r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7984
Expires: Tue, 28 Mar 2023 20:01:09 GMT
Date: Tue, 28 Mar 2023 17:48:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7954
Expires: Tue, 28 Mar 2023 20:00:39 GMT
Date: Tue, 28 Mar 2023 17:48:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 28 Mar 2023 17:28:05 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1200
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19920
Expires: Tue, 28 Mar 2023 23:20:05 GMT
Date: Tue, 28 Mar 2023 17:48:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZoLxsMMzJLxyYVGjb2P6zlz4PHNm54gsKZByR6N+USvVWljScWIfT/yJacI4qPos/KEF8og3EBM=
x-amz-request-id: X3XP01PT3QERZT9E
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 28 Mar 2023 17:02:08 GMT
age: 2757
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
autostyleworld.com/
301 Moved Permanently 235 B IP
ASN #396362 LEASEWEB-USA-NYC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d951079c49dc9bd18a57cc4134ee183e
9ebc6236e59d4d9376b7798b4d6047ab1acc5aa8
8f762b67c3c1886bfa0e67b20d59a5683ac5749913f8bd746606538889985171
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 28 Mar 2023 17:48:05 GMT
Server: Apache
Location: https://autostyleworld.com/
Content-Length: 235
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 17:48:05 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Alert, ETag, Cache-Control, Expires, Pragma, Content-Length, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 28 Mar 2023 17:14:36 GMT
cache-control: public,max-age=3600
age: 2010
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 76a0aba3ddb470751c690f5a725159f2
8cb789e8e0dfa336270700ef1e607173f2aee6cd
e76de476654125a06994065d66e30c6fb6c354d0f67fd4e31a3f78679e2bfdcb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E76DE476654125A06994065D66E30C6FB6C354D0F67FD4E31A3F78679E2BFDCB"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21224
Expires: Tue, 28 Mar 2023 23:41:50 GMT
Date: Tue, 28 Mar 2023 17:48:06 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ad7Iuyr/yC6cLkxI7X8z9g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FowO6XAUiPF6SEP8qDprSUPPq/M=
autostyleworld.com/
200 OK 15 kB IP
ASN #396362 LEASEWEB-USA-NYC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13027), with CRLF, LF line terminators
Hash bf569e39fac2ca48e39aaaabcdad29cb
df850876dc6f1999fe0664e3992672b7d9bcf863
b234ab1d16bea32e3844cc038d4e1c98a3bb04f846230c5ff57de27bb8fed99d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:06 GMT
Server: Apache
Link: <https://autostyleworld.com/wp-json/>; rel="https://api.w.org/", <https://autostyleworld.com/wp-json/wp/v2/pages/22>; rel="alternate"; type="application/json", <https://autostyleworld.com/>; rel=shortlink
Set-Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60; expires=Thu, 27-Apr-2023 17:48:06 GMT; Max-Age=2592000; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
autostyleworld.com/wp-content/themes/el-greco/webfonts/Roboto-Regular-webfont.woff
200 OK 21 kB URL HTTP/1.1 autostyleworld.com/wp-content/themes/el-greco/webfonts/Roboto-Regular-webfont.woff
IP
ASN #396362 LEASEWEB-USA-NYC
File type Web Open Font Format, TrueType, length 20924, version 1.0\012- data
Hash 02931c2a2aca17ca74102e6d9ba8cab2
7298e2dba7693be9d3c630f4b682b6c24cb2175f
6e01365b67a27c651947fdf88e651a813247d31da2ca6c014fe957cf8a252978
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/el-greco/webfonts/Roboto-Regular-webfont.woff HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:36:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 20862
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff
autostyleworld.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 31 kB URL HTTP/1.1 autostyleworld.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:23:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/plugins/adsfbcatalog/src/js/construct-pixel-events.js?ver=1.3.8
200 OK 495 B URL HTTP/1.1 autostyleworld.com/wp-content/plugins/adsfbcatalog/src/js/construct-pixel-events.js?ver=1.3.8
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with CRLF line terminators
Hash 05b76169a8226e1efe81f1c4f00996c9
7fc4b72c96a70ed61472efba20a6fb2df009d486
a3ab7b2cea106a3d9c69c34aa34ce23a4b058d8655a3c35f48c8bdf09c50c89f
GET /wp-content/plugins/adsfbcatalog/src/js/construct-pixel-events.js?ver=1.3.8 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:36:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 495
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/themes/el-greco/webfonts/Roboto-Medium-webfont.woff
200 OK 21 kB URL HTTP/1.1 autostyleworld.com/wp-content/themes/el-greco/webfonts/Roboto-Medium-webfont.woff
IP
ASN #396362 LEASEWEB-USA-NYC
File type Web Open Font Format, TrueType, length 21184, version 1.0\012- data
Hash ba4470dac81f2a399ac0713fb3d8c671
2e16153408150479073f0695b27a6ce0724ea3ed
b15c174ca76b948cf63352192b9ab6629c3877880ce424d6a6737e8b072e50d5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/el-greco/webfonts/Roboto-Medium-webfont.woff HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:36:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21110
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff
autostyleworld.com/wp-content/themes/el-greco/webfonts/Roboto-Bold-webfont.woff
200 OK 21 kB URL HTTP/1.1 autostyleworld.com/wp-content/themes/el-greco/webfonts/Roboto-Bold-webfont.woff
IP
ASN #396362 LEASEWEB-USA-NYC
File type Web Open Font Format, TrueType, length 21320, version 1.0\012- data
Hash c82278e69c51c35cd69de691ca6c1cc6
bd713c0ba47d5601d2c09bb9b44f2f51c1ad6819
24af7340b99a48668ccdcdabbe84223ed51460310ba2337967cb4a4e638ef12d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/el-greco/webfonts/Roboto-Bold-webfont.woff HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:36:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21261
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff
autostyleworld.com/wp-content/themes/el-greco/assets/css/allstyle.css?ver=1.5.8.2
200 OK 15 kB URL HTTP/1.1 autostyleworld.com/wp-content/themes/el-greco/assets/css/allstyle.css?ver=1.5.8.2
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (60695), with CRLF, LF line terminators
Hash 1f1a2273faf1876e4c5061c31bae9c33
aefef0b6f5baf268f2ecc4016ce4ac1752d6440c
fd92441d99253f2b39cefd7478282c0de9a70a55f1c20cf0271ea08c646a0a43
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/el-greco/assets/css/allstyle.css?ver=1.5.8.2 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:36:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14650
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
autostyleworld.com/wp-content/themes/el-greco/adstm/customization/style.css?ver=4.7
200 OK 0 B URL HTTP/1.1 autostyleworld.com/wp-content/themes/el-greco/adstm/customization/style.css?ver=4.7
IP
ASN #396362 LEASEWEB-USA-NYC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/el-greco/adstm/customization/style.css?ver=4.7 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Tue, 28 Mar 2023 15:22:48 GMT
Accept-Ranges: bytes
Content-Length: 0
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
autostyleworld.com/wp-content/plugins/alids/assets/front/css/flags.css?ver=1.8.27.5
200 OK 144 B URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/assets/front/css/flags.css?ver=1.8.27.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with CRLF line terminators
Hash ab0553dc7d4837b2082f2d6d869e84db
20cb0df2c23d79569058582e595dc139e7c4850c
c5848e2bf3fb6a0dc1b8f0524dc837e4267e7810b3fd4ccd75ba9d54b7ee5df0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/alids/assets/front/css/flags.css?ver=1.8.27.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 144
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
autostyleworld.com/wp-content/plugins/alids/assets/front/css/shopping_cart.css?ver=1.8.27.5
200 OK 2.7 kB URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/assets/front/css/shopping_cart.css?ver=1.8.27.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (1022), with CRLF line terminators
Hash 17d5d1dbecb0f188e84711a9de65005f
a4ab688646ed6c4cc93bee0a7b552256026c891c
910228704527ec1484d845a100d21a689264ea6ace17222157683ae8aca68d75
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/alids/assets/front/css/shopping_cart.css?ver=1.8.27.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2680
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
autostyleworld.com/wp-content/plugins/alids/assets/front/css/search-product.css?ver=1.8.27.5
200 OK 804 B URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/assets/front/css/search-product.css?ver=1.8.27.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with CRLF line terminators
Hash eff6a33e088fc3834287339e35537a38
52ee43c5995c9e0977bfa51a73a39164b1c8e036
a8d42a6ef863d36b7dc265713a787cb5c92dc33253c56b921c339db4156bcd8f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/alids/assets/front/css/search-product.css?ver=1.8.27.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 804
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
autostyleworld.com/wp-content/themes/el-greco/style.css?ver=1.5.8.2
200 OK 41 kB URL HTTP/1.1 autostyleworld.com/wp-content/themes/el-greco/style.css?ver=1.5.8.2
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (65258), with CRLF line terminators
Hash 56363151626935be8451341f329ff1c9
81eaf0f08f0e6166c2f907789ff3acc0e6649c98
13b97c34373a366b83dbad4c0fe884c9499cfafdf514f7f161581c882a5172c7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/el-greco/style.css?ver=1.5.8.2 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:36:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 40895
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
autostyleworld.com/wp-content/plugins/alids/assets/front/js/popover.js?ver=1.8.27.5
200 OK 3.5 kB URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/assets/front/js/popover.js?ver=1.8.27.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (10866), with CRLF line terminators
Hash cfe9497cac9bc1aa0e37ed5dfb524ef6
c6036cc55df7530bdad013088d849562e0b6fc15
ac590589f3aedddd02f64d257d23b6da9f20c558207271c7bdca179eaef2dd18
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/alids/assets/front/js/popover.js?ver=1.8.27.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3509
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.2 kB URL HTTP/1.1 autostyleworld.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:23:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/plugins/alids/assets/front/js/core.min.js?ver=1.8.27.5
200 OK 1.1 kB URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/assets/front/js/core.min.js?ver=1.8.27.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (2717), with no line terminators
Hash d3554f02ab0b815ec7391806990f8326
db4db0c176b9f3cf35d20fff49b7a28707196ea3
fbb97b64b39c9aa31c3b4dc7082d75979850d9cc52b5c0c953df0d6157e2abfa
GET /wp-content/plugins/alids/assets/front/js/core.min.js?ver=1.8.27.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1092
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/plugins/alids/assets/front/js/formatPrice.min.js?ver=1.8.27.5
200 OK 1.1 kB URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/assets/front/js/formatPrice.min.js?ver=1.8.27.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (2202), with no line terminators
Hash e75c9f053695232618674af1a4a9803f
72675fa417ef5aacb28eb26a61c4b783292c1a3e
dd118890ad924f80ca5b5a19628aa58df2f39aa5c9446d3c953d0d68483e5fab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/alids/assets/front/js/formatPrice.min.js?ver=1.8.27.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1087
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/plugins/alids/assets/front/js/currencyPrice.min.js?ver=1.8.27.5
200 OK 466 B URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/assets/front/js/currencyPrice.min.js?ver=1.8.27.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (1251), with no line terminators
Hash 1dd26a5d3a7225fd5156f59ca36231b7
089ed015d547a9b6b67877c9c247381792649605
da821859652dd9aeecb3cf6e5505933e0268a6d0c3eb57e1ea916f2e2e062295
GET /wp-content/plugins/alids/assets/front/js/currencyPrice.min.js?ver=1.8.27.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 466
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/plugins/alids/src/js/handlebars/handlebars.min.js?ver=4.0.5
200 OK 21 kB URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/src/js/handlebars/handlebars.min.js?ver=4.0.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (32098), with CRLF line terminators
Hash dd2ebf4109413692a7384b365fd71420
4bd4ac8cedc91df4a8e98c1ddc9ef31a2a31342c
96c51405bc2aaf687eca4440101d2ad8489ab1eab53a9dbf0a16aa612969f5fd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/alids/src/js/handlebars/handlebars.min.js?ver=4.0.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21084
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/plugins/alids/assets/front/js/cart.min.js?ver=1.8.27.5
200 OK 1.8 kB URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/assets/front/js/cart.min.js?ver=1.8.27.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (6509), with no line terminators
Hash bb79735b8aef6cad50f8c5cd4de4bb8c
83051a9cbfce74e03ab03e0e20679f7476acdd19
8929da1dceb1508e3797a91619ed2ed5af3605ff2782ed56250cc2b8cd14916d
GET /wp-content/plugins/alids/assets/front/js/cart.min.js?ver=1.8.27.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1824
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/plugins/alids/assets/front/js/search-product.min.js?ver=1.8.27.5
200 OK 707 B URL HTTP/1.1 autostyleworld.com/wp-content/plugins/alids/assets/front/js/search-product.min.js?ver=1.8.27.5
IP
ASN #396362 LEASEWEB-USA-NYC
File type Unicode text, UTF-8 text, with very long lines (1537), with no line terminators
Hash c5b61edbfbbf46dec0474477fdc71bbf
3774d33ac7a1a115ab492fd8095c20f288c4193f
c4d6f3822938c0044ec3b19df5e025b2dd80d655f298a0008685dc26fc777030
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/alids/assets/front/js/search-product.min.js?ver=1.8.27.5 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 02:33:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 707
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/uploads/2022/04/Auto-Style-Worldlogo.png
200 OK 4.2 kB URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/Auto-Style-Worldlogo.png
IP
ASN #396362 LEASEWEB-USA-NYC
File type PNG image data, 256 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash a76d5b820ab85f1fb5b4696d65caa178
87c6786cfc24501db0a1af316d1989467d639a77
5c19a2343a04d274ef5356b1cea50c7a6e95bfd025da9123a8438804a5775eec
GET /wp-content/uploads/2022/04/Auto-Style-Worldlogo.png HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:42:30 GMT
Accept-Ranges: bytes
Content-Length: 4192
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18829
Expires: Tue, 28 Mar 2023 23:01:56 GMT
Date: Tue, 28 Mar 2023 17:48:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18829
Expires: Tue, 28 Mar 2023 23:01:56 GMT
Date: Tue, 28 Mar 2023 17:48:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18829
Expires: Tue, 28 Mar 2023 23:01:56 GMT
Date: Tue, 28 Mar 2023 17:48:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18829
Expires: Tue, 28 Mar 2023 23:01:56 GMT
Date: Tue, 28 Mar 2023 17:48:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png
200 OK 20 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3e093e7b5c12cfc2aee601f823ea47e
d76b3958471b2ed70a2b52f078ec638748fdb441
de4fc669195611c4ea6fe7d920482987aef077973b4973c01e2f362aeb18c2ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 20349
x-amzn-requestid: 8e810007-5602-40d0-b103-da5421381d67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbpjHdcoAMFSuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220ca3-22f4671a5cd5fab36268ae3f;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:39 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: -rX6JXPNzVJyz9ykqPUCTNBUK9NOK2CAwrrVNPsoVfCDIEeH3AS3bQ==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:55:30 GMT
age: 71557
etag: "d76b3958471b2ed70a2b52f078ec638748fdb441"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fdd8a3f935830ca9e5ffdb5824acebc
39caaddec703fdad962d03fff8687bad2c1df4ad
6fe6301fb3610c3e8a9b62671579db53189bb62ead4cf5ab30a1f1e0b90b8ca2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7537
x-amzn-requestid: 2fb06f69-4757-4ba5-9f20-6e829127b931
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbqWETgoAMFV5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220ca8-6421e38b3a0ac0590ffa8b52;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:44 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: JZfiBSqQdWXqpaxSlepC6hEJ888ja6o10GW0KziDifD8KdTmDTn0eQ==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:05:18 GMT
age: 70969
etag: "39caaddec703fdad962d03fff8687bad2c1df4ad"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 789f11978a1149984408fbbb9a2b3f81
078bd523107096bab5e26d42b18e316c253f1ca7
7974980290443b64126f512686261150cd27331cb7b32a96d1167a97d046e8a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 9277e35d-8fe8-482e-b65c-b132dfcbd87e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbqBGl0IAMFy4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220ca6-7869936b33cbf3633c68e7ac;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Xz5zjv-po5mgSFz_kkZZ5Hvw9SxY-3d-J2DpvFWxM-iI4jXTsUbiyg==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 10:16:22 GMT
age: 27105
etag: "078bd523107096bab5e26d42b18e316c253f1ca7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada29e049501b12a35b0bcc5f68e3e57
5c1ba9bffbcc9007e7f119dbb3197db34a12f8da
b45583b5845129386a456e03fbdba25305c8d6d9fb5a8f01d783816ced080629
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10744
x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbogF0poAMFTAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: KAI78tfv0ATn1DQvBGyodBs9UWsIGdj1Fa50KowbUAO4ab2ceaYhMw==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:49:26 GMT
age: 71921
etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c831201ad81f55c63c1b101ce854a810
0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5
c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM69eHE3IAMF0Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: U1WnpJASpWxPY-8kq-3g3_dKqm5l6UqhA0xUYijO5FDLGAxI2mLthg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 06:36:07 GMT
age: 40320
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1da68df9d96e2758e37b9f15daab027b
5ff19ed6dc5752aa4b15fb88da972b736fd55783
ad924425946dbdf309c764e7097e676185516301feb7722b30d95ffd50b4353f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7426
x-amzn-requestid: 85a30298-4613-4a96-bdba-0899fe9f9475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdcsgGZsoAMFQkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220e4f-10db431e7632048d7b15e0ec;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:44:47 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: JDa9YUJ9xo5mo8tb7poZC8XJDp6USTidZjWEwTZCrioJxR7vur6uJw==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:00:12 GMT
age: 71275
etag: "5ff19ed6dc5752aa4b15fb88da972b736fd55783"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
autostyleworld.com/wp-content/themes/el-greco/assets/js/allmin.js?ver=1.5.8.2
200 OK 24 kB URL HTTP/1.1 autostyleworld.com/wp-content/themes/el-greco/assets/js/allmin.js?ver=1.5.8.2
IP
ASN #396362 LEASEWEB-USA-NYC
File type ASCII text, with very long lines (65536), with no line terminators
Hash b8a5b724c471131dcdd3d773d0dc58f9
6bc941513205280f31c543d66066bb6023be503b
01c37e6b33cb804045931dfa22496ac04f82d1008fcf570524854be13cbef883
GET /wp-content/themes/el-greco/assets/js/allmin.js?ver=1.5.8.2 HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:36:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 23492
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
autostyleworld.com/wp-content/uploads/2022/04/slider_1.jpg
200 OK 140 kB URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/slider_1.jpg
IP
ASN #396362 LEASEWEB-USA-NYC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2020:05:14 12:16:45], baseline, precision 8, 1920x570, components 3\012- data
Size 140 kB (139915 bytes)
Hash 76e0f46b9fca1e2b0faf10d324737e4d
bc5675b2d6af45c76355f038312fc1327ad11f42
a7b574ef82082e3debbdbb293bdea52d4208dc24984937b48f399de4188ff7a0
GET /wp-content/uploads/2022/04/slider_1.jpg HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:38:54 GMT
Accept-Ranges: bytes
Content-Length: 139915
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
autostyleworld.com/wp-content/uploads/2022/04/Category_2-1.jpg
200 OK 32 kB URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/Category_2-1.jpg
IP
ASN #396362 LEASEWEB-USA-NYC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=203, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=380], progressive, precision 8, 380x203, components 3\012- data
Hash a5fd9f869c8f4df7ef66650fbd17ba61
f3cc8971b63cd1c76c4cf36c33c84219fa8b745d
8b0ebc03e9a6500827ff869f6dc6d4ccc991ad929cfaa4b4551c77e63e25e0be
GET /wp-content/uploads/2022/04/Category_2-1.jpg HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:08 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:39:06 GMT
Accept-Ranges: bytes
Content-Length: 32504
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
autostyleworld.com/wp-content/uploads/2022/04/1534-8f830df1b9dc1e53760fa0d8c51b89e1-350x350.jpg
200 OK 5.3 kB URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/1534-8f830df1b9dc1e53760fa0d8c51b89e1-350x350.jpg
IP
ASN #396362 LEASEWEB-USA-NYC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x350, components 3\012- data
Hash cf4bc5353c0e879a212513be15f78e9c
2d213e8cd76c39896299e3defd8d2afe728b626e
77a61fe34cea6a983ee13fa1a38077538aa548e4e63c6f633da2e38f9596751b
GET /wp-content/uploads/2022/04/1534-8f830df1b9dc1e53760fa0d8c51b89e1-350x350.jpg HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:08 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 04:47:40 GMT
Accept-Ranges: bytes
Content-Length: 5310
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
autostyleworld.com/wp-content/uploads/2022/04/Category_3.jpg
200 OK 28 kB URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/Category_3.jpg
IP
ASN #396362 LEASEWEB-USA-NYC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=203, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=380], progressive, precision 8, 380x203, components 3\012- data
Hash 661ae73c86f8c66c0f9039451ba877ed
cd23ae7b50fa980dd3648e53f9496f2bd6be5789
9c35987a5a5344d5a815612b81f58f6f457c2daea4439794f06b0e901fca88db
GET /wp-content/uploads/2022/04/Category_3.jpg HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:08 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:39:08 GMT
Accept-Ranges: bytes
Content-Length: 27987
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
autostyleworld.com/wp-content/uploads/2022/04/1507-93afa74d0753df879690c049d4fb4dd3-350x350.jpg
200 OK 5.1 kB URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/1507-93afa74d0753df879690c049d4fb4dd3-350x350.jpg
IP
ASN #396362 LEASEWEB-USA-NYC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x350, components 3\012- data
Hash bca20e77fdc2801565d1daca96ae740d
bce2a5b26f475d27152afc544b3bd17848d772e2
a220863b16474965af2afcb68a8ad29ad9a2a4b8925e6891d514a1a3486298c8
GET /wp-content/uploads/2022/04/1507-93afa74d0753df879690c049d4fb4dd3-350x350.jpg HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:08 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 04:46:19 GMT
Accept-Ranges: bytes
Content-Length: 5146
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
autostyleworld.com/wp-content/uploads/2022/04/Category_1.jpg
200 OK 35 kB URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/Category_1.jpg
IP
ASN #396362 LEASEWEB-USA-NYC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=203, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=380], progressive, precision 8, 380x203, components 3\012- data
Hash 9922b7064705ae99ae47500f87fd06bb
34d754ba37dc218609aa6a3e7e5db0cc53e9fea4
93874f0728012a02672d4a48a3e2aec0a497be176d987a6fbab150eb802a7304
GET /wp-content/uploads/2022/04/Category_1.jpg HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:08 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:39:05 GMT
Accept-Ranges: bytes
Content-Length: 34658
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
autostyleworld.com/wp-content/uploads/2022/04/1465-9e45fceb5e549497862781d3ec78b83c-350x350.jpg
200 OK 7.6 kB URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/1465-9e45fceb5e549497862781d3ec78b83c-350x350.jpg
IP
ASN #396362 LEASEWEB-USA-NYC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x350, components 3\012- data
Hash 8c4b76e8e93be801341f3a419b02a3c3
c04909708ecd8ed1dd1cb414b17c311b2ca596a4
204fcef9004e6a03ef4087916126e7cb48791d9190e19ebd828d3bdda937e131
GET /wp-content/uploads/2022/04/1465-9e45fceb5e549497862781d3ec78b83c-350x350.jpg HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:08 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 04:44:38 GMT
Accept-Ranges: bytes
Content-Length: 7556
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
autostyleworld.com/wp-content/uploads/2022/04/1444-a7c9bbf1e9ab8d1fe696cfd7bb08182d-350x350.jpg
200 OK 5.1 kB URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/1444-a7c9bbf1e9ab8d1fe696cfd7bb08182d-350x350.jpg
IP
ASN #396362 LEASEWEB-USA-NYC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x350, components 3\012- data
Hash 0ad7c2133fff8d48f349242614ccef31
e866d7147ff633254dff11ff346ec0835cbf192d
062fc714a1f8008643fe4ffd22034f2f23d854a58085bf693895be5cb90786a6
GET /wp-content/uploads/2022/04/1444-a7c9bbf1e9ab8d1fe696cfd7bb08182d-350x350.jpg HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:08 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 04:43:22 GMT
Accept-Ranges: bytes
Content-Length: 5106
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
autostyleworld.com/wp-admin/admin-ajax.php
200 OK 218 B URL HTTP/1.1 autostyleworld.com/wp-admin/admin-ajax.php
IP
ASN #396362 LEASEWEB-USA-NYC
File type JSON data\012- , ASCII text, with no line terminators
Hash f888db48eed7de5b85fe991cfd16b5ef
bb7eb1dc0f11a94a1cef3d9b5f22a1d9b940833e
714b4f938dd4296ecc673d8642fc165b62dafa3d8165ce745f94ce4fed016f89
Analyzer Verdict Alert fortinet Malware
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://autostyleworld.com
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Access-Control-Allow-Origin: https://autostyleworld.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 218
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
autostyleworld.com/wp-admin/admin-ajax.php
200 OK 379 B URL HTTP/1.1 autostyleworld.com/wp-admin/admin-ajax.php
IP
ASN #396362 LEASEWEB-USA-NYC
File type JSON data\012- HTML document, ASCII text, with very long lines (1326), with no line terminators
Hash a7574cfecdd41932828ba952474ea201
7f97a6c611fb9506583106e6f7fb6fa2884fca20
0aeaed34656ab15d9f3d56ca28efcb841c47f8696f8a11db82fc98f2208317fa
Analyzer Verdict Alert fortinet Malware
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 34
Origin: https://autostyleworld.com
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:07 GMT
Server: Apache
Access-Control-Allow-Origin: https://autostyleworld.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 379
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
autostyleworld.com/wp-admin/admin-ajax.php
200 OK 243 B URL HTTP/1.1 autostyleworld.com/wp-admin/admin-ajax.php
IP
ASN #396362 LEASEWEB-USA-NYC
File type JSON data\012- , ASCII text, with very long lines (452), with no line terminators
Hash f359f54bc4e92d6c8befcdf262dd1008
d69eb2d868c3355c4eb5efc0ce2d4da2415e7b37
24ca9401b6b655673f132e29c4fa32ead9077c79e614598fe37aa2b3a82b239d
Analyzer Verdict Alert fortinet Malware
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 58
Origin: https://autostyleworld.com
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:08 GMT
Server: Apache
Access-Control-Allow-Origin: https://autostyleworld.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 243
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
autostyleworld.com/wp-content/uploads/2022/04/fav_.svg
200 OK 725 B URL HTTP/1.1 autostyleworld.com/wp-content/uploads/2022/04/fav_.svg
IP
ASN #396362 LEASEWEB-USA-NYC
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3327a00f8c5285f6c56a3ac1f191d323
3168c9f922a5b86609da538e53e1e5d90643ca34
482f8d99643e52365e2db282e55253fd795cefe7519dd3fa0dea8eee264c232d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/fav_.svg HTTP/1.1
Host: autostyleworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://autostyleworld.com/
Cookie: ads_session_a8dd57320cf2bddccb9c600c72c62c97=9c636f43d664ddb5ed59ae14f7b674d3%7C%7C1680198486%7C%7C1680194886%7C%7C5f728f7b25c8b75f6a36560616daac60
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 17:48:08 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2022 03:38:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 725
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
173.234.158.65
23.36.76.226