r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10771
Expires: Tue, 31 Jan 2023 15:16:22 GMT
Date: Tue, 31 Jan 2023 12:16:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12424
Expires: Tue, 31 Jan 2023 15:43:55 GMT
Date: Tue, 31 Jan 2023 12:16:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 11:35:53 GMT
content-type: application/json
age: 2458
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5435
Expires: Tue, 31 Jan 2023 13:47:26 GMT
Date: Tue, 31 Jan 2023 12:16:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PXhoM/0xzJNFNbe5FU8FIbFoMJYNR8liPyXULncCih5tT61vDXBIAUws4C3/iYGMRijdK+BXiXY=
x-amz-request-id: W3YZ1ZAKSW5YGY5Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 11:22:12 GMT
age: 3279
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 12:16:51 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 11:41:42 GMT
age: 2109
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5797
Expires: Tue, 31 Jan 2023 13:53:28 GMT
Date: Tue, 31 Jan 2023 12:16:51 GMT
Connection: keep-alive
jezfj.pxolist.top/
142.54.179.206301 Moved Permanently 234 B IP 142.54.179.206:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0b87ed47ad434be1a4db704c3c3ac9e4
f3a40040b45cc66611ef81471c3fedf723eb4024
5917267f37c1c1dc420026f060e96531316e31fbd9559e5b3f7e63b4b460bb63
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 12:16:52 GMT
Server: Apache
Location: https://jezfj.pxolist.top/
Content-Length: 234
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
push.services.mozilla.com/
35.166.71.249101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.166.71.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Agr4Wsun+FzzjypsX9uE+Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QIHrsNydPfKIHxqor7N8k7LeJMg=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ceddda2f68eef85618204cb5b361d62f
eeea55da84243bcde8b84236da0c309c7d858c3e
9495e9fab39a5f9503b61b08bc369cabaa5bcc647587f711530a2361218bd818
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9495E9FAB39A5F9503B61B08BC369CABAA5BCC647587F711530A2361218BD818"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 31 Jan 2023 18:16:52 GMT
Date: Tue, 31 Jan 2023 12:16:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3471
Expires: Tue, 31 Jan 2023 13:14:44 GMT
Date: Tue, 31 Jan 2023 12:16:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3471
Expires: Tue, 31 Jan 2023 13:14:44 GMT
Date: Tue, 31 Jan 2023 12:16:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3471
Expires: Tue, 31 Jan 2023 13:14:44 GMT
Date: Tue, 31 Jan 2023 12:16:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3471
Expires: Tue, 31 Jan 2023 13:14:44 GMT
Date: Tue, 31 Jan 2023 12:16:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6f9ffb8f9e99229b45ca5fdb84ce7d5
04577ad69ee9749b14382254eb5bbf0e1edcd7fa
6111acf3f363123b39d13cd3d23ab39b8c8d00379874f19231d1cd3da17c52c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8558
x-amzn-requestid: 2841cd36-22e6-4ecb-b56a-bfadce3197c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_BFA8IAMFyvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e393-3fd03bd14de762b0738a3b0a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZP2Mar8l3QoPH733_vv3hUuQjWvaN4_TgfYwme2-6WIxGi55BoSchg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 04:26:31 GMT
age: 28222
etag: "04577ad69ee9749b14382254eb5bbf0e1edcd7fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d957012d3e2b8c3bc0eefe11d66e8554
1959fdd94846fa3791c4890578dd15336b909dcc
a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T5CaUojMEG8x8vki59UdIhI8IbbBRY_7w3xgiW3RCZlHTyeHPLIy2Q==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:47:13 GMT
age: 52180
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4a2d26da68a313cc65958fc2692351c2
798c3538f3147ca77d317676ddd1bf040bd0f93b
76ce30224803d680c0115e987a712ce5552b2760beadf796a96b17439fb20797
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10898
x-amzn-requestid: e29f8dfc-07d4-4136-afaf-e1e067eea2ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zxGshIAMFw5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-5e87d2a44722af9e4e86c3d4;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: djoQmYTv7Rlq9tKKkJ5U1J3YeVSIs5yzSts_xRN3bdi27Ra8UfM6OQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:44:45 GMT
age: 52328
etag: "798c3538f3147ca77d317676ddd1bf040bd0f93b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 63486f2a937aa8fd013fc2c2d1b32f2d
e8868de34c2f79348c1edad764259eb70bebd7a6
fa6e5ce374031c0df3b3f2d6de823cf1fe08fdaf9957a0722770867cfdec0ed1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13639
x-amzn-requestid: 8131c878-620a-4972-ba8f-1456859acae2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcJSF0SIAMFe1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340a1-18c7280940d508c440c0182c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mXlQ5A2PHadECkKglPquN9x68ubYk8s2to-_JjCgEQe7axfJo6K8Jw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:27:20 GMT
age: 17373
etag: "e8868de34c2f79348c1edad764259eb70bebd7a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hDjKAMYoVwHdCqS8t08PrWyfQQLiWaosXbi3FOJY8BeV0yAFCGziGw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:58:16 GMT
age: 37117
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:40:17 GMT
age: 30996
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jezfj.pxolist.top/
142.54.179.206200 OK 7.8 kB IP 142.54.179.206:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (904), with CRLF, CR, LF line terminators
Hash 7e4120a1e1ef066757d86b806023461c
6cc4333bde7610f61529baa24bc731e363392a62
d15df70d9d715738e68c100e8106e90a71f3dd4bfa11ef50d69cebeb2d0877d7
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:52 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1; path=/; domain=.jezfj.pxolist.top; secure; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
jezfj.pxolist.top/includes/templates/linglong-viu02/css/style_categories.css
142.54.179.206200 OK 1.7 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/style_categories.css
IP 142.54.179.206:0
File type ASCII text, with CRLF line terminators
Hash ac3b08ef2fecda9253b804fde652549f
988634370ba127e448b725fa62ee779f7780f4e3
a8674ce80f325c8ae78f40e70e0cc1b10fcfb329796cd4e17a38dba15efb7077
GET /includes/templates/linglong-viu02/css/style_categories.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Mon, 05 Jul 2021 07:52:10 GMT
ETag: "6bb-5c65b95235e80"
Accept-Ranges: bytes
Content-Length: 1723
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet.css
142.54.179.206200 OK 14 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet.css
IP 142.54.179.206:0
File type Unicode text, UTF-8 text, with very long lines (839), with CRLF line terminators
Hash d4b6db931bd7bc19210e83db525c5c65
7c3d654d92db3540b4d1bda218c9a37e6155d16c
4b789c4de3dc7e3145e34256a8a90a8d8cdceb1ea51db2c205ae3e5730480d53
GET /includes/templates/linglong-viu02/css/stylesheet.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Fri, 01 Nov 2019 05:46:06 GMT
ETag: "375f-596427b686380"
Accept-Ranges: bytes
Content-Length: 14175
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_rep.css
142.54.179.206200 OK 14 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_rep.css
IP 142.54.179.206:0
File type ASCII text, with very long lines (366), with CRLF line terminators
Hash b36c48dac77d4c4593f7e643691dcbf5
8772b09bd9c91f97fe4ab24348e51b853458da3c
36b9b342be81fd57884e55c7f4adae52aa5a6874a96624f63ef3a4eefc2c0ee1
GET /includes/templates/linglong-viu02/css/stylesheet_rep.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Fri, 14 Apr 2017 03:31:00 GMT
ETag: "375e-54d1811fe8500"
Accept-Ranges: bytes
Content-Length: 14174
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_cart.css
142.54.179.206200 OK 8.5 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_cart.css
IP 142.54.179.206:0
File type ASCII text, with very long lines (794), with CRLF line terminators
Hash 77bb26ebb453bb24899bec79c1946680
cd2c46e8d329b1dc2ed3e9d6e5906708f7896ef2
35d5f96c4a62f60647b8768dc77f58c22509066451cf10ff9bd43fd4a05488cc
GET /includes/templates/linglong-viu02/css/stylesheet_cart.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Thu, 28 Oct 2021 06:26:34 GMT
ETag: "214a-5cf63cac25a80"
Accept-Ranges: bytes
Content-Length: 8522
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_css_buttons.css
142.54.179.206200 OK 1.4 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_css_buttons.css
IP 142.54.179.206:0
File type ASCII text, with very long lines (1363), with no line terminators
Hash 0c5efb37572e2d4d08b855b5dc356712
62b6e5c5453f461cbaf63c8532d43c74b277b89e
958f1ee4983ea228efa576a5c3af81046c0e7b553486a89d9f3dcd09d237acc1
GET /includes/templates/linglong-viu02/css/stylesheet_css_buttons.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Mon, 10 Apr 2017 03:44:50 GMT
ETag: "553-54cc7cc19d080"
Accept-Ranges: bytes
Content-Length: 1363
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_index_home.css
142.54.179.206200 OK 3.6 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_index_home.css
IP 142.54.179.206:0
File type ASCII text, with very long lines (337), with CRLF line terminators
Hash 469bf09c3467ff15c7dd1a9dde46f0c8
7884f4de7b921a03bc7174d2b4894d05753c9975
f48055c8b9a9c9ed40382af06dca135f2b4aef69e40bf32dafb4839a8a723ef9
GET /includes/templates/linglong-viu02/css/stylesheet_index_home.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 08:39:50 GMT
ETag: "df0-58fbf3be5e180"
Accept-Ranges: bytes
Content-Length: 3568
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_l_cat.css
142.54.179.206200 OK 221 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_l_cat.css
IP 142.54.179.206:0
Hash bd046a4e84a978c63d13d789fddbf3f1
6f27c9363231ea52723e3fb33c2792d2913465e0
8d6a8f6214cc2cd009d1afda866cccc6774e12ad9fb38579f1ac20ebb32cdce7
GET /includes/templates/linglong-viu02/css/stylesheet_l_cat.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Fri, 25 Feb 2022 03:56:48 GMT
ETag: "dd-5d8cfb01be000"
Accept-Ranges: bytes
Content-Length: 221
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_related.css
142.54.179.206200 OK 2.0 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_related.css
IP 142.54.179.206:0
File type ASCII text, with CRLF line terminators
Hash dc591fd3a418d5a7ed6ce7db2c2d77c8
43fa33ef83192cd9d21f7776a861a4ef93a14661
cb0338f3270d8b883e85d87e1cb47cc4845ef972c6d57c765929cf5527a501cd
GET /includes/templates/linglong-viu02/css/stylesheet_related.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Wed, 21 Aug 2019 09:03:28 GMT
ETag: "7e8-5909cd8abf800"
Accept-Ranges: bytes
Content-Length: 2024
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_tm.css
142.54.179.206200 OK 29 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_tm.css
IP 142.54.179.206:0
File type Unicode text, UTF-8 text, with very long lines (680), with CRLF line terminators
Hash 93502dc1aa58bb1d2c5d88412aefc2d3
0c8bd141f470c1d98291611b4d084cbcc6a55acb
7ced6a67d7f7f5af63cfa5705d5b654a2a188aaabba6abd181aecf7b1b2d0e54
GET /includes/templates/linglong-viu02/css/stylesheet_tm.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Wed, 07 Jul 2021 07:22:26 GMT
ETag: "717b-5c683667c7080"
Accept-Ranges: bytes
Content-Length: 29051
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_xt.css
142.54.179.206200 OK 118 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/stylesheet_xt.css
IP 142.54.179.206:0
File type ASCII text, with CRLF line terminators
Hash bdb30231f4343c4e592aff36f9dab50f
f71c56bbb1e950642c362783621b84809a447d98
16da8a97403e93fbf96bb9ab31c93948bac10c7520766cdacc63044f7b57f657
GET /includes/templates/linglong-viu02/css/stylesheet_xt.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 09:58:14 GMT
ETag: "76-5c803caa7b980"
Accept-Ranges: bytes
Content-Length: 118
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/css/meanmenu.css
142.54.179.206200 OK 3.5 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/css/meanmenu.css
IP 142.54.179.206:0
File type ASCII text, with CRLF line terminators
Hash 59f82b05f6aa3110de98ab2de4cedf0c
0dc59499f72763e1259b673213830aa2317be717
19c832ad859a30c5e673ebf4aad76189c4b828d9c26c309e67e553ed3ea0478b
GET /includes/templates/linglong-viu02/css/meanmenu.css HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Wed, 12 Apr 2017 08:13:10 GMT
ETag: "dc0-54cf3c76b1180"
Accept-Ranges: bytes
Content-Length: 3520
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
jezfj.pxolist.top/includes/templates/linglong-viu02/jscript/jquery.meanmenu.js
142.54.179.206200 OK 12 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/jscript/jquery.meanmenu.js
IP 142.54.179.206:0
File type ASCII text, with CRLF line terminators
Hash 30a538a901bf28c1865244d551f707ef
eea12d7b14cbe34b7c1030a7b5b0ab3fe3da718d
84305b7a4064e3f5d68a31b497aa18bbe2ce949b5b41d5f506aa810d30794653
Analyzer Verdict Alert fortinet Malware
GET /includes/templates/linglong-viu02/jscript/jquery.meanmenu.js HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Wed, 12 Apr 2017 03:39:00 GMT
ETag: "2dd0-54ceff2ebfd00"
Accept-Ranges: bytes
Content-Length: 11728
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_favorite.png
142.54.179.206200 OK 3.2 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_favorite.png
IP 142.54.179.206:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 68a014042de09005fb670bdc2b586244
38ec519f7c8c5f9945ea02a2bbeb274dabfd5743
ccf8b36181391bf7c2a70a6a37a9bfdd36b47ad5d19894f6c3caeb57915b6b92
GET /includes/templates/linglong-viu02/images/head_favorite.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 02:15:54 GMT
ETag: "c9e-58fb9ded86a80"
Accept-Ranges: bytes
Content-Length: 3230
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/includes/templates/linglong-viu02/images/py.png
142.54.179.206200 OK 6.5 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/py.png
IP 142.54.179.206:0
File type PNG image data, 371 x 255, 8-bit/color RGBA, non-interlaced\012- data
Hash 8b83b018044e476deb4baa329576bd5b
bdcb9d25b2d7d90d990d770c86ac33933fdc0f93
4ed8e066649f640d104f2f04eba2afdf3af8c25508485dfcd50f0803ea9daea0
GET /includes/templates/linglong-viu02/images/py.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 02:15:40 GMT
ETag: "197c-58fb9de02cb00"
Accept-Ranges: bytes
Content-Length: 6524
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/includes/templates/linglong-viu02/images/sp.png
142.54.179.206200 OK 8.7 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/sp.png
IP 142.54.179.206:0
File type PNG image data, 292 x 258, 8-bit/color RGBA, non-interlaced\012- data
Hash 22950ac649d504b419675bc020b84bdf
00858113e8c2c2b954dcb4908d0a51058cffda35
2202370c7f544db4cc2a121e500efb3b3535ec412a0607b8510ad582817e48f1
GET /includes/templates/linglong-viu02/images/sp.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 02:16:14 GMT
ETag: "21cc-58fb9e0099780"
Accept-Ranges: bytes
Content-Length: 8652
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_cart.png
142.54.179.206200 OK 7.0 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_cart.png
IP 142.54.179.206:0
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash c056aee4f27f53644b0ce92fded138f0
25ef4ed0e336d296544aacd447e19199a6aa9bd0
5e5e5cb6a21f3ed220e480e0682cb26d48ab455d3d21ef1c0e1bc81998bcef6d
GET /includes/templates/linglong-viu02/images/head_cart.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 02:16:08 GMT
ETag: "1b5b-58fb9dfae0a00"
Accept-Ranges: bytes
Content-Length: 7003
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_1.gif
142.54.179.206200 OK 2.0 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_1.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash c9c1a377b2465fa88eb90f7f21fc4943
c329224a6ff30a92cb75e8d055d12185c30b54c6
0362db86a76badda7ca8dec6954d760c2bfe7b5c3e438682ff3213926d5a5c08
GET /includes/templates/linglong-viu02/images/rank_1.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:40:02 GMT
ETag: "7e8-4d8de1dd9e080"
Accept-Ranges: bytes
Content-Length: 2024
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_2.gif
142.54.179.206200 OK 605 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_2.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 8192f534aa798503e77cbf8e2eb15d57
24e72796481cfd7395cd43cdeb09edad3cf8446b
3616bc7d39ef97ce96d225530cc04796a283dabf239d3be97a21437f120832b9
GET /includes/templates/linglong-viu02/images/rank_2.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:39:46 GMT
ETag: "25d-4d8de1ce5bc80"
Accept-Ranges: bytes
Content-Length: 605
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02/jscript/jquery-1.11.1.min.js
142.54.179.206200 OK 96 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/jscript/jquery-1.11.1.min.js
IP 142.54.179.206:0
File type ASCII text, with very long lines (32086), with CRLF line terminators
Hash ee092541bc79668e3e0a7b76d2faf00c
464511ce4755e3c6acda7c719f27265805142c47
87981e8062814ca279922ee55276ad14bbdc29649f98e34b2d83c3afb5052a51
Analyzer Verdict Alert fortinet Malware
GET /includes/templates/linglong-viu02/jscript/jquery-1.11.1.min.js HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Tue, 11 Apr 2017 02:22:08 GMT
ETag: "1762c-54cdac22f1400"
Accept-Ranges: bytes
Content-Length: 95788
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_3.gif
142.54.179.206200 OK 2.0 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_3.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash a8a0cf82adfcc5990b7dba0d5156379f
c9ec96160b488a5a1d1a317443926c7bb54563bd
eb9a0139afb41bc80e768ff61a5a3bf3956da00bea0bb6fe6fcde50589b79065
GET /includes/templates/linglong-viu02/images/rank_3.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:39:30 GMT
ETag: "7c6-4d8de1bf19880"
Accept-Ranges: bytes
Content-Length: 1990
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02//jscript/jquery1.9.1.js
142.54.179.206200 OK 93 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02//jscript/jquery1.9.1.js
IP 142.54.179.206:0
File type ASCII text, with very long lines (32089), with CRLF line terminators
Hash 383771ef1692bfcc3f2b6917ca985778
a1ce0bfa507f23cc414a9a7634bd73b994bb3b35
20638e363fcc5152155f24b281303e17da62da62d24ef5dcf863b184d9a25734
Analyzer Verdict Alert fortinet Malware
GET /includes/templates/linglong-viu02//jscript/jquery1.9.1.js HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2016 07:18:10 GMT
ETag: "169d9-53939c08df080"
Accept-Ranges: bytes
Content-Length: 92633
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_4.gif
142.54.179.206200 OK 726 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_4.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 9e975ea97719e1ad72951890eab538b2
cb425216738dbc4b98ed7f86d2ad939d17922cc0
e5a91abf348d298145f1f237505150cc1f60673b0a21b459cdf4029ba188bcd4
GET /includes/templates/linglong-viu02/images/rank_4.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:39:02 GMT
ETag: "2d6-4d8de1a465980"
Accept-Ranges: bytes
Content-Length: 726
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02/images/logo.png
142.54.179.206200 OK 4.5 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/logo.png
IP 142.54.179.206:0
File type PNG image data, 154 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 4538a28742e2647079f59259b4f88259
6c1a88d5312f427a1249effb11a6d3a5695e1aa4
11a85677189f44b7bc108120226601e6252d27d6cabc6575b5366c7138936ad7
GET /includes/templates/linglong-viu02/images/logo.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 02:19:04 GMT
ETag: "1184-58fb9ea2b9600"
Accept-Ranges: bytes
Content-Length: 4484
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_search.png
142.54.179.206200 OK 4.8 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_search.png
IP 142.54.179.206:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 72757ef7a61a49a22d82706af34889c5
9455da0b8192dadcaca798e9127b1efda59dd82b
6d64b9e47637df68daea62aac9e7b5a921b2f234219267967ec8738546a0aeae
GET /includes/templates/linglong-viu02/images/head_search.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 02:13:28 GMT
ETag: "12e4-58fb9d624a200"
Accept-Ranges: bytes
Content-Length: 4836
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTc4MjI4NzUwMjVfMS5qcGc=
142.54.179.206200 OK 120 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTc4MjI4NzUwMjVfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 120 kB (119544 bytes)
Hash 7236fe03a36ed4b4a4ba6c046d0b93ab
86cf7bfd79c1f5bac65bef9146f5ebd2414997f3
959b048b266f26b382305f729ba08a47d86656067760fdfae2f5b9af4e25c9a2
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTc4MjI4NzUwMjVfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/includes/templates/linglong-viu02/images/cat.png
142.54.179.206200 OK 23 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/cat.png
IP 142.54.179.206:0
File type PNG image data, 6 x 8, 8-bit/color RGBA, non-interlaced\012- data
Hash 16119072d89a07da5e75a3ee606f8494
e23fd7ea65c0a3007c52795386e75e04a1215100
d3e8c37ebed216a58837ca2affeda31c34a07586c733bb04c14fb83bfc445bfa
GET /includes/templates/linglong-viu02/images/cat.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/includes/templates/linglong-viu02/css/style_categories.css
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
Last-Modified: Tue, 28 Feb 2017 07:10:20 GMT
ETag: "58b5-54991e3884f00"
Accept-Ranges: bytes
Content-Length: 22709
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTkyNDY4MTI0MDZfMS5qcGc=
142.54.179.206200 OK 189 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTkyNDY4MTI0MDZfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 189 kB (188686 bytes)
Hash e0ec14dd787e3520f80c8fd8aaa157c1
75887a0e1d21c0e95fb0f7f9f5d45c2265707347
69936bc8013f1a66016ebc610a15e8112fd8c9e1237b1e32d4701b43b04200f6
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTkyNDY4MTI0MDZfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzQ2MjA2MjYxNjNfMS5qcGc=
142.54.179.206200 OK 34 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzQ2MjA2MjYxNjNfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x800, components 3\012- data
Hash fccae80d545878059cd63da36a7e5c0b
abc73235b1a4a26a8d01b99b1d7621b1656fc3d9
dda36ec4d8c4b6ddb30d885d724984d0a9ff7398c471b4583f40840de39d7c80
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzQ2MjA2MjYxNjNfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODcxNjgzMTM3OTNfMS5qcGc=
142.54.179.206200 OK 34 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODcxNjgzMTM3OTNfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 378x720, components 3\012- data
Hash 3bc8f708cf1c59948e5ff2f016069fcd
c264a855fbe8a6ea1b1da788325c0c5efb5b05b8
9a1e1c802c563e8071d742a40f52b1397eb94564b80dc277158457d727ae4045
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODcxNjgzMTM3OTNfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_company.png
142.54.179.206200 OK 4.0 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_company.png
IP 142.54.179.206:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash d9649982ad0cd8cff16d73093e1922e6
a1b55979a5a08b86b028fc59764d77174ef969b4
c253e9a43778e83b39e7163e614b61a453de6c69ddb3b3cfd7e98901eb0e64b7
GET /includes/templates/linglong-viu02/images/head_company.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 02:16:02 GMT
ETag: "fa4-58fb9df527c80"
Accept-Ranges: bytes
Content-Length: 4004
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTMyMTM3NDA1NDRfMS5qcGc=
142.54.179.206200 OK 136 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTMyMTM3NDA1NDRfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size 136 kB (135692 bytes)
Hash 641974c558cf9c2aa752ad203c5341b2
ba2316294f2ba4e0fbfbd683d59540826d8f089d
ec01b50ae92ad19c817ffc47fe057c9c9af5ff5830bceba9f7633c842b4b3044
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTMyMTM3NDA1NDRfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_review.png
142.54.179.206200 OK 3.2 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_review.png
IP 142.54.179.206:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 5cc5ea0104b78187bb7001fbe9df55d9
e99212bcedcf3c088104281f06097df31cd4ef51
4c51dc526b320c083c6a1f76ba811bd1dd65612067584476eaa57ad7126a6e2f
GET /includes/templates/linglong-viu02/images/head_review.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 02:15:48 GMT
ETag: "c7a-58fb9de7cdd00"
Accept-Ranges: bytes
Content-Length: 3194
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_5.gif
142.54.179.206200 OK 883 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_5.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 02ab4d95ec4727b873675dedf23fcbd6
73fb8ee0b0b7d4e12e2f90812ba109865bd55936
95e544e3858c250b62e09e90ea9b20d4a522b96f3d4658a908182c76cac0ebcc
GET /includes/templates/linglong-viu02/images/rank_5.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:38:40 GMT
ETag: "373-4d8de18f6a800"
Accept-Ranges: bytes
Content-Length: 883
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTE3Nzg4MzE3MDdfMS5qcGc=
142.54.179.206200 OK 156 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTE3Nzg4MzE3MDdfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size 156 kB (155709 bytes)
Hash f0bd582d20cdd9625c3ced752cd646b1
57962ed65ee5df5c85a0a24d56e653a0dc4e4201
100b85fd30d59323d8b848bb8228f67b02564a368578c97b61efec5ed2f953f8
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTE3Nzg4MzE3MDdfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTQyNjIyOTc3NzJfMS5qcGc=
142.54.179.206200 OK 111 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTQyNjIyOTc3NzJfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size 111 kB (110914 bytes)
Hash 68a741ee34b90cd83d0151bd05523bb0
8a38dfcbf742164f1a6c731416e625c6921da6fb
ba5dacfa1165db5acd31910a112e4063dab7c5988b121348162c1cd7fc20d107
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTQyNjIyOTc3NzJfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_6.gif
142.54.179.206200 OK 766 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_6.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash da350cd90766a340c96b20ff03d127d5
30147fd19b58279252e361375df1d0c8f6d9a568
c865fc772bf6a50a3e408263080ccb0f091da74849c9d3557c17ae17514d3b1a
GET /includes/templates/linglong-viu02/images/rank_6.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:38:18 GMT
ETag: "2fe-4d8de17a6f680"
Accept-Ranges: bytes
Content-Length: 766
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_7.gif
142.54.179.206200 OK 737 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_7.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 5ae938d4c59d6c52efdc9dfa7940037b
a243882381f3e103312242b5ca2eb9b8a295a2b7
4e569edfefd853caf0af7c24d06e242ba6b4a49ddc4775186098688ea8211030
GET /includes/templates/linglong-viu02/images/rank_7.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:53:42 GMT
ETag: "2e1-4d8de4eba1580"
Accept-Ranges: bytes
Content-Length: 737
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_8.gif
142.54.179.206200 OK 773 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_8.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 255ef97d3abcea681cd2e8acd77ad0b1
0ca7ae48c40d965bdf794f5c41b5138d335e4e7a
cdcb9869aff9da1a51eb4b97016e57dc9420a4a292d8a88596abd29c94db8e5b
GET /includes/templates/linglong-viu02/images/rank_8.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:54:12 GMT
ETag: "305-4d8de5083d900"
Accept-Ranges: bytes
Content-Length: 773
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_9.gif
142.54.179.206200 OK 763 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_9.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash a34576572e69e8448656b2fef0a85091
e36cb983bf59a33b4f2df30a42eea33af7e367a2
4bd758972868ca67bf4c88a6ac29fed015fa9b539a03e09e3540bfc77c992667
GET /includes/templates/linglong-viu02/images/rank_9.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:54:28 GMT
ETag: "2fb-4d8de5177fd00"
Accept-Ranges: bytes
Content-Length: 763
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_10.gif
142.54.179.206200 OK 789 B URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/rank_10.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash ba5aa31792e757343133e787184723d2
7f695ddf8ee3a36e3e8dd7b0d98e5108e9afb4dd
e4b75d485b047de1fd5cf388db63672353db7c5e6c6d27324480feb53cd0e948
GET /includes/templates/linglong-viu02/images/rank_10.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
Last-Modified: Wed, 27 Mar 2013 01:55:10 GMT
ETag: "315-4d8de53f8db80"
Accept-Ranges: bytes
Content-Length: 789
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02/images/0804time_1050x493.gif
142.54.179.206200 OK 142 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/0804time_1050x493.gif
IP 142.54.179.206:0
File type GIF image data, version 89a, 1050 x 493\012- data
Size 142 kB (142313 bytes)
Hash de7616148826e4a261712b385d61b3f9
52ac8b82303c3e03af3ba8d65a63191da422cc3f
22e8906991299a8dfab89844d551885b68f6f918f4ae2ef7dc90715cd8dc6752
GET /includes/templates/linglong-viu02/images/0804time_1050x493.gif HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
Last-Modified: Sat, 10 Aug 2019 06:48:02 GMT
ETag: "22be9-58fbdac11ec80"
Accept-Ranges: bytes
Content-Length: 142313
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif
jezfj.pxolist.top/includes/templates/linglong-viu02/images/0225-2.jpg
142.54.179.206200 OK 36 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/0225-2.jpg
IP 142.54.179.206:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x150, components 3\012- data
Hash 98a37362eefc18208b1ba0565bec4d31
fb79d3be9b420b14183da3583d98fb044f01c694
b1cd763c7ca80c814f42d59ed9a0657f8eac5c2728ca48eb5e19dfa456b62179
GET /includes/templates/linglong-viu02/images/0225-2.jpg HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
Last-Modified: Wed, 07 Aug 2019 08:52:22 GMT
ETag: "8bfd-58f830f325d80"
Accept-Ranges: bytes
Content-Length: 35837
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNDc1MTkxOTc1NjhfMS5qcGc=
142.54.179.206200 OK 186 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNDc1MTkxOTc1NjhfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size 186 kB (185504 bytes)
Hash d22112f20284d048b20bf6d48af45107
621b9bab8d141adac5a9ce2a0e5a3969631ded72
c688fec613d2949595b0b0e7d46d1269a501ff1d49fd9f1dcd3b89b666c5d756
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNDc1MTkxOTc1NjhfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:54 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTc3NzU1NjQ2MjhfMS5qcGc=
142.54.179.206200 OK 54 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTc3NzU1NjQ2MjhfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Hash 06b4d9abd8ff8c0330bbad898b58f8ec
67a08bfe103560c0d80c250412b0090bda342c87
98821e8d29544ccbfed5e2162737dec5c2bbd6a87d7ae1917211b0999f881fc2
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTc3NzU1NjQ2MjhfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzY0ODY4NzgxMzRfMS5qcGc=
142.54.179.206200 OK 125 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzY0ODY4NzgxMzRfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size 125 kB (125241 bytes)
Hash 1d45905b999aeab84c270de09ba19a92
f2ab3a2730d4eb78e191f18de44cc6fa29d0c8d2
df1adcc3fc1a1355a0c0035f3af459107e8507009157da83fa782e8452c0a134
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzY0ODY4NzgxMzRfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:55 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTUxMTI0NDkwNTFfMS5qcGc=
142.54.179.206200 OK 43 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTUxMTI0NDkwNTFfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x540, components 3\012- data
Hash 03b8d23eb315e393aaf8730e5f864c4b
427808ed009c56bcd69ecd94b57b87e61dabf81e
ec291ae4842162d238f935c49201befe7dd14ba70c8baff8785b24d6eede74ae
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTUxMTI0NDkwNTFfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTgxNTc5MTE2MjRfMS5qcGc=
142.54.179.206200 OK 124 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTgxNTc5MTE2MjRfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size 124 kB (124239 bytes)
Hash 7b21fa6b568bd430b9f6b3383f99ffab
2836d0c9c64215b3e774244401800bb967216f44
9458032ab4531194e5f12830bac91cf546353d25f91d55efa93533ac3e78adf3
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTgxNTc5MTE2MjRfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTgyMDUwNzE3OTZfMS5qcGc=
142.54.179.206200 OK 22 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTgyMDUwNzE3OTZfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Hash 7d89fc22b28732ae6bb32679236ac81a
741f4f25bdea395cb2bddf3887bb9777681f7b3c
b1a4bf3dcd255e73984ed654f139a9ce8320da2996cdfa07281a029d393e4ab4
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTgyMDUwNzE3OTZfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTUwNjE1NDM3OTVfMS5qcGc=
142.54.179.206200 OK 81 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTUwNjE1NDM3OTVfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x810, components 3\012- data
Hash be20432a8edfe86c8136013ac867185a
1fa29ffac84111fbc437b128fb8f5f8adacede6d
9b241f65376d8998e07af9ddbebe21a737cf32b403645249eab380bfb18d4070
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTUwNjE1NDM3OTVfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODk4NDI2MTM3NDNfMS5qcGc=
142.54.179.206200 OK 41 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODk4NDI2MTM3NDNfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 846x431, components 3\012- data
Hash cad9d19b75e2f8ce1d60fd71a7d92dfb
8c38b946c67e2ace7e3cf4bb5e4560cba4145fd2
35f57100e241491891f977b9d22f2be55ce6b88ce22dc5927e774e020ea314b8
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODk4NDI2MTM3NDNfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_menu.png
142.54.179.206200 OK 6.4 kB URL HTTP/1.1 jezfj.pxolist.top/includes/templates/linglong-viu02/images/head_menu.png
IP 142.54.179.206:0
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 788a6a594debb15a4d1a6c17e0d3ab6d
89b866508f424fa08e9029f65555db9ecabed855
2f4ec22ea1e83387681989fa28a59d9e83d8d7b6646991f78563f11ed99d933b
GET /includes/templates/linglong-viu02/images/head_menu.png HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2016 03:23:48 GMT
ETag: "190d-5429059827900"
Accept-Ranges: bytes
Content-Length: 6413
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzY5OTA1ODcwODJfMS5qcGc=
142.54.179.206200 OK 44 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzY5OTA1ODcwODJfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x482, components 3\012- data
Hash 52b1e443770439f2a49446c6e3a9730f
d85cdb8b98b9ea11d85e6704177d6bbaa84b1641
492a7e5be4aa6c4a258a233e8c1ae110c715b823c7716e37f2397309941e96a8
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzY5OTA1ODcwODJfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNjYwMDMyMDYwMDZfMS5qcGc=
142.54.179.206200 OK 77 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNjYwMDMyMDYwMDZfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 864x1080, components 3\012- data
Hash deac430ab30bd7a1b076f71ad412c206
df6e1293ced415271824ef11a8b7ac123788822f
d3c1a71aee36f440b87c9861f2d9ce6929605f0a018015ef90cea034e053ac24
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNjYwMDMyMDYwMDZfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg
jezfj.pxolist.top/favicon.ico
142.54.179.206200 OK 5.4 kB URL HTTP/1.1 jezfj.pxolist.top/favicon.ico
IP 142.54.179.206:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash e3d999162d3300c9a0ccc5ad15f1c178
1a2819cd98932ff9f5fdb9e4db4b6706b7474353
5433b42817d81ae9ffdb614e37e90e757bce6959340c47a3d22ebe99c83c74af
GET /favicon.ico HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
Last-Modified: Thu, 28 Dec 2017 23:11:02 GMT
ETag: "1536-5616ea12e0d80"
Accept-Ranges: bytes
Content-Length: 5430
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTU3MDk4NDg4MzVfMS5qcGc=
142.54.179.206200 OK 58 kB URL HTTP/1.1 jezfj.pxolist.top/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTU3MDk4NDg4MzVfMS5qcGc=
IP 142.54.179.206:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 542x720, components 3\012- data
Hash 5728c65790bdb45e31716f13bed8c89a
a93152822026dbbe6e4e8111265981cf935d3a3c
d9339218d33917e319c20d8579bb83ee2d585883a341cb0f0663aadbe262ef60
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTU3MDk4NDg4MzVfMS5qcGc= HTTP/1.1
Host: jezfj.pxolist.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jezfj.pxolist.top/
Cookie: zenid=r9i2nqc8qfl6cqmkv77useetm1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 12:16:56 GMT
Server: Apache
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpg