0966-1881-4be7495875240"
Accept-Ranges: bytes
Content-Length: 6273
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 226 x 75, 8-bit/color RGBA, non-interlaced
Size:   6273
Md5:    6e16a1a54a180ba97860820feb669d3f
Sha1:   49f7c073e3ab0561246c6161aa7fe216d56c499f
Sha256: c760a2f207686cea01aa69382960d19673ec1dd4f348aa48236a934b110b996c
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/btn-enter.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; setidd=1544950199522-445319192

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 08:50:19 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 25 Apr 2012 00:38:21 GMT
Etag: "9a0958-14ca-4be7616931940"
Accept-Ranges: bytes
Content-Length: 5322
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 128 x 56, 8-bit/color RGBA, interlaced
Size:   5322
Md5:    c3014f10904a9aff9fbf421381bbf097
Sha1:   b34182b52407350bbb4a9e575bf23deae1b296b2
Sha256: 18f9cf8328dfa57959292208ad7ef8f42e56250536a4501271cf3691c3a7566e
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/btn-signup.png HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; setidd=1544950199522-445319192

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 08:50:19 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Wed, 25 Apr 2012 16:44:38 GMT
Etag: "9a0959-1794-4be839645e980"
Accept-Ranges: bytes
Content-Length: 6036
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 128 x 56, 8-bit/color RGBA, interlaced
Size:   6036
Md5:    8d73f70798dd03625cce20babf46953c
Sha1:   67c7ef170b447bdaab27f9dbecf0323ed5ea01c7
Sha256: 0190ccc176be04ba2e5c8dc2d396f56700f08ca57df17241d27221eeec020d4a
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/login-tile.jpg HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; setidd=1544950199522-445319192

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 16 Dec 2018 08:50:19 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 24 Apr 2012 23:04:34 GMT
Etag: "9a0965-38c5-4be74c72de480"
Accept-Ranges: bytes
Content-Length: 14533
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   14533
Md5:    16cb44a17ec4c39461c4baaf3c02a3d9
Sha1:   fea8e457dc9ea77488473a7f32c0d7aefd3cf43c
Sha256: ec9f973a16b3b3fdafeb8a20c6898411fb1dbe334a7dc3a7df2ba60430ba2c9d
                                        
                                            GET /skin/frontend/enterprise/hairtease/images/login-bg.jpg HTTP/1.1 
Host: www.hairtease.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/skin/frontend/enterprise/hairtease/css/styles.css
Cookie: frontend=7dd95ed122c0763d55261e46d2e3030a; setidd=1544950199522-445319192

                                         
                                         209.59.186.80
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 16 Dec 2018 08:50:19 GMT
Server: Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.6.17
Last-Modified: Tue, 24 Apr 2012 22:50:41 GMT
Etag: "9a0964-22c1b-4be7495875240"
Accept-Ranges: bytes
Content-Length: 142363
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   142363
Md5:    4ac62f0a93a98fdcac9827fd92414127
Sha1:   b5621c6fb3a7b4a26786db10e83451d864009016
Sha256: 561fd7528826787342a94a63ec3b9a20b33ebe428278eee300dbb6d900e8223d
                                        
                                            GET / HTTP/1.1 
Host: bamblbee.store
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /mwRwD7 HTTP/1.1 
Host: mytokeasn2s.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /lib/info.js HTTP/1.1 
Host: siteverification.online
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Yz7np9?frm=script HTTP/1.1 
Host: oltratoke.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: bamblbee.store
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hairtease.com/customer/account/login/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware