r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8387
Expires: Fri, 07 Oct 2022 07:04:24 GMT
Date: Fri, 07 Oct 2022 04:44:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0FWQBrZrrzlLnszoT1eQQERW2ubBknAUBoLD_MGgQk-zJ407ba4Uzg==
Age: 133039
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4234
Expires: Fri, 07 Oct 2022 05:55:11 GMT
Date: Fri, 07 Oct 2022 04:44:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 935geeltMQuTTNqmzVkre7K+rl4Bp1Q2EZYEBGqykBOoGId2MIM9Kwm0hxgMmW1vjdpCwOYmQI8=
x-amz-request-id: TBGX758KEGN4EBJ8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 07 Oct 2022 03:59:01 GMT
age: 2736
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
distri.afesistemas.xyz/
45.79.85.100200 OK 1.0 kB IP 45.79.85.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 916ac9b849f9b2f1d7ad87692bf0c308
5bacef15b47af919b196651b5df37523657dde3c
382e552bc2070554792c3719864eb7f1fd9e2dc676d4dd6e82eac5ac038e39d5
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 1014
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, OPTIONS
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: Origin, Content-Type, X-Auth-Token , Authorization
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D; expires=Fri, 07-Oct-2022 06:44:37 GMT; Max-Age=7200; path=/; httponly
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/7.3.33, PleskLin
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 04:44:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
distri.afesistemas.xyz/Login_v11/fonts/Linearicons-Free-v1.0.0/icon-font.min.css
45.79.85.100200 OK 7.4 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/fonts/Linearicons-Free-v1.0.0/icon-font.min.css
IP 45.79.85.100:0
File type ASCII text, with very long lines (7191)
Hash ec26292e52e5bc20624b029974bd0adf
3756375bb053b0f3f62303597d844f70cef1b5e0
31ca8fc4bb190118851959f282909af4a8f6e782b69dcfbe00094ffc010878b3
GET /Login_v11/fonts/Linearicons-Free-v1.0.0/icon-font.min.css HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: text/css
Content-Length: 7354
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-1cba"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/fonts/font-awesome-4.7.0/css/font-awesome.min.css
45.79.85.100200 OK 31 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/fonts/font-awesome-4.7.0/css/font-awesome.min.css
IP 45.79.85.100:0
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /Login_v11/fonts/font-awesome-4.7.0/css/font-awesome.min.css HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: text/css
Content-Length: 31000
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-7918"
X-Powered-By: PleskLin
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Fri, 07 Oct 2022 04:29:41 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 07 Oct 2022 05:14:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oqsJYF37Rk8R1prSFk-aYnRrzmhixdZwhT4x5igeF1JHHvP7a2EWFw==
Age: 896
distri.afesistemas.xyz/Login_v11/vendor/css-hamburgers/hamburgers.min.css
45.79.85.100200 OK 20 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/vendor/css-hamburgers/hamburgers.min.css
IP 45.79.85.100:0
File type ASCII text, with very long lines (19499), with CRLF line terminators
Hash f4e16dee11e867f501b9aed5878fe1f3
240a14f6f25bfd3338354f36574c617bb4edc6d7
3149a74d701ee7dd476f83694f8962062a456b5abbdea234101d30aff2738bcd
GET /Login_v11/vendor/css-hamburgers/hamburgers.min.css HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: text/css
Content-Length: 19686
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-4ce6"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/vendor/animate/animate.css
45.79.85.100200 OK 24 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/vendor/animate/animate.css
IP 45.79.85.100:0
Hash 57db4a2811f951ff841fb4f77220d95b
b6fd60d18ef742ea5f6979df0cddb35791c4fbe5
80aa5497ff31b2c001474d9432f0853c11d200a67ea4f9852ab2f7ee2fedd9c2
GET /Login_v11/vendor/animate/animate.css HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: text/css
Content-Length: 23848
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-5d28"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/vendor/select2/select2.min.css
45.79.85.100200 OK 15 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/vendor/select2/select2.min.css
IP 45.79.85.100:0
File type ASCII text, with very long lines (15195)
Hash d44571114a90b9226cd654d3c7d9442c
83b595db66fbf173436fbca475b8b695ef48eb8e
c493991dfa712d1fee861d41c18152e5f8663807484506a23ae97917f6fbbf7b
GET /Login_v11/vendor/select2/select2.min.css HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: text/css
Content-Length: 15196
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-3b5c"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/css/main.css
45.79.85.100200 OK 11 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/css/main.css
IP 45.79.85.100:0
File type ASCII text, with CRLF line terminators
Hash e7fb518208622e586aa494a41a708943
bc86c37fab776c8ef65a5fa9b8a596c9278f0105
0f5d27a5d9fe1069b48e55ea65c56dbb205ca896701658c00d5922f8e57855ac
GET /Login_v11/css/main.css HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: text/css
Content-Length: 11130
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-2b7a"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3360
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 04:44:38 GMT
Last-Modified: Fri, 07 Oct 2022 03:48:38 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
distri.afesistemas.xyz/Login_v11/vendor/bootstrap/css/bootstrap.min.css
45.79.85.100200 OK 125 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/vendor/bootstrap/css/bootstrap.min.css
IP 45.79.85.100:0
File type ASCII text, with very long lines (65320)
Size 125 kB (124962 bytes)
Hash 3ffbab350748e841d3768b5d1ca48933
262e04cab3c1a51024d4f3960c72ebd3968476a7
9bf87f7140c085febf881462c536ee73cf9183670811342d3dc1fd0f7a762a0d
GET /Login_v11/vendor/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: text/css
Content-Length: 124962
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-1e822"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/css/util.css
45.79.85.100200 OK 87 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/css/util.css
IP 45.79.85.100:0
File type ASCII text, with CRLF line terminators
Hash 9cabf2d2ce5a30ae04a9a78140e4b73e
1cb5c5c9760ff75c095c00a93ec0887b2f093b94
27751cc48fb8c009d013ffb85f0f2b1db36530791eca74d317aec90d34f09b39
GET /Login_v11/css/util.css HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: text/css
Content-Length: 86814
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-1531e"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/vendor/bootstrap/js/popper.js
45.79.85.100200 OK 82 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/vendor/bootstrap/js/popper.js
IP 45.79.85.100:0
File type Unicode text, UTF-8 text, with very long lines (337)
Hash d050cc6c76fe97d2bb129331cbe5f4f8
9c9955da554b0cd77c25a9f7a4f5a10c1e6d4ea9
0784468c4c97a489b32cbb1f1a2182d4ae866938035017872ac728f0779c9bce
Analyzer Verdict Alert fortinet Malware
GET /Login_v11/vendor/bootstrap/js/popper.js HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: application/javascript
Content-Length: 82475
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-1422b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/vendor/jquery/jquery-3.2.1.min.js
45.79.85.100200 OK 88 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/vendor/jquery/jquery-3.2.1.min.js
IP 45.79.85.100:0
File type ASCII text, with very long lines (32058)
Hash f1d0ab69d7ba5c2e0373d43d1c83cefb
20c5ad6a40fff963610565db46e7d0a627822308
26b24c4399d37c3e08a697f79336e8280c8c57a0a6d43ff91ede1d24b86d2821
Analyzer Verdict Alert fortinet Malware
GET /Login_v11/vendor/jquery/jquery-3.2.1.min.js HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: application/javascript
Content-Length: 87464
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-155a8"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/vendor/bootstrap/js/bootstrap.min.js
45.79.85.100200 OK 52 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/vendor/bootstrap/js/bootstrap.min.js
IP 45.79.85.100:0
File type ASCII text, with very long lines (51709)
Hash 2ce236559b6b0cb988dc23e202b13e4f
169f60cf2d77cbeb96cc1cc127cb9b1dda722fba
316e298afc0bc589b7c7561ae77d457f25775790ea4c1a1867ae77a4f5178c12
Analyzer Verdict Alert fortinet Malware
GET /Login_v11/vendor/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:37 GMT
Content-Type: application/javascript
Content-Length: 51948
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-caec"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/vendor/select2/select2.min.js
45.79.85.100200 OK 68 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/vendor/select2/select2.min.js
IP 45.79.85.100:0
File type Unicode text, UTF-8 text, with very long lines (32091)
Hash 3c3c019355296fe4fe1684104cccdd25
56eb90770fcebff80bbe895132a9469698d4ff28
42e98b83526eaaa69a842d2d59345ae2ac26a8ef18e73ef271f375ea96ea9cc0
Analyzer Verdict Alert fortinet Malware
GET /Login_v11/vendor/select2/select2.min.js HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:38 GMT
Content-Type: application/javascript
Content-Length: 67469
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-1078d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/js/main.js
45.79.85.100200 OK 2.2 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/js/main.js
IP 45.79.85.100:0
File type ASCII text, with very long lines (816), with CRLF line terminators
Hash c8aede57d76350d1a2dcd57b6c89450a
d605f47bfa17e0682c2eb2f7c4f65fe0f66818c7
f5cdc1f10cc47ce64ad8b0085d9c695654b3f582b4db815e6440014ba53c8f47
Analyzer Verdict Alert fortinet Malware
GET /Login_v11/js/main.js HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:38 GMT
Content-Type: application/javascript
Content-Length: 2225
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-8b1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
push.services.mozilla.com/
34.215.56.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.56.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: B0dNPpq1dkCPWEQfRrd8sw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7F/BnkXusVdw6niQ39HqGcpAEKk=
distri.afesistemas.xyz/Login_v11/images/logo2.jpg
45.79.85.100200 OK 78 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/images/logo2.jpg
IP 45.79.85.100:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1176x840, components 3\012- data
Hash 90f7b4e7ce9ba4d1f01057c7ab5ac4d6
9e2128bb60499b15ae9be68723a92347f02ff5bd
c6a8b8f9061a603f1c7a6657ca16ab9e5a3b4003d542b03d3b6281c6ad6c63ce
GET /Login_v11/images/logo2.jpg HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:38 GMT
Content-Type: image/jpeg
Content-Length: 78196
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-13174"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/images/img-01.png
45.79.85.100200 OK 13 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/images/img-01.png
IP 45.79.85.100:0
File type PNG image data, 1280 x 939, 8-bit/color RGBA, non-interlaced\012- data
Hash 66fe947f57ff48b455587c06373aa2c0
bde614f55916fe751770a30d14b07fcc60bcbdc5
7e5f31dd2c3dc9ec3084c3cc830188149787f1bb883e03df7b73301013c54db5
GET /Login_v11/images/img-01.png HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/Login_v11/css/main.css
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:38 GMT
Content-Type: image/png
Content-Length: 12608
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-3140"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/fonts/font-awesome-4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
45.79.85.100200 OK 77 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/fonts/font-awesome-4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 45.79.85.100:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /Login_v11/fonts/font-awesome-4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/Login_v11/fonts/font-awesome-4.7.0/css/font-awesome.min.css
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:38 GMT
Content-Type: font/woff2
Content-Length: 77160
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-12d68"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/fonts/poppins/Poppins-Regular.ttf
45.79.85.100200 OK 145 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/fonts/poppins/Poppins-Regular.ttf
IP 45.79.85.100:0
File type TrueType Font data, digitally signed, 15 tables, 1st "DSIG", 13 names, Microsoft, language 0x409, Copyright 2014-2017 Indian Type Foundry (info@indiantypefoundry.com)PoppinsRegular3.010;ITFO;Pop\012- data
Size 145 kB (145312 bytes)
Hash 731a28a413d642522667a2de8681ff35
440dc8992517a306d66e55cb0afed0cfe9b971b5
2425ebbc021bfdd18fe55edbeeb1539d22a217212c14430a7d4d75266a333bbc
Analyzer Verdict Alert fortinet Malware
GET /Login_v11/fonts/poppins/Poppins-Regular.ttf HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/Login_v11/css/main.css
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:38 GMT
Content-Type: font/ttf
Content-Length: 145312
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-237a0"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/fonts/raleway/Raleway-Bold.ttf
45.79.85.100200 OK 179 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/fonts/raleway/Raleway-Bold.ttf
IP 45.79.85.100:0
File type TrueType Font data, digitally signed, 17 tables, 1st "DSIG", 22 names, Macintosh, Copyright (c) 2010 - 2013, Matt McInerney (matt@pixelspread.com), Pablo Impallari (impallari@gma\012- data
Size 179 kB (179244 bytes)
Hash 575e4317521b381ac94c0c8207c81979
7da5bcf0f8ce1caa4806f535ea123ff77f3b3c0a
ca9de8b3be7ccd4b80774a9c7dd56a98c49c276771c5957729b5958d1d579112
Analyzer Verdict Alert fortinet Malware
GET /Login_v11/fonts/raleway/Raleway-Bold.ttf HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/Login_v11/css/main.css
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:38 GMT
Content-Type: font/ttf
Content-Length: 179244
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-2bc2c"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/fonts/raleway/Raleway-Regular.ttf
45.79.85.100200 OK 178 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/fonts/raleway/Raleway-Regular.ttf
IP 45.79.85.100:0
File type TrueType Font data, digitally signed, 17 tables, 1st "DSIG", 22 names, Macintosh, Copyright (c) 2010 - 2013, Matt McInerney (matt@pixelspread.com), Pablo Impallari (impallari@gma\012- data
Size 178 kB (178520 bytes)
Hash 580d0778ad254335be45bf58bb449f43
e199aa653758d7e6bf443396329fcdd80f97dc01
20e4ae409ffbe8bfd2af14d7f717398408ae8b481005beccb83d62ef4052b681
Analyzer Verdict Alert fortinet Malware
GET /Login_v11/fonts/raleway/Raleway-Regular.ttf HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/Login_v11/css/main.css
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:38 GMT
Content-Type: font/ttf
Content-Length: 178520
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-2b958"
X-Powered-By: PleskLin
Accept-Ranges: bytes
distri.afesistemas.xyz/Login_v11/images/icons/icono.gif
45.79.85.100200 OK 6.6 kB URL HTTP/1.1 distri.afesistemas.xyz/Login_v11/images/icons/icono.gif
IP 45.79.85.100:0
File type GIF image data, version 89a, 131 x 98\012- data
Hash 6bdb698890dbad23790543c8faab78fa
1ec389c957facbb14d3e9c1832964976bda58fd4
69cc9097b57cd118419224dd0e0a761d986159c9b6cf2aa05d0cf91fa9ac4671
GET /Login_v11/images/icons/icono.gif HTTP/1.1
Host: distri.afesistemas.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://distri.afesistemas.xyz/
Cookie: laravel_session=eyJpdiI6IjdneU9uV296cWlCNTcxc0duN2VSSkE9PSIsInZhbHVlIjoicEtXd09PY3VhOUVJc25WQzBzQ2hWdnpseVRyeHdkY2ZvOTMxNnA0aDJScm5XMjJ2WG9xNjhoM2lcL1JuemtZbTZkSFwvYU50emFkNTFXaHVXOVppZVk2QkhSV0pTRlNWcEt0SmlTc0U2Mm90b3k4WU5paFN6MTB3VXZ3elF1QThpQyIsIm1hYyI6ImE4YzQ2YjM1YjgwNTRhZTUwZjc4NTVlN2FmYWJlZmRlM2IzMjI5ZWIzZDk2ODU1ZmIyYmJiZjM0OTY2OWJjODkifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Oct 2022 04:44:38 GMT
Content-Type: image/gif
Content-Length: 6615
Last-Modified: Mon, 19 Sep 2022 22:16:37 GMT
Connection: keep-alive
ETag: "6328ea45-19d7"
X-Powered-By: PleskLin
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8289
Expires: Fri, 07 Oct 2022 07:02:48 GMT
Date: Fri, 07 Oct 2022 04:44:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8289
Expires: Fri, 07 Oct 2022 07:02:48 GMT
Date: Fri, 07 Oct 2022 04:44:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8289
Expires: Fri, 07 Oct 2022 07:02:48 GMT
Date: Fri, 07 Oct 2022 04:44:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8289
Expires: Fri, 07 Oct 2022 07:02:48 GMT
Date: Fri, 07 Oct 2022 04:44:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8289
Expires: Fri, 07 Oct 2022 07:02:48 GMT
Date: Fri, 07 Oct 2022 04:44:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed3fa86bbe319c9a2f81ff625e677cb0
e3d5210207f6ff922bc28e328285059c19a523a4
5919694bd942a4f25d5b7ffc3f8aee1af6cdb8461d4ba3dba9a2e72cf19164c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7261
x-amzn-requestid: e1bdf299-b29e-4f58-9c8a-33f5dacdb081
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmirBELYoAMFfgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4b13-1969b32c6f4f7e5749e7caa0;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: V3fTgH8URZ1iWMxWPy49--20mtdJvMK6XTG_aPKk68pvwCxPl8lULw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:18 GMT
age: 25221
etag: "e3d5210207f6ff922bc28e328285059c19a523a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F773e2560-6c32-4224-8404-2794a40799cd.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F773e2560-6c32-4224-8404-2794a40799cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39cf77bd6009d3c538455b3846680278
ad0ed304e5173bdb8f08254c2e4a5032e8fcafa5
792997f1f9a485ca57d274c7899e4f526476bf15ed564a8b74d248c4458b188f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F773e2560-6c32-4224-8404-2794a40799cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9564
x-amzn-requestid: 38d87e57-3600-4e0e-bd24-a8f857800bc6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmhkGHtZIAMFz0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f494d-21b041d97b406dea36b9f35b;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: DNBjRFbLHdYGd4-klRgAiRXPCq2_uOMh5LGi9udoD1c0eSVXJ6h4xw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:18 GMT
age: 25221
etag: "ad0ed304e5173bdb8f08254c2e4a5032e8fcafa5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 53b7ffdc3799e0ac7a225145242579ef
c47f0525fe5354ee13fe63c0ec31f0f826a58005
4bb518afc9b3e7bfb976d343e46b306155834adbe71fa35b0d6f509959f78aca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10987
x-amzn-requestid: c2ab1012-1afd-4d74-8114-97977b43da24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZgCHwGdGoAMFvyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633cb097-3237927a0c1e081d22c902f7;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 22:15:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iClOZEPMiFmpeprT8McJ2HI0dCmyxkhEdfYr0qP0YK3U_Pcd9N0Fhg==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 11:10:12 GMT
age: 63267
etag: "c47f0525fe5354ee13fe63c0ec31f0f826a58005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfb29b1-34eb-4ec3-8390-1145a644534c.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfb29b1-34eb-4ec3-8390-1145a644534c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06283ec49d3981b60b28731fd8a9940d
10c0d991f7ad234557792c175fdbf81e3356416a
0d8d932cd46fa377ce3dfe5fe1287ab1cd0daad0ef52a42baad2462d10e5a80f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfb29b1-34eb-4ec3-8390-1145a644534c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6052
x-amzn-requestid: 6c8abd32-7499-4636-bf8a-3baaa88bf1ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi-HWOoAMFalA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-464364630dd2dbfa0d69f6f5;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: L13zNwITYkfg7x7UlAs_eVjJWRJsdxV5R7g5GHSAE8BgjN-1FB1AHQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:08:16 GMT
etag: "10c0d991f7ad234557792c175fdbf81e3356416a"
content-type: image/jpeg
age: 23783
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41249b23-0479-4820-9c68-da428c1d2faa.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41249b23-0479-4820-9c68-da428c1d2faa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash caf0e5e75898e70a4f2caa2a707c7af9
25a573f90d12a42a6e63c65485be5fc325b0bfde
cec7ab3a7f6e02b57ee72ca7eee70c16b9026679aa7cd6c0739669731ccc94d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41249b23-0479-4820-9c68-da428c1d2faa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8090
x-amzn-requestid: 7aeb8664-0241-40e1-ac8d-aef56b2a1847
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmirBHS9IAMFYKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4b13-19caf51e2f8b7df363293db3;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: -Y3Utot6t5i9ws9JDG4eGGQYEzrN5d48KD9rZ0p1mscrMzOXBTsp1Q==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7f06047c304d80ea094816a27c933914.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:25 GMT
etag: "25a573f90d12a42a6e63c65485be5fc325b0bfde"
content-type: image/jpeg
age: 25214
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg
34.120.237.76200 OK 2.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17df62c3e2ed48ba9c788f5e1b3b702f
854c326016059d67fae42cc34905d0feb58cb6fc
d0bee7a7e629f6594a79bad563bb91c71a17768c2f347fd4a366f7f0daf94fda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2478
x-amzn-requestid: ed2a2dca-5367-42c1-b982-07a39762063e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmigWFvGIAMF9CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4ace-6fabb7845e4d04613897a866;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: GFxAiO1AQfV1-pVy0NBmc9VoQoxBuBeOWsbPkVpOuT06D8Tw_YuZfA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:08:09 GMT
etag: "854c326016059d67fae42cc34905d0feb58cb6fc"
content-type: image/jpeg
age: 23790
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2