Overview

URL www.updatelivefreeforsystemslikepcandmac.bid/?pcl=NXq82WQIcLU6GLTsKTrp30MwNe65xlv87PAxut2EZF4.&cid=3532278869897330838&sid=700377
IP51.15.153.198
ASN
Location United Kingdom
Report completed2018-03-14 01:50:20 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-03-14 2 js.bestquickcontentfiles.com/dl.min.js Malware
2018-03-14 2 js.bestquickcontentfiles.com/d.min.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 51.15.153.198

Date UQ / IDS / BL URL IP
2018-06-11 18:11:17 +0200
0 - 0 - 1 www.thereadysystemscontentperfect.win/ 51.15.153.198
2018-06-11 18:05:14 +0200
0 - 0 - 1 www.thesoftwaresiteforcontentnew.date/ 51.15.153.198
2018-06-11 00:13:11 +0200
0 - 0 - 1 www.thesoftwaresiteforcontentnew.date/ 51.15.153.198
2018-06-11 00:08:35 +0200
0 - 0 - 1 www.thereadysystemscontentperfect.win/ 51.15.153.198
2018-06-10 02:34:41 +0200
0 - 0 - 1 www.thesoftwaresiteforcontentnew.date/ 51.15.153.198
2018-06-10 02:26:13 +0200
0 - 0 - 1 www.thereadysystemscontentperfect.win/ 51.15.153.198
2018-06-09 03:33:49 +0200
0 - 0 - 1 www.thesoftwaresiteforcontentnew.date/ 51.15.153.198
2018-06-09 03:30:12 +0200
0 - 0 - 1 www.thereadysystemscontentperfect.win/ 51.15.153.198
2018-06-08 00:04:43 +0200
0 - 0 - 1 www.thesoftwaresiteforcontentnew.date/ 51.15.153.198
2018-06-07 23:53:05 +0200
0 - 0 - 1 www.thereadysystemscontentperfect.win/ 51.15.153.198

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2018-12-19 01:14:05 +0100
0 - 0 - 1 arlinqtoncap.com/19nov/popup.php 185.141.166.140
2018-12-19 01:07:31 +0100
0 - 0 - 0 claroideas.com 129.213.75.0
2018-12-19 01:01:28 +0100
0 - 0 - 0 www.amusement-center.com 52.199.214.113
2018-12-19 01:01:18 +0100
0 - 0 - 1 s3.amazonaws.com/instcap/SafeIp/Safeip.exe 52.216.170.109
2018-12-19 01:00:52 +0100
0 - 0 - 1 getmyarm.host/ 193.29.57.67
2018-12-19 01:00:43 +0100
0 - 0 - 15 www.cascadeae.com/abstractions-exhibit-at-sun (...) 52.33.201.245
2018-12-19 00:58:58 +0100
0 - 0 - 2 https://expressgroupindia.com/b2zbnzgzemzqczr (...) 108.179.246.153
2018-12-19 00:58:10 +0100
0 - 0 - 0 d33np9n32j53g7.cloudfront.net/ 143.204.51.64
2018-12-19 00:53:51 +0100
0 - 0 - 1 zgoljjgnz.me/ 198.54.117.200
2018-12-19 00:48:52 +0100
0 - 0 - 1 cheersforlovedate.info/ 148.72.202.191

No other reports on domain: updatelivefreeforsystemslikepcandmac.bid



JavaScript

Executed Scripts (8)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (15)


Request Response
                                        
                                            GET /?pcl=NXq82WQIcLU6GLTsKTrp30MwNe65xlv87PAxut2EZF4.&cid=3532278869897330838&sid=700377 HTTP/1.1 
Host: www.updatelivefreeforsystemslikepcandmac.bid
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         51.15.153.198
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.11.6
Date: Wed, 14 Mar 2018 00:56:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.0.23-1~dotdeb+8.1
Location: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.


--- Additional Info ---
                                        
                                            GET /?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM. HTTP/1.1 
Host: setupnow.thepointofforcontentsafego.review
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         51.15.153.212
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.11.6
Date: Wed, 14 Mar 2018 00:56:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.0.15-1~dotdeb+8.1
Set-Cookie: channel=mav_hardkod2; expires=Wed, 14-Mar-2018 01:16:15 GMT; Max-Age=1200; path=/ dist_id=6555; expires=Wed, 14-Mar-2018 01:16:15 GMT; Max-Age=1200; path=/ lp_id=2497; expires=Wed, 14-Mar-2018 01:16:15 GMT; Max-Age=1200; path=/
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5130
Md5:    e67a8560642a7d5dc2270688bdc3ed4f
Sha1:   017587fe1e9ad5c915538973584450deb9027ed4
Sha256: 3cb58b0add88a9d648e232311486fbd1082cbf28cce537ecce9825fc4c20889f
                                        
                                            GET /dl.min.js HTTP/1.1 
Host: js.bestquickcontentfiles.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.177
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1621
Connection: keep-alive
Date: Wed, 27 Dec 2017 17:28:59 GMT
Last-Modified: Thu, 10 Aug 2017 07:40:39 GMT
Etag: "61cc842cd45a9714f8cf3596b9ae82d0"
x-amz-version-id: 3kg27hHZEF.jyft4m.8HfrJ2gYVRK1XF
Accept-Ranges: bytes
Server: AmazonS3
Age: 26695
X-Cache: Hit from cloudfront
Via: 1.1 dd4af21493d3ba23c0054c0878d3d120.cloudfront.net (CloudFront)
X-Amz-Cf-Id: a-zV95eHRx3KUsGL25JP5j2RnWrMBtmsT6mwiQIgVzAoL5y-Dzk9Yg==


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1621
Md5:    61cc842cd45a9714f8cf3596b9ae82d0
Sha1:   4f98ed742edac94185de230770dfb22a7cfbc715
Sha256: 3e9b1e419ce53f556d21d94b8e3deb4cc772040d5b871a3fe1412f1d42fc0b49

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /lps/adobeflashplayer3/images/aflashplayer3-icon.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 1827
Connection: keep-alive
Date: Tue, 19 Dec 2017 15:05:37 GMT
Last-Modified: Mon, 06 Jun 2016 13:28:52 GMT
Etag: "4aa52436f858b31ae7c2df46197634d0"
x-amz-meta-crossftp-original-file-date-iso8601: 2014-06-02T12:38:35.000Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 22993
X-Cache: Hit from cloudfront
Via: 1.1 7e97ebe71a0d1a9bcf8a425bccd9f845.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 6Th7q6VCVNMOLGGZp5CdPQSJZJZnXHkAouLiZShMugLQPgzKOXA-xg==


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit/color RGBA, non-interlaced
Size:   1827
Md5:    4aa52436f858b31ae7c2df46197634d0
Sha1:   0450dd36eeb63267581140b6a3df778191878197
Sha256: 996a2e58dea0d5fefa7fe5c9852b3d67866b5b0529cdafbf9e78a0cf02b7f979
                                        
                                            GET /lps/om_flash/images/blue.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 32641
Connection: keep-alive
Date: Mon, 22 Jan 2018 15:48:53 GMT
Last-Modified: Wed, 30 Aug 2017 11:25:04 GMT
Etag: "fe4492e3f875504f45bc42e571b2b88a"
x-amz-meta-crossftp-original-file-date-iso8601: 2017-08-30T11:23:49.138Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 42833
X-Cache: Hit from cloudfront
Via: 1.1 d742829c2e5f171ae6eb15f9f4acf944.cloudfront.net (CloudFront)
X-Amz-Cf-Id: Vl9GPxcSl81LY4G1fp-k2LuTOtYcaM_3_uH1QCrxRnvwvaPXj5X4uw==


--- Additional Info ---
Magic:  PNG image, 150 x 120, 8-bit/color RGBA, non-interlaced
Size:   32641
Md5:    fe4492e3f875504f45bc42e571b2b88a
Sha1:   2ef3305c17a2983989ff482505ac868ab2f53978
Sha256: 8357177e4bf21637d2bbf401bbad0311e0420e88335e4216cc1090f36a320568
                                        
                                            GET /lps/flash_mac/images/okactive.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 3437
Connection: keep-alive
Date: Tue, 19 Dec 2017 15:03:08 GMT
Last-Modified: Mon, 06 Jun 2016 13:29:05 GMT
Etag: "2b9dd1759bf55999fc392c5dbb6bb6f7"
x-amz-meta-crossftp-original-file-date-iso8601: 2015-03-09T08:29:12.912Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 33850
X-Cache: Hit from cloudfront
Via: 1.1 7e97ebe71a0d1a9bcf8a425bccd9f845.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 3AnVUVej7BiJJ7YPNRox2o4nVK5-DM3cI3YLmYtcBSxc3VpTa_HzfA==


--- Additional Info ---
Magic:  PNG image, 76 x 21, 8-bit/color RGBA, non-interlaced
Size:   3437
Md5:    2b9dd1759bf55999fc392c5dbb6bb6f7
Sha1:   544fb5abbf376b4aebb775df5994806de97605d2
Sha256: 2755c2a109a7dc442afa20ab5ea319eca18f94a8ea7c05e2dddb6e1264501e23
                                        
                                            GET /lps/flash_mac/images/okactive@2x.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 4484
Connection: keep-alive
Date: Tue, 19 Dec 2017 15:03:09 GMT
Last-Modified: Mon, 06 Jun 2016 13:29:05 GMT
Etag: "370305f8f631cc0642d7bf0d8d7f51e2"
x-amz-meta-crossftp-original-file-date-iso8601: 2015-03-09T08:42:33.705Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 33844
X-Cache: Hit from cloudfront
Via: 1.1 d742829c2e5f171ae6eb15f9f4acf944.cloudfront.net (CloudFront)
X-Amz-Cf-Id: zYoI44pMIH6cxHirtpLYagFcW2d6MQkdyTLw6TjviAm5CR5YR5jvWw==


--- Additional Info ---
Magic:  PNG image, 152 x 42, 8-bit/color RGBA, non-interlaced
Size:   4484
Md5:    370305f8f631cc0642d7bf0d8d7f51e2
Sha1:   b03261c838f57c1cdec1720b6ab118c0827edef0
Sha256: a8b80ca1f74242b77cbf0ac6ec3e8076757aa54578434944a4e4df767c9cf6ad
                                        
                                            GET /lps/flash_mac/images/ok.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 3387
Connection: keep-alive
Date: Tue, 19 Dec 2017 15:03:08 GMT
Last-Modified: Mon, 06 Jun 2016 13:29:04 GMT
Etag: "8735b3e852676168da0cb997fc397c4d"
x-amz-meta-crossftp-original-file-date-iso8601: 2015-03-09T08:27:57.299Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 33858
X-Cache: Hit from cloudfront
Via: 1.1 f1b8c7bb47bd1046d2b618be40e810f4.cloudfront.net (CloudFront)
X-Amz-Cf-Id: ZXb2tASIXhE1fmDqQrtkIXh-WqFqo9brJlFIniZG62YdfjqtOy8SlA==


--- Additional Info ---
Magic:  PNG image, 76 x 21, 8-bit/color RGBA, non-interlaced
Size:   3387
Md5:    8735b3e852676168da0cb997fc397c4d
Sha1:   21711197ba8294c6d5b27775498f3c7c46618d7b
Sha256: 60bc686d0dbd4a721a5b96df034ac04067756297cf097ad6f4338b0e37c95af1
                                        
                                            GET /lps/flash_mac/images/downloadactive.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 4367
Connection: keep-alive
Date: Tue, 19 Dec 2017 15:03:08 GMT
Last-Modified: Mon, 06 Jun 2016 13:29:02 GMT
Etag: "759894fc31058cbee5c154ddf8109da6"
x-amz-meta-crossftp-original-file-date-iso8601: 2015-03-09T08:30:35.401Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 34135
X-Cache: Hit from cloudfront
Via: 1.1 34e751232cf0e8dc5157a85470e721eb.cloudfront.net (CloudFront)
X-Amz-Cf-Id: Rfbx74eiTtbwjYTTqiS0oP2Unoy6-GoERk0Ymnc70Ghvg4pmrkkf5Q==


--- Additional Info ---
Magic:  PNG image, 146 x 21, 8-bit/color RGBA, non-interlaced
Size:   4367
Md5:    759894fc31058cbee5c154ddf8109da6
Sha1:   3005e2a9f3cb234891497f4782a99fade359ec14
Sha256: 85ca0e8a71da7cb9f6da2faad0b491818b83b721a03dd71a9e6c1fd23cc355fe
                                        
                                            GET /lps/flash_mac/images/downloadgif.gif HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 11787
Connection: keep-alive
Date: Tue, 19 Dec 2017 15:03:08 GMT
Last-Modified: Mon, 06 Jun 2016 13:29:02 GMT
Etag: "71d508a5a418c2eab6ac59dab52e5f53"
x-amz-meta-crossftp-original-file-date-iso8601: 2015-03-09T08:38:13.325Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 34188
X-Cache: Hit from cloudfront
Via: 1.1 714d4048a66ba417746073ce1cef6197.cloudfront.net (CloudFront)
X-Amz-Cf-Id: fvF5UoLL2TwQ8vJH_rShJFmQSXv6KAH2nZnpsQrTjBbkRlp4neTi3g==


--- Additional Info ---
Magic:  GIF image data, version 89a, 146 x 21
Size:   11787
Md5:    71d508a5a418c2eab6ac59dab52e5f53
Sha1:   8d7ee8fecd2f3771a6d368c73203530c0b5ce5bb
Sha256: d714e144f5890b10e5bfb765e0ea6c31737ee11031131a0c306cc2645ef7ba81
                                        
                                            GET /lps/flash_mac/images/downloadactive@2x.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 6790
Connection: keep-alive
Date: Tue, 19 Dec 2017 15:03:09 GMT
Last-Modified: Mon, 06 Jun 2016 13:29:02 GMT
Etag: "1cd55b247bf699786c644652ea0d1973"
x-amz-meta-crossftp-original-file-date-iso8601: 2015-03-09T08:39:32.396Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 33834
X-Cache: Hit from cloudfront
Via: 1.1 7e97ebe71a0d1a9bcf8a425bccd9f845.cloudfront.net (CloudFront)
X-Amz-Cf-Id: VxH1QAX-SgArZUT7Pd7b3nyzYL-4j5zzzrIr9MOirYdQwQx6TnbtEg==


--- Additional Info ---
Magic:  PNG image, 292 x 42, 8-bit/color RGBA, non-interlaced
Size:   6790
Md5:    1cd55b247bf699786c644652ea0d1973
Sha1:   88df36ba04596eed174ea28ea52e6b3c6bc1372c
Sha256: 911a71457c0146a07bd5d48ef8556f7a802c9feddf63d59750453ff76a443484
                                        
                                            GET /d.min.js HTTP/1.1 
Host: js.bestquickcontentfiles.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.177
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1410
Connection: keep-alive
Date: Tue, 02 Jan 2018 16:05:11 GMT
Last-Modified: Sun, 05 Nov 2017 09:39:10 GMT
Etag: "076327acad248ed10948c6accd370b0d"
x-amz-version-id: NE6VH5YJ8JvSaFOGN4nGek8SP4bXMoRc
Accept-Ranges: bytes
Server: AmazonS3
Age: 31595
X-Cache: Hit from cloudfront
Via: 1.1 dd4af21493d3ba23c0054c0878d3d120.cloudfront.net (CloudFront)
X-Amz-Cf-Id: LyxItSELnrtGTBVLV0ur_6BDs8owMxamxyk03AXqiBW8_Gbf97FLTQ==


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1410
Md5:    076327acad248ed10948c6accd370b0d
Sha1:   1448b31f8510d9973a8b32ee4b9cfc266fb4cbf0
Sha256: 5851c6ce0f1a72400ab4707a69ba52250f5d1121bb67906035b583dbdfb488b6

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /lps/flash_mac/images/macdispblue_com.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 57127
Connection: keep-alive
Date: Tue, 13 Feb 2018 14:33:54 GMT
Last-Modified: Tue, 13 Feb 2018 12:38:36 GMT
Etag: "4bd6ff668ab934a067009cdd8bda0e17"
x-amz-meta-crossftp-original-file-date-iso8601: 2018-02-13T12:38:19.953Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 26891
X-Cache: Hit from cloudfront
Via: 1.1 c9405bb7321834b44c4d8379944aff0a.cloudfront.net (CloudFront)
X-Amz-Cf-Id: rhnBcUAYkIQ3bFkkkx5rTfQV1_cT2xwaV7_UIsGq_pUTjge0lcdvqg==


--- Additional Info ---
Magic:  PNG image, 786 x 578, 8-bit/color RGBA, non-interlaced
Size:   57127
Md5:    4bd6ff668ab934a067009cdd8bda0e17
Sha1:   23cb1c646b8cc630a9df49ca4def320eb893bc39
Sha256: 4f1e5a8e094c2c4d384cb4e07b44111d2d8c6fdf650d985d4414df9b1a08a0ec
                                        
                                            GET /lps/flash_mac/images/image.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://setupnow.thepointofforcontentsafego.review/?pcl=Sdd5vYXlkZP5gXkxPPAnQWdqaCVXh802qD8oPTnRHuZEhlOW2fvPfO5phk5skdBSgT8kJ2w17fyRwh5waZRTLg..&cid=3532278869897330838&sid=700377&v_id=JWvdW2WbH1ubseREYXEDfDCxLQd59wSDeod6hBEeBsM.

                                         
                                         54.192.185.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 3957
Connection: keep-alive
Date: Tue, 19 Dec 2017 15:06:58 GMT
Last-Modified: Thu, 29 Jun 2017 12:59:49 GMT
Etag: "e0edd7220a2edb1163eac23e2699e8ae"
x-amz-meta-crossftp-original-file-date-iso8601: 2017-06-29T12:35:01.474Z
Accept-Ranges: bytes
Server: AmazonS3
Age: 10477
X-Cache: Hit from cloudfront
Via: 1.1 d742829c2e5f171ae6eb15f9f4acf944.cloudfront.net (CloudFront)
X-Amz-Cf-Id: jPwP58U22cfJU0iuajKdcovpMRW8lZrdi3ziw_ROtos2HCAHvdNzsw==


--- Additional Info ---
Magic:  PNG image, 28 x 28, 8-bit/color RGBA, non-interlaced
Size:   3957
Md5:    e0edd7220a2edb1163eac23e2699e8ae
Sha1:   9fce6a425b2859d7c14766941df11610614c647e
Sha256: 05a8c49c378c57ca0db509823d4c01e0dd7c631efde7990fb67fd17837251c31
                                        
                                            GET /lps/adobeflashplayer3/images/aflashplayer3-icon.png HTTP/1.1 
Host: d123qx2eclzzza.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
If-Modified-Since: Mon, 06 Jun 2016 13:28:52 GMT
If-None-Match: "4aa52436f858b31ae7c2df46197634d0"

                                         
                                         54.192.185.84
HTTP/1.1 304 Not Modified
                                        
Connection: keep-alive
Date: Wed, 14 Mar 2018 00:56:19 GMT
Etag: "4aa52436f858b31ae7c2df46197634d0"
x-amz-meta-crossftp-original-file-date-iso8601: 2014-06-02T12:38:35.000Z
Server: AmazonS3
Age: 22996
X-Cache: Hit from cloudfront
Via: 1.1 f1b8c7bb47bd1046d2b618be40e810f4.cloudfront.net (CloudFront)
X-Amz-Cf-Id: VP1pl9I0lC6WIj9jjhkQqw2g3MiawFSYf-QQqszzgXqCyHAUu4TjeA==


--- Additional Info ---