r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8496
Expires: Thu, 12 Jan 2023 09:01:14 GMT
Date: Thu, 12 Jan 2023 06:39:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4826412809ac0196f13ac1ef44e357e5
793c81d2f90cfaa245dc89fc7a6090cbee846b26
11be07342f3aa4e059ddc3149337895d55bc71e30ad045dc72e4cca4be4c6951
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "11BE07342F3AA4E059DDC3149337895D55BC71E30AD045DC72E4CCA4BE4C6951"
Last-Modified: Wed, 11 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20347
Expires: Thu, 12 Jan 2023 12:18:45 GMT
Date: Thu, 12 Jan 2023 06:39:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 718fc486cd6a70fcacc1653759703fae
bf60ba7a37d2deef1b7000e91cc88da586bb75ca
398d02e16da466ffe87b64ac34b007615951cca14d43610b4acd58bc2a5fadff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "398D02E16DA466FFE87B64AC34B007615951CCA14D43610B4ACD58BC2A5FADFF"
Last-Modified: Tue, 10 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20497
Expires: Thu, 12 Jan 2023 12:21:15 GMT
Date: Thu, 12 Jan 2023 06:39:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 12 Jan 2023 05:48:43 GMT
content-type: application/json
age: 3055
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: H8FZdgOo2K44DtHsAap39BlxBYRnMMZXnyz8cJgySPD3Q51RryOPc6kmwIfwq25wVLSsN2MjrWU=
x-amz-request-id: B8Q9QYFQA0BHBE2X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 12 Jan 2023 06:02:23 GMT
age: 2235
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 06:39:38 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 12 Jan 2023 06:17:24 GMT
age: 1334
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ce604e6f88a42844a4ec7d404879bdcf
d462a2a194a67d39d091ff49c4435fdfc39b3e5b
9e0222bcc67f019bb5c61657fc921fc42aa0cd7a75f6b1358d05231c53cc26e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 924
Cache-Control: max-age=96155
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 06:39:39 GMT
Etag: "63be7c2a-1d7"
Expires: Fri, 13 Jan 2023 09:22:14 GMT
Last-Modified: Wed, 11 Jan 2023 09:06:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.34.83.145101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.34.83.145:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nwPLI4fpQTyekuR82zeQzQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: u0uyXVl9D3FEKr0chMf/seLAWKE=
www.ansetech.co.kr/
112.175.184.154200 OK 44 kB IP 112.175.184.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 92d478ccaaa1d9811ed49b4e074489b3
f6fa6b9634f60ee705fde02f8733a5633ed6337c
49f60ad98a28a14986201b0ad81ede0b09c27cf9c4c05a1dfb31a6df1a588a4e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Set-Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; expires=Thu, 12-Jan-2023 07:39:37 GMT; Max-Age=3600; path=/
ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6; expires=Thu, 12-Jan-2023 08:39:37 GMT; Max-Age=7200; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: *
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.ansetech.co.kr/assets/jquery-ui/jquery-ui.min.css?ver=2212.1
112.175.184.154200 OK 32 kB URL HTTP/1.1 www.ansetech.co.kr/assets/jquery-ui/jquery-ui.min.css?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (29137)
Hash 0b5729a931d113be34b6fac13bcf5b29
88ba90d2d2944315afd28a706ee5715ed980c634
ac1c8f94750b39b12327a5d0c56fdf946dabfb6d91e5d2a202879ff9a5d67e29
GET /assets/jquery-ui/jquery-ui.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ec514e-7d4c-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 32076
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1
112.175.184.154200 OK 2.9 kB URL HTTP/1.1 www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1
IP 112.175.184.154:0
Hash e3c0fc2b5d8072c22b4c09336b6ae702
56ec80342462d88d92a7f98fb9a6fa0ce17aa814
2d32a44d8271a47dd296188591405dbf21f50f87133cbdce9779c45cea244758
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/notokr/notokr.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "fa3ad1-b49-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 2889
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/solid.css?ver=2212.1
112.175.184.154200 OK 611 B URL HTTP/1.1 www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/solid.css?ver=2212.1
IP 112.175.184.154:0
Hash b1f4871ace214cbbe551ec2718ae4a63
61c01fc59394f5766c73bb3c0e6c73416932f29e
0d5c504288932c8edca07bb41b5d7c243b2dff7b5debcd8eb5f14a6e829f7c4b
Analyzer Verdict Alert fortinet Malware
GET /assets/adm/modules/fontawesome6/css/solid.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:09 GMT
ETag: "10066b1-263-5e2778b439140"
Accept-Ranges: bytes
Content-Length: 611
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/brands.css?ver=2212.1
112.175.184.154200 OK 22 kB URL HTTP/1.1 www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/brands.css?ver=2212.1
IP 112.175.184.154:0
Hash 7b02d8ff6f61d5710db7199c1c15b4d5
755b740c472f0d597ae425de35ea70507435fcc0
b42ede1169a6406380afc917526a0540b3271e01fea5a72a2702f1555e62d867
GET /assets/adm/modules/fontawesome6/css/brands.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:08 GMT
ETag: "10066ab-56f1-5e2778b344f00"
Accept-Ranges: bytes
Content-Length: 22257
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/adm/modules/fontawesome/css/all.min.css?ver=2212.1
112.175.184.154200 OK 59 kB URL HTTP/1.1 www.ansetech.co.kr/assets/adm/modules/fontawesome/css/all.min.css?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (59119)
Hash ecd507b3125edc4d2a03aa6ae5d07da9
a57ee68d11601b0fd8e5037fc241ff65a754473c
99464ceb71bc9bbdcc72275faefe44f98eb5cbb6b5d8ee665b87b35376f1a96e
GET /assets/adm/modules/fontawesome/css/all.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 29 Mar 2022 05:12:24 GMT
ETag: "13a46d3-e7a9-5db547965be00"
Accept-Ranges: bytes
Content-Length: 59305
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/css/bootstrap.min.css?ver=2212.1
112.175.184.154200 OK 122 kB URL HTTP/1.1 www.ansetech.co.kr/assets/css/bootstrap.min.css?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (65369)
Size 122 kB (121457 bytes)
Hash 7f89537eaf606bff49f5cc1a7c24dbca
b0972fdcce82fd583d4c2ccc3f2e3df7404a19d0
6d92dfc1700fd38cd130ad818e23bc8aef697f815b2ea5face2b5dfad22f2e11
GET /assets/css/bootstrap.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "d84a57-1da71-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 121457
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4774
Expires: Thu, 12 Jan 2023 07:59:14 GMT
Date: Thu, 12 Jan 2023 06:39:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4774
Expires: Thu, 12 Jan 2023 07:59:14 GMT
Date: Thu, 12 Jan 2023 06:39:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4774
Expires: Thu, 12 Jan 2023 07:59:14 GMT
Date: Thu, 12 Jan 2023 06:39:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4774
Expires: Thu, 12 Jan 2023 07:59:14 GMT
Date: Thu, 12 Jan 2023 06:39:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3573ee52-2f26-4d59-9c6b-3058a2df51d2.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3573ee52-2f26-4d59-9c6b-3058a2df51d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e14b05e7ffee91a3d54c4bf971fd19ca
90c6426313c98d437ca66e6ba674ba11e419a9d8
9c7bb1fc835615913bb99f2291759893331529d02577dd8f6d3c7357b9ee704f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3573ee52-2f26-4d59-9c6b-3058a2df51d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9652
x-amzn-requestid: bc619a58-6d22-4bfb-aced-5e7fd4572e20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPNlFmyoAMFVMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2bf0-10dc7a496df5d3971fe29eae;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:36:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KQqfZfteRI8MHPgg0OkHF4Ih45g_4BC7VkTLG9wM8sqPhqtgMitNOQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:52:32 GMT
age: 31628
etag: "90c6426313c98d437ca66e6ba674ba11e419a9d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e59b65e-133d-4564-94e3-e913d5a394ac.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e59b65e-133d-4564-94e3-e913d5a394ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c49e1d8385d23251cbd4ac2574545982
f283baf033327519c05c725f2319b9465f29b1d6
dc91b181ea0e78ff27bbac3e80f3f937fe9f067ef417f02fe0095ef10fdcd1d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e59b65e-133d-4564-94e3-e913d5a394ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10382
x-amzn-requestid: a9fc1c50-7606-46cb-b49e-62e765d0c88f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPC9GLfIAMFwSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2bac-3cbf968a6447542b6c931ac0;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:35:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0_k4itQfrb5xSRcgR9G4zFvhCS1YYX9RgOHX3sNDjitBM5t7cyUDWA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:54:49 GMT
etag: "f283baf033327519c05c725f2319b9465f29b1d6"
content-type: image/jpeg
age: 31491
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67c69ca-9ec6-4bbe-a3f5-c93dbd41ee8a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67c69ca-9ec6-4bbe-a3f5-c93dbd41ee8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfaede0ec5c1894fa3d84aa518808a3b
aa818e5d8f177ac9b0ca2b024ea4e0f4fec8addd
55bc21364fec1b7a804be3cc2e15b8dbac2a57db91fe205dabe4bbd07d406b71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67c69ca-9ec6-4bbe-a3f5-c93dbd41ee8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11106
x-amzn-requestid: 38827bbe-59a8-4640-b808-eb8897df81fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egaASFjrIAMFi0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6ce-22c425ce4b37532110accfc2;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:09:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IpzGPkIHPfDGTfiOJ3Uo18UmWnQNWrFL0cCMo2PO6hgV_81RstvmVQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 05:19:35 GMT
age: 4805
etag: "aa818e5d8f177ac9b0ca2b024ea4e0f4fec8addd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f7ca4e6-30ce-4176-bdc0-c1c768327a5a.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f7ca4e6-30ce-4176-bdc0-c1c768327a5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5be19dbab0e6de72252ad1d0a918d14
dcaad5032b156502921ee6dd453ad9d6b94eceb7
cc359e0142be054d7fc5af545b0368e44a3f8f257aa8306cac903cc3ff7a3f64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f7ca4e6-30ce-4176-bdc0-c1c768327a5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7572
x-amzn-requestid: e59fc954-0f07-43fd-bc9e-be0a6dbe0055
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPMAHpSIAMFc4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2be6-23038d0606616ad81dbd2de5;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:36:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6FERDY51joWjsG0OkaiWNdMml77KNyXk3hKwKzuch9fe6UpoDlswHg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:52:32 GMT
age: 31628
etag: "dcaad5032b156502921ee6dd453ad9d6b94eceb7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52f112f6-2553-4ba2-971f-71e30bee1d9c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52f112f6-2553-4ba2-971f-71e30bee1d9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb89a11a1dca9a2924adf7e3712c6405
a881a7d88f08035b9e045f2bf73a4d9fabc640a0
8a0c9f295dd30123847eaed0ba8d4e7c2c6dea8b9c645fc70cdcb4fa8c082ee4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52f112f6-2553-4ba2-971f-71e30bee1d9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10579
x-amzn-requestid: 8760acae-f770-45e2-9639-53967ef1cdb2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPDWET4oAMFo-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2bae-153ebb3e4ec7d5045529ce0a;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:35:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5-mGrlwehnkK-hQz3CpzAe2OCuhLVy1HMcztugSsM7veOFCfYtwKsw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:52:33 GMT
age: 31627
etag: "a881a7d88f08035b9e045f2bf73a4d9fabc640a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3827565b-0aea-4783-8036-edcf552d7427.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3827565b-0aea-4783-8036-edcf552d7427.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c6730c9fc73d829a0aa5583ea6cb28e
100e42d0224854635006b019a72cf68605e160f8
d29dee0111a6f8e75b0d0855fbfaaf72ff10417789154310729550ce74f06949
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3827565b-0aea-4783-8036-edcf552d7427.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8281
x-amzn-requestid: 9b572c46-926c-448d-a3ba-9b0eb18b31d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egZ-cETQIAMFfQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6c2-65bb767e6828f36b003713b6;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:08:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3KJkp3MTLzAO1RjpB7BESXEbYs3duhKsjw2RINTScyHbsT5a4BC47g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 05:16:27 GMT
age: 4993
etag: "100e42d0224854635006b019a72cf68605e160f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/all.min.css?ver=2212.1
112.175.184.154200 OK 101 kB URL HTTP/1.1 www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/all.min.css?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (65317)
Size 101 kB (100782 bytes)
Hash 6386fb409d4a2abc96eee7be8f6d4cc4
09102cfc60efb430a25ee97cee9a6a35df6dfc59
0df5a33710e433de1f5415b1d47e4130ca7466aee5b81955f1045c4844bbb3ed
Analyzer Verdict Alert fortinet Malware
GET /assets/adm/modules/fontawesome6/css/all.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:37 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:08 GMT
ETag: "10066aa-189ae-5e2778b344f00"
Accept-Ranges: bytes
Content-Length: 100782
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/adm/modules/flag-icon-css/css/flag-icon.min.css?ver=2212.1
112.175.184.154200 OK 34 kB URL HTTP/1.1 www.ansetech.co.kr/assets/adm/modules/flag-icon-css/css/flag-icon.min.css?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (33688), with no line terminators
Hash 59a25841d0d31eba4a72fa9a12a6b538
06fa5894a523dc2017d02af639a245bd72c5a807
0fe6690c98e11b16b97dfc9092e4efc228b8027b4518165ae235214a97658633
Analyzer Verdict Alert fortinet Malware
GET /assets/adm/modules/flag-icon-css/css/flag-icon.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "13a44c8-8398-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 33688
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/fontawesome.min.css?ver=2212.1
112.175.184.154200 OK 80 kB URL HTTP/1.1 www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/fontawesome.min.css?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (65317)
Hash e7c13f7644e01262156aed20f373ad5e
b99bf76101373776c140fb991cf014694f85bf94
7d272de35b410fb165377550cdf9c4d3a80fbbcc961e111914e4d5c0eaf5729f
GET /assets/adm/modules/fontawesome6/css/fontawesome.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:09 GMT
ETag: "10066ae-13a04-5e2778b439140"
Accept-Ranges: bytes
Content-Length: 80388
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/js/slick/slick-theme.css?ver=2212.1
112.175.184.154200 OK 3.1 kB URL HTTP/1.1 www.ansetech.co.kr/assets/js/slick/slick-theme.css?ver=2212.1
IP 112.175.184.154:0
Hash f9faba678c4d6dcfdde69e5b11b37a2e
81a434f94f2b1124f3232bb86f2944f82fb23ac0
7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a
GET /assets/js/slick/slick-theme.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "12658bd-c49-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 3145
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/css/animate.css?ver=2212.1
112.175.184.154200 OK 78 kB URL HTTP/1.1 www.ansetech.co.kr/assets/css/animate.css?ver=2212.1
IP 112.175.184.154:0
Hash 8eae1a9cfafdc593321d4d59ec4905ea
232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc
e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab
GET /assets/css/animate.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "d84a4f-13052-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 77906
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.css?ver=2212.1
112.175.184.154200 OK 16 kB URL HTTP/1.1 www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.css?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (16046)
Hash 7359f6ebc56c4ba9309895ed0ff48f45
f2d3a341f89a52a9ffa312d1e33e57e7fffd9a29
f55800ef6fd39c59dd129ebce7eade8081920fabe82ef78eda20ee5a1a936378
Analyzer Verdict Alert fortinet Malware
GET /assets/fullcalendar-3.10.0/fullcalendar.min.css?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:38 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 27 May 2020 07:20:07 GMT
ETag: "e857a5-3f0c-5a69c0aa137c0"
Accept-Ranges: bytes
Content-Length: 16140
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/jquery.base64.min.js?ver=2212.1
112.175.184.154200 OK 1.8 kB URL HTTP/1.1 www.ansetech.co.kr/assets/jquery.base64.min.js?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (1782), with no line terminators
Hash 0e0645f8b1c2b9e45470add2df1214b4
6fbea5312aee286ab3998612c9b5b4a13553c1e9
49416531519583e597dccc3856da2fa093b5e739baf9fda442b7047309e7f51c
Analyzer Verdict Alert fortinet Malware
GET /assets/jquery.base64.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "7a3e5e-6f6-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 1782
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/jquery-ui/jquery-ui.i18n-ko.js?ver=2212.1
112.175.184.154200 OK 1.2 kB URL HTTP/1.1 www.ansetech.co.kr/assets/jquery-ui/jquery-ui.i18n-ko.js?ver=2212.1
IP 112.175.184.154:0
Hash c029d22ed96597ef67744cb55604bfcc
621a19eb01b0b2d5cf38f31694de080181c7c2fd
abc0d4a608014c543e3ab7cc31b10efee4f3c3c1c375d598338410347bc95bb0
GET /assets/jquery-ui/jquery-ui.i18n-ko.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ec514c-4ab-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 1195
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/jquery-ui/jquery-ui.extend.js?ver=2212.1&t=1673505577
112.175.184.154200 OK 0 B URL HTTP/1.1 www.ansetech.co.kr/assets/jquery-ui/jquery-ui.extend.js?ver=2212.1&t=1673505577
IP 112.175.184.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/jquery-ui/jquery-ui.extend.js?ver=2212.1&t=1673505577 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ec514b-0-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 0
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/js/slick/slick.min.js?ver=2212.1
112.175.184.154200 OK 43 kB URL HTTP/1.1 www.ansetech.co.kr/assets/js/slick/slick.min.js?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (42862)
Hash d5a61c749e44e47159af8a6579dda121
3b41b3bc956685015a347a2238e71db29dfa0dbb
0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740
GET /assets/js/slick/slick.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "12658c3-a76f-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 42863
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/js/bootstrap.min.js?ver=2212.1
112.175.184.154200 OK 40 kB URL HTTP/1.1 www.ansetech.co.kr/assets/js/bootstrap.min.js?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (39553)
Hash 2f34b630ffe30ba2ff2b91e3f3c322a1
b16fd8226bd6bfb08e568f1b1d0a21d60247cefb
9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe
Analyzer Verdict Alert fortinet Malware
GET /assets/js/bootstrap.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ee5652-9b00-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 39680
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/css/global.css?ver=2212.1&t=1673505577
112.175.184.154200 OK 78 kB URL HTTP/1.1 www.ansetech.co.kr/assets/css/global.css?ver=2212.1&t=1673505577
IP 112.175.184.154:0
File type Unicode text, UTF-8 text, with very long lines (1216), with CRLF line terminators
Hash 285b149937927b40001042749ff13b05
ede20abb204b8c748e613cce8e7c2b5897e86235
471c5a81733f81127a3b7c01cec45918602739a231245b65c52f205af4506dd7
GET /assets/css/global.css?ver=2212.1&t=1673505577 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 27 Dec 2022 00:36:23 GMT
ETag: "d81955-1302a-5f0c470f64fc0"
Accept-Ranges: bytes
Content-Length: 77866
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b1f465f2178efe2786ee28d13fb5e76d
777860d696be5da2a3e844ff1d29e8589cafe5a9
27d9f7abe75dd3a91116324e0f0769191432f1425ebdc17ffa67085e7c747deb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 06:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ansetech.co.kr/ckeditor/config.js?ver=2212.1
112.175.184.154200 OK 2.5 kB URL HTTP/1.1 www.ansetech.co.kr/ckeditor/config.js?ver=2212.1
IP 112.175.184.154:0
Hash 74cd7f4114f68cb36ecd043465f7faeb
f83b0207a70554cecf0e9361f298323bbcd04ab2
465e012398234b1d539dad205eaa0be749c817a68d802cc2f4c895ac482dbf78
Analyzer Verdict Alert fortinet Malware
GET /ckeditor/config.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:08 GMT
ETag: "7c4058-9e9-5e2778b344f00"
Accept-Ranges: bytes
Content-Length: 2537
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b1f465f2178efe2786ee28d13fb5e76d
777860d696be5da2a3e844ff1d29e8589cafe5a9
27d9f7abe75dd3a91116324e0f0769191432f1425ebdc17ffa67085e7c747deb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 06:39:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ansetech.co.kr/assets/js/global.js?ver=2212.1&t=1673505577
112.175.184.154200 OK 1.8 kB URL HTTP/1.1 www.ansetech.co.kr/assets/js/global.js?ver=2212.1&t=1673505577
IP 112.175.184.154:0
Hash d839a515c2c1093af9b729d4a6b458c1
8ce690bf4a67df96e06a379a24d32c3cfd70a862
338cf691e5f0793c6739dc95172b64952bc77adf8eb0b3bf9687c62a7adf3df5
GET /assets/js/global.js?ver=2212.1&t=1673505577 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 27 Dec 2022 00:36:23 GMT
ETag: "ee4d69-724-5f0c470f64fc0"
Accept-Ranges: bytes
Content-Length: 1828
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/fullcalendar-3.10.0/locale/ko.js
112.175.184.154200 OK 3.1 kB URL HTTP/1.1 www.ansetech.co.kr/assets/fullcalendar-3.10.0/locale/ko.js
IP 112.175.184.154:0
File type Unicode text, UTF-8 text, with very long lines (2707), with no line terminators
Hash baa216ba89b4cd77221c2bdf4cd7a51b
c6749812e4ae2393984762eaf41b866ffad010b4
b56cd7e0aa0cfe3331fb67aae9e5e2316e74a8397c5db8db7461c507fa06f691
Analyzer Verdict Alert fortinet Malware
GET /assets/fullcalendar-3.10.0/locale/ko.js HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 27 May 2020 07:20:07 GMT
ETag: "10845b0-c2d-5a69c0aa137c0"
Accept-Ranges: bytes
Content-Length: 3117
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/jquery-ui/jquery-ui.min.js?ver=2212.1
112.175.184.154200 OK 254 kB URL HTTP/1.1 www.ansetech.co.kr/assets/jquery-ui/jquery-ui.min.js?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (32074)
Size 254 kB (253669 bytes)
Hash c15b1008dec3c8967ea657a7bb4baaec
78489e580adaef931e6e5b131dab556c397e4a1a
28ce75d953678c4942df47a11707a15e3c756021cf89090e3e6aa7ad6b6971c3
Analyzer Verdict Alert fortinet Malware
GET /assets/jquery-ui/jquery-ui.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "ec514f-3dee5-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 253669
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/public/custom.css?ver=2212.1&t=1673505577
112.175.184.154200 OK 33 kB URL HTTP/1.1 www.ansetech.co.kr/public/custom.css?ver=2212.1&t=1673505577
IP 112.175.184.154:0
File type assembler source, Unicode text, UTF-8 text
Hash ed8b1237e9125649b54bedec1b573820
87672214281f9fee0b13d39f10a41471e504ffbf
7c74d6668487c775337de624f23ddcdc4ab957655afcb5dbd71006467af9801b
GET /public/custom.css?ver=2212.1&t=1673505577 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 24 Aug 2021 05:21:03 GMT
ETag: "7c4082-8063-5ca474cc91dec"
Accept-Ranges: bytes
Content-Length: 32867
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/css
www.ansetech.co.kr/assets/js/require.min.js?ver=2212.1
112.175.184.154200 OK 18 kB URL HTTP/1.1 www.ansetech.co.kr/assets/js/require.min.js?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (17622)
Hash 3919a36bf7e9718f7c594a5e9107119d
77c5aa3ddc61677e60c95712dc77048af5e72ca5
563bac9ba2a1d94effb5bea3061f8c39fc6769fd935ac4e9877e1b30a842d507
Analyzer Verdict Alert fortinet Malware
GET /assets/js/require.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 29 Mar 2022 05:12:23 GMT
ETag: "ee92e3-44fe-5db5479567bc0"
Accept-Ranges: bytes
Content-Length: 17662
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/fullcalendar-3.10.0/lib/moment.min.js?ver=2212.1
112.175.184.154200 OK 52 kB URL HTTP/1.1 www.ansetech.co.kr/assets/fullcalendar-3.10.0/lib/moment.min.js?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (51746), with no line terminators
Hash de82f2f2bd52ead2e0dbe58983236395
76f73f0a3c547e48607e67fb3cc1e1de04e7284c
5412e2bde4cac9464c13325deb3da685fc48ab3dd90130ae54c6b03d91b321f0
Analyzer Verdict Alert fortinet Malware
GET /assets/fullcalendar-3.10.0/lib/moment.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 27 May 2020 07:20:07 GMT
ETag: "fe51fb-ca22-5a69c0aa137c0"
Accept-Ranges: bytes
Content-Length: 51746
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/jquery-3.4.1.min.js?ver=2212.1
112.175.184.154200 OK 88 kB URL HTTP/1.1 www.ansetech.co.kr/assets/jquery-3.4.1.min.js?ver=2212.1
IP 112.175.184.154:0
File type ASCII text, with very long lines (65451)
Hash 220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
Analyzer Verdict Alert fortinet Malware
GET /assets/jquery-3.4.1.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "7a3e5d-15851-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 88145
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.js?ver=2212.1
112.175.184.154200 OK 217 kB URL HTTP/1.1 www.ansetech.co.kr/assets/fullcalendar-3.10.0/fullcalendar.min.js?ver=2212.1
IP 112.175.184.154:0
File type Unicode text, UTF-8 text, with very long lines (31995)
Size 217 kB (216949 bytes)
Hash 846152635d7e89526179ac13fbd1483a
c021a44d62d2c64cad39c100edee9e8220bb4563
e3ead6e8de657fd9ec9490babadfe86fb7c263663e5598f63f0ff629d9908d1d
GET /assets/fullcalendar-3.10.0/fullcalendar.min.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:40 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 27 May 2020 07:20:07 GMT
ETag: "e857a6-34f75-5a69c0aa137c0"
Accept-Ranges: bytes
Content-Length: 216949
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/ckeditor/ckeditor.js?ver=2212.1
112.175.184.154200 OK 1.3 MB URL HTTP/1.1 www.ansetech.co.kr/ckeditor/ckeditor.js?ver=2212.1
IP 112.175.184.154:0
File type Unicode text, UTF-8 (with BOM) text
Size 1.3 MB (1287440 bytes)
Hash b4f2be81721e9757c3e184d5605ccb54
b59b7cffdb908ebcda8877432cff416e323d17ff
891a51ac8d985a8be2cafa56e5df376780bb587903607bf9f11a9cd8273faeed
Analyzer Verdict Alert fortinet Malware
GET /ckeditor/ckeditor.js?ver=2212.1 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:39 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Mon, 24 May 2021 05:39:06 GMT
ETag: "7c4076-13a510-5c30cd3eb7280"
Accept-Ranges: bytes
Content-Length: 1287440
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/javascript
www.ansetech.co.kr/public/img/logo/logo-square.png
112.175.184.154200 OK 1.9 kB URL HTTP/1.1 www.ansetech.co.kr/public/img/logo/logo-square.png
IP 112.175.184.154:0
File type PNG image data, 43 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f6f60de3b50ccb620041f1c6110985f
56aee47f338aa59efc466222c3d4a55dd5b15cbb
96237176a6976780f8d2d137c21819e03ae8ebc17598bc190e5feb4a9d3bb5f5
GET /public/img/logo/logo-square.png HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:41 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 07 Jul 2021 01:29:21 GMT
ETag: "13c39ce-757-5c67e77c56ec2"
Accept-Ranges: bytes
Content-Length: 1879
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png
www.ansetech.co.kr/public/img/logo/logo.png
112.175.184.154200 OK 8.8 kB URL HTTP/1.1 www.ansetech.co.kr/public/img/logo/logo.png
IP 112.175.184.154:0
File type PNG image data, 259 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 35b753685ef8c30a3cfe1e29a6deeb91
3db1a34731342c38505b4527ce8aebb40320cead
b611c5d9f3edfcb3bcea46ef99898d170b82afcd715f5623fed59f8ec1307c08
GET /public/img/logo/logo.png HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 07 Jul 2021 01:16:45 GMT
ETag: "13c39cd-2240-5c67e4abdb51b"
Accept-Ranges: bytes
Content-Length: 8768
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png
www.ansetech.co.kr/public/img/logo/f-logo.png
112.175.184.154200 OK 5.6 kB URL HTTP/1.1 www.ansetech.co.kr/public/img/logo/f-logo.png
IP 112.175.184.154:0
File type PNG image data, 225 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash a17d9838cc8eac1af0d5a58657f8d80b
8639012ab5f33a2c7b346019c955b7a144115a8e
10d6943793406ed7c2320a4d95bc0c1f39fa5933fc03c9bba9df69e2f3072e20
GET /public/img/logo/f-logo.png HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 07 Jul 2021 01:21:41 GMT
ETag: "13c4027-15c7-5c67e5c5b3e83"
Accept-Ranges: bytes
Content-Length: 5575
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png
www.ansetech.co.kr/assets/fonts/glyphicons-halflings-regular.woff2
112.175.184.154200 OK 18 kB URL HTTP/1.1 www.ansetech.co.kr/assets/fonts/glyphicons-halflings-regular.woff2
IP 112.175.184.154:0
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/css/bootstrap.min.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "e64f08-466c-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 18028
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain
www.ansetech.co.kr/assets/fonts/notokr/notokr-bold.woff2
112.175.184.154200 OK 158 kB URL HTTP/1.1 www.ansetech.co.kr/assets/fonts/notokr/notokr-bold.woff2
IP 112.175.184.154:0
File type gzip compressed data, max compression\012- data
Size 158 kB (158262 bytes)
Hash e11eaceb48bb52bcd7769927a3951256
046a1fa5941223ca68d69893f4dfebce404c03fa
75edeb67d1bf55f9977a775055914cde50f550ee564c01259bceb873615cf04d
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/notokr/notokr-bold.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:04 GMT
ETag: "fa3ab7-20f38-5a3ef7da48b00"
Accept-Ranges: bytes
Content-Length: 134968
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain
www.ansetech.co.kr/assets/adm/modules/fontawesome6/webfonts/fa-solid-900.woff2
112.175.184.154200 OK 154 kB URL HTTP/1.1 www.ansetech.co.kr/assets/adm/modules/fontawesome6/webfonts/fa-solid-900.woff2
IP 112.175.184.154:0
File type Web Open Font Format (Version 2), TrueType, length 154228, version 769.768\012- data
Size 154 kB (154228 bytes)
Hash 55b416a8df21f9f987aa352f10d1343b
2717f3f58271f2f2e6120d9937c7227002656d34
d76fb4e841748a3f6bc63efa23156e02631c283bf41f84efcbdaf339ea3e1b73
Analyzer Verdict Alert fortinet Malware
GET /assets/adm/modules/fontawesome6/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/adm/modules/fontawesome6/css/all.min.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 28 Jun 2022 00:59:10 GMT
ETag: "102089b-25a74-5e2778b52d380"
Accept-Ranges: bytes
Content-Length: 154228
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain
www.ansetech.co.kr/assets/fonts/notokr/notokr-regular.woff2
112.175.184.154200 OK 135 kB URL HTTP/1.1 www.ansetech.co.kr/assets/fonts/notokr/notokr-regular.woff2
IP 112.175.184.154:0
File type Web Open Font Format (Version 2), TrueType, length 134960, version 1.0\012- data
Size 135 kB (134960 bytes)
Hash a288961d62681aeff38489afad616c28
9ea9497b00f3767455868e20a07c6b86a8b6a862
ae57d3fa473d34383e6762a9f26eb5a82d20e301e3c38ae481a8845b7c221680
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/notokr/notokr-regular.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "fa3acb-20f30-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 134960
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain
www.ansetech.co.kr/assets/fonts/notokr/notokr-medium.woff2
112.175.184.154200 OK 134 kB URL HTTP/1.1 www.ansetech.co.kr/assets/fonts/notokr/notokr-medium.woff2
IP 112.175.184.154:0
File type Web Open Font Format (Version 2), TrueType, length 133836, version 1.0\012- data
Size 134 kB (133836 bytes)
Hash 6a273c1578aaeb244be785ebed570c75
542f03687364c7c3e7bfd9067e97233d6eae0c70
855fdb71bfaa47c8ca0179ce9474ba9572b0eaeeb8d161522140109686efc034
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/notokr/notokr-medium.woff2 HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ansetech.co.kr/assets/fonts/notokr/notokr.css?ver=2212.1
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 23 Apr 2020 06:38:05 GMT
ETag: "fa3ac6-20acc-5a3ef7db3cd40"
Accept-Ranges: bytes
Content-Length: 133836
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain
www.ansetech.co.kr/public/img/favicon/10page_favicon.png
112.175.184.154404 Not Found 1.1 kB URL HTTP/1.1 www.ansetech.co.kr/public/img/favicon/10page_favicon.png
IP 112.175.184.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
GET /public/img/favicon/10page_favicon.png HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 404 Not Found
Date: Thu, 12 Jan 2023 06:39:43 GMT
Server: Apache/2.2.15 (CentOS)
Set-Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; expires=Thu, 12-Jan-2023 07:39:43 GMT; Max-Age=3600; path=/
Access-Control-Allow-Origin: *
Content-Length: 1130
Connection: close
Content-Type: text/html; charset=UTF-8
www.ansetech.co.kr/public/img/slide/slide09.jpg
112.175.184.154200 OK 0 B URL HTTP/1.1 www.ansetech.co.kr/public/img/slide/slide09.jpg
IP 112.175.184.154:0
GET /public/img/slide/slide09.jpg HTTP/1.1
Host: www.ansetech.co.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Cookie: csrf_mailplug_token=1e80f803331d7ed0ea2fbd678851f239; ci_session=l6id6cu5bli7lr3iqcacvoad1r7qidh6
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 06:39:42 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Fri, 11 Jun 2021 00:01:09 GMT
ETag: "13c3f1c-5cb1f9-5c472348406ef"
Accept-Ranges: bytes
Content-Length: 6074873
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
fonts.googleapis.com/css?family=Noto+Sans+KR:300,400,700&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans+KR:300,400,700&display=swap
IP 142.250.74.74:0
GET /css?family=Noto+Sans+KR:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ansetech.co.kr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 12 Jan 2023 06:39:42 GMT
date: Thu, 12 Jan 2023 06:39:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2