r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b0d651d83075c7a68e3c6a9204226150
294785e3f3a67cdd5f1a530b83a2cbd2c2cc0665
17cbb43fd6662576ba3fe8e06cf44247c903c1313cc419053599c41e286a2442
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17CBB43FD6662576BA3FE8E06CF44247C903C1313CC419053599C41E286A2442"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9255
Expires: Fri, 16 Sep 2022 12:04:49 GMT
Date: Fri, 16 Sep 2022 09:30:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 09:10:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BeQcBkvaF3blmpPNUJ2kNWK-UcPQ36b9Q57FiSzDuWoOqiznMcui3A==
Age: 1188
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4i9dSNbtKWs2nXiyWgbiHTszE5qble_QogGkE-hxAVAeN4MV87EayA==
age: 17719
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 09:30:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 09:12:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FebKC6zkUaU8dbaKZChTmKU4_YZj9ozhgQ1H8akSIqPKleqRug4GeQ==
Age: 1633
ocsp.digicert.com/
200 OK 471 B IP
Hash 3db421016cf0e3ad25f324cf0faf0fac
b15909de1105d4d2fb5be5b3920c454daf022445
914b15f28636e0a5e851540ffb0625ecd09d0546b2f1f7af90b267ceebcf1d5d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3207
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:30:35 GMT
Last-Modified: Fri, 16 Sep 2022 08:37:08 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IDwfTldKsBDN1SvKETSlVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dNYd1l1EaR3KWr8MUBr7ZOsgoug=
www.fulongreli.com/news/1738.cshtml
200 OK 7.6 kB URL HTTP/1.1 www.fulongreli.com/news/1738.cshtml
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11321), with CRLF line terminators
Hash 981d56b739bd61eb43bcd09e07d0b060
16849efeb93f104d30473bfc1911b1cddc5c3ba7
f1f28ebcecbaef37a65097ab142f298aceb161daa827ce90eeda7218d1050fd9
Analyzer Verdict Alert fortinet Malware
GET /news/1738.cshtml HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:38 GMT
Content-Length: 7575
www.fulongreli.com/Templates/CompanyDefault/Css/swiper.min.css
200 OK 4.0 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/swiper.min.css
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (19502)
Hash 9e45e308dd72f0b01bc1c8e59ce9bb10
ef70f83bf765f73f64daf302e1ad721df084b2f8
49bf7c7d5b401afe5426d80c03b847bce474aead64401e3dafd5fde26389b4de
GET /Templates/CompanyDefault/Css/swiper.min.css HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 29 Apr 2019 14:45:26 GMT
Accept-Ranges: bytes
ETag: "9f6f972e9afed41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 4024
www.fulongreli.com/Templates/CompanyDefault/Css/animate.min.css
200 OK 5.9 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/animate.min.css
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type Unicode text, UTF-8 (with BOM) text, with very long lines (53270), with CRLF line terminators
Hash 75dd8055afe57d6e6f83da139ecb45cc
881b8251db9296ec1440ac1dfe0bdc10343a8717
c8660a35292bc4cb23846e8fafdbda70346e2b8755dcb119fba16eeef0b80f80
GET /Templates/CompanyDefault/Css/animate.min.css HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 02 Jan 2019 09:17:35 GMT
Accept-Ranges: bytes
ETag: "272ee6ff7ba2d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 5933
www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/css/font-awesome.min.css
200 OK 8.3 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/css/font-awesome.min.css
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash e22af54ff019a88b54ebe719756aa267
e7836c33a7d136ae93af4ba79048e7363f2e8dce
98db86e5ae6c5c4acbb4f9a0232d850a9dc6533b28d716972075a8398e23765a
GET /Templates/CompanyDefault/Css/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 02 Jan 2019 02:00:35 GMT
Accept-Ranges: bytes
ETag: "894d7ef33ea2d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 8332
www.fulongreli.com/Templates/CompanyDefault/Js/bootstrap.min.js
200 OK 13 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Js/bootstrap.min.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (32033)
Hash 3f9ec5c445cf8f77a6390449a7541505
669418484f3303459663923b63a579a879727b05
d93d22df61a1ecf911a54330835bb468fb26e5f10e0555cb48a464dfe69d7648
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Js/bootstrap.min.js HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Mon, 18 Mar 2019 14:02:44 GMT
Accept-Ranges: bytes
ETag: "1d5c5a4293ddd41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 13045
www.fulongreli.com/Templates/CompanyDefault/Js/basic.j
302 Redirect 157 B URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Js/basic.j
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text
Hash 8f8c4bbada6c0849866fc201bafaf476
e3119e9591e2932c8e642fb5aa7886b12b16b8b9
1a565bb3539cd0dc50a5e216715fa58a4403f37d4615194dee4e772ced3425e0
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Js/basic.j HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: http://www.fulongreli.com/404.html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 157
www.fulongreli.com/Templates/CompanyDefault/Css/base.css
200 OK 15 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/base.css
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (981), with CRLF line terminators
Hash 7c6c8221cd0fd7cac64464285e2983f5
0cb5ed78b8154453c2d2fc7bac727703e84873fc
b137a846c32ad5b6eedf6d04fddb05357b138a398d5b7261136e40f654229173
GET /Templates/CompanyDefault/Css/base.css HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 13 Jul 2019 15:31:30 GMT
Accept-Ranges: bytes
ETag: "b0db18b9039d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 15179
www.fulongreli.com/Templates/CompanyDefault/Js/Tony_Tab.js
200 OK 800 B URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Js/Tony_Tab.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 4b867e288dff7623dfa7dfd66601dbf7
039367c065c5f7a70562797d63a5a09fb036f247
ada2d2a3f866cf1e4a57a4701480d9cba09b926687b0738a6a891a15fa4c54d8
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Js/Tony_Tab.js HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Sat, 16 Mar 2019 00:38:40 GMT
Accept-Ranges: bytes
ETag: "74a2119a90dbd41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 800
www.fulongreli.com/Templates/CompanyDefault/Js/script.js
200 OK 2.1 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Js/script.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash a60bf29f808270b87439d851db86cae4
3867fa5d0b2e22791034f3614b5b1f94575a852e
a0d89beb617b9f9e2c9072d4d6056ff0897d654e2783ca61c4d9a1ebde89d565
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Js/script.js HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Tue, 30 Apr 2019 09:24:30 GMT
Accept-Ranges: bytes
ETag: "cb4f998336ffd41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 2091
www.fulongreli.com/Templates/CompanyDefault/Js/jquery.SuperSlide.2.1.3.js
200 OK 4.9 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Js/jquery.SuperSlide.2.1.3.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type Unicode text, UTF-8 text, with very long lines (11467), with CRLF line terminators
Hash f09e174ab6041793323b972977e3526c
1ad0a83da473c51a6acadbfdfd2860f2f13cb82b
1c184898986661c5520712f4551765dd73472d7a98bf1ff4e8ac8cd822245c7a
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Js/jquery.SuperSlide.2.1.3.js HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Tue, 23 Oct 2018 01:13:34 GMT
Accept-Ranges: bytes
ETag: "0b3469e6d6ad41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 4869
www.fulongreli.com/Templates/CompanyDefault/Css/style.css
200 OK 13 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/style.css
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type Unicode text, UTF-8 (with BOM) text, with very long lines (350), with CRLF line terminators
Hash ee044706906a028519ef024e00bda456
b71cf22cada313a0b6d04e02653484249bed0ae9
e3f8ce11b3c46ee466682ef5edfee51acf803604ac6be040faa481f4e6abfab3
GET /Templates/CompanyDefault/Css/style.css HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Thu, 01 Jul 2021 13:17:44 GMT
Accept-Ranges: bytes
ETag: "dacc437a7b6ed71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:39 GMT
Content-Length: 13197
www.fulongreli.com/404.html
200 OK 558 B URL HTTP/1.1 www.fulongreli.com/404.html
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 8caaaca492ab1668429429d8862fb3bf
35ab03e49802ebb1ec28913af05afa9e15ff936a
21faebf6424f8b27d59df038fe1f9e79df3a77366b148884b24a81c96e923670
Analyzer Verdict Alert fortinet Malware
GET /404.html HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fulongreli.com/news/1738.cshtml
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Wed, 16 Jan 2019 12:46:24 GMT
Accept-Ranges: bytes
ETag: "812f9f7d99add41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:41 GMT
Content-Length: 558
www.fulongreli.com/Templates/CompanyDefault/Js/TouchSlide.1.1.js
200 OK 3.2 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Js/TouchSlide.1.1.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type Unicode text, UTF-8 text, with very long lines (5369), with CRLF line terminators
Hash b97355c9ae453b1bebe71e74353fb2ed
b14c24ceb41e044f8fdf523224221cad02e2476c
b649db1c72650ce787cd59bdac7e43cfbd1f97213329cbe0db5f9770c219fa90
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Js/TouchSlide.1.1.js HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Wed, 04 Dec 2013 09:23:04 GMT
Accept-Ranges: bytes
ETag: "0c376fd2f0ce1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:41 GMT
Content-Length: 3170
www.fulongreli.com/Templates/CompanyDefault/js/wow.min.js
200 OK 3.2 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/js/wow.min.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (8206), with CRLF line terminators
Hash 5029e18fbc757e4d7eabbaef0733abe9
98106ef6f1eee39d8bdabe8c8a4b8a6caab50aa9
1b44e70e241956e2d82754e7531b17b40ab191a75596886d903e677bc9427596
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/js/wow.min.js HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Wed, 02 Jan 2019 09:25:16 GMT
Accept-Ranges: bytes
ETag: "64b5a4127da2d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:41 GMT
Content-Length: 3213
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19641
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 09:30:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19641
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 09:30:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19641
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 09:30:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgjwYJ-ZzVF3bv7pl1l8TN8EAoENIcaSAXJU_YhFOSNRCzrCuPuKbQ==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:10 GMT
age: 42387
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 300d3b6181f9bcb7318b0706646787fa
9cf371e2ecdd46de7ea1290bb158b144a9de57bb
7059364a6076210e603301e0e3ad0009a5c1cd0b8821e321f704532e17b95e5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6560
x-amzn-requestid: 0532b908-dbda-4d51-8574-dba85e33bfcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUrG7GTnoAMF9-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e8bc5-35c25a2a76c8e0db6d7b06df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 01:30:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Xvgf5sF1GJNaJ2uERewkTcfwr3cUHVwU8-CXI7fK2K4t6JCsyPnzJg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:27:11 GMT
age: 39806
etag: "9cf371e2ecdd46de7ea1290bb158b144a9de57bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 974f0e1d052879e47d9230adbd2935e4
d36b8ee08a7c5465ac2b0b0810f9dd4ff9dd6cb2
eb7d70fc9b159adbbaa96c0ee5d6032bb0839883b950b0d586a300dd1d8348bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12744
x-amzn-requestid: f5921831-e306-442b-a43f-e4cfc67980aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhUj4GlEoAMFxbQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239ae5-7ae58b110d2dcfb507939612;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _nrQcy13_zOPbKnLI2-OCakZzR4MsMwO3t45Q9T0hnPL6HGnRo3uPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:03 GMT
age: 42394
etag: "d36b8ee08a7c5465ac2b0b0810f9dd4ff9dd6cb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: 2beedee9-cf7e-47d6-ac4d-3ca9251aa565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfSWEFAZoAMFd6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322ca8d-37688e4a23c3234a25becf57;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:47:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: H2ySDtSQZtsrCA99y1a2_fLQcRI8hvN_nvA9U_V_iCm6c3cq3DigXQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:11:59 GMT
age: 40718
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e1c925-7f52-4acd-b350-ece9de960341.webp
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e1c925-7f52-4acd-b350-ece9de960341.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f61608eae6c6b04627343f86832ba892
89c6a9d2cbe149235409a42424a0c7c91593d7fb
382e3f8d016a88e952f6a8da65b8933c345497bcb7b76cd27ad58ec021e023a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e1c925-7f52-4acd-b350-ece9de960341.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9349
x-amzn-requestid: a4654952-01b4-43cf-a4a5-638a012cc3e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVAAH5foAMFqFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b99-4d4883b824ac4fcf14a53983;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: E1ybwRysIph_3C8YOM81bvRNYk9q8AdOij_mIzLgDkRF7d88DA4PNg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:35 GMT
age: 42002
etag: "89c6a9d2cbe149235409a42424a0c7c91593d7fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0053b897-d5d2-4791-96ec-ae4e53604954.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0053b897-d5d2-4791-96ec-ae4e53604954.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 18cc65a8655bbf7eb093d77f55bf01bf
81decab499a04586b7da56e5aa967733aa32af0b
e5204f0bb2c0e02dd6758ac46a01cb36a66d0b80a3c75ef9c8bb2edf26817139
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0053b897-d5d2-4791-96ec-ae4e53604954.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11012
x-amzn-requestid: 66cb9bab-3baf-48ef-91ad-42dcd10d0c76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSkF3CIAMFz8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145a9-0e7a611671d4fa54167eab0e;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: v9DQj5GkWLvZgOjCUozeMGFnX7cuQg2_SCVewZCoFYqk7TcBpg_3Bg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 20:24:22 GMT
age: 47175
etag: "81decab499a04586b7da56e5aa967733aa32af0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.fulongreli.com/Templates/CompanyDefault/Js/jquery.min.js
200 OK 39 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Js/jquery.min.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (32058), with CRLF line terminators
Hash 98b64f6326a9b32d4b6b206001445a9e
9e127bddee86d4bd6cd95c9a4415f2584351c03f
e075051865874e97567b9ddc667d83588109a8560f21444e5ef4e07ab89a532d
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Js/jquery.min.js HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Thu, 25 Apr 2019 14:14:36 GMT
Accept-Ranges: bytes
ETag: "c9d4c3671fbd41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:41 GMT
Content-Length: 38753
www.fulongreli.com/Templates/CompanyDefault/Js/swiper.min.js
200 OK 43 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Js/swiper.min.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (65270)
Hash c9b3eb6dde4da8109cf91c360f345de1
ec914a22700e5ac050b1541c2c5eef54f1eafa86
98718b51f0f795427a28f888b6dd16cbace42ee4d9f3109b50554cf40b6e589f
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Js/swiper.min.js HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Wed, 02 Jan 2019 06:23:27 GMT
Accept-Ranges: bytes
ETag: "66574cac63a2d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:41 GMT
Content-Length: 43182
www.fulongreli.com/upload/Images/2019/09/28/1703162030.gif
200 OK 3.8 kB URL HTTP/1.1 www.fulongreli.com/upload/Images/2019/09/28/1703162030.gif
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 492 x 72\012- data
Hash 8597dadd793d8a23876077510562a2c9
6d58e7e74c4b879df410410bb53615886a44659d
93af40d25063e547b277f428948e81b2c1d71cfddafb727782b6ef4679575c9f
GET /upload/Images/2019/09/28/1703162030.gif HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sat, 28 Sep 2019 09:03:16 GMT
Accept-Ranges: bytes
ETag: "8478a190db75d51:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 3837
www.fulongreli.com/Templates/CompanyDefault/Css/images/ss.png
200 OK 1.4 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/images/ss.png
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type PNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash d75317ad985142a6fc9a7452b6b96edd
35ca1805dad1382327c69cf9a7365ac97821cd50
b96db4390a8ff5cd450cc8788765e415cb7c3f245834afc915bb36a295c663c9
GET /Templates/CompanyDefault/Css/images/ss.png HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/Templates/CompanyDefault/Css/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 23 Jun 2019 16:19:30 GMT
Accept-Ranges: bytes
ETag: "e0cc746fdf29d51:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 1383
www.fulongreli.com/upload/editor/image/2020/08/13/6373292829563832975297561.png
200 OK 16 kB URL HTTP/1.1 www.fulongreli.com/upload/editor/image/2020/08/13/6373292829563832975297561.png
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type PNG image data, 113 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0821703e9f384da6253acfd54480a18d
50628eb1be94b988c40bfca40bb39e9cadce922d
d28611af7217638a745950b30346512e0926751f3d0cb95e82ad3a9058d223dc
GET /upload/editor/image/2020/08/13/6373292829563832975297561.png HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 13 Aug 2020 07:11:35 GMT
Accept-Ranges: bytes
ETag: "f841f9fa4071d61:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 15517
www.fulongreli.com/Templates/CompanyDefault/Css/images/menu-bg.jpg
200 OK 1.2 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/images/menu-bg.jpg
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2x50, components 3\012- data
Hash dd54024c446a3da9601cfa67ce5def4c
b83d211167c04c337e644bde2ed9890fae0b23d3
3a398c4ebd7ed0220a0ded7cfdc06d6d7ea9cd42a1e06dee27543a43a6cc3dc7
GET /Templates/CompanyDefault/Css/images/menu-bg.jpg HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/Templates/CompanyDefault/Css/style.css
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 12 Jul 2019 08:18:30 GMT
Accept-Ranges: bytes
ETag: "f914d1638a38d51:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 1203
www.fulongreli.com/E/InfoData/AddClicks
200 OK 123 B URL HTTP/1.1 www.fulongreli.com/E/InfoData/AddClicks
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with no line terminators
Hash f8a5d77f2e1c6e4eccef45f06c22277f
1f51dc242ead5b2ed6dce5ec4ed607da96b50e5a
9d6f61aec257185c7ce7f71aad902cb6652f0dc759720082eab54b106e36a8cc
Analyzer Verdict Alert fortinet Malware
POST /E/InfoData/AddClicks HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 20
Origin: http://www.fulongreli.com
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 123
www.fulongreli.com/Templates/CompanyDefault/Css/images/s1.jpg
200 OK 1.2 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/images/s1.jpg
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2x20, components 3\012- data
Hash 54c4b63eb707ed1390e268639a5c1323
a6059b9bf5f3860f91fa8804d15fe8d8361f2d50
0422a1ab3d19e4181473eb759d45707b775a57a641d8f0a6b9b3eaf02628c79e
GET /Templates/CompanyDefault/Css/images/s1.jpg HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/Templates/CompanyDefault/Css/style.css
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Wed, 26 Jun 2019 09:36:28 GMT
Accept-Ranges: bytes
ETag: "3cfe59a122cd51:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 1208
www.fulongreli.com/Templates/CompanyDefault/Css/images/home.png
200 OK 1.2 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/images/home.png
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type PNG image data, 17 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash c4692a00a00018f688d9a74848abde90
83db35dd08db46afeb1e42d3e22ef6d3721025c0
7abf187fff28debee1ffe1e7ccd009f39aadf75995868416a2044350a0ebe30f
GET /Templates/CompanyDefault/Css/images/home.png HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/Templates/CompanyDefault/Css/base.css
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 26 Jun 2019 09:34:41 GMT
Accept-Ranges: bytes
ETag: "342e8d6122cd51:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 1200
www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
302 Redirect 157 B URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text
Hash 8f8c4bbada6c0849866fc201bafaf476
e3119e9591e2932c8e642fb5aa7886b12b16b8b9
1a565bb3539cd0dc50a5e216715fa58a4403f37d4615194dee4e772ced3425e0
GET /Templates/CompanyDefault/Css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/css/font-awesome.min.css
HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: http://www.fulongreli.com/404.html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 157
www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0
302 Redirect 157 B URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text
Hash 8f8c4bbada6c0849866fc201bafaf476
e3119e9591e2932c8e642fb5aa7886b12b16b8b9
1a565bb3539cd0dc50a5e216715fa58a4403f37d4615194dee4e772ced3425e0
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Css/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/css/font-awesome.min.css
HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: http://www.fulongreli.com/404.html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 157
www.fulongreli.com/Templates/CompanyDefault/Css/Images/ui.totop.png
200 OK 16 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/Images/ui.totop.png
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type PNG image data, 50 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f2638df9d23d41ace82916b531478df
78232af0f36fd402fb5a3164471d63be6f8a1867
351445f4f403de85ec9e6c77ea5a7a7f416d7ee616ea97c7a43768ba8e7ccb65
GET /Templates/CompanyDefault/Css/Images/ui.totop.png HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/Templates/CompanyDefault/Css/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 25 Apr 2019 16:25:45 GMT
Accept-Ranges: bytes
ETag: "36d1898883fbd41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 15506
www.fulongreli.com/favicon.ico
302 Redirect 157 B URL HTTP/1.1 www.fulongreli.com/favicon.ico
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text
Hash 8f8c4bbada6c0849866fc201bafaf476
e3119e9591e2932c8e642fb5aa7886b12b16b8b9
1a565bb3539cd0dc50a5e216715fa58a4403f37d4615194dee4e772ced3425e0
GET /favicon.ico HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: http://www.fulongreli.com/404.html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:43 GMT
Content-Length: 157
www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0
200 OK 166 kB URL HTTP/1.1 www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh\012- data
Size 166 kB (165548 bytes)
Hash b06871f281fee6b241d60582ae9369b9
13b1eab65a983c7a73bc7997c479d66943f7c6cb
aa58f33f239a0fb02f5c7a6c45c043d7a9ac9a093335806694ecd6d4edc0d6a8
Analyzer Verdict Alert fortinet Malware
GET /Templates/CompanyDefault/Css/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/Templates/CompanyDefault/Css/font-awesome/css/font-awesome.min.css
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Last-Modified: Wed, 02 Jan 2019 02:00:35 GMT
Accept-Ranges: bytes
ETag: "b5c785f33ea2d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 165548
www.fulongreli.com/upload/Images/2019/10/17/1547329580.jpg
200 OK 516 kB URL HTTP/1.1 www.fulongreli.com/upload/Images/2019/10/17/1547329580.jpg
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2019:09:29 15:53:42], baseline, precision 8, 1920x400, components 3\012- data
Size 516 kB (515827 bytes)
Hash 653b9b54d0ca9f26e5493c7ce6bb72d5
14ee7b3874fbbb1c3adea7603d3ef0a79115a2b5
cf0cdf8cc02f49473cfe91803300f40018802ee9584d7a39e35c1dbc1d09fb48
GET /upload/Images/2019/10/17/1547329580.jpg HTTP/1.1
Host: www.fulongreli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fulongreli.com/news/1738.cshtml
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Thu, 17 Oct 2019 07:47:32 GMT
Accept-Ranges: bytes
ETag: "41387e22bf84d51:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 16 Sep 2022 09:30:42 GMT
Content-Length: 515827
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd10bce85-63ee-4a0f-93d7-c5af7cb0a4f3.jpeg
200 OK 2.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd10bce85-63ee-4a0f-93d7-c5af7cb0a4f3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a10204c6f1c13d6f6d2a19653e49eac
8193e7ef70c77f11bb698f4973c42444c8362fcc
c230fddf7736fee44f47bf857f67261adfe8099c8d896ef5a21301822bfeaca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd10bce85-63ee-4a0f-93d7-c5af7cb0a4f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 2076
x-amzn-requestid: 4d219353-93bd-4f18-8a8c-64142d7be19d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVBdHN-oAMFmgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239ba2-70dafa722a10c16e5b21de02;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8-7AUXlRwp2qBjLd-x7QWDKJDEwV_ZLSRxjO5gyVfFXB7obVOH__Sg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:48:48 GMT
age: 42116
etag: "8193e7ef70c77f11bb698f4973c42444c8362fcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
116.117.95.59
34.120.237.76
23.36.76.226
93.184.220.29