Report - www.ansetech.co.kr/

Report Overview

Submitted URL
www.ansetech.co.kr/
IP
112.175.184.154
ASN
#4766 Korea Telecom
Submitted
2023-01-12 06:39:49
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
40

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	64 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	746 B	142.250.74.74
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	795 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.34.83.145
www.ansetech.co.kr	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	17 kB	3.3 MB	112.175.184.154
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-12	medium	www.ansetech.co.kr/	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/solid.css?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/all.min.css?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/adm/modules/flag-icon-css/css/flag-icon.min.css?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.css?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/jquery.base64.min.js?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/js/bootstrap.min.js?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/ckeditor/config.js?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/fullcalendar-3.10.0/locale/ko.js	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/jquery-ui/jquery-ui.min.js?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/js/require.min.js?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/fullcalendar-3.10.0/lib/moment.min.js?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/jquery-3.4.1.min.js?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/ckeditor/ckeditor.js?ver=2212.1	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/fonts/glyphicons-halflings-regular.woff2	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/fonts/notokr/notokr-bold.woff2	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/adm/modules/fontawesome6/webfonts/fa-solid-900.woff2	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/fonts/notokr/notokr-regular.woff2	Malware
2023-01-12	medium	www.ansetech.co.kr/assets/fonts/notokr/notokr-medium.woff2	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.ansetech.co.kr/assets/js/require.min.js?ver=2212.1	18 kB	2023-03-07	2024-04-23
Pretty URL www.ansetech.co.kr/assets/js/require.min.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2024-04-23 05:42:18 Times Seen40 Hash 3919a36bf7e9718f7c594a5e9107119d 77c5aa3ddc61677e60c95712dc77048af5e72ca5 563bac9ba2a1d94effb5bea3061f8c39fc6769fd935ac4e9877e1b30a842d507 Loading...

	www.ansetech.co.kr/assets/jquery-3.4.1.min.js?ver=2212.1	88 kB	2023-03-07	2024-04-25
Pretty URL www.ansetech.co.kr/assets/jquery-3.4.1.min.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-25 23:10:24 Times Seen95522 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.js?ver=2212.1	217 kB	2023-03-07	2024-01-08
Pretty URL www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2024-01-08 04:16:21 Times Seen34 Hash 846152635d7e89526179ac13fbd1483a c021a44d62d2c64cad39c100edee9e8220bb4563 e3ead6e8de657fd9ec9490babadfe86fb7c263663e5598f63f0ff629d9908d1d Loading...

	www.ansetech.co.kr/ckeditor/config.js?ver=2212.1	2.5 kB	2023-03-07	2023-05-21
Pretty URL www.ansetech.co.kr/ckeditor/config.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2023-05-21 16:08:14 Times Seen3 Hash 74cd7f4114f68cb36ecd043465f7faeb f83b0207a70554cecf0e9361f298323bbcd04ab2 465e012398234b1d539dad205eaa0be749c817a68d802cc2f4c895ac482dbf78 Loading...

	www.ansetech.co.kr/assets/js/slick/slick.min.js?ver=2212.1	43 kB	2023-03-07	2024-04-25
Pretty URL www.ansetech.co.kr/assets/js/slick/slick.min.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:34 Last Seen2024-04-25 22:44:56 Times Seen34420 Hash d5a61c749e44e47159af8a6579dda121 3b41b3bc956685015a347a2238e71db29dfa0dbb 0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 23:11:47 Times Seen37075616 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.ansetech.co.kr/assets/fullcalendar-3.10.0/gcal.js	13 kB	2023-03-07	2023-05-21
Pretty URL www.ansetech.co.kr/assets/fullcalendar-3.10.0/gcal.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2023-05-21 16:08:14 Times Seen3 Hash 5155e8f8435d60d5e9a3dc3ad4b6076e e542e8d85147d72b4f92ba4e038b58c05b05d909 560334aa674a471a40ba307d9aca9748b53e45aa164fe10132a88d8a53dd8237 Loading...

	www.ansetech.co.kr/assets/js/bootstrap.min.js?ver=2212.1	40 kB	2023-03-07	2024-04-25
Pretty URL www.ansetech.co.kr/assets/js/bootstrap.min.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 19:35:50 Times Seen12206 Hash 2f34b630ffe30ba2ff2b91e3f3c322a1 b16fd8226bd6bfb08e568f1b1d0a21d60247cefb 9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe Loading...

	www.ansetech.co.kr/assets/jquery-ui/jquery-ui.i18n-ko.js?ver=2212.1	1.2 kB	2023-03-07	2023-05-21
Pretty URL www.ansetech.co.kr/assets/jquery-ui/jquery-ui.i18n-ko.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2023-05-21 16:08:14 Times Seen3 Hash c029d22ed96597ef67744cb55604bfcc 621a19eb01b0b2d5cf38f31694de080181c7c2fd abc0d4a608014c543e3ab7cc31b10efee4f3c3c1c375d598338410347bc95bb0 Loading...

	www.ansetech.co.kr/assets/js/global.js?ver=2212.1&t=1673505577	1.8 kB	2023-03-12	2023-03-12
Pretty URL www.ansetech.co.kr/assets/js/global.js?ver=2212.1&t=1673505577 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:07:24 Last Seen2023-03-12 21:07:24 Times Seen1 Hash d839a515c2c1093af9b729d4a6b458c1 8ce690bf4a67df96e06a379a24d32c3cfd70a862 338cf691e5f0793c6739dc95172b64952bc77adf8eb0b3bf9687c62a7adf3df5 Loading...

	www.ansetech.co.kr/assets/fullcalendar-3.10.0/locale/ko.js	3.1 kB	2023-03-07	2023-05-21
Pretty URL www.ansetech.co.kr/assets/fullcalendar-3.10.0/locale/ko.js IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2023-05-21 16:08:14 Times Seen3 Hash baa216ba89b4cd77221c2bdf4cd7a51b c6749812e4ae2393984762eaf41b866ffad010b4 b56cd7e0aa0cfe3331fb67aae9e5e2316e74a8397c5db8db7461c507fa06f691 Loading...

	www.ansetech.co.kr/	735 B	2023-03-12	2023-03-12
Pretty URL www.ansetech.co.kr/ IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:07:25 Last Seen2023-03-12 21:07:25 Times Seen1 Hash 904bc11cc63589e8fd49f1a6eb36428a fac0a3f6947a986063d58631336649b86588d54a a5d7e34e97a1aa39d9d661dc534deeacabb1881c59e9df69ba57a7d7d9b89f24 Loading...

	www.ansetech.co.kr/	440 B	2023-03-12	2023-03-12
Pretty URL www.ansetech.co.kr/ IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:07:25 Last Seen2023-03-12 21:07:25 Times Seen1 Hash 3fcae9e3e50886a0d8b88aeb71aaef0b 1a816e02ca8a9ab398c2db2ddca86176b0fc7d39 8ad4615786b59f101ef3d3d21aa1b84330b2a334b84abbe70ccd56e3370f44ec Loading...

	www.ansetech.co.kr/	332 B	2023-03-07	2023-05-21
Pretty URL www.ansetech.co.kr/ IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2023-05-21 16:08:14 Times Seen2 Hash 21d3759d4f2f315f04326ef07bf0be1e 2b70d0e1cb329c00e24baa8997220a2af0c77505 7824d6153cbea89997c7f50b083551865a86f7dc90ff17e205e19631fcaa8bfd Loading...

	www.ansetech.co.kr/	374 B	2023-03-07	2023-03-12
Pretty URL www.ansetech.co.kr/ IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2023-03-12 21:07:25 Times Seen1 Hash 91e441c119e12e11a6f54f31f418244b b74bcd98b0dc29947efe28899398bb2b07098dec ba86a33eb0368977a31451d076f8f0a50fd5e3be352ebd8b07ae8f23c3f3d3c3 Loading...

	www.ansetech.co.kr/assets/fullcalendar-3.10.0/lib/moment.min.js?ver=2212.1	52 kB	2023-03-07	2024-01-11
Pretty URL www.ansetech.co.kr/assets/fullcalendar-3.10.0/lib/moment.min.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2024-01-11 08:48:21 Times Seen972 Hash de82f2f2bd52ead2e0dbe58983236395 76f73f0a3c547e48607e67fb3cc1e1de04e7284c 5412e2bde4cac9464c13325deb3da685fc48ab3dd90130ae54c6b03d91b321f0 Loading...

	www.ansetech.co.kr/assets/jquery.base64.min.js?ver=2212.1	1.8 kB	2023-03-07	2024-04-22
Pretty URL www.ansetech.co.kr/assets/jquery.base64.min.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2024-04-22 02:02:23 Times Seen294 Hash 0e0645f8b1c2b9e45470add2df1214b4 6fbea5312aee286ab3998612c9b5b4a13553c1e9 49416531519583e597dccc3856da2fa093b5e739baf9fda442b7047309e7f51c Loading...

	www.ansetech.co.kr/ckeditor/ckeditor.js?ver=2212.1	1.3 MB	2023-03-07	2023-05-21
Pretty URL www.ansetech.co.kr/ckeditor/ckeditor.js?ver=2212.1 IP 112.175.184.154 ASN #4766 Korea Telecom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:28 Last Seen2023-05-21 16:08:14 Times Seen2 Hash 7b4639527111c6e1ee0032908ba718e0 bf842c02cd0c845b2dc4d7a30c564787e7ad2186 7c7d0761f56e0210774d5a01497a275270fb4db177c86b3110757b6ffb6e057f Loading...

HTTP Transactions (61)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8496
Expires: Thu, 12 Jan 2023 09:01:14 GMT
Date: Thu, 12 Jan 2023 06:39:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4826412809ac0196f13ac1ef44e357e5
793c81d2f90cfaa245dc89fc7a6090cbee846b26
11be07342f3aa4e059ddc3149337895d55bc71e30ad045dc72e4cca4be4c6951

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "11BE07342F3AA4E059DDC3149337895D55BC71E30AD045DC72E4CCA4BE4C6951"
Last-Modified: Wed, 11 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20347
Expires: Thu, 12 Jan 2023 12:18:45 GMT
Date: Thu, 12 Jan 2023 06:39:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
718fc486cd6a70fcacc1653759703fae
bf60ba7a37d2deef1b7000e91cc88da586bb75ca
398d02e16da466ffe87b64ac34b007615951cca14d43610b4acd58bc2a5fadff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "398D02E16DA466FFE87B64AC34B007615951CCA14D43610B4ACD58BC2A5FADFF"
Last-Modified: Tue, 10 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20497
Expires: Thu, 12 Jan 2023 12:21:15 GMT
Date: Thu, 12 Jan 2023 06:39:38 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 12 Jan 2023 05:48:43 GMT
content-type: application/json
age: 3055
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: H8FZdgOo2K44DtHsAap39BlxBYRnMMZXnyz8cJgySPD3Q51RryOPc6kmwIfwq25wVLSsN2MjrWU=
x-amz-request-id: B8Q9QYFQA0BHBE2X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 12 Jan 2023 06:02:23 GMT
age: 2235
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 06:39:38 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 12 Jan 2023 06:17:24 GMT
age: 1334
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ce604e6f88a42844a4ec7d404879bdcf
d462a2a194a67d39d091ff49c4435fdfc39b3e5b
9e0222bcc67f019bb5c61657fc921fc42aa0cd7a75f6b1358d05231c53cc26e4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 924
Cache-Control: max-age=96155
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 06:39:39 GMT
Etag: "63be7c2a-1d7"
Expires: Fri, 13 Jan 2023 09:22:14 GMT
Last-Modified: Wed, 11 Jan 2023 09:06:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.34.83.145

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.34.83.145:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nwPLI4fpQTyekuR82zeQzQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: u0uyXVl9D3FEKr0chMf/seLAWKE=

www.ansetech.co.kr/

112.175.184.154

200 OK

44 kB

URL HTTP/1.1
www.ansetech.co.kr/
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
44 kB (43674 bytes)
Hash
92d478ccaaa1d9811ed49b4e074489b3
f6fa6b9634f60ee705fde02f8733a5633ed6337c
49f60ad98a28a14986201b0ad81ede0b09c27cf9c4c05a1dfb31a6df1a588a4e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Set-Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; expires=Thu, 12-Jan-2023 07:39:37 GMT; Max-Age=3600; path=/
ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6; expires=Thu, 12-Jan-2023 08:39:37 GMT; Max-Age=7200; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: *
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.ansetech.co.kr/assets/jquery-ui/jquery-ui.min.css?ver=2212.1

112.175.184.154

200 OK

32 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/jquery-ui/jquery-ui.min.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (29137)
Size
32 kB (32076 bytes)
Hash
0b5729a931d113be34b6fac13bcf5b29
88ba90d2d2944315afd28a706ee5715ed980c634
ac1c8f94750b39b12327a5d0c56fdf946dabfb6d91e5d2a202879ff9a5d67e29

HTTP Headers

GET /assets/jquery-ui/jquery-ui.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ec514e-7d4c-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 32076
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1

112.175.184.154

200 OK

2.9 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text
Size
2.9 kB (2889 bytes)
Hash
e3c0fc2b5d8072c22b4c09336b6ae702
56ec80342462d88d92a7f98fb9a6fa0ce17aa814
2d32a44d8271a47dd296188591405dbf21f50f87133cbdce9779c45cea244758

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fonts/notokr/notokr.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "fa3ad1-b49-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 2889
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/solid.css?ver=2212.1

112.175.184.154

200 OK

611 B

URL HTTP/1.1
www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/solid.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text
Size
611 B (611 bytes)
Hash
b1f4871ace214cbbe551ec2718ae4a63
61c01fc59394f5766c73bb3c0e6c73416932f29e
0d5c504288932c8edca07bb41b5d7c243b2dff7b5debcd8eb5f14a6e829f7c4b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/adm/modules/fontawesome6/css/solid.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:09 GMT
ETag: "10066b1-263-5e2778b439140"
Accept-Ranges: bytes
Content-Length: 611
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/brands.css?ver=2212.1

112.175.184.154

200 OK

22 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/brands.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text
Size
22 kB (22257 bytes)
Hash
7b02d8ff6f61d5710db7199c1c15b4d5
755b740c472f0d597ae425de35ea70507435fcc0
b42ede1169a6406380afc917526a0540b3271e01fea5a72a2702f1555e62d867

HTTP Headers

GET /assets/adm/modules/fontawesome6/css/brands.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:08 GMT
ETag: "10066ab-56f1-5e2778b344f00"
Accept-Ranges: bytes
Content-Length: 22257
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/adm/modules/fontawesome/css/all.min.css?ver=2212.1

112.175.184.154

200 OK

59 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/adm/modules/fontawesome/css/all.min.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (59119)
Size
59 kB (59305 bytes)
Hash
ecd507b3125edc4d2a03aa6ae5d07da9
a57ee68d11601b0fd8e5037fc241ff65a754473c
99464ceb71bc9bbdcc72275faefe44f98eb5cbb6b5d8ee665b87b35376f1a96e

HTTP Headers

GET /assets/adm/modules/fontawesome/css/all.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 29 Mar 2022 05:12:24 GMT
ETag: "13a46d3-e7a9-5db547965be00"
Accept-Ranges: bytes
Content-Length: 59305
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/css/bootstrap.min.css?ver=2212.1

112.175.184.154

200 OK

122 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/css/bootstrap.min.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (65369)
Size
122 kB (121457 bytes)
Hash
7f89537eaf606bff49f5cc1a7c24dbca
b0972fdcce82fd583d4c2ccc3f2e3df7404a19d0
6d92dfc1700fd38cd130ad818e23bc8aef697f815b2ea5face2b5dfad22f2e11

HTTP Headers

GET /assets/css/bootstrap.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "d84a57-1da71-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 121457
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4774
Expires: Thu, 12 Jan 2023 07:59:14 GMT
Date: Thu, 12 Jan 2023 06:39:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4774
Expires: Thu, 12 Jan 2023 07:59:14 GMT
Date: Thu, 12 Jan 2023 06:39:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4774
Expires: Thu, 12 Jan 2023 07:59:14 GMT
Date: Thu, 12 Jan 2023 06:39:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4774
Expires: Thu, 12 Jan 2023 07:59:14 GMT
Date: Thu, 12 Jan 2023 06:39:40 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3573ee52-2f26-4d59-9c6b-3058a2df51d2.jpeg

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3573ee52-2f26-4d59-9c6b-3058a2df51d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9652 bytes)
Hash
e14b05e7ffee91a3d54c4bf971fd19ca
90c6426313c98d437ca66e6ba674ba11e419a9d8
9c7bb1fc835615913bb99f2291759893331529d02577dd8f6d3c7357b9ee704f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3573ee52-2f26-4d59-9c6b-3058a2df51d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9652
x-amzn-requestid: bc619a58-6d22-4bfb-aced-5e7fd4572e20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPNlFmyoAMFVMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2bf0-10dc7a496df5d3971fe29eae;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:36:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KQqfZfteRI8MHPgg0OkHF4Ih45g_4BC7VkTLG9wM8sqPhqtgMitNOQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:52:32 GMT
age: 31628
etag: "90c6426313c98d437ca66e6ba674ba11e419a9d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e59b65e-133d-4564-94e3-e913d5a394ac.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10382 bytes)
Hash
c49e1d8385d23251cbd4ac2574545982
f283baf033327519c05c725f2319b9465f29b1d6
dc91b181ea0e78ff27bbac3e80f3f937fe9f067ef417f02fe0095ef10fdcd1d1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e59b65e-133d-4564-94e3-e913d5a394ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10382
x-amzn-requestid: a9fc1c50-7606-46cb-b49e-62e765d0c88f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPC9GLfIAMFwSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2bac-3cbf968a6447542b6c931ac0;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:35:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0_k4itQfrb5xSRcgR9G4zFvhCS1YYX9RgOHX3sNDjitBM5t7cyUDWA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:54:49 GMT
etag: "f283baf033327519c05c725f2319b9465f29b1d6"
content-type: image/jpeg
age: 31491
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67c69ca-9ec6-4bbe-a3f5-c93dbd41ee8a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11106 bytes)
Hash
bfaede0ec5c1894fa3d84aa518808a3b
aa818e5d8f177ac9b0ca2b024ea4e0f4fec8addd
55bc21364fec1b7a804be3cc2e15b8dbac2a57db91fe205dabe4bbd07d406b71

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67c69ca-9ec6-4bbe-a3f5-c93dbd41ee8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11106
x-amzn-requestid: 38827bbe-59a8-4640-b808-eb8897df81fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egaASFjrIAMFi0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6ce-22c425ce4b37532110accfc2;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:09:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IpzGPkIHPfDGTfiOJ3Uo18UmWnQNWrFL0cCMo2PO6hgV_81RstvmVQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 05:19:35 GMT
age: 4805
etag: "aa818e5d8f177ac9b0ca2b024ea4e0f4fec8addd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f7ca4e6-30ce-4176-bdc0-c1c768327a5a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7572 bytes)
Hash
f5be19dbab0e6de72252ad1d0a918d14
dcaad5032b156502921ee6dd453ad9d6b94eceb7
cc359e0142be054d7fc5af545b0368e44a3f8f257aa8306cac903cc3ff7a3f64

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f7ca4e6-30ce-4176-bdc0-c1c768327a5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7572
x-amzn-requestid: e59fc954-0f07-43fd-bc9e-be0a6dbe0055
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPMAHpSIAMFc4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2be6-23038d0606616ad81dbd2de5;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:36:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6FERDY51joWjsG0OkaiWNdMml77KNyXk3hKwKzuch9fe6UpoDlswHg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:52:32 GMT
age: 31628
etag: "dcaad5032b156502921ee6dd453ad9d6b94eceb7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52f112f6-2553-4ba2-971f-71e30bee1d9c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10579 bytes)
Hash
fb89a11a1dca9a2924adf7e3712c6405
a881a7d88f08035b9e045f2bf73a4d9fabc640a0
8a0c9f295dd30123847eaed0ba8d4e7c2c6dea8b9c645fc70cdcb4fa8c082ee4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52f112f6-2553-4ba2-971f-71e30bee1d9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10579
x-amzn-requestid: 8760acae-f770-45e2-9639-53967ef1cdb2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPDWET4oAMFo-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2bae-153ebb3e4ec7d5045529ce0a;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:35:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5-mGrlwehnkK-hQz3CpzAe2OCuhLVy1HMcztugSsM7veOFCfYtwKsw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:52:33 GMT
age: 31627
etag: "a881a7d88f08035b9e045f2bf73a4d9fabc640a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3827565b-0aea-4783-8036-edcf552d7427.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8281 bytes)
Hash
2c6730c9fc73d829a0aa5583ea6cb28e
100e42d0224854635006b019a72cf68605e160f8
d29dee0111a6f8e75b0d0855fbfaaf72ff10417789154310729550ce74f06949

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3827565b-0aea-4783-8036-edcf552d7427.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8281
x-amzn-requestid: 9b572c46-926c-448d-a3ba-9b0eb18b31d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egZ-cETQIAMFfQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6c2-65bb767e6828f36b003713b6;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:08:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3KJkp3MTLzAO1RjpB7BESXEbYs3duhKsjw2RINTScyHbsT5a4BC47g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 05:16:27 GMT
age: 4993
etag: "100e42d0224854635006b019a72cf68605e160f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/all.min.css?ver=2212.1

112.175.184.154

200 OK

101 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/all.min.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (65317)
Size
101 kB (100782 bytes)
Hash
6386fb409d4a2abc96eee7be8f6d4cc4
09102cfc60efb430a25ee97cee9a6a35df6dfc59
0df5a33710e433de1f5415b1d47e4130ca7466aee5b81955f1045c4844bbb3ed

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/adm/modules/fontawesome6/css/all.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:08 GMT
ETag: "10066aa-189ae-5e2778b344f00"
Accept-Ranges: bytes
Content-Length: 100782
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/adm/modules/flag-icon-css/css/flag-icon.min.css?ver=2212.1

112.175.184.154

200 OK

34 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/adm/modules/flag-icon-css/css/flag-icon.min.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (33688), with no line terminators
Size
34 kB (33688 bytes)
Hash
59a25841d0d31eba4a72fa9a12a6b538
06fa5894a523dc2017d02af639a245bd72c5a807
0fe6690c98e11b16b97dfc9092e4efc228b8027b4518165ae235214a97658633

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/adm/modules/flag-icon-css/css/flag-icon.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "13a44c8-8398-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 33688
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/fontawesome.min.css?ver=2212.1

112.175.184.154

200 OK

80 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/fontawesome.min.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (65317)
Size
80 kB (80388 bytes)
Hash
e7c13f7644e01262156aed20f373ad5e
b99bf76101373776c140fb991cf014694f85bf94
7d272de35b410fb165377550cdf9c4d3a80fbbcc961e111914e4d5c0eaf5729f

HTTP Headers

GET /assets/adm/modules/fontawesome6/css/fontawesome.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:09 GMT
ETag: "10066ae-13a04-5e2778b439140"
Accept-Ranges: bytes
Content-Length: 80388
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/js/slick/slick-theme.css?ver=2212.1

112.175.184.154

200 OK

3.1 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/js/slick/slick-theme.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Unicode text, UTF-8 text
Size
3.1 kB (3145 bytes)
Hash
f9faba678c4d6dcfdde69e5b11b37a2e
81a434f94f2b1124f3232bb86f2944f82fb23ac0
7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a

HTTP Headers

GET /assets/js/slick/slick-theme.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "12658bd-c49-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 3145
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/css/animate.css?ver=2212.1

112.175.184.154

200 OK

78 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/css/animate.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text
Size
78 kB (77906 bytes)
Hash
8eae1a9cfafdc593321d4d59ec4905ea
232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc
e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab

HTTP Headers

GET /assets/css/animate.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "d84a4f-13052-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 77906
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.css?ver=2212.1

112.175.184.154

200 OK

16 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.css?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (16046)
Size
16 kB (16140 bytes)
Hash
7359f6ebc56c4ba9309895ed0ff48f45
f2d3a341f89a52a9ffa312d1e33e57e7fffd9a29
f55800ef6fd39c59dd129ebce7eade8081920fabe82ef78eda20ee5a1a936378

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fullcalendar-3.10.0/fullcalendar.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 27 May 2020 07:20:07 GMT
ETag: "e857a5-3f0c-5a69c0aa137c0"
Accept-Ranges: bytes
Content-Length: 16140
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/jquery.base64.min.js?ver=2212.1

112.175.184.154

200 OK

1.8 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/jquery.base64.min.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (1782), with no line terminators
Size
1.8 kB (1782 bytes)
Hash
0e0645f8b1c2b9e45470add2df1214b4
6fbea5312aee286ab3998612c9b5b4a13553c1e9
49416531519583e597dccc3856da2fa093b5e739baf9fda442b7047309e7f51c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/jquery.base64.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "7a3e5e-6f6-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 1782
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/jquery-ui/jquery-ui.i18n-ko.js?ver=2212.1

112.175.184.154

200 OK

1.2 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/jquery-ui/jquery-ui.i18n-ko.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Unicode text, UTF-8 text
Size
1.2 kB (1195 bytes)
Hash
c029d22ed96597ef67744cb55604bfcc
621a19eb01b0b2d5cf38f31694de080181c7c2fd
abc0d4a608014c543e3ab7cc31b10efee4f3c3c1c375d598338410347bc95bb0

HTTP Headers

GET /assets/jquery-ui/jquery-ui.i18n-ko.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ec514c-4ab-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 1195
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/jquery-ui/jquery-ui.extend.js?ver=2212.1&t=1673505577

112.175.184.154

200 OK

0 B

URL HTTP/1.1
www.ansetech.co.kr/assets/jquery-ui/jquery-ui.extend.js?ver=2212.1&t=1673505577
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/jquery-ui/jquery-ui.extend.js?ver=2212.1&t=1673505577 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ec514b-0-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 0
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/js/slick/slick.min.js?ver=2212.1

112.175.184.154

200 OK

43 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/js/slick/slick.min.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (42862)
Size
43 kB (42863 bytes)
Hash
d5a61c749e44e47159af8a6579dda121
3b41b3bc956685015a347a2238e71db29dfa0dbb
0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740

HTTP Headers

GET /assets/js/slick/slick.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "12658c3-a76f-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 42863
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/js/bootstrap.min.js?ver=2212.1

112.175.184.154

200 OK

40 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/js/bootstrap.min.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (39553)
Size
40 kB (39680 bytes)
Hash
2f34b630ffe30ba2ff2b91e3f3c322a1
b16fd8226bd6bfb08e568f1b1d0a21d60247cefb
9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/bootstrap.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ee5652-9b00-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 39680
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/css/global.css?ver=2212.1&t=1673505577

112.175.184.154

200 OK

78 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/css/global.css?ver=2212.1&t=1673505577
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Unicode text, UTF-8 text, with very long lines (1216), with CRLF line terminators
Size
78 kB (77866 bytes)
Hash
285b149937927b40001042749ff13b05
ede20abb204b8c748e613cce8e7c2b5897e86235
471c5a81733f81127a3b7c01cec45918602739a231245b65c52f205af4506dd7

HTTP Headers

GET /assets/css/global.css?ver=2212.1&t=1673505577 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 27 Dec 2022 00:36:23 GMT
ETag: "d81955-1302a-5f0c470f64fc0"
Accept-Ranges: bytes
Content-Length: 77866
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b1f465f2178efe2786ee28d13fb5e76d
777860d696be5da2a3e844ff1d29e8589cafe5a9
27d9f7abe75dd3a91116324e0f0769191432f1425ebdc17ffa67085e7c747deb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 06:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ansetech.co.kr/ckeditor/config.js?ver=2212.1

112.175.184.154

200 OK

2.5 kB

URL HTTP/1.1
www.ansetech.co.kr/ckeditor/config.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Unicode text, UTF-8 text
Size
2.5 kB (2537 bytes)
Hash
74cd7f4114f68cb36ecd043465f7faeb
f83b0207a70554cecf0e9361f298323bbcd04ab2
465e012398234b1d539dad205eaa0be749c817a68d802cc2f4c895ac482dbf78

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ckeditor/config.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:08 GMT
ETag: "7c4058-9e9-5e2778b344f00"
Accept-Ranges: bytes
Content-Length: 2537
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b1f465f2178efe2786ee28d13fb5e76d
777860d696be5da2a3e844ff1d29e8589cafe5a9
27d9f7abe75dd3a91116324e0f0769191432f1425ebdc17ffa67085e7c747deb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 06:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ansetech.co.kr/assets/js/global.js?ver=2212.1&t=1673505577

112.175.184.154

200 OK

1.8 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/js/global.js?ver=2212.1&t=1673505577
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Unicode text, UTF-8 text
Size
1.8 kB (1828 bytes)
Hash
d839a515c2c1093af9b729d4a6b458c1
8ce690bf4a67df96e06a379a24d32c3cfd70a862
338cf691e5f0793c6739dc95172b64952bc77adf8eb0b3bf9687c62a7adf3df5

HTTP Headers

GET /assets/js/global.js?ver=2212.1&t=1673505577 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 27 Dec 2022 00:36:23 GMT
ETag: "ee4d69-724-5f0c470f64fc0"
Accept-Ranges: bytes
Content-Length: 1828
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/fullcalendar-3.10.0/locale/ko.js

112.175.184.154

200 OK

3.1 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/fullcalendar-3.10.0/locale/ko.js
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Unicode text, UTF-8 text, with very long lines (2707), with no line terminators
Size
3.1 kB (3117 bytes)
Hash
baa216ba89b4cd77221c2bdf4cd7a51b
c6749812e4ae2393984762eaf41b866ffad010b4
b56cd7e0aa0cfe3331fb67aae9e5e2316e74a8397c5db8db7461c507fa06f691

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fullcalendar-3.10.0/locale/ko.js HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 27 May 2020 07:20:07 GMT
ETag: "10845b0-c2d-5a69c0aa137c0"
Accept-Ranges: bytes
Content-Length: 3117
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/jquery-ui/jquery-ui.min.js?ver=2212.1

112.175.184.154

200 OK

254 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/jquery-ui/jquery-ui.min.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (32074)
Size
254 kB (253669 bytes)
Hash
c15b1008dec3c8967ea657a7bb4baaec
78489e580adaef931e6e5b131dab556c397e4a1a
28ce75d953678c4942df47a11707a15e3c756021cf89090e3e6aa7ad6b6971c3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/jquery-ui/jquery-ui.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ec514f-3dee5-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 253669
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/public/custom.css?ver=2212.1&t=1673505577

112.175.184.154

200 OK

33 kB

URL HTTP/1.1
www.ansetech.co.kr/public/custom.css?ver=2212.1&t=1673505577
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
assembler source, Unicode text, UTF-8 text
Size
33 kB (32867 bytes)
Hash
ed8b1237e9125649b54bedec1b573820
87672214281f9fee0b13d39f10a41471e504ffbf
7c74d6668487c775337de624f23ddcdc4ab957655afcb5dbd71006467af9801b

HTTP Headers

GET /public/custom.css?ver=2212.1&t=1673505577 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 24 Aug 2021 05:21:03 GMT
ETag: "7c4082-8063-5ca474cc91dec"
Accept-Ranges: bytes
Content-Length: 32867
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css

www.ansetech.co.kr/assets/js/require.min.js?ver=2212.1

112.175.184.154

200 OK

18 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/js/require.min.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (17622)
Size
18 kB (17662 bytes)
Hash
3919a36bf7e9718f7c594a5e9107119d
77c5aa3ddc61677e60c95712dc77048af5e72ca5
563bac9ba2a1d94effb5bea3061f8c39fc6769fd935ac4e9877e1b30a842d507

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/require.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 29 Mar 2022 05:12:23 GMT
ETag: "ee92e3-44fe-5db5479567bc0"
Accept-Ranges: bytes
Content-Length: 17662
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/fullcalendar-3.10.0/lib/moment.min.js?ver=2212.1

112.175.184.154

200 OK

52 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/fullcalendar-3.10.0/lib/moment.min.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (51746), with no line terminators
Size
52 kB (51746 bytes)
Hash
de82f2f2bd52ead2e0dbe58983236395
76f73f0a3c547e48607e67fb3cc1e1de04e7284c
5412e2bde4cac9464c13325deb3da685fc48ab3dd90130ae54c6b03d91b321f0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fullcalendar-3.10.0/lib/moment.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 27 May 2020 07:20:07 GMT
ETag: "fe51fb-ca22-5a69c0aa137c0"
Accept-Ranges: bytes
Content-Length: 51746
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/jquery-3.4.1.min.js?ver=2212.1

112.175.184.154

200 OK

88 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/jquery-3.4.1.min.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
ASCII text, with very long lines (65451)
Size
88 kB (88145 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/jquery-3.4.1.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "7a3e5d-15851-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 88145
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.js?ver=2212.1

112.175.184.154

200 OK

217 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Unicode text, UTF-8 text, with very long lines (31995)
Size
217 kB (216949 bytes)
Hash
846152635d7e89526179ac13fbd1483a
c021a44d62d2c64cad39c100edee9e8220bb4563
e3ead6e8de657fd9ec9490babadfe86fb7c263663e5598f63f0ff629d9908d1d

HTTP Headers

GET /assets/fullcalendar-3.10.0/fullcalendar.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 27 May 2020 07:20:07 GMT
ETag: "e857a6-34f75-5a69c0aa137c0"
Accept-Ranges: bytes
Content-Length: 216949
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/ckeditor/ckeditor.js?ver=2212.1

112.175.184.154

200 OK

1.3 MB

URL HTTP/1.1
www.ansetech.co.kr/ckeditor/ckeditor.js?ver=2212.1
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Unicode text, UTF-8 (with BOM) text
Size
1.3 MB (1287440 bytes)
Hash
b4f2be81721e9757c3e184d5605ccb54
b59b7cffdb908ebcda8877432cff416e323d17ff
891a51ac8d985a8be2cafa56e5df376780bb587903607bf9f11a9cd8273faeed

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ckeditor/ckeditor.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Mon, 24 May 2021 05:39:06 GMT
ETag: "7c4076-13a510-5c30cd3eb7280"
Accept-Ranges: bytes
Content-Length: 1287440
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript

www.ansetech.co.kr/public/img/logo/logo-square.png

112.175.184.154

200 OK

1.9 kB

URL HTTP/1.1
www.ansetech.co.kr/public/img/logo/logo-square.png
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
PNG image data, 43 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1879 bytes)
Hash
3f6f60de3b50ccb620041f1c6110985f
56aee47f338aa59efc466222c3d4a55dd5b15cbb
96237176a6976780f8d2d137c21819e03ae8ebc17598bc190e5feb4a9d3bb5f5

HTTP Headers

GET /public/img/logo/logo-square.png HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:41 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 07 Jul 2021 01:29:21 GMT
ETag: "13c39ce-757-5c67e77c56ec2"
Accept-Ranges: bytes
Content-Length: 1879
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png

www.ansetech.co.kr/public/img/logo/logo.png

112.175.184.154

200 OK

8.8 kB

URL HTTP/1.1
www.ansetech.co.kr/public/img/logo/logo.png
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
PNG image data, 259 x 53, 8-bit/color RGBA, non-interlaced\012- data
Size
8.8 kB (8768 bytes)
Hash
35b753685ef8c30a3cfe1e29a6deeb91
3db1a34731342c38505b4527ce8aebb40320cead
b611c5d9f3edfcb3bcea46ef99898d170b82afcd715f5623fed59f8ec1307c08

HTTP Headers

GET /public/img/logo/logo.png HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 07 Jul 2021 01:16:45 GMT
ETag: "13c39cd-2240-5c67e4abdb51b"
Accept-Ranges: bytes
Content-Length: 8768
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png

www.ansetech.co.kr/public/img/logo/f-logo.png

112.175.184.154

200 OK

5.6 kB

URL HTTP/1.1
www.ansetech.co.kr/public/img/logo/f-logo.png
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
PNG image data, 225 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
5.6 kB (5575 bytes)
Hash
a17d9838cc8eac1af0d5a58657f8d80b
8639012ab5f33a2c7b346019c955b7a144115a8e
10d6943793406ed7c2320a4d95bc0c1f39fa5933fc03c9bba9df69e2f3072e20

HTTP Headers

GET /public/img/logo/f-logo.png HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 07 Jul 2021 01:21:41 GMT
ETag: "13c4027-15c7-5c67e5c5b3e83"
Accept-Ranges: bytes
Content-Length: 5575
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png

www.ansetech.co.kr/assets/fonts/glyphicons-halflings-regular.woff2

112.175.184.154

200 OK

18 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/fonts/glyphicons-halflings-regular.woff2
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/css/bootstrap.min.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "e64f08-466c-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 18028
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain

www.ansetech.co.kr/assets/fonts/notokr/notokr-bold.woff2

112.175.184.154

200 OK

158 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/fonts/notokr/notokr-bold.woff2
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
gzip compressed data, max compression\012- data
Size
158 kB (158262 bytes)
Hash
e11eaceb48bb52bcd7769927a3951256
046a1fa5941223ca68d69893f4dfebce404c03fa
75edeb67d1bf55f9977a775055914cde50f550ee564c01259bceb873615cf04d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fonts/notokr/notokr-bold.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "fa3ab7-20f38-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 134968
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain

www.ansetech.co.kr/assets/adm/modules/fontawesome6/webfonts/fa-solid-900.woff2

112.175.184.154

200 OK

154 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/adm/modules/fontawesome6/webfonts/fa-solid-900.woff2
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Web Open Font Format (Version 2), TrueType, length 154228, version 769.768\012- data
Size
154 kB (154228 bytes)
Hash
55b416a8df21f9f987aa352f10d1343b
2717f3f58271f2f2e6120d9937c7227002656d34
d76fb4e841748a3f6bc63efa23156e02631c283bf41f84efcbdaf339ea3e1b73

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/adm/modules/fontawesome6/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/all.min.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:10 GMT
ETag: "102089b-25a74-5e2778b52d380"
Accept-Ranges: bytes
Content-Length: 154228
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain

www.ansetech.co.kr/assets/fonts/notokr/notokr-regular.woff2

112.175.184.154

200 OK

135 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/fonts/notokr/notokr-regular.woff2
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Web Open Font Format (Version 2), TrueType, length 134960, version 1.0\012- data
Size
135 kB (134960 bytes)
Hash
a288961d62681aeff38489afad616c28
9ea9497b00f3767455868e20a07c6b86a8b6a862
ae57d3fa473d34383e6762a9f26eb5a82d20e301e3c38ae481a8845b7c221680

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fonts/notokr/notokr-regular.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "fa3acb-20f30-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 134960
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain

www.ansetech.co.kr/assets/fonts/notokr/notokr-medium.woff2

112.175.184.154

200 OK

134 kB

URL HTTP/1.1
www.ansetech.co.kr/assets/fonts/notokr/notokr-medium.woff2
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
Web Open Font Format (Version 2), TrueType, length 133836, version 1.0\012- data
Size
134 kB (133836 bytes)
Hash
6a273c1578aaeb244be785ebed570c75
542f03687364c7c3e7bfd9067e97233d6eae0c70
855fdb71bfaa47c8ca0179ce9474ba9572b0eaeeb8d161522140109686efc034

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fonts/notokr/notokr-medium.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "fa3ac6-20acc-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 133836
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain

www.ansetech.co.kr/public/img/favicon/10page_favicon.png

112.175.184.154

404 Not Found

1.1 kB

URL HTTP/1.1
www.ansetech.co.kr/public/img/favicon/10page_favicon.png
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1130 bytes)
Hash
fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2

HTTP Headers

GET /public/img/favicon/10page_favicon.png HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 404 Not Found
Date: Thu, 12 Jan 2023 06:39:43 GMT
Server: Apache/2.2.15 (CentOS)
Set-Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; expires=Thu, 12-Jan-2023 07:39:43 GMT; Max-Age=3600; path=/
Access-Control-Allow-Origin: *
Content-Length: 1130
Connection: close
Content-Type: text/html; charset=UTF-8

www.ansetech.co.kr/public/img/slide/slide09.jpg

112.175.184.154

200 OK

0 B

URL HTTP/1.1
www.ansetech.co.kr/public/img/slide/slide09.jpg
IP
112.175.184.154:0
ASN
#4766 Korea Telecom

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /public/img/slide/slide09.jpg HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6

HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Fri, 11 Jun 2021 00:01:09 GMT
ETag: "13c3f1c-5cb1f9-5c472348406ef"
Accept-Ranges: bytes
Content-Length: 6074873
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg

fonts.googleapis.com/css?family=Noto+Sans+KR:300,400,700&display=swap

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Noto+Sans+KR:300,400,700&display=swap
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Noto+Sans+KR:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 12 Jan 2023 06:39:42 GMT
date: Thu, 12 Jan 2023 06:39:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP