Overview

URL https://lumalifteye.com/gieovie-skincare/
IP104.31.78.26
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2017-09-14 09:18:47 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-09-14 2 lumalifteye.com/gieovie-skincare/ Malware
2017-09-14 2 lumalifteye.com/wp-includes/js/wp-emoji-release.min.js?ver=4.8.1 Malware
2017-09-14 2 lumalifteye.com/wp-content/plugins/kk-star-ratings/css.css?ver=2.5.1 Malware
2017-09-14 2 lumalifteye.com/wp-content/themes/mesocolumn/lib/scripts/font-awesome/css/f (...) Malware
2017-09-14 2 lumalifteye.com/wp-content/plugins/kk-star-ratings/js.min.js?ver=2.5.1 Malware
2017-09-14 2 lumalifteye.com/wp-content/themes/mesocolumn/style.css?ver=1.6.5.1 Malware
2017-09-14 2 lumalifteye.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1 Malware
2017-09-14 2 lumalifteye.com/wp-content/themes/mesocolumn/lib/scripts/custom.js?ver=1.6.5.1 Malware
2017-09-14 2 lumalifteye.com/wp-content/themes/mesocolumn/lib/scripts/superfish-menu/js/ (...) Malware
2017-09-14 2 lumalifteye.com/wp-content/themes/mesocolumn/lib/scripts/superfish-menu/js/ (...) Malware
2017-09-14 2 lumalifteye.com/wp-content/themes/mesocolumn/lib/scripts/modernizr/moderniz (...) Malware
2017-09-14 2 lumalifteye.com/wp-includes/js/wp-embed.min.js?ver=4.8.1 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.31.78.26

Date UQ / IDS / BL URL IP
2017-11-15 12:22:43 +0100
0 - 0 - 0 https://lumalifteye.com/clarasoft-skin-serum/ 104.31.78.26
2017-11-09 07:51:52 +0100
0 - 0 - 12 https://lumalifteye.com/clarasoft-skin-serum/ 104.31.78.26
2017-11-07 06:55:11 +0100
0 - 0 - 15 https://lumalifteye.com/Bellaire-Skin/ 104.31.78.26
2017-10-30 11:35:38 +0100
0 - 0 - 1 https://lumalifteye.com/claire-hydrafirm-cream-uk/ 104.31.78.26
2017-10-21 07:56:06 +0200
0 - 0 - 12 https://lumalifteye.com/claire-hydrafirm-cream-uk/ 104.31.78.26
2017-10-12 11:33:25 +0200
0 - 0 - 12 https://lumalifteye.com/biodermrx/ 104.31.78.26
2017-10-12 09:23:06 +0200
0 - 0 - 0 scambiobannerfree.altervista.org 104.31.78.26
2017-09-27 14:06:03 +0200
0 - 0 - 12 https://lumalifteye.com/advanced-body-better- (...) 104.31.78.26
2017-09-07 12:35:01 +0200
0 - 0 - 13 https://lumalifteye.com/nouvelle-skin-eye-serum/ 104.31.78.26
2017-09-04 09:55:24 +0200
0 - 0 - 12 https://lumalifteye.com/le-baleux/ 104.31.78.26

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2017-11-23 02:18:24 +0100
0 - 1 - 0 https://are-you-secured.online/lps/opl-dntrf/ 104.27.151.99
2017-11-23 02:10:09 +0100
0 - 0 - 1 trueasiansexxx.loan/ 104.27.162.72
2017-11-23 02:07:17 +0100
0 - 0 - 1 fixwindowserror.club/ 104.28.10.218
2017-11-23 02:03:47 +0100
0 - 0 - 0 dailysyndicatednews.info/wfh-reviews/?clickid (...) 104.28.22.244
2017-11-23 02:03:23 +0100
0 - 4 - 0 secretlab.pw/ 104.24.113.208
2017-11-23 02:01:06 +0100
0 - 5 - 0 lawyer.secretlab.pw/ 104.24.113.208
2017-11-23 02:00:07 +0100
0 - 0 - 1 ganaregalos.bid/ 104.24.124.83
2017-11-23 01:57:48 +0100
0 - 4 - 0 l2b.secretlab.pw/ 104.24.113.208
2017-11-23 01:57:40 +0100
0 - 0 - 0 https://pastebin.com/raw/PqUXNZbB 104.20.209.21
2017-11-23 01:55:33 +0100
0 - 4 - 0 security.secretlab.pw/ 104.24.112.208

Last 10 reports on domain: lumalifteye.com

Date UQ / IDS / BL URL IP
2017-11-15 12:22:43 +0100
0 - 0 - 0 https://lumalifteye.com/clarasoft-skin-serum/ 104.31.78.26
2017-11-09 07:51:52 +0100
0 - 0 - 12 https://lumalifteye.com/clarasoft-skin-serum/ 104.31.78.26
2017-11-07 06:56:10 +0100
0 - 0 - 15 https://lumalifteye.com/Bellaire-Skin/ 104.31.79.26
2017-11-07 06:55:11 +0100
0 - 0 - 15 https://lumalifteye.com/Bellaire-Skin/ 104.31.78.26
2017-11-04 11:51:38 +0100
0 - 0 - 0 https://lumalifteye.com/perfect-prime-face-serum/ 104.31.79.26
2017-11-02 06:06:49 +0100
0 - 0 - 12 https://lumalifteye.com/donna-belle-beauty/ 104.31.79.26
2017-10-30 11:35:38 +0100
0 - 0 - 1 https://lumalifteye.com/claire-hydrafirm-cream-uk/ 104.31.78.26
2017-10-21 07:56:06 +0200
0 - 0 - 12 https://lumalifteye.com/claire-hydrafirm-cream-uk/ 104.31.78.26
2017-10-12 11:33:25 +0200
0 - 0 - 12 https://lumalifteye.com/biodermrx/ 104.31.78.26
2017-10-05 12:09:59 +0200
0 - 0 - 12 https://lumalifteye.com/lutrevia/ 104.31.79.26


JavaScript

Executed Scripts (15)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (33)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 07:18:11 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 18:43:01 GMT
Expires: Mon, 18 Sep 2017 18:43:01 GMT
Etag: 8BC35CB5EF8302011E1D9C0B4353D534095839B9
Cache-Control: max-age=386089,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp31
Content-Length: 279
Connection: close


--- Additional Info ---
Magic:  data
Size:   279
Md5:    37337a7dc3c3ba1c5ad2985e53bad461
Sha1:   8bc35cb5ef8302011e1d9c0b4353d534095839b9
Sha256: a5aca936188477f6362519418492beb1758f0836c087beb828633a387620b40e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 07:18:11 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 21:19:01 GMT
Expires: Mon, 18 Sep 2017 21:19:01 GMT
Etag: C9A884D93E4B996BF11A0272A62C45D7B41EAF15
Cache-Control: max-age=395449,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp31
Content-Length: 312
Connection: close


--- Additional Info ---
Magic:  data
Size:   312
Md5:    f0c2dcca1c41639b6c93d96a7f6e374f
Sha1:   c9a884d93e4b996bf11a0272a62c45d7b41eaf15
Sha256: f67438d81aa4a35aaf2d67ba2956d1a3f4fe3bb74f54be473fef2228358de918
                                        
                                            GET /gieovie-skincare/ HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.31.79.26
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Sep 2017 07:18:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491; expires=Fri, 14-Sep-18 07:18:11 GMT; path=/; domain=.lumalifteye.com; HttpOnly
X-Powered-By: PHP/5.4.42
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://lumalifteye.com/wp-json/>; rel="https://api.w.org/"
Server: cloudflare-nginx
CF-RAY: 39e19221bc2a428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4418
Md5:    144cfe83800a3d81680e3500ee688111
Sha1:   a26f98e407c6ec44c894413db047dd5b9cd9721d
Sha256: 41c72404126c4674fdbe8f529ea6df00b47470e24e4497b170e1f8bf45000645

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 07:18:12 GMT
Expires: Mon, 18 Sep 2017 07:18:12 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    8736ff2801f70a2cb7f5fc291ef2bfd7
Sha1:   3818c96f7adc8d6c67e2174008e3e73cdad3e47f
Sha256: 04ad5952f352935c1aec1262730a89210b9456c20874afa766fc05d6befd0b5f
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=410806, public, no-transform, must-revalidate
Last-Modified: Tue, 12 Sep 2017 01:23:19 GMT
Expires: Tue, 19 Sep 2017 01:23:19 GMT
Date: Thu, 14 Sep 2017 07:18:12 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    775de2be162f21ece95211dfbf378ff2
Sha1:   5aa3f54491214e417e128fcc1b70119c2135565c
Sha256: 69abd56429cfa8fb3a69c040242457ab25397237c94b2f46ea2ce7b1848d55fe
                                        
                                            GET /css?family=Open+Sans%3A400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C300%2C300italic&ver=4.8.1 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Thu, 14 Sep 2017 07:18:12 GMT
Date: Thu, 14 Sep 2017 07:18:12 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   511
Md5:    f697e3e24092537aae8d35971be368c8
Sha1:   3c1614ea14e84ce1778ab827d01200dd0ca24912
Sha256: db49e1a602eedc54ed2b3bc56a16f05d2a45dc0f7ed6a117a54e2738e8bc53f1
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=4.8.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Jun 2017 11:37:38 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:12 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e192281812428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4315
Md5:    46a26aead101e656b6b8f3e850995c2d
Sha1:   92c5e62f1ddc8ad8baf416982f80042120baddc7
Sha256: 4ed2d38197f97cb24fc8dcd5cc4341db819b53b3bf51a6b20a5643c2d999740c

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/kk-star-ratings/css.css?ver=2.5.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 07:18:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Jun 2017 11:39:36 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:12 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e192285b6d42af-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   450
Md5:    e7f211ee3ea477773a366910c217f437
Sha1:   64bcf9c36933a5f1059b88d6f49fd704e86fa1ea
Sha256: f83d286eda6c4e76ab3620cb58296d5823477c14024a2030136a7636f5e93783

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/mesocolumn/lib/scripts/superfish-menu/css/superfish.css?ver=1.6.5.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 07:18:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Aug 2017 07:51:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:12 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e192286c8242bb-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1482
Md5:    5d882e4db8488cac49aa671192dded7f
Sha1:   22100094e781aa9aecf5be1d8d3684d6c2a547ec
Sha256: f73dc7dd4682278d52cc2ab00bf30a83bb525577234461cc77fe5a1410807cf7
                                        
                                            GET /wp-content/plugins/tablepress/css/default.min.css?ver=1.8 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 07:18:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Jun 2017 11:39:08 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:12 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e192286ccf4261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2732
Md5:    3ee7e05dce797d5a3c07a5f812f8b408
Sha1:   674ffb97d22140bb67bc90cea201f819b473c0a4
Sha256: 53b18f57cc7db60be6715a9ef0cdb47196edc1bab797d94875ef29fe0ad141b4
                                        
                                            GET /wp-content/themes/mesocolumn/lib/scripts/font-awesome/css/font-awesome.css?ver=1.6.5.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 07:18:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Aug 2017 07:51:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:12 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e192287c8d42bb-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6243
Md5:    fb18c438836e2880f58ea11488f7526e
Sha1:   3fb437831508fc94cb7249518929abe0b34c7a34
Sha256: 707d6f827703832f6bacedeee780aae30b0efc33def30e76c01d7cebec26dd2b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/kk-star-ratings/js.min.js?ver=2.5.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Jun 2017 11:39:36 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:13 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1922a0e0142bb-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1366
Md5:    e30116dd57c4774762075028083f5e56
Sha1:   0ec4f3229f46183b4f21d6bc40abb87e84c48acb
Sha256: 9484f0b257be900c5d413dcbcef2b065bf5a53c1e20ea0f8157188fe3ee7751d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 21 Jun 2016 18:17:08 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:13 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1922a0c4d42af-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4034
Md5:    2f89b08855471c7476435ce0bec33ba7
Sha1:   970533f152623df03b5fc6fb793b21889e4e0349
Sha256: d200586b6dd1ff779b6c30947361ff736e076d8c7d502505ab3174ca33455ea0
                                        
                                            GET /wp-content/themes/mesocolumn/style.css?ver=1.6.5.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Aug 2017 07:51:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:12 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e192286c1e4297-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   11676
Md5:    27b4a3808aaad4a2c13dd34611e8859b
Sha1:   163202261a5656d3e56148488f612640fe9f1a7f
Sha256: 9d74b753ee74fcb4e94635fcc17b8e2af957959baa393cc12927ec709673cecf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 21 Jun 2016 18:17:08 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:13 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e19229d91c428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33789
Md5:    3a80fc6d5f853164f2f53a98659c0c21
Sha1:   3327cc9fd1e64d96894c1322e3ef52dea7fe4cf1
Sha256: c390de9d0d8953f70b165680d6122a3fc871006c67a676030596a4c36e882674
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Expires: Mon, 18 Sep 2017 07:18:13 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    1b503f238e140231106c31493e4c0954
Sha1:   0b050763b8d7f541434654c86640a7cbbfd11744
Sha256: 9ddacf6e9b25ca0142b5c7b608e4d91a1a2e06b800fb0918784913300922c17d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2017 00:55:05 GMT
Expires: Wed, 20 Sep 2017 00:55:05 GMT
Etag: 4D15D45A66F312DB2E0AF7C6873A784E00C75DC4
Cache-Control: max-age=494811,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp18
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    fe1dd3df74f8c1254a1b502b4df804c8
Sha1:   4d15d45a66f312db2e0af7c6873a784e00c75dc4
Sha256: babb695d9dbd34185c049401bc6e52d9acd2175d21be7e677b2d26331e34af82
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 21:19:01 GMT
Expires: Mon, 18 Sep 2017 21:19:01 GMT
Etag: BE6E7FCB83A7DFA76051EABBF784DFEB6ED6CFED
Cache-Control: max-age=395447,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp18
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    b17300e453a99258ba1f76ecd6484404
Sha1:   be6e7fcb83a7dfa76051eabbf784dfeb6ed6cfed
Sha256: 7291923540da240b344623a4b10717e220f91700ca220dde1ef480fb809081ad
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 21:19:01 GMT
Expires: Mon, 18 Sep 2017 21:19:01 GMT
Etag: EEF02773075AD2EE10CA267E7B58B87735BDD217
Cache-Control: max-age=395447,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp31
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    cd2b62d0bf526fea0bb88fd52c362091
Sha1:   eef02773075ad2ee10ca267e7b58b87735bdd217
Sha256: 410f6cc049eba5f23276a5ab276725d47973735c352f253e6406f6d5fce72cf0
                                        
                                            GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 06:05:05 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:13 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1922dc87e4261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   477
Md5:    4a95db5bbfdd21ab6124d66a249bff84
Sha1:   e6d83272d7a414406446c7c3ca2a86007a1351b5
Sha256: 23309f93cd4e83ea97bf43b13d22f652689dc7434ef14cc70cff97f8f7343c20

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /s/opensans/v14/cJZKeOuBrn4kERxqtaUH3T8E0i7KZn-EPnyo3HZu7kw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C300%2C300italic&ver=4.8.1
Origin: https://lumalifteye.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17640
Date: Mon, 04 Sep 2017 10:36:02 GMT
Expires: Tue, 04 Sep 2018 10:36:02 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:30 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 852131
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   17640
Md5:    e447d08f4d164f3995e7c5090a735332
Sha1:   affe866d1f2c13b1a91772c652392838f98e43ad
Sha256: 3fdc38539d2762cd1293e2822c97fa7972a89e3096c7b1163877344021d8fbf9
                                        
                                            GET /js HTTP/1.1 
Host: static.getclicky.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/

                                         
                                         104.16.89.193
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
P3P: CP='NOI DSP COR CUR OUR NID NOR'
X-Proxy-Cache: HIT
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Tue, 19 Sep 2017 07:18:13 GMT
Cache-Control: public, max-age=432000
Server: cloudflare-nginx
CF-RAY: 39e192305c724285-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6125
Md5:    47124edee8bb600d926a5d519a32fc6d
Sha1:   13cf15aee923054d32ec5f5ea4be2b7d276d644f
Sha256: 9aa2bd1c4ce22c87fd0d2323e9c1c35e367590337db8066bdccc9d5ea94cf526
                                        
                                            GET /wp-content/themes/mesocolumn/lib/scripts/custom.js?ver=1.6.5.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Aug 2017 07:51:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:13 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1922eaf234297-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   518
Md5:    bde1f366aeb958c4205648a6f0427083
Sha1:   fbd0b662f7f5af68716e1677ac83548ad2b3ce4a
Sha256: db455fcfae676fd83c0c128e5be47db980cb5ecabccc4d8c4a839f9634486b67

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/mesocolumn/lib/scripts/superfish-menu/js/supersubs.js?ver=1.6.5.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Aug 2017 07:51:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:13 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1922eaeaa42af-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1548
Md5:    29253c64c63ef68a0d0ba5c3ab3a56ef
Sha1:   64142e5f2141ec69236f89970f8e39f7c5cfdb42
Sha256: 124a2deab2f06ab42ded3c7a5012528711c92e4ebd76eaa5c9cfed31b5028e3d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/mesocolumn/lib/scripts/superfish-menu/js/superfish.js?ver=1.6.5.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Aug 2017 07:51:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:13 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1922e28ea42bb-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2311
Md5:    485b9d38f82ef2a474780bd25202d71c
Sha1:   6411bb3ab5f4e09c2902c9fa5977a1e8af1fcbf0
Sha256: 72e02a03910c44691ac94032de3c76bf352b690d64aae7424d009368bb23c7af

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/mesocolumn/lib/scripts/modernizr/modernizr.js?ver=1.6.5.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Aug 2017 07:51:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:13 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1922e28df42bb-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4996
Md5:    f18a668e070e45c205fbde44ea9df90e
Sha1:   53dcaebf5611b08518e43a88af81dbd06a300cd5
Sha256: 24c644dcf3c784f10316f77f89a83d397e3714f5bb461d92e513b374755527a5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.8.1 HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 07:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 23 May 2017 12:30:20 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 11:18:13 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1922eabaf428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   756
Md5:    77ce65aa27658b26944312e742e1d204
Sha1:   952f595220a39db2f6c8e65c648fa6b1ecf92024
Sha256: 277851a5b1d095133da0244edd6952c2f6fe5ec1b25633812001abb796681616

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /s/opensans/v14/MTP_ySUJH_bn48VBG8sNSnhCUOGz7vYGh680lGh-uXM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C300%2C300italic&ver=4.8.1
Origin: https://lumalifteye.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18232
Date: Wed, 13 Sep 2017 14:56:54 GMT
Expires: Thu, 13 Sep 2018 14:56:54 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:35 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 58879
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   18232
Md5:    bc53f23f7d5dd1a5934ef4b68d7e675d
Sha1:   c3a13ed878f1bd756ac420f1dc1c5142c95273f7
Sha256: 9b967e752d4df93fd2bf19158ba059eca1a79cd8a12e0c17bfac980fac2f13d5
                                        
                                            GET /s/opensans/v14/k3k702ZOKiLJc3WVjuplzHhCUOGz7vYGh680lGh-uXM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C300%2C300italic&ver=4.8.1
Origin: https://lumalifteye.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18408
Date: Wed, 06 Sep 2017 13:58:26 GMT
Expires: Thu, 06 Sep 2018 13:58:26 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:23 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 667187
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   18408
Md5:    15aa9eb56fc3628ba270a5e1edf45284
Sha1:   b0cdb11242b86872aaa6e53ef315d571f9cdd0af
Sha256: 60c1bc05d0e5f1a20b9b92e4186534932cfb9c8d9b9a897a6f56eb155d823c77
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 07:18:14 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2017 04:38:47 GMT
Expires: Thu, 21 Sep 2017 04:38:47 GMT
Etag: C83B02A008D605B686F14A048BA749AD9244B1E4
Cache-Control: max-age=594632,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp18
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    11cf1f39b408c69d2c093fe152f9988a
Sha1:   c83b02a008d605b686f14a048ba749ad9244b1e4
Sha256: a6c08619058879f3b47fa21e53218365af04756aad73d8161d9db94f6ee363e6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 14 Sep 2017 07:18:14 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2017 21:19:01 GMT
Expires: Mon, 18 Sep 2017 21:19:01 GMT
Etag: CF963197D7441CEFAD3AF60F278475ADFF210685
Cache-Control: max-age=395446,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp18
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    a25810009e6a5e9b4992ebb8c63d313d
Sha1:   cf963197d7441cefad3af60f278475adff210685
Sha256: ca3e25ed26f0e7f3b0247a2caed5713dfb6300e1cb1f15bd5a065416ccd853b1
                                        
                                            GET /in.php?site_id=100818868&res=1176x885&lang=en&secure=1&type=pageview&href=%2Fgieovie-skincare%2F&title=Nothing%20found%20for%20Gieovie%20Skincare&jsuid=506334146&mime=js&x=0.6886061252300851 HTTP/1.1 
Host: in.getclicky.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://lumalifteye.com/gieovie-skincare/

                                         
                                         198.145.13.12
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Server: nginx
Date: Thu, 14 Sep 2017 07:18:14 GMT
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding, Accept-Encoding
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Set-Cookie: cluid=506334146; expires=Mon, 14-Sep-2037 07:18:14 GMT; Max-Age=631152000; path=/
P3P: CP='NOI DSP COR CUR OUR NID NOR'
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   48
Md5:    3660d7bace8105d01b78a5fb7b53d827
Sha1:   e570b966f79c197790bcf020c097a71c169b83ff
Sha256: 9fb8a1dbe7df75a0de960e8c3df046d1baf2df29bb33d73edbd45502b2b2e1ec
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: lumalifteye.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=dc1aacd972df87ae3b092b6450b3f793f1505373491; _first_pageview=1; _jsuid=506334146

                                         
                                         104.31.79.26
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Thu, 14 Sep 2017 07:18:15 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: PHP/5.4.42
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Expires: Thu, 21 Sep 2017 07:18:15 GMT
Cache-Control: public, max-age=604800
Server: cloudflare-nginx
CF-RAY: 39e19237ce584261-OSL


--- Additional Info ---