ajtel.net/W/
23.105.186.224301 Moved Permanently 228 B IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 87812d038d38366640f93be99e0d6994
9de8610bfa1d5513375cf3bfbb54ad36c3b7e5c7
315a94a4a5f40282a8ad3dd5cdeb5f2bbf373a5f69e39812713862c57248260a
Analyzer Verdict Alert fortinet Malware
GET /W/ HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 09:48:15 GMT
Server: Apache
Location: https://ajtel.net/W/
Content-Length: 228
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9766
Expires: Sat, 26 Nov 2022 12:31:04 GMT
Date: Sat, 26 Nov 2022 09:48:18 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4384
Cache-Control: max-age=93360
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:18 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:44:18 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12439
Expires: Sat, 26 Nov 2022 13:15:37 GMT
Date: Sat, 26 Nov 2022 09:48:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 09:19:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1746
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HDPHtAJlA4vdCNN8Ix9U1B+Sn4cPHr5cYyI6o7fLRCCEDQDiFwgaXY+PJW3T/c0qoBmBmIvERbc=
x-amz-request-id: B5AY2N48T9X0GKGS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 09:41:09 GMT
age: 430
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 09:48:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 09:08:54 GMT
cache-control: public,max-age=3600
age: 2365
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6301
Cache-Control: max-age=90213
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:19 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:51:52 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.83.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.83.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0VLdWYS8Oj2h9oO39NwzIA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0+TSTEJiMUBDu/nzAojAybpI61A=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7932
Expires: Sat, 26 Nov 2022 12:00:33 GMT
Date: Sat, 26 Nov 2022 09:48:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7932
Expires: Sat, 26 Nov 2022 12:00:33 GMT
Date: Sat, 26 Nov 2022 09:48:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7932
Expires: Sat, 26 Nov 2022 12:00:33 GMT
Date: Sat, 26 Nov 2022 09:48:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7932
Expires: Sat, 26 Nov 2022 12:00:33 GMT
Date: Sat, 26 Nov 2022 09:48:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7932
Expires: Sat, 26 Nov 2022 12:00:33 GMT
Date: Sat, 26 Nov 2022 09:48:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 42556
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 9295
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LDrq5UcFhG63XFZhmeS5Z_mEkwrvuQ2bLfT8hV9I3E1s1lJLZF5Dww==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 43317
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 801dd70f0c591086062e2a9054f78efc
6a2f4d4bfec41d16fa84b0a9b0b13f7dcff2be3d
ba28f27ea906aaa6db1fbdca53ecbd4366b99d2696fb888e47b731e21c0f82da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6431
x-amzn-requestid: 0daa58b7-3fd8-463f-85f5-6f84fdb17661
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVOBEpEIAMF87A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381358c-3f8b9c18598ba2532518668d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PuOd4PnHQfvwM2zDA15uprEEgoy7BfUUgjvkrf89DYmN43XfEfyJvg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:49:35 GMT
age: 43126
etag: "6a2f4d4bfec41d16fa84b0a9b0b13f7dcff2be3d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 17033
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 43485
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ajtel.net/W/
23.105.186.224302 Found 34 kB IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash 743fa40ef3f4e269740fa1e6ec9b09a9
2cb16f021b2aac5c2f4cb59fa8d1706e55968a00
67ad78119bd208e96f5a76ffaf7210eef4c41d82149e57b439a8dc1933ce5395
Analyzer Verdict Alert fortinet Malware
GET /W/ HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Date: Sat, 26 Nov 2022 09:48:15 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Language,Accept-Encoding
Content-Encoding: gzip
Set-Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4; path=/
Location: https://ajtel.net/W/en/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ajtel.net/W/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1
23.105.186.224200 OK 3.3 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (21597)
Hash d7ece14f39cf3d91467cf08eb9db77d0
6a521873f80dfb838f8351d3a99a0369e827895f
7c3eb69a15fa684ac262647ce64031c612f4ed9c9dba32e3e8e455ea145271b0
GET /W/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:21 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 21:52:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3295
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/booked/assets/js/tooltipster/css/themes/tooltipster-light.css?ver=3.3.0
23.105.186.224200 OK 225 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/booked/assets/js/tooltipster/css/themes/tooltipster-light.css?ver=3.3.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 61d2a4e16d0a8f87627b87a7f5ab711b
ce2509c46067d2102430361052d3908ff65c2bf0
79cd1be36fadffc16a9a5b566cccaa22f355a3610630f686cc6855ee93d5d677
GET /W/wp-content/plugins/booked/assets/js/tooltipster/css/themes/tooltipster-light.css?ver=3.3.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:21 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 01:10:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 225
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
23.105.186.224200 OK 12 kB URL HTTP/1.1 ajtel.net/W/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
Analyzer Verdict Alert fortinet Malware
GET /W/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 22:50:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12518
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/booked/assets/js/tooltipster/css/tooltipster.css?ver=3.3.0
23.105.186.224200 OK 1.7 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/booked/assets/js/tooltipster/css/tooltipster.css?ver=3.3.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash f37ca84a2822fa035cd5ba4a8f84e3bb
e7f3450819ce84986bea31d5d5a3c0c764fe2217
fb556b63f43be319a090876f1552798944e3b2347d41a71beebb475df94b9973
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/booked/assets/js/tooltipster/css/tooltipster.css?ver=3.3.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 01:10:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1709
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/embedpress/Gutenberg/dist/blocks.style.build.css?ver=1669157464
23.105.186.224200 OK 2.7 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/embedpress/Gutenberg/dist/blocks.style.build.css?ver=1669157464
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (9276)
Hash 6b1ef04b3800520ac57132a09617fa93
774e80bea175086cabc188ab394cddf2fdb920a8
07e5018d39b9918ae0636a9879053a8a3031a666ab834ba220c1c2c0155a466a
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/embedpress/Gutenberg/dist/blocks.style.build.css?ver=1669157464 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 22 Nov 2022 22:51:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2736
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-includes/css/classic-themes.min.css?ver=1
23.105.186.224200 OK 189 B URL HTTP/1.1 ajtel.net/W/wp-includes/css/classic-themes.min.css?ver=1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /W/wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 10:52:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/booked/assets/css/animations.css?ver=2.4
23.105.186.224200 OK 506 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/booked/assets/css/animations.css?ver=2.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 9184c39b34e1a900498669e189bfdfb4
098453ea7f0bbbe3f7738f9182d6ef294ef83cc1
d63f6608ec39552ba50bc52ed66cf2f375e31c4f537efa388fedccb094fcd347
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/booked/assets/css/animations.css?ver=2.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 01:10:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 506
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
23.105.186.224200 OK 5.0 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
GET /W/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 22:51:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5009
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 3fead833747597f4402b862e25ee679a
ae554d1c4829cf710a18826f5107d7ff0402f007
11214c69b7259b018c5c01eb2ca9bdc94a8f97f853948f4f18349f7387afe09d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4380
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:25 GMT
Last-Modified: Sat, 26 Nov 2022 08:35:25 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ajtel.net/W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/css/cf7mls.css?ver=2.5.4
23.105.186.224200 OK 1.8 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/css/cf7mls.css?ver=2.5.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash fbbd80f35e19adb5efee85e47c1c3d9d
2bea8a3037f0741205e683accd870e7f9131b192
0b649003d81764effeedb96eee654f1fbd7bfde2b30c9974f4cf240c8100bf2b
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/css/cf7mls.css?ver=2.5.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Fri, 19 Feb 2021 23:02:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1759
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/css/progress_bar.css?ver=2.5.4
23.105.186.224200 OK 4.4 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/css/progress_bar.css?ver=2.5.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 1f3d2d0a54a0c8b2e799b572e6926f58
dd88b8c14d70f9d3c2840ffeb5f7a3799de72054
6201d19b90ae45198dcf390ba6530bbf803211f360f3ac62a814a182d4a72d8e
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/css/progress_bar.css?ver=2.5.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Fri, 19 Feb 2021 23:02:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4430
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/booked/dist/booked.css?ver=2.4
23.105.186.224200 OK 8.3 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/booked/dist/booked.css?ver=2.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type Unicode text, UTF-8 text, with very long lines (800)
Hash e11b0debc64141b19657539dd1e0f617
32baacdf28ff6053172890bc3a84f01a64ce838a
75ac46107e5e2a90a69fd2993ae76b109fde220823864db6993348d151dde466
GET /W/wp-content/plugins/booked/dist/booked.css?ver=2.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 01:10:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8342
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/custom-twitter-feeds/css/ctf-styles.min.css?ver=2.0.3
23.105.186.224200 OK 3.1 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/custom-twitter-feeds/css/ctf-styles.min.css?ver=2.0.3
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (17189), with no line terminators
Hash fe5311184c8c54a1547ff22c71844229
ffa39b08562f6102e717f28b43c33b733eb7f803
19da29c9a0050554825136666db2bc3f84daa6acf265c8e78d8607784e872824
GET /W/wp-content/plugins/custom-twitter-feeds/css/ctf-styles.min.css?ver=2.0.3 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2022 01:12:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3051
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/animate/animate.min.css?ver=2.5.4
23.105.186.224200 OK 4.3 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/animate/animate.min.css?ver=2.5.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (57919)
Hash 0e7107c6109483cd8f861d21c9fd655a
3d080031459ecc9aa92e905d90985f9d4e51692d
6d037ea08f38bc8422405b8cae75bb7aa80dc67df731e046be0a4df6153a1716
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/animate/animate.min.css?ver=2.5.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Fri, 19 Feb 2021 23:02:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4259
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/embedpress/assets/css/embedpress.css?ver=6.1.1
23.105.186.224200 OK 3.3 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/embedpress/assets/css/embedpress.css?ver=6.1.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type assembler source text\012- assembler source, ASCII text
Hash 4c934567e3f913f6391daf1b23c67207
3177a3872e8636f234c42b5c71bdb3c10e205e3e
c1286565df29648cc009bcfeef5ca3d4d0c061663420bc54a650ef23610469a0
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/embedpress/assets/css/embedpress.css?ver=6.1.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 22 Nov 2022 22:51:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3317
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/essential-blocks/assets/css/animate.min.css?ver=3.8.2
23.105.186.224200 OK 5.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/essential-blocks/assets/css/animate.min.css?ver=3.8.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65362)
Hash ce4de958a2364b3440335a570a30da23
03afc3905c25a6cf8922b6c393da3c5fc376975b
f0b6edca7fab4184cef6199e8da1ca944d49b4f87d417179e9299b7a7dac82a8
GET /W/wp-content/plugins/essential-blocks/assets/css/animate.min.css?ver=3.8.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Thu, 24 Nov 2022 22:50:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5210
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/css/exad-header-footer.css?ver=1.5.0
23.105.186.224200 OK 334 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/css/exad-header-footer.css?ver=1.5.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 518eefd5d1705682426e130fb691a0d0
ee098307f4a0e7da177b6b1da532862416cd7eee
0458789b9846abb53c16ccc4a6e993d564599cc51e00ae751e027fda4b6f989b
GET /W/wp-content/plugins/exclusive-addons-elementor-pro/assets/css/exad-header-footer.css?ver=1.5.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 03:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 334
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
23.105.186.224200 OK 4.0 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (19233)
Hash 24dc15839234f4dbd06f677098762e1c
a285318fa3f4d9a1491f523f080cd32e1df12315
016fdb3d864bb8491d6450906f97c734548f76ca9ead4b13b92dc7112c5568c6
GET /W/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3961
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.9
23.105.186.224200 OK 13 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.9
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 69502c1649c7968ca08d46151a7005aa
0d75f28ae3d83c75bf04d417980b3de9eb92e82e
68dbbe83a3a981810d2d66c651d70f43c83a0dcfc2290fea722a39e9138643c1
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.9 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Fri, 19 Feb 2021 23:02:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12698
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/uploads/elementor/css/post-15.css?ver=1669072017
23.105.186.224200 OK 384 B URL HTTP/1.1 ajtel.net/W/wp-content/uploads/elementor/css/post-15.css?ver=1669072017
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (1173), with no line terminators
Hash f96798bfda0fda505a8639468a08d2b2
fe8fd80096747c86be7f12e82ee29b8f72892d05
03d407c67557ad9bd9464b1cc2a644f20a654b513238f76647c36937fa017400
GET /W/wp-content/uploads/elementor/css/post-15.css?ver=1669072017 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:06:57 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 384
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/embedpress/assets/css/embedpress-elementor.css?ver=3.6.2
23.105.186.224200 OK 1.8 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/embedpress/assets/css/embedpress-elementor.css?ver=3.6.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type assembler source text\012- assembler source, ASCII text
Hash 939e6e3a9fd88d10692fc6fb54eaca8e
a0b60aff41fccbdb7737ef0487384d714eb9c994
2e4c21efa103390a1b8c6eda6b7eafe9fcd874a0b24150e19123b2309e0916df
GET /W/wp-content/plugins/embedpress/assets/css/embedpress-elementor.css?ver=3.6.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 22 Nov 2022 22:51:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1767
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-includes/css/dashicons.min.css?ver=6.1.1
23.105.186.224200 OK 36 kB URL HTTP/1.1 ajtel.net/W/wp-includes/css/dashicons.min.css?ver=6.1.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (58981)
Hash 00492d322e5572c7abc3e8701b6c52c1
0802ac2c8280ce7c98af881b1d49ec682acbf314
8bc01632cbc3ab834e04141d444ff82b05a4691444d70a9860477710e330b824
Analyzer Verdict Alert fortinet Malware
GET /W/wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 12:54:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 35730
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
23.105.186.224200 OK 20 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65497)
Hash 64e425a459cf734b7d0db289b7649a90
9a90ea6fe0e05cd286be4809597ecc0ed7930b4c
7d5ebd725d9d7271988ec20af13f060794bd4b65d1dce5c2c7e411647ff93a19
GET /W/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 19732
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/custom-facebook-feed/assets/css/cff-style.min.css?ver=4.1.5
23.105.186.224200 OK 3.4 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/custom-facebook-feed/assets/css/cff-style.min.css?ver=4.1.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (17495), with no line terminators
Hash ab80b346e019d296433388bdd34e7766
3f3a7358556cb022f88b74a2dd7eba0bda4ce605
fce554e8f55e529737f89abc2f0f1cc554d4cf926f9db821cd2b9393cd20b33a
GET /W/wp-content/plugins/custom-facebook-feed/assets/css/cff-style.min.css?ver=4.1.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2022 21:14:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3382
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/uploads/elementor/css/post-26.css?ver=1669081442
23.105.186.224200 OK 5.3 kB URL HTTP/1.1 ajtel.net/W/wp-content/uploads/elementor/css/post-26.css?ver=1669081442
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (39073)
Hash 30384191391eef2e197404db724fea0a
a0bc5b28c7e03ebac94140d8db46005b7d2096a4
6429c8a5502701c84151e2f671295a334fdf28950c6754523a476122dd35c7d9
GET /W/wp-content/uploads/elementor/css/post-26.css?ver=1669081442 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 22 Nov 2022 01:44:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5295
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.8.2
23.105.186.224200 OK 42 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.8.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65493)
Hash 76fa4ca57c96d0ef651acbdfbc7bfa8c
3a229cfedc8bcaed56f43707b5f5b264161e94f5
d35be0db383efecb064a138f6fb946f0ddbcdb42ac2718540dbceb84882aa3e8
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.8.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:06:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 42398
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick.min.css?ver=6.1.1
23.105.186.224200 OK 468 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick.min.css?ver=6.1.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (1183), with no line terminators
Hash f381c67030d62e2cca8a5d3695480238
499d6d0efa28b91daddf2eda936d9c4af916e166
4f9a041d21e3e12f0bbb3d85c54824d119769d887356ae37ef51ffbe5c3542b5
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick.min.css?ver=6.1.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 22:50:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 468
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick-theme.min.css?ver=6.1.1
23.105.186.224200 OK 791 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick-theme.min.css?ver=6.1.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash c89ef9f18478ac009310355ccbadf656
463013a052a78fef3a3954a0f507240dc2a36aae
10c10f97612ececf8df6159a0ddfe4c9c44a8c4a1162774796f531b582ccfa90
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick-theme.min.css?ver=6.1.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 22:50:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 791
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/css/exad-pro-styles.min.css?ver=6.1.1
23.105.186.224200 OK 24 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/css/exad-pro-styles.min.css?ver=6.1.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (55586)
Hash 3c53721ac0641337b5a07f9b1abf3d5b
e79ec369511db066368f20506bbca4dfbeffdf70
2afebff592ce843841ea9abd624bc24eb507d381ee2f32f11647a526dc0f7682
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/exclusive-addons-elementor-pro/assets/css/exad-pro-styles.min.css?ver=6.1.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 03:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 24127
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 13c265f2c258e0bcea2ac1149188d332
3d42f91eec1fae7ff5e243d2a35afdd5a6d58db0
26666f4ea8fe16648ef9593216b725f692a1cb913763b186cd19d59e7875a930
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4735
Cache-Control: max-age=167506
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:25 GMT
Etag: "6381b9bc-117"
Expires: Mon, 28 Nov 2022 08:20:11 GMT
Last-Modified: Sat, 26 Nov 2022 07:01:16 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ajtel.net/W/wp-content/uploads/elementor/css/global.css?ver=1669072020
23.105.186.224200 OK 18 kB URL HTTP/1.1 ajtel.net/W/wp-content/uploads/elementor/css/global.css?ver=1669072020
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (43223)
Hash dccd2eadc400a57ae146e9a0dba8fb0b
a582c372f296f89837846805941885138c33cb24
5a4ebc92cccd972d404976f1f2626fdf878a613553a4bce0ab78ae250f716470
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/uploads/elementor/css/global.css?ver=1669072020 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:07:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18280
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/imagehover.css?ver=6.1.1
23.105.186.224200 OK 9.5 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/imagehover.css?ver=6.1.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 7b02b4e7f87570b5132f66f484a27230
57480f704a3da1d18e6300e9504955ef389f2878
fe6424312ce2aafd22f8efa6ecb9ddf0fa2454651709b9696fa65fe3c4f46c34
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/imagehover.css?ver=6.1.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 22:50:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9476
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/css/exad-styles.min.css?ver=6.1.1
23.105.186.224200 OK 15 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/css/exad-styles.min.css?ver=6.1.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2188835c6c3456a873f2d5f58c6de063
27e3a2504df999d02da20db6c72d9e380dc0baef
212da03b23f3225eb5508eff9bce24ead4e6946ae36f59a54c2823368a56d9d9
GET /W/wp-content/plugins/exclusive-addons-for-elementor/assets/css/exad-styles.min.css?ver=6.1.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 22:50:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15386
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/weglot/dist/css/front-css.css?ver=3.8.3
23.105.186.224200 OK 6.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/weglot/dist/css/front-css.css?ver=3.8.3
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (52421)
Hash b9050dd0b6839fe4d4cea0000659b091
162abb4da56b7071912ece22e3e1884cdb279b1c
8e484d0de7747bf6f0db58f9d7cf66d72292dbb11b954ea3dee4b45e054da44c
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/weglot/dist/css/front-css.css?ver=3.8.3 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 22:50:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6220
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/weglot/app/styles/new-flags.css?ver=3.8.3
23.105.186.224200 OK 4.4 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/weglot/app/styles/new-flags.css?ver=3.8.3
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 30bc0b73ef2762f03cc43bf84ad946da
3b0ed8dd82f1c72274f91ed169103d59effe37cb
d21b62c19e1d346d00b28324eda804827b96d0dc3ec9d4cc2236f1511e933d6c
GET /W/wp-content/plugins/weglot/app/styles/new-flags.css?ver=3.8.3 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 22:50:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4425
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
23.105.186.224200 OK 1.9 kB URL HTTP/1.1 ajtel.net/W/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (6051), with no line terminators
Hash 3dc64cb652c146c9608b455eb842f939
63b4222d932fa460ec25cac623f062ba3af1286f
ca09e90951d613e07262f3eeefa87c5937256379a7044d5dad3b1af2aa13af1c
GET /W/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Mon, 11 Jul 2022 20:06:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1940
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
23.105.186.224200 OK 2.7 kB URL HTTP/1.1 ajtel.net/W/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (15672), with no line terminators
Hash 0c550b974069f0fe5aca341892b3cfee
f59d2d02e543c364258a33d5ffc887efc56c4859
c2251cfce5725f09a1ae75e584fff88dec0df13f06fb169559a884a82efea951
GET /W/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Mon, 11 Jul 2022 20:06:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2664
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/uploads/elementor/css/post-59.css?ver=1669072021
23.105.186.224200 OK 1.7 kB URL HTTP/1.1 ajtel.net/W/wp-content/uploads/elementor/css/post-59.css?ver=1669072021
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (7510)
Hash f123178ad45f988880c343be3c190536
6ec72a196f772a11ce8b9fa049271b5ec9bd9d26
b2f865bf794241ecf6c8a86e13ebb7bb3704b0ff9363a09a6f03a2b944a8ef43
GET /W/wp-content/uploads/elementor/css/post-59.css?ver=1669072021 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:07:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1700
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/uploads/elementor/css/post-63.css?ver=1669072021
23.105.186.224200 OK 1.0 kB URL HTTP/1.1 ajtel.net/W/wp-content/uploads/elementor/css/post-63.css?ver=1669072021
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (7823), with no line terminators
Hash b2ab0ea2a6482c96ac1f3a14cb830c5b
5e2e5cc7ba0d82cc027274fc203a78e3f239ddbe
2d6134d1cfd3b3e17385eaa0fa0aa4b2d11fb94478aac243698a4531c908fae1
GET /W/wp-content/uploads/elementor/css/post-63.css?ver=1669072021 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:07:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1023
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/newsletter/style.css?ver=7.5.6
23.105.186.224200 OK 1.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/newsletter/style.css?ver=7.5.6
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash efdd902a4a2785e263af1bc9789087a3
9c43991cc8be7245d2220bf749521bfb2eef7b4b
65518f98fd22862efde1673e5865a2755a2bb6cd2e2ac259706dbd1b8ae3ee17
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/newsletter/style.css?ver=7.5.6 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Thu, 10 Nov 2022 10:50:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1198
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/icomoon_brands.css?ver=1.0.5
23.105.186.224200 OK 13 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/icomoon_brands.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 2750e0c1d68bf0d972d391fad56fa258
aefe689378a142539c308310ebc1a950c9b37a5a
ec53f5007184a2d28d434b76563cd5f9142d2d8f2b3483aa1685102e74593b94
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/icomoon_brands.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12682
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/devicons.min.css?ver=1.0.5
23.105.186.224200 OK 1.9 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/devicons.min.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (8571)
Hash 1620aa1aeb30b1b3219e876a013e78ee
811f24aa5020b177b87c25ca2f61f6ba7f2e532d
d56b944711ab9e5fd0d147331023073375148a31f3455be5bdfd1293221c2ddf
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/devicons.min.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1936
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/elegant.css?ver=1.0.5
23.105.186.224200 OK 4.0 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/elegant.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (21759), with no line terminators
Hash 1f806a738adb1115a5d3eb1e8c983bb8
5200a88b989defe3255d048d89e84144308fd970
9f5a0ffd3d1aec4bbdab38dbc21ba4d6ecf8a77f1c1388a849d07d6ce59badec
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/elegant.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3999
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/elusive-icons.min.css?ver=1.0.5
23.105.186.224200 OK 3.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/elusive-icons.min.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (13926)
Hash 193366f489d8fa68d6a39017b706c4a7
a5dd955f27b940ddea859e3efd192255bb26e302
cec6a1502af22f7ea13b4f7173eabf3de01a6bbebf9bbf6f30f584661435d035
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/elusive-icons.min.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3152
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/icofont.min.css?ver=1.0.5
23.105.186.224200 OK 17 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/icofont.min.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65364)
Hash 28643ec46bf19430874f8585e524c297
2725c5783e2dbccfd502030dfabec72ddae9c87c
3670fff0abaf8f04a95ba39fb4bd73f9a327f78de211f8ebb5fc1ab5dac23861
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/icofont.min.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 16856
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/icomoon.css?ver=1.0.5
23.105.186.224200 OK 4.1 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/icomoon.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 528587d83b16988da3408855be3b5b8d
afa417d488bb58b178d37f80b07515726f8fe50d
dcf1ade7324e6f219db13c60e0e76f7b7fed1bac777e9327a9b6f35e52e324f9
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/icomoon.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4051
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/iconic.css?ver=1.0.5
23.105.186.224200 OK 1.6 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/iconic.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 815f55986593a02b9354f4bce124ce9b
1ca2e43b8c4658b842b1d9f9d7391e78afb75054
7fa3437d1075676a426706c6f195a1adcd1b9e01e10a5a6f81ddf55d1e0bda53
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/iconic.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1611
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/ionicons.min.css?ver=1.0.5
23.105.186.224200 OK 8.0 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/ionicons.min.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type Unicode text, UTF-8 (with BOM) text, with very long lines (43361)
Hash 61e9b21a3b307aa630f9069af78841bb
bbbdf49b19beb721cd78a7da2e527cbde15a9c6e
9a6de4253fc98f57763dc0fa03efd773460a7966adae14e7ef6f8cfb4162e24b
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/ionicons.min.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8031
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/linearicons.css?ver=1.0.5
23.105.186.224200 OK 1.7 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/linearicons.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 42443ab704d661aa88cb69e472d7ebe4
ebae49056b2450a75be7caa54ea5edaa2605716f
f1fae84f110f69c4e3c5bc5741ccdc6da7e10a593ddadd4e86751861a30a87d8
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/linearicons.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1656
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/line-awesome.min.css?ver=1.0.5
23.105.186.224200 OK 16 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/line-awesome.min.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65536), with no line terminators
Hash b33a71d9d033eaf2ecbd87a61eaf232e
15c499814e70e04689bebf900ff25a95ff3ef405
5e20e5aab15104a24ffe5a82bf7c01b0d4257ffdf503c28f09f5a677c30e4b9c
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/line-awesome.min.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 16154
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/lineicons.css?ver=1.0.5
23.105.186.224200 OK 4.9 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/lineicons.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash cb1a418857af49a8c951ef267181d86f
f2d1c6f93084ebfed510dd8488de71d5000c4d73
d9ea315f20e6dc6c4d3b34fdb7ad87c92bc4144d82f547750d3b9c9429a92e7a
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/lineicons.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4868
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/open-iconic.css?ver=1.0.5
23.105.186.224200 OK 2.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/open-iconic.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type troff or preprocessor input, ASCII text
Hash 07f95a9a4bcc234deb36715b96881037
a393e935dd74480084b96a8ad41f87d15524b798
75dd76096befaf6ec2dcd9185900d8bc04aad9ccfa9ab3bd1f2470ec2329ae25
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/open-iconic.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2174
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/simple-line-icons.css?ver=1.0.5
23.105.186.224200 OK 2.7 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/simple-line-icons.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (360)
Hash 562175f43dd2d75c51d92ce43c695c41
1e71cb04d60c3107e09078034649e486571fafc6
5ba4c2e1ec096b98d7b5315a5c23ae497766467c06efc843d10616cbea723f2b
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/simple-line-icons.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2718
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/themify.css?ver=1.0.5
23.105.186.224200 OK 3.1 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/themify.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with CRLF line terminators
Hash 3c98c70d7d536eabdc5e5668d6d61673
b01a9fe85fae307a8573a62d58884a9a4fa0f932
3b0a056f77364d42381a939d59bf2841b89cc47048dd264e8b63542a8521e7eb
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/themify.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3059
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4
23.105.186.224200 OK 829 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (3432)
Hash ced8198d56ecbb539312dfad5e47d0ce
a9562a4832185c4919b9a5eb543515ee84528b60
ba645225151f3241f315c483981bf08908a258c9517bf4e7e0b2732fd155254e
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 24 Nov 2022 10:51:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 829
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
23.105.186.224200 OK 13 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (57726)
Hash 991d00cd7cb62d50a29295522d554f1f
e128a5238f141e9c4da1979716108d858340fe03
b8fcb61816168fc6a7ee01bb09fa4378398838dc6e4f49dc411872876355d113
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12582
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/materialdesignicons.min.css?ver=1.0.5
23.105.186.224200 OK 40 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/materialdesignicons.min.css?ver=1.0.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1c13974888b04609978ba00d6861f6f9
e86980ee488c614cf4d8b3acbc361ce00739d270
1d563a9838ae252a4de14e821cb64fee3d8e757c995c7bfae6d3a94011dc4e82
GET /W/wp-content/plugins/skyboot-custom-icons-for-elementor/assets/css/materialdesignicons.min.css?ver=1.0.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:22 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:42:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39896
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
23.105.186.224200 OK 309 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 309
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
23.105.186.224200 OK 308 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
GET /W/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 308
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 3fead833747597f4402b862e25ee679a
ae554d1c4829cf710a18826f5107d7ff0402f007
11214c69b7259b018c5c01eb2ca9bdc94a8f97f853948f4f18349f7387afe09d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4381
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:26 GMT
Last-Modified: Sat, 26 Nov 2022 08:35:25 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 3fead833747597f4402b862e25ee679a
ae554d1c4829cf710a18826f5107d7ff0402f007
11214c69b7259b018c5c01eb2ca9bdc94a8f97f853948f4f18349f7387afe09d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4381
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:26 GMT
Last-Modified: Sat, 26 Nov 2022 08:35:25 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/fonts/remix-icon/remixicon.min.css?ver=2.6.1
23.105.186.224200 OK 14 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/fonts/remix-icon/remixicon.min.css?ver=2.6.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1ac24f738edecd23b3a9c3469596d7be
de65d5cc34e6ca06e7d011dc7784da6c1d2c850b
f25c1aa8278892526f7f77afffff8750cbbeff97b34d6dcb4243d9ad6daa1a12
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/exclusive-addons-for-elementor/assets/fonts/remix-icon/remixicon.min.css?ver=2.6.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 22:50:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 13797
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/essential-blocks/assets/js/eb-blocks-localize.js?ver=3.8.2
23.105.186.224200 OK 0 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/essential-blocks/assets/js/eb-blocks-localize.js?ver=3.8.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/essential-blocks/assets/js/eb-blocks-localize.js?ver=3.8.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 24 Nov 2022 22:50:15 GMT
Accept-Ranges: bytes
Content-Length: 0
Vary: User-Agent
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 3fead833747597f4402b862e25ee679a
ae554d1c4829cf710a18826f5107d7ff0402f007
11214c69b7259b018c5c01eb2ca9bdc94a8f97f853948f4f18349f7387afe09d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4381
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:26 GMT
Last-Modified: Sat, 26 Nov 2022 08:35:25 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 13c265f2c258e0bcea2ac1149188d332
3d42f91eec1fae7ff5e243d2a35afdd5a6d58db0
26666f4ea8fe16648ef9593216b725f692a1cb913763b186cd19d59e7875a930
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1838
Cache-Control: max-age=164608
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:26 GMT
Etag: "6381b9bc-117"
Expires: Mon, 28 Nov 2022 07:31:54 GMT
Last-Modified: Sat, 26 Nov 2022 07:01:16 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajtel.net/W/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
23.105.186.224200 OK 31 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
GET /W/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 10:52:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30995
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.2.7
23.105.186.224200 OK 4.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.2.7
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (14869)
Hash 1fcdd9935a66511c3b8069495af248e3
b0e375ac95b547b3bb6ce74cd1bcc505ffc2281d
4a741209fc122872cb5ae018a5870d70848a616fa98eb4289ad78cec986ec282
GET /W/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.2.7 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4205
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
23.105.186.224200 OK 4.2 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
GET /W/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 19 Nov 2020 21:01:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/embedpress/assets/js/pdfobject.min.js?ver=3.6.2
23.105.186.224200 OK 4.4 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/embedpress/assets/js/pdfobject.min.js?ver=3.6.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash c64552b8b87c7517f0eceb568632c10c
521f1db81e94450aef7dc6eac2fe43cf3ce1e1e7
fb0260fda118279b0dec1177d1e6aeed0bcca4fd17fad272c9c6084ff5a54788
GET /W/wp-content/plugins/embedpress/assets/js/pdfobject.min.js?ver=3.6.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Tue, 22 Nov 2022 22:51:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4387
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/weglot/dist/front-js.js?ver=3.8.3
23.105.186.224200 OK 1.7 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/weglot/dist/front-js.js?ver=3.8.3
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (4224), with no line terminators
Hash 21651b579620ceaea7b73785efebd755
4290a87e00c2523e5d653a2a7327ae3c7eb865a5
a9a4fabc0e838f413ece5d960b19d7b2db32264200e56e122e328839820c1729
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/weglot/dist/front-js.js?ver=3.8.3 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 22:50:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1650
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/icons/classyea-icon.css?ver=1.2.7
23.105.186.224200 OK 616 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/icons/classyea-icon.css?ver=1.2.7
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash a696128b4b922c93fa280eb11d901c03
fb990b3ae7450c9c4ad2af854462a8a0aa9c739a
9965dc3c107b96e628baf90c4efb061202f704e229f9ccab46b9c46de2997659
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/icons/classyea-icon.css?ver=1.2.7 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:33:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 616
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.9
23.105.186.224200 OK 47 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.9
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (42889)
Hash 998fc25b9002de515ac109202536e55b
46da4570709dbf9d1b1f6ce46a6c8e31ce39eac4
2335773a511d2ca3c9cc6600905850d18f87f6c80a1d528ec627a24deb2cdea7
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.9 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2021 11:09:43 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 46969
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/front/css/classiy-globle.css?ver=1.2.7
23.105.186.224200 OK 635 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/front/css/classiy-globle.css?ver=1.2.7
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash e5e7b541fa280c63b38613cdf6df587d
7f84fb053a23ebb8ddbe0049419bae793b5cbd0b
2e5f6c1ffe2acc259a4092429c9677050dabb99f08daa7ad188809ded1d30ff6
GET /W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/front/css/classiy-globle.css?ver=1.2.7 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:33:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 635
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.9
23.105.186.224200 OK 86 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.9
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (64270)
Hash 7cbee383c173dd9864c4c74a07f2a5e2
d12e008b33e4b5ee07d9a77771fbf2ff3b4fe7e6
5d1240d65af0126442f497e17f50b3e40a4d491c43139b00519a5d85cd740329
GET /W/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.9 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2021 11:43:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0
23.105.186.224200 OK 844 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (3264)
Hash 822a89612b23b9a53fd40a8393e5d394
a9c863b977bf8b18e10f4f09c180bfb4cd5be099
f2de00c5ebf8246b2fdbe9654b58f43e173402a2898f6822e4d00d5994067997
GET /W/wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 844
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
23.105.186.224200 OK 2.6 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (10019)
Hash 0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2592
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css
ajtel.net/W/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.2
23.105.186.224200 OK 11 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (36548)
Hash 24a3c154c4525d9ee113368f9d371cae
e1d30defe9efd5dd186b93a53e649ece31f31d44
624e56b58253e82aad5449eeb077e0f9938c23544d38dc5c7c48f19ea5c02773
Analyzer Verdict Alert fortinet Malware
GET /W/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 10:52:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10894
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
23.105.186.224200 OK 7.1 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash fc922a895f5f92269c928556b67564f6
8759e1f16a826dd6dd73f4161a65a79a049c4d6f
d7445c88608e9da487d81ef5167866c42ff1099b5f48efda4b5f5ac41aa7d9b8
Analyzer Verdict Alert fortinet Malware
GET /W/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 10:52:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7097
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/booked/assets/js/spin.min.js?ver=2.0.1
23.105.186.224200 OK 2.1 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/booked/assets/js/spin.min.js?ver=2.0.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (4247)
Hash 7a8f5329037448b102ad9463ce18fa8b
8087d37ccf51752bd5110f5a22eb8c4428abaf14
4db14ace12daa6176be8bf973eed4d71ab809b9c5cea8519d9813707323c472b
GET /W/wp-content/plugins/booked/assets/js/spin.min.js?ver=2.0.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 01:10:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2082
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/booked/assets/js/spin.jquery.js?ver=2.0.1
23.105.186.224200 OK 783 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/booked/assets/js/spin.jquery.js?ver=2.0.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash e1ecc9d3f6093637340fefdadc785e5c
2d8d87cd712f60ce1ce39735ff073dce7e4af7ff
8a16ed1650873b4789d53ec705c13d4d0e10762f96817fff4f1377a76c952505
GET /W/wp-content/plugins/booked/assets/js/spin.jquery.js?ver=2.0.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 01:10:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 783
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/booked/assets/js/tooltipster/js/jquery.tooltipster.min.js?ver=3.3.0
23.105.186.224200 OK 4.9 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/booked/assets/js/tooltipster/js/jquery.tooltipster.min.js?ver=3.3.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (17523), with no line terminators
Hash 0b3e3a09ecb77ded62bd2681f3a08520
21243dc3e52a08cedbf9d601978e459e9775ba8f
0b38f8169d820e7be00556c9667937fd3de5b3c5280c48840cfd73e43c27599e
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/booked/assets/js/tooltipster/js/jquery.tooltipster.min.js?ver=3.3.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 01:10:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4850
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/front/js/progress-bar/progressbar.js?ver=1.2.7
23.105.186.224200 OK 3.9 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/front/js/progress-bar/progressbar.js?ver=1.2.7
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 37957259bff2fae67488177984e3b807
ba575d862814f6438471ee5d80c1659f55f862d4
af52cb8ff57a0f49376437d8bd869e42b8f71780bc9404ac5e9afa7b5c7896f0
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/front/js/progress-bar/progressbar.js?ver=1.2.7 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:33:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3897
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/booked/assets/js/functions.js?ver=2.4
23.105.186.224200 OK 9.1 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/booked/assets/js/functions.js?ver=2.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 5d4eb09596d5a9922841ddac1fc86bfc
d4019149fa70971d146562477c40f81f351124a0
080f12c831f515da64c6409f1cd497440557249439ff6a53eb8c23a77404d0d6
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/booked/assets/js/functions.js?ver=2.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 01:10:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9095
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 31fecd944b643357899b7098a9deb00f
8dd69939e328fa0ca5279f0df5dd07050a739f1b
aed4e3cac29dec21d618aa34d0a8c5702af803221426d54a401ab88e42530ff9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6593
Cache-Control: max-age=113206
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:26 GMT
Etag: "6380de5f-117"
Expires: Sun, 27 Nov 2022 17:15:12 GMT
Last-Modified: Fri, 25 Nov 2022 15:25:19 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ajtel.net/W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/front/js/progress-bar/progressbar-frontend.js?ver=1.2.7
23.105.186.224200 OK 1.1 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/front/js/progress-bar/progressbar-frontend.js?ver=1.2.7
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 6c77e40640ad5b60db2e40559919ce9a
4a2592d80f4fc8fc4e79331c26e56c5f6ae648d5
2a0b421983340fc21758bd9ca1e67e1254d47aa3a573a0bd49f00e907512a391
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/classy-addons-for-elementor/assets/elementor/front/js/progress-bar/progressbar-frontend.js?ver=1.2.7 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sat, 29 Oct 2022 22:33:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1095
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/vendor/parallax.min.js?ver=1.5.0
23.105.186.224200 OK 7.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/vendor/parallax.min.js?ver=1.5.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (17272)
Hash 0c360792ac3be27aa5ff9dda218f5003
4bb167c306561c6f43b3dca05fc77ac5d92ce9f6
524b03923eeeb2ecedcd3f2dabba7ce4b18669d48b99361cf58a4438ca83cab7
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/vendor/parallax.min.js?ver=1.5.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 03:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7243
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/vendor/granim.min.js?ver=1.5.0
23.105.186.224200 OK 7.7 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/vendor/granim.min.js?ver=1.5.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (728)
Hash 3b9f55931c5f79dd51d464e006ccb8e6
efc03b79f4e11bed600e94282930cc98c1fbce7b
50f22deff71ec7df69f2559750881d1ae305ec0bfdc0b31c5d32e02755801e1c
GET /W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/vendor/granim.min.js?ver=1.5.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 03:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7694
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 407ca8387c360d434a53812c03688310
90e74fa4928adcf8ae410f2eea7956b6ae7f687b
5690f667c20ba6c6daf71668a7c02c6d50383b585521e6f3e7a0ddcf895358d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4111
Cache-Control: max-age=160742
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:26 GMT
Etag: "6381a1c1-1d7"
Expires: Mon, 28 Nov 2022 06:27:28 GMT
Last-Modified: Sat, 26 Nov 2022 05:18:57 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/vendor/particles.min.js?ver=1.5.0
23.105.186.224200 OK 6.0 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/vendor/particles.min.js?ver=1.5.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (23002)
Hash d4dc99fdef03d4fbc0a708e5a16b1173
2b6bd758c5066d36a4e26ca4ef26fd421c06ce99
915b484818d7c5c32f118948d8d4bdcc5739d2608a70778b11b1a27c15de2d86
GET /W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/vendor/particles.min.js?ver=1.5.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 03:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5959
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/js/jquery.sticky-sidebar.js?ver=2.6.1
23.105.186.224200 OK 6.0 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/js/jquery.sticky-sidebar.js?ver=2.6.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash e3818075a36c18f1043457cc3f1feccb
983e7fef577ff27cacb292da8612bd8165e42417
cbf576af694f94d86cc73cabc08ea3f1029f56ea208b673af841b824d5e4e810
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/js/jquery.sticky-sidebar.js?ver=2.6.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 22:50:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5982
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/embedpress/assets/js/front.js?ver=3.6.2
23.105.186.224200 OK 2.8 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/embedpress/assets/js/front.js?ver=3.6.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 4feced78a33033e44d932785ef49e66c
88aa28fda4b38a797ec0034fdcbac2a3bc73d7a4
650a92ee07b931e706301a98cf575676422bcfb27175bb5d074f2dcc2bd0a786
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/embedpress/assets/js/front.js?ver=3.6.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Tue, 22 Nov 2022 22:51:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2752
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajtel.net/W/wp-content/plugins/premium-blocks-for-gutenberg/assets/js/section.js?ver=2.0.2
23.105.186.224200 OK 800 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/premium-blocks-for-gutenberg/assets/js/section.js?ver=2.0.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with CRLF line terminators
Hash 15e1a1f9981cd7ad0adf84fb9b42d563
425c60eaf8ea28c1fdb5a8ddf3ef42b380036add
6de28d5e893d6483f17d4c31b6afc33c5d03c3210d2eb7038c4dca48d8e91b68
GET /W/wp-content/plugins/premium-blocks-for-gutenberg/assets/js/section.js?ver=2.0.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 22:51:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 800
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/js/cf7mls.js?ver=2.5.4
23.105.186.224200 OK 6.5 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/js/cf7mls.js?ver=2.5.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with CRLF line terminators
Hash a3ce460a2053b528ce6f642396c1d539
4bea29b51022c64fee01a0c6e6477ad0b810cadc
682334c4f479bb8cd5e3c7ba4867ee3df2bd69d21a1a98a165ba422a1454a639
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/contact-form-7-multi-step/assets/frontend/js/cf7mls.js?ver=2.5.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2021 10:45:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6531
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ajtel.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 148089
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajtel.net/W/wp-content/plugins/essential-blocks/assets/js/eb-animation-load.js?ver=3.8.2
23.105.186.224200 OK 785 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/essential-blocks/assets/js/eb-animation-load.js?ver=3.8.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 136ac59743e5ebb95843688051712ab0
d94fcb4a44cc1f2e8ad4bc1beeb10c9c242cc7fe
429225589ac84dabc39406a98889e37523fbecf57ed7e3427c829b1149c787fd
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/essential-blocks/assets/js/eb-animation-load.js?ver=3.8.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 24 Nov 2022 22:50:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 785
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.195200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ajtel.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 22:19:13 GMT
expires: Tue, 21 Nov 2023 22:19:13 GMT
cache-control: public, max-age=31536000
age: 386954
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajtel.net/W/wp-content/plugins/booked/includes/add-ons/frontend-agents/js/functions.js?ver=2.4
23.105.186.224200 OK 1.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/booked/includes/add-ons/frontend-agents/js/functions.js?ver=2.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 197bfbdc3c9fdbcc9447648764e90ad1
a4033ccb0a5da98d83b98dc18e5812cf8daa590c
df7726c70870f5b427cb26ab3da148362daf066aa93da626f3d9dbf6b58b15e8
GET /W/wp-content/plugins/booked/includes/add-ons/frontend-agents/js/functions.js?ver=2.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 01:10:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1199
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/varelaround/v19/w8gdH283Tvk__Lua32TysjIfp8uP.woff2
216.58.207.195200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/varelaround/v19/w8gdH283Tvk__Lua32TysjIfp8uP.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 20636, version 1.0\012- data
Hash ba24c7ff5ccbf9671acfdf235b22cfa5
62d7d22c5b0e55a3bdd80eb635238249f61ed12a
bcf86d95e543e9748b28362562cdbce0c7be01b48dd54191912e15f820daf4aa
GET /s/varelaround/v19/w8gdH283Tvk__Lua32TysjIfp8uP.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ajtel.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20636
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:31:29 GMT
expires: Thu, 23 Nov 2023 08:31:29 GMT
cache-control: public, max-age=31536000
age: 263818
last-modified: Wed, 27 Apr 2022 15:30:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/js/exad-scripts.min.js?ver=2.6.1
23.105.186.224200 OK 6.1 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/js/exad-scripts.min.js?ver=2.6.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (26472), with no line terminators
Hash 0efea452c1fb81097ba6cae25a206cc8
55141a1f12643033820e282e223844053be780ad
5689d4bafd030845a3c2ed4783db246a73807c85b68aac4acc86e781e3785b53
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/exclusive-addons-for-elementor/assets/js/exad-scripts.min.js?ver=2.6.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 22:50:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6116
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/quickview-content.js?ver=1.5.0
23.105.186.224200 OK 653 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/quickview-content.js?ver=1.5.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash 7b4726dad86c95aaf5cdc33720140883
4f16f40c7351d8a8a8b74f87afd445597ef6a17b
79e82d2ea27189da145076958fcbde11c87637383b0579c452c174359daccd16
GET /W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/quickview-content.js?ver=1.5.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 03:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 653
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/exad-pro-scripts.min.js?ver=1.5.0
23.105.186.224200 OK 11 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/exad-pro-scripts.min.js?ver=1.5.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type HTML document, ASCII text, with very long lines (54555), with no line terminators
Hash c872fb7c4da9c02087d58a0f39b92601
2f27e5aed093bd5c0d94b692e37332bd166a99f0
92c201c4bfa9546bb41871912728f68bdf56c258553c49660c633ab91c02b135
GET /W/wp-content/plugins/exclusive-addons-elementor-pro/assets/js/exad-pro-scripts.min.js?ver=1.5.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 03:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11268
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/custom-facebook-feed/assets/js/cff-scripts.js?ver=4.1.5
23.105.186.224200 OK 16 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/custom-facebook-feed/assets/js/cff-scripts.js?ver=4.1.5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type Unicode text, UTF-8 text, with very long lines (4245), with CRLF line terminators
Hash 0ad1fedd5cbc04a7dfa69ef16258507f
d31871f20b09e4824527fc3de6f2325ebcb4830e
fb7eddf281ffeddc2dab4c77c79b703a89e65ce3998cd9882094f1309828d89b
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/custom-facebook-feed/assets/js/cff-scripts.js?ver=4.1.5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2022 21:14:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15959
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.4
23.105.186.224200 OK 2.9 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (8185), with no line terminators
Hash 7fe57b37f7abcfed2aa8e8bb27e51601
998e2bca6936b188c447947e308af8c9aad592cc
e3aeb92366b803e8557251939bfc540fb3af1f7d2ee16d691701720b7f3a1983
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Thu, 24 Nov 2022 10:51:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2909
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
23.105.186.224200 OK 7.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (25115)
Hash de752486ae6f3549ee513c4f7bd89b1c
7e415888c930d6952efce6ae601c37427ac2345e
d74a2945742950cd22705aa87f266a7eccc3a7949861da7e04cab475765206d1
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:06:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7157
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 407ca8387c360d434a53812c03688310
90e74fa4928adcf8ae410f2eea7956b6ae7f687b
5690f667c20ba6c6daf71668a7c02c6d50383b585521e6f3e7a0ddcf895358d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4112
Cache-Control: max-age=160742
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:27 GMT
Etag: "6381a1c1-1d7"
Expires: Mon, 28 Nov 2022 06:27:29 GMT
Last-Modified: Sat, 26 Nov 2022 05:18:57 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ajtel.net/W/wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0
23.105.186.224200 OK 4.6 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (15310)
Hash cb97a1bb1fb2f5c1ed82c6d224b7571f
5c1d84e20bec1f2e284df081fdc3441c68b7e5e2
ed7dedfbd4d5c99a553fd5d68931bbfa52fca1bfac227d3f8d6e94d16473f5e7
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4609
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2
23.105.186.224200 OK 2.4 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (5191)
Hash 24fb2d53fc158239f696d1ed4f762407
b18427a71daae6c09848e3818493babe6fd972e4
7d70218d102305199ebc15e16c334c8cbcbfb50c8817def6672593d981be8dbc
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:06:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2384
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-includes/js/imagesloaded.min.js?ver=4.1.4
23.105.186.224200 OK 1.8 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Malware
GET /W/wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 14 Jun 2020 05:23:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1834
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
23.105.186.224200 OK 2.2 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (4918)
Hash 5623a2e2bcaeb031c1a782030f1b14f9
c46b7389cb2839e47558c2d417d89169048b8031
cbe16e1c67c55ba8e9fc2363728b933f3ef2f1af411a1febbbe565e6363bfd5d
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2194
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
23.105.186.224200 OK 11 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type Unicode text, UTF-8 text, with very long lines (32907)
Hash f2cf4b8cf6fd44b62dc73e5e480fc684
53cecab8767410c3f2acdeef147e62a5733db1d2
5c31c8633b4099e2e0f8aec7f4c1f6fa84539a2043545296200bc8d47778a4db
GET /W/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10752
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/qaVSlhEOkZo.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 4.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/qaVSlhEOkZo.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash 2f266660dbeeb0b72d6c6f5c5fe0e1e8
b4469c6d8ec6f402f782363986e3261504123e0a
470700ca5d96a05b73896d7666520f3c950570bfd4668cc4b47fd5d0e8e6c517
GET /rsrc.php/v3/yP/l/0,cross/qaVSlhEOkZo.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 25 Nov 2023 17:51:29 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: LyZmYNvusLctbG9cX+Dh6A==
x-fb-debug: wOhciFEqU8/o8gE0as3QwgsmvuJpbISxjDnRtPBNUGAW6L/kz/o1x8qFpbXCZrA6/ZKOobDQW4qD80g7+nQnog==
content-length: 4377
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 09:48:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 15 Nov 2023 02:06:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: I/O4m6DwKidRohClNeExXv562wGzq8r+kdmkQ1jobwoPlsNFi0Yt0OvnZBjRb2KPEYSXWwX3xhdvgshSs7pAww==
priority: u=3,i
content-length: 1657
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 09:48:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5542)
Hash 0765d76d746716156d53d36ee6f80836
17e1546f87cc6417615caa10dcbbcb699c59471a
f1e6af63ae9ff0385126b72a492b0d34709514dd4c00074a1be28272c253d4f8
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 15 Nov 2023 02:03:07 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: 0xPHDYvZge8swk7JhsZ5ELIEYcud4qPBQV2E2zQxSjSHT+wOY2wY+EXO4Me6uhdgl3HPef3XHIK9yshvgmDJ/Q==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 09:48:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (8741)
Hash dfb29285817fca7b068ba0ec98aa2392
78cd49585da28a245a096781c8e0fada59cf2b72
2c4a3a46d7dfaf97bbc16a2b93470d1b3382c0da3f44dca0c987a3384cee43d3
GET /rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:54:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 37KShYF/ynsGi6DsmKojkg==
x-fb-debug: 1OJX/K81m7XImTplLGw/7ANit8XayK5qe73Ffg7JAY5pCZTbd+j9zpsVmjKxIE8dfQCm3VZyVLLkqeUvbScSuA==
content-length: 16262
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 09:48:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (42048)
Hash 3051900d03a657ddbbc9afa8ac11cdbd
557f26734897e137a6678f6d2a81672fc6a34ad2
038035ce01be57324c7e251c8834229b4910f27e3a042912fd7276947e5750df
GET /rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:19:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: MFGQDQOmV927ya+orBHNvQ==
x-fb-debug: /0Pz55NIiUn/cvYU+yfhqdIUstVvGBjhB3o6xBCg6YLbu5z3E4bj/phElq/tOEXBC1yT2SO31t4LXKWfL41W7A==
content-length: 23455
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 09:48:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ajtel.net/W/wp-content/plugins/elementor-pro/assets/lib/lottie/lottie.min.js?ver=5.6.6
23.105.186.224200 OK 64 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor-pro/assets/lib/lottie/lottie.min.js?ver=5.6.6
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65125)
Hash 528fd2a3aa7d364ee69b1ed7dcd9f4d8
d97028298019aa584d7b6615d69f07efc59722af
8e2440ee4a387e5a4e839a9474b661977fafcb5c90d96f59ca3a71c97d766f6c
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor-pro/assets/lib/lottie/lottie.min.js?ver=5.6.6 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:23 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:06:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
static.xx.fbcdn.net/rsrc.php/v3/yk/l/0,cross/lkNcWOjl-U9.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 3.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yk/l/0,cross/lkNcWOjl-U9.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (3040)
Hash b27f6cab20a6eda1d9b3030c9a09660d
3169ce97a78df1ed950dc27623c191485d3107ee
2b3945a951059474536dcbb24070db0e476148aa79db35e2431f49b5b93231da
GET /rsrc.php/v3/yk/l/0,cross/lkNcWOjl-U9.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 25 Nov 2023 17:51:29 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: sn9sqyCm7aHZswMMmglmDQ==
x-fb-debug: 3wrVtekQ/y7wS/2reIF/EwjJOawLhsjiLIMJy7/ZtA2A0fE2/nfgpyG+o6iqKOHalByy7AI5gFrrVw4T9r7XmA==
priority: u=2
content-length: 3292
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 09:48:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ajtel.net/W/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
23.105.186.224200 OK 2.5 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
GET /W/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 22:51:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2457
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
23.105.186.224200 OK 6.5 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 287748e15cc4a588d0df39da369d9035
b02e10a775f9d6ab54d448acffbc9253e2d9bfb9
742f6e950eecbeaf0c308f5d3877e48d6d57d48b7f8bd458d81875feb4b58654
Analyzer Verdict Alert fortinet Malware
GET /W/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 10:52:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6532
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
23.105.186.224200 OK 1.7 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (4875)
Hash 320b86bb1a9ce650a5e3553b2bb1c430
c56e8668b398641ed5cdcfbd8a8eba7d631cdb9c
c9ebbb8d122c6be3880d18172abfe308bb07db900689484fa765a73b8b20b3ec
GET /W/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 22:51:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1661
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
23.105.186.224200 OK 3.9 kB URL HTTP/1.1 ajtel.net/W/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Hash eb22973e4f9791a1b52550f254a1022e
cfa38e2369070741641968207c1dbb8ccd0c9221
0dbbf082b664afe4556aee3cc7c3e173b1cb9ac665e127ddb0b8db2a60237d01
Analyzer Verdict Alert fortinet Malware
GET /W/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 10:52:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3866
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 18:18:38 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: vKrIT7bDcuELxUQABfykTxFSmykRoUCEVhYV4TgDJd5oiZgsEJBZyhiv20JBlkWsTGEVyts+Yz2c1cL+WGyqLQ==
priority: u=2
content-length: 830
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 09:48:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ajtel.net/W/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2
23.105.186.224200 OK 5.7 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (21520)
Hash 0d55c05766ce3640b25675105252e77c
248dca3673c885c4e18a3d9c270f8622e42b0027
659ed0407e67edb7f6ed2e996bfa5e9570fc6feb87f2391520eb52ab62469d6c
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:06:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5743
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript
static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18622)
Hash 151e87d38f4f425e44d9c851c9aecf05
762111e5095f5354be95b98ad476f6e7161ce6b1
f236f289f38c8081b496e0537ed3b2c66822e7a743f5d9d4959f955c64b0b2b0
GET /rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 16:37:58 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FR6H049PQl5E2chRya7PBQ==
x-fb-debug: 578mKTEkjWrVEys7x3EPigYBAculQ9+xqvoP9TrG2OhBAdzzHHNJrM2CslcbWlUPbOvnx/9TeqgH2B9JTmDk2g==
content-length: 91088
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 09:48:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ajtel.net/W/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
23.105.186.224200 OK 36 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65280)
Hash f2f239cb6e82311cd197aa5888632811
e2376a981fa3bf8e7e36e86b979f3a3ea6443d29
c4ceac2088d1b38f5263c50bdfb2e54ed643186248b3a81c5850214b55336e4d
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 35491
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
23.105.186.224200 OK 1.1 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (2620), with no line terminators
Hash 366a9c35bbef9fea7021f6b1b56cf8d0
18feab78c61c6e8261db364d6681a9633041e837
b1108a264198109bc4e692e30e2dc7c148625fa9a3dce15477fc7618669c7a6f
GET /W/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1139
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
23.105.186.224200 OK 3.4 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (10544)
Hash 88f71137b2a89a53df46cdb4deeb4e3d
426e12f0e8712db20afd2c54e77e1384074f3181
591a8b7a859de8af878c56e1ec72384596285f768387e9958f0a0afe53d89428
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3446
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
23.105.186.224200 OK 12 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (40474)
Hash cdc93088cc6a33163d5501beeb7e2f34
7bff6d832259f16631f6e3a86c2aded975ffe51f
d1546274f50a7f5170799dfc32fa05297fbeb7d63205fd3f38679de0b77c03da
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12045
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 31fecd944b643357899b7098a9deb00f
8dd69939e328fa0ca5279f0df5dd07050a739f1b
aed4e3cac29dec21d618aa34d0a8c5702af803221426d54a401ab88e42530ff9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6594
Cache-Control: max-age=113206
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 09:48:27 GMT
Etag: "6380de5f-117"
Expires: Sun, 27 Nov 2022 17:15:13 GMT
Last-Modified: Fri, 25 Nov 2022 15:25:19 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ajtel.net/W/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1
23.105.186.224200 OK 13 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (43101)
Hash ba8651f8b75f8f4904bfb98feb3a05f9
2b5717c8fee860602ea848af927362ae6d337dff
16f68830fee46a748674c3985f70fda02147d3c79b2c3767909117725cbb9b81
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 13120
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2
23.105.186.224200 OK 1.5 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (3720)
Hash 4a5d77de6f4f2f0fde1219494b385a60
03991e287a03dd8f02585ce4022ab368fd5f708d
5c9c0f4aa6a1f445954aeb2a85ec6bd7f235791cf81cb8c2f11e8cc0856090b5
GET /W/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:06:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1542
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: application/javascript
ajtel.net/W/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.8.2
23.105.186.224200 OK 33 kB URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.8.2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with very long lines (65493)
Hash 56c58aa46f0ba00e1dd0c63246dd088a
b2f01b98842a758a4188b87a557db3b442688e07
355bd3e05e5c94d3bfd9f16bf62e39239c50bdef73d0e2bf426f171d613252b8
GET /W/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.8.2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/W/en/
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 23:06:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 32745
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.1.1
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.1.1
IP 104.18.10.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 09:48:25 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/20/2022 02:30:56
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 7ac5940fedf45440127c4798515ec440
cdn-cache: HIT
cf-cache-status: HIT
age: 914606
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7701b555ed7bb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.5dias.com.py/uploads/reuni%C3%B3n.jpg
198.199.121.26200 OK 0 B URL HTTP/1.1 cdn.5dias.com.py/uploads/reuni%C3%B3n.jpg
IP 198.199.121.26:0
ASN #14061 DIGITALOCEAN-ASN
GET /uploads/reuni%C3%B3n.jpg HTTP/1.1
Host: cdn.5dias.com.py
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:26 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 23 Nov 2020 23:41:57 GMT
ETag: "6ba8e-5b4cebd6f1f09"
Accept-Ranges: bytes
Content-Length: 440974
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2FAJTEL%2F&tabs&width=340&height=130&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=1351314535202647
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2FAJTEL%2F&tabs&width=340&height=130&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=1351314535202647
IP 31.13.72.36:0
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2FAJTEL%2F&tabs&width=340&height=130&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=1351314535202647 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: NywxOnbkbFe72NvCBZu2e9RQ1mNug+2c2qY/woUEBbMxJCreSC/rmg0zCbGzqor1IzatBUQmXsJlpAcmtqmatg==
date: Sat, 26 Nov 2022 09:48:27 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
23.105.186.224200 OK 0 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Content-Length: 78196
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: font/woff2
ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/fonts/remix-icon/remixicon.woff2?t=1590207869815
23.105.186.224200 OK 0 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/fonts/remix-icon/remixicon.woff2?t=1590207869815
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
GET /W/wp-content/plugins/exclusive-addons-for-elementor/assets/fonts/remix-icon/remixicon.woff2?t=1590207869815 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ajtel.net/W/wp-content/plugins/exclusive-addons-for-elementor/assets/fonts/remix-icon/remixicon.min.css?ver=2.6.1
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Sun, 30 Oct 2022 22:50:41 GMT
Accept-Ranges: bytes
Content-Length: 125268
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: font/woff2
use.fontawesome.com/releases/v5.15.1/css/all.css?ver=6.1.1
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.15.1/css/all.css?ver=6.1.1
IP 172.64.133.15:0
GET /releases/v5.15.1/css/all.css?ver=6.1.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 09:48:25 GMT
content-type: text/css
x-amz-id-2: EpODvJptxbKtPC1F9B73Dnw/r9TTOVqYLw9y/dXSClaBpmBJJsuPa790LbtGfCKz16FM89WV2tc=
x-amz-request-id: JPZ326FZHFDTVGKR
last-modified: Wed, 30 Jun 2021 15:40:30 GMT
etag: W/"b227b1617a1763c8bc056772f05482b4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 913729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ACIIu%2BMHZ6cl3EGNKHN4%2FzfieU%2FkIbWzqYBwz5ass%2Bqg%2F%2F0mVee6EAvEk9sr2%2FDppUjyseCwBHTT8zUgkDT%2FnIWpuTwW1bnNTVXesHsIhIaYfvqXawHz7n4s7pqUv1eyE7I2dTx9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7701b553ab747714-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CVarela+Round%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CVarela+Round%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.10:0
GET /css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CVarela+Round%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ajtel.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 09:48:26 GMT
date: Sat, 26 Nov 2022 09:48:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v6.2.0/css/all.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v6.2.0/css/all.css
IP 172.64.133.15:0
GET /releases/v6.2.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ajtel.net
Connection: keep-alive
Referer: https://ajtel.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 09:48:26 GMT
content-type: text/css
x-amz-id-2: SW7w25pb862Uo9aILQIEvBN/aO0midwEWssFe4gE14Z/cdCbIK0eAXUGklEs3F/xsr7f1lvWWvM=
x-amz-request-id: A9F62EXYBWQQCBW0
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 30 Aug 2022 16:39:37 GMT
etag: W/"6cb5a85b30082e3d59d7e371e002ce8d"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fHGqA2MJ%2BCo8THKmvYBxbBcBnPFWaVN746ch7lzFEve%2BjBYUnYRSSniuvWGunCngBaO4njuUzWnTo4H3AAwYTiUPd08PA67ShTfHORLy228vUIqrz2ZlvcUDMEXwrMZEoSNphGnK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7701b558bacb8868-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
23.105.186.224200 OK 0 B URL HTTP/1.1 ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 23.105.186.224:0
ASN #30633 LEASEWEB-USA-WDC
Analyzer Verdict Alert fortinet Malware
GET /W/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: ajtel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ajtel.net/W/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Cookie: PHPSESSID=f30a565e9424af41e95feeb47d4144c4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 09:48:24 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 22:50:25 GMT
Accept-Ranges: bytes
Content-Length: 76764
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: font/woff2
use.fontawesome.com/releases/v6.2.0/css/v4-shims.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v6.2.0/css/v4-shims.css
IP 172.64.133.15:0
GET /releases/v6.2.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ajtel.net
Connection: keep-alive
Referer: https://ajtel.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 09:48:26 GMT
content-type: text/css
x-amz-id-2: VXFej8s7dWJ5Q9/M7iLlJB4NOQ5YrZGeis78aOLshYo7mjiUA12ShKEH0/8jsqiwDpOvjw2wLPE=
x-amz-request-id: A9F9CE06HF9BY42Y
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 30 Aug 2022 16:39:37 GMT
etag: W/"a0c6ae12659c0a469d1114415303f9da"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JHxn1DHI5FJ0io0sGELjslNUNKKUH8q2NsR6PEPSF2ahmrK4owmlPZAtkphN0B5eQzyR%2FKG9aI7HoKjL286XK9S84VX4E9BXEQ5f93%2FAVyyD%2B2ksTmL9%2Fv8Wqy8yKgIs6LSeHPhO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7701b558bad28868-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2