firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 05:04:14 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TIrzbk9SSFNzRf-DgPxsusErffFRWTC8pkSz_HOvoVLld-Z4pAdvAg==
Age: 3171
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4989
Expires: Tue, 06 Sep 2022 07:20:14 GMT
Date: Tue, 06 Sep 2022 05:57:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tXhqvhqeLUCOWDUDgMsxRSwH9BgfgzBinlVP-U9JQYsdPfZ04_9wjA==
age: 16908
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 05:57:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 05:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 06:35:12 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dHxe9h0n-0rsbtvevOK8Xnf_OkUh5Lz2HsgkuWqCX_ZEgZHu5SBkaw==
Age: 1127
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b57a9dd04797bf34612c80361f1dffb3
56573166d8b9cd9b8dae19fd905e4f3293af306b
b03552109f1e7d1e482aa14614ffb1e38fb53ae4951152aab307b927674dad98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6391
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 05:57:05 GMT
Last-Modified: Tue, 06 Sep 2022 04:10:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.187.71.185101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uSS2HuLiOUYtLH8x8o81CA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Vx7Cbs8T6ia05OsmBzWZD1EMzn4=
neomaxfashions.com/sint-ut/documents.zip
162.241.75.135301 Moved Permanently 0 B URL HTTP/1.1 neomaxfashions.com/sint-ut/documents.zip
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /sint-ut/documents.zip HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Sep 2022 05:57:05 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=6688fca72aef6cdbd09718d6c828bb7f; path=/
Location: https://neomaxfashions.com/sint-ut/documents.zip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8934
Expires: Tue, 06 Sep 2022 08:26:01 GMT
Date: Tue, 06 Sep 2022 05:57:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8934
Expires: Tue, 06 Sep 2022 08:26:01 GMT
Date: Tue, 06 Sep 2022 05:57:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8934
Expires: Tue, 06 Sep 2022 08:26:01 GMT
Date: Tue, 06 Sep 2022 05:57:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fe061740ad833cfe7ff0fe078d6810d
15d0fc3fdced758b5797361bae0fd53341e0581d
5409b6775bca5afd03901975c61c27f267efe2c8a8e739f05ebc52a938c5a368
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5459
x-amzn-requestid: a75bf8a5-dc96-4a88-9de5-b79d1d62ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxB_bFMFoAMFkEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631049fc-2685c90962d8af5f4a7b5908;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 05:58:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rZh0s85w1Nt6qZdZybNBcQHEXMWQIJvtAyCbF4oWsYUOlIKuNS5Fpg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:15:34 GMT
age: 27693
etag: "15d0fc3fdced758b5797361bae0fd53341e0581d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d13129-50cd-414b-b7d2-918afd9144b6.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d13129-50cd-414b-b7d2-918afd9144b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bf0314072a1c7cc981f0640ee708c25
47109d3c10438ee4a598d60e43c6f92645eaf0c9
31cc505951d7d9ced676d6b4c600e986bdd835e44ff67a65d1138552291abcbf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d13129-50cd-414b-b7d2-918afd9144b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7677
x-amzn-requestid: e1fcebb9-140c-4a2d-bcb2-79e192757079
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYH6EQgIAMFR4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d65-62f355c751c3c7250070ed91;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:43:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 3Rjz2v5eU-sicy0iBG2nxIA4DTp878y_igYE4eyXkGXBaqDvB3TbMg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:58:51 GMT
etag: "47109d3c10438ee4a598d60e43c6f92645eaf0c9"
content-type: image/jpeg
age: 28696
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:31:02 GMT
age: 5165
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:44:33 GMT
age: 29554
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa64096ba-be1d-410c-8f5f-91e53e173c69.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa64096ba-be1d-410c-8f5f-91e53e173c69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82415c19dc5c495d88093346d9538ea0
d378158dfa08278f1ffa477111c74a5dbb1d4f3c
cb31fff4e6845e445f30f2637e9c45b82af94767845e38a6d675c0651988971f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa64096ba-be1d-410c-8f5f-91e53e173c69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8792
x-amzn-requestid: 32828d39-6bd8-4367-9f6e-e73c78866465
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-4EZSIAMFeAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-0ae6a63e21ac4c8659c3dee3;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FeVWXyGDdcDvZ82lyKDnkqAenGm40Eb1knTlhJpp5TVrEaoXypEuMQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "d378158dfa08278f1ffa477111c74a5dbb1d4f3c"
content-type: image/jpeg
age: 29425
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31f372dd-03b1-4e12-91bc-08ff7d47b9ff.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31f372dd-03b1-4e12-91bc-08ff7d47b9ff.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f9d13dec6194417882e71afdc1bd9b9a
156bafa4c7c089cf26639feacc9a25db6ef3870e
7e4f2932cd41776d120ac1e14b322c3b94c07449adc7904f222f46ed35570fd0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31f372dd-03b1-4e12-91bc-08ff7d47b9ff.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10985
x-amzn-requestid: 97f3ea4d-135f-4e76-a2db-05bad96e01eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsgHMdIAMFbXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-1a8b9af405cd8e6b1e3c0e1d;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wjawu8nRjwWvl-Eldm4No6GY6gKO-PFbJNkv9FkpOCSDW14Mfx67Sg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:06:45 GMT
age: 28222
etag: "156bafa4c7c089cf26639feacc9a25db6ef3870e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 05:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
neomaxfashions.com/sint-ut/documents.zip
162.241.75.135404 Not Found 60 kB URL HTTP/1.1 neomaxfashions.com/sint-ut/documents.zip
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 8e87224cd44bfd85d661a182df85a3c8
b8e5ac0c102fe0419c915b0d2e1a41113eb3829f
70057a75632dbd09489fb49c9e00671c2392fdb04f38c3e96b31af7e225f8d61
Analyzer Verdict Alert fortinet Malware
GET /sint-ut/documents.zip HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Tue, 06 Sep 2022 05:57:06 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://neomaxfashions.com/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec; path=/
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 05:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-183754233-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-183754233-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 42b8bba923e920f6acfa88326b399c87
2a6a3263f6314f3df4630a024369924ab5438635
6efeab0360f31a9a7a17ae923ed37175d28dbdc0799393679f0cfdcc4fed0f50
GET /gtag/js?id=UA-183754233-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 05:57:10 GMT
expires: Tue, 06 Sep 2022 05:57:10 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41912
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oxygen%3A300%2C400%2C700%7CLato%3A100%2C100italic%2C300%2C300italic%2C400%2C400italic%2C700%2C700italic%2C900%2C900italic&ver=5.2.0
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Oxygen%3A300%2C400%2C700%7CLato%3A100%2C100italic%2C300%2C300italic%2C400%2C400italic%2C700%2C700italic%2C900%2C900italic&ver=5.2.0
IP 142.250.74.10:0
Hash c74c15c7a68495d95ab0afcabda6d31c
61205f45ab37d2fe976c83d5efa67ef3db3ca271
4054b5b4fb3b537b1cb607585aec0073c31055c78a38554ef8a537c9a7add12d
GET /css?family=Oxygen%3A300%2C400%2C700%7CLato%3A100%2C100italic%2C300%2C300italic%2C400%2C400italic%2C700%2C700italic%2C900%2C900italic&ver=5.2.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 05:57:10 GMT
date: Tue, 06 Sep 2022 05:57:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
neomaxfashions.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0
162.241.75.135200 OK 4.9 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4933), with no line terminators
Hash e372df47bd19e1563b557d7bdb817188
4efdf4050a78bdbd88aa255955b7423105895dd0
4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:05 GMT
Accept-Ranges: bytes
Content-Length: 4933
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
neomaxfashions.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23
162.241.75.135200 OK 60 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 6965137b6996c7953be805866df582ed
7fa546bdc941a31224fcc0b64c75d30f23630583
b86f3cdcccad303cb5300fab4d2774eafc3a2788f07ff1f3cd1953dd0debaa3f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:05:07 GMT
Accept-Ranges: bytes
Content-Length: 60053
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
neomaxfashions.com/wp-content/plugins/woo-discount-rules-pro/Assets/Css/awdr_style.css?ver=2.3.2
162.241.75.135200 OK 1.1 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woo-discount-rules-pro/Assets/Css/awdr_style.css?ver=2.3.2
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b0af44348a08900199107155048211b9
97d63fbf5ee0cbe68cd7c8b2d0238dc1456806c1
86298a871666c6f4e59411b98f48f91043aeb724a584f92ef4248da454955b43
GET /wp-content/plugins/woo-discount-rules-pro/Assets/Css/awdr_style.css?ver=2.3.2 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Thu, 31 Dec 2020 05:54:07 GMT
Accept-Ranges: bytes
Content-Length: 1143
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 05:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
neomaxfashions.com/wp-content/uploads/2020/10/xts-header_691229-1603704359.css?ver=5.2.0
162.241.75.135200 OK 8.9 kB URL HTTP/1.1 neomaxfashions.com/wp-content/uploads/2020/10/xts-header_691229-1603704359.css?ver=5.2.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 54ed12b56fb40e2022f19ff371d83ca0
2e06865dd43398969fb74ba4a9846b617112ce67
4655089fd27b62fdcd5abb74ba22494871288c6844df3b383b263df2ff5009b2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2020/10/xts-header_691229-1603704359.css?ver=5.2.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Mon, 26 Oct 2020 09:25:59 GMT
Accept-Ranges: bytes
Content-Length: 8919
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
neomaxfashions.com/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.9.4
162.241.75.135200 OK 42 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.9.4
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (42417), with no line terminators
Hash 4dbe5be01784bcfa97375e21c9bfbe50
83f6874ca3f0dd800cf73182fd5717961239541a
9363aa094af033d1f036980aaab13c0db03311dfa51077fa6d55f6f749b08de9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.9.4 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:35 GMT
Accept-Ranges: bytes
Content-Length: 42417
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
neomaxfashions.com/wp-content/themes/neomax/css/bootstrap.min.css?ver=5.2.0
162.241.75.135200 OK 29 kB URL HTTP/1.1 neomaxfashions.com/wp-content/themes/neomax/css/bootstrap.min.css?ver=5.2.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (29170)
Hash 0fbaa013db970e746b75aaa9d74aebcf
936336ad277b6502628e99ea35c4e2aa91248f1b
cb9c70717afe1805fde356cccb20ea5b797027efbf97f62f3e62f8b7aad1c960
GET /wp-content/themes/neomax/css/bootstrap.min.css?ver=5.2.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:04:02 GMT
Accept-Ranges: bytes
Content-Length: 29387
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
neomaxfashions.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.241.75.135200 OK 11 kB URL HTTP/1.1 neomaxfashions.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/uploads/2021/03/xts-theme_settings_default-1616246988.css?ver=5.2.0
162.241.75.135200 OK 21 kB URL HTTP/1.1 neomaxfashions.com/wp-content/uploads/2021/03/xts-theme_settings_default-1616246988.css?ver=5.2.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5549), with CRLF, LF line terminators
Hash 15ee1bf0328c25068f4bb3007ce4fc2e
7f60f850d981e6a753d7a0456ed2d2db3c044c79
0b354969426a90aeecea597cb86d31ca876b89867ddca2b294b0cea201fe9e35
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2021/03/xts-theme_settings_default-1616246988.css?ver=5.2.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Sat, 20 Mar 2021 13:29:48 GMT
Accept-Ranges: bytes
Content-Length: 21344
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
neomaxfashions.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0
162.241.75.135200 OK 210 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size 210 kB (209831 bytes)
Hash 9ed8fcb16418ff477a6c93fe33f86563
47be642692139a2ce63cf655cba31767cb7e8074
3f7c8f55c3c421a6f14efb39bf07abb73d1d244f194e133a2453913330e38819
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:05 GMT
Accept-Ranges: bytes
Content-Length: 209831
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
neomaxfashions.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.241.75.135200 OK 90 kB URL HTTP/1.1 neomaxfashions.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: bytes
Content-Length: 89521
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/themes/neomax/style.min.css?ver=5.2.0
162.241.75.135200 OK 750 kB URL HTTP/1.1 neomaxfashions.com/wp-content/themes/neomax/style.min.css?ver=5.2.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Size 750 kB (750303 bytes)
Hash 8969fe3a5a7c8893db51aee909c9e0a9
7f16438180b792277655d134339318e4a793e3ce
43cf0608b4227043466e559b661670e1e472e93373de9837a80513ef5146999e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/neomax/style.min.css?ver=5.2.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:04:02 GMT
Accept-Ranges: bytes
Content-Length: 750303
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1
162.241.75.135200 OK 9.5 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9139)
Hash 87c54edf7dad7dfdfde015f6eee45ff1
96ec1a06ea3093c47e1e2fc4444ada7f4456135d
ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:06 GMT
Accept-Ranges: bytes
Content-Length: 9533
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23
162.241.75.135200 OK 121 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (41022), with CRLF line terminators
Size 121 kB (121174 bytes)
Hash 29aeb6e61a240e1ad98602994cf24bf4
daf76664c634a38b010fef0dff868af7fa4c5cc1
6f2f318f382714ae5a0d26bf0d3bace2ff2602e04add7f23afbc521423ddaa2e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:05:07 GMT
Accept-Ranges: bytes
Content-Length: 121174
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1
162.241.75.135200 OK 485 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65358)
Size 485 kB (485416 bytes)
Hash 2fcf15b9242ca9cbf091c45419959fdb
52e744ee97e3612e790305643ab5046201831618
f1dbbc4be8d88ae17466b1d7a8fd7bf4f9d9b5ab492719cdea721d82cecb738d
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:10 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:05:36 GMT
Accept-Ranges: bytes
Content-Length: 485416
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:10 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
neomaxfashions.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.4.1
162.241.75.135200 OK 2.8 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.4.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1788)
Hash ced0ba1955b2a3f3eca058df26d0b7cc
56d7b4d40ef3ad12d0b0c3dc21fe75f74e771c14
bdaab6b0e2a255570d957c434139a2fd201322b97249169713b464f8931001b3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.4.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:05:36 GMT
Accept-Ranges: bytes
Content-Length: 2780
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/woo-discount-rules-pro/Assets/Js/awdr_pro.js?ver=2.3.2
162.241.75.135200 OK 3.8 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woo-discount-rules-pro/Assets/Js/awdr_pro.js?ver=2.3.2
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1799)
Hash 6547b3a6ebb8b4b8a5a87673abb033a3
8f3302e5c7cdefcbcdb5a4ae65461bb549b89496
51db5a84a878860e40fac205969555f500137fcf5a0f919a34ffdb9d12124345
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woo-discount-rules-pro/Assets/Js/awdr_pro.js?ver=2.3.2 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Thu, 31 Dec 2020 05:54:07 GMT
Accept-Ranges: bytes
Content-Length: 3757
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
162.241.75.135200 OK 6.5 kB URL HTTP/1.1 neomaxfashions.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6494), with no line terminators
Hash 64e89b93b02055fb75ea0913089ded0b
9ccf854a6acedb27496725fa7570a670fd7bd572
a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 16:35:13 GMT
Accept-Ranges: bytes
Content-Length: 6494
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
162.241.75.135200 OK 19 kB URL HTTP/1.1 neomaxfashions.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash 1b0fe9b37e9e47e0c8919cb618792bf5
5d1c1e03e3e773e572db2ad86f9771caa7286369
e20ddb9ed1fa044cb624f0253bb06b13c92ed9915063bd63a5806440c6b1ce7c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 12:50:17 GMT
Accept-Ranges: bytes
Content-Length: 19261
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
162.241.75.135200 OK 9.7 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash cfb428c02811f0cbe515d5f3dca61de6
e95f8696fbe29a706e66ccf582b36d9bd650ab9f
679e44f9b4bbbc2ad0c4000c1413fd3a88627d83f1cba8ebdac26f81bc7edb78
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 16:16:02 GMT
Accept-Ranges: bytes
Content-Length: 9720
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1
162.241.75.135200 OK 1.8 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:06 GMT
Accept-Ranges: bytes
Content-Length: 1834
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1
162.241.75.135200 OK 2.1 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:06 GMT
Accept-Ranges: bytes
Content-Length: 2139
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1
162.241.75.135200 OK 2.9 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:06 GMT
Accept-Ranges: bytes
Content-Length: 2938
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/woo-discount-rules/v2/Assets/Js/site_main.js?ver=2.3.13
162.241.75.135200 OK 9.7 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woo-discount-rules/v2/Assets/Js/site_main.js?ver=2.3.13
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7237a842df6ff90e7d924e9493d49796
2b5ff1ec857fef073adc6d370c467ce5b1abfa25
9d58be93d455eb9e641052f86b28d51a1c47c3283679fd12e5ec457cf2f40161
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woo-discount-rules/v2/Assets/Js/site_main.js?ver=2.3.13 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 16:17:17 GMT
Accept-Ranges: bytes
Content-Length: 9679
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23
162.241.75.135200 OK 329 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (64268)
Size 329 kB (328788 bytes)
Hash 8d698cfd33f440494717d98f6d8b43fd
24ad1c17eb2088fc09406644c0fd46f3c3cee844
20d40e87d6a4e382643c45e589c61273f0fbe54685912941b826dab688059b0a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:05:07 GMT
Accept-Ranges: bytes
Content-Length: 328788
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/woo-discount-rules/v2/Assets/Js/awdr-dynamic-price.js?ver=2.3.13
162.241.75.135200 OK 3.1 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woo-discount-rules/v2/Assets/Js/awdr-dynamic-price.js?ver=2.3.13
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 0624a076a8b15d2d238fb31043bed59c
a1f9adbcb37555b3adb1f59666ce22db51658382
cb8528f82c58653ab48a3c62c296c0e5b8483ab9d53a435d1372d401fd2a63d0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woo-discount-rules/v2/Assets/Js/awdr-dynamic-price.js?ver=2.3.13 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 16:17:17 GMT
Accept-Ranges: bytes
Content-Length: 3053
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.1.8
162.241.75.135200 OK 33 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.1.8
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32559), with no line terminators
Hash 2ccdf9f376e2ef1060ffe3dfea1fe03b
f4c8196d16dffaaf53b6cd1ee8991cd95cbb4754
d8e2a9857e27033f40836df51f38c7317b05b0fc64a8956918904530d2426932
GET /wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.1.8 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:35 GMT
Accept-Ranges: bytes
Content-Length: 32559
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.1.8
162.241.75.135200 OK 888 B URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.1.8
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 0a93084318763e71e66c860b71caf9ca
69bec1073e483b81e9d4f87c75dc5f2685e762f2
34e33d9ff223080eb9bbb846525d2290d517313e3889e212d55046d68cd4b7db
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.1.8 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:35 GMT
Accept-Ranges: bytes
Content-Length: 888
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/product-gtin-ean-upc-isbn-for-woocommerce/assets/js/product-gtin-wc-frontend.min.js?ver=1.1.1
162.241.75.135200 OK 644 B URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/product-gtin-ean-upc-isbn-for-woocommerce/assets/js/product-gtin-wc-frontend.min.js?ver=1.1.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (644), with no line terminators
Hash b1c65728a803729bf9ec5b8b5b747a25
e66a7d5f79d4684a65824f62489872d30ad93c28
1f6426b89c7b358e25b8433a7d9809d710dcdc3267cbfa64c3a48ec290da2f11
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/product-gtin-ean-upc-isbn-for-woocommerce/assets/js/product-gtin-wc-frontend.min.js?ver=1.1.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 11:13:28 GMT
Accept-Ranges: bytes
Content-Length: 644
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.4.1
162.241.75.135200 OK 22 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.4.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (22266)
Hash 1d8aa4c6c44c6f36fb21a8ded9feb0e3
e83b719df158acfc3916e952fff942d08d6c226c
10bcbd4ae09be30754f3af7aa2cc9e547e37b14d8b765453d90949644a41a679
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.4.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:05:36 GMT
Accept-Ranges: bytes
Content-Length: 22485
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
162.241.75.135200 OK 5.6 kB URL HTTP/1.1 neomaxfashions.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sat, 13 Jun 2020 18:53:27 GMT
Accept-Ranges: bytes
Content-Length: 5629
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.4.1
162.241.75.135200 OK 38 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.4.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32004)
Hash f61b01a34a1da9447da88c1ddd7bf946
f21772cf0a93cbdc387c02230bf63962f12d451c
017580aec08ce8e0f36f416e1d07463b22696dd108534bdfbdffdfce3af3a399
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.4.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:05:36 GMT
Accept-Ranges: bytes
Content-Length: 37510
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/themes/neomax/js/theme.min.js?ver=5.2.0
162.241.75.135200 OK 738 kB URL HTTP/1.1 neomaxfashions.com/wp-content/themes/neomax/js/theme.min.js?ver=5.2.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31956)
Size 738 kB (738048 bytes)
Hash 1e5b0554e2b384480391a80d85f743dc
10da4a3329f238bd0fcce6a95909a1fe601e1ae0
3c9079cb1c0ef366e6e4b740e6f73428b5eb216eee0d6f256ba960fee1599e3e
GET /wp-content/themes/neomax/js/theme.min.js?ver=5.2.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:04:02 GMT
Accept-Ranges: bytes
Content-Length: 738048
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-includes/js/underscore.min.js?ver=1.13.1
162.241.75.135200 OK 19 kB URL HTTP/1.1 neomaxfashions.com/wp-includes/js/underscore.min.js?ver=1.13.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19034)
Hash 47e07d05e0e32338ed2e112d3f46cac1
331fa3259ce673bf92047a25542305242eb6f35f
4f6366518c3d992d6a9a3aee342675532822d6b1d66217df7b284bb450dbb99a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 21:47:13 GMT
Accept-Ranges: bytes
Content-Length: 19069
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 05:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 05:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
neomaxfashions.com/wp-includes/js/wp-util.min.js?ver=5.9.4
162.241.75.135200 OK 1.3 kB URL HTTP/1.1 neomaxfashions.com/wp-includes/js/wp-util.min.js?ver=5.9.4
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1305)
Hash 8637362089372427b52fa10a43d8109c
6009bed674718329dce6055ab09fa95181162d81
b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=5.9.4 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Fri, 25 Jun 2021 14:50:58 GMT
Accept-Ranges: bytes
Content-Length: 1340
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 05:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16348, version 1.0\012- data
Hash 8dc707b4818131fab44d482b1db5d458
8a0ff82b12fa25391ce17a6ae069d7fe5002f12d
9e64f128d5352d04ea5c87031e4cf1ad204b72a0afb003ece52eeb997d28a570
GET /s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neomaxfashions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:34:21 GMT
expires: Tue, 05 Sep 2023 21:34:21 GMT
cache-control: public, max-age=31536000
age: 30170
last-modified: Mon, 09 May 2022 18:31:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.3.1
162.241.75.135200 OK 14 kB URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.3.1
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13590), with no line terminators
Hash a49a60e0186f705f693279985371da20
3419d4683879d6a48e051e38356602a2f5094511
3b55a00b09e9df011435d1f358401cf7153066bbfeafdc3384e5d8cdaf4e3262
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.3.1 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:06 GMT
Accept-Ranges: bytes
Content-Length: 13590
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPGR_p.woff2
142.250.74.163200 OK 5.4 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPGR_p.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 5368, version 1.0\012- data
Hash a48b0f049358d7503c497abb4dcbc4d6
d764e136ada1fba8ec4d99994b179d984d7983b8
4ef7cd3d4ed7de91e7eb3c05a31c6fa1da0b08d07cbfab8ae108c34d5e39cdb9
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwaPGR_p.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neomaxfashions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 17:20:14 GMT
expires: Wed, 30 Aug 2023 17:20:14 GMT
cache-control: public, max-age=31536000
age: 563817
last-modified: Tue, 26 Apr 2022 15:56:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neomaxfashions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 17:10:21 GMT
expires: Wed, 30 Aug 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 564410
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCNWgzaGW5.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCNWgzaGW5.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16172, version 1.0\012- data
Hash 891cacadb2d3449b6f342f571dc743ae
e35ea255304a2981b27f6c2822eb4fd8eaa984d5
5740bce57f68562d42e8ca6f6eb70dca3bc33be11ef0361e78274d360f41adc9
GET /s/oxygen/v15/2sDcZG1Wl4LcnbuCNWgzaGW5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neomaxfashions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:34:21 GMT
expires: Tue, 05 Sep 2023 21:34:21 GMT
cache-control: public, max-age=31536000
age: 30170
last-modified: Mon, 09 May 2022 18:30:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neomaxfashions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 17:10:21 GMT
expires: Wed, 30 Aug 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 564410
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 05:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
neomaxfashions.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=5.9.4
162.241.75.135200 OK 543 B URL HTTP/1.1 neomaxfashions.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=5.9.4
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash a3f411c086256fbbce02a971582a9536
5653cd9e4a9530e5fabbbf15bfe047994f287975
e853e383929514630e5499f0f86fd06e1b61dc7e18e5443851073188f65a3928
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=5.9.4 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 03 Apr 2022 07:35:35 GMT
Accept-Ranges: bytes
Content-Length: 543
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
neomaxfashions.com/wp-content/uploads/2020/10/neomax-london-Logotypo-1.svg
162.241.75.135200 OK 7.0 kB URL HTTP/1.1 neomaxfashions.com/wp-content/uploads/2020/10/neomax-london-Logotypo-1.svg
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (7008), with no line terminators
Hash 06acd6a029135f3d90adfe492e8cbc4f
453f26535e043a15f016d6fea98823af999a76bc
ec5d8a914c828a3aaab07a2576d184c50ef6fc89e274ccf95402bc32f7924c8d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2020/10/neomax-london-Logotypo-1.svg HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Tue, 20 Oct 2020 12:14:50 GMT
Accept-Ranges: bytes
Content-Length: 7008
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml
neomaxfashions.com/wp-content/themes/neomax/fonts/woodmart-font.woff?v=5.2.0
162.241.75.135200 OK 20 kB URL HTTP/1.1 neomaxfashions.com/wp-content/themes/neomax/fonts/woodmart-font.woff?v=5.2.0
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 20144, version 1.0\012- data
Hash db8e037e138a7f0b7902eab0285087c1
68e6a68dcb5dfe755be0eb8ce1865cfbcfbeb957
591eb5805f73292e997f36d8baa027a69f5e4a2ad367f0b15ce656aef3083062
GET /wp-content/themes/neomax/fonts/woodmart-font.woff?v=5.2.0 HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://neomaxfashions.com/wp-content/uploads/2021/03/xts-theme_settings_default-1616246988.css?ver=5.2.0
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Sun, 04 Oct 2020 10:04:02 GMT
Accept-Ranges: bytes
Content-Length: 20144
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff
neomaxfashions.com/wp-content/uploads/2018/06/glasses-search.svg
162.241.75.135200 OK 772 B URL HTTP/1.1 neomaxfashions.com/wp-content/uploads/2018/06/glasses-search.svg
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0deee61d01fe9161dc5051925bf9af46
12b958db83d600ebd348f3ac2663ecc4fa600fb8
8ba093e960bcf50a25c7de39c48a0ec7d8441b519396b6d26c403f798e87ff50
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2018/06/glasses-search.svg HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Thu, 20 Feb 2020 08:58:45 GMT
Accept-Ranges: bytes
Content-Length: 772
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
neomaxfashions.com/wp-content/uploads/2018/06/glasses-wish-list.svg
162.241.75.135200 OK 960 B URL HTTP/1.1 neomaxfashions.com/wp-content/uploads/2018/06/glasses-wish-list.svg
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 419ca9bdd5513c1f2a8eac0b8df18217
0e5e383f05f12db2a0b3919026aabd25293ad9e1
f6ea1fb72a75fb97f1de96e735b0b787dae2be82276e41071432254d0f1dce12
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2018/06/glasses-wish-list.svg HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Thu, 20 Feb 2020 08:58:45 GMT
Accept-Ranges: bytes
Content-Length: 960
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml
neomaxfashions.com/wp-content/uploads/2018/06/glass-shopping-bag.svg
162.241.75.135200 OK 928 B URL HTTP/1.1 neomaxfashions.com/wp-content/uploads/2018/06/glass-shopping-bag.svg
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6686c6332ba7f9b440ebd84b4e209cab
8012249e0c6cb019f5f51fbd59d6e62068e2e7a9
aa912f7e8ae031d5b4381e67ea78129e6b13f7a8845f279817577ce3bef909a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2018/06/glass-shopping-bag.svg HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Thu, 20 Feb 2020 08:58:45 GMT
Accept-Ranges: bytes
Content-Length: 928
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 06 Sep 2022 04:41:12 GMT
expires: Tue, 06 Sep 2022 06:41:12 GMT
cache-control: public, max-age=7200
age: 4559
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
neomaxfashions.com/wp-content/uploads/2020/02/cropped-ninofav-1-192x192.png
162.241.75.135200 OK 3.0 kB URL HTTP/1.1 neomaxfashions.com/wp-content/uploads/2020/02/cropped-ninofav-1-192x192.png
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 9b0d7a5fed9dc80b77f3a8cb272de151
94ccd4d0c774b0f57c9ef9274e758bc06ed6e4bb
820ad89534b47532fe71fec14060c6d9549a6457dfefd23f023b93b0deec02b7
GET /wp-content/uploads/2020/02/cropped-ninofav-1-192x192.png HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Wed, 04 Nov 2020 10:24:15 GMT
Accept-Ranges: bytes
Content-Length: 2966
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
neomaxfashions.com/wp-content/uploads/2020/02/cropped-ninofav-1-32x32.png
162.241.75.135200 OK 414 B URL HTTP/1.1 neomaxfashions.com/wp-content/uploads/2020/02/cropped-ninofav-1-32x32.png
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 5e90b0c089e40c633b70b7119b1f8f14
2ef49c40e1a0fdb42b4f2225f66db741065a243f
c2d246fd0783d01e7ca36888555fbbc5d167244def8955a3c220fe1367b36870
GET /wp-content/uploads/2020/02/cropped-ninofav-1-32x32.png HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:11 GMT
Server: Apache
Last-Modified: Wed, 04 Nov 2020 10:24:15 GMT
Accept-Ranges: bytes
Content-Length: 414
Cache-Control: max-age=86400
Expires: Wed, 07 Sep 2022 05:57:11 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
neomaxfashions.com/?wc-ajax=get_refreshed_fragments
162.241.75.135200 OK 969 B URL HTTP/1.1 neomaxfashions.com/?wc-ajax=get_refreshed_fragments
IP 162.241.75.135:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- , ASCII text, with very long lines (969), with no line terminators
Hash 78d13faf128ee038e9f15086b5247144
cb57104204fea80be3faa1690559e836b35c4b96
551d8276258eba3f0a87bf8b6f2a507940712fe9c9becd05c97231ad28908b6a
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: neomaxfashions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://neomaxfashions.com
Connection: keep-alive
Referer: https://neomaxfashions.com/sint-ut/documents.zip
Cookie: PHPSESSID=72228c4126ede3389ef063c69a2a84ec
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 05:57:12 GMT
Server: Apache
Pragma: no-cache
Access-Control-Allow-Origin: https://neomaxfashions.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8