firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lWcIV8gebe8m_BM55x8RK1w_Gz4O66lfxKrJ5E_naYL-2Uzb3-SU-A==
Age: 8837
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7854
Expires: Wed, 05 Oct 2022 20:25:29 GMT
Date: Wed, 05 Oct 2022 18:14:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10112
Expires: Wed, 05 Oct 2022 21:03:07 GMT
Date: Wed, 05 Oct 2022 18:14:35 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NILnrWn2Ykl1cGppRHoFnXox5r3Ee0SOw/Jts5gCZ3z8mThPQK/DXiWgIuEHCFaQ71J06/H2VBk=
x-amz-request-id: YE5KPBHNYER3W4TY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 17:58:23 GMT
age: 972
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
monfoodland.mn/partner
43.231.114.105301 Moved Permanently 0 B IP 43.231.114.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /partner HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 05 Oct 2022 18:14:35 GMT
Server: Apache/2.4.29 (Ubuntu)
X-Redirect-By: WordPress
Location: http://monfoodland.mn/partner/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 18:14:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 05 Oct 2022 17:24:10 GMT
Expires: Wed, 05 Oct 2022 17:46:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jRnmwaAED9S6Mm5T7CV8R0ECcArN0HMFrIH3AnJMFFtk0EZtFctuBA==
Age: 3025
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css?ver=5.8.5
104.17.25.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css?ver=5.8.5
IP 104.17.25.14:0
File type ASCII text, with very long lines (59119)
Hash 14e1692fd4263ccfea0b84299bdbf1f5
7783020a9ced5f32c8d38205357c7d10798be1fd
8ff0cd2d1e7f0b6203a762fb9811256d4445a3ad0d97f07102e038ba0eb3db72
GET /ajax/libs/font-awesome/5.15.4/css/all.min.css?ver=5.8.5 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://monfoodland.mn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 18:14:36 GMT
content-type: text/css; charset=utf-8
content-length: 10462
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "613fa20b-28de"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 569342
expires: Mon, 25 Sep 2023 18:14:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JxgMQON5hTh3NDxuFmveQzpxkJWov0OmVhXaD1eLmNYyqCraAON6CFm9SrJBvc5YBinHOaIGvxItbEWk7GBaSnDO7yDnK7qtXg2Z14Rtit6phCIkBHfRg%2BbPbEgj6OKffkbutS5L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 755823505a5e0b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C900%7CSignika%3A300%2C400%2C500%2C600%2C700%2C900%7COpen+Sans+Condensed%3A300%2C400%2C500%2C600%2C700%2C900%7COpen+Sans%3A300%2C400%2C500%2C600%2C700%2C900&subset=cyrillic%2Ccyrillic-ext&ver=1.0.0
142.250.74.10200 OK 1.1 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C900%7CSignika%3A300%2C400%2C500%2C600%2C700%2C900%7COpen+Sans+Condensed%3A300%2C400%2C500%2C600%2C700%2C900%7COpen+Sans%3A300%2C400%2C500%2C600%2C700%2C900&subset=cyrillic%2Ccyrillic-ext&ver=1.0.0
IP 142.250.74.10:0
Hash 48161034a20de0a7285c98aa587f1344
57faaf5f5bb94964a12cb307e8170853fdcf2cfb
a1901799b396c5645224b15f6f6485f37699a04e3c32e2d8b903f26cbcb8437b
GET /css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C900%7CSignika%3A300%2C400%2C500%2C600%2C700%2C900%7COpen+Sans+Condensed%3A300%2C400%2C500%2C600%2C700%2C900%7COpen+Sans%3A300%2C400%2C500%2C600%2C700%2C900&subset=cyrillic%2Ccyrillic-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 05 Oct 2022 18:14:36 GMT
Date: Wed, 05 Oct 2022 18:14:36 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
monfoodland.mn/partner/
43.231.114.105200 OK 15 kB IP 43.231.114.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7708), with CRLF, LF line terminators
Hash 458270a804e249e5a83da7c658df5b5c
6ffaa960ffbf3d7290acd43ef9689b746b5adb35
a77dce3173f1a3a0cf2dd18d0970c09b54f51603e865033a6067d90ee4dace30
Analyzer Verdict Alert fortinet Malware
GET /partner/ HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:36 GMT
Server: Apache/2.4.29 (Ubuntu)
Link: <http://monfoodland.mn/wp-json/>; rel="https://api.w.org/", <http://monfoodland.mn/wp-json/wp/v2/pages/3380>; rel="alternate"; type="application/json", <http://monfoodland.mn/?p=3380>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14567
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
monfoodland.mn/wp-includes/css/dist/block-library/style.css?ver=5.8.5
43.231.114.105200 OK 12 kB URL HTTP/1.1 monfoodland.mn/wp-includes/css/dist/block-library/style.css?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (358)
Hash af08d9210af2eaa52b049ca6b78d5637
e458ae345d14a88e010af161995e5c973da82be6
241faee5fcba1f24bbac30f3beeb21a8c00f5a7d1eb9e0875d918dd26cd120d2
GET /wp-includes/css/dist/block-library/style.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:36 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 26 Nov 2021 14:55:20 GMT
ETag: "16cb1-5d1b247b0adee-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12468
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.8
43.231.114.105200 OK 12 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.8
IP 43.231.114.105:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash c319756650c87e7322d0063fa7e9b218
7f671faf740cebc78bf28210d525e785572fa8c3
ebe957e8d64520d3996fa48bcdac2b55afcf6458d511a6f3fa7fe63c4c5a7e58
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.8 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:36 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 18 May 2020 06:28:32 GMT
ETag: "e971-5a5e6459e9241-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12503
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/style.css?ver=5.8.5
43.231.114.105200 OK 442 B URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/style.css?ver=5.8.5
IP 43.231.114.105:0
Hash de02a3e3e62f4b8af23a4ba50e57f54e
7ff7d26b737132f3d46839aeec7e4548687c28dc
ff9241ce2ccba8f23063b90a72be03196676992896d716400097bb789fc15044
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/style.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:57 GMT
ETag: "2c2-5d81e17764b14-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 442
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/font-awesome/css/font-awesome.min.css?ver=5.8.5
43.231.114.105200 OK 6.7 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/font-awesome/css/font-awesome.min.css?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (28912)
Hash 5f68409f58a6573cc618890689319639
783d52375bdfeff14105e72acec96a90921efc2c
f6ccc035b2a866ca084992d42c3a25731de05dc724215634db4f4bab82eee34f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/font-awesome/css/font-awesome.min.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "7193-5d81e17797796-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6669
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/elegant-icons/style.min.css?ver=5.8.5
43.231.114.105200 OK 4.2 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/elegant-icons/style.min.css?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (21769), with no line terminators
Hash f3a17950a8e7faa7352af4b55d655c4b
492ddab7dfd9e14e7334d92ecedafc5c1940a2cc
d645008ee7f2e849c441b8de7e09a40ec0585095fe201dc87b29408ae1593cac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/elegant-icons/style.min.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "5509-5d81e17798736-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4166
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/ion-icons/css/ionicons.min.css?ver=5.8.5
43.231.114.105200 OK 8.3 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/ion-icons/css/ionicons.min.css?ver=5.8.5
IP 43.231.114.105:0
File type Unicode text, UTF-8 text, with very long lines (50818)
Hash 9cb8ccee7d345b0fb7e9ac943f9149f9
3fc8efa1e76243a3c4dc22432647cb9e687912d5
84757d0733a1b6411575bd3130964501abca042510f9c8678de07be7c07c393e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/ion-icons/css/ionicons.min.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:57 GMT
ETag: "c860-5d81e1778fa96-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8290
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/linea-icons/style.css?ver=5.8.5
43.231.114.105200 OK 8.5 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/linea-icons/style.css?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (369)
Hash ca607cc91c5ae75052789fa1acaf55ab
672a06dd342416c388eccb7a28f71e237b2a3b56
6617f5a5b5907576bd905ce6538f17c4fcad83eaed849f5cec95a76f5bd98483
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/linea-icons/style.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "13100-5d81e1779c5b7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8452
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
43.231.114.105200 OK 2.6 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 43.231.114.105:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 583529ff412cb2b255fa606024d1133e
8db4b0a0be402cc5e38488528791b73b0c7369d0
6fdf0933a8faf229b277740f401600834c00d0b204f7ed38293cd4abcdb3ea20
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 05 Apr 2021 06:32:17 GMT
ETag: "2bf8-5bf33dbe70c8a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2592
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-includes/js/mediaelement/wp-mediaelement.css?ver=5.8.5
43.231.114.105200 OK 1.3 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/mediaelement/wp-mediaelement.css?ver=5.8.5
IP 43.231.114.105:0
Hash ec8ec58f05afcc0bf85c74125d96fece
05bef2e0d20c27e4f94784dda3529521448410b8
483160a0a3b9add085ed3bf40272479bdd6ffaa95208d70d87792be0e156226a
GET /wp-includes/js/mediaelement/wp-mediaelement.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 07 Jun 2019 20:45:02 GMT
ETag: "1360-58ac1e7924f80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1276
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/woocommerce.min.css?ver=5.8.5
43.231.114.105200 OK 12 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/woocommerce.min.css?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e1806b1bfd5e0f12b965bbc93532df62
e16805d9ecf5b5208269d2fe48f8fbb261c301dc
36e3449e7c931877f00d79ae79ca5be2be74fdc2ecc2ecec6ec2d2770af0782e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/woocommerce.min.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "1c884-5d81e17797796-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12305
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/woocommerce-responsive.min.css?ver=5.8.5
43.231.114.105200 OK 2.3 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/woocommerce-responsive.min.css?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (24912), with no line terminators
Hash f3d7829480de278357afc1f3a1a27c1c
fb5490952785ae879c3c4835f6276a8534fe9a16
00cd9bb6207f24cde4d240e1267f3a1492434c9f1fdfc98869917859969018a9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/woocommerce-responsive.min.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "6150-5d81e17797796-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2298
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/modules.min.css?ver=5.8.5
43.231.114.105200 OK 42 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/modules.min.css?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash aa6a47e430084386655dcb7f02a9dc33
7d38c9aa576b03da0c45f1229962a0b9956403b7
186eb76c3e5e3fa20e7f548613e6e03bea40a4f5784a26129da352a7309f3ef1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/modules.min.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:57 GMT
ETag: "61ab7-5d81e1778fa96-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 42220
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/style_dynamic.css?ver=1652154814
43.231.114.105200 OK 3.4 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/style_dynamic.css?ver=1652154814
IP 43.231.114.105:0
File type ASCII text, with very long lines (7778)
Hash a868f046d531ce05b2f69275ab0bd6f3
7a856031911b1d6100003b3d4421d636a947c7ca
8df1598ee733d602b01d37386a02ecba383f9dbdf5ebc1f1ef67fe1bf4541aad
GET /wp-content/themes/superfood/assets/css/style_dynamic.css?ver=1652154814 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 10 May 2022 03:53:34 GMT
ETag: "569b-5dea044d36336-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3404
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/modules-responsive.min.css?ver=5.8.5
43.231.114.105200 OK 5.2 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/modules-responsive.min.css?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (59182), with no line terminators
Hash 4dcd40873d107334b5d28c383c8b1752
33c694b5930c75104aaaaec322eba6af50b94acd
d0610ce9929a3d67a008fa8bfda0668edca2d8de4242d1aedfc0024e775a29f7
GET /wp-content/themes/superfood/assets/css/modules-responsive.min.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "e72e-5d81e17797796-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5175
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/css/style_dynamic_responsive.css?ver=1652154814
43.231.114.105200 OK 176 B URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/style_dynamic_responsive.css?ver=1652154814
IP 43.231.114.105:0
Hash d949e0faee415264b8685bca23cb930c
0ea5de95895ae57ca8b3a989992112f7130e25ac
bfb69aee810535047647fd1bab8c2615f506882886127f6dde5d4744874bac2c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/style_dynamic_responsive.css?ver=1652154814 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 10 May 2022 03:53:34 GMT
ETag: "1aa-5dea044d3b156-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 176
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/plugins/eltdf-core/core-dashboard/assets/css/core-dashboard.min.css?ver=5.8.5
43.231.114.105200 OK 1.6 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/eltdf-core/core-dashboard/assets/css/core-dashboard.min.css?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (10756), with no line terminators
Hash 2e52b14fd43b8ee797459dc91ebfc7f9
b5b03f8df0ecd5a827568302507ccf4c8d5e00af
4b348153c184b1ba704c871b3044d16082faa7e7c744e98423b2946a920e1e78
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/eltdf-core/core-dashboard/assets/css/core-dashboard.min.css?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 18 May 2020 08:18:03 GMT
ETag: "2a04-5a5e7cd459fce-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1610
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/plugins/woocommerce/assets/css/select2.css?ver=5.9.1
43.231.114.105200 OK 1.9 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/assets/css/select2.css?ver=5.9.1
IP 43.231.114.105:0
File type ASCII text, with very long lines (15057), with no line terminators
Hash 552bf28494553799905d7e06bc5f1300
2e19fbd3048fbf748f091befc5baeaf202a04967
765ce6fbbd6783cc0ae07d9fc0bdfae2acf469a3d11aa37986dda540f335727a
GET /wp-content/plugins/woocommerce/assets/css/select2.css?ver=5.9.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:02 GMT
ETag: "3ad1-5d9e9ac23a776-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1943
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2
43.231.114.105200 OK 8.1 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2
IP 43.231.114.105:0
Hash 6fa6ca4990039db79a3a33fdfbeb6373
73b8ab14564628ab44b16d28e6fcb49deada4e99
d56cdb01e69dbfc6f8f07b4930ab9494cf11cbf08f3ab9b81b44ea308ebc6c13
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 05 Apr 2021 06:32:16 GMT
ETag: "62d4-5bf33dbdc0fff-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8116
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
43.231.114.105200 OK 46 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
IP 43.231.114.105:0
File type ASCII text, with very long lines (65358)
Hash 2fe906250b403a8535d316cdf1e8a808
7b84d27dd294fe145beec5801fc2d8d5a00d611b
655f96cc6f8ea662c046fd64382639c7a9b5c9a936645beb200653b4880e51e3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 18 May 2020 06:27:45 GMT
ETag: "76828-5a5e642d4d0e3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 45790
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.js?ver=2.7.0-wc.5.9.1
43.231.114.105200 OK 6.6 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.js?ver=2.7.0-wc.5.9.1
IP 43.231.114.105:0
Hash fb9510cbb8b61c161e0a32ca21bdfc72
e7222195b09db99d9fdaf3ceb83629c6066a3cc7
40e7de9d267778b6f27cd51ee57fb8bdf884272d6d5854f258534028e5c9843b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.js?ver=2.7.0-wc.5.9.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:02 GMT
ETag: "4e5a-5d9e9ac23d656-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6621
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4821
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:14:37 GMT
Last-Modified: Wed, 05 Oct 2022 16:54:16 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
monfoodland.mn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.js?ver=5.9.1
43.231.114.105200 OK 1.7 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.js?ver=5.9.1
IP 43.231.114.105:0
Hash e6a2c7bd668b1c209b8989173d85e45b
67099bae83dc4f21ee6cd6dd4c020a6ed7b184ad
3b8ce0f69e370fb60f7ecd6f534805a84d1265054669cbbee9fb0d2e24035534
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.js?ver=5.9.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:02 GMT
ETag: "1696-5d9e9ac242476-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1721
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
43.231.114.105200 OK 374 B URL HTTP/1.1 monfoodland.mn/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
IP 43.231.114.105:0
Hash 99f478aea66ce928c3dda9ab3a0dbbb3
29bb3e5ccb81defba6cf1749768f4c57533e261a
44b0fdb4d849dfa85411e2e814e8352a89f04fad8e65924f477368dad133955e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 18 May 2020 06:27:45 GMT
ETag: "3e0-5a5e642d5f9c4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 374
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/jquery/jquery.js?ver=3.6.0
43.231.114.105200 OK 85 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/jquery/jquery.js?ver=3.6.0
IP 43.231.114.105:0
Hash 458225b39ee21a8c4d9e628a68b72069
8d45de775fa2ebd9ad23d4aec2ff3b630dfbe5c8
aaa260e2f2397c4fb3c00d60b13ff8047593c4f7aa8d3dbd97364aa63b11ef3e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=3.6.0 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 26 Nov 2021 14:55:21 GMT
ETag: "46758-5d1b247b56113-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.8
43.231.114.105200 OK 82 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.8
IP 43.231.114.105:0
File type ASCII text, with very long lines (57207)
Hash 2b5ec746ec9da92c64aba0027c362894
230f7424bc854187ed28d8ee3923e580dc85540b
d9b8d86e04708071b218b17314469f69361d4a2e390352273c0c3c810f02018a
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.8 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 18 May 2020 06:28:32 GMT
ETag: "4d332-5a5e645a23bc4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.js?ver=2.1.4-wc.5.9.1
43.231.114.105200 OK 1.5 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.js?ver=2.1.4-wc.5.9.1
IP 43.231.114.105:0
Hash 381af23339981629e50bfc6062058ac3
6183b0294adca41eb2846efe0f65692324fa9fc8
d264adcba088fa343ebcfe02edd5e605dbae7b9c03eaa36c61ea7d849c3a84f5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.js?ver=2.1.4-wc.5.9.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:02 GMT
ETag: "f20-5d9e9ac247296-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1475
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
52.38.227.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.227.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SnRAy6mz8RGZKhusnn2k/A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nepSDPuQY9jz0TR8gHd4v46U8uM=
monfoodland.mn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.4
43.231.114.105200 OK 45 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.4
IP 43.231.114.105:0
File type ASCII text, with very long lines (41022), with CRLF line terminators
Hash 093bc5236e1d2dac0687190591816376
a00cc34c822166c88d68744f65fb4274ab5509da
821f75e48e46128443a39eb58aba687be440465b600424fa3bf5fb2cffe166ca
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.4 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 18 May 2020 06:28:32 GMT
ETag: "1d25a-5a5e645a23bc4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 45119
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.js?ver=5.9.1
43.231.114.105200 OK 1.2 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.js?ver=5.9.1
IP 43.231.114.105:0
Hash 22ee6709e8195b6498ff0d6ca6166492
bf47071b6704453a64915bc460a2eb995aaa58b3
2b9c16c38a629fbb9eb4a2105e22fa1868909f26afb14b5764b5733a239f6643
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.js?ver=5.9.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:02 GMT
ETag: "d8a-5d9e9ac243416-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1177
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.js?ver=5.9.1
43.231.114.105200 OK 1.6 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.js?ver=5.9.1
IP 43.231.114.105:0
Hash 75d5fd720bdc431ce13de4bf6a34177c
c24d3b2cd89e486cd2611e3478d12dd6d3527b12
b8ae4f2f5da9902441cbf5203b2ae0c324d74f267245c041a4018706c4429720
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.js?ver=5.9.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:02 GMT
ETag: "1607-5d9e9ac242476-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1604
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/jquery/ui/core.js?ver=1.12.1
43.231.114.105200 OK 13 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/jquery/ui/core.js?ver=1.12.1
IP 43.231.114.105:0
Hash bdaea6a579c0cad1744da0984bbeb986
ce1a95b45421d17c470f375119d0eb343b3411ca
4c2249e9661c0fca96f69b4da3818383f481d83f8109e93c6ef9ad6fedb58192
GET /wp-includes/js/jquery/ui/core.js?ver=1.12.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 05 Apr 2021 06:32:16 GMT
ETag: "bf3b-5bf33dbdbe11f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13129
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/jquery/ui/tabs.js?ver=1.12.1
43.231.114.105200 OK 6.8 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/jquery/ui/tabs.js?ver=1.12.1
IP 43.231.114.105:0
Hash 4c3d9a5d88792582d8153583de32c893
c7d975adaca6276ddbeee160b267438396a449ed
c0e736dfbb1c8b203929bc79fad4322c0413a7201728d5bbc290ee1bf74bdff3
GET /wp-includes/js/jquery/ui/tabs.js?ver=1.12.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 05 Apr 2021 06:32:16 GMT
ETag: "5c00-5bf33dbda1bfd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6808
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/jquery/ui/accordion.js?ver=1.12.1
43.231.114.105200 OK 4.5 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/jquery/ui/accordion.js?ver=1.12.1
IP 43.231.114.105:0
Hash e174c31775626b5b05b17b66f3cf7e64
d2445c70243be040fbe1ee20d6e2d8da21975d18
003aacb214c6a9e2d648d18fdcf22dcbc51cdcbd908ef8894a45bc66ac425d1e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/accordion.js?ver=1.12.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 05 Apr 2021 06:32:16 GMT
ETag: "3df8-5bf33dbdbe11f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4502
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/buttonizer-multifunctional-button/assets/frontend.min.js?v=0b190caf57f2470264fae0ce51c6a25e&ver=5.8.5
43.231.114.105200 OK 78 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/buttonizer-multifunctional-button/assets/frontend.min.js?v=0b190caf57f2470264fae0ce51c6a25e&ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (64398)
Hash 42406fda4445b5dc791bcb7ca05f5df8
150fca72e90fb827c681bbb7f31bfb6f3fcd5fa2
66a3a3d2557f317c4c4fbdcbee02e366ddff01a690c294b3cdab1a72506054b1
GET /wp-content/plugins/buttonizer-multifunctional-button/assets/frontend.min.js?v=0b190caf57f2470264fae0ce51c6a25e&ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 26 Nov 2021 14:56:13 GMT
ETag: "511c7-5d1b24acf7596-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/mediaelement/mediaelement-migrate.js?ver=5.8.5
43.231.114.105200 OK 1.2 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/mediaelement/mediaelement-migrate.js?ver=5.8.5
IP 43.231.114.105:0
Hash d3e50cc45b791a024e4b8c4b32c376ff
36657e0fd56c29ede6a87f3aea336554a5c4ac51
c63cb8a5acf1d5e34937689d1d5050b66fdb964fe6b81b677e05d051fce55552
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-migrate.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 16 Oct 2017 18:07:52 GMT
ETag: "b19-55bade28e4e00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1208
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/mediaelement/wp-mediaelement.js?ver=5.8.5
43.231.114.105200 OK 993 B URL HTTP/1.1 monfoodland.mn/wp-includes/js/mediaelement/wp-mediaelement.js?ver=5.8.5
IP 43.231.114.105:0
File type HTML document, ASCII text
Hash 2d97e10e671a122ada91af6e714625e8
a0b2fcb2e0ba9478fbd5168209d8fddb13918053
d4df4e50858acb850ed1331cb6969a9f8c7d1b4d77392ddc7b466fffda3cf029
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 21 Jan 2020 02:21:05 GMT
ETag: "93b-59c9d0f5b6640-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 993
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/mediaelement/mediaelement-and-player.js?ver=4.2.16
43.231.114.105200 OK 50 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/mediaelement/mediaelement-and-player.js?ver=4.2.16
IP 43.231.114.105:0
File type ASCII text, with very long lines (575)
Hash cb84017729c333c7f1885c037bf8400a
adf53920fa456687a69e3cfab7d5a5015f97a288
d13c6e43ec6b215460d5927ab901e1dca70eb56a9ffdc0ef5569095c4f72ab45
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-and-player.js?ver=4.2.16 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 05 Apr 2021 06:32:17 GMT
ETag: "40c3b-5bf33dbe70c8a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 50250
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/modernizr.min.js?ver=5.8.5
43.231.114.105200 OK 5.9 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/modernizr.min.js?ver=5.8.5
IP 43.231.114.105:0
File type HTML document, ASCII text, with very long lines (13826)
Hash d127a0b220f94628b56cb95a153dfa80
436e9252e40dd493d5c70afb9db2a787bc94eeec
21024cbe3bc1875a83d11c2f465d5effb486af7e0cabd7ca1851da220cbc87d5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/modernizr.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "380e-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5920
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8987
Expires: Wed, 05 Oct 2022 20:44:25 GMT
Date: Wed, 05 Oct 2022 18:14:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8987
Expires: Wed, 05 Oct 2022 20:44:25 GMT
Date: Wed, 05 Oct 2022 18:14:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8987
Expires: Wed, 05 Oct 2022 20:44:25 GMT
Date: Wed, 05 Oct 2022 18:14:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8987
Expires: Wed, 05 Oct 2022 20:44:25 GMT
Date: Wed, 05 Oct 2022 18:14:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8987
Expires: Wed, 05 Oct 2022 20:44:25 GMT
Date: Wed, 05 Oct 2022 18:14:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1de7c17a0ba9295135e7f8b490b6a8d3
70e8d1589f3daf71378965dd197934e220fb6aa4
ee559ce3166479e2b930be7d18525f5c2d164aed8ca005302ddaf3bfe37eec24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8926
x-amzn-requestid: 27fc8976-af8d-40a3-b701-0642fa135ec4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1GSbIAMFTiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-4d4c7837576e0fdb5828fe3b;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzVofPSJC-YVU1Q1V9AnjNeQTa1BQEh6ZiH2HjSeeX5RygysFP7oAA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:43:25 GMT
age: 73873
etag: "70e8d1589f3daf71378965dd197934e220fb6aa4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d7d7df8d4c440f9db445c3d99e818d6
612b6dbd4ba895c167964ff7e6d9263013b52b0a
bf527a814c78f9e010cce4ba593c9146d54a2137d1f147f7a6250fbad81956ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3585
x-amzn-requestid: 43c510d4-d87c-4665-a132-d798b836d415
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaJbLHEOoAMFfxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a55e0-614faff31425ff183b7ca4dd;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:24:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: d1LCc44Gj_0Je8adu7Iv3I9MwkaDPgWqlNHI96UAtZub22l210J65A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:53:07 GMT
age: 48091
etag: "612b6dbd4ba895c167964ff7e6d9263013b52b0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3257b782efae9b64e6e18a547866ec50
4daf0c001e86af8477fb097e8ca932edb8e5f981
899f9692e86405aa288d88dd285a6fe26bedab1a2ca4693212476063890b01a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5832
x-amzn-requestid: c4427edd-3d71-47d0-a2d3-b3bfed089535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1FuUoAMFhBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-46ddff150da4141d23fc0d8a;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iR82CJ6A06dpqy_nm6JrmjeUJT-uhI5rr0dr6ZnhrQQo9Jqxh10qRQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:43:43 GMT
age: 73855
etag: "4daf0c001e86af8477fb097e8ca932edb8e5f981"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:06:09 GMT
age: 50909
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 100559d746bedd7c3802661c875c35ee
5261a6c2ee6d6cc87e91ee82e32d8be234db393e
ff06f31267ddcc9a0d84ddc68932872bfed29d072783c3a1dd3790d41c280aec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8816
x-amzn-requestid: b9f3ec8a-f478-4405-b275-e21f2d7d89d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKK7gFPJIAMF-7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f1e3-250348e6140f3c74762263ea;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8f83Wv7OrO7NOd1y1LXjfphRmJjdwrkcAxrxUN4A4qSgsEzIQMq81g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:38:40 GMT
age: 70558
etag: "5261a6c2ee6d6cc87e91ee82e32d8be234db393e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 229c99cfb655a8c9f1a22de69fdff73c
6b5db8fbfb56f083d54b13e7660d0e4bc866aa00
f4099e9153c3dc481add95b0f24dbb8f6d65cc74ad5631d9cb6c6f2a0351843d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7021
x-amzn-requestid: 2e30bdac-360e-4d0a-8bb7-c3144e074abe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8ucHb1oAMFjYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7f5-18ba6bc50cb32b1e14c882bd;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: UPEhTwAYEIRy-Cnb0ITefEotLyg3rFe_NaGy92xwWe_7hrdo6UQLwQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:56:53 GMT
age: 73065
etag: "6b5db8fbfb56f083d54b13e7660d0e4bc866aa00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.plugin.js?ver=5.8.5
43.231.114.105200 OK 1.7 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.plugin.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (3447)
Hash bcd471ff0979cb6edef0baa336bb59e8
d463a3f315c9bff257a8956cfe954ea9fe1fecb2
3e246e0779f2b16b2121f7b3465743a36e04c7080bbf6ed3bc2613fa81ccb756
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/jquery.plugin.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "120f-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1662
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.hoverDir.min.js?ver=5.8.5
43.231.114.105200 OK 2.5 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.hoverDir.min.js?ver=5.8.5
IP 43.231.114.105:0
Hash 73b2e798721988948b029e8f395490e3
80bd3e428e2d5840d5fc330e2479d0a809913a8b
6b7d54ea05a660df70870304771390ca03540fa1d7d94fb6df54ac4490d9fc9f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/jquery.hoverDir.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "2501-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2502
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/hoverIntent.js?ver=1.10.1
43.231.114.105200 OK 2.4 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/hoverIntent.js?ver=1.10.1
IP 43.231.114.105:0
Hash 931b5e5fd0492085f1506a3075065ccc
9807690213cffac8c69a8e206d963bd716ebb82a
ab7f4423e6433d5e88148a00eec72b96a1abf6a19760c5d7bb3b9cc708f17ae8
GET /wp-includes/js/hoverIntent.js?ver=1.10.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 26 Nov 2021 14:55:21 GMT
ETag: "1bbb-5d1b247b56113-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2404
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.countdown.min.js?ver=5.8.5
43.231.114.105200 OK 4.6 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.countdown.min.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (13714)
Hash b4b12a00320d9db5328ac270d1e19bec
c7d08fd06587bfdc345afe14b318d5c9ce0c52d5
6f45a1d9ffee3bdc62d71536edce6b51f03efd94a82e49257775a0b3e39a5be3
GET /wp-content/themes/superfood/assets/js/modules/plugins/jquery.countdown.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "3697-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4586
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/twemoji.js?ver=5.8.5
43.231.114.105200 OK 8.2 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/twemoji.js?ver=5.8.5
IP 43.231.114.105:0
File type Unicode text, UTF-8 text, with very long lines (12543)
Hash 0b890f7464bf5bc52dcd0f87344b7fa5
b4f1db3acc5ccceda4262e623f0a43ec22a52155
7d61c513adbdf90635d6d5eeffbbb02dd8c502b5a9e075d37313a0bc77373bc7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/twemoji.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 26 Nov 2021 14:55:21 GMT
ETag: "7cdc-5d1b247b63bd4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8150
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/wp-emoji.js?ver=5.8.5
43.231.114.105200 OK 3.4 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/wp-emoji.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (786)
Hash c2e30941f92359050964c0f30796dc20
bc6cdac0c613c89ba85760ced8fc7516f291c28d
d202e98a163373466a831419af7d57210a74c949309346c0630fa3a4dda03a9e
GET /wp-includes/js/wp-emoji.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 29 Jan 2020 00:45:18 GMT
ETag: "231d-59d3ca78a2380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3441
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1646972520
43.231.114.105200 OK 1.4 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1646972520
IP 43.231.114.105:0
File type ASCII text, with very long lines (5305), with no line terminators
Hash 9437778616b64363b1dd28983f34cd49
5e42e7d566714125551df14c2050f58250cb47fd
650e9bdf3c1e8f3fe79621e3614687d2945381eb04d669e3ee46ef0f3ad95e08
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1646972520 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:00 GMT
ETag: "14b9-5d9e9ac0dbe01-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1375
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/plugins/buttonizer-multifunctional-button/assets/frontend.css?v=0b190caf57f2470264fae0ce51c6a25e&ver=5.8.5
43.231.114.105200 OK 976 B URL HTTP/1.1 monfoodland.mn/wp-content/plugins/buttonizer-multifunctional-button/assets/frontend.css?v=0b190caf57f2470264fae0ce51c6a25e&ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (6416)
Hash 7dd9216c5af7c3b475b838eac37b4759
1623fb698ef09f51c8c4252dd932125890e6e840
3ab58067102018d345477bfc2b0cb5d5f5853de4886c758d0c5667bf63dd42fa
GET /wp-content/plugins/buttonizer-multifunctional-button/assets/frontend.css?v=0b190caf57f2470264fae0ce51c6a25e&ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 26 Nov 2021 14:56:13 GMT
ETag: "1d87-5d1b24acf7596-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 976
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.1
43.231.114.105200 OK 5.4 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.1
IP 43.231.114.105:0
File type ASCII text, with very long lines (23874)
Hash 023f9340e916e6f4298b2b7be6636b01
1501e8e48c0e7287254942c70306d221a308c5dd
efea679c8544e9e3ed4c86fb2aeb8f2f8e61910b3797cfc785f80764795ab531
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 26 Nov 2021 14:58:00 GMT
ETag: "c2e1-5d1b2513c42d8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5362
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=1646972520
43.231.114.105200 OK 21 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=1646972520
IP 43.231.114.105:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash f9863ad002a854315d4a835a9522640c
17e61edd9e06a0d3b97d390c0b8003052985c3a9
0195a1e588a820760f9923c256a53eca4526f1bde5c6fb4daaeadd3ef26e2821
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=1646972520 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:00 GMT
ETag: "2ee66-5d9e9ac0dfc81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20790
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/owl.carousel.min.js?ver=5.8.5
43.231.114.105200 OK 10 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/owl.carousel.min.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (40405), with no line terminators
Hash ec653fd9dae768b58c16b77ebeb0b7ac
df0d60856a0ae691370316ff7d2d5c2f17de65bf
2c4a236e3a3db357d09d878a4b360fdc9b1b7b0743d7eacea4d14065151e3ea5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/owl.carousel.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "9dd5-5d81e1779f497-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10518
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/parallax.min.js?ver=5.8.5
43.231.114.105200 OK 635 B URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/parallax.min.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (1075)
Hash 932ddac6336d94397b6c8d9b659ab1a7
6a218d500b2d8040856077f418be39e1d3d325a7
e7b2e77ac61017f725d8c16ac0c2361c11c8f5a77217739478cd64dfe137b73b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/parallax.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "577-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 635
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/easypiechart.js?ver=5.8.5
43.231.114.105200 OK 1.3 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/easypiechart.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (3968), with no line terminators
Hash ae566b9ef54d31c304425a0705c21e88
dfb8362bed4eab695aa00a348a330eebb7edef8d
55175887652c32cd61012e67e9b0f8227ccf277a12e35bdddbbf5bf628821a44
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/easypiechart.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "f80-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1298
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.waypoints.min.js?ver=5.8.5
43.231.114.105200 OK 2.7 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.waypoints.min.js?ver=5.8.5
IP 43.231.114.105:0
File type Unicode text, UTF-8 text, with very long lines (8668)
Hash f7d4b6ef09365ba331dda4e3648c05fc
f852f915b87c84eb1c3590829e8d9f5c97fbe620
61e3dba589d367496e409a346677b89db66ee134e7370f06a8629ce0492eb6c6
GET /wp-content/themes/superfood/assets/js/modules/plugins/jquery.waypoints.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "2281-5d81e1779f497-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2698
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/Chart.min.js?ver=5.8.5
43.231.114.105200 OK 12 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/Chart.min.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (32020)
Hash 3457807a63ac7bdabf8999b98245d0fe
0e287bb84c3af87fc886e84d385376119084cc06
f7fe4da7c3330135432d7768664b21573fc8520fc2e41cc2c1aa51e03b454532
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/Chart.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "cb7b-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11665
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/counter.js?ver=5.8.5
43.231.114.105200 OK 440 B URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/counter.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (884)
Hash 3d714416bc918e178ec12d3d2da0373e
3d23c0175598bb53bce5643bbd4ff5a024597e70
3654efe473e2ece6aeb16a46df48dd4191fc39f03ef70afd1d7ec067417a030b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/counter.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "39c-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 440
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/absoluteCounter.min.js?ver=5.8.5
43.231.114.105200 OK 627 B URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/absoluteCounter.min.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (1238)
Hash ce58c055129c07f10f69e18be4bd92a5
07252dc31cae98092d6890fd2a6f7bf07d52f90d
b9febfcc3a4f16336ce64ca0c94327d9bdbaa29b5b2c3e15115f01c2d3a8b53a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/absoluteCounter.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "4ed-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 627
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuHMR6WR.woff2
216.58.207.195200 OK 9.3 kB URL HTTP/1.1 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuHMR6WR.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9276, version 1.0\012- data
Hash b14bff0d7c479a295233fcf4aec05e8c
ae78b83f7782583f94acd6348d4be844985ccd0d
8bf6481fd9ca6cf5ea01c350f2e9a71321c5e4b99a116418ab2c9f0c4c01af81
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuHMR6WR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 9276
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 00:11:08 GMT
Expires: Fri, 29 Sep 2023 00:11:08 GMT
Cache-Control: public, max-age=31536000
Age: 583410
Last-Modified: Tue, 19 Apr 2022 18:41:43 GMT
Content-Type: font/woff2
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/fluidvids.min.js?ver=5.8.5
43.231.114.105200 OK 734 B URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/fluidvids.min.js?ver=5.8.5
IP 43.231.114.105:0
File type HTML document, ASCII text, with very long lines (1234)
Hash fcc375a83f255a90c6bfb4f23c5cff02
80b721e5cb742af645ad34c3836db48021e69319
4ab585a5964ee2d5403c790bb2a4d72985af5daad764e4968e9957b736c2dd7a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/fluidvids.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "52c-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 734
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 03 Oct 2022 21:39:33 GMT
Expires: Tue, 03 Oct 2023 21:39:33 GMT
Cache-Control: public, max-age=31536000
Age: 160505
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
216.58.207.195200 OK 26 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 26240, version 1.0\012- data
Hash 4a90976686fcbd8296c7d7fccc04c273
bcb82e93ac7ad1fa2af6a37009a200f79f4cb4e5
59bd288e64c57e034672999e33ebda6eb5ad1575945eb563dbfb5b44f226e1e1
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26240
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 03 Oct 2022 23:32:19 GMT
Expires: Tue, 03 Oct 2023 23:32:19 GMT
Cache-Control: public, max-age=31536000
Age: 153739
Last-Modified: Mon, 15 Aug 2022 18:14:37 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
216.58.207.195200 OK 15 kB URL HTTP/1.1 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 14964, version 1.0\012- data
Hash 44b4e1e6aecc684d11fe7501dd36df19
59e2710168a0d6889a24eaaa5134114f7e258461
6b0b111ca14c2147a0f0cb51f1317290eb5ec19b4a9bea595a5ad7ffb7d9661a
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 14964
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 28 Sep 2022 20:26:48 GMT
Expires: Thu, 28 Sep 2023 20:26:48 GMT
Cache-Control: public, max-age=31536000
Age: 596870
Last-Modified: Tue, 19 Apr 2022 18:08:11 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
216.58.207.195200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16324, version 1.0\012- data
Hash f43fa5b4f6366eae0039e4e49db645de
d7fec074ba8b6e69bec4a995ea722d3d1513ad43
0aa6a7045a55ddcb25bbee4d1edcb864081cf59f7fc9bdc1ada22a32ed4ad3ad
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16324
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 17:05:06 GMT
Expires: Fri, 29 Sep 2023 17:05:06 GMT
Cache-Control: public, max-age=31536000
Age: 522572
Last-Modified: Tue, 19 Apr 2022 18:08:32 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuHMR6WR.woff2
216.58.207.195200 OK 11 kB URL HTTP/1.1 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuHMR6WR.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 10800, version 1.0\012- data
Hash 6d9d0bddb868f2299504e7aa3de4ad12
d1eccb375f0bcd664204a4389db938c2bbe6749a
998691c2c0c408e5cbf98147176c36679708ce66b26b77f3fc30b83fa5bab311
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuHMR6WR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 10800
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 04:58:38 GMT
Expires: Fri, 29 Sep 2023 04:58:38 GMT
Cache-Control: public, max-age=31536000
Age: 566160
Last-Modified: Tue, 19 Apr 2022 18:07:45 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDujMR6WR.woff2
216.58.207.195200 OK 19 kB URL HTTP/1.1 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDujMR6WR.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 18672, version 1.0\012- data
Hash 512de02250e748c82b10eaf2ff68f390
96ff17619c03cb1431df0f63e69ae4a07b949a19
f445288899250a54626049f223e835df0b61f176362562e858af4e833ac9a41b
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDujMR6WR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 18672
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 03 Oct 2022 18:07:36 GMT
Expires: Tue, 03 Oct 2023 18:07:36 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 18:09:47 GMT
Content-Type: font/woff2
Age: 173222
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2
216.58.207.195200 OK 49 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 49116, version 1.0\012- data
Hash 11404ec4a9f0289f2e01719a5f161f14
61d036a0378e03d98a19f2e9f89d37317108fb3e
7608d58af9b388dd3736f6f3c0004e0c5a9278eacf320e17d5e787c70c28c218
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 49116
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 04 Oct 2022 09:20:23 GMT
Expires: Wed, 04 Oct 2023 09:20:23 GMT
Cache-Control: public, max-age=31536000
Age: 118455
Last-Modified: Mon, 15 Aug 2022 18:14:56 GMT
Content-Type: font/woff2
monfoodland.mn/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.js?ver=3.1.6-wc.5.9.1
43.231.114.105200 OK 9.3 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.js?ver=3.1.6-wc.5.9.1
IP 43.231.114.105:0
File type HTML document, ASCII text, with very long lines (603)
Hash dc19d85383bfc2c5e3b5345dd442ce87
333b6576a7d75d3181d78107aff8f3214631472d
ebdbc3bdad630a2667fffa0a9c3b0bb8bfe7be331b0950055ed834baf4e94451
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.js?ver=3.1.6-wc.5.9.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:02 GMT
ETag: "884e-5d9e9ac2414d6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9287
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.nicescroll.min.js?ver=5.8.5
43.231.114.105200 OK 17 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.nicescroll.min.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (1029)
Hash 3641693347c97c3b0d60f385d619d558
88c49f7395c1e2e0f2551513f6a82905f6e7333c
0a7d00c01c707037a2ae181c5fffc785ca7c161de63c9bdce1e5bf4fdf7e07dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/jquery.nicescroll.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "f2b2-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16781
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/ScrollToPlugin.min.js?ver=5.8.5
43.231.114.105200 OK 1.1 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/ScrollToPlugin.min.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (2140)
Hash 35a345fe1bb749be8f9dfbfcb4f52916
b15653f58f53c2e88254c7cd1298cf494e6a14b6
b04f74a7a35ea876b76ac198d2a42ca1bb8504b1da68c670b2a44c9a515d792e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/ScrollToPlugin.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "9e5-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1092
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.waitforimages.js?ver=5.8.5
43.231.114.105200 OK 926 B URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.waitforimages.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (2043)
Hash 954a0632e5a96733b5915db842ab1bfc
d6db346c7635090ace19ac1d0fbd6eb672aff553
27aec1e6d0a8f15398a7eca20e5a0b714e61afecd7d1d550bf1914f1dcd2f5ee
GET /wp-content/themes/superfood/assets/js/modules/plugins/jquery.waitforimages.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "8f9-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 926
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.easing.1.3.js?ver=5.8.5
43.231.114.105200 OK 1.9 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.easing.1.3.js?ver=5.8.5
IP 43.231.114.105:0
File type Unicode text, UTF-8 text, with very long lines (3601)
Hash 3f6af064ffab68254290e80efb4b0a0a
e465725ffc03fc1ed20870d295999324014a1424
e944660a9542d7596da7b72e467a3f48b49a2d76f42102faacc9e50da17da9da
GET /wp-content/themes/superfood/assets/js/modules/plugins/jquery.easing.1.3.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "15bd-5d81e1779e4f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1872
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.multiscroll.min.js?ver=5.8.5
43.231.114.105200 OK 3.6 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/jquery.multiscroll.min.js?ver=5.8.5
IP 43.231.114.105:0
File type HTML document, ASCII text, with very long lines (13204)
Hash 180a7af01eaa93a1a965ca83de38bdf7
17e6157b75f975d5037d578ebc0340c8016f6f4f
fdc75391364ad2fc10d455f4c38284889e6c187138baa5b903f3f3ff3061444c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/jquery.multiscroll.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "3473-5d81e1779f497-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3620
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.2.0
43.231.114.105200 OK 10 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.2.0
IP 43.231.114.105:0
File type ASCII text, with very long lines (32004)
Hash 0ffe60bf5290a017690aba61438cc811
bc5e291135a49e69b4c74fbf65b36c91f8ee3a72
d96faa744efa6a4aa4510130a29505cddfc3409680a8b33888292fd23c403727
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.2.0 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 18 May 2020 06:27:45 GMT
ETag: "8b8a-5a5e642d4e083-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9977
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/packery-mode.pkgd.min.js?ver=5.8.5
43.231.114.105200 OK 4.1 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules/plugins/packery-mode.pkgd.min.js?ver=5.8.5
IP 43.231.114.105:0
File type ASCII text, with very long lines (13547)
Hash 14a95c09c1a4caf278731c74c07bc7e2
baf3af8bc113e2591948d9016cc24434178f614c
e4e16f636034e977d2096445aca19be44c8dafc1917e710896827fe547e2a875
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules/plugins/packery-mode.pkgd.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "3532-5d81e1779f497-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4102
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0
43.231.114.105200 OK 5.8 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0
IP 43.231.114.105:0
File type ASCII text, with very long lines (20378)
Hash 2442a1029aec4c1bd5540cfe10368019
e0c0a0f563b6b8ab44d23cbd59923178e9af37d7
010db2bdacbb4c31a7bffe25fce0a8e0c4e38fe11c837d715b5f4206bdc95678
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 18 May 2020 06:27:45 GMT
ETag: "5075-5a5e642d5da84-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5816
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/modules.min.js?ver=5.8.5
43.231.114.105200 OK 16 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/modules.min.js?ver=5.8.5
IP 43.231.114.105:0
File type HTML document, ASCII text, with very long lines (31993)
Hash 4038b0bff49398c502bdee3374cfa531
bfe8e6c16d29e04dfcb3f563310e883a5a4a2151
05e96d7d25edcc8190fc58bb4d4648595e07c931f5d6e6a0b7853c1a8e4757a9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/modules.min.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "11d42-5d81e1779d557-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16187
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/js/like.js?ver=1.0
43.231.114.105200 OK 636 B URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/js/like.js?ver=1.0
IP 43.231.114.105:0
Hash 618410ac3bcc930f3e1664e42863b4a1
af7b4b4096a3d5946f489a3a0f07f14420988875
b3bbf17f2ebb460c7a01fccbb8b6be19614ff4a0ae1037163917562c93dfce96
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/js/like.js?ver=1.0 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "819-5d81e1779d557-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 636
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/plugins/woocommerce/assets/js/select2/select2.full.js?ver=4.0.3-wc.5.9.1
43.231.114.105200 OK 36 kB URL HTTP/1.1 monfoodland.mn/wp-content/plugins/woocommerce/assets/js/select2/select2.full.js?ver=4.0.3-wc.5.9.1
IP 43.231.114.105:0
Hash ec282f55de9670ea503ce59a577cdcef
1ccea30edea859f5802e4dfee5edc3d287a03c04
1004f9201d3b8a0d1cf58a8577c22c0a3183b95c7dd05a7d57e196eba5ecf0c1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/select2/select2.full.js?ver=4.0.3-wc.5.9.1 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 11 Mar 2022 04:22:02 GMT
ETag: "27828-5d9e9ac245356-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35613
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-includes/js/wp-embed.js?ver=5.8.5
43.231.114.105200 OK 1.3 kB URL HTTP/1.1 monfoodland.mn/wp-includes/js/wp-embed.js?ver=5.8.5
IP 43.231.114.105:0
Hash 9e5287d9a9872a3221fd10a73748fe3c
404f0d9bc77b80d0b177632ed2dd9e1ca5856dd0
8be9d8376d5fc7450a00e44c338644982d9d72508bab74981ea7188f81f844c4
GET /wp-includes/js/wp-embed.js?ver=5.8.5 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 30 Aug 2018 12:40:26 GMT
ETag: "c8e-574a661196280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
monfoodland.mn/wp-content/themes/superfood/assets/css/linea-icons/arrows/fonts/linea-arrows-10.woff
43.231.114.105200 OK 7.7 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/linea-icons/arrows/fonts/linea-arrows-10.woff
IP 43.231.114.105:0
File type Web Open Font Format, CFF, length 7712, version 1.0\012- data
Hash e9c2f96041f9aa6fa05699a7e361d5cf
b09b53dd44e3d8c6f1442c460c834a06e259b6ea
6afa35b78426b95a66db9b63f809862d72b6533b2a0a6a6dfba706e354ba823e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/linea-icons/arrows/fonts/linea-arrows-10.woff HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://monfoodland.mn/wp-content/themes/superfood/assets/css/linea-icons/style.css?ver=5.8.5
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "1e20-5d81e1779c5b7"
Accept-Ranges: bytes
Content-Length: 7712
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/font-woff
monfoodland.mn/wp-content/themes/superfood/assets/css/elegant-icons/fonts/ElegantIcons.woff
43.231.114.105200 OK 64 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/elegant-icons/fonts/ElegantIcons.woff
IP 43.231.114.105:0
File type Web Open Font Format, CFF, length 63664, version 1.0\012- data
Hash fdd9e757bf61675343dcf55100422b84
f9be87fa2d1d4a95e8305afb51778db4bc759fbc
be1825e52a0dc7df04df9322f62abe2a2f2a25d98aac186de0140dfc7f6bdcae
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/superfood/assets/css/elegant-icons/fonts/ElegantIcons.woff HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://monfoodland.mn/wp-content/themes/superfood/assets/css/elegant-icons/style.min.css?ver=5.8.5
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "f8b0-5d81e17798736"
Accept-Ranges: bytes
Content-Length: 63664
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/font-woff
monfoodland.mn/wp-content/themes/superfood/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
43.231.114.105200 OK 72 kB URL HTTP/1.1 monfoodland.mn/wp-content/themes/superfood/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 43.231.114.105:0
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /wp-content/themes/superfood/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://monfoodland.mn/wp-content/themes/superfood/assets/css/font-awesome/css/font-awesome.min.css?ver=5.8.5
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Feb 2022 08:03:58 GMT
ETag: "118d8-5d81e17797796"
Accept-Ranges: bytes
Content-Length: 71896
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
monfoodland.mn/wp-content/uploads/2020/09/000-Shuud-ashiglakh-logo.png
43.231.114.105200 OK 260 kB URL HTTP/1.1 monfoodland.mn/wp-content/uploads/2020/09/000-Shuud-ashiglakh-logo.png
IP 43.231.114.105:0
File type PNG image data, 4961 x 4961, 8-bit colormap, non-interlaced\012- data
Size 260 kB (260537 bytes)
Hash 5cf91a12f0fa084820e9c45db6d59de0
0489670935bc031fb144883f61a41775db2cb49c
41d439a191eb3f38e25f40e63673be2df0b8c534fea68a0b900d5cdf85b85c64
GET /wp-content/uploads/2020/09/000-Shuud-ashiglakh-logo.png HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 03 Sep 2020 02:35:08 GMT
ETag: "3f9b9-5ae5f99bfca5f"
Accept-Ranges: bytes
Content-Length: 260537
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
monfoodland.mn/wp-admin/admin-ajax.php?action=buttonizer&qpu=53939a7b940a64f2c1d873b188ad12b4&preview=0
43.231.114.105200 OK 3.1 kB URL HTTP/1.1 monfoodland.mn/wp-admin/admin-ajax.php?action=buttonizer&qpu=53939a7b940a64f2c1d873b188ad12b4&preview=0
IP 43.231.114.105:0
File type JSON data\012- , ASCII text, with very long lines (3050), with no line terminators
Hash d51e4c63ffac221c377757529a84af59
bfe13eaaa6819307507921840e5114aba26b1534
0c0b82d3374b15bf672ee106566fd3bacfa19c279f448d0859a32456024ddf8a
GET /wp-admin/admin-ajax.php?action=buttonizer&qpu=53939a7b940a64f2c1d873b188ad12b4&preview=0 HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 3050
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
monfoodland.mn/?wc-ajax=get_refreshed_fragments
43.231.114.105200 OK 822 B URL HTTP/1.1 monfoodland.mn/?wc-ajax=get_refreshed_fragments
IP 43.231.114.105:0
File type JSON data\012- , ASCII text, with very long lines (822), with no line terminators
Hash a5a33afe2a1aa41c64067b26dd9d0050
59d38c64f2d6e6890a50471a4c12bdc13a9c5e0a
b33942b74f4e0de64a7e3446260c60d4bfe937df85ad5308ff1a5ee41f990108
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Access-Control-Allow-Origin: http://monfoodland.mn
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
Content-Length: 822
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3254
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:14:39 GMT
Last-Modified: Wed, 05 Oct 2022 17:20:25 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk/xfbml.customerchat.js
31.13.72.12200 OK 92 kB URL HTTP/2 connect.facebook.net/en_US/sdk/xfbml.customerchat.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (20829)
Hash d1c21efa489e57cb455fc2d5f03c2d34
5a4d26a0e9c9a775a5c76bb504b50dd0964609d4
0da763afc3ab1b985581bdfeab63ed4c6423b461c9fc5b62ff98552d8a3459a5
GET /en_US/sdk/xfbml.customerchat.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://monfoodland.mn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 68e4a26b693202018b43d7729d62d1b8
etag: "582a1e2be0aa1a5efced14bb398e8a2d"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 05 Oct 2022 18:26:38 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 0cIe+kieV8tFX8LV8DwtNA==
x-fb-debug: AoPZ/ZRv6QXZyYj9d5Xeqy1FH5sWrqvp8KmoDEjKQ2TZsB9XdyPIlzaJHWgJ9aNggcvFa3ecWIx9AJ1SoIe5fA==
content-length: 92416
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:14:39 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3254
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:14:39 GMT
Last-Modified: Wed, 05 Oct 2022 17:20:25 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/webfonts/fa-brands-400.woff2
104.17.25.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/webfonts/fa-brands-400.woff2
IP 104.17.25.14:0
File type Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Hash ed311c7a0ade9a75bb3ebf5a7670f31d
0613c7ebba55ee47ef302c0f7766324692f899a7
8ea8791754915a898a3100e63e32978a6d1763be6df8e73a39d3a90d691cdeef
GET /ajax/libs/font-awesome/5.15.4/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 18:14:39 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 76736
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "613fa20b-12bc0"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1383273
expires: Mon, 25 Sep 2023 18:14:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bkBC0K6%2FIjHvmpsWGMji6zPoJxpOMth6pIZ%2BDpcia9IxRqGmsf%2FxsM18%2BUnjoy38OZwF9JQPIPhGu3XzlJ6%2B%2BxjzC%2BERP3%2BAVcBcqUIRBm0EFTJdVs2Ea8OlhcIDbOTbl90cE9Pr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75582360de610b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
monfoodland.mn/wp-content/uploads/2020/05/cropped-favicon-2-32x32.png
43.231.114.105200 OK 1.7 kB URL HTTP/1.1 monfoodland.mn/wp-content/uploads/2020/05/cropped-favicon-2-32x32.png
IP 43.231.114.105:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 9da03e8ac611ac749938fe2299ed24d1
55b2509583a6b0d3cd51152c09a0ccdbddd29762
319a2c43fc47ee6f5a6e5180bb4a273798a04d334ff51cf337b6aaf4cf6d6b9a
GET /wp-content/uploads/2020/05/cropped-favicon-2-32x32.png HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:39 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 21 May 2020 01:13:26 GMT
ETag: "6a6-5a61e383dac35"
Accept-Ranges: bytes
Content-Length: 1702
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
monfoodland.mn/wp-content/uploads/2020/05/cropped-favicon-2-192x192.png
43.231.114.105200 OK 25 kB URL HTTP/1.1 monfoodland.mn/wp-content/uploads/2020/05/cropped-favicon-2-192x192.png
IP 43.231.114.105:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash e71ec7545c0b91dab66732916b08e426
c299b5c973093342f6f0ca78f5bc6495305af22c
9270106f252f7632b07868e331e9d458fa200f691c680ba18c4390752678d342
GET /wp-content/uploads/2020/05/cropped-favicon-2-192x192.png HTTP/1.1
Host: monfoodland.mn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://monfoodland.mn/partner/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:14:39 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 21 May 2020 01:13:26 GMT
ETag: "61b0-5a61e383d0ff4"
Accept-Ranges: bytes
Content-Length: 25008
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
www.facebook.com/plugins/customer_chat/SDK/?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df36223e3e802808%26domain%3Dmonfoodland.mn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmonfoodland.mn%252Ff2d7236466d6c4%26relation%3Dparent.parent¤t_url=http%3A%2F%2Fmonfoodland.mn%2Fpartner%2F&event_name=chat_plugin_sdk_facade_create&is_loaded_by_facade=true&loading_time=0&locale=en_US&log_id=50957f7c-1b65-498a-bb50-ef41de2600fb&page_id=676437895770898&request_time=1664993679780&sdk=joey&should_use_new_domain=false&suppress_http_code=1
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/customer_chat/SDK/?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df36223e3e802808%26domain%3Dmonfoodland.mn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmonfoodland.mn%252Ff2d7236466d6c4%26relation%3Dparent.parent¤t_url=http%3A%2F%2Fmonfoodland.mn%2Fpartner%2F&event_name=chat_plugin_sdk_facade_create&is_loaded_by_facade=true&loading_time=0&locale=en_US&log_id=50957f7c-1b65-498a-bb50-ef41de2600fb&page_id=676437895770898&request_time=1664993679780&sdk=joey&should_use_new_domain=false&suppress_http_code=1
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/customer_chat/SDK/?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df36223e3e802808%26domain%3Dmonfoodland.mn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmonfoodland.mn%252Ff2d7236466d6c4%26relation%3Dparent.parent¤t_url=http%3A%2F%2Fmonfoodland.mn%2Fpartner%2F&event_name=chat_plugin_sdk_facade_create&is_loaded_by_facade=true&loading_time=0&locale=en_US&log_id=50957f7c-1b65-498a-bb50-ef41de2600fb&page_id=676437895770898&request_time=1664993679780&sdk=joey&should_use_new_domain=false&suppress_http_code=1 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://monfoodland.mn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: http://monfoodland.mn
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: Wz5COWFMyaG0ZtOygvgbQspCAi9IoOuseFc4OBukIRr1NYHFhIy/IQB8rJtKd+sAgVJa8wy5+/HjKI8iKz9hgQ==
content-length: 0
date: Wed, 05 Oct 2022 18:14:39 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/customer_chat/SDK/?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df36223e3e802808%26domain%3Dmonfoodland.mn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmonfoodland.mn%252Ff2d7236466d6c4%26relation%3Dparent.parent¤t_url=http%3A%2F%2Fmonfoodland.mn%2Fpartner%2F&event_name=chat_plugin_sdk_facade_load&is_loaded_by_facade=true&loading_time=185&locale=en_US&log_id=50957f7c-1b65-498a-bb50-ef41de2600fb&page_id=676437895770898&request_time=1664993679965&sdk=joey&should_use_new_domain=false&suppress_http_code=1
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/customer_chat/SDK/?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df36223e3e802808%26domain%3Dmonfoodland.mn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmonfoodland.mn%252Ff2d7236466d6c4%26relation%3Dparent.parent¤t_url=http%3A%2F%2Fmonfoodland.mn%2Fpartner%2F&event_name=chat_plugin_sdk_facade_load&is_loaded_by_facade=true&loading_time=185&locale=en_US&log_id=50957f7c-1b65-498a-bb50-ef41de2600fb&page_id=676437895770898&request_time=1664993679965&sdk=joey&should_use_new_domain=false&suppress_http_code=1
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/customer_chat/SDK/?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df36223e3e802808%26domain%3Dmonfoodland.mn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmonfoodland.mn%252Ff2d7236466d6c4%26relation%3Dparent.parent¤t_url=http%3A%2F%2Fmonfoodland.mn%2Fpartner%2F&event_name=chat_plugin_sdk_facade_load&is_loaded_by_facade=true&loading_time=185&locale=en_US&log_id=50957f7c-1b65-498a-bb50-ef41de2600fb&page_id=676437895770898&request_time=1664993679965&sdk=joey&should_use_new_domain=false&suppress_http_code=1 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://monfoodland.mn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: http://monfoodland.mn
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: P01ynas1h5+8t+hHdCxlvlEVtehdjUNOWjXL5n4GhTwT2mx8My0wmdE5HCH8ktNA/pnFimov8FRxc61r9eEjeQ==
content-length: 0
date: Wed, 05 Oct 2022 18:14:40 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/customer_chat/facade/?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df36223e3e802808%26domain%3Dmonfoodland.mn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmonfoodland.mn%252Ff2d7236466d6c4%26relation%3Dparent.parent¤t_url=http%3A%2F%2Fmonfoodland.mn%2Fpartner%2F&is_loaded_by_facade=true&locale=en_US&log_id=50957f7c-1b65-498a-bb50-ef41de2600fb&page_id=676437895770898&request_time=1664993679780&sdk=joey&should_use_new_domain=false&suppress_http_code=1
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/customer_chat/facade/?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df36223e3e802808%26domain%3Dmonfoodland.mn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmonfoodland.mn%252Ff2d7236466d6c4%26relation%3Dparent.parent¤t_url=http%3A%2F%2Fmonfoodland.mn%2Fpartner%2F&is_loaded_by_facade=true&locale=en_US&log_id=50957f7c-1b65-498a-bb50-ef41de2600fb&page_id=676437895770898&request_time=1664993679780&sdk=joey&should_use_new_domain=false&suppress_http_code=1
IP 31.13.72.36:0
GET /plugins/customer_chat/facade/?app_id=&attribution=wordpress&attribution_version=2.3&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df36223e3e802808%26domain%3Dmonfoodland.mn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmonfoodland.mn%252Ff2d7236466d6c4%26relation%3Dparent.parent¤t_url=http%3A%2F%2Fmonfoodland.mn%2Fpartner%2F&is_loaded_by_facade=true&locale=en_US&log_id=50957f7c-1b65-498a-bb50-ef41de2600fb&page_id=676437895770898&request_time=1664993679780&sdk=joey&should_use_new_domain=false&suppress_http_code=1 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://monfoodland.mn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json; charset=utf-8
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
access-control-allow-origin: http://monfoodland.mn
strict-transport-security: max-age=15552000; preload
x-fb-debug: aqqwaQbGSxd2rxAoWSVRHvW7CgX7+e/bXT2U3gQfTUXrRF2aIdw4SCpbJVCDiLOfxxEAgMLch4XJqKB1m+rV1A==
date: Wed, 05 Oct 2022 18:14:39 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=676437895770898&suppress_http_code=1
31.13.72.8200 OK 0 B URL HTTP/2 socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=676437895770898&suppress_http_code=1
IP 31.13.72.8:0
GET /new_domain_gating/?endpoint=customerchat&page_id=676437895770898&suppress_http_code=1 HTTP/1.1
Host: socialplugin.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://monfoodland.mn
Connection: keep-alive
Referer: http://monfoodland.mn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json; charset=utf-8
x-fb-rlafr: 0
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: http://monfoodland.mn
x-fb-debug: KVSRPvrfndQLDwssmaE7hNplI3yMI9ECLKWnxkiW5qnObvlpzfFmzqC6ailDxiaL2dsdaSDcvq93i+Oxf101dQ==
date: Wed, 05 Oct 2022 18:14:39 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2